Sujet Précédent Sujet Suivant

Quelqun de courajeux

Résolu/Fermé
sussi Messages postés 2190 Date d'inscription lundi 5 mai 2008 Statut Membre Dernière intervention 5 mars 2014 - 4 févr. 2009 à 21:38
sussi Messages postés 2190 Date d'inscription lundi 5 mai 2008 Statut Membre Dernière intervention 5 mars 2014 - 5 févr. 2009 à 22:17
Bonsoir voila mon soussi:

j'ai des fenaitres de pub qui se ouvrent tout seul

souvant quand je ouvre CCM aussi orange.

voilà un rapport hijacdis::
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:35, on 04.02.2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Programmi\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\system32\ctfmon.exe
C:\documents and settings\ciappui\impostazioni locali\dati applicazioni\sgwokau.exe
E:\WlanCU.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Mozilla Firefox\firefox.exe
C:\Documents and Settings\ciappui\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2102507
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
R3 - URLSearchHook: PHPNukeIT Toolbar - {2c965f3f-8efd-4bfc-a2c5-1672845fdbbf} - C:\Programmi\PHPNukeIT\tbPHPN.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Programmi\AskBarDis\bar\bin\askBar.dll
O2 - BHO: PHPNukeIT Toolbar - {2c965f3f-8efd-4bfc-a2c5-1672845fdbbf} - C:\Programmi\PHPNukeIT\tbPHPN.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Programmi\AVG\AVG8\avgssie.dll
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\FILECO~1\SYMANT~1\IDS\IPSBHO.dll (file missing)
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\Programmi\AVG\AVG8\avgtoolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programmi\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\Programmi\AVG\AVG8\avgtoolbar.dll
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Programmi\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: PHPNukeIT Toolbar - {2c965f3f-8efd-4bfc-a2c5-1672845fdbbf} - C:\Programmi\PHPNukeIT\tbPHPN.dll
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Picasa Media Detector] C:\Programmi\Picasa2\PicasaMediaDetector
O4 - HKCU\..\Run: [sgwokau] "c:\documents and settings\ciappui\impostazioni locali\dati applicazioni\sgwokau.exe" sgwokau
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = E:\WORD\Office\OSA9.EXE
O4 - Global Startup: STK014 PNP Monitor.lnk = ?
O4 - Global Startup: Wireless Configuration Utility.lnk = E:\WlanCU.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Programmi\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Programmi\ma-config.com\maconfservice.exe

36 réponses

  • 1
  • 2
Réponse 1 / 36
toptitbal Messages postés 25709 Date d'inscription samedi 8 juillet 2006 Statut Contributeur sécurité Dernière intervention 4 mars 2010 2 228
4 févr. 2009 à 21:39
Bonjour

Clique sur ce lien :
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
Clique sur navilog1.exe pour télécharger navilog1
Choisis Enregistrer

et enregistre-le sur ton bureau.

/ !\ Déconnecte-toi et désactive ton antivirus et antispyware résident pour que Navilog1 puisse s'exécuter normalement. /!\

Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, le fix s'exécutera automatiquement.
(Si ce n'est pas le cas, double-clique sur le raccourci Navilog1 présent sur le bureau).

Laisse-toi guider. Au menu principal, choisis 1 et valide.

Patiente jusqu'au message :
*** Analyse Terminée le ..... ***
Appuie sur une touche comme demandé, le bloc note va s'ouvrir.
Copie-colle l'intégralité dans une réponse. Referme le bloc note.
Le rapport est en outre sauvegardé à la racine du disque (C:\fixnavi.txt)
poste le rapport obtenu
0
Réponse 2 / 36
sussi Messages postés 2190 Date d'inscription lundi 5 mai 2008 Statut Membre Dernière intervention 5 mars 2014 215
4 févr. 2009 à 22:05
bonsoir voilà mon rapoort:

Search Navipromo version 3.7.1 commencé le 04.02.2009 à 21:50:29.09

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Programmi\navilog1

Mise à jour le 02.01.2009 à 19h00 par IL-MAFIOSO

Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Processore Intel Pentium III )
BIOS : PhoenixBIOS 4.0 Release 6.0
USER : ciappui ( Administrator )
BOOT : Normal boot

Antivirus : AVG Anti-Virus Free 8.0 (Activated)


A:\ (USB)
C:\ (Local Disk) - NTFS - Total:6 Go (Free:0 Go)
E:\ (Local Disk) - NTFS - Total:2 Go (Free:2 Go)
F:\ (CD or DVD)
Z:\ (Network Disk)


Recherche executé en mode normal

*** Recherche Programmes installés ***

Favorit

*** Recherche dossiers dans "C:\WINDOWS" ***


*** Recherche dossiers dans "C:\Programmi" ***


*** Recherche dossiers dans "C:\Documents and Settings\All Users\menuav~1\progra~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\All Users\menuav~1" ***


*** Recherche dossiers dans "c:\docume~1\alluse~1\datiap~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\ciappui\datiap~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\datiap~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\ciappui\impost~1\datiap~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\impost~1\datiap~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\ciappui\menuav~1\progra~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\menuav~1\progra~1" ***


*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net



*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans "C:\WINDOWS\system32" *

* Recherche dans "C:\Documents and Settings\ciappui\impost~1\datiap~1" *

* Recherche dans "C:\DOCUME~1\ADMINI~1\impost~1\datiap~1" *



*** Recherche fichiers ***



*** Recherche clés spécifiques dans le Registre ***
!! Les clés trouvées ne sont pas forcément infectées !!


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"sgwokau"="\"c:\\documents and settings\\ciappui\\impostazioni locali\\dati applicazioni\\sgwokau.exe\" sgwokau"


*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :


2)Recherche Heuristique :

* Dans "C:\WINDOWS\system32" :


* Dans "C:\Documents and Settings\ciappui\impost~1\datiap~1" :

sgwokau.exe trouvé !
sgwokau.dat trouvé !
sgwokau_nav.dat trouvé !
sgwokau_navps.dat trouvé !

* Dans "C:\DOCUME~1\ADMINI~1\impost~1\datiap~1" :


3)Recherche Certificats :

Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !

4)Recherche autres dossiers et fichiers connus :

C:\WINDOWS\system32\fNUtDcdd.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !


*** Analyse terminée le 04.02.2009 à 22:02:02.02 ***
0
Réponse 3 / 36
toptitbal Messages postés 25709 Date d'inscription samedi 8 juillet 2006 Statut Contributeur sécurité Dernière intervention 4 mars 2010 2 228
4 févr. 2009 à 22:09
/ !\ Déconnecte-toi et désactive ton antivirus et antispyware résident pour que Navilog1 puisse s'exécuter normalement. /!\

Relance Navilog, Sur le menu principal, choisis 2.
Suis les instructions et patiente.

L'outil va t'informer qu'il redémarrera ton ordinateur.
Sauvegarde les documents ouverts, s'il y en a, puis ferme toutes les fenêtres.
Appuie sur une touche ainsi que demandé.

Si ton ordinateur ne redémarre pas automatiquement, fais le manuellement.
Choisis ta session habituelle si nécessaire.
Patiente jusqu'au message *** Nettoyage terminé le ….*** (il se peut que çela prenne un certain temps).
Un document du Bloc-notes est créé. Sauvegarde le rapport de manière à le retrouver.
* Copie/colle le contenu de ce compte-rendu dans ta prochaine réponse.
Referme le Bloc-notes.
Ton Bureau va réapparaître.


Note : Si ton Bureau ne réapparaît pas, presse Ctrl+Alt+Suppr pour ouvrir le Gestionnaire des tâches.
Onglet "Processus" > Fichier (menu) > Nouvelle tâche (Exécuter...) > tape explorer et clique sur OK.
0
Réponse 4 / 36
sussi Messages postés 2190 Date d'inscription lundi 5 mai 2008 Statut Membre Dernière intervention 5 mars 2014 215
4 févr. 2009 à 22:30
re bonsoir voilà le rapport de navi log:

Clean Navipromo version 3.7.1 commencé le 04.02.2009 à 22:13:21.34

Outil exécuté depuis C:\Programmi\navilog1

Mise à jour le 02.01.2009 à 19h00 par IL-MAFIOSO

Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Processore Intel Pentium III )
BIOS : PhoenixBIOS 4.0 Release 6.0
USER : ciappui ( Administrator )
BOOT : Normal boot

Antivirus : AVG Anti-Virus Free 8.0 (Activated)


A:\ (USB)
C:\ (Local Disk) - NTFS - Total:6 Go (Free:0 Go)
E:\ (Local Disk) - NTFS - Total:2 Go (Free:2 Go)
F:\ (CD or DVD)
Z:\ (Network Disk)


Mode suppression automatique
avec prise en charge résultats Catchme et GNS


Nettoyage exécuté au redémarrage de l'ordinateur


*** fsbl1.txt non trouvé ***
(Assurez-vous que Catchme n'avait rien trouvé lors de la recherche)


*** Suppression avec sauvegardes résultats GenericNaviSearch ***

* Suppression dans "C:\WINDOWS\System32" *


* Suppression dans "C:\Documents and Settings\ciappui\impost~1\datiap~1" *


* Suppression dans "C:\DOCUME~1\ADMINI~1\impost~1\datiap~1" *


*** Suppression dossiers dans "C:\WINDOWS" ***


*** Suppression dossiers dans "C:\Programmi" ***


*** Suppression dossiers dans "C:\Documents and Settings\All Users\menuav~1\progra~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\All Users\menuav~1" ***


*** Suppression dossiers dans "c:\docume~1\alluse~1\datiap~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\ciappui\datiap~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\datiap~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\ciappui\impost~1\datiap~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\impost~1\datiap~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\ciappui\menuav~1\progra~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\menuav~1\progra~1" ***



*** Suppression fichiers ***


*** Suppression fichiers temporaires ***

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\ciappui\impost~1\Temp effectué !

*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Suppression avec sauvegardes nouveaux fichiers Instant Access :

2)Recherche, création sauvegardes et suppression Heuristique :


* Dans "C:\WINDOWS\system32" *


C:\WINDOWS\prefetch\sgwokau*.pf trouvé !
Copie C:\WINDOWS\prefetch\sgwokau*.pf réalisée avec succès !
C:\WINDOWS\prefetch\sgwokau*.pf supprimé !


* Dans "C:\Documents and Settings\ciappui\impost~1\datiap~1" *


sgwokau.exe trouvé !
Copie sgwokau.exe réalisée avec succès !
sgwokau.exe supprimé !

sgwokau.dat trouvé !
Copie sgwokau.dat réalisée avec succès !
sgwokau.dat supprimé !

sgwokau_nav.dat trouvé !
Copie sgwokau_nav.dat réalisée avec succès !
sgwokau_nav.dat supprimé !

sgwokau_navps.dat trouvé !
Copie sgwokau_navps.dat réalisée avec succès !
sgwokau_navps.dat supprimé !


* Dans "C:\DOCUME~1\ADMINI~1\impost~1\datiap~1" *



*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok


*** Certificats ***

Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltdt absent !

*** Recherche autres dossiers et fichiers connus ***

C:\WINDOWS\system32\fNUtDcdd.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !


*** Nettoyage terminé le 04.02.2009 à 22:26:04.56 ***

merci d'avvance
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 36
toptitbal Messages postés 25709 Date d'inscription samedi 8 juillet 2006 Statut Contributeur sécurité Dernière intervention 4 mars 2010 2 228
4 févr. 2009 à 22:32
OK
Fais un nouvel Hijackthis stp.
0
Réponse 6 / 36
sussi Messages postés 2190 Date d'inscription lundi 5 mai 2008 Statut Membre Dernière intervention 5 mars 2014 215
4 févr. 2009 à 22:35
re voici le raport:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:34, on 04.02.2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Programmi\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\notepad.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
E:\WlanCU.exe
C:\Programmi\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\ciappui\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2102507
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
R3 - URLSearchHook: PHPNukeIT Toolbar - {2c965f3f-8efd-4bfc-a2c5-1672845fdbbf} - C:\Programmi\PHPNukeIT\tbPHPN.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Programmi\AskBarDis\bar\bin\askBar.dll
O2 - BHO: PHPNukeIT Toolbar - {2c965f3f-8efd-4bfc-a2c5-1672845fdbbf} - C:\Programmi\PHPNukeIT\tbPHPN.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Programmi\AVG\AVG8\avgssie.dll
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\FILECO~1\SYMANT~1\IDS\IPSBHO.dll (file missing)
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\Programmi\AVG\AVG8\avgtoolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programmi\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\Programmi\AVG\AVG8\avgtoolbar.dll
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Programmi\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: PHPNukeIT Toolbar - {2c965f3f-8efd-4bfc-a2c5-1672845fdbbf} - C:\Programmi\PHPNukeIT\tbPHPN.dll
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Picasa Media Detector] C:\Programmi\Picasa2\PicasaMediaDetector
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = E:\WORD\Office\OSA9.EXE
O4 - Global Startup: STK014 PNP Monitor.lnk = ?
O4 - Global Startup: Wireless Configuration Utility.lnk = E:\WlanCU.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Programmi\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Programmi\ma-config.com\maconfservice.exe
0
Réponse 7 / 36
toptitbal Messages postés 25709 Date d'inscription samedi 8 juillet 2006 Statut Contributeur sécurité Dernière intervention 4 mars 2010 2 228
4 févr. 2009 à 22:36
Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.

https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2

* Lance l'installation du programme en exécutant le fichier téléchargé.
* Double-clique maintenant sur le raccourci de Toolbar-S&D.
* Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
* Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
* Poste le rapport généré. (C:\TB.txt)
0
Réponse 8 / 36
sussi Messages postés 2190 Date d'inscription lundi 5 mai 2008 Statut Membre Dernière intervention 5 mars 2014 215
4 févr. 2009 à 22:41
re voici le raport.


-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Processore Intel Pentium III )
BIOS : PhoenixBIOS 4.0 Release 6.0
USER : ciappui ( Administrator )
BOOT : Normal boot
Antivirus : AVG Anti-Virus Free 8.0 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:6 Go (Free:0 Go)
E:\ (Local Disk) - NTFS - Total:2 Go (Free:2 Go)
F:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 04.02.2009|22:39 )

-----------\\ Recherche de Fichiers / Dossiers ...

C:\Programmi\AskBarDis
C:\Programmi\AskBarDis\bar
C:\Programmi\AskBarDis\unins000.dat
C:\Programmi\AskBarDis\unins000.exe
C:\Programmi\AskBarDis\bar\bin
C:\Programmi\AskBarDis\bar\Cache
C:\Programmi\AskBarDis\bar\History
C:\Programmi\AskBarDis\bar\Settings
C:\Programmi\AskBarDis\bar\bin\askBar.dll
C:\Programmi\AskBarDis\bar\bin\askPopStp.dll
C:\Programmi\AskBarDis\bar\bin\psvince.dll
C:\Programmi\AskBarDis\bar\Cache\0044AF68
C:\Programmi\AskBarDis\bar\Cache\0044CEFA.bin
C:\Programmi\AskBarDis\bar\Cache\0044DD2D.bin
C:\Programmi\AskBarDis\bar\Cache\files.ini
C:\Programmi\AskBarDis\bar\History\search
C:\Programmi\AskBarDis\bar\Settings\config.dat
C:\Programmi\AskBarDis\bar\Settings\config.dat.bak
C:\Programmi\AskBarDis\bar\Settings\prevcfg.htm
C:\Programmi\AskBarDis\bar\Settings\prevCfg2.htm

-----------\\ Extensions

(ciappui) - {E9A1DEE0-C623-4439-8932-001E7D17607D} => ajtoolbar


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="http://search.conduit.com?SearchSource=10&ctid=CT2102507"
"Url"="http://go.microsoft.com/fwlink/?LinkId=75721"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"


--------------------\\ Recherche d'autres infections

C:\WINDOWS\system32\fNUtDcdd.ini
C:\WINDOWS\system32\fNUtDcdd.ini2
[b]==> VUNDO <==/b

--------------------\\ ROOTKIT !!

Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\TDSSserv]




1 - "C:\ToolBar SD\TB_1.txt" - 04.02.2009|22:40 - Option : [1]

-----------\\ Fin du rapport a 22:40:35.01
0
Réponse 9 / 36
toptitbal Messages postés 25709 Date d'inscription samedi 8 juillet 2006 Statut Contributeur sécurité Dernière intervention 4 mars 2010 2 228
4 févr. 2009 à 22:45
Relance Toolbar-S&D en double-cliquant sur le raccourci. Tape sur "2" puis valide en appuyant sur "Entrée".

! Ne ferme pas la fenêtre lors de la suppression !

Un rapport sera généré, poste son contenu ici.

NOTE : Si ton Bureau ne réapparait pas, appuie simultanément sur Ctrl+Alt+Suppr pour ouvrir le Gestionnaire des tâches.
Rends-toi sur l'onglet "Processus". Clique en haut à gauche sur Fichier et choisis "Exécuter..."
Tape explorer puis valide.


Ensuite, si tu veux bien, on fera la suite demain, tu as d'autres problèmes beaucoup plus sérieux :

--------------------\\ Recherche d'autres infections

C:\WINDOWS\system32\fNUtDcdd.ini
C:\WINDOWS\system32\fNUtDcdd.ini2
[b]==> VUNDO <==/b

--------------------\\ ROOTKIT !!

Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\TDSSserv]
0
Réponse 10 / 36
sussi Messages postés 2190 Date d'inscription lundi 5 mai 2008 Statut Membre Dernière intervention 5 mars 2014 215
4 févr. 2009 à 23:02
re bonsoir et merci beaucoup ,

le sd toolbar ne donne aucun rapport je ne sais pas a qua cest du

mais comme tu dis domain sa va le faire

cordialement

Sussi

tu dis que cest bien plus compliqué sa veut dire qua??
0
Réponse 11 / 36
sussi Messages postés 2190 Date d'inscription lundi 5 mai 2008 Statut Membre Dernière intervention 5 mars 2014 215
4 févr. 2009 à 23:11
rebonsoir j'ai du louper un truc voici le raport


-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Processore Intel Pentium III )
BIOS : PhoenixBIOS 4.0 Release 6.0
USER : ciappui ( Administrator )
BOOT : Normal boot
Antivirus : AVG Anti-Virus Free 8.0 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:6 Go (Free:0 Go)
E:\ (Local Disk) - NTFS - Total:2 Go (Free:2 Go)
F:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( 04.02.2009|23:06 )

-----------\\ SUPPRESSION

Supprime! - C:\Programmi\AskBarDis\bar
Supprime! - C:\Programmi\AskBarDis\unins000.dat
Supprime! - C:\Programmi\AskBarDis\unins000.exe
Supprime! - C:\Programmi\AskBarDis

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ Extensions

(ciappui) - {E9A1DEE0-C623-4439-8932-001E7D17607D} => ajtoolbar


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="http://search.conduit.com?SearchSource=10&ctid=CT2102507"
"Url"="http://go.microsoft.com/fwlink/?LinkId=75721"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/"


--------------------\\ Recherche d'autres infections

C:\WINDOWS\system32\fNUtDcdd.ini
C:\WINDOWS\system32\fNUtDcdd.ini2
[b]==> VUNDO <==/b

--------------------\\ ROOTKIT !!

Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\TDSSserv]




1 - "C:\ToolBar SD\TB_1.txt" - 04.02.2009|22:40 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 04.02.2009|23:08 - Option : [2]

-----------\\ Fin du rapport a 23:08:49.20

si tu veux a domain

cordialement

Sussi
0
Réponse 12 / 36
toptitbal Messages postés 25709 Date d'inscription samedi 8 juillet 2006 Statut Contributeur sécurité Dernière intervention 4 mars 2010 2 228
5 févr. 2009 à 10:32
OK, on va s'attaquer au plus dur maintenant :

Télécharge combofix (par sUBs) ici :

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

et enregistre-le sur le bureau.

déconnecte-toi d'internet et ferme toutes tes applications.

désactive tes protections (antivirus, parefeu, garde en temps réel de l'antispyware)


double-clique sur combofix.exe et suis les instructions

à la fin, il va produire un rapport C:\ComboFix.txt

réactive ton parefeu, ton antivirus, la garde de ton antispyware

copie/colle le rapport C:\ComboFix.txt dans ta prochaine réponse.

Attention, n'utilise pas ta souris ni ton clavier (ni un autre système de pointage) pendant que le programme tourne. Cela pourrait figer l'ordi.

Tuto :

https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix
0
Réponse 13 / 36
sussi Messages postés 2190 Date d'inscription lundi 5 mai 2008 Statut Membre Dernière intervention 5 mars 2014 215
5 févr. 2009 à 15:29
Bonjour, j'ai un petit probléme:je ne sais pas comment desactiver AVG???

cordialement

Sussi
0
toptitbal Messages postés 25709 Date d'inscription samedi 8 juillet 2006 Statut Contributeur sécurité Dernière intervention 4 mars 2010 2 228
5 févr. 2009 à 15:39
Je ne le connais pas mais j'ai trouvé cela sur leur site :

Si vous avez besoin de désactiver temporairement votre programme AVG Anti-Virus (pour installer des pilotes pour un nouveau matériel, par exemple), contentez-vous de désactiver le Bouclier résident AVG.

Voici comment procéder :

Lancez le composant Centre de contrôle AVG (Démarrer -> Programmes -> AVG 7.5 -> Centre de contrôle AVG)
Cliquez deux fois sur le composant Bouclier résident.
Désélectionnez la case Activer la protection Bouclier résident AVG.
Enregistrez ces paramètres à l'aide du bouton OK.
0
Réponse 14 / 36
sussi Messages postés 2190 Date d'inscription lundi 5 mai 2008 Statut Membre Dernière intervention 5 mars 2014 215
5 févr. 2009 à 15:40
re cest bon j'ai reussi

cordialement

sussi
0
Réponse 15 / 36
sussi Messages postés 2190 Date d'inscription lundi 5 mai 2008 Statut Membre Dernière intervention 5 mars 2014 215
5 févr. 2009 à 16:16
Re Bonjour,merci pour l'explication.

j'ai donc fait se que vous avez dit de faire j'espaire que le raport est complet

le pc s'etait figé sur le bloc note.voici le raport:

ComboFix 09-02-04.04 - ciappui 2009-02-05 15:44:22.2 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.41.1040.18.255.69 [GMT 1:00]
Running from: c:\documents and settings\ciappui\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning disabled* (Updated)
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\fNUtDcdd.ini
c:\windows\system32\fNUtDcdd.ini2

.
((((((((((((((((((((((((( Files Created from 2009-01-05 to 2009-02-05 )))))))))))))))))))))))))))))))
.

2009-02-05 15:41 . 2009-02-05 15:42 <DIR> d----c--- C:\32788R22FWJFW
2009-02-04 22:38 . 2009-02-04 23:08 <DIR> d----c--- C:\ToolBar SD
2009-02-04 21:44 . 2009-02-04 22:26 <DIR> d-------- c:\programmi\Navilog1
2009-02-03 21:04 . 2009-02-03 21:04 104 --a--c--- C:\Risorse del computer.lnk
2009-01-30 18:52 . 2009-01-30 18:52 <DIR> d-------- c:\documents and settings\ciappui\Dati applicazioni\vlc
2009-01-18 19:07 . 2009-01-18 19:07 <DIR> d-------- c:\windows\system32\IOSUBSYS
2009-01-14 19:56 . 2009-01-25 13:50 <DIR> d-------- c:\programmi\Malwarebytes' Anti-Malware
2009-01-14 19:56 . 2009-01-14 16:11 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2009-01-14 19:56 . 2009-01-14 16:11 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2009-01-13 19:50 . 2009-01-25 14:02 <DIR> d-------- c:\programmi\File comuni\Real
2009-01-12 11:05 . 2009-01-12 11:05 <DIR> d-------- c:\windows\STK014
2009-01-12 11:05 . 2009-01-13 22:35 <DIR> d-------- c:\programmi\STK014
2009-01-12 11:05 . 2003-07-15 11:25 99,476 --a------ c:\windows\system32\drivers\STK014W2.sys
2009-01-12 11:05 . 2003-07-11 12:30 40,960 --a------ c:\windows\system32\STK014P.ax
2009-01-12 11:05 . 2003-07-15 11:25 32,140 --a------ c:\windows\system32\drivers\STK014W1.sys
2009-01-12 10:12 . 2009-01-12 10:12 18,788 --ah----- c:\windows\system32\mlfcache.dat
2009-01-11 20:38 . 2009-02-04 14:48 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Google Updater
2009-01-11 20:37 . 2009-01-18 19:06 <DIR> d-------- c:\programmi\Google
2009-01-05 23:33 . 2009-01-05 23:33 3,751,995 --a------ c:\windows\system32\GPhotos.scr

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-03 20:21 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\avg8
2009-02-03 20:18 325,128 ----a-w c:\windows\system32\drivers\avgldx86.sys
2009-02-03 20:18 107,272 ----a-w c:\windows\system32\drivers\avgtdix.sys
2009-02-03 20:18 10,520 ----a-w c:\windows\system32\avgrsstx.dll
2009-01-31 08:22 --------- d-----w c:\programmi\DivX
2009-01-30 21:33 --------- d-----w c:\documents and settings\ciappui\Dati applicazioni\AVGTOOLBAR
2009-01-12 23:28 1,781 ----a-w c:\windows\OEM0.tmp
2009-01-12 10:05 --------- d--h--w c:\programmi\InstallShield Installation Information
2009-01-12 09:54 --------- d-----w c:\documents and settings\ciappui\Dati applicazioni\ArcSoft
2008-12-28 22:51 --------- d-----w c:\programmi\CCleaner
2008-12-27 14:48 --------- d-----w c:\programmi\Java
2008-12-27 14:44 --------- d-----w c:\programmi\File comuni\Java
2008-12-26 15:58 --------- d-----w c:\programmi\ArcSoft
2008-12-25 12:56 --------- d-----w c:\programmi\ma-config.com
2008-12-25 12:56 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\ma-config.com
2008-12-24 18:07 --------- d-----w c:\documents and settings\ciappui\Dati applicazioni\Odyssee_Sib
2008-12-20 11:10 --------- d-----w c:\programmi\File comuni\Adobe
2008-12-19 19:48 --------- d-----w c:\programmi\PHPNukeIT
2008-12-19 19:48 --------- d-----w c:\programmi\Conduit
2008-12-14 16:06 --------- d-----w c:\programmi\Foxit Software
2008-12-14 16:06 --------- d-----w c:\documents and settings\ciappui\Dati applicazioni\Foxit
2008-12-11 11:57 333,184 ----a-w c:\windows\system32\drivers\srv.sys
2008-12-11 00:33 86,016 ----a-w c:\windows\system32\dpl100.dll
2008-12-11 00:33 200,704 ----a-w c:\windows\system32\dtu100.dll
.

((((((((((((((((((((((((((((( snapshot@2008-10-04_13.51.06.33 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-09-15 15:14:09 1,846,912 ----a-w c:\windows\$hf_mig$\KB954211\SP2QFE\win32k.sys
+ 2008-09-15 15:24:38 1,846,400 ----a-w c:\windows\$hf_mig$\KB954211\SP3GDR\win32k.sys
+ 2008-09-15 15:19:00 1,847,040 ----a-w c:\windows\$hf_mig$\KB954211\SP3QFE\win32k.sys
+ 2007-11-30 12:39:40 18,808 ----a-w c:\windows\$hf_mig$\KB954211\spmsg.dll
+ 2007-11-30 12:39:40 233,848 ----a-w c:\windows\$hf_mig$\KB954211\spuninst.exe
+ 2007-11-30 12:39:38 26,488 ----a-w c:\windows\$hf_mig$\KB954211\update\spcustom.dll
+ 2008-07-09 07:42:38 763,768 ----a-w c:\windows\$hf_mig$\KB954211\update\update.exe
+ 2007-11-30 12:39:40 402,296 ----a-w c:\windows\$hf_mig$\KB954211\update\updspapi.dll
+ 2008-10-03 09:56:46 247,326 ----a-w c:\windows\$hf_mig$\KB954600\SP2QFE\strmdll.dll
+ 2008-10-03 10:02:46 247,326 ----a-w c:\windows\$hf_mig$\KB954600\SP3GDR\strmdll.dll
+ 2008-10-03 09:50:03 247,326 ----a-w c:\windows\$hf_mig$\KB954600\SP3QFE\strmdll.dll
+ 2007-11-30 12:39:40 18,808 ----a-w c:\windows\$hf_mig$\KB954600\spmsg.dll
+ 2007-11-30 12:39:40 233,848 ----a-w c:\windows\$hf_mig$\KB954600\spuninst.exe
+ 2007-11-30 12:39:38 26,488 ----a-w c:\windows\$hf_mig$\KB954600\update\spcustom.dll
+ 2007-11-30 12:39:40 763,768 ----a-w c:\windows\$hf_mig$\KB954600\update\update.exe
+ 2007-11-30 12:39:40 402,296 ----a-w c:\windows\$hf_mig$\KB954600\update\updspapi.dll
+ 2008-09-04 16:33:16 1,106,944 ----a-w c:\windows\$hf_mig$\KB955069\SP2QFE\msxml3.dll
+ 2008-09-04 17:15:03 1,106,944 ----a-w c:\windows\$hf_mig$\KB955069\SP3GDR\msxml3.dll
+ 2008-09-04 17:12:24 1,106,944 ----a-w c:\windows\$hf_mig$\KB955069\SP3QFE\msxml3.dll
+ 2007-11-30 11:19:29 18,808 ----a-w c:\windows\$hf_mig$\KB955069\spmsg.dll
+ 2007-11-30 11:19:29 233,848 ----a-w c:\windows\$hf_mig$\KB955069\spuninst.exe
+ 2007-11-30 11:19:25 26,488 ----a-w c:\windows\$hf_mig$\KB955069\update\spcustom.dll
+ 2007-11-30 12:39:40 763,768 ----a-w c:\windows\$hf_mig$\KB955069\update\update.exe
+ 2008-07-09 12:12:46 402,296 ----a-w c:\windows\$hf_mig$\KB955069\update\updspapi.dll
+ 2008-10-22 09:47:25 62,976 ----a-w c:\windows\$hf_mig$\KB955839\SP2QFE\tzchange.exe
+ 2008-10-23 10:06:59 62,976 ----a-w c:\windows\$hf_mig$\KB955839\SP3GDR\tzchange.exe
+ 2008-10-23 10:17:49 62,976 ----a-w c:\windows\$hf_mig$\KB955839\SP3QFE\tzchange.exe
+ 2007-11-30 12:39:40 18,808 ----a-w c:\windows\$hf_mig$\KB955839\spmsg.dll
+ 2007-11-30 12:39:40 233,848 ----a-w c:\windows\$hf_mig$\KB955839\spuninst.exe
+ 2007-11-30 12:39:38 26,488 ----a-w c:\windows\$hf_mig$\KB955839\update\spcustom.dll
+ 2007-11-30 12:39:40 763,768 ----a-w c:\windows\$hf_mig$\KB955839\update\update.exe
+ 2007-11-30 12:39:40 402,296 ----a-w c:\windows\$hf_mig$\KB955839\update\updspapi.dll
+ 2008-08-26 09:08:35 124,928 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\advpack.dll
+ 2008-08-26 09:08:36 347,136 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\dxtmsft.dll
+ 2008-08-26 09:08:36 214,528 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\dxtrans.dll
+ 2008-08-26 09:08:36 132,608 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\extmgr.dll
+ 2008-08-26 09:08:36 63,488 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\icardie.dll
+ 2008-08-25 08:43:21 70,656 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ie4uinit.exe
+ 2008-08-26 09:08:36 153,088 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieakeng.dll
+ 2008-08-26 09:08:36 230,400 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieaksie.dll
+ 2008-08-23 05:54:50 161,792 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieakui.dll
+ 2007-04-17 09:32:38 2,455,488 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieapfltr.dat
+ 2008-08-26 09:08:36 380,928 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieapfltr.dll
+ 2008-08-26 09:08:36 388,608 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\iedkcs32.dll
+ 2008-10-03 16:21:53 6,068,224 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieframe.dll
+ 2008-08-26 09:08:39 44,544 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\iernonce.dll
+ 2008-08-26 09:08:39 267,776 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\iertutil.dll
+ 2008-08-25 08:43:21 13,824 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieudinit.exe
+ 2008-08-23 05:56:16 635,848 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\iexplore.exe
+ 2008-08-26 09:08:40 27,648 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\jsproxy.dll
+ 2008-08-26 09:08:40 459,264 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\msfeeds.dll
+ 2008-08-26 09:08:40 52,224 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\msfeedsbs.dll
+ 2008-08-26 09:08:43 3,594,752 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\mshtml.dll
+ 2008-08-26 09:08:43 477,696 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\mshtmled.dll
+ 2008-08-26 09:08:43 193,024 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\msrating.dll
+ 2008-08-26 09:08:44 671,232 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\mstime.dll
+ 2008-08-26 09:08:44 102,912 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\occache.dll
+ 2008-08-26 09:08:44 44,544 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\pngfilt.dll
+ 2008-08-26 09:08:44 105,984 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\url.dll
+ 2008-08-26 09:08:44 1,162,752 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\urlmon.dll
+ 2008-08-26 09:08:44 233,472 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\webcheck.dll
+ 2008-08-26 09:08:45 827,904 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\wininet.dll
+ 2007-03-06 01:48:10 15,584 ----a-w c:\windows\$hf_mig$\KB956390-IE7\spmsg.dll
+ 2007-03-06 01:48:15 215,776 ----a-w c:\windows\$hf_mig$\KB956390-IE7\spuninst.exe
+ 2007-03-06 01:48:08 22,752 ----a-w c:\windows\$hf_mig$\KB956390-IE7\update\spcustom.dll
+ 2007-03-06 01:48:33 724,192 ----a-w c:\windows\$hf_mig$\KB956390-IE7\update\update.exe
+ 2007-03-06 01:49:24 390,880 ----a-w c:\windows\$hf_mig$\KB956390-IE7\update\updspapi.dll
+ 2007-11-30 12:39:40 18,808 ----a-w c:\windows\$hf_mig$\KB956391\spmsg.dll
+ 2007-11-30 12:39:40 233,848 ----a-w c:\windows\$hf_mig$\KB956391\spuninst.exe
+ 2007-11-30 12:39:38 26,488 ----a-w c:\windows\$hf_mig$\KB956391\update\spcustom.dll
+ 2007-11-30 12:39:40 763,768 ----a-w c:\windows\$hf_mig$\KB956391\update\update.exe
+ 2007-11-30 12:39:40 402,296 ----a-w c:\windows\$hf_mig$\KB956391\update\updspapi.dll
+ 2008-10-23 12:51:25 284,160 ----a-w c:\windows\$hf_mig$\KB956802\SP2QFE\gdi32.dll
+ 2008-10-23 12:36:14 286,720 ----a-w c:\windows\$hf_mig$\KB956802\SP3GDR\gdi32.dll
+ 2008-10-23 12:43:04 286,720 ----a-w c:\windows\$hf_mig$\KB956802\SP3QFE\gdi32.dll
+ 2008-07-08 13:06:04 18,808 ----a-w c:\windows\$hf_mig$\KB956802\spmsg.dll
+ 2008-07-08 13:06:05 233,848 ----a-w c:\windows\$hf_mig$\KB956802\spuninst.exe
+ 2008-07-08 13:06:04 26,488 ----a-w c:\windows\$hf_mig$\KB956802\update\spcustom.dll
+ 2008-07-09 07:42:38 763,768 ----a-w c:\windows\$hf_mig$\KB956802\update\update.exe
+ 2008-07-09 07:42:45 402,296 ----a-w c:\windows\$hf_mig$\KB956802\update\updspapi.dll
+ 2008-08-14 09:48:52 138,368 ----a-w c:\windows\$hf_mig$\KB956803\SP2QFE\afd.sys
+ 2008-08-14 10:04:36 138,496 ----a-w c:\windows\$hf_mig$\KB956803\SP3GDR\afd.sys
+ 2008-08-14 10:34:26 138,496 ----a-w c:\windows\$hf_mig$\KB956803\SP3QFE\afd.sys
+ 2007-11-30 11:19:29 18,808 ----a-w c:\windows\$hf_mig$\KB956803\spmsg.dll
+ 2007-11-30 11:19:29 233,848 ----a-w c:\windows\$hf_mig$\KB956803\spuninst.exe
+ 2007-11-30 11:19:25 26,488 ----a-w c:\windows\$hf_mig$\KB956803\update\spcustom.dll
+ 2007-11-30 11:19:30 763,768 ----a-w c:\windows\$hf_mig$\KB956803\update\update.exe
+ 2007-11-30 11:19:30 402,296 ----a-w c:\windows\$hf_mig$\KB956803\update\updspapi.dll
+ 2008-08-14 13:37:10 2,146,304 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntkrnlmp.exe
+ 2008-08-14 13:37:13 2,066,688 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntkrnlpa.exe
+ 2008-08-14 13:37:08 2,024,448 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntkrpamp.exe
+ 2008-08-14 13:37:11 2,189,696 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntoskrnl.exe
+ 2008-08-14 13:22:07 2,148,864 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrnlmp.exe
+ 2008-08-14 13:22:50 2,069,760 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrnlpa.exe
+ 2008-08-14 13:22:06 2,027,520 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrpamp.exe
+ 2008-08-14 13:22:50 2,192,896 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntoskrnl.exe
+ 2008-08-14 13:55:01 2,148,864 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrnlmp.exe
+ 2008-08-14 17:25:08 2,069,760 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrnlpa.exe
+ 2008-08-14 13:54:55 2,027,520 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrpamp.exe
+ 2008-08-14 17:25:04 2,192,896 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe
+ 2007-11-30 11:19:29 18,808 ----a-w c:\windows\$hf_mig$\KB956841\spmsg.dll
+ 2007-11-30 11:19:29 233,848 ----a-w c:\windows\$hf_mig$\KB956841\spuninst.exe
+ 2007-11-30 11:19:25 26,488 ----a-w c:\windows\$hf_mig$\KB956841\update\spcustom.dll
+ 2007-11-30 12:39:40 763,768 ----a-w c:\windows\$hf_mig$\KB956841\update\update.exe
+ 2008-07-09 07:42:45 402,296 ----a-w c:\windows\$hf_mig$\KB956841\update\updspapi.dll
+ 2008-08-28 10:35:33 333,056 ----a-w c:\windows\$hf_mig$\KB957095\SP2QFE\srv.sys
+ 2008-09-08 10:41:42 333,824 ----a-w c:\windows\$hf_mig$\KB957095\SP3GDR\srv.sys
+ 2008-09-08 11:37:19 333,824 ----a-w c:\windows\$hf_mig$\KB957095\SP3QFE\srv.sys
+ 2007-11-30 11:19:29 18,808 ----a-w c:\windows\$hf_mig$\KB957095\spmsg.dll
+ 2007-11-30 11:19:29 233,848 ----a-w c:\windows\$hf_mig$\KB957095\spuninst.exe
+ 2007-11-30 11:19:25 26,488 ----a-w c:\windows\$hf_mig$\KB957095\update\spcustom.dll
+ 2007-11-30 11:19:30 763,768 ----a-w c:\windows\$hf_mig$\KB957095\update\update.exe
+ 2007-11-30 11:19:30 402,296 ----a-w c:\windows\$hf_mig$\KB957095\update\updspapi.dll
+ 2008-10-24 11:25:29 455,936 ----a-w c:\windows\$hf_mig$\KB957097\SP2QFE\mrxsmb.sys
+ 2008-10-24 11:21:09 455,296 ----a-w c:\windows\$hf_mig$\KB957097\SP3GDR\mrxsmb.sys
+ 2008-10-24 11:41:11 455,936 ----a-w c:\windows\$hf_mig$\KB957097\SP3QFE\mrxsmb.sys
+ 2008-07-08 13:06:04 18,808 ----a-w c:\windows\$hf_mig$\KB957097\spmsg.dll
+ 2008-07-08 13:06:05 233,848 ----a-w c:\windows\$hf_mig$\KB957097\spuninst.exe
+ 2008-07-08 13:06:04 26,488 ----a-w c:\windows\$hf_mig$\KB957097\update\spcustom.dll
+ 2008-07-08 13:06:07 763,768 ----a-w c:\windows\$hf_mig$\KB957097\update\update.exe
+ 2008-07-08 13:06:15 402,296 ----a-w c:\windows\$hf_mig$\KB957097\update\updspapi.dll
+ 2008-10-16 19:32:32 124,928 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\advpack.dll
+ 2008-10-16 19:32:32 347,136 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\dxtmsft.dll
+ 2008-10-16 19:32:32 214,528 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\dxtrans.dll
+ 2008-10-16 19:32:33 132,608 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\extmgr.dll
+ 2008-10-16 19:32:33 63,488 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\icardie.dll
+ 2008-10-16 12:46:08 70,656 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ie4uinit.exe
+ 2008-10-16 19:32:33 153,088 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ieakeng.dll
+ 2008-10-16 19:32:33 230,400 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ieaksie.dll
+ 2008-10-15 06:33:26 161,792 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ieakui.dll
+ 2007-04-17 09:32:38 2,455,488 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ieapfltr.dat
+ 2008-10-16 19:32:33 380,928 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ieapfltr.dll
+ 2008-10-16 19:32:33 388,608 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\iedkcs32.dll
+ 2008-10-16 19:32:35 6,068,224 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ieframe.dll
+ 2008-10-16 19:32:35 44,544 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\iernonce.dll
+ 2008-10-16 19:32:35 267,776 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\iertutil.dll
+ 2008-10-16 12:46:08 13,824 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ieudinit.exe
+ 2008-10-15 06:34:58 633,632 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\iexplore.exe
+ 2008-10-16 19:32:35 27,648 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\jsproxy.dll
+ 2008-10-16 19:32:35 459,264 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\msfeeds.dll
+ 2008-10-16 19:32:35 52,224 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\msfeedsbs.dll
+ 2008-10-16 19:32:37 3,595,264 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\mshtml.dll
+ 2008-10-16 19:32:37 477,696 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\mshtmled.dll
+ 2008-10-16 19:32:37 193,024 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\msrating.dll
+ 2008-10-16 19:32:37 671,232 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\mstime.dll
+ 2008-10-16 19:32:37 102,912 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\occache.dll
+ 2008-10-16 19:32:37 44,544 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\pngfilt.dll
+ 2008-10-16 19:32:37 105,984 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\url.dll
+ 2008-10-16 19:32:37 1,163,264 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\urlmon.dll
+ 2008-10-16 19:32:37 233,472 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\webcheck.dll
+ 2008-10-16 19:32:38 827,904 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\wininet.dll
+ 2007-03-06 01:48:09 15,584 ----a-w c:\windows\$hf_mig$\KB958215-IE7\spmsg.dll
+ 2007-03-06 01:48:14 215,776 ----a-w c:\windows\$hf_mig$\KB958215-IE7\spuninst.exe
+ 2007-03-06 01:48:07 22,752 ----a-w c:\windows\$hf_mig$\KB958215-IE7\update\spcustom.dll
+ 2007-03-06 01:48:33 724,192 ----a-w c:\windows\$hf_mig$\KB958215-IE7\update\update.exe
+ 2007-03-06 01:49:24 390,880 ----a-w c:\windows\$hf_mig$\KB958215-IE7\update\updspapi.dll
+ 2008-10-15 16:54:15 339,456 ----a-w c:\windows\$hf_mig$\KB958644\SP2QFE\netapi32.dll
+ 2008-10-15 16:36:15 337,408 ----a-w c:\windows\$hf_mig$\KB958644\SP3GDR\netapi32.dll
+ 2008-10-15 16:27:28 339,456 ----a-w c:\windows\$hf_mig$\KB958644\SP3QFE\netapi32.dll
+ 2007-11-30 11:19:29 18,808 ----a-w c:\windows\$hf_mig$\KB958644\spmsg.dll
+ 2007-11-30 11:19:29 233,848 ----a-w c:\windows\$hf_mig$\KB958644\spuninst.exe
+ 2007-11-30 11:19:25 26,488 ----a-w c:\windows\$hf_mig$\KB958644\update\spcustom.dll
+ 2007-11-30 11:19:30 763,768 ----a-w c:\windows\$hf_mig$\KB958644\update\update.exe
+ 2007-11-30 11:19:30 402,296 ----a-w c:\windows\$hf_mig$\KB958644\update\updspapi.dll
+ 2008-12-13 06:27:37 3,594,752 ----a-w c:\windows\$hf_mig$\KB960714-IE7\SP2QFE\mshtml.dll
+ 2007-03-06 01:48:09 15,584 ----a-w c:\windows\$hf_mig$\KB960714-IE7\spmsg.dll
+ 2007-03-06 01:48:14 215,776 ----a-w c:\windows\$hf_mig$\KB960714-IE7\spuninst.exe
+ 2007-03-06 01:48:07 22,752 ----a-w c:\windows\$hf_mig$\KB960714-IE7\update\spcustom.dll
+ 2007-03-06 01:48:32 724,192 ----a-w c:\windows\$hf_mig$\KB960714-IE7\update\update.exe
+ 2007-03-06 01:49:24 390,880 ----a-w c:\windows\$hf_mig$\KB960714-IE7\update\updspapi.dll
+ 2005-10-12 23:12:26 213,216 -c----w c:\windows\$NtUninstallKB926239$\spuninst\spuninst.exe
+ 2005-10-12 23:12:33 371,424 -c----w c:\windows\$NtUninstallKB926239$\spuninst\updspapi.dll
+ 2006-10-18 20:47:16 414,208 -c----w c:\windows\$NtUninstallKB929399$\msscp.dll
+ 2005-06-28 09:23:26 213,216 -c----w c:\windows\$NtUninstallKB929399$\spuninst\spuninst.exe
+ 2005-06-28 09:23:54 371,424 -c----w c:\windows\$NtUninstallKB929399$\spuninst\updspapi.dll
+ 2005-06-28 09:23:36 215,776 -c----w c:\windows\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe
+ 2005-06-28 09:23:54 371,424 -c----w c:\windows\$NtUninstallKB936782_WMP11$\spuninst\updspapi.dll
+ 2006-10-18 20:47:20 10,834,432 -c----w c:\windows\$NtUninstallKB936782_WMP11$\wmp.dll
+ 2005-06-28 09:23:36 215,776 -c----w c:\windows\$NtUninstallKB939683$\spuninst\spuninst.exe
+ 2005-06-28 09:23:54 371,424 -c----w c:\windows\$NtUninstallKB939683$\spuninst\updspapi.dll
+ 2006-11-03 08:58:34 317,440 -c----w c:\windows\$NtUninstallKB939683$\unregmp2.exe
+ 2006-10-18 19:03:58 100,864 -c----w c:\windows\$NtUninstallKB952069_WM9$\logagent.exe
+ 2007-07-27 06:35:58 233,848 -c----w c:\windows\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe
+ 2007-07-27 08:41:48 382,840 -c----w c:\windows\$NtUninstallKB952069_WM9$\spuninst\updspapi.dll
+ 2006-10-18 20:47:20 937,984 -c----w c:\windows\$NtUninstallKB952069_WM9$\wmnetmgr.dll
+ 2006-10-18 20:47:22 2,450,944 -c----w c:\windows\$NtUninstallKB952069_WM9$\wmvcore.dll
+ 2007-07-27 07:35:58 233,848 -c----w c:\windows\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe
+ 2007-07-27 09:41:48 382,840 -c----w c:\windows\$NtUninstallKB954154_WM11$\spuninst\updspapi.dll
+ 2006-10-18 20:47:20 295,936 -c----w c:\windows\$NtUninstallKB954154_WM11$\wmpeffects.dll
+ 2007-11-30 12:39:40 233,848 -c----w c:\windows\$NtUninstallKB954211$\spuninst\spuninst.exe
+ 2007-11-30 12:39:40 402,296 -c----w c:\windows\$NtUninstallKB954211$\spuninst\updspapi.dll
+ 2008-03-20 08:06:49 1,845,248 -c----w c:\windows\$NtUninstallKB954211$\win32k.sys
+ 2007-11-30 12:39:40 233,848 -c----w c:\windows\$NtUninstallKB954600$\spuninst\spuninst.exe
+ 2007-11-30 12:39:40 402,296 -c----w c:\windows\$NtUninstallKB954600$\spuninst\updspapi.dll
+ 2006-08-24 12:19:52 246,814 -c----w c:\windows\$NtUninstallKB954600$\strmdll.dll
+ 2007-06-26 06:08:38 1,104,896 -c----w c:\windows\$NtUninstallKB955069$\msxml3.dll
+ 2007-11-30 11:19:29 233,848 -c----w c:\windows\$NtUninstallKB955069$\spuninst\spuninst.exe
+ 2008-07-09 12:12:46 402,296 -c----w c:\windows\$NtUninstallKB955069$\spuninst\updspapi.dll
+ 2007-11-30 12:39:40 233,848 -c----w c:\windows\$NtUninstallKB955839$\spuninst\spuninst.exe
+ 2007-11-30 12:39:40 402,296 -c----w c:\windows\$NtUninstallKB955839$\spuninst\updspapi.dll
+ 2008-07-14 11:09:18 62,976 -c----w c:\windows\$NtUninstallKB955839$\tzchange.exe
+ 2007-11-30 12:39:40 233,848 -c----w c:\windows\$NtUninstallKB956391$\spuninst\spuninst.exe
+ 2007-11-30 12:39:40 402,296 -c----w c:\windows\$NtUninstallKB956391$\spuninst\updspapi.dll
+ 2008-02-20 06:50:40 282,624 -c----w c:\windows\$NtUninstallKB956802$\gdi32.dll
+ 2008-07-08 13:06:05 233,848 -c----w c:\windows\$NtUninstallKB956802$\spuninst\spuninst.exe
+ 2008-07-09 07:42:45 402,296 -c----w c:\windows\$NtUninstallKB956802$\spuninst\updspapi.dll
+ 2008-06-20 10:44:38 138,368 -c----w c:\windows\$NtUninstallKB956803$\afd.sys
+ 2007-11-30 11:19:29 233,848 -c----w c:\windows\$NtUninstallKB956803$\spuninst\spuninst.exe
+ 2007-11-30 11:19:30 402,296 -c----w c:\windows\$NtUninstallKB956803$\spuninst\updspapi.dll
+ 2007-02-28 16:02:21 2,139,648 -c----w c:\windows\$NtUninstallKB956841$\ntkrnlmp.exe
+ 2007-02-28 16:02:36 2,061,312 -c----w c:\windows\$NtUninstallKB956841$\ntkrnlpa.exe
+ 2007-02-28 16:02:17 2,019,328 -c----w c:\windows\$NtUninstallKB956841$\ntkrpamp.exe
+ 2007-02-28 16:02:28 2,184,064 -c----w c:\windows\$NtUninstallKB956841$\ntoskrnl.exe
+ 2007-11-30 11:19:29 233,848 -c----w c:\windows\$NtUninstallKB956841$\spuninst\spuninst.exe
+ 2008-07-09 07:42:45 402,296 -c----w c:\windows\$NtUninstallKB956841$\spuninst\updspapi.dll
+ 2007-11-30 11:19:29 233,848 -c----w c:\windows\$NtUninstallKB957095$\spuninst\spuninst.exe
+ 2007-11-30 11:19:30 402,296 -c----w c:\windows\$NtUninstallKB957095$\spuninst\updspapi.dll
+ 2006-08-14 10:34:41 332,928 -c----w c:\windows\$NtUninstallKB957095$\srv.sys
+ 2006-05-05 09:41:45 453,120 -c----w c:\windows\$NtUninstallKB957097$\mrxsmb.sys
+ 2008-07-08 13:06:05 233,848 -c----w c:\windows\$NtUninstallKB957097$\spuninst\spuninst.exe
+ 2008-07-08 13:06:15 402,296 -c----w c:\windows\$NtUninstallKB957097$\spuninst\updspapi.dll
+ 2006-08-17 12:29:46 332,288 -c----w c:\windows\$NtUninstallKB958644$\netapi32.dll
+ 2007-11-30 11:19:29 233,848 -c----w c:\windows\$NtUninstallKB958644$\spuninst\spuninst.exe
+ 2007-11-30 11:19:30 402,296 -c----w c:\windows\$NtUninstallKB958644$\spuninst\updspapi.dll
+ 2006-09-25 16:58:48 221,488 -c----w c:\windows\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe
+ 2006-09-25 16:58:48 379,184 -c----w c:\windows\$NtUninstallMSCompPackV1$\spuninst\updspapi.dll
+ 2004-08-19 22:39:04 286,208 -c----w c:\windows\$NtUninstallWMFDist11$\blackbox.dll
+ 2004-08-19 22:39:06 159,232 -c----w c:\windows\$NtUninstallWMFDist11$\cewmdm.dll
+ 2004-08-19 22:39:51 695,296 -c----w c:\windows\$NtUninstallWMFDist11$\drmv2clt.dll
+ 2004-08-19 22:39:14 6,656 -c----w c:\windows\$NtUninstallWMFDist11$\laprxy.dll
+ 2004-08-19 22:39:37 103,936 -c----w c:\windows\$NtUninstallWMFDist11$\logagent.exe
+ 2004-08-19 22:39:15 310,272 -c----w c:\windows\$NtUninstallWMFDist11$\mp43dmod.dll
+ 2004-08-19 22:39:16 384,512 -c----w c:\windows\$NtUninstallWMFDist11$\mp4sdmod.dll
+ 2004-08-19 22:39:16 240,640 -c----w c:\windows\$NtUninstallWMFDist11$\mpg4dmod.dll
+ 2004-08-19 22:39:49 259,072 -c----w c:\windows\$NtUninstallWMFDist11$\msnetobj.dll
+ 2004-08-19 22:39:17 52,736 -c----w c:\windows\$NtUninstallWMFDist11$\mspmsnsv.dll
+ 2004-08-19 22:39:17 201,728 -c----w c:\windows\$NtUninstallWMFDist11$\mspmsp.dll
+ 2004-08-19 22:39:50 356,352 -c----w c:\windows\$NtUninstallWMFDist11$\msscp.dll
+ 2004-08-19 22:39:19 246,272 -c----w c:\windows\$NtUninstallWMFDist11$\mswmdm.dll
+ 2004-08-19 22:39:23 237,568 -c----w c:\windows\$NtUninstallWMFDist11$\qasf.dll
+ 2006-05-16 17:11:54 213,216 -c----w c:\windows\$NtUninstallWMFDist11$\spuninst\spuninst.exe
+ 2006-05-16 17:11:54 371,424 -c----w c:\windows\$NtUninstallWMFDist11$\spuninst\updspapi.dll
+ 2006-11-02 10:46:52 13,312 -c----w c:\windows\$NtUninstallWMFDist11$\spuninst\wpdinstallutil.dll
+ 2004-08-19 22:39:31 408,064 -c----w c:\windows\$NtUninstallWMFDist11$\wmadmod.dll
+ 2004-08-19 22:39:31 670,720 -c----w c:\windows\$NtUninstallWMFDist11$\wmadmoe.dll
+ 2007-10-25 09:00:50 230,912 -c----w c:\windows\$NtUninstallWMFDist11$\wmasf.dll
+ 2004-08-19 22:39:31 27,136 -c----w c:\windows\$NtUninstallWMFDist11$\wmdmlog.dll
+ 2004-08-19 22:39:31 23,552 -c----w c:\windows\$NtUninstallWMFDist11$\wmdmps.dll
+ 2004-08-19 22:39:31 151,552 -c----w c:\windows\$NtUninstallWMFDist11$\wmidx.dll
+ 2004-08-19 22:39:32 1,050,624 -c----w c:\windows\$NtUninstallWMFDist11$\wmnetmgr.dll
+ 2004-08-19 22:39:32 759,296 -c----w c:\windows\$NtUninstallWMFDist11$\wmsdmod.dll
+ 2004-08-19 22:39:32 1,119,744 -c----w c:\windows\$NtUninstallWMFDist11$\wmsdmoe2.dll
+ 2004-08-19 22:39:32 484,864 -c----w c:\windows\$NtUninstallWMFDist11$\wmspdmod.dll
+ 2004-08-19 22:39:32 896,512 -c----w c:\windows\$NtUninstallWMFDist11$\wmspdmoe.dll
+ 2007-10-25 09:01:10 2,109,440 -c----w c:\windows\$NtUninstallWMFDist11$\wmvcore.dll
+ 2004-08-19 22:39:32 809,984 -c----w c:\windows\$NtUninstallWMFDist11$\wmvdmod.dll
+ 2004-08-19 22:39:32 1,001,472 -c----w c:\windows\$NtUninstallWMFDist11$\wmvdmoe2.dll
+ 2004-08-19 22:37:43 8,704 -c----w c:\windows\$NtUninstallwmp11$\asferror.dll
+ 2004-08-19 22:39:16 368,640 -c----w c:\windows\$NtUninstallwmp11$\mpvis.dll
+ 2004-08-19 22:39:44 778,240 -c----w c:\windows\$NtUninstallwmp11$\setup_wm.exe
+ 2006-05-16 17:11:54 213,216 -c----w c:\windows\$NtUninstallwmp11$\spuninst\spuninst.exe
+ 2006-05-16 17:11:56 394,976 -c----w c:\windows\$NtUninstallwmp11$\spuninst\updspapi.dll
+ 2004-08-19 22:39:44 208,896 -c----w c:\windows\$NtUninstallwmp11$\unregmp2.exe
+ 2004-08-19 22:38:54 186,880 -c----w c:\windows\$NtUninstallwmp11$\wmerror.dll
+ 2007-04-30 01:22:16 4,734,976 -c----w c:\windows\$NtUninstallwmp11$\wmp.dll
+ 2004-08-19 22:39:32 114,688 -c----w c:\windows\$NtUninstallwmp11$\wmpasf.dll
+ 2004-08-19 22:39:32 98,304 -c----w c:\windows\$NtUninstallwmp11$\wmpband.dll
+ 2004-08-19 22:39:32 233,472 -c----w c:\windows\$NtUninstallwmp11$\wmpdxm.dll
+ 2004-08-19 22:39:45 73,728 -c----w c:\windows\$NtUninstallwmp11$\wmplayer.exe
+ 2004-08-19 22:38:55 2,973,696 -c----w c:\windows\$NtUninstallwmp11$\wmploc.dll
+ 2004-08-19 22:39:32 102,400 -c----w c:\windows\$NtUninstallwmp11$\wmpshell.dll
+ 2006-09-16 00:05:22 221,488 -c----w c:\windows\$NtUninstallWudf01000$\spuninst\spuninst.exe
+ 2006-09-16 00:05:22 379,184 -c----w c:\windows\$NtUninstallWudf01000$\spuninst\updspapi.dll
+ 2006-09-28 18:01:52 58,368 -c----w c:\windows\$NtUninstallWudf01000$\spuninst\WudfCustom.dll
+ 2006-10-04 14:05:26 39,424 ------w c:\windows\AppPatch\acadproc.dll
- 2006-05-05 09:41:45 453,120 ------w c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2008-10-24 11:10:42 453,632 ------w c:\windows\Driver Cache\i386\mrxsmb.sys
- 2007-02-28 16:02:21 2,139,648 ------w c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2008-08-14 13:42:54 2,139,648 ------w c:\windows\Driver Cache\i386\ntkrnlmp.exe
- 2007-02-28 16:02:36 2,061,312 ------w c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2008-08-14 13:42:58 2,061,440 ------w c:\windows\Driver Cache\i386\ntkrnlpa.exe
- 2007-02-28 16:02:17 2,019,328 ------w c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2008-08-14 13:42:54 2,019,328 ------w c:\windows\Driver Cache\i386\ntkrpamp.exe
- 2007-02-28 16:02:28 2,184,064 ------w c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2008-08-14 13:42:59 2,184,064 ------w c:\windows\Driver Cache\i386\ntoskrnl.exe
- 2005-10-20 18:02:28 163,328 ----a-w c:\windows\erdnt\Hiv-backup\ERDNT.EXE
+ 2005-10-20 19:02:28 163,328 ----a-w c:\windows\erdnt\Hiv-backup\ERDNT.EXE
+ 2008-06-23 16:15:47 124,928 -c----w c:\windows\ie7updates\KB956390-IE7\advpack.dll
+ 2008-06-23 16:15:47 347,136 -c----w c:\windows\ie7updates\KB956390-IE7\dxtmsft.dll
+ 2008-06-23 16:15:47 214,528 -c----w c:\windows\ie7updates\KB956390-IE7\dxtrans.dll
+ 2008-06-23 16:15:47 133,120 -c----w c:\windows\ie7updates\KB956390-IE7\extmgr.dll
+ 2008-06-23 16:15:47 63,488 -c----w c:\windows\ie7updates\KB956390-IE7\icardie.dll
+ 2008-06-23 09:22:17 70,656 -c----w c:\windows\ie7updates\KB956390-IE7\ie4uinit.exe
+ 2008-06-23 16:15:47 153,088 -c----w c:\windows\ie7updates\KB956390-IE7\ieakeng.dll
+ 2008-06-23 16:15:47 230,400 -c----w c:\windows\ie7updates\KB956390-IE7\ieaksie.dll
+ 2008-06-21 05:23:54 161,792 -c----w c:\windows\ie7updates\KB956390-IE7\ieakui.dll
+ 2008-06-23 16:15:47 383,488 -c----w c:\windows\ie7updates\KB956390-IE7\ieapfltr.dll
+ 2008-06-23 16:15:47 384,512 -c----w c:\windows\ie7updates\KB956390-IE7\iedkcs32.dll
+ 2008-06-23 16:15:48 6,066,176 -c----w c:\windows\ie7updates\KB956390-IE7\ieframe.dll
+ 2008-06-23 16:15:48 44,544 -c----w c:\windows\ie7updates\KB956390-IE7\iernonce.dll
+ 2008-06-23 16:15:48 267,776 -c----w c:\windows\ie7updates\KB956390-IE7\iertutil.dll
+ 2008-06-23 09:20:26 13,824 -c----w c:\windows\ie7updates\KB956390-IE7\ieudinit.exe
+ 2008-06-23 09:22:32 625,664 -c----w c:\windows\ie7updates\KB956390-IE7\iexplore.exe
+ 2008-06-23 16:15:48 27,648 -c----w c:\windows\ie7updates\KB956390-IE7\jsproxy.dll
+ 2008-06-23 16:15:48 459,264 -c----w c:\windows\ie7updates\KB956390-IE7\msfeeds.dll
+ 2008-06-23 16:15:48 52,224 -c----w c:\windows\ie7updates\KB956390-IE7\msfeedsbs.dll
+ 2008-06-24 08:15:50 3,592,192 -c----w c:\windows\ie7updates\KB956390-IE7\mshtml.dll
+ 2008-06-23 16:15:49 477,696 -c----w c:\windows\ie7updates\KB956390-IE7\mshtmled.dll
+ 2008-06-23 16:15:49 193,024 -c----w c:\windows\ie7updates\KB956390-IE7\msrating.dll
+ 2008-06-23 16:15:49 671,232 -c----w c:\windows\ie7updates\KB956390-IE7\mstime.dll
+ 2008-06-23 16:15:49 102,912 -c----w c:\windows\ie7updates\KB956390-IE7\occache.dll
+ 2008-06-23 16:15:49 44,544 -c----w c:\windows\ie7updates\KB956390-IE7\pngfilt.dll
+ 2007-03-06 01:48:15 215,776 -c----w c:\windows\ie7updates\KB956390-IE7\spuninst\spuninst.exe
+ 2007-03-06 01:49:24 390,880 -c----w c:\windows\ie7updates\KB956390-IE7\spuninst\updspapi.dll
+ 2008-06-23 16:15:49 105,984 -c----w c:\windows\ie7updates\KB956390-IE7\url.dll
+ 2008-06-23 16:15:49 1,159,680 -c----w c:\windows\ie7updates\KB956390-IE7\urlmon.dll
+ 2008-06-23 16:15:49 233,472 -c----w c:\windows\ie7updates\KB956390-IE7\webcheck.dll
+ 2008-06-23 16:15:49 826,368 -c----w c:\windows\ie7updates\KB956390-IE7\wininet.dll
+ 2008-08-26 07:57:14 124,928 -c----w c:\windows\ie7updates\KB958215-IE7\advpack.dll
+ 2008-08-26 07:57:14 347,136 -c----w c:\windows\ie7updates\KB958215-IE7\dxtmsft.dll
+ 2008-08-26 07:57:14 214,528 -c----w c:\windows\ie7updates\KB958215-IE7\dxtrans.dll
+ 2008-08-26 07:57:14 133,120 -c----w c:\windows\ie7updates\KB958215-IE7\extmgr.dll
+ 2008-08-26 07:57:14 63,488 -c----w c:\windows\ie7updates\KB958215-IE7\icardie.dll
+ 2008-08-25 08:39:58 70,656 -c----w c:\windows\ie7updates\KB958215-IE7\ie4uinit.exe
+ 2008-08-26 07:57:14 153,088 -c----w c:\windows\ie7updates\KB958215-IE7\ieakeng.dll
+ 2008-08-26 07:57:15 230,400 -c----w c:\windows\ie7updates\KB958215-IE7\ieaksie.dll
+ 2008-08-23 05:54:51 161,792 -c----w c:\windows\ie7updates\KB958215-IE7\ieakui.dll
+ 2008-08-26 07:57:15 383,488 -c----w c:\windows\ie7updates\KB958215-IE7\ieapfltr.dll
+ 2008-08-26 07:57:15 384,512 -c----w c:\windows\ie7updates\KB958215-IE7\iedkcs32.dll
+ 2008-10-03 16:58:43 6,066,176 -c----w c:\windows\ie7updates\KB958215-IE7\ieframe.dll
+ 2008-08-26 07:57:17 44,544 -c----w c:\windows\ie7updates\KB958215-IE7\iernonce.dll
+ 2008-08-26 07:57:17 267,776 -c----w c:\windows\ie7updates\KB958215-IE7\iertutil.dll
+ 2008-08-25 08:38:00 13,824 -c----w c:\windows\ie7updates\KB958215-IE7\ieudinit.exe
+ 2008-08-23 05:56:15 635,848 -c----w c:\windows\ie7updates\KB958215-IE7\iexplore.exe
+ 2008-08-26 07:57:18 27,648 -c----w c:\windows\ie7updates\KB958215-IE7\jsproxy.dll
+ 2008-08-26 07:57:18 459,264 -c----w c:\windows\ie7updates\KB958215-IE7\msfeeds.dll
+ 2008-08-26 07:57:18 52,224 -c----w c:\windows\ie7updates\KB958215-IE7\msfeedsbs.dll
+ 2008-08-27 08:57:22 3,593,216 -c----w c:\windows\ie7updates\KB958215-IE7\mshtml.dll
+ 2008-08-26 07:57:20 477,696 -c----w c:\windows\ie7updates\KB958215-IE7\mshtmled.dll
+ 2008-08-26 07:57:21 193,024 -c----w c:\windows\ie7updates\KB958215-IE7\msrating.dll
+ 2008-08-26 07:57:21 671,232 -c----w c:\windows\ie7updates\KB958215-IE7\mstime.dll
+ 2008-08-26 07:57:21 102,912 -c----w c:\windows\ie7updates\KB958215-IE7\occache.dll
+ 2008-08-26 07:57:21 44,544 -c----w c:\windows\ie7updates\KB958215-IE7\pngfilt.dll
+ 2007-03-06 01:48:14 215,776 -c----w c:\windows\ie7updates\KB958215-IE7\spuninst\spuninst.exe
+ 2007-03-06 01:49:24 390,880 -c----w c:\windows\ie7updates\KB958215-IE7\spuninst\updspapi.dll
+ 2008-08-26 07:57:21 105,984 -c----w c:\windows\ie7updates\KB958215-IE7\url.dll
+ 2008-08-26 07:57:22 1,159,680 -c----w c:\windows\ie7updates\KB958215-IE7\urlmon.dll
+ 2008-08-26 07:57:22 233,472 -c----w c:\windows\ie7updates\KB958215-IE7\webcheck.dll
+ 2008-08-26 07:57:22 826,368 -c----w c:\windows\ie7updates\KB958215-IE7\wininet.dll
+ 2008-10-17 00:34:26 3,593,216 -c----w c:\windows\ie7updates\KB960714-IE7\mshtml.dll
+ 2007-03-06 01:48:14 215,776 -c----w c:\windows\ie7updates\KB960714-IE7\spuninst\spuninst.exe
+ 2007-03-06 01:49:24 390,880 -c----w c:\windows\ie7updates\KB960714-IE7\spuninst\updspapi.dll
- 2004-08-19 22:39:44 208,896 ----a-w c:\windows\inf\unregmp2.exe
+ 2007-06-27 14:48:40 318,464 ----a-w c:\windows\inf\unregmp2.exe
- 2000-08-31 06:00:00 28,672 ----a-w c:\windows\Nircmd.exe
+ 2000-08-31 07:00:00 29,696 ----a-w c:\windows\Nircmd.exe
- 1995-08-01 02:44:46 212,480 ----a-w c:\windows\PCDLIB32.DLL
+ 1995-08-01 03:44:46 212,480 ----a-w c:\windows\PCDLIB32.DLL
+ 2001-09-13 01:15:28 90,112 ------w c:\windows\snymsico.dll
- 2003-07-11 10:30:00 364,544 ----a-w c:\windows\STK014\CresCap.dll
+ 2003-07-11 11:30:00 364,544 ----a-w c:\windows\STK014\CresCap.dll
- 2003-07-15 09:25:32 32,140 ----a-w c:\windows\STK014\STK014W1.sys
+ 2003-07-15 10:25:32 32,140 ----a-w c:\windows\STK014\STK014W1.sys
- 2003-07-15 09:25:48 99,476 ----a-w c:\windows\STK014\STK014W2.sys
+ 2003-07-15 10:25:48 99,476 ----a-w c:\windows\STK014\STK014W2.sys
- 2002-07-16 16:41:40 35,851 ----a-w c:\windows\STK014\STK014W2K1.exe
+ 2002-07-16 17:41:40 35,851 ----a-w c:\windows\STK014\STK014W2K1.exe
- 2002-07-16 16:41:40 38,400 ----a-w c:\windows\STK014\STK014W2K2.exe
+ 2002-07-16 17:41:40 38,400 ----a-w c:\windows\STK014\STK014W2K2.exe
- 2002-07-16 16:41:42 87,392 ----a-w c:\windows\STK014\twain.dll
+ 2002-07-16 17:41:42 87,392 ----a-w c:\windows\STK014\twain.dll
- 2002-07-16 16:41:42 77,312 ----a-w c:\windows\STK014\twain_32.dll
+ 2002-07-16 17:41:42 77,312 ----a-w c:\windows\STK014\twain_32.dll
- 2002-07-16 16:41:42 48,560 ----a-w c:\windows\STK014\twunk_16.exe
+ 2002-07-16 17:41:42 48,560 ----a-w c:\windows\STK014\twunk_16.exe
- 2002-07-16 16:41:42 78,336 ----a-w c:\windows\STK014\twunk_32.exe
+ 2002-07-16 17:41:42 78,336 ----a-w c:\windows\STK014\twunk_32.exe
- 2000-08-31 06:00:00 161,792 ----a-w c:\windows\SWREG.exe
+ 2000-08-31 07:00:00 161,792 ----a-w c:\windows\SWREG.exe
- 2008-06-23 16:15:47 124,928 ----a-w c:\windows\system32\advpack.dll
+ 2008-10-16 20:04:22 124,928 ----a-w c:\windows\system32\advpack.dll
- 2004-08-19 22:37:43 8,704 ----a-w c:\windows\system32\asferror.dll
+ 2006-11-03 08:56:54 7,680 ----a-w c:\windows\system32\asferror.dll
+ 2006-10-18 20:47:08 276,992 ------w c:\windows\system32\audiodev.dll
- 2004-08-19 22:39:04 286,208 ----a-w c:\windows\system32\blackbox.dll
+ 2006-10-18 20:47:10 542,720 ----a-w c:\windows\system32\blackbox.dll
- 2008-07-18 20:10:48 94,920 ----a-w c:\windows\system32\cdm.dll
+ 2008-10-16 13:09:44 92,696 ----a-w c:\windows\system32\cdm.dll
- 2004-08-19 22:39:06 159,232 ----a-w c:\windows\system32\cewmdm.dll
+ 2006-10-18 20:47:10 229,376 ----a-w c:\windows\system32\cewmdm.dll
+ 2004-04-23 11:00:00 116,736 ----a-w c:\windows\system32\CNMLM5y.DLL
+ 2004-04-23 11:00:00 7,680 ----a-w c:\windows\system32\CNMVS5y.DLL
- 2008-06-23 16:15:47 124,928 -c----w c:\windows\system32\dllcache\advpack.dll
+ 2008-10-16 20:04:22 124,928 -c----w c:\windows\system32\dllcache\advpack.dll
- 2008-06-20 10:44:38 138,368 -c----w c:\windows\system32\dllcache\afd.sys
+ 2008-08-14 09:51:43 138,368 -c----w c:\windows\system32\dllcache\afd.sys
- 2008-07-18 20:10:48 94,920 -c--a-w c:\windows\system32\dllcache\cdm.dll
+ 2008-10-16 13:09:44 92,696 -c--a-w c:\windows\system32\dllcache\cdm.dll
- 2008-06-23 16:15:47 347,136 -c----w c:\windows\system32\dllcache\dxtmsft.dll
+ 2008-10-16 20:04:22 347,136 -c----w c:\windows\system32\dllcache\dxtmsft.dll
- 2008-06-23 16:15:47 214,528 -c----w c:\windows\system32\dllcache\dxtrans.dll
+ 2008-10-16 20:04:22 214,528 -c----w c:\windows\system32\dllcache\dxtrans.dll
- 2008-06-23 16:15:47 133,120 -c----w c:\windows\system32\dllcache\extmgr.dll
+ 2008-10-16 20:04:22 133,120 -c----w c:\windows\system32\dllcache\extmgr.dll
- 2008-02-20 06:50:40 282,624 -c----w c:\windows\system32\dllcache\gdi32.dll
+ 2008-10-23 12:59:54 283,648 -c----w c:\windows\system32\dllcache\gdi32.dll
- 2008-06-23 16:15:47 63,488 -c----w c:\windows\system32\dllcache\icardie.dll
+ 2008-10-16 20:04:22 63,488 -c----w c:\windows\system32\dllcache\icardie.dll
- 2008-06-23 09:22:17 70,656 -c----w c:\windows\system32\dllcache\ie4uinit.exe
+ 2008-10-16 13:13:44 70,656 -c----w c:\windows\system32\dllcache\ie4uinit.exe
- 2008-06-23 16:15:47 153,088 -c----w c:\windows\system32\dllcache\ieakeng.dll
+ 2008-10-16 20:04:22 153,088 -c----w c:\windows\system32\dllcache\ieakeng.dll
- 2008-06-23 16:15:47 230,400 -c----w c:\windows\system32\dllcache\ieaksie.dll
+ 2008-10-16 20:04:22 230,400 -c----w c:\windows\system32\dllcache\ieaksie.dll
- 2008-06-21 05:23:54 161,792 -c----w c:\windows\system32\dllcache\ieakui.dll
+ 2008-10-15 07:04:53 161,792 -c----w c:\windows\system32\dllcache\ieakui.dll
- 2008-06-23 16:15:47 383,488 -c----w c:\windows\system32\dllcache\ieapfltr.dll
+ 2008-10-16 20:04:22 383,488 -c----w c:\windows\system32\dllcache\ieapfltr.dll
- 2008-06-23 16:15:47 384,512 -c----w c:\windows\system32\dllcache\iedkcs32.dll
+ 2008-10-16 20:04:22 384,512 -c----w c:\windows\system32\dllcache\iedkcs32.dll
- 2008-06-23 16:15:48 6,066,176 -c----w c:\windows\system32\dllcache\ieframe.dll
+ 2008-10-16 20:04:23 6,066,176 -c----w c:\windows\system32\dllcache\ieframe.dll
- 2008-06-23 16:15:48 44,544 -c----w c:\windows\system32\dllcache\iernonce.dll
+ 2008-10-16 20:04:23 44,544 -c----w c:\windows\system32\dllcache\iernonce.dll
- 2008-06-23 16:15:48 267,776 -c----w c:\windows\system32\dllcache\iertutil.dll
+ 2008-10-16 20:04:23 267,776 -c----w c:\windows\system32\dllcache\iertutil.dll
- 2008-06-23 09:20:26 13,824 -c----w c:\windows\system32\dllcache\ieudinit.exe
+ 2008-10-16 13:11:09 13,824 -c----w c:\windows\system32\dllcache\ieudinit.exe
- 2008-06-23 09:22:32 625,664 -c----w c:\windows\system32\dllcache\iexplore.exe
+ 2008-10-15 07:06:26 633,632 -c----w c:\windows\system32\dllcache\iexplore.exe
- 2004-08-19 21:39:14 47,616 -c--a-w c:\windows\system32\dllcache\iyuv_32.dll
+ 2004-08-19 22:39:14 47,616 -c--a-w c:\windows\system32\dllcache\iyuv_32.dll
- 2008-06-23 16:15:48 27,648 -c----w c:\windows\system32\dllcache\jsproxy.dll
+ 2008-10-16 20:04:23 27,648 -c----w c:\windows\system32\dllcache\jsproxy.dll
- 2004-08-04 05:15:22 140,928 -c--a-w c:\windows\system32\dllcache\ks.sys
+ 2004-08-04 06:15:22 140,928 -c--a-w c:\windows\system32\dllcache\ks.sys
- 2004-08-19 21:39:14 4,096 -c--a-w c:\windows\system32\dllcache\ksuser.dll
+ 2004-08-19 22:39:14 4,096 -c--a-w c:\windows\system32\dllcache\ksuser.dll
+ 2008-06-18 00:09:22 100,864 -c----w c:\windows\system32\dllcache\logagent.exe
- 2006-05-05 09:41:45 453,120 -c----w c:\windows\system32\dllcache\mrxsmb.sys
+ 2008-10-24 11:10:42 453,632 -c----w c:\windows\system32\dllcache\mrxsmb.sys
- 2008-06-23 16:15:48 459,264 -c----w c:\windows\system32\dllcache\msfeeds.dll
+ 2008-10-16 20:04:23 459,264 -c----w c:\windows\system32\dllcache\msfeeds.dll
- 2008-06-23 16:15:48 52,224 -c----w c:\windows\system32\dllcache\msfeedsbs.dll
+ 2008-10-16 20:04:23 52,224 -c----w c:\windows\system32\dllcache\msfeedsbs.dll
- 2008-06-24 08:15:50 3,592,192 -c----w c:\windows\system32\dllcache\mshtml.dll
+ 2008-12-13 06:36:24 3,593,216 -c----w c:\windows\system32\dllcache\mshtml.dll
- 2008-06-23 16:15:49 477,696 -c----w c:\windows\system32\dllcache\mshtmled.dll
+ 2008-10-16 20:04:24 477,696 -c----w c:\windows\system32\dllcache\mshtmled.dll
+ 2004-08-04 06:00:46 22,016 -c--a-w c:\windows\system32\dllcache\msircomm.sys
- 2008-06-23 16:15:49 193,024 -c----w c:\windows\system32\dllcache\msrating.dll
+ 2008-10-16 20:04:24 193,024 -c----w c:\windows\system32\dllcache\msrating.dll
- 2008-06-23 16:15:49 671,232 -c----w c:\windows\system32\dllcache\mstime.dll
+ 2008-10-16 20:04:24 671,232 -c----w c:\windows\system32\dllcache\mstime.dll
- 2007-06-26 06:08:38 1,104,896 -c--a-w c:\windows\system32\dllcache\msxml3.dll
+ 2008-09-04 16:44:18 1,106,944 -c--a-w c:\windows\system32\dllcache\msxml3.dll
- 2004-08-19 21:39:20 17,408 -c--a-w c:\windows\system32\dllcache\msyuv.dll
+ 2004-08-19 22:39:20 17,408 -c--a-w c:\windows\system32\dllcache\msyuv.dll
- 2006-08-17 12:29:46 332,288 -c----w c:\windows\system32\dllcache\netapi32.dll
+ 2008-10-15 16:57:30 332,800 -c----w c:\windows\system32\dllcache\netapi32.dll
- 2007-02-28 16:02:21 2,139,648 -c----w c:\windows\system32\dllcache\ntkrnlmp.exe
+ 2008-08-14 13:42:54 2,139,648 -c----w c:\windows\system32\dllcache\ntkrnlmp.exe
- 2007-02-28 16:02:36 2,061,312 -c----w c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2008-08-14 13:42:58 2,061,440 -c----w c:\windows\system32\dllcache\ntkrnlpa.exe
- 2007-02-28 16:02:17 2,019,328 -c----w c:\windows\system32\dllcache\ntkrpamp.exe
+ 2008-08-14 13:42:54 2,019,328 -c----w c:\windows\system32\dllcache\ntkrpamp.exe
- 2007-02-28 16:02:28 2,184,064 -c----w c:\windows\system32\dllcache\ntoskrnl.exe
+ 2008-08-14 13:42:59 2,184,064 -c----w c:\windows\system32\dllcache\ntoskrnl.exe
- 2008-06-23 16:15:49 102,912 -c----w c:\windows\system32\dllcache\occache.dll
+ 2008-10-16 20:04:24 102,912 -c----w c:\windows\system32\dllcache\occache.dll
- 2008-06-23 16:15:49 44,544 -c----w c:\windows\system32\dllcache\pngfilt.dll
+ 2008-10-16 20:04:25 44,544 -c----w c:\windows\system32\dllcache\pngfilt.dll
- 2006-08-14 10:34:41 332,928 -c----w c:\windows\system32\dllcache\srv.sys
+ 2008-12-11 11:57:21 333,184 -c----w c:\windows\system32\dllcache\srv.sys
- 2006-08-24 12:19:52 246,814 -c----w c:\windows\system32\dllcache\strmdll.dll
+ 2008-10-03 10:15:48 247,326 -c----w c:\windows\system32\dllcache\strmdll.dll
- 2001-08-30 21:08:00 8,192 -c--a-w c:\windows\system32\dllcache\tsbyuv.dll
+ 2001-08-30 22:08:00 8,192 -c--a-w c:\windows\system32\dllcache\tsbyuv.dll
- 2008-06-23 16:15:49 105,984 -c----w c:\windows\system32\dllcache\url.dll
+ 2008-10-16 20:04:25 105,984 -c----w c:\windows\system32\dllcache\url.dll
- 2008-06-23 16:15:49 1,159,680 -c----w c:\windows\system32\dllcache\urlmon.dll
+ 2008-10-16 20:04:25 1,160,192 -c----w c:\windows\system32\dllcache\urlmon.dll
- 2004-08-19 21:39:30 54,784 -c--a-w c:\windows\system32\dllcache\vfwwdm32.dll
+ 2004-08-19 22:39:30 54,784 -c--a-w c:\windows\system32\dllcache\vfwwdm32.dll
- 2008-06-23 16:15:49 233,472 -c----w c:\windows\system32\dllcache\webcheck.dll
+ 2008-10-16 20:04:25 233,472 -c----w c:\windows\system32\dllcache\webcheck.dll
- 2008-03-20 08:06:49 1,845,248 -c----w c:\windows\system32\dllcache\win32k.sys
+ 2008-09-15 15:38:29 1,846,016 -c----w c:\windows\system32\dllcache\win32k.sys
- 2008-06-23 16:15:49 826,368 -c----w c:\windows\system32\dllcache\wininet.dll
+ 2008-10-16 20:04:25 826,368 -c----w c:\windows\system32\dllcache\wininet.dll
- 2007-10-25 09:00:50 230,912 -c----w c:\windows\system32\dllcache\wmasf.dll
+ 2007-10-25 08:28:30 222,720 -c----w c:\windows\system32\dllcache\wmasf.dll
+ 2008-06-18 04:03:08 938,496 -c----w c:\windows\system32\dllcache\WMNetmgr.dll
- 2007-10-25 09:01:10 2,109,440 -c----w c:\windows\system32\dllcache\wmvcore.dll
+ 2008-06-18 04:03:14 2,458,112 -c--a-w c:\windows\system32\dllcache\wmvcore.dll
+ 2008-10-16 13:12:20 561,688 -c--a-w c:\windows\system32\dllcache\wuapi.dll
- 2008-07-18 20:10:42 53,448 -c--a-w c:\windows\system32\dllcache\wuauclt.exe
+ 2008-10-16 13:09:44 51,224 -c--a-w c:\windows\system32\dllcache\wuauclt.exe
- 2008-07-18 20:09:42 1,811,656 -c--a-w c:\windows\system32\dllcache\wuaueng.dll
+ 2008-10-16 13:13:40 1,809,944 -c--a-w c:\windows\system32\dllcache\wuaueng.dll
+ 2008-10-16 13:12:22 323,608 -c--a-w c:\windows\system32\dllcache\wucltui.dll
+ 2008-10-16 13:08:58 34,328 -c--a-w c:\windows\system32\dllcache\wups.dll
+ 2008-10-16 13:13:40 202,776 -c--a-w c:\windows\system32\dllcache\wuweb.dll
- 2008-06-20 10:44:38 138,368 ----a-w c:\windows\system32\drivers\afd.sys
+ 2008-08-14 09:51:43 138,368 ----a-w c:\windows\system32\drivers\afd.sys
- 2008-10-03 07:39:58 26,824 ----a-w c:\windows\system32\drivers\avgmfx86.sys
+ 2009-02-03 20:18:56 27,656 ----a-w c:\windows\system32\drivers\avgmfx86.sys
+ 2008-09-16 00:14:18 9,336 ------w c:\windows\system32\drivers\cdr4_xp.sys
+ 2008-09-16 00:14:20 9,464 ------w c:\windows\system32\drivers\cdralw2k.sys
- 2004-08-04 05:15:22 140,928 ----a-w c:\windows\system32\drivers\ks.sys
+ 2004-08-04 06:15:22 140,928 ----a-w c:\windows\system32\drivers\ks.sys
- 2006-05-05 09:41:45 453,120 ----a-w c:\windows\system32\drivers\mrxsmb.sys
+ 2008-10-24 11:10:42 453,632 ----a-w c:\windows\system32\drivers\mrxsmb.sys
+ 2004-08-04 06:00:46 22,016 ----a-w c:\windows\system32\drivers\MSIRCOMM.sys
+ 2003-04-01 17:55:46 35,319 ------w c:\windows\system32\drivers\NETMD031.sys
+ 2003-11-10 11:31:38 36,232 ------w c:\windows\system32\drivers\NETMD033.sys
+ 2002-08-08 14:51:32 38,951 ------w c:\windows\system32\drivers\NETMDUSB.sys
- 2003-09-19 13:45:48 21,248 ----a-w c:\windows\system32\drivers\pfc.sys
+ 2003-09-19 14:45:48 21,248 ----a-w c:\windows\system32\drivers\pfc.sys
+ 2008-07-31 22:17:04 43,872 ----a-w c:\windows\system32\drivers\pxhelp20.sys
+ 2006-10-18 20:47:22 671,232 ------w c:\windows\system32\drivers\UMDF\wpdmtpdr.dll
+ 2006-10-18 19:00:00 38,528 ------w c:\windows\system32\drivers\wpdusb.sys
+ 2006-09-28 17:55:50 77,568 ------w c:\windows\system32\drivers\WudfPf.sys
+ 2006-09-28 18:00:34 82,944 ------w c:\windows\system32\drivers\WudfRd.sys
+ 2006-10-18 19:00:46 249,856 ------w c:\windows\system32\drmupgds.exe
- 2004-08-19 22:39:51 695,296 ----a-w c:\windows\system32\drmv2clt.dll
+ 2006-10-18 20:47:10 991,744 ----a-w c:\windows\system32\drmv2clt.dll
- 2008-06-23 16:15:47 347,136 ----a-w c:\windows\system32\dxtmsft.dll
+ 2008-10-16 20:04:22 347,136 ----a-w c:\windows\system32\dxtmsft.dll
- 2008-06-23 16:15:47 214,528 ----a-w c:\windows\system32\dxtrans.dll
+ 2008-10-16 20:04:22 214,528 ----a-w c:\windows\system32\dxtrans.dll
- 2008-06-23 16:15:47 133,120 ----a-w c:\windows\system32\extmgr.dll
+ 2008-10-16 20:04:22 133,120 ----a-w c:\windows\system32\extmgr.dll
- 2008-08-07 19:07:01 142,032 ----a-w c:\windows\system32\FNTCACHE.DAT
+ 2008-10-15 13:09:41 142,032 ----a-w c:\windows\system32\FNTCACHE.DAT
- 2008-02-20 06:50:40 282,624 ----a-w c:\windows\system32\gdi32.dll
+ 2008-10-23 12:59:54 283,648 ----a-w c:\windows\system32\gdi32.dll
- 2008-06-23 16:15:47 63,488 ----a-w c:\windows\system32\icardie.dll
+ 2008-10-16 20:04:22 63,488 ----a-w c:\windows\system32\icardie.dll
- 2008-06-23 09:22:17 70,656 ----a-w c:\windows\system32\ie4uinit.exe
+ 2008-10-16 13:13:44 70,656 ----a-w c:\windows\system32\ie4uinit.exe
- 2008-06-23 16:15:47 153,088 ----a-w c:\windows\system32\ieakeng.dll
+ 2008-10-16 20:04:22 153,088 ----a-w c:\windows\system32\ieakeng.dll
- 2008-06-23 16:15:47 230,400 ----a-w c:\windows\system32\ieaksie.dll
+ 2008-10-16 20:04:22 230,400 ----a-w c:\windows\system32\ieaksie.dll
- 2008-06-21 05:23:54 161,792 ----a-w c:\windows\system32\ieakui.dll
+ 2008-10-15 07:04:53 161,792 ----a-w c:\windows\system32\ieakui.dll
- 2008-06-23 16:15:47 383,488 ----a-w c:\windows\system32\ieapfltr.dll
+ 2008-10-16 20:04:22 383,488 ----a-w c:\windows\system32\ieapfltr.dll
- 2008-06-23 16:15:47 384,512 ----a-w c:\windows\system32\iedkcs32.dll
+ 2008-10-16 20:04:22 384,512 ----a-w c:\windows\system32\iedkcs32.dll
- 2008-06-23 16:15:48 6,066,176 ----a-w c:\windows\system32\ieframe.dll
+ 2008-10-16 20:04:23 6,066,176 ----a-w c:\windows\system32\ieframe.dll
- 2008-06-23 16:15:48 44,544 ----a-w c:\windows\system32\iernonce.dll
+ 2008-10-16 20:04:23 44,544 ----a-w c:\windows\system32\iernonce.dll
- 2008-06-23 16:15:48 267,776 ----a-w c:\windows\system32\iertutil.dll
+ 2008-10-16 20:04:23 267,776 ----a-w c:\windows\system32\iertutil.dll
- 2008-06-23 09:20:26 13,824 ----a-w c:\windows\system32\ieudinit.exe
+ 2008-10-16 13:11:09 13,824 ----a-w c:\windows\system32\ieudinit.exe
+ 2006-01-28 16:00:00 28,672 ----a-r c:\windows\system32\IMF32.DLL
- 2004-08-19 21:39:14 47,616 ----a-w c:\windows\system32\iyuv_32.dll
+ 2004-08-19 22:39:14 47,616 ----a-w c:\windows\system32\iyuv_32.dll
- 2008-06-23 16:15:48 27,648 ----a-w c:\windows\system32\jsproxy.dll
+ 2008-10-16 20:04:23 27,648 ----a-w c:\windows\system32\jsproxy.dll
- 2004-08-19 21:39:14 4,096 ----a-w c:\windows\system32\ksuser.dll
+ 2004-08-19 22:39:14 4,096 ----a-w c:\windows\system32\ksuser.dll
- 2004-08-19 22:39:14 6,656 ----a-w c:\windows\system32\laprxy.dll
+ 2006-10-18 20:47:14 11,264 ----a-w c:\windows\system32\LAPRXY.dll
- 2004-08-19 22:39:37 103,936 ----a-w c:\windows\system32\logagent.exe
+ 2008-06-18 00:09:22 100,864 ----a-w c:\windows\system32\logagent.exe
+ 2006-10-18 20:47:14 212,992 ------w c:\windows\system32\MFPLAT.dll
+ 2006-10-18 20:47:14 259,072 ------w c:\windows\system32\MP43DECD.dll
- 2004-08-19 22:39:15 310,272 ----a-w c:\windows\system32\mp43dmod.dll
+ 2006-10-18 20:47:14 4,096 ----a-w c:\windows\system32\MP43DMOD.dll
+ 2006-10-18 20:47:14 317,440 ------w c:\windows\system32\MP4SDECD.dll
- 2004-08-19 22:39:16 384,512 ----a-w c:\windows\system32\mp4sdmod.dll
+ 2006-10-18 20:47:14 4,096 ----a-w c:\windows\system32\MP4SDMOD.dll
+ 2006-10-18 20:47:14 259,072 ------w c:\windows\system32\MPG4DECD.dll
- 2004-08-19 22:39:16 240,640 ----a-w c:\windows\system32\mpg4dmod.dll
+ 2006-10-18 20:47:14 4,096 ----a-w c:\windows\system32\MPG4DMOD.dll
- 2008-03-05 16:30:54 19,148,408 ----a-w c:\windows\system32\MRT.exe
+ 2009-01-10 01:35:28 20,853,704 ----a-w c:\windows\system32\MRT.exe
+ 2006-10-02 14:28:42 312,128 ------w c:\windows\system32\msdelta.dll
- 2008-06-23 16:15:48 459,264 ----a-w c:\windows\system32\msfeeds.dll
+ 2008-10-16 20:04:23 459,264 ----a-w c:\windows\system32\msfeeds.dll
- 2008-06-23 16:15:48 52,224 ----a-w c:\windows\system32\msfeedsbs.dll
+ 2008-10-16 20:04:23 52,224 ----a-w c:\windows\system32\msfeedsbs.dll
- 2004-08-19 21:39:48 299,008 ----a-w c:\windows\system32\msh263.drv
+ 2004-08-19 22:39:48 299,008 ----a-w c:\windows\system32\msh263.drv
- 2008-06-24 08:15:50 3,592,192 ----a-w c:\windows\system32\mshtml.dll
+ 2008-12-13 06:36:24 3,593,216 ----a-w c:\windows\system32\mshtml.dll
- 2008-06-23 16:15:49 477,696 ----a-w c:\windows\system32\mshtmled.dll
+ 2008-10-16 20:04:24 477,696 ----a-w c:\windows\system32\mshtmled.dll
- 2004-08-19 22:39:49 259,072 ----a-w c:\windows\system32\msnetobj.dll
+ 2006-10-18 20:47:16 179,712 ----a-w c:\windows\system32\msnetobj.dll
- 2004-08-19 22:39:17 52,736 ----a-w c:\windows\system32\mspmsnsv.dll
+ 2006-10-18 20:47:16 27,136 ----a-w c:\windows\system32\mspmsnsv.dll
- 2004-08-19 22:39:17 201,728 ----a-w c:\windows\system32\mspmsp.dll
+ 2006-10-18 20:47:16 175,616 ----a-w c:\windows\system32\mspmsp.dll
- 2008-06-23 16:15:49 193,024 ----a-w c:\windows\system32\msrating.dll
+ 2008-10-16 20:04:24 193,024 ----a-w c:\windows\system32\msrating.dll
- 2004-08-19 22:39:50 356,352 ----a-w c:\windows\system32\msscp.dll
+ 2006-12-04 15:21:50 414,720 ----a-w c:\windows\system32\msscp.dll
- 2008-06-23 16:15:49 671,232 ----a-w c:\windows\system32\mstime.dll
+ 2008-10-16 20:04:24 671,232 ----a-w c:\windows\system32\mstime.dll
- 2004-08-19 22:39:19 246,272 ----a-w c:\windows\system32\mswmdm.dll
+ 2006-10-18 20:47:16 321,536 ----a-w c:\windows\system32\mswmdm.dll
- 2007-06-26 06:08:38 1,104,896 ----a-w c:\windows\system32\msxml3.dll
+ 2008-09-04 16:44:18 1,106,944 ----a-w c:\windows\system32\msxml3.dll
- 2004-08-19 21:39:20 17,408 ----a-w c:\windows\system32\msyuv.dll
+ 2004-08-19 22:39:20 17,408 ----a-w c:\windows\system32\msyuv.dll
- 2008-07-18 20:07:34 270,880 ----a-w c:\windows\system32\mucltui.dll
+ 2008-10-16 13:06:48 268,648 ----a-w c:\windows\system32\mucltui.dll
- 2008-07-18 20:07:32 210,976 ----a-w c:\windows\system32\muweb.dll
+ 2008-10-16 13:06:48 208,744 ----a-w c:\windows\system32\muweb.dll
- 2006-08-17 12:29:46 332,288 ----a-w c:\windows\system32\netapi32.dll
+ 2008-10-15 16:57:30 332,800 ----a-w c:\windows\system32\netapi32.dll
- 2007-02-28 16:02:36 2,061,312 ----a-w c:\windows\system32\ntkrnlpa.exe
+ 2008-08-14 13:42:58 2,061,440 ----a-w c:\windows\system32\ntkrnlpa.exe
- 2007-02-28 16:02:28 2,184,064 ----a-w c:\windows\system32\ntoskrnl.exe
+ 2008-08-14 13:42:59 2,184,064 ----a-w c:\windows\system32\ntoskrnl.exe
- 2008-06-23 16:15:49 102,912 ----a-w c:\windows\system32\occache.dll
+ 2008-10-16 20:04:24 102,912 ----a-w c:\windows\system32\occache.dll
- 2008-04-17 13:34:42 40,326 ----a-w c:\windows\system32\perfc009.dat
+ 2009-01-12 22:25:24 40,326 ----a-w c:\windows\system32\perfc009.dat
- 2008-04-17 13:34:42 47,928 ----a-w c:\windows\system32\perfc010.dat
+ 2009-01-12 22:25:25 47,928 ----a-w c:\windows\system32\perfc010.dat
- 2008-04-17 13:34:42 311,938 ----a-w c:\windows\system32\perfh009.dat
+ 2009-01-12 22:25:24 311,938 ----a-w c:\windows\system32\perfh009.dat
- 2008-04-17 13:34:42 345,294 ----a-w c:\windows\system32\perfh010.dat
+ 2009-01-12 22:25:25 345,294 ----a-w c:\windows\system32\perfh010.dat
- 2008-06-23 16:15:49 44,544 ----a-w c:\windows\system32\pngfilt.dll
+ 2008-10-16 20:04:25 44,544 ----a-w c:\windows\system32\pngfilt.dll
+ 2006-10-18 20:47:18 284,160 ------w c:\windows\system32\PortableDeviceApi.dll
+ 2006-10-18 20:47:18 101,888 ------w c:\windows\system32\PortableDeviceClassExtension.dll
+ 2006-10-18 20:47:18 166,912 ------w c:\windows\system32\PortableDeviceTypes.dll
+ 2006-10-18 20:47:18 132,096 ------w c:\windows\system32\PortableDeviceWiaCompat.dll
+ 2006-10-18 20:47:18 199,168 ------w c:\windows\system32\PortableDeviceWMDRM.dll
+ 2008-09-16 00:14:18 551,672 ------w c:\windows\system32\px.dll
+ 2008-09-16 00:14:18 129,784 ------w c:\windows\system32\pxafs.dll
+ 2008-09-16 00:14:18 66,296 ------w c:\windows\system32\pxcpya64.exe
+ 2008-09-16 00:14:18 120,056 ------w c:\windows\system32\pxcpyi64.exe
+ 2008-09-16 00:14:18 518,904 ------w c:\windows\system32\pxdrv.dll
+ 2008-09-16 00:14:20 72,440 ------w c:\windows\system32\pxhpinst.exe
+ 2008-09-16 00:14:18 64,760 ------w c:\windows\system32\pxinsa64.exe
+ 2008-09-16 00:14:18 118,520 ------w c:\windows\system32\pxinsi64.exe
+ 2008-09-16 00:14:20 187,128 ------w c:\windows\system32\pxmas.dll
+ 2008-09-16 00:14:18 1,628,920 ------w c:\windows\system32\pxsfs.dll
+ 2008-09-16 00:14:20 379,640 ------w c:\windows\system32\pxwave.dll
- 2004-08-19 22:39:23 237,568 ----a-w c:\windows\system32\qasf.dll
+ 2006-10-18 20:47:18 211,456 ----a-w c:\windows\system32\qasf.dll
+ 2009-01-25 12:52:18 822,588 ----a-w c:\windows\system32\Restore\rstrlog.dat
+ 2008-10-16 13:08:58 34,328 ----a-w c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.2.6001.788\wups.dll
+ 2008-10-16 13:09:44 43,544 ----a-w c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.2.6001.788\wups2.dll
- 2007-11-30 12:39:40 18,808 ----a-w c:\windows\system32\spmsg.dll
+ 2006-09-25 16:58:48 14,640 ------w c:\windows\system32\spmsg.dll
+ 2004-04-23 11:00:00 61,952 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMCP5y.DLL
+ 2004-04-23 11:00:00 153,600 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMD55y.DLL
+ 2004-04-23 11:00:00 397,824 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMDR5y.DLL
+ 2004-04-23 11:00:00 19,456 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMFU5y.DLL
+ 2004-04-23 11:00:00 106,496 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMOP5y.DLL
+ 2004-04-23 11:00:00 23,280 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMP05y.DAT
+ 2004-04-23 11:00:00 27,140 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMP15y.DAT
+ 2004-04-23 11:00:00 30,320 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMP25y.DAT
+ 2004-04-23 11:00:00 6,656 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMPI5y.DLL
+ 2004-04-23 11:00:00 80,896 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMPV5y.EXE
+ 2004-04-23 11:00:00 758,784 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMSB5y.DLL
+ 2004-04-23 11:00:00 8,704 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMSD5y.EXE
+ 2004-04-23 11:00:00 130,048 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMSM5y.EXE
+ 2004-04-23 11:00:00 6,656 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMSQ5y.EXE
+ 2004-04-23 11:00:00 110,592 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMSR5y.DLL
+ 2004-04-23 11:00:00 205,312 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMUB5y.DLL
+ 2004-04-23 11:00:00 1,571,840 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMUI5y.DLL
+ 2004-04-23 11:00:00 614,912 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMUM5y.DLL
+ 2004-04-23 11:00:00 219,136 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMUR5y.DLL
+ 2004-04-23 11:00:00 6,656 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMW35y.DLL
+ 2004-04-23 11:00:00 61,952 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMCP5y.DLL
+ 2004-04-23 11:00:00 153,600 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMD55y.DLL
+ 2004-04-23 11:00:00 397,824 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMDR5y.DLL
+ 2004-04-23 11:00:00 19,456 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMFU5y.DLL
+ 2004-04-23 11:00:00 106,496 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMOP5y.DLL
+ 2004-04-23 11:00:00 23,280 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMP05y.DAT
+ 2004-04-23 11:00:00 27,140 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMP15y.DAT
+ 2004-04-23 11:00:00 30,320 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMP25y.DAT
+ 2004-04-23 11:00:00 6,656 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMPI5y.DLL
+ 2004-
0
Réponse 16 / 36
toptitbal Messages postés 25709 Date d'inscription samedi 8 juillet 2006 Statut Contributeur sécurité Dernière intervention 4 mars 2010 2 228
5 févr. 2009 à 16:23
Le rapport n'est pas complet, il doit être trop long
Essaie de poster la partie qui manque.
0
Réponse 17 / 36
sussi Messages postés 2190 Date d'inscription lundi 5 mai 2008 Statut Membre Dernière intervention 5 mars 2014 215
5 févr. 2009 à 16:32
re j'essaye:

DLL
+ 2004-04-23 11:00:00 153,600 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMD55y.DLL
+ 2004-04-23 11:00:00 397,824 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMDR5y.DLL
+ 2004-04-23 11:00:00 19,456 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMFU5y.DLL
+ 2004-04-23 11:00:00 106,496 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMOP5y.DLL
+ 2004-04-23 11:00:00 23,280 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMP05y.DAT
+ 2004-04-23 11:00:00 27,140 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMP15y.DAT
+ 2004-04-23 11:00:00 30,320 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMP25y.DAT
+ 2004-04-23 11:00:00 6,656 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMPI5y.DLL
+ 2004-04-23 11:00:00 80,896 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMPV5y.EXE
+ 2004-04-23 11:00:00 758,784 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMSB5y.DLL
+ 2004-04-23 11:00:00 8,704 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMSD5y.EXE
+ 2004-04-23 11:00:00 130,048 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMSM5y.EXE
+ 2004-04-23 11:00:00 6,656 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMSQ5y.EXE
+ 2004-04-23 11:00:00 110,592 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMSR5y.DLL
+ 2004-04-23 11:00:00 205,312 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMUB5y.DLL
+ 2004-04-23 11:00:00 1,571,840 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMUI5y.DLL
+ 2004-04-23 11:00:00 614,912 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMUM5y.DLL
+ 2004-04-23 11:00:00 219,136 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMUR5y.DLL
+ 2004-04-23 11:00:00 6,656 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMW35y.DLL
- 2006-01-30 16:00:00 28,672 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\IMF32.DLL
+ 2006-01-28 16:00:00 28,672 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\IMF32.DLL
- 2006-01-30 16:00:00 36,864 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\IMFNT5.DLL
+ 2006-01-28 16:00:00 36,864 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\IMFNT5.DLL
- 2006-01-30 16:00:00 49,152 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\IMFPRINT.DLL
+ 2006-01-28 16:00:00 49,152 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\IMFPRINT.DLL
- 2006-01-30 16:00:00 26,624 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\QDPRINT.DLL
+ 2006-01-28 16:00:00 26,624 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\QDPRINT.DLL
- 2006-01-30 16:00:00 77,824 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SD32.DLL
+ 2006-01-28 16:00:00 77,824 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SD32.DLL
- 2006-01-30 16:00:00 61,440 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SDDM32.DLL
+ 2006-01-28 16:00:00 61,440 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SDDM32.DLL
- 2006-01-30 16:00:00 122,880 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SDDMUI.DLL
+ 2006-01-28 16:00:00 122,880 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SDDMUI.DLL
- 2006-01-30 16:00:00 241,664 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SDhp1018.DLL
+ 2006-01-28 16:00:00 241,664 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SDhp1018.DLL
- 2006-01-30 16:00:00 36,864 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SDIMF32.DLL
+ 2006-01-28 16:00:00 36,864 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SDIMF32.DLL
- 2006-01-30 16:00:00 28,672 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SDNT5UI.DLL
+ 2006-01-28 16:00:00 28,672 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SDNT5UI.DLL
- 2006-01-30 16:00:00 5,632 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SDNTUM4.DLL
+ 2006-01-28 16:00:00 5,632 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SDNTUM4.DLL
- 2006-01-30 16:00:00 221,184 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SR32.DLL
+ 2006-01-28 16:00:00 221,184 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SR32.DLL
- 2006-01-30 16:00:00 737,280 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SUhp1018.DLL
+ 2006-01-28 16:00:00 737,280 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SUhp1018.DLL
- 2006-01-30 16:00:00 241,664 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SUXML.DLL
+ 2006-01-28 16:00:00 241,664 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\SUXML.DLL
- 2006-01-30 16:00:00 106,496 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\VSHP1018.DLL
+ 2006-01-28 16:00:00 106,496 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\VSHP1018.DLL
- 2006-01-30 16:00:00 1,568,768 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\XERCES-C.DLL
+ 2006-01-28 16:00:00 1,568,768 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\XERCES-C.DLL
- 2006-01-30 16:00:00 40,960 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZGDI32.DLL
+ 2006-01-28 16:00:00 40,960 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZGDI32.DLL
- 2006-01-30 16:00:00 45,105 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZJBIG.DLL
+ 2006-01-28 16:00:00 45,105 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZJBIG.DLL
- 2006-01-30 16:00:00 102,400 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZLhp1018.DLL
+ 2006-01-28 16:00:00 102,400 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZLhp1018.DLL
- 2006-01-30 16:00:00 28,672 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZLM.DLL
+ 2006-01-28 16:00:00 28,672 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZLM.DLL
- 2006-01-30 16:00:00 442,368 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZSHP1018.EXE
+ 2006-01-28 16:00:00 442,368 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZSHP1018.EXE
- 2006-01-30 16:00:00 86,016 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZSPOOL.DLL
+ 2006-01-28 16:00:00 86,016 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZSPOOL.DLL
- 2006-01-30 16:00:00 40,960 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZSPOOL32.EXE
+ 2006-01-28 16:00:00 40,960 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZSPOOL32.EXE
- 2006-01-30 16:00:00 24,576 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZTAG32.DLL
+ 2006-01-28 16:00:00 24,576 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZTAG32.DLL
- 2006-01-30 16:00:00 147,456 ----a-w c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZUNINST.EXE
+ 2006-01-28 16:00:00 147,456 ----a-r c:\windows\system32\spool\drivers\w32x86\hewlett_packardhp_la10dc\ZUNINST.EXE
+ 2004-04-23 11:00:00 17,920 ----a-w c:\windows\system32\spool\prtprocs\w32x86\CNMPD5y.DLL
+ 2004-04-23 11:00:00 54,272 ----a-w c:\windows\system32\spool\prtprocs\w32x86\CNMPP5y.DLL
+ 2006-01-28 16:00:00 49,152 ----a-r c:\windows\system32\spool\prtprocs\w32x86\IMFPRINT.DLL
- 2006-09-06 16:43:38 22,752 ----a-w c:\windows\system32\spupdsvc.exe
+ 2006-09-25 16:58:48 23,856 ----a-w c:\windows\system32\spupdsvc.exe
- 2006-08-24 12:19:52 246,814 ----a-w c:\windows\system32\strmdll.dll
+ 2008-10-03 10:15:48 247,326 ----a-w c:\windows\system32\strmdll.dll
- 2001-08-30 21:08:00 8,192 ----a-w c:\windows\system32\tsbyuv.dll
+ 2001-08-30 22:08:00 8,192 ----a-w c:\windows\system32\tsbyuv.dll
- 2008-07-14 11:09:18 62,976 ----a-w c:\windows\system32\tzchange.exe
+ 2008-10-22 09:47:07 62,976 ----a-w c:\windows\system32\tzchange.exe
- 2008-06-23 16:15:49 105,984 ----a-w c:\windows\system32\url.dll
+ 2008-10-16 20:04:25 105,984 ----a-w c:\windows\system32\url.dll
- 2008-06-23 16:15:49 1,159,680 ----a-w c:\windows\system32\urlmon.dll
+ 2008-10-16 20:04:25 1,160,192 ----a-w c:\windows\system32\urlmon.dll
+ 2006-10-18 20:58:00 8,704 ------w c:\windows\system32\uwdf.exe
- 2004-08-19 21:39:30 54,784 ----a-w c:\windows\system32\vfwwdm32.dll
+ 2004-08-19 22:39:30 54,784 ----a-w c:\windows\system32\vfwwdm32.dll
+ 2006-01-28 16:00:00 106,496 ----a-r c:\windows\system32\VSHP1018.DLL
+ 2008-09-16 00:14:18 88,824 ------w c:\windows\system32\vxblock.dll
+ 2006-10-18 20:47:18 4,096 ------w c:\windows\system32\wdfapi.dll
+ 2006-10-18 20:58:00 8,704 ------w c:\windows\system32\wdfmgr.exe
- 2008-06-23 16:15:49 233,472 ----a-w c:\windows\system32\webcheck.dll
+ 2008-10-16 20:04:25 233,472 ----a-w c:\windows\system32\webcheck.dll
- 2008-03-20 08:06:49 1,845,248 ----a-w c:\windows\system32\win32k.sys
+ 2008-09-15 15:38:29 1,846,016 ----a-w c:\windows\system32\win32k.sys
- 2008-06-23 16:15:49 826,368 ----a-w c:\windows\system32\wininet.dll
+ 2008-10-16 20:04:25 826,368 ----a-w c:\windows\system32\wininet.dll
- 2004-08-19 22:39:31 408,064 ----a-w c:\windows\system32\wmadmod.dll
+ 2006-10-18 20:47:18 757,248 ----a-w c:\windows\system32\WMADMOD.dll
- 2004-08-19 22:39:31 670,720 ----a-w c:\windows\system32\wmadmoe.dll
+ 2006-10-18 20:47:18 1,117,696 ----a-w c:\windows\system32\WMADMOE.dll
- 2007-10-25 09:00:50 230,912 ----a-w c:\windows\system32\wmasf.dll
+ 2007-10-25 08:28:30 222,720 ----a-w c:\windows\system32\wmasf.dll
- 2004-08-19 22:39:31 27,136 ----a-w c:\windows\system32\wmdmlog.dll
+ 2006-10-18 20:47:18 33,792 ----a-w c:\windows\system32\wmdmlog.dll
- 2004-08-19 22:39:31 23,552 ----a-w c:\windows\system32\wmdmps.dll
+ 2006-10-18 20:47:18 37,376 ----a-w c:\windows\system32\wmdmps.dll
+ 2006-10-18 20:47:18 429,056 ------w c:\windows\system32\wmdrmdev.dll
+ 2006-10-18 20:47:20 348,672 ------w c:\windows\system32\wmdrmnet.dll
+ 2006-10-18 20:47:20 535,040 ------w c:\windows\system32\wmdrmsdk.dll
- 2004-08-19 22:38:54 186,880 ----a-w c:\windows\system32\wmerror.dll
+ 2006-11-03 08:58:42 272,384 ----a-w c:\windows\system32\wmerror.dll
- 2004-08-19 22:39:31 151,552 ----a-w c:\windows\system32\wmidx.dll
+ 2006-10-18 20:47:20 157,184 ----a-w c:\windows\system32\wmidx.dll
- 2004-08-19 22:39:32 1,050,624 ----a-w c:\windows\system32\wmnetmgr.dll
+ 2008-06-18 04:03:08 938,496 ----a-w c:\windows\system32\WMNetmgr.dll
- 2007-04-30 01:22:16 4,734,976 ----a-w c:\windows\system32\wmp.dll
+ 2007-06-11 22:51:12 10,834,944 ----a-w c:\windows\system32\wmp.dll
- 2004-08-19 22:39:32 114,688 ----a-w c:\windows\system32\wmpasf.dll
+ 2006-10-18 20:47:20 242,688 ----a-w c:\windows\system32\wmpasf.dll
- 2004-08-19 22:39:32 233,472 ----a-w c:\windows\system32\wmpdxm.dll
+ 2006-10-18 20:47:20 314,880 ----a-w c:\windows\system32\wmpdxm.dll
+ 2008-06-24 17:12:58 295,936 ------w c:\windows\system32\wmpeffects.dll
+ 2006-10-18 20:47:20 1,661,440 ------w c:\windows\system32\wmpencen.dll
- 2004-08-19 22:38:55 2,973,696 ----a-w c:\windows\system32\wmploc.dll
+ 2006-11-03 09:03:34 8,292,352 ----a-w c:\windows\system32\wmploc.dll
+ 2006-10-18 20:47:20 613,376 ------w c:\windows\system32\wmpmde.dll
+ 2006-10-18 20:47:20 130,048 ------w c:\windows\system32\wmpps.dll
- 2004-08-19 22:39:32 102,400 ----a-w c:\windows\system32\wmpshell.dll
+ 2006-11-03 08:59:06 99,840 ----a-w c:\windows\system32\wmpshell.dll
+ 2006-10-18 20:47:20 204,288 ------w c:\windows\system32\wmpsrcwp.dll
- 2004-08-19 22:39:32 759,296 ----a-w c:\windows\system32\wmsdmod.dll
+ 2006-10-18 20:47:22 4,096 ----a-w c:\windows\system32\wmsdmod.dll
- 2004-08-19 22:39:32 1,119,744 ----a-w c:\windows\system32\wmsdmoe2.dll
+ 2006-10-18 20:47:22 4,096 ----a-w c:\windows\system32\wmsdmoe2.dll
- 2004-08-19 22:39:32 484,864 ----a-w c:\windows\system32\wmspdmod.dll
+ 2006-10-18 20:47:22 603,648 ----a-w c:\windows\system32\WMSPDMOD.dll
- 2004-08-19 22:39:32 896,512 ----a-w c:\windows\system32\wmspdmoe.dll
+ 2006-10-18 20:47:22 1,329,152 ----a-w c:\windows\system32\WMSPDMOE.dll
+ 2006-10-18 20:47:22 4,096 ------w c:\windows\system32\WMVADVD.dll
+ 2006-10-18 20:47:22 4,096 ------w c:\windows\system32\WMVADVE.DLL
- 2007-10-25 09:01:10 2,109,440 ----a-w c:\windows\system32\wmvcore.dll
+ 2008-06-18 04:03:14 2,458,112 ----a-w c:\windows\system32\wmvcore.dll
+ 2006-10-18 20:47:22 1,543,680 ------w c:\windows\system32\WMVDECOD.dll
- 2004-08-19 22:39:32 809,984 ----a-w c:\windows\system32\wmvdmod.dll
+ 2006-10-18 20:47:22 4,096 ----a-w c:\windows\system32\wmvdmod.dll
- 2004-08-19 22:39:32 1,001,472 ----a-w c:\windows\system32\wmvdmoe2.dll
+ 2006-10-18 20:47:22 4,096 ----a-w c:\windows\system32\wmvdmoe2.dll
+ 2006-10-18 20:47:22 1,574,912 ------w c:\windows\system32\WMVENCOD.dll
+ 2006-10-18 20:47:22 1,382,912 ------w c:\windows\system32\WMVSDECD.dll
+ 2006-10-18 20:47:22 767,488 ------w c:\windows\system32\WMVSENCD.dll
+ 2006-10-18 20:47:22 656,896 ------w c:\windows\system32\WMVXENCD.dll
+ 2006-10-18 20:47:22 629,760 ------w c:\windows\system32\wpd_ci.dll
+ 2006-10-18 20:47:22 35,840 ------w c:\windows\system32\wpdconns.dll
+ 2006-10-18 20:47:22 154,624 ------w c:\windows\system32\wpdmtp.dll
+ 2006-10-18 20:47:22 63,488 ------w c:\windows\system32\wpdmtpus.dll
+ 2006-10-18 20:47:22 2,603,008 ------w c:\windows\system32\WpdShext.dll
+ 2006-10-18 19:00:14 17,408 ------w c:\windows\system32\wpdshextautoplay.exe
+ 2006-11-02 10:52:26 41,984 ------w c:\windows\system32\wpdshextres.dll
+ 2006-10-18 20:47:22 133,632 ------w c:\windows\system32\WPDShServiceObj.dll
+ 2006-10-18 20:47:22 356,352 ------w c:\windows\system32\wpdsp.dll
- 2008-07-18 20:09:44 563,912 ----a-w c:\windows\system32\wuapi.dll
+ 2008-10-16 13:12:20 561,688 ----a-w c:\windows\system32\wuapi.dll
- 2008-07-18 20:10:42 53,448 ----a-w c:\windows\system32\wuauclt.exe
+ 2008-10-16 13:09:44 51,224 ----a-w c:\windows\system32\wuauclt.exe
- 2008-07-18 20:09:42 1,811,656 ----a-w c:\windows\system32\wuaueng.dll
+ 2008-10-16 13:13:40 1,809,944 ----a-w c:\windows\system32\wuaueng.dll
- 2008-07-18 20:09:46 325,832 ----a-w c:\windows\system32\wucltui.dll
+ 2008-10-16 13:12:22 323,608 ----a-w c:\windows\system32\wucltui.dll
+ 2006-09-28 19:13:26 95,344 ------w c:\windows\system32\WUDFCoinstaller.dll
+ 2006-09-28 17:56:38 146,432 ------w c:\windows\system32\WudfHost.exe
+ 2006-09-28 17:56:16 165,376 ------w c:\windows\system32\WudfPlatform.dll
+ 2006-09-28 17:56:14 55,808 ------w c:\windows\system32\WudfSvc.dll
+ 2006-09-28 17:56:38 316,416 ------w c:\windows\system32\WUDFx.dll
- 2008-07-18 20:10:20 36,552 ----a-w c:\windows\system32\wups.dll
+ 2008-10-16 13:08:58 34,328 ----a-w c:\windows\system32\wups.dll
- 2008-07-18 20:10:40 45,768 ----a-w c:\windows\system32\wups2.dll
+ 2008-10-16 13:09:44 43,544 ----a-w c:\windows\system32\wups2.dll
- 2008-07-18 20:09:44 205,000 ----a-w c:\windows\system32\wuweb.dll
+ 2008-10-16 13:13:40 202,776 ----a-w c:\windows\system32\wuweb.dll
+ 2006-01-28 16:00:00 102,400 ----a-r c:\windows\system32\ZLhp1018.DLL
+ 2006-01-28 16:00:00 28,672 ----a-r c:\windows\system32\ZLM.DLL
+ 2006-01-28 16:00:00 442,368 ----a-r c:\windows\system32\ZSHP1018.EXE
+ 2006-01-28 16:00:00 86,016 ----a-r c:\windows\system32\ZSPOOL.DLL
+ 2006-01-28 16:00:00 24,576 ----a-r c:\windows\system32\ZTAG32.DLL
- 2003-07-11 10:30:00 364,544 ----a-w c:\windows\twain_32\STK014\CresCap.dll
+ 2003-07-11 11:30:00 364,544 ----a-w c:\windows\twain_32\STK014\CresCap.dll
+ 1997-01-18 09:40:30 299,520 ----a-w c:\windows\uninst.exe
+ 2006-06-05 12:14:28 479,232 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcm80.dll
+ 2006-06-05 12:14:28 548,864 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcp80.dll
+ 2006-06-05 12:14:28 626,688 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcr80.dll
.
-- Snapshot reset to current date --

voilà


cordialement

Sussi
0
Réponse 18 / 36
sussi Messages postés 2190 Date d'inscription lundi 5 mai 2008 Statut Membre Dernière intervention 5 mars 2014 215
5 févr. 2009 à 16:50
re excuse moi voici le troisiem et dernier morceau

.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{2c965f3f-8efd-4bfc-a2c5-1672845fdbbf}"= "c:\programmi\PHPNukeIT\tbPHPN.dll" [2008-11-23 1784856]

[HKEY_CLASSES_ROOT\clsid\{2c965f3f-8efd-4bfc-a2c5-1672845fdbbf}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2c965f3f-8efd-4bfc-a2c5-1672845fdbbf}]
2008-11-23 23:03 1784856 --a------ c:\programmi\PHPNukeIT\tbPHPN.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{2c965f3f-8efd-4bfc-a2c5-1672845fdbbf}"= "c:\programmi\PHPNukeIT\tbPHPN.dll" [2008-11-23 1784856]

[HKEY_CLASSES_ROOT\clsid\{2c965f3f-8efd-4bfc-a2c5-1672845fdbbf}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{2C965F3F-8EFD-4BFC-A2C5-1672845FDBBF}"= "c:\programmi\PHPNukeIT\tbPHPN.dll" [2008-11-23 1784856]

[HKEY_CLASSES_ROOT\clsid\{2c965f3f-8efd-4bfc-a2c5-1672845fdbbf}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Picasa Media Detector"="c:\programmi\Picasa2\PicasaMediaDetector" [X]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-19 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-02-03 1601304]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2004-08-19 15360]

c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Microsoft Office.lnk - e:\word\Office\OSA9.EXE [2000-01-21 65588]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-02-03 21:18 10520 c:\windows\system32\avgrsstx.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\AVG\\AVG8\\avgupd.exe"=
"c:\\Programmi\\AVG\\AVG8\\avgemc.exe"=
"c:\\Programmi\\Messenger\\msmsgs.exe"=

R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-10-01 325128]
R1 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2008-10-01 107272]
R2 avg8emc;AVG8 E-mail Scanner;c:\progra~1\AVG\AVG8\avgemc.exe [2009-02-03 903960]
R2 avg8wd;AVG8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [2009-02-03 298264]
R3 rtl8180;IEEE 802.11b Wireless Cardbus/PCI Adapter;c:\windows\system32\drivers\rtl8180.sys [2003-06-16 158848]
R3 SjyPkt;SjyPkt;c:\windows\system32\drivers\SjyPkt.sys [2002-10-02 13532]
S3 DCamUSBSTK014;STK014 Camera;c:\windows\system32\drivers\STK014W2.sys [2009-01-12 99476]
S3 maconfservice;Ma-Config Service;c:\programmi\ma-config.com\maconfservice.exe [2008-12-19 195752]
S3 RTL8187B;NETGEAR WG111v3 54Mbps Wireless USB 2.0 Adapter Vista Driver;c:\windows\system32\DRIVERS\wg111v3.sys --> c:\windows\system32\DRIVERS\wg111v3.sys [?]
.
Contents of the 'Scheduled Tasks' folder

2009-02-05 c:\windows\Tasks\Google Software Updater.job
- c:\programmi\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-01-11 20:37]

2009-02-02 c:\windows\Tasks\Norton Internet Security - Systemprüfung ausführen - ciappui.job
- c:\programmi\Norton Internet Security\Norton AntiVirus\Navw32.exe []
.
- - - - ORPHANS REMOVED - - - -

WebBrowser-{3041D03E-FD4B-44E0-B742-2D9B88305F98} - (no file)


.
------- Supplementary Scan -------
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2102507
mWindow Title =
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab
FF - ProfilePath - c:\documents and settings\ciappui\Dati applicazioni\Mozilla\Firefox\Profiles\jd86c3z9.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - component: c:\programmi\AVG\AVG8\Firefox\components\avgssff.dll
FF - component: c:\programmi\AVG\AVG8\ToolbarFF\components\vmAVGConnector.dll
FF - plugin: c:\documents and settings\ciappui\Dati applicazioni\Mozilla\Firefox\Profiles\jd86c3z9.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}\plugins\nphardwaredetection.dll
FF - plugin: c:\programmi\Google\Google Updater\2.4.1441.4352\npCIDetect13.dll
FF - plugin: c:\programmi\Google\Picasa3\npPicasa2.dll
FF - plugin: c:\programmi\Google\Picasa3\npPicasa3.dll
FF - plugin: c:\programmi\ma-config.com\nphardwaredetection.dll
FF - plugin: c:\programmi\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-05 15:47:45
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2009-02-05 15:51:45
ComboFix-quarantined-files.txt 2009-02-05 14:51:40
ComboFix2.txt 2008-10-04 11:56:50

Pre-Run: 278'970'368 byte disponibili
Post-Run: 276,803,584 byte disponibili

Current=2 Default=2 Failed=3 LastKnownGood=4 Sets=1,2,3,4
1029 --- E O F --- 2009-02-03 20:48:04

a plus
0
Réponse 19 / 36
toptitbal Messages postés 25709 Date d'inscription samedi 8 juillet 2006 Statut Contributeur sécurité Dernière intervention 4 mars 2010 2 228
5 févr. 2009 à 17:20
J'ai l'impression qu'il manque des morceaux.
Pourrais-tu essayer de le reposter en une seule fois ?
Tu ouvres le bloc notes, tu fais sélectionner tout puis CtRl-C, tu ouvres ton message sur le forum et tu fais CtRl-V
0
Réponse 20 / 36
sussi Messages postés 2190 Date d'inscription lundi 5 mai 2008 Statut Membre Dernière intervention 5 mars 2014 215
5 févr. 2009 à 17:23
re ok:
ComboFix 09-02-04.04 - ciappui 2009-02-05 15:44:22.2 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.41.1040.18.255.69 [GMT 1:00]
Running from: c:\documents and settings\ciappui\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning disabled* (Updated)
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\fNUtDcdd.ini
c:\windows\system32\fNUtDcdd.ini2

.
((((((((((((((((((((((((( Files Created from 2009-01-05 to 2009-02-05 )))))))))))))))))))))))))))))))
.

2009-02-05 15:41 . 2009-02-05 15:42 <DIR> d----c--- C:\32788R22FWJFW
2009-02-04 22:38 . 2009-02-04 23:08 <DIR> d----c--- C:\ToolBar SD
2009-02-04 21:44 . 2009-02-04 22:26 <DIR> d-------- c:\programmi\Navilog1
2009-02-03 21:04 . 2009-02-03 21:04 104 --a--c--- C:\Risorse del computer.lnk
2009-01-30 18:52 . 2009-01-30 18:52 <DIR> d-------- c:\documents and settings\ciappui\Dati applicazioni\vlc
2009-01-18 19:07 . 2009-01-18 19:07 <DIR> d-------- c:\windows\system32\IOSUBSYS
2009-01-14 19:56 . 2009-01-25 13:50 <DIR> d-------- c:\programmi\Malwarebytes' Anti-Malware
2009-01-14 19:56 . 2009-01-14 16:11 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2009-01-14 19:56 . 2009-01-14 16:11 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2009-01-13 19:50 . 2009-01-25 14:02 <DIR> d-------- c:\programmi\File comuni\Real
2009-01-12 11:05 . 2009-01-12 11:05 <DIR> d-------- c:\windows\STK014
2009-01-12 11:05 . 2009-01-13 22:35 <DIR> d-------- c:\programmi\STK014
2009-01-12 11:05 . 2003-07-15 11:25 99,476 --a------ c:\windows\system32\drivers\STK014W2.sys
2009-01-12 11:05 . 2003-07-11 12:30 40,960 --a------ c:\windows\system32\STK014P.ax
2009-01-12 11:05 . 2003-07-15 11:25 32,140 --a------ c:\windows\system32\drivers\STK014W1.sys
2009-01-12 10:12 . 2009-01-12 10:12 18,788 --ah----- c:\windows\system32\mlfcache.dat
2009-01-11 20:38 . 2009-02-04 14:48 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Google Updater
2009-01-11 20:37 . 2009-01-18 19:06 <DIR> d-------- c:\programmi\Google
2009-01-05 23:33 . 2009-01-05 23:33 3,751,995 --a------ c:\windows\system32\GPhotos.scr

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-03 20:21 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\avg8
2009-02-03 20:18 325,128 ----a-w c:\windows\system32\drivers\avgldx86.sys
2009-02-03 20:18 107,272 ----a-w c:\windows\system32\drivers\avgtdix.sys
2009-02-03 20:18 10,520 ----a-w c:\windows\system32\avgrsstx.dll
2009-01-31 08:22 --------- d-----w c:\programmi\DivX
2009-01-30 21:33 --------- d-----w c:\documents and settings\ciappui\Dati applicazioni\AVGTOOLBAR
2009-01-12 23:28 1,781 ----a-w c:\windows\OEM0.tmp
2009-01-12 10:05 --------- d--h--w c:\programmi\InstallShield Installation Information
2009-01-12 09:54 --------- d-----w c:\documents and settings\ciappui\Dati applicazioni\ArcSoft
2008-12-28 22:51 --------- d-----w c:\programmi\CCleaner
2008-12-27 14:48 --------- d-----w c:\programmi\Java
2008-12-27 14:44 --------- d-----w c:\programmi\File comuni\Java
2008-12-26 15:58 --------- d-----w c:\programmi\ArcSoft
2008-12-25 12:56 --------- d-----w c:\programmi\ma-config.com
2008-12-25 12:56 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\ma-config.com
2008-12-24 18:07 --------- d-----w c:\documents and settings\ciappui\Dati applicazioni\Odyssee_Sib
2008-12-20 11:10 --------- d-----w c:\programmi\File comuni\Adobe
2008-12-19 19:48 --------- d-----w c:\programmi\PHPNukeIT
2008-12-19 19:48 --------- d-----w c:\programmi\Conduit
2008-12-14 16:06 --------- d-----w c:\programmi\Foxit Software
2008-12-14 16:06 --------- d-----w c:\documents and settings\ciappui\Dati applicazioni\Foxit
2008-12-11 11:57 333,184 ----a-w c:\windows\system32\drivers\srv.sys
2008-12-11 00:33 86,016 ----a-w c:\windows\system32\dpl100.dll
2008-12-11 00:33 200,704 ----a-w c:\windows\system32\dtu100.dll
.

((((((((((((((((((((((((((((( snapshot@2008-10-04_13.51.06.33 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-09-15 15:14:09 1,846,912 ----a-w c:\windows\$hf_mig$\KB954211\SP2QFE\win32k.sys
+ 2008-09-15 15:24:38 1,846,400 ----a-w c:\windows\$hf_mig$\KB954211\SP3GDR\win32k.sys
+ 2008-09-15 15:19:00 1,847,040 ----a-w c:\windows\$hf_mig$\KB954211\SP3QFE\win32k.sys
+ 2007-11-30 12:39:40 18,808 ----a-w c:\windows\$hf_mig$\KB954211\spmsg.dll
+ 2007-11-30 12:39:40 233,848 ----a-w c:\windows\$hf_mig$\KB954211\spuninst.exe
+ 2007-11-30 12:39:38 26,488 ----a-w c:\windows\$hf_mig$\KB954211\update\spcustom.dll
+ 2008-07-09 07:42:38 763,768 ----a-w c:\windows\$hf_mig$\KB954211\update\update.exe
+ 2007-11-30 12:39:40 402,296 ----a-w c:\windows\$hf_mig$\KB954211\update\updspapi.dll
+ 2008-10-03 09:56:46 247,326 ----a-w c:\windows\$hf_mig$\KB954600\SP2QFE\strmdll.dll
+ 2008-10-03 10:02:46 247,326 ----a-w c:\windows\$hf_mig$\KB954600\SP3GDR\strmdll.dll
+ 2008-10-03 09:50:03 247,326 ----a-w c:\windows\$hf_mig$\KB954600\SP3QFE\strmdll.dll
+ 2007-11-30 12:39:40 18,808 ----a-w c:\windows\$hf_mig$\KB954600\spmsg.dll
+ 2007-11-30 12:39:40 233,848 ----a-w c:\windows\$hf_mig$\KB954600\spuninst.exe
+ 2007-11-30 12:39:38 26,488 ----a-w c:\windows\$hf_mig$\KB954600\update\spcustom.dll
+ 2007-11-30 12:39:40 763,768 ----a-w c:\windows\$hf_mig$\KB954600\update\update.exe
+ 2007-11-30 12:39:40 402,296 ----a-w c:\windows\$hf_mig$\KB954600\update\updspapi.dll
+ 2008-09-04 16:33:16 1,106,944 ----a-w c:\windows\$hf_mig$\KB955069\SP2QFE\msxml3.dll
+ 2008-09-04 17:15:03 1,106,944 ----a-w c:\windows\$hf_mig$\KB955069\SP3GDR\msxml3.dll
+ 2008-09-04 17:12:24 1,106,944 ----a-w c:\windows\$hf_mig$\KB955069\SP3QFE\msxml3.dll
+ 2007-11-30 11:19:29 18,808 ----a-w c:\windows\$hf_mig$\KB955069\spmsg.dll
+ 2007-11-30 11:19:29 233,848 ----a-w c:\windows\$hf_mig$\KB955069\spuninst.exe
+ 2007-11-30 11:19:25 26,488 ----a-w c:\windows\$hf_mig$\KB955069\update\spcustom.dll
+ 2007-11-30 12:39:40 763,768 ----a-w c:\windows\$hf_mig$\KB955069\update\update.exe
+ 2008-07-09 12:12:46 402,296 ----a-w c:\windows\$hf_mig$\KB955069\update\updspapi.dll
+ 2008-10-22 09:47:25 62,976 ----a-w c:\windows\$hf_mig$\KB955839\SP2QFE\tzchange.exe
+ 2008-10-23 10:06:59 62,976 ----a-w c:\windows\$hf_mig$\KB955839\SP3GDR\tzchange.exe
+ 2008-10-23 10:17:49 62,976 ----a-w c:\windows\$hf_mig$\KB955839\SP3QFE\tzchange.exe
+ 2007-11-30 12:39:40 18,808 ----a-w c:\windows\$hf_mig$\KB955839\spmsg.dll
+ 2007-11-30 12:39:40 233,848 ----a-w c:\windows\$hf_mig$\KB955839\spuninst.exe
+ 2007-11-30 12:39:38 26,488 ----a-w c:\windows\$hf_mig$\KB955839\update\spcustom.dll
+ 2007-11-30 12:39:40 763,768 ----a-w c:\windows\$hf_mig$\KB955839\update\update.exe
+ 2007-11-30 12:39:40 402,296 ----a-w c:\windows\$hf_mig$\KB955839\update\updspapi.dll
+ 2008-08-26 09:08:35 124,928 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\advpack.dll
+ 2008-08-26 09:08:36 347,136 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\dxtmsft.dll
+ 2008-08-26 09:08:36 214,528 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\dxtrans.dll
+ 2008-08-26 09:08:36 132,608 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\extmgr.dll
+ 2008-08-26 09:08:36 63,488 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\icardie.dll
+ 2008-08-25 08:43:21 70,656 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ie4uinit.exe
+ 2008-08-26 09:08:36 153,088 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieakeng.dll
+ 2008-08-26 09:08:36 230,400 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieaksie.dll
+ 2008-08-23 05:54:50 161,792 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieakui.dll
+ 2007-04-17 09:32:38 2,455,488 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieapfltr.dat
+ 2008-08-26 09:08:36 380,928 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieapfltr.dll
+ 2008-08-26 09:08:36 388,608 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\iedkcs32.dll
+ 2008-10-03 16:21:53 6,068,224 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieframe.dll
+ 2008-08-26 09:08:39 44,544 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\iernonce.dll
+ 2008-08-26 09:08:39 267,776 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\iertutil.dll
+ 2008-08-25 08:43:21 13,824 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieudinit.exe
+ 2008-08-23 05:56:16 635,848 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\iexplore.exe
+ 2008-08-26 09:08:40 27,648 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\jsproxy.dll
+ 2008-08-26 09:08:40 459,264 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\msfeeds.dll
+ 2008-08-26 09:08:40 52,224 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\msfeedsbs.dll
+ 2008-08-26 09:08:43 3,594,752 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\mshtml.dll
+ 2008-08-26 09:08:43 477,696 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\mshtmled.dll
+ 2008-08-26 09:08:43 193,024 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\msrating.dll
+ 2008-08-26 09:08:44 671,232 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\mstime.dll
+ 2008-08-26 09:08:44 102,912 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\occache.dll
+ 2008-08-26 09:08:44 44,544 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\pngfilt.dll
+ 2008-08-26 09:08:44 105,984 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\url.dll
+ 2008-08-26 09:08:44 1,162,752 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\urlmon.dll
+ 2008-08-26 09:08:44 233,472 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\webcheck.dll
+ 2008-08-26 09:08:45 827,904 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\wininet.dll
+ 2007-03-06 01:48:10 15,584 ----a-w c:\windows\$hf_mig$\KB956390-IE7\spmsg.dll
+ 2007-03-06 01:48:15 215,776 ----a-w c:\windows\$hf_mig$\KB956390-IE7\spuninst.exe
+ 2007-03-06 01:48:08 22,752 ----a-w c:\windows\$hf_mig$\KB956390-IE7\update\spcustom.dll
+ 2007-03-06 01:48:33 724,192 ----a-w c:\windows\$hf_mig$\KB956390-IE7\update\update.exe
+ 2007-03-06 01:49:24 390,880 ----a-w c:\windows\$hf_mig$\KB956390-IE7\update\updspapi.dll
+ 2007-11-30 12:39:40 18,808 ----a-w c:\windows\$hf_mig$\KB956391\spmsg.dll
+ 2007-11-30 12:39:40 233,848 ----a-w c:\windows\$hf_mig$\KB956391\spuninst.exe
+ 2007-11-30 12:39:38 26,488 ----a-w c:\windows\$hf_mig$\KB956391\update\spcustom.dll
+ 2007-11-30 12:39:40 763,768 ----a-w c:\windows\$hf_mig$\KB956391\update\update.exe
+ 2007-11-30 12:39:40 402,296 ----a-w c:\windows\$hf_mig$\KB956391\update\updspapi.dll
+ 2008-10-23 12:51:25 284,160 ----a-w c:\windows\$hf_mig$\KB956802\SP2QFE\gdi32.dll
+ 2008-10-23 12:36:14 286,720 ----a-w c:\windows\$hf_mig$\KB956802\SP3GDR\gdi32.dll
+ 2008-10-23 12:43:04 286,720 ----a-w c:\windows\$hf_mig$\KB956802\SP3QFE\gdi32.dll
+ 2008-07-08 13:06:04 18,808 ----a-w c:\windows\$hf_mig$\KB956802\spmsg.dll
+ 2008-07-08 13:06:05 233,848 ----a-w c:\windows\$hf_mig$\KB956802\spuninst.exe
+ 2008-07-08 13:06:04 26,488 ----a-w c:\windows\$hf_mig$\KB956802\update\spcustom.dll
+ 2008-07-09 07:42:38 763,768 ----a-w c:\windows\$hf_mig$\KB956802\update\update.exe
+ 2008-07-09 07:42:45 402,296 ----a-w c:\windows\$hf_mig$\KB956802\update\updspapi.dll
+ 2008-08-14 09:48:52 138,368 ----a-w c:\windows\$hf_mig$\KB956803\SP2QFE\afd.sys
+ 2008-08-14 10:04:36 138,496 ----a-w c:\windows\$hf_mig$\KB956803\SP3GDR\afd.sys
+ 2008-08-14 10:34:26 138,496 ----a-w c:\windows\$hf_mig$\KB956803\SP3QFE\afd.sys
+ 2007-11-30 11:19:29 18,808 ----a-w c:\windows\$hf_mig$\KB956803\spmsg.dll
+ 2007-11-30 11:19:29 233,848 ----a-w c:\windows\$hf_mig$\KB956803\spuninst.exe
+ 2007-11-30 11:19:25 26,488 ----a-w c:\windows\$hf_mig$\KB956803\update\spcustom.dll
+ 2007-11-30 11:19:30 763,768 ----a-w c:\windows\$hf_mig$\KB956803\update\update.exe
+ 2007-11-30 11:19:30 402,296 ----a-w c:\windows\$hf_mig$\KB956803\update\updspapi.dll
+ 2008-08-14 13:37:10 2,146,304 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntkrnlmp.exe
+ 2008-08-14 13:37:13 2,066,688 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntkrnlpa.exe
+ 2008-08-14 13:37:08 2,024,448 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntkrpamp.exe
+ 2008-08-14 13:37:11 2,189,696 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntoskrnl.exe
+ 2008-08-14 13:22:07 2,148,864 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrnlmp.exe
+ 2008-08-14 13:22:50 2,069,760 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrnlpa.exe
+ 2008-08-14 13:22:06 2,027,520 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrpamp.exe
+ 2008-08-14 13:22:50 2,192,896 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntoskrnl.exe
+ 2008-08-14 13:55:01 2,148,864 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrnlmp.exe
+ 2008-08-14 17:25:08 2,069,760 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrnlpa.exe
+ 2008-08-14 13:54:55 2,027,520 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrpamp.exe
+ 2008-08-14 17:25:04 2,192,896 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe
+ 2007-11-30 11:19:29 18,808 ----a-w c:\windows\$hf_mig$\KB956841\spmsg.dll
+ 2007-11-30 11:19:29 233,848 ----a-w c:\windows\$hf_mig$\KB956841\spuninst.exe
+ 2007-11-30 11:19:25 26,488 ----a-w c:\windows\$hf_mig$\KB956841\update\spcustom.dll
+ 2007-11-30 12:39:40 763,768 ----a-w c:\windows\$hf_mig$\KB956841\update\update.exe
+ 2008-07-09 07:42:45 402,296 ----a-w c:\windows\$hf_mig$\KB956841\update\updspapi.dll
+ 2008-08-28 10:35:33 333,056 ----a-w c:\windows\$hf_mig$\KB957095\SP2QFE\srv.sys
+ 2008-09-08 10:41:42 333,824 ----a-w c:\windows\$hf_mig$\KB957095\SP3GDR\srv.sys
+ 2008-09-08 11:37:19 333,824 ----a-w c:\windows\$hf_mig$\KB957095\SP3QFE\srv.sys
+ 2007-11-30 11:19:29 18,808 ----a-w c:\windows\$hf_mig$\KB957095\spmsg.dll
+ 2007-11-30 11:19:29 233,848 ----a-w c:\windows\$hf_mig$\KB957095\spuninst.exe
+ 2007-11-30 11:19:25 26,488 ----a-w c:\windows\$hf_mig$\KB957095\update\spcustom.dll
+ 2007-11-30 11:19:30 763,768 ----a-w c:\windows\$hf_mig$\KB957095\update\update.exe
+ 2007-11-30 11:19:30 402,296 ----a-w c:\windows\$hf_mig$\KB957095\update\updspapi.dll
+ 2008-10-24 11:25:29 455,936 ----a-w c:\windows\$hf_mig$\KB957097\SP2QFE\mrxsmb.sys
+ 2008-10-24 11:21:09 455,296 ----a-w c:\windows\$hf_mig$\KB957097\SP3GDR\mrxsmb.sys
+ 2008-10-24 11:41:11 455,936 ----a-w c:\windows\$hf_mig$\KB957097\SP3QFE\mrxsmb.sys
+ 2008-07-08 13:06:04 18,808 ----a-w c:\windows\$hf_mig$\KB957097\spmsg.dll
+ 2008-07-08 13:06:05 233,848 ----a-w c:\windows\$hf_mig$\KB957097\spuninst.exe
+ 2008-07-08 13:06:04 26,488 ----a-w c:\windows\$hf_mig$\KB957097\update\spcustom.dll
+ 2008-07-08 13:06:07 763,768 ----a-w c:\windows\$hf_mig$\KB957097\update\update.exe
+ 2008-07-08 13:06:15 402,296 ----a-w c:\windows\$hf_mig$\KB957097\update\updspapi.dll
+ 2008-10-16 19:32:32 124,928 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\advpack.dll
+ 2008-10-16 19:32:32 347,136 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\dxtmsft.dll
+ 2008-10-16 19:32:32 214,528 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\dxtrans.dll
+ 2008-10-16 19:32:33 132,608 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\extmgr.dll
+ 2008-10-16 19:32:33 63,488 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\icardie.dll
+ 2008-10-16 12:46:08 70,656 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ie4uinit.exe
+ 2008-10-16 19:32:33 153,088 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ieakeng.dll
+ 2008-10-16 19:32:33 230,400 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ieaksie.dll
+ 2008-10-15 06:33:26 161,792 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ieakui.dll
+ 2007-04-17 09:32:38 2,455,488 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ieapfltr.dat
+ 2008-10-16 19:32:33 380,928 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ieapfltr.dll
+ 2008-10-16 19:32:33 388,608 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\iedkcs32.dll
+ 2008-10-16 19:32:35 6,068,224 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ieframe.dll
+ 2008-10-16 19:32:35 44,544 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\iernonce.dll
+ 2008-10-16 19:32:35 267,776 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\iertutil.dll
+ 2008-10-16 12:46:08 13,824 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\ieudinit.exe
+ 2008-10-15 06:34:58 633,632 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\iexplore.exe
+ 2008-10-16 19:32:35 27,648 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\jsproxy.dll
+ 2008-10-16 19:32:35 459,264 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\msfeeds.dll
+ 2008-10-16 19:32:35 52,224 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\msfeedsbs.dll
+ 2008-10-16 19:32:37 3,595,264 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\mshtml.dll
+ 2008-10-16 19:32:37 477,696 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\mshtmled.dll
+ 2008-10-16 19:32:37 193,024 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\msrating.dll
+ 2008-10-16 19:32:37 671,232 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\mstime.dll
+ 2008-10-16 19:32:37 102,912 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\occache.dll
+ 2008-10-16 19:32:37 44,544 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\pngfilt.dll
+ 2008-10-16 19:32:37 105,984 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\url.dll
+ 2008-10-16 19:32:37 1,163,264 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\urlmon.dll
+ 2008-10-16 19:32:37 233,472 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\webcheck.dll
+ 2008-10-16 19:32:38 827,904 ----a-w c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\wininet.dll
+ 2007-03-06 01:48:09 15,584 ----a-w c:\windows\$hf_mig$\KB958215-IE7\spmsg.dll
+ 2007-03-06 01:48:14 215,776 ----a-w c:\windows\$hf_mig$\KB958215-IE7\spuninst.exe
+ 2007-03-06 01:48:07 22,752 ----a-w c:\windows\$hf_mig$\KB958215-IE7\update\spcustom.dll
+ 2007-03-06 01:48:33 724,192 ----a-w c:\windows\$hf_mig$\KB958215-IE7\update\update.exe
+ 2007-03-06 01:49:24 390,880 ----a-w c:\windows\$hf_mig$\KB958215-IE7\update\updspapi.dll
+ 2008-10-15 16:54:15 339,456 ----a-w c:\windows\$hf_mig$\KB958644\SP2QFE\netapi32.dll
+ 2008-10-15 16:36:15 337,408 ----a-w c:\windows\$hf_mig$\KB958644\SP3GDR\netapi32.dll
+ 2008-10-15 16:27:28 339,456 ----a-w c:\windows\$hf_mig$\KB958644\SP3QFE\netapi32.dll
+ 2007-11-30 11:19:29 18,808 ----a-w c:\windows\$hf_mig$\KB958644\spmsg.dll
+ 2007-11-30 11:19:29 233,848 ----a-w c:\windows\$hf_mig$\KB958644\spuninst.exe
+ 2007-11-30 11:19:25 26,488 ----a-w c:\windows\$hf_mig$\KB958644\update\spcustom.dll
+ 2007-11-30 11:19:30 763,768 ----a-w c:\windows\$hf_mig$\KB958644\update\update.exe
+ 2007-11-30 11:19:30 402,296 ----a-w c:\windows\$hf_mig$\KB958644\update\updspapi.dll
+ 2008-12-13 06:27:37 3,594,752 ----a-w c:\windows\$hf_mig$\KB960714-IE7\SP2QFE\mshtml.dll
+ 2007-03-06 01:48:09 15,584 ----a-w c:\windows\$hf_mig$\KB960714-IE7\spmsg.dll
+ 2007-03-06 01:48:14 215,776 ----a-w c:\windows\$hf_mig$\KB960714-IE7\spuninst.exe
+ 2007-03-06 01:48:07 22,752 ----a-w c:\windows\$hf_mig$\KB960714-IE7\update\spcustom.dll
+ 2007-03-06 01:48:32 724,192 ----a-w c:\windows\$hf_mig$\KB960714-IE7\update\update.exe
+ 2007-03-06 01:49:24 390,880 ----a-w c:\windows\$hf_mig$\KB960714-IE7\update\updspapi.dll
+ 2005-10-12 23:12:26 213,216 -c----w c:\windows\$NtUninstallKB926239$\spuninst\spuninst.exe
+ 2005-10-12 23:12:33 371,424 -c----w c:\windows\$NtUninstallKB926239$\spuninst\updspapi.dll
+ 2006-10-18 20:47:16 414,208 -c----w c:\windows\$NtUninstallKB929399$\msscp.dll
+ 2005-06-28 09:23:26 213,216 -c----w c:\windows\$NtUninstallKB929399$\spuninst\spuninst.exe
+ 2005-06-28 09:23:54 371,424 -c----w c:\windows\$NtUninstallKB929399$\spuninst\updspapi.dll
+ 2005-06-28 09:23:36 215,776 -c----w c:\windows\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe
+ 2005-06-28 09:23:54 371,424 -c----w c:\windows\$NtUninstallKB936782_WMP11$\spuninst\updspapi.dll
+ 2006-10-18 20:47:20 10,834,432 -c----w c:\windows\$NtUninstallKB936782_WMP11$\wmp.dll
+ 2005-06-28 09:23:36 215,776 -c----w c:\windows\$NtUninstallKB939683$\spuninst\spuninst.exe
+ 2005-06-28 09:23:54 371,424 -c----w c:\windows\$NtUninstallKB939683$\spuninst\updspapi.dll
+ 2006-11-03 08:58:34 317,440 -c----w c:\windows\$NtUninstallKB939683$\unregmp2.exe
+ 2006-10-18 19:03:58 100,864 -c----w c:\windows\$NtUninstallKB952069_WM9$\logagent.exe
+ 2007-07-27 06:35:58 233,848 -c----w c:\windows\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe
+ 2007-07-27 08:41:48 382,840 -c----w c:\windows\$NtUninstallKB952069_WM9$\spuninst\updspapi.dll
+ 2006-10-18 20:47:20 937,984 -c----w c:\windows\$NtUninstallKB952069_WM9$\wmnetmgr.dll
+ 2006-10-18 20:47:22 2,450,944 -c----w c:\windows\$NtUninstallKB952069_WM9$\wmvcore.dll
+ 2007-07-27 07:35:58 233,848 -c----w c:\windows\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe
+ 2007-07-27 09:41:48 382,840 -c----w c:\windows\$NtUninstallKB954154_WM11$\spuninst\updspapi.dll
+ 2006-10-18 20:47:20 295,936 -c----w c:\windows\$NtUninstallKB954154_WM11$\wmpeffects.dll
+ 2007-11-30 12:39:40 233,848 -c----w c:\windows\$NtUninstallKB954211$\spuninst\spuninst.exe
+ 2007-11-30 12:39:40 402,296 -c----w c:\windows\$NtUninstallKB954211$\spuninst\updspapi.dll
+ 2008-03-20 08:06:49 1,845,248 -c----w c:\windows\$NtUninstallKB954211$\win32k.sys
+ 2007-11-30 12:39:40 233,848 -c----w c:\windows\$NtUninstallKB954600$\spuninst\spuninst.exe
+ 2007-11-30 12:39:40 402,296 -c----w c:\windows\$NtUninstallKB954600$\spuninst\updspapi.dll
+ 2006-08-24 12:19:52 246,814 -c----w c:\windows\$NtUninstallKB954600$\strmdll.dll
+ 2007-06-26 06:08:38 1,104,896 -c----w c:\windows\$NtUninstallKB955069$\msxml3.dll
+ 2007-11-30 11:19:29 233,848 -c----w c:\windows\$NtUninstallKB955069$\spuninst\spuninst.exe
+ 2008-07-09 12:12:46 402,296 -c----w c:\windows\$NtUninstallKB955069$\spuninst\updspapi.dll
+ 2007-11-30 12:39:40 233,848 -c----w c:\windows\$NtUninstallKB955839$\spuninst\spuninst.exe
+ 2007-11-30 12:39:40 402,296 -c----w c:\windows\$NtUninstallKB955839$\spuninst\updspapi.dll
+ 2008-07-14 11:09:18 62,976 -c----w c:\windows\$NtUninstallKB955839$\tzchange.exe
+ 2007-11-30 12:39:40 233,848 -c----w c:\windows\$NtUninstallKB956391$\spuninst\spuninst.exe
+ 2007-11-30 12:39:40 402,296 -c----w c:\windows\$NtUninstallKB956391$\spuninst\updspapi.dll
+ 2008-02-20 06:50:40 282,624 -c----w c:\windows\$NtUninstallKB956802$\gdi32.dll
+ 2008-07-08 13:06:05 233,848 -c----w c:\windows\$NtUninstallKB956802$\spuninst\spuninst.exe
+ 2008-07-09 07:42:45 402,296 -c----w c:\windows\$NtUninstallKB956802$\spuninst\updspapi.dll
+ 2008-06-20 10:44:38 138,368 -c----w c:\windows\$NtUninstallKB956803$\afd.sys
+ 2007-11-30 11:19:29 233,848 -c----w c:\windows\$NtUninstallKB956803$\spuninst\spuninst.exe
+ 2007-11-30 11:19:30 402,296 -c----w c:\windows\$NtUninstallKB956803$\spuninst\updspapi.dll
+ 2007-02-28 16:02:21 2,139,648 -c----w c:\windows\$NtUninstallKB956841$\ntkrnlmp.exe
+ 2007-02-28 16:02:36 2,061,312 -c----w c:\windows\$NtUninstallKB956841$\ntkrnlpa.exe
+ 2007-02-28 16:02:17 2,019,328 -c----w c:\windows\$NtUninstallKB956841$\ntkrpamp.exe
+ 2007-02-28 16:02:28 2,184,064 -c----w c:\windows\$NtUninstallKB956841$\ntoskrnl.exe
+ 2007-11-30 11:19:29 233,848 -c----w c:\windows\$NtUninstallKB956841$\spuninst\spuninst.exe
+ 2008-07-09 07:42:45 402,296 -c----w c:\windows\$NtUninstallKB956841$\spuninst\updspapi.dll
+ 2007-11-30 11:19:29 233,848 -c----w c:\windows\$NtUninstallKB957095$\spuninst\spuninst.exe
+ 2007-11-30 11:19:30 402,296 -c----w c:\windows\$NtUninstallKB957095$\spuninst\updspapi.dll
+ 2006-08-14 10:34:41 332,928 -c----w c:\windows\$NtUninstallKB957095$\srv.sys
+ 2006-05-05 09:41:45 453,120 -c----w c:\windows\$NtUninstallKB957097$\mrxsmb.sys
+ 2008-07-08 13:06:05 233,848 -c----w c:\windows\$NtUninstallKB957097$\spuninst\spuninst.exe
+ 2008-07-08 13:06:15 402,296 -c----w c:\windows\$NtUninstallKB957097$\spuninst\updspapi.dll
+ 2006-08-17 12:29:46 332,288 -c----w c:\windows\$NtUninstallKB958644$\netapi32.dll
+ 2007-11-30 11:19:29 233,848 -c----w c:\windows\$NtUninstallKB958644$\spuninst\spuninst.exe
+ 2007-11-30 11:19:30 402,296 -c----w c:\windows\$NtUninstallKB958644$\spuninst\updspapi.dll
+ 2006-09-25 16:58:48 221,488 -c----w c:\windows\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe
+ 2006-09-25 16:58:48 379,184 -c----w c:\windows\$NtUninstallMSCompPackV1$\spuninst\updspapi.dll
+ 2004-08-19 22:39:04 286,208 -c----w c:\windows\$NtUninstallWMFDist11$\blackbox.dll
+ 2004-08-19 22:39:06 159,232 -c----w c:\windows\$NtUninstallWMFDist11$\cewmdm.dll
+ 2004-08-19 22:39:51 695,296 -c----w c:\windows\$NtUninstallWMFDist11$\drmv2clt.dll
+ 2004-08-19 22:39:14 6,656 -c----w c:\windows\$NtUninstallWMFDist11$\laprxy.dll
+ 2004-08-19 22:39:37 103,936 -c----w c:\windows\$NtUninstallWMFDist11$\logagent.exe
+ 2004-08-19 22:39:15 310,272 -c----w c:\windows\$NtUninstallWMFDist11$\mp43dmod.dll
+ 2004-08-19 22:39:16 384,512 -c----w c:\windows\$NtUninstallWMFDist11$\mp4sdmod.dll
+ 2004-08-19 22:39:16 240,640 -c----w c:\windows\$NtUninstallWMFDist11$\mpg4dmod.dll
+ 2004-08-19 22:39:49 259,072 -c----w c:\windows\$NtUninstallWMFDist11$\msnetobj.dll
+ 2004-08-19 22:39:17 52,736 -c----w c:\windows\$NtUninstallWMFDist11$\mspmsnsv.dll
+ 2004-08-19 22:39:17 201,728 -c----w c:\windows\$NtUninstallWMFDist11$\mspmsp.dll
+ 2004-08-19 22:39:50 356,352 -c----w c:\windows\$NtUninstallWMFDist11$\msscp.dll
+ 2004-08-19 22:39:19 246,272 -c----w c:\windows\$NtUninstallWMFDist11$\mswmdm.dll
+ 2004-08-19 22:39:23 237,568 -c----w c:\windows\$NtUninstallWMFDist11$\qasf.dll
+ 2006-05-16 17:11:54 213,216 -c----w c:\windows\$NtUninstallWMFDist11$\spuninst\spuninst.exe
+ 2006-05-16 17:11:54 371,424 -c----w c:\windows\$NtUninstallWMFDist11$\spuninst\updspapi.dll
+ 2006-11-02 10:46:52 13,312 -c----w c:\windows\$NtUninstallWMFDist11$\spuninst\wpdinstallutil.dll
+ 2004-08-19 22:39:31 408,064 -c----w c:\windows\$NtUninstallWMFDist11$\wmadmod.dll
+ 2004-08-19 22:39:31 670,720 -c----w c:\windows\$NtUninstallWMFDist11$\wmadmoe.dll
+ 2007-10-25 09:00:50 230,912 -c----w c:\windows\$NtUninstallWMFDist11$\wmasf.dll
+ 2004-08-19 22:39:31 27,136 -c----w c:\windows\$NtUninstallWMFDist11$\wmdmlog.dll
+ 2004-08-19 22:39:31 23,552 -c----w c:\windows\$NtUninstallWMFDist11$\wmdmps.dll
+ 2004-08-19 22:39:31 151,552 -c----w c:\windows\$NtUninstallWMFDist11$\wmidx.dll
+ 2004-08-19 22:39:32 1,050,624 -c----w c:\windows\$NtUninstallWMFDist11$\wmnetmgr.dll
+ 2004-08-19 22:39:32 759,296 -c----w c:\windows\$NtUninstallWMFDist11$\wmsdmod.dll
+ 2004-08-19 22:39:32 1,119,744 -c----w c:\windows\$NtUninstallWMFDist11$\wmsdmoe2.dll
+ 2004-08-19 22:39:32 484,864 -c----w c:\windows\$NtUninstallWMFDist11$\wmspdmod.dll
+ 2004-08-19 22:39:32 896,512 -c----w c:\windows\$NtUninstallWMFDist11$\wmspdmoe.dll
+ 2007-10-25 09:01:10 2,109,440 -c----w c:\windows\$NtUninstallWMFDist11$\wmvcore.dll
+ 2004-08-19 22:39:32 809,984 -c----w c:\windows\$NtUninstallWMFDist11$\wmvdmod.dll
+ 2004-08-19 22:39:32 1,001,472 -c----w c:\windows\$NtUninstallWMFDist11$\wmvdmoe2.dll
+ 2004-08-19 22:37:43 8,704 -c----w c:\windows\$NtUninstallwmp11$\asferror.dll
+ 2004-08-19 22:39:16 368,640 -c----w c:\windows\$NtUninstallwmp11$\mpvis.dll
+ 2004-08-19 22:39:44 778,240 -c----w c:\windows\$NtUninstallwmp11$\setup_wm.exe
+ 2006-05-16 17:11:54 213,216 -c----w c:\windows\$NtUninstallwmp11$\spuninst\spuninst.exe
+ 2006-05-16 17:11:56 394,976 -c----w c:\windows\$NtUninstallwmp11$\spuninst\updspapi.dll
+ 2004-08-19 22:39:44 208,896 -c----w c:\windows\$NtUninstallwmp11$\unregmp2.exe
+ 2004-08-19 22:38:54 186,880 -c----w c:\windows\$NtUninstallwmp11$\wmerror.dll
+ 2007-04-30 01:22:16 4,734,976 -c----w c:\windows\$NtUninstallwmp11$\wmp.dll
+ 2004-08-19 22:39:32 114,688 -c----w c:\windows\$NtUninstallwmp11$\wmpasf.dll
+ 2004-08-19 22:39:32 98,304 -c----w c:\windows\$NtUninstallwmp11$\wmpband.dll
+ 2004-08-19 22:39:32 233,472 -c----w c:\windows\$NtUninstallwmp11$\wmpdxm.dll
+ 2004-08-19 22:39:45 73,728 -c----w c:\windows\$NtUninstallwmp11$\wmplayer.exe
+ 2004-08-19 22:38:55 2,973,696 -c----w c:\windows\$NtUninstallwmp11$\wmploc.dll
+ 2004-08-19 22:39:32 102,400 -c----w c:\windows\$NtUninstallwmp11$\wmpshell.dll
+ 2006-09-16 00:05:22 221,488 -c----w c:\windows\$NtUninstallWudf01000$\spuninst\spuninst.exe
+ 2006-09-16 00:05:22 379,184 -c----w c:\windows\$NtUninstallWudf01000$\spuninst\updspapi.dll
+ 2006-09-28 18:01:52 58,368 -c----w c:\windows\$NtUninstallWudf01000$\spuninst\WudfCustom.dll
+ 2006-10-04 14:05:26 39,424 ------w c:\windows\AppPatch\acadproc.dll
- 2006-05-05 09:41:45 453,120 ------w c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2008-10-24 11:10:42 453,632 ------w c:\windows\Driver Cache\i386\mrxsmb.sys
- 2007-02-28 16:02:21 2,139,648 ------w c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2008-08-14 13:42:54 2,139,648 ------w c:\windows\Driver Cache\i386\ntkrnlmp.exe
- 2007-02-28 16:02:36 2,061,312 ------w c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2008-08-14 13:42:58 2,061,440 ------w c:\windows\Driver Cache\i386\ntkrnlpa.exe
- 2007-02-28 16:02:17 2,019,328 ------w c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2008-08-14 13:42:54 2,019,328 ------w c:\windows\Driver Cache\i386\ntkrpamp.exe
- 2007-02-28 16:02:28 2,184,064 ------w c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2008-08-14 13:42:59 2,184,064 ------w c:\windows\Driver Cache\i386\ntoskrnl.exe
- 2005-10-20 18:02:28 163,328 ----a-w c:\windows\erdnt\Hiv-backup\ERDNT.EXE
+ 2005-10-20 19:02:28 163,328 ----a-w c:\windows\erdnt\Hiv-backup\ERDNT.EXE
+ 2008-06-23 16:15:47 124,928 -c----w c:\windows\ie7updates\KB956390-IE7\advpack.dll
+ 2008-06-23 16:15:47 347,136 -c----w c:\windows\ie7updates\KB956390-IE7\dxtmsft.dll
+ 2008-06-23 16:15:47 214,528 -c----w c:\windows\ie7updates\KB956390-IE7\dxtrans.dll
+ 2008-06-23 16:15:47 133,120 -c----w c:\windows\ie7updates\KB956390-IE7\extmgr.dll
+ 2008-06-23 16:15:47 63,488 -c----w c:\windows\ie7updates\KB956390-IE7\icardie.dll
+ 2008-06-23 09:22:17 70,656 -c----w c:\windows\ie7updates\KB956390-IE7\ie4uinit.exe
+ 2008-06-23 16:15:47 153,088 -c----w c:\windows\ie7updates\KB956390-IE7\ieakeng.dll
+ 2008-06-23 16:15:47 230,400 -c----w c:\windows\ie7updates\KB956390-IE7\ieaksie.dll
+ 2008-06-21 05:23:54 161,792 -c----w c:\windows\ie7updates\KB956390-IE7\ieakui.dll
+ 2008-06-23 16:15:47 383,488 -c----w c:\windows\ie7updates\KB956390-IE7\ieapfltr.dll
+ 2008-06-23 16:15:47 384,512 -c----w c:\windows\ie7updates\KB956390-IE7\iedkcs32.dll
+ 2008-06-23 16:15:48 6,066,176 -c----w c:\windows\ie7updates\KB956390-IE7\ieframe.dll
+ 2008-06-23 16:15:48 44,544 -c----w c:\windows\ie7updates\KB956390-IE7\iernonce.dll
+ 2008-06-23 16:15:48 267,776 -c----w c:\windows\ie7updates\KB956390-IE7\iertutil.dll
+ 2008-06-23 09:20:26 13,824 -c----w c:\windows\ie7updates\KB956390-IE7\ieudinit.exe
+ 2008-06-23 09:22:32 625,664 -c----w c:\windows\ie7updates\KB956390-IE7\iexplore.exe
+ 2008-06-23 16:15:48 27,648 -c----w c:\windows\ie7updates\KB956390-IE7\jsproxy.dll
+ 2008-06-23 16:15:48 459,264 -c----w c:\windows\ie7updates\KB956390-IE7\msfeeds.dll
+ 2008-06-23 16:15:48 52,224 -c----w c:\windows\ie7updates\KB956390-IE7\msfeedsbs.dll
+ 2008-06-24 08:15:50 3,592,192 -c----w c:\windows\ie7updates\KB956390-IE7\mshtml.dll
+ 2008-06-23 16:15:49 477,696 -c----w c:\windows\ie7updates\KB956390-IE7\mshtmled.dll
+ 2008-06-23 16:15:49 193,024 -c----w c:\windows\ie7updates\KB956390-IE7\msrating.dll
+ 2008-06-23 16:15:49 671,232 -c----w c:\windows\ie7updates\KB956390-IE7\mstime.dll
+ 2008-06-23 16:15:49 102,912 -c----w c:\windows\ie7updates\KB956390-IE7\occache.dll
+ 2008-06-23 16:15:49 44,544 -c----w c:\windows\ie7updates\KB956390-IE7\pngfilt.dll
+ 2007-03-06 01:48:15 215,776 -c----w c:\windows\ie7updates\KB956390-IE7\spuninst\spuninst.exe
+ 2007-03-06 01:49:24 390,880 -c----w c:\windows\ie7updates\KB956390-IE7\spuninst\updspapi.dll
+ 2008-06-23 16:15:49 105,984 -c----w c:\windows\ie7updates\KB956390-IE7\url.dll
+ 2008-06-23 16:15:49 1,159,680 -c----w c:\windows\ie7updates\KB956390-IE7\urlmon.dll
+ 2008-06-23 16:15:49 233,472 -c----w c:\windows\ie7updates\KB956390-IE7\webcheck.dll
+ 2008-06-23 16:15:49 826,368 -c----w c:\windows\ie7updates\KB956390-IE7\wininet.dll
+ 2008-08-26 07:57:14 124,928 -c----w c:\windows\ie7updates\KB958215-IE7\advpack.dll
+ 2008-08-26 07:57:14 347,136 -c----w c:\windows\ie7updates\KB958215-IE7\dxtmsft.dll
+ 2008-08-26 07:57:14 214,528 -c----w c:\windows\ie7updates\KB958215-IE7\dxtrans.dll
+ 2008-08-26 07:57:14 133,120 -c----w c:\windows\ie7updates\KB958215-IE7\extmgr.dll
+ 2008-08-26 07:57:14 63,488 -c----w c:\windows\ie7updates\KB958215-IE7\icardie.dll
+ 2008-08-25 08:39:58 70,656 -c----w c:\windows\ie7updates\KB958215-IE7\ie4uinit.exe
+ 2008-08-26 07:57:14 153,088 -c----w c:\windows\ie7updates\KB958215-IE7\ieakeng.dll
+ 2008-08-26 07:57:15 230,400 -c----w c:\windows\ie7updates\KB958215-IE7\ieaksie.dll
+ 2008-08-23 05:54:51 161,792 -c----w c:\windows\ie7updates\KB958215-IE7\ieakui.dll
+ 2008-08-26 07:57:15 383,488 -c----w c:\windows\ie7updates\KB958215-IE7\ieapfltr.dll
+ 2008-08-26 07:57:15 384,512 -c----w c:\windows\ie7updates\KB958215-IE7\iedkcs32.dll
+ 2008-10-03 16:58:43 6,066,176 -c----w c:\windows\ie7updates\KB958215-IE7\ieframe.dll
+ 2008-08-26 07:57:17 44,544 -c----w c:\windows\ie7updates\KB958215-IE7\iernonce.dll
+ 2008-08-26 07:57:17 267,776 -c----w c:\windows\ie7updates\KB958215-IE7\iertutil.dll
+ 2008-08-25 08:38:00 13,824 -c----w c:\windows\ie7updates\KB958215-IE7\ieudinit.exe
+ 2008-08-23 05:56:15 635,848 -c----w c:\windows\ie7updates\KB958215-IE7\iexplore.exe
+ 2008-08-26 07:57:18 27,648 -c----w c:\windows\ie7updates\KB958215-IE7\jsproxy.dll
+ 2008-08-26 07:57:18 459,264 -c----w c:\windows\ie7updates\KB958215-IE7\msfeeds.dll
+ 2008-08-26 07:57:18 52,224 -c----w c:\windows\ie7updates\KB958215-IE7\msfeedsbs.dll
+ 2008-08-27 08:57:22 3,593,216 -c----w c:\windows\ie7updates\KB958215-IE7\mshtml.dll
+ 2008-08-26 07:57:20 477,696 -c----w c:\windows\ie7updates\KB958215-IE7\mshtmled.dll
+ 2008-08-26 07:57:21 193,024 -c----w c:\windows\ie7updates\KB958215-IE7\msrating.dll
+ 2008-08-26 07:57:21 671,232 -c----w c:\windows\ie7updates\KB958215-IE7\mstime.dll
+ 2008-08-26 07:57:21 102,912 -c----w c:\windows\ie7updates\KB958215-IE7\occache.dll
+ 2008-08-26 07:57:21 44,544 -c----w c:\windows\ie7updates\KB958215-IE7\pngfilt.dll
+ 2007-03-06 01:48:14 215,776 -c----w c:\windows\ie7updates\KB958215-IE7\spuninst\spuninst.exe
+ 2007-03-06 01:49:24 390,880 -c----w c:\windows\ie7updates\KB958215-IE7\spuninst\updspapi.dll
+ 2008-08-26 07:57:21 105,984 -c----w c:\windows\ie7updates\KB958215-IE7\url.dll
+ 2008-08-26 07:57:22 1,159,680 -c----w c:\windows\ie7updates\KB958215-IE7\urlmon.dll
+ 2008-08-26 07:57:22 233,472 -c----w c:\windows\ie7updates\KB958215-IE7\webcheck.dll
+ 2008-08-26 07:57:22 826,368 -c----w c:\windows\ie7updates\KB958215-IE7\wininet.dll
+ 2008-10-17 00:34:26 3,593,216 -c----w c:\windows\ie7updates\KB960714-IE7\mshtml.dll
+ 2007-03-06 01:48:14 215,776 -c----w c:\windows\ie7updates\KB960714-IE7\spuninst\spuninst.exe
+ 2007-03-06 01:49:24 390,880 -c----w c:\windows\ie7updates\KB960714-IE7\spuninst\updspapi.dll
- 2004-08-19 22:39:44 208,896 ----a-w c:\windows\inf\unregmp2.exe
+ 2007-06-27 14:48:40 318,464 ----a-w c:\windows\inf\unregmp2.exe
- 2000-08-31 06:00:00 28,672 ----a-w c:\windows\Nircmd.exe
+ 2000-08-31 07:00:00 29,696 ----a-w c:\windows\Nircmd.exe
- 1995-08-01 02:44:46 212,480 ----a-w c:\windows\PCDLIB32.DLL
+ 1995-08-01 03:44:46 212,480 ----a-w c:\windows\PCDLIB32.DLL
+ 2001-09-13 01:15:28 90,112 ------w c:\windows\snymsico.dll
- 2003-07-11 10:30:00 364,544 ----a-w c:\windows\STK014\CresCap.dll
+ 2003-07-11 11:30:00 364,544 ----a-w c:\windows\STK014\CresCap.dll
- 2003-07-15 09:25:32 32,140 ----a-w c:\windows\STK014\STK014W1.sys
+ 2003-07-15 10:25:32 32,140 ----a-w c:\windows\STK014\STK014W1.sys
- 2003-07-15 09:25:48 99,476 ----a-w c:\windows\STK014\STK014W2.sys
+ 2003-07-15 10:25:48 99,476 ----a-w c:\windows\STK014\STK014W2.sys
- 2002-07-16 16:41:40 35,851 ----a-w c:\windows\STK014\STK014W2K1.exe
+ 2002-07-16 17:41:40 35,851 ----a-w c:\windows\STK014\STK014W2K1.exe
- 2002-07-16 16:41:40 38,400 ----a-w c:\windows\STK014\STK014W2K2.exe
+ 2002-07-16 17:41:40 38,400 ----a-w c:\windows\STK014\STK014W2K2.exe
- 2002-07-16 16:41:42 87,392 ----a-w c:\windows\STK014\twain.dll
+ 2002-07-16 17:41:42 87,392 ----a-w c:\windows\STK014\twain.dll
- 2002-07-16 16:41:42 77,312 ----a-w c:\windows\STK014\twain_32.dll
+ 2002-07-16 17:41:42 77,312 ----a-w c:\windows\STK014\twain_32.dll
- 2002-07-16 16:41:42 48,560 ----a-w c:\windows\STK014\twunk_16.exe
+ 2002-07-16 17:41:42 48,560 ----a-w c:\windows\STK014\twunk_16.exe
- 2002-07-16 16:41:42 78,336 ----a-w c:\windows\STK014\twunk_32.exe
+ 2002-07-16 17:41:42 78,336 ----a-w c:\windows\STK014\twunk_32.exe
- 2000-08-31 06:00:00 161,792 ----a-w c:\windows\SWREG.exe
+ 2000-08-31 07:00:00 161,792 ----a-w c:\windows\SWREG.exe
- 2008-06-23 16:15:47 124,928 ----a-w c:\windows\system32\advpack.dll
+ 2008-10-16 20:04:22 124,928 ----a-w c:\windows\system32\advpack.dll
- 2004-08-19 22:37:43 8,704 ----a-w c:\windows\system32\asferror.dll
+ 2006-11-03 08:56:54 7,680 ----a-w c:\windows\system32\asferror.dll
+ 2006-10-18 20:47:08 276,992 ------w c:\windows\system32\audiodev.dll
- 2004-08-19 22:39:04 286,208 ----a-w c:\windows\system32\blackbox.dll
+ 2006-10-18 20:47:10 542,720 ----a-w c:\windows\system32\blackbox.dll
- 2008-07-18 20:10:48 94,920 ----a-w c:\windows\system32\cdm.dll
+ 2008-10-16 13:09:44 92,696 ----a-w c:\windows\system32\cdm.dll
- 2004-08-19 22:39:06 159,232 ----a-w c:\windows\system32\cewmdm.dll
+ 2006-10-18 20:47:10 229,376 ----a-w c:\windows\system32\cewmdm.dll
+ 2004-04-23 11:00:00 116,736 ----a-w c:\windows\system32\CNMLM5y.DLL
+ 2004-04-23 11:00:00 7,680 ----a-w c:\windows\system32\CNMVS5y.DLL
- 2008-06-23 16:15:47 124,928 -c----w c:\windows\system32\dllcache\advpack.dll
+ 2008-10-16 20:04:22 124,928 -c----w c:\windows\system32\dllcache\advpack.dll
- 2008-06-20 10:44:38 138,368 -c----w c:\windows\system32\dllcache\afd.sys
+ 2008-08-14 09:51:43 138,368 -c----w c:\windows\system32\dllcache\afd.sys
- 2008-07-18 20:10:48 94,920 -c--a-w c:\windows\system32\dllcache\cdm.dll
+ 2008-10-16 13:09:44 92,696 -c--a-w c:\windows\system32\dllcache\cdm.dll
- 2008-06-23 16:15:47 347,136 -c----w c:\windows\system32\dllcache\dxtmsft.dll
+ 2008-10-16 20:04:22 347,136 -c----w c:\windows\system32\dllcache\dxtmsft.dll
- 2008-06-23 16:15:47 214,528 -c----w c:\windows\system32\dllcache\dxtrans.dll
+ 2008-10-16 20:04:22 214,528 -c----w c:\windows\system32\dllcache\dxtrans.dll
- 2008-06-23 16:15:47 133,120 -c----w c:\windows\system32\dllcache\extmgr.dll
+ 2008-10-16 20:04:22 133,120 -c----w c:\windows\system32\dllcache\extmgr.dll
- 2008-02-20 06:50:40 282,624 -c----w c:\windows\system32\dllcache\gdi32.dll
+ 2008-10-23 12:59:54 283,648 -c----w c:\windows\system32\dllcache\gdi32.dll
- 2008-06-23 16:15:47 63,488 -c----w c:\windows\system32\dllcache\icardie.dll
+ 2008-10-16 20:04:22 63,488 -c----w c:\windows\system32\dllcache\icardie.dll
- 2008-06-23 09:22:17 70,656 -c----w c:\windows\system32\dllcache\ie4uinit.exe
+ 2008-10-16 13:13:44 70,656 -c----w c:\windows\system32\dllcache\ie4uinit.exe
- 2008-06-23 16:15:47 153,088 -c----w c:\windows\system32\dllcache\ieakeng.dll
+ 2008-10-16 20:04:22 153,088 -c----w c:\windows\system32\dllcache\ieakeng.dll
- 2008-06-23 16:15:47 230,400 -c----w c:\windows\system32\dllcache\ieaksie.dll
+ 2008-10-16 20:04:22 230,400 -c----w c:\windows\system32\dllcache\ieaksie.dll
- 2008-06-21 05:23:54 161,792 -c----w c:\windows\system32\dllcache\ieakui.dll
+ 2008-10-15 07:04:53 161,792 -c----w c:\windows\system32\dllcache\ieakui.dll
- 2008-06-23 16:15:47 383,488 -c----w c:\windows\system32\dllcache\ieapfltr.dll
+ 2008-10-16 20:04:22 383,488 -c----w c:\windows\system32\dllcache\ieapfltr.dll
- 2008-06-23 16:15:47 384,512 -c----w c:\windows\system32\dllcache\iedkcs32.dll
+ 2008-10-16 20:04:22 384,512 -c----w c:\windows\system32\dllcache\iedkcs32.dll
- 2008-06-23 16:15:48 6,066,176 -c----w c:\windows\system32\dllcache\ieframe.dll
+ 2008-10-16 20:04:23 6,066,176 -c----w c:\windows\system32\dllcache\ieframe.dll
- 2008-06-23 16:15:48 44,544 -c----w c:\windows\system32\dllcache\iernonce.dll
+ 2008-10-16 20:04:23 44,544 -c----w c:\windows\system32\dllcache\iernonce.dll
- 2008-06-23 16:15:48 267,776 -c----w c:\windows\system32\dllcache\iertutil.dll
+ 2008-10-16 20:04:23 267,776 -c----w c:\windows\system32\dllcache\iertutil.dll
- 2008-06-23 09:20:26 13,824 -c----w c:\windows\system32\dllcache\ieudinit.exe
+ 2008-10-16 13:11:09 13,824 -c----w c:\windows\system32\dllcache\ieudinit.exe
- 2008-06-23 09:22:32 625,664 -c----w c:\windows\system32\dllcache\iexplore.exe
+ 2008-10-15 07:06:26 633,632 -c----w c:\windows\system32\dllcache\iexplore.exe
- 2004-08-19 21:39:14 47,616 -c--a-w c:\windows\system32\dllcache\iyuv_32.dll
+ 2004-08-19 22:39:14 47,616 -c--a-w c:\windows\system32\dllcache\iyuv_32.dll
- 2008-06-23 16:15:48 27,648 -c----w c:\windows\system32\dllcache\jsproxy.dll
+ 2008-10-16 20:04:23 27,648 -c----w c:\windows\system32\dllcache\jsproxy.dll
- 2004-08-04 05:15:22 140,928 -c--a-w c:\windows\system32\dllcache\ks.sys
+ 2004-08-04 06:15:22 140,928 -c--a-w c:\windows\system32\dllcache\ks.sys
- 2004-08-19 21:39:14 4,096 -c--a-w c:\windows\system32\dllcache\ksuser.dll
+ 2004-08-19 22:39:14 4,096 -c--a-w c:\windows\system32\dllcache\ksuser.dll
+ 2008-06-18 00:09:22 100,864 -c----w c:\windows\system32\dllcache\logagent.exe
- 2006-05-05 09:41:45 453,120 -c----w c:\windows\system32\dllcache\mrxsmb.sys
+ 2008-10-24 11:10:42 453,632 -c----w c:\windows\system32\dllcache\mrxsmb.sys
- 2008-06-23 16:15:48 459,264 -c----w c:\windows\system32\dllcache\msfeeds.dll
+ 2008-10-16 20:04:23 459,264 -c----w c:\windows\system32\dllcache\msfeeds.dll
- 2008-06-23 16:15:48 52,224 -c----w c:\windows\system32\dllcache\msfeedsbs.dll
+ 2008-10-16 20:04:23 52,224 -c----w c:\windows\system32\dllcache\msfeedsbs.dll
- 2008-06-24 08:15:50 3,592,192 -c----w c:\windows\system32\dllcache\mshtml.dll
+ 2008-12-13 06:36:24 3,593,216 -c----w c:\windows\system32\dllcache\mshtml.dll
- 2008-06-23 16:15:49 477,696 -c----w c:\windows\system32\dllcache\mshtmled.dll
+ 2008-10-16 20:04:24 477,696 -c----w c:\windows\system32\dllcache\mshtmled.dll
+ 2004-08-04 06:00:46 22,016 -c--a-w c:\windows\system32\dllcache\msircomm.sys
- 2008-06-23 16:15:49 193,024 -c----w c:\windows\system32\dllcache\msrating.dll
+ 2008-10-16 20:04:24 193,024 -c----w c:\windows\system32\dllcache\msrating.dll
- 2008-06-23 16:15:49 671,232 -c----w c:\windows\system32\dllcache\mstime.dll
+ 2008-10-16 20:04:24 671,232 -c----w c:\windows\system32\dllcache\mstime.dll
- 2007-06-26 06:08:38 1,104,896 -c--a-w c:\windows\system32\dllcache\msxml3.dll
+ 2008-09-04 16:44:18 1,106,944 -c--a-w c:\windows\system32\dllcache\msxml3.dll
- 2004-08-19 21:39:20 17,408 -c--a-w c:\windows\system32\dllcache\msyuv.dll
+ 2004-08-19 22:39:20 17,408 -c--a-w c:\windows\system32\dllcache\msyuv.dll
- 2006-08-17 12:29:46 332,288 -c----w c:\windows\system32\dllcache\netapi32.dll
+ 2008-10-15 16:57:30 332,800 -c----w c:\windows\system32\dllcache\netapi32.dll
- 2007-02-28 16:02:21 2,139,648 -c----w c:\windows\system32\dllcache\ntkrnlmp.exe
+ 2008-08-14 13:42:54 2,139,648 -c----w c:\windows\system32\dllcache\ntkrnlmp.exe
- 2007-02-28 16:02:36 2,061,312 -c----w c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2008-08-14 13:42:58 2,061,440 -c----w c:\windows\system32\dllcache\ntkrnlpa.exe
- 2007-02-28 16:02:17 2,019,328 -c----w c:\windows\system32\dllcache\ntkrpamp.exe
+ 2008-08-14 13:42:54 2,019,328 -c----w c:\windows\system32\dllcache\ntkrpamp.exe
- 2007-02-28 16:02:28 2,184,064 -c----w c:\windows\system32\dllcache\ntoskrnl.exe
+ 2008-08-14 13:42:59 2,184,064 -c----w c:\windows\system32\dllcache\ntoskrnl.exe
- 2008-06-23 16:15:49 102,912 -c----w c:\windows\system32\dllcache\occache.dll
+ 2008-10-16 20:04:24 102,912 -c----w c:\windows\system32\dllcache\occache.dll
- 2008-06-23 16:15:49 44,544 -c----w c:\windows\system32\dllcache\pngfilt.dll
+ 2008-10-16 20:04:25 44,544 -c----w c:\windows\system32\dllcache\pngfilt.dll
- 2006-08-14 10:34:41 332,928 -c----w c:\windows\system32\dllcache\srv.sys
+ 2008-12-11 11:57:21 333,184 -c----w c:\windows\system32\dllcache\srv.sys
- 2006-08-24 12:19:52 246,814 -c----w c:\windows\system32\dllcache\strmdll.dll
+ 2008-10-03 10:15:48 247,326 -c----w c:\windows\system32\dllcache\strmdll.dll
- 2001-08-30 21:08:00 8,192 -c--a-w c:\windows\system32\dllcache\tsbyuv.dll
+ 2001-08-30 22:08:00 8,192 -c--a-w c:\windows\system32\dllcache\tsbyuv.dll
- 2008-06-23 16:15:49 105,984 -c----w c:\windows\system32\dllcache\url.dll
+ 2008-10-16 20:04:25 105,984 -c----w c:\windows\system32\dllcache\url.dll
- 2008-06-23 16:15:49 1,159,680 -c----w c:\windows\system32\dllcache\urlmon.dll
+ 2008-10-16 20:04:25 1,160,192 -c----w c:\windows\system32\dllcache\urlmon.dll
- 2004-08-19 21:39:30 54,784 -c--a-w c:\windows\system32\dllcache\vfwwdm32.dll
+ 2004-08-19 22:39:30 54,784 -c--a-w c:\windows\system32\dllcache\vfwwdm32.dll
- 2008-06-23 16:15:49 233,472 -c----w c:\windows\system32\dllcache\webcheck.dll
+ 2008-10-16 20:04:25 233,472 -c----w c:\windows\system32\dllcache\webcheck.dll
- 2008-03-20 08:06:49 1,845,248 -c----w c:\windows\system32\dllcache\win32k.sys
+ 2008-09-15 15:38:29 1,846,016 -c----w c:\windows\system32\dllcache\win32k.sys
- 2008-06-23 16:15:49 826,368 -c----w c:\windows\system32\dllcache\wininet.dll
+ 2008-10-16 20:04:25 826,368 -c----w c:\windows\system32\dllcache\wininet.dll
- 2007-10-25 09:00:50 230,912 -c----w c:\windows\system32\dllcache\wmasf.dll
+ 2007-10-25 08:28:30 222,720 -c----w c:\windows\system32\dllcache\wmasf.dll
+ 2008-06-18 04:03:08 938,496 -c----w c:\windows\system32\dllcache\WMNetmgr.dll
- 2007-10-25 09:01:10 2,109,440 -c----w c:\windows\system32\dllcache\wmvcore.dll
+ 2008-06-18 04:03:14 2,458,112 -c--a-w c:\windows\system32\dllcache\wmvcore.dll
+ 2008-10-16 13:12:20 561,688 -c--a-w c:\windows\system32\dllcache\wuapi.dll
- 2008-07-18 20:10:42 53,448 -c--a-w c:\windows\system32\dllcache\wuauclt.exe
+ 2008-10-16 13:09:44 51,224 -c--a-w c:\windows\system32\dllcache\wuauclt.exe
- 2008-07-18 20:09:42 1,811,656 -c--a-w c:\windows\system32\dllcache\wuaueng.dll
+ 2008-10-16 13:13:40 1,809,944 -c--a-w c:\windows\system32\dllcache\wuaueng.dll
+ 2008-10-16 13:12:22 323,608 -c--a-w c:\windows\system32\dllcache\wucltui.dll
+ 2008-10-16 13:08:58 34,328 -c--a-w c:\windows\system32\dllcache\wups.dll
+ 2008-10-16 13:13:40 202,776 -c--a-w c:\windows\system32\dllcache\wuweb.dll
- 2008-06-20 10:44:38 138,368 ----a-w c:\windows\system32\drivers\afd.sys
+ 2008-08-14 09:51:43 138,368 ----a-w c:\windows\system32\drivers\afd.sys
- 2008-10-03 07:39:58 26,824 ----a-w c:\windows\system32\drivers\avgmfx86.sys
+ 2009-02-03 20:18:56 27,656 ----a-w c:\windows\system32\drivers\avgmfx86.sys
+ 2008-09-16 00:14:18 9,336 ------w c:\windows\system32\drivers\cdr4_xp.sys
+ 2008-09-16 00:14:20 9,464 ------w c:\windows\system32\drivers\cdralw2k.sys
- 2004-08-04 05:15:22 140,928 ----a-w c:\windows\system32\drivers\ks.sys
+ 2004-08-04 06:15:22 140,928 ----a-w c:\windows\system32\drivers\ks.sys
- 2006-05-05 09:41:45 453,120 ----a-w c:\windows\system32\drivers\mrxsmb.sys
+ 2008-10-24 11:10:42 453,632 ----a-w c:\windows\system32\drivers\mrxsmb.sys
+ 2004-08-04 06:00:46 22,016 ----a-w c:\windows\system32\drivers\MSIRCOMM.sys
+ 2003-04-01 17:55:46 35,319 ------w c:\windows\system32\drivers\NETMD031.sys
+ 2003-11-10 11:31:38 36,232 ------w c:\windows\system32\drivers\NETMD033.sys
+ 2002-08-08 14:51:32 38,951 ------w c:\windows\system32\drivers\NETMDUSB.sys
- 2003-09-19 13:45:48 21,248 ----a-w c:\windows\system32\drivers\pfc.sys
+ 2003-09-19 14:45:48 21,248 ----a-w c:\windows\system32\drivers\pfc.sys
+ 2008-07-31 22:17:04 43,872 ----a-w c:\windows\system32\drivers\pxhelp20.sys
+ 2006-10-18 20:47:22 671,232 ------w c:\windows\system32\drivers\UMDF\wpdmtpdr.dll
+ 2006-10-18 19:00:00 38,528 ------w c:\windows\system32\drivers\wpdusb.sys
+ 2006-09-28 17:55:50 77,568 ------w c:\windows\system32\drivers\WudfPf.sys
+ 2006-09-28 18:00:34 82,944 ------w c:\windows\system32\drivers\WudfRd.sys
+ 2006-10-18 19:00:46 249,856 ------w c:\windows\system32\drmupgds.exe
- 2004-08-19 22:39:51 695,296 ----a-w c:\windows\system32\drmv2clt.dll
+ 2006-10-18 20:47:10 991,744 ----a-w c:\windows\system32\drmv2clt.dll
- 2008-06-23 16:15:47 347,136 ----a-w c:\windows\system32\dxtmsft.dll
+ 2008-10-16 20:04:22 347,136 ----a-w c:\windows\system32\dxtmsft.dll
- 2008-06-23 16:15:47 214,528 ----a-w c:\windows\system32\dxtrans.dll
+ 2008-10-16 20:04:22 214,528 ----a-w c:\windows\system32\dxtrans.dll
- 2008-06-23 16:15:47 133,120 ----a-w c:\windows\system32\extmgr.dll
+ 2008-10-16 20:04:22 133,120 ----a-w c:\windows\system32\extmgr.dll
- 2008-08-07 19:07:01 142,032 ----a-w c:\windows\system32\FNTCACHE.DAT
+ 2008-10-15 13:09:41 142,032 ----a-w c:\windows\system32\FNTCACHE.DAT
- 2008-02-20 06:50:40 282,624 ----a-w c:\windows\system32\gdi32.dll
+ 2008-10-23 12:59:54 283,648 ----a-w c:\windows\system32\gdi32.dll
- 2008-06-23 16:15:47 63,488 ----a-w c:\windows\system32\icardie.dll
+ 2008-10-16 20:04:22 63,488 ----a-w c:\windows\system32\icardie.dll
- 2008-06-23 09:22:17 70,656 ----a-w c:\windows\system32\ie4uinit.exe
+ 2008-10-16 13:13:44 70,656 ----a-w c:\windows\system32\ie4uinit.exe
- 2008-06-23 16:15:47 153,088 ----a-w c:\windows\system32\ieakeng.dll
+ 2008-10-16 20:04:22 153,088 ----a-w c:\windows\system32\ieakeng.dll
- 2008-06-23 16:15:47 230,400 ----a-w c:\windows\system32\ieaksie.dll
+ 2008-10-16 20:04:22 230,400 ----a-w c:\windows\system32\ieaksie.dll
- 2008-06-21 05:23:54 161,792 ----a-w c:\windows\system32\ieakui.dll
+ 2008-10-15 07:04:53 161,792 ----a-w c:\windows\system32\ieakui.dll
- 2008-06-23 16:15:47 383,488 ----a-w c:\windows\system32\ieapfltr.dll
+ 2008-10-16 20:04:22 383,488 ----a-w c:\windows\system32\ieapfltr.dll
- 2008-06-23 16:15:47 384,512 ----a-w c:\windows\system32\iedkcs32.dll
+ 2008-10-16 20:04:22 384,512 ----a-w c:\windows\system32\iedkcs32.dll
- 2008-06-23 16:15:48 6,066,176 ----a-w c:\windows\system32\ieframe.dll
+ 2008-10-16 20:04:23 6,066,176 ----a-w c:\windows\system32\ieframe.dll
- 2008-06-23 16:15:48 44,544 ----a-w c:\windows\system32\iernonce.dll
+ 2008-10-16 20:04:23 44,544 ----a-w c:\windows\system32\iernonce.dll
- 2008-06-23 16:15:48 267,776 ----a-w c:\windows\system32\iertutil.dll
+ 2008-10-16 20:04:23 267,776 ----a-w c:\windows\system32\iertutil.dll
- 2008-06-23 09:20:26 13,824 ----a-w c:\windows\system32\ieudinit.exe
+ 2008-10-16 13:11:09 13,824 ----a-w c:\windows\system32\ieudinit.exe
+ 2006-01-28 16:00:00 28,672 ----a-r c:\windows\system32\IMF32.DLL
- 2004-08-19 21:39:14 47,616 ----a-w c:\windows\system32\iyuv_32.dll
+ 2004-08-19 22:39:14 47,616 ----a-w c:\windows\system32\iyuv_32.dll
- 2008-06-23 16:15:48 27,648 ----a-w c:\windows\system32\jsproxy.dll
+ 2008-10-16 20:04:23 27,648 ----a-w c:\windows\system32\jsproxy.dll
- 2004-08-19 21:39:14 4,096 ----a-w c:\windows\system32\ksuser.dll
+ 2004-08-19 22:39:14 4,096 ----a-w c:\windows\system32\ksuser.dll
- 2004-08-19 22:39:14 6,656 ----a-w c:\windows\system32\laprxy.dll
+ 2006-10-18 20:47:14 11,264 ----a-w c:\windows\system32\LAPRXY.dll
- 2004-08-19 22:39:37 103,936 ----a-w c:\windows\system32\logagent.exe
+ 2008-06-18 00:09:22 100,864 ----a-w c:\windows\system32\logagent.exe
+ 2006-10-18 20:47:14 212,992 ------w c:\windows\system32\MFPLAT.dll
+ 2006-10-18 20:47:14 259,072 ------w c:\windows\system32\MP43DECD.dll
- 2004-08-19 22:39:15 310,272 ----a-w c:\windows\system32\mp43dmod.dll
+ 2006-10-18 20:47:14 4,096 ----a-w c:\windows\system32\MP43DMOD.dll
+ 2006-10-18 20:47:14 317,440 ------w c:\windows\system32\MP4SDECD.dll
- 2004-08-19 22:39:16 384,512 ----a-w c:\windows\system32\mp4sdmod.dll
+ 2006-10-18 20:47:14 4,096 ----a-w c:\windows\system32\MP4SDMOD.dll
+ 2006-10-18 20:47:14 259,072 ------w c:\windows\system32\MPG4DECD.dll
- 2004-08-19 22:39:16 240,640 ----a-w c:\windows\system32\mpg4dmod.dll
+ 2006-10-18 20:47:14 4,096 ----a-w c:\windows\system32\MPG4DMOD.dll
- 2008-03-05 16:30:54 19,148,408 ----a-w c:\windows\system32\MRT.exe
+ 2009-01-10 01:35:28 20,853,704 ----a-w c:\windows\system32\MRT.exe
+ 2006-10-02 14:28:42 312,128 ------w c:\windows\system32\msdelta.dll
- 2008-06-23 16:15:48 459,264 ----a-w c:\windows\system32\msfeeds.dll
+ 2008-10-16 20:04:23 459,264 ----a-w c:\windows\system32\msfeeds.dll
- 2008-06-23 16:15:48 52,224 ----a-w c:\windows\system32\msfeedsbs.dll
+ 2008-10-16 20:04:23 52,224 ----a-w c:\windows\system32\msfeedsbs.dll
- 2004-08-19 21:39:48 299,008 ----a-w c:\windows\system32\msh263.drv
+ 2004-08-19 22:39:48 299,008 ----a-w c:\windows\system32\msh263.drv
- 2008-06-24 08:15:50 3,592,192 ----a-w c:\windows\system32\mshtml.dll
+ 2008-12-13 06:36:24 3,593,216 ----a-w c:\windows\system32\mshtml.dll
- 2008-06-23 16:15:49 477,696 ----a-w c:\windows\system32\mshtmled.dll
+ 2008-10-16 20:04:24 477,696 ----a-w c:\windows\system32\mshtmled.dll
- 2004-08-19 22:39:49 259,072 ----a-w c:\windows\system32\msnetobj.dll
+ 2006-10-18 20:47:16 179,712 ----a-w c:\windows\system32\msnetobj.dll
- 2004-08-19 22:39:17 52,736 ----a-w c:\windows\system32\mspmsnsv.dll
+ 2006-10-18 20:47:16 27,136 ----a-w c:\windows\system32\mspmsnsv.dll
- 2004-08-19 22:39:17 201,728 ----a-w c:\windows\system32\mspmsp.dll
+ 2006-10-18 20:47:16 175,616 ----a-w c:\windows\system32\mspmsp.dll
- 2008-06-23 16:15:49 193,024 ----a-w c:\windows\system32\msrating.dll
+ 2008-10-16 20:04:24 193,024 ----a-w c:\windows\system32\msrating.dll
- 2004-08-19 22:39:50 356,352 ----a-w c:\windows\system32\msscp.dll
+ 2006-12-04 15:21:50 414,720 ----a-w c:\windows\system32\msscp.dll
- 2008-06-23 16:15:49 671,232 ----a-w c:\windows\system32\mstime.dll
+ 2008-10-16 20:04:24 671,232 ----a-w c:\windows\system32\mstime.dll
- 2004-08-19 22:39:19 246,272 ----a-w c:\windows\system32\mswmdm.dll
+ 2006-10-18 20:47:16 321,536 ----a-w c:\windows\system32\mswmdm.dll
- 2007-06-26 06:08:38 1,104,896 ----a-w c:\windows\system32\msxml3.dll
+ 2008-09-04 16:44:18 1,106,944 ----a-w c:\windows\system32\msxml3.dll
- 2004-08-19 21:39:20 17,408 ----a-w c:\windows\system32\msyuv.dll
+ 2004-08-19 22:39:20 17,408 ----a-w c:\windows\system32\msyuv.dll
- 2008-07-18 20:07:34 270,880 ----a-w c:\windows\system32\mucltui.dll
+ 2008-10-16 13:06:48 268,648 ----a-w c:\windows\system32\mucltui.dll
- 2008-07-18 20:07:32 210,976 ----a-w c:\windows\system32\muweb.dll
+ 2008-10-16 13:06:48 208,744 ----a-w c:\windows\system32\muweb.dll
- 2006-08-17 12:29:46 332,288 ----a-w c:\windows\system32\netapi32.dll
+ 2008-10-15 16:57:30 332,800 ----a-w c:\windows\system32\netapi32.dll
- 2007-02-28 16:02:36 2,061,312 ----a-w c:\windows\system32\ntkrnlpa.exe
+ 2008-08-14 13:42:58 2,061,440 ----a-w c:\windows\system32\ntkrnlpa.exe
- 2007-02-28 16:02:28 2,184,064 ----a-w c:\windows\system32\ntoskrnl.exe
+ 2008-08-14 13:42:59 2,184,064 ----a-w c:\windows\system32\ntoskrnl.exe
- 2008-06-23 16:15:49 102,912 ----a-w c:\windows\system32\occache.dll
+ 2008-10-16 20:04:24 102,912 ----a-w c:\windows\system32\occache.dll
- 2008-04-17 13:34:42 40,326 ----a-w c:\windows\system32\perfc009.dat
+ 2009-01-12 22:25:24 40,326 ----a-w c:\windows\system32\perfc009.dat
- 2008-04-17 13:34:42 47,928 ----a-w c:\windows\system32\perfc010.dat
+ 2009-01-12 22:25:25 47,928 ----a-w c:\windows\system32\perfc010.dat
- 2008-04-17 13:34:42 311,938 ----a-w c:\windows\system32\perfh009.dat
+ 2009-01-12 22:25:24 311,938 ----a-w c:\windows\system32\perfh009.dat
- 2008-04-17 13:34:42 345,294 ----a-w c:\windows\system32\perfh010.dat
+ 2009-01-12 22:25:25 345,294 ----a-w c:\windows\system32\perfh010.dat
- 2008-06-23 16:15:49 44,544 ----a-w c:\windows\system32\pngfilt.dll
+ 2008-10-16 20:04:25 44,544 ----a-w c:\windows\system32\pngfilt.dll
+ 2006-10-18 20:47:18 284,160 ------w c:\windows\system32\PortableDeviceApi.dll
+ 2006-10-18 20:47:18 101,888 ------w c:\windows\system32\PortableDeviceClassExtension.dll
+ 2006-10-18 20:47:18 166,912 ------w c:\windows\system32\PortableDeviceTypes.dll
+ 2006-10-18 20:47:18 132,096 ------w c:\windows\system32\PortableDeviceWiaCompat.dll
+ 2006-10-18 20:47:18 199,168 ------w c:\windows\system32\PortableDeviceWMDRM.dll
+ 2008-09-16 00:14:18 551,672 ------w c:\windows\system32\px.dll
+ 2008-09-16 00:14:18 129,784 ------w c:\windows\system32\pxafs.dll
+ 2008-09-16 00:14:18 66,296 ------w c:\windows\system32\pxcpya64.exe
+ 2008-09-16 00:14:18 120,056 ------w c:\windows\system32\pxcpyi64.exe
+ 2008-09-16 00:14:18 518,904 ------w c:\windows\system32\pxdrv.dll
+ 2008-09-16 00:14:20 72,440 ------w c:\windows\system32\pxhpinst.exe
+ 2008-09-16 00:14:18 64,760 ------w c:\windows\system32\pxinsa64.exe
+ 2008-09-16 00:14:18 118,520 ------w c:\windows\system32\pxinsi64.exe
+ 2008-09-16 00:14:20 187,128 ------w c:\windows\system32\pxmas.dll
+ 2008-09-16 00:14:18 1,628,920 ------w c:\windows\system32\pxsfs.dll
+ 2008-09-16 00:14:20 379,640 ------w c:\windows\system32\pxwave.dll
- 2004-08-19 22:39:23 237,568 ----a-w c:\windows\system32\qasf.dll
+ 2006-10-18 20:47:18 211,456 ----a-w c:\windows\system32\qasf.dll
+ 2009-01-25 12:52:18 822,588 ----a-w c:\windows\system32\Restore\rstrlog.dat
+ 2008-10-16 13:08:58 34,328 ----a-w c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.2.6001.788\wups.dll
+ 2008-10-16 13:09:44 43,544 ----a-w c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.2.6001.788\wups2.dll
- 2007-11-30 12:39:40 18,808 ----a-w c:\windows\system32\spmsg.dll
+ 2006-09-25 16:58:48 14,640 ------w c:\windows\system32\spmsg.dll
+ 2004-04-23 11:00:00 61,952 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMCP5y.DLL
+ 2004-04-23 11:00:00 153,600 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMD55y.DLL
+ 2004-04-23 11:00:00 397,824 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMDR5y.DLL
+ 2004-04-23 11:00:00 19,456 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMFU5y.DLL
+ 2004-04-23 11:00:00 106,496 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMOP5y.DLL
+ 2004-04-23 11:00:00 23,280 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMP05y.DAT
+ 2004-04-23 11:00:00 27,140 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMP15y.DAT
+ 2004-04-23 11:00:00 30,320 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMP25y.DAT
+ 2004-04-23 11:00:00 6,656 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMPI5y.DLL
+ 2004-04-23 11:00:00 80,896 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMPV5y.EXE
+ 2004-04-23 11:00:00 758,784 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMSB5y.DLL
+ 2004-04-23 11:00:00 8,704 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMSD5y.EXE
+ 2004-04-23 11:00:00 130,048 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMSM5y.EXE
+ 2004-04-23 11:00:00 6,656 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMSQ5y.EXE
+ 2004-04-23 11:00:00 110,592 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMSR5y.DLL
+ 2004-04-23 11:00:00 205,312 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMUB5y.DLL
+ 2004-04-23 11:00:00 1,571,840 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMUI5y.DLL
+ 2004-04-23 11:00:00 614,912 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMUM5y.DLL
+ 2004-04-23 11:00:00 219,136 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMUR5y.DLL
+ 2004-04-23 11:00:00 6,656 ----a-w c:\windows\system32\spool\drivers\w32x86\3\CNMW35y.DLL
+ 2004-04-23 11:00:00 61,952 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMCP5y.DLL
+ 2004-04-23 11:00:00 153,600 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMD55y.DLL
+ 2004-04-23 11:00:00 397,824 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMDR5y.DLL
+ 2004-04-23 11:00:00 19,456 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMFU5y.DLL
+ 2004-04-23 11:00:00 106,496 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMOP5y.DLL
+ 2004-04-23 11:00:00 23,280 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMP05y.DAT
+ 2004-04-23 11:00:00 27,140 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMP15y.DAT
+ 2004-04-23 11:00:00 30,320 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMP25y.DAT
+ 2004-04-23 11:00:00 6,656 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMPI5y.DLL
+ 2004-04-23 11:00:00 80,896 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CNMPV5y.EXE
+ 2004-04-23 11:00:00 758,784 ----a-w c:\windows\system32\spool\drivers\w32x86\canonip150039e6\CN
0

Discussions similaires

Comment trouver une adresse avec un nom de famille ?
nanou69 -
chrys -

9 réponses
Retrouver une personne avec son nom de famille
jaramina -
SmartX_02 -

8 réponses
Comment localiser l'adresse d'une personne sur instagram
Axel_17890 -
Chris 94 -

1 réponse
chercher une adresse d une personne
ange -
ghita -

23 réponses
Retrouver quelqu'un
Kurgadon -
Utilisateur anonyme -

65 réponses