Sujet Précédent Sujet Suivant

Cheval de troie Crypt.XPACK.Gen

Fermé
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015 - 25 avril 2009 à 10:58
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015 - 14 mai 2009 à 14:51
Bonjour,
je voudrais savoir comment eliminer l'autorun.inf et le cheval de troie Crypt.XPACK.Gen de mon pc et de mes flash disks.Merci
A voir également:

105 réponses

Précédent
Réponse 81 / 105
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
1 mai 2009 à 11:27
désolé je dois quitter
0
Réponse 82 / 105
Utilisateur anonyme
1 mai 2009 à 21:32
bon on va re-essayer mais en mode sans echec

# Désinstalle Combofix : Menu démarrer --> exécuter --> tape Combofix /u (l'espace entre Combofix et /u est important)
Si ça ne suffit pas, supprime manuellement les restes.


# Télécharge Combofix (que j'ai renommé en rambo.exe) ici
Mais ne le lance pas tout de suite.


# Redémarre en mode sans échec :
Tu n' auras pas accès à Internet pendant le "mode sans échec". Aussi, copie/colle toute cette procédure dans un fichier texte et mets-la sur le "Bureau" pour l'avoir à ta disposition. Ferme toutes les fenêtres et applications.
Redémarre ton ordinateur, puis tapote sur la touche F8 (F5 sur certains PC) avant l’apparition du logo Windows, un menu va apparaître, tu devra choisir de démarrer en mode sans échec. Choisis ta session habituelle, et ne t'inquiète pas si les couleurs et la taille des icônes changent, c'est normal !


# Puis lance Combofix depuis ce mode stp
0
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
1 mai 2009 à 21:49
salut,rambo se telecharge il lui reste 5 mn! J'ai failli faire un degat ,j'ai laissé avira et le pare-feu actifs en désinstallant colombo
0
Réponse 83 / 105
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
1 mai 2009 à 23:24
j'ai fait ce que tu m'as demandé mais apres avoir lancé rambo un message me dit qu'il n'y a pas de console de recuperation et qu'il faudrait se connecter pour pouvoir l'installer et comme je suis en mode sans echec la connexion est impossible je crois
0
Réponse 84 / 105
Utilisateur anonyme
2 mai 2009 à 11:03
essaies le mode sans echec avec prise en charge reseau
0
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
2 mai 2009 à 22:00
salut, je viens de me connecter j'espère que je ne t'ennuie pas trop
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 85 / 105
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
3 mai 2009 à 04:04
ComboFix 09-05-01.1 - bisbytat 03/05/2009 2:47.1 - NTFSx86 NETWORK
Microsoft Windows XP Professionnel 5.1.2600.2.1252.33.1036.18.1790.1525 [GMT 2:00]
Lancé depuis: c:\documents and settings\bisbytat\Bureau\rambo.exe
AV: Avira Premium Security Suite *On-access scanning disabled* (Updated)
FW: Avira Pare-feu *disabled*

AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!
.

((((((((((((((((((((((((((((( Fichiers créés du 2009-04-03 au 2009-05-03 ))))))))))))))))))))))))))))))))))))
.

2009-04-29 13:46 . 2009-04-29 13:48 -------- d-----w C:\rsit
2009-04-29 09:54 . 2009-04-29 09:57 -------- d-----w C:\Rooter$
2009-04-28 23:32 . 2009-04-28 23:33 -------- d-----w c:\program files\Fichiers communs\Adobe
2009-04-28 22:36 . 2009-04-28 22:39 -------- d-----w c:\program files\SpywareBlaster
2009-04-27 14:35 . 2009-04-27 14:35 -------- d-----w c:\windows\system32\fr-fr
2009-04-27 14:32 . 2009-04-27 14:32 -------- d--h--w c:\windows\$hf_mig$
2009-04-27 14:09 . 2009-04-27 14:09 -------- d-----w c:\documents and settings\bisbytat\Application Data\PDM
2009-04-27 14:08 . 2009-04-27 14:08 -------- d-----w c:\program files\Palm Digital Media
2009-04-26 22:34 . 2009-01-04 10:35 31232 ----a-w c:\windows\system\vdremote.dll
2009-04-26 22:34 . 2009-01-04 10:35 25088 ----a-w c:\windows\system\vdsvrlnk.dll
2009-04-26 21:52 . 2009-04-27 04:57 -------- d-----w c:\documents and settings\bisbytat\Application Data\vlc
2009-04-26 21:52 . 2009-04-27 04:58 -------- d-----w c:\program files\adslTV
2009-04-25 11:02 . 2009-04-25 11:02 -------- d-----w c:\documents and settings\bisbytat\Application Data\Malwarebytes
2009-04-25 11:02 . 2008-10-16 18:25 15504 ----a-w c:\windows\system32\drivers\mbam.sys
2009-04-25 11:02 . 2008-10-16 18:25 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
2009-04-25 11:02 . 2009-04-25 11:02 -------- d-----w c:\documents and settings\All Users\Application Data\Malwarebytes
2009-04-25 09:31 . 2009-04-29 13:48 -------- d-----w c:\program files\Trend Micro
2009-04-24 08:15 . 2009-04-24 08:15 -------- d-----w c:\program files\Fichiers communs\PCSuite
2009-04-24 08:14 . 2008-08-26 08:26 18816 ----a-w c:\windows\system32\drivers\pccsmcfd.sys
2009-04-24 08:14 . 2009-04-24 08:14 -------- d-----w c:\program files\PC Connectivity Solution
2009-04-24 04:39 . 2009-04-24 04:39 -------- d-----w c:\documents and settings\bisbytat\Application Data\Media Player Classic
2009-04-24 04:23 . 2009-01-22 13:28 290816 ----a-w c:\windows\system32\decdll.dll
2009-04-20 15:48 . 2009-04-25 11:37 -------- d-----w c:\program files\StuffPlug3
2009-04-19 20:48 . 2009-04-19 20:48 -------- d-----w c:\documents and settings\bisbytat\Application Data\Avira
2009-04-17 10:28 . 2009-04-17 10:28 -------- d-----w c:\program files\AnmSMP
2009-04-15 10:46 . 2009-04-15 10:46 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\Help
2009-04-15 07:47 . 2009-04-15 07:47 -------- d-----w c:\program files\Free RM to MP3 Converter
2009-04-15 07:25 . 2009-04-15 07:25 -------- d-----w c:\program files\LitexMedia
2009-04-14 18:42 . 1999-09-10 11:06 4672 ----a-w c:\windows\system\wowpost.exe
2009-04-14 18:42 . 1999-09-10 11:06 5600 ----a-w c:\windows\system\winaspi.dll
2009-04-14 18:42 . 1999-09-10 11:06 25244 ----a-w c:\windows\system32\drivers\aspi32.sys
2009-04-14 18:42 . 1999-09-10 11:06 45056 ----a-w c:\windows\system32\wnaspi32.dll
2009-04-14 18:42 . 2009-04-14 18:42 203776 ----a-w c:\windows\system32\clrviddc.dll
2009-04-14 06:20 . 2009-04-14 06:20 -------- d-----w C:\Part4
2009-04-14 06:20 . 2009-04-14 06:20 -------- d-----w C:\Part3
2009-04-14 06:20 . 2009-04-14 06:20 -------- d-----w C:\Part2
2009-04-14 06:20 . 2005-01-15 19:41 -------- d-----w C:\Part1
2009-04-12 22:31 . 2009-04-12 22:31 -------- d-----w c:\program files\Fichiers communs\xing shared
2009-04-12 15:41 . 2009-04-12 15:41 -------- d-----w c:\documents and settings\bisbytat\Application Data\Mobipocket
2009-04-12 13:26 . 1998-06-17 22:00 89360 ----a-w c:\windows\system32\VB5DB.DLL
2009-04-12 13:19 . 2009-04-12 13:19 -------- d-----w c:\documents and settings\All Users\Application Data\Office Genuine Advantage
2009-04-12 04:51 . 2004-08-03 17:08 25600 -c--a-w c:\windows\system32\dllcache\usbser.sys
2009-04-12 04:51 . 2004-08-03 17:08 25600 ----a-w c:\windows\system32\drivers\usbser.sys
2009-04-12 04:50 . 2008-03-21 11:57 14640 ------w c:\windows\system32\spmsgXP_2k3.dll
2009-04-12 04:42 . 2009-04-12 04:42 -------- d-----w c:\documents and settings\All Users\Application Data\Nokia
2009-04-12 03:37 . 2009-04-12 03:37 -------- d-----w c:\program files\MSXML 6.0
2009-04-12 03:36 . 2009-04-24 08:11 -------- d-----w c:\documents and settings\All Users\Application Data\Installations
2009-04-12 03:28 . 2008-03-16 12:30 216064 --sh--r c:\windows\system32\nbDX.dll
2009-04-12 03:28 . 2007-02-21 10:47 31232 --sh--r c:\windows\system32\msfDX.dll
2009-04-12 03:28 . 2006-05-03 09:06 163328 --sh--r c:\windows\system32\flvDX.dll
2009-04-12 03:27 . 2009-04-12 03:30 -------- d-----w c:\program files\SUPER
2009-04-12 03:14 . 2009-04-12 03:14 -------- d-----w c:\documents and settings\All Users\Application Data\DVD Shrink
2009-04-12 02:15 . 2009-04-12 02:15 -------- d-----w c:\documents and settings\bisbytat\Application Data\IObit
2009-04-12 02:15 . 2009-04-12 02:15 -------- d-----w c:\program files\IObit
2009-04-12 02:06 . 2009-04-12 19:56 -------- d-----w c:\program files\SpeedBit Video Accelerator
2009-04-11 22:35 . 2009-04-22 20:46 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\WMTools Downloaded Files
2009-04-11 22:12 . 2004-08-19 10:09 116736 -c--a-w c:\windows\system32\dllcache\xrxwiadr.dll
2009-04-11 22:12 . 2001-08-23 14:47 23040 -c--a-w c:\windows\system32\dllcache\xrxwbtmp.dll
2009-04-11 22:12 . 2001-08-23 14:47 17408 -c--a-w c:\windows\system32\dllcache\xrxscnui.dll
2009-04-11 22:12 . 2001-08-23 14:47 27648 -c--a-w c:\windows\system32\dllcache\xrxftplt.exe
2009-04-11 22:12 . 2001-08-23 14:47 4608 -c--a-w c:\windows\system32\dllcache\xrxflnch.exe
2009-04-11 22:12 . 2001-08-23 14:47 99865 -c--a-w c:\windows\system32\dllcache\xlog.exe
2009-04-11 22:12 . 2001-08-17 17:11 16970 -c--a-w c:\windows\system32\dllcache\xem336n5.sys
2009-04-11 22:12 . 2004-08-03 16:29 19455 -c--a-w c:\windows\system32\dllcache\wvchntxx.sys
2009-04-11 22:12 . 2004-08-03 17:10 19328 -c--a-w c:\windows\system32\dllcache\wstcodec.sys
2009-04-11 22:12 . 2004-08-03 16:29 12063 -c--a-w c:\windows\system32\dllcache\wsiintxx.sys
2009-04-11 22:12 . 2004-08-19 10:09 8192 -c--a-w c:\windows\system32\dllcache\wshirda.dll
2009-04-11 22:12 . 2004-08-03 17:07 8832 -c--a-w c:\windows\system32\dllcache\wmiacpi.sys
2009-04-11 22:10 . 2001-08-17 18:53 7040 -c--a-w c:\windows\system32\dllcache\snyaitmc.sys
2009-04-11 22:09 . 2004-08-03 16:31 29502 -c--a-w c:\windows\system32\dllcache\pca200e.sys
2009-04-11 22:08 . 2004-08-03 17:10 15360 -c--a-w c:\windows\system32\dllcache\mpe.sys
2009-04-11 22:07 . 2004-08-03 16:41 1041536 -c--a-w c:\windows\system32\dllcache\hsfdpsp2.sys
2009-04-11 22:06 . 2001-08-17 17:20 334208 -c--a-w c:\windows\system32\dllcache\ds1wdm.sys
2009-04-11 22:05 . 2001-08-23 14:02 14080 -c--a-w c:\windows\system32\dllcache\bulltlp3.sys
2009-04-11 22:04 . 2004-08-03 17:00 12288 -c--a-w c:\windows\system32\dllcache\4mmdat.sys
2009-04-11 22:04 . 2001-08-17 17:48 148352 -c--a-w c:\windows\system32\dllcache\3dfxvsm.sys
2009-04-11 22:04 . 2001-08-23 14:46 689216 -c--a-w c:\windows\system32\dllcache\3dfxvs.dll
2009-04-11 22:04 . 2001-08-17 18:28 762780 -c--a-w c:\windows\system32\dllcache\3cwmcru.sys
2009-04-11 22:04 . 2001-08-17 19:06 11264 -c--a-w c:\windows\system32\dllcache\1394vdbg.sys
2009-04-11 22:04 . 2004-08-03 17:10 53248 -c--a-w c:\windows\system32\dllcache\1394bus.sys
2009-04-11 22:04 . 2001-08-23 14:46 66048 -c--a-w c:\windows\system32\dllcache\s3legacy.dll
2009-04-11 15:35 . 2009-04-11 15:35 -------- d-----w c:\documents and settings\NetworkService\Local Settings\Application Data\Apple
2009-04-10 15:18 . 2009-04-10 15:18 -------- d-----w c:\documents and settings\bisbytat\Application Data\Apple Computer
2009-04-10 14:57 . 2009-04-10 14:57 -------- d-----w c:\documents and settings\bisbytat\Application Data\NeroDigital(TM)
2009-04-10 14:49 . 2009-04-10 14:51 -------- d-----w c:\documents and settings\bisbytat\Application Data\Nero
2009-04-10 14:19 . 2009-04-10 15:35 -------- d-----w c:\program files\Nero
2009-04-10 14:19 . 2009-04-10 15:45 -------- d-----w c:\documents and settings\All Users\Application Data\Nero
2009-04-10 14:19 . 2009-04-10 15:45 -------- d-----w c:\program files\Fichiers communs\Nero
2009-04-10 10:30 . 2009-04-10 10:31 -------- d-----w c:\program files\QuickTime
2009-04-10 10:16 . 2009-04-15 20:57 -------- d-sh--w c:\documents and settings\bisbytat\Phone Browser
2009-04-10 09:59 . 2009-04-10 09:59 -------- d-----w c:\documents and settings\All Users\Application Data\PC Suite
2009-04-10 09:59 . 2009-04-13 17:34 -------- d-----w c:\documents and settings\bisbytat\Application Data\Nokia
2009-04-10 09:59 . 2009-04-24 08:15 -------- d-----w c:\program files\Fichiers communs\Nokia
2009-04-10 09:59 . 2009-04-10 09:59 -------- d-----w c:\program files\DIFX
2009-04-10 09:59 . 2009-04-15 20:31 -------- d-----w c:\documents and settings\bisbytat\Application Data\PC Suite
2009-04-10 09:57 . 2009-02-09 05:37 91136 ----a-w c:\windows\system32\nmwcdcls.dll
2009-04-10 09:57 . 2009-04-24 08:15 -------- d-----w c:\program files\Nokia
2009-04-09 20:07 . 2009-04-09 20:07 -------- d-sh--w c:\documents and settings\bisbytat\UserData
2009-04-09 01:33 . 2009-04-09 01:35 -------- d-----w c:\windows\Ulead.dat
2009-04-09 01:20 . 2009-04-09 01:20 -------- d-----w c:\documents and settings\bisbytat\Application Data\Canneverbe_Limited
2009-04-09 01:20 . 2009-04-12 20:08 -------- d-----w c:\program files\CDBurnerXP
2009-04-09 01:14 . 2009-04-09 01:14 -------- d-----w c:\documents and settings\All Users\Application Data\Windows Live Toolbar
2009-04-09 01:14 . 2009-04-27 20:56 -------- d-----w c:\program files\Windows Live Toolbar
2009-04-09 01:13 . 2009-04-20 15:48 -------- d-----w c:\program files\MSN Messenger
2009-04-09 00:45 . 2009-04-09 00:45 -------- d-----w c:\documents and settings\All Users\Application Data\Apple Computer
2009-04-09 00:45 . 2009-04-09 00:45 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\Apple
2009-04-09 00:45 . 2009-04-09 00:45 -------- d-----w c:\program files\Apple Software Update
2009-04-09 00:45 . 2009-04-09 00:45 -------- d-----w c:\documents and settings\All Users\Application Data\Apple
2009-04-09 00:44 . 2009-04-09 00:44 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\Apple Computer
2009-04-08 21:34 . 2009-04-08 21:34 -------- d-----w c:\program files\AVS4YOU
2009-04-08 21:33 . 2009-04-08 21:33 -------- d-----w c:\program files\Connectivity Cable Driver
2009-04-08 21:31 . 2009-04-08 21:32 -------- d-----w c:\program files\iPhoto Plus 4
2009-04-08 21:29 . 2009-04-08 21:30 -------- d-----w c:\program files\Windows Live
2009-04-08 21:29 . 2009-04-08 21:29 -------- d-----w c:\program files\PC Camera
2009-04-08 21:23 . 2009-04-28 23:35 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\Adobe
2009-04-08 20:54 . 2009-04-08 20:54 -------- d-----w c:\program files\Quran_AR
2009-04-08 20:38 . 2009-04-08 20:38 -------- d-----w c:\documents and settings\All Users\Application Data\AVS4YOU
2009-04-08 20:32 . 2009-04-08 20:32 348160 ----a-w c:\windows\system32\msvcr71.dll
2009-04-08 20:32 . 2009-04-08 20:32 499712 ----a-w c:\windows\system32\msvcp71.dll
2009-04-08 20:32 . 2009-04-12 22:31 -------- d-----w c:\program files\Fichiers communs\Real
2009-04-08 20:32 . 2009-04-08 20:32 -------- d-----w c:\program files\Real
2009-04-08 20:25 . 2009-04-24 04:39 -------- d-----w c:\documents and settings\bisbytat\Application Data\DivX
2009-04-08 20:07 . 2009-04-08 20:25 -------- d-----w c:\program files\DivX
2009-04-08 19:39 . 2009-04-12 02:06 -------- d-----w c:\documents and settings\All Users\Application Data\SpeedBit
2009-04-08 19:37 . 2009-05-02 23:37 -------- d---a-w c:\documents and settings\All Users\Application Data\TEMP

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-05-01 07:34 . 2009-05-01 07:34 -------- d-----w c:\program files\Foxit Software
2009-05-01 07:26 . 2009-05-01 07:26 -------- d-----w c:\program files\PayWindow Payroll
2009-04-29 19:07 . 2009-04-07 12:06 79880 ----a-w c:\documents and settings\bisbytat\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-04-12 13:29 . 2009-04-07 11:54 -------- d--h--w c:\program files\InstallShield Installation Information
2009-04-12 04:52 . 2001-08-24 12:00 71248 ----a-w c:\windows\system32\perfc00C.dat
2009-04-12 04:52 . 2001-08-24 12:00 458230 ----a-w c:\windows\system32\perfh00C.dat
2009-04-12 04:50 . 2009-04-12 04:50 0 ---ha-w c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
2009-04-12 04:50 . 2009-04-12 04:50 0 ---ha-w c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2009-04-07 12:30 . 2009-04-07 12:30 315392 ----a-w c:\windows\HideWin.exe
2009-04-07 12:27 . 2009-04-07 12:27 -------- d-----w c:\program files\Realtek AC97
2009-04-07 12:27 . 2009-04-07 11:55 -------- d-----w c:\program files\Fichiers communs\InstallShield
2009-04-07 12:02 . 2009-04-07 11:56 -------- d-----w c:\program files\ATI Technologies
2009-04-07 11:25 . 2009-04-07 11:25 -------- d-----w c:\program files\microsoft frontpage
2009-04-07 11:24 . 2001-08-24 12:00 67 --sha-w c:\windows\Fonts\desktop.ini
2009-04-07 11:23 . 2009-04-07 11:23 86331 ----a-w c:\windows\pchealth\helpctr\OfflineCache\index.dat
2009-04-07 11:22 . 2009-04-07 11:22 -------- d-----w c:\program files\Services en ligne
2009-04-07 11:20 . 2009-04-07 11:20 21892 ----a-w c:\windows\system32\emptyregdb.dat
2006-05-03 09:06 . 2009-04-12 03:28 163328 --sh--r c:\windows\system32\flvDX.dll
2007-02-21 10:47 . 2009-04-12 03:28 31232 --sh--r c:\windows\system32\msfDX.dll
2008-03-16 12:30 . 2009-04-12 03:28 216064 --sh--r c:\windows\system32\nbDX.dll
2004-08-19 15:09 . 2004-08-19 15:09 2629632 --sha-r c:\windows\system32\rwydhygg.dll
.

------- Sigcheck -------

[-] 2006-03-09 08:25 578048 0DF75FB73F705B011630159A43D7C354 c:\windows\system32\user32.dll

[-] 2006-02-14 19:56 359808 667192A11DB19F36624119C0DD4DE4F2 c:\windows\system32\drivers\tcpip.sys

[-] 2006-05-09 08:11 2017280 50B3A210B6FA8D3089A36A32E7D8B21F c:\windows\system32\ntkrnlpa.exe

[-] 2006-03-09 08:25 2137600 E75F7AA5A33479F29C636FD0890F5762 c:\windows\system32\ntoskrnl.exe

[-] 2006-03-09 08:25 57856 DA81EC57ACD4CDC3D4C51CF3D409AF9F c:\windows\system32\spoolsv.exe

[-] 2006-03-09 09:40 1548288 E51172E3C82D76FCC02001D0FF41A1A1 c:\windows\system32\sfcfiles.dll
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ares"="c:\program files\Ares\Ares.exe" [2008-12-13 882176]
"Advanced SystemCare 3"="c:\program files\IObit\Advanced SystemCare 3\AWC.exe" [2009-04-07 2328200]
"SpeedBitVideoAccelerator"="c:\program files\SpeedBit Video Accelerator\VideoAccelerator.exe" [2009-04-12 2823784]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-03-20 1312256]
"msnmsgr"="c:\program files\MSN Messenger\msnmsgr.exe" [2007-01-19 5674352]
"DownloadAccelerator"="c:\program files\DAP\DAP.EXE" [2009-04-08 2811392]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-19 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATICCC"="c:\program files\ATI Technologies\ATI.ACE\CLIStart.exe" [2006-09-25 90112]
"avgnt"="c:\program files\Avira\Avira Premium Security Suite\avgnt.exe" [2008-06-12 266497]
"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2009-04-12 198160]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"SkyTel"="SkyTel.EXE" - c:\windows\SkyTel.exe [2007-10-11 1826816]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nlsf"="move" [X]
"Config"="c:\windows\system32\run.cmd" [2006-02-14 248]
"tscuninstall"="c:\windows\system32\tscupgrd.exe" [2004-08-19 44544]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"DisablePagingExecutive"=dword:00000001
"SecondLevelDataCache"=dword:00000200

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
"c:\\Program Files\\Ares\\Ares.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3101:TCP"= 3101:TCP:kxvrh

R2 AntiVirFirewallService;Avira Premium Security Suite Pare-feu;c:\program files\Avira\Avira Premium Security Suite\avfwsvc.exe [2008-05-16 344321]
R2 AntiVirMailService;Avira Premium Security Suite MailGuard;c:\program files\Avira\Avira Premium Security Suite\avmailc.exe [2008-11-21 164097]
R2 antivirwebservice;Avira Premium Security Suite WebGuard;c:\program files\Avira\Avira Premium Security Suite\AVWEBGRD.EXE [2008-06-12 258305]
R2 AVEService;Service d'assistance Avira Premium Security Suite MailGuard;c:\program files\Avira\Avira Premium Security Suite\avesvc.exe [2008-05-09 41217]
R2 VideoAcceleratorService;VideoAcceleratorService;c:\progra~1\SPEEDB~2\VideoAcceleratorService.exe [2009-04-12 288368]
R2 ytsjn;Security Shell;c:\windows\system32\svchost.exe [2004-08-19 14336]
S1 avfwot;avfwot;c:\windows\system32\DRIVERS\avfwot.sys [2008-05-07 71592]
S3 avfwim;AvFw Packet Filter Miniport;c:\windows\system32\DRIVERS\avfwim.sys [2008-05-07 71464]


HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
ytsjn
.
Contenu du dossier 'Tâches planifiées'

2009-04-25 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

2009-05-03 c:\windows\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job
- c:\program files\Windows Live Toolbar\MSNTBUP.EXE [2006-09-27 15:39]
.
- - - - ORPHELINS SUPPRIMES - - - -

BHO-{FF6C3CF0-4B15-11D1-ABED-709549C10000} - (no file)
HKU-Default-Run-PcSync - c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe
Notify-WgaLogon - (no file)


.
------- Examen supplémentaire -------
.
uStart Page = about:blank
mWindow Title =
uSearchURL,(Default) = hxxp://www.google.fr/keyword/%s
IE: &Clean Traces - c:\program files\DAP\Privacy Package\dapcleanerie.htm
IE: &Download with &DAP - c:\program files\DAP\dapextie.htm
IE: &Windows Live Search - c:\program files\Windows Live Toolbar\msntb.dll/search.htm
IE: Download &all with DAP - c:\program files\DAP\dapextie2.htm
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
LSP: c:\progra~1\SPEEDB~2\sblsp.dll
FF - ProfilePath - c:\documents and settings\bisbytat\Application Data\Mozilla\Firefox\Profiles\zb8uue7s.default\
FF - prefs.js: browser.startup.homepage - hxxp://search.speedbit.com/
FF - prefs.js: keyword.URL - hxxp://search.speedbit.com/searchresults.asp?src=default&q=
FF - component: c:\program files\DAP\DAPFireFox\components\DAPFireFox.dll
FF - component: c:\program files\Nokia\Nokia PC Suite 7\bkmrksync\components\BkMrkExt.dll
FF - component: c:\program files\Real\RealPlayer\browserrecord\components\nprpbrowserrecordplugin.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll

---- PARAMETRES FIREFOX ----
FF - user.js: yahoo.homepage.dontask - true.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-03 02:48
Windows 5.1.2600 Service Pack 2 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'winlogon.exe'(876)
c:\windows\system32\Ati2evxx.dll
.
Heure de fin: 2009-05-03 2:49
ComboFix-quarantined-files.txt 2009-05-03 00:49

Avant-CF: 3 538 952 192 octets libres
Après-CF: 3 542 630 400 octets libres

274
0
Réponse 86 / 105
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
3 mai 2009 à 04:14
salut,je te rappelle que rambo n'a pas detecté la console de recuperation !Comment l'installer ?Merci
0
Réponse 87 / 105
Utilisateur anonyme
3 mai 2009 à 16:42
/!\ ATTENTION /!\
Le script qui suit a été écrit spécialement pour Apothik08, il n'est pas transposable sur un autre ordinateur !


Toujours avec toutes les protections désactivées, fais ceci :

• Enregistre ce fichier sur ton Bureau (et pas ailleurs !) sous le nom CFScript.txt

CFScript


• Fais un glisser/déposer de ce fichier CFScript sur le fichier C-Fix.exe (combofix) comme sur ce lien :

comme ceci

• Patiente le temps du scan. Le Bureau va disparaître à plusieurs reprises : c'est normal ! Ne touche à rien tant que le scan n'est pas terminé.
• Une fois le scan achevé, un rapport va s'afficher: poste son contenu.
• Si le fichier ne s'ouvre pas, il se trouve ici ? C:\ComboFix.txt
0
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
4 mai 2009 à 00:37
salut,dois-je me deconnecter quand le scan se deroule et fermer mon navigateur ?
0
Réponse 88 / 105
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
4 mai 2009 à 07:39
Bonjour,j'ai fait ce que tu m'as demandé mais ComboFix allait demarrer jusqu'au moment où je reçois un message qu'il allait installer la console de recuperation il s'arrête avec le message : curl(6) : not resolved host : download.microsoft.com .not resoleved data requested file ou qq chose come ça (je n'ai pas bien retenu le message)
0
Réponse 89 / 105
Utilisateur anonyme
4 mai 2009 à 17:57
slt

re-essaies une fois,

si ca ne fonctionne pas a nouveau

refais la manip en mode sans echec sans installer la console de recuperation
0
Réponse 90 / 105
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
4 mai 2009 à 22:00
salut, ok je vais essayer en mode sans echech mais la prise en charge avec reseau est impossible
0
Réponse 91 / 105
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
5 mai 2009 à 02:31
ComboFix 09-05-03.6 - bisbytat 05/05/2009 1:24.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.33.1036.18.1790.1336 [GMT 2:00]
Lancé depuis: c:\documents and settings\bisbytat\Bureau\rambo.exe
Commutateurs utilisés :: c:\documents and settings\bisbytat\Bureau\CFScript.txt

AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!
.

((((((((((((((((((((((((((((( Fichiers créés du 2009-04-04 au 2009-05-04 ))))))))))))))))))))))))))))))))))))
.

2009-05-03 22:02 . 2009-05-03 22:09 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\Google
2009-04-29 13:46 . 2009-04-29 13:48 -------- d-----w C:\rsit
2009-04-29 09:54 . 2009-04-29 09:57 -------- d-----w C:\Rooter$
2009-04-28 23:32 . 2009-04-28 23:33 -------- d-----w c:\program files\Fichiers communs\Adobe
2009-04-28 22:36 . 2009-04-28 22:39 -------- d-----w c:\program files\SpywareBlaster
2009-04-27 14:35 . 2009-04-27 14:35 -------- d-----w c:\windows\system32\fr-fr
2009-04-27 14:32 . 2009-04-27 14:32 -------- d--h--w c:\windows\$hf_mig$
2009-04-27 14:09 . 2009-04-27 14:09 -------- d-----w c:\documents and settings\bisbytat\Application Data\PDM
2009-04-27 14:08 . 2009-04-27 14:08 -------- d-----w c:\program files\Palm Digital Media
2009-04-26 22:34 . 2009-01-04 10:35 31232 ----a-w c:\windows\system\vdremote.dll
2009-04-26 22:34 . 2009-01-04 10:35 25088 ----a-w c:\windows\system\vdsvrlnk.dll
2009-04-26 21:52 . 2009-04-27 04:57 -------- d-----w c:\documents and settings\bisbytat\Application Data\vlc
2009-04-26 21:52 . 2009-04-27 04:58 -------- d-----w c:\program files\adslTV
2009-04-25 11:02 . 2009-04-25 11:02 -------- d-----w c:\documents and settings\bisbytat\Application Data\Malwarebytes
2009-04-25 11:02 . 2008-10-16 18:25 15504 ----a-w c:\windows\system32\drivers\mbam.sys
2009-04-25 11:02 . 2008-10-16 18:25 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
2009-04-25 11:02 . 2009-04-25 11:02 -------- d-----w c:\documents and settings\All Users\Application Data\Malwarebytes
2009-04-25 09:31 . 2009-04-29 13:48 -------- d-----w c:\program files\Trend Micro
2009-04-24 08:15 . 2009-04-24 08:15 -------- d-----w c:\program files\Fichiers communs\PCSuite
2009-04-24 08:14 . 2008-08-26 08:26 18816 ----a-w c:\windows\system32\drivers\pccsmcfd.sys
2009-04-24 08:14 . 2009-04-24 08:14 -------- d-----w c:\program files\PC Connectivity Solution
2009-04-24 08:13 . 2009-02-09 05:37 7808 ----a-w c:\windows\system32\drivers\usbser_lowerfltj.sys
2009-04-24 08:13 . 2009-02-09 05:37 7808 ----a-w c:\windows\system32\drivers\usbser_lowerflt.sys
2009-04-24 08:13 . 2009-02-09 05:37 22016 ----a-w c:\windows\system32\drivers\ccdcmbo.sys
2009-04-24 08:13 . 2009-02-09 05:37 17664 ----a-w c:\windows\system32\drivers\ccdcmb.sys
2009-04-24 08:13 . 2009-02-09 05:37 659968 ----a-w c:\windows\system32\nmwcdcocls.dll
2009-04-24 08:13 . 2009-02-09 05:32 1112288 ----a-w c:\windows\system32\wdfcoinstaller01007.dll
2009-04-24 04:39 . 2009-04-24 04:39 -------- d-----w c:\documents and settings\bisbytat\Application Data\Media Player Classic
2009-04-24 04:23 . 2009-01-22 13:28 290816 ----a-w c:\windows\system32\decdll.dll
2009-04-20 15:48 . 2009-04-25 11:37 -------- d-----w c:\program files\StuffPlug3
2009-04-17 10:28 . 2009-04-17 10:28 -------- d-----w c:\program files\AnmSMP
2009-04-15 10:46 . 2009-04-15 10:46 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\Help
2009-04-15 07:47 . 2009-04-15 07:47 -------- d-----w c:\program files\Free RM to MP3 Converter
2009-04-15 07:25 . 2009-04-15 07:25 -------- d-----w c:\program files\LitexMedia
2009-04-14 18:42 . 1999-09-10 11:06 4672 ----a-w c:\windows\system\wowpost.exe
2009-04-14 18:42 . 1999-09-10 11:06 5600 ----a-w c:\windows\system\winaspi.dll
2009-04-14 18:42 . 1999-09-10 11:06 25244 ----a-w c:\windows\system32\drivers\aspi32.sys
2009-04-14 18:42 . 1999-09-10 11:06 45056 ----a-w c:\windows\system32\wnaspi32.dll
2009-04-14 18:42 . 2009-04-14 18:42 203776 ----a-w c:\windows\system32\clrviddc.dll
2009-04-14 06:20 . 2009-04-14 06:20 -------- d-----w C:\Part4
2009-04-14 06:20 . 2009-04-14 06:20 -------- d-----w C:\Part3
2009-04-14 06:20 . 2009-04-14 06:20 -------- d-----w C:\Part2
2009-04-14 06:20 . 2005-01-15 19:41 -------- d-----w C:\Part1
2009-04-12 22:31 . 2009-04-12 22:31 -------- d-----w c:\program files\Fichiers communs\xing shared
2009-04-12 15:41 . 2009-04-12 15:41 -------- d-----w c:\documents and settings\bisbytat\Application Data\Mobipocket
2009-04-12 13:26 . 1998-06-17 22:00 89360 ----a-w c:\windows\system32\VB5DB.DLL
2009-04-12 13:19 . 2009-04-12 13:19 -------- d-----w c:\documents and settings\All Users\Application Data\Office Genuine Advantage
2009-04-12 04:51 . 2004-08-03 17:08 25600 -c--a-w c:\windows\system32\dllcache\usbser.sys
2009-04-12 04:51 . 2004-08-03 17:08 25600 ----a-w c:\windows\system32\drivers\usbser.sys
2009-04-12 04:50 . 2008-03-21 11:57 14640 ------w c:\windows\system32\spmsgXP_2k3.dll
2009-04-12 04:42 . 2009-04-12 04:42 -------- d-----w c:\documents and settings\All Users\Application Data\Nokia
2009-04-12 03:37 . 2009-04-12 03:37 -------- d-----w c:\program files\MSXML 6.0
2009-04-12 03:36 . 2009-04-24 08:11 -------- d-----w c:\documents and settings\All Users\Application Data\Installations
2009-04-12 03:28 . 2008-03-16 12:30 216064 --sh--r c:\windows\system32\nbDX.dll
2009-04-12 03:28 . 2007-02-21 10:47 31232 --sh--r c:\windows\system32\msfDX.dll
2009-04-12 03:28 . 2006-05-03 09:06 163328 --sh--r c:\windows\system32\flvDX.dll
2009-04-12 03:27 . 2009-04-12 03:30 -------- d-----w c:\program files\SUPER
2009-04-12 03:14 . 2009-04-12 03:14 -------- d-----w c:\documents and settings\All Users\Application Data\DVD Shrink
2009-04-12 02:15 . 2009-04-12 02:15 -------- d-----w c:\documents and settings\bisbytat\Application Data\IObit
2009-04-12 02:15 . 2009-04-12 02:15 -------- d-----w c:\program files\IObit
2009-04-12 02:06 . 2009-04-12 19:56 -------- d-----w c:\program files\SpeedBit Video Accelerator
2009-04-11 22:35 . 2009-04-22 20:46 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\WMTools Downloaded Files
2009-04-11 22:12 . 2004-08-19 10:09 116736 -c--a-w c:\windows\system32\dllcache\xrxwiadr.dll
2009-04-11 22:12 . 2001-08-23 14:47 23040 -c--a-w c:\windows\system32\dllcache\xrxwbtmp.dll
2009-04-11 22:12 . 2001-08-23 14:47 17408 -c--a-w c:\windows\system32\dllcache\xrxscnui.dll
2009-04-11 22:12 . 2001-08-23 14:47 27648 -c--a-w c:\windows\system32\dllcache\xrxftplt.exe
2009-04-11 22:12 . 2001-08-23 14:47 4608 -c--a-w c:\windows\system32\dllcache\xrxflnch.exe
2009-04-11 22:12 . 2001-08-23 14:47 99865 -c--a-w c:\windows\system32\dllcache\xlog.exe
2009-04-11 22:12 . 2001-08-17 17:11 16970 -c--a-w c:\windows\system32\dllcache\xem336n5.sys
2009-04-11 22:12 . 2004-08-03 16:29 19455 -c--a-w c:\windows\system32\dllcache\wvchntxx.sys
2009-04-11 22:12 . 2004-08-03 17:10 19328 -c--a-w c:\windows\system32\dllcache\wstcodec.sys
2009-04-11 22:12 . 2004-08-03 16:29 12063 -c--a-w c:\windows\system32\dllcache\wsiintxx.sys
2009-04-11 22:12 . 2004-08-19 10:09 8192 -c--a-w c:\windows\system32\dllcache\wshirda.dll
2009-04-11 22:12 . 2004-08-03 17:07 8832 -c--a-w c:\windows\system32\dllcache\wmiacpi.sys
2009-04-11 22:10 . 2001-08-17 18:53 7040 -c--a-w c:\windows\system32\dllcache\snyaitmc.sys
2009-04-11 22:09 . 2004-08-03 16:31 29502 -c--a-w c:\windows\system32\dllcache\pca200e.sys
2009-04-11 22:08 . 2004-08-03 17:10 15360 -c--a-w c:\windows\system32\dllcache\mpe.sys
2009-04-11 22:07 . 2004-08-03 16:41 1041536 -c--a-w c:\windows\system32\dllcache\hsfdpsp2.sys
2009-04-11 22:06 . 2001-08-17 17:20 334208 -c--a-w c:\windows\system32\dllcache\ds1wdm.sys
2009-04-11 22:05 . 2001-08-23 14:02 14080 -c--a-w c:\windows\system32\dllcache\bulltlp3.sys
2009-04-11 22:04 . 2004-08-03 17:00 12288 -c--a-w c:\windows\system32\dllcache\4mmdat.sys
2009-04-11 22:04 . 2001-08-17 17:48 148352 -c--a-w c:\windows\system32\dllcache\3dfxvsm.sys
2009-04-11 22:04 . 2001-08-23 14:46 689216 -c--a-w c:\windows\system32\dllcache\3dfxvs.dll
2009-04-11 22:04 . 2001-08-17 18:28 762780 -c--a-w c:\windows\system32\dllcache\3cwmcru.sys
2009-04-11 22:04 . 2001-08-17 19:06 11264 -c--a-w c:\windows\system32\dllcache\1394vdbg.sys
2009-04-11 22:04 . 2004-08-03 17:10 53248 -c--a-w c:\windows\system32\dllcache\1394bus.sys
2009-04-11 22:04 . 2001-08-23 14:46 66048 -c--a-w c:\windows\system32\dllcache\s3legacy.dll
2009-04-11 15:35 . 2009-04-11 15:35 -------- d-----w c:\documents and settings\NetworkService\Local Settings\Application Data\Apple
2009-04-10 15:18 . 2009-04-10 15:18 -------- d-----w c:\documents and settings\bisbytat\Application Data\Apple Computer
2009-04-10 14:57 . 2009-04-10 14:57 -------- d-----w c:\documents and settings\bisbytat\Application Data\NeroDigital(TM)
2009-04-10 14:49 . 2009-04-10 14:51 -------- d-----w c:\documents and settings\bisbytat\Application Data\Nero
2009-04-10 14:19 . 2009-04-10 15:35 -------- d-----w c:\program files\Nero
2009-04-10 14:19 . 2009-04-10 15:45 -------- d-----w c:\documents and settings\All Users\Application Data\Nero
2009-04-10 14:19 . 2009-04-10 15:45 -------- d-----w c:\program files\Fichiers communs\Nero
2009-04-10 10:30 . 2009-04-10 10:31 -------- d-----w c:\program files\QuickTime
2009-04-10 10:16 . 2009-04-15 20:57 -------- d-sh--w c:\documents and settings\bisbytat\Phone Browser
2009-04-10 09:59 . 2009-04-10 09:59 -------- d-----w c:\documents and settings\All Users\Application Data\PC Suite
2009-04-10 09:59 . 2009-05-04 11:23 -------- d-----w c:\documents and settings\bisbytat\Application Data\Nokia
2009-04-10 09:59 . 2009-04-24 08:15 -------- d-----w c:\program files\Fichiers communs\Nokia
2009-04-10 09:59 . 2009-04-10 09:59 -------- d-----w c:\program files\DIFX
2009-04-10 09:59 . 2009-04-15 20:31 -------- d-----w c:\documents and settings\bisbytat\Application Data\PC Suite
2009-04-10 09:57 . 2009-02-09 05:37 91136 ----a-w c:\windows\system32\nmwcdcls.dll
2009-04-10 09:57 . 2009-04-24 08:15 -------- d-----w c:\program files\Nokia
2009-04-09 20:07 . 2009-04-09 20:07 -------- d-sh--w c:\documents and settings\bisbytat\UserData
2009-04-09 01:33 . 2009-04-09 01:35 -------- d-----w c:\windows\Ulead.dat
2009-04-09 01:20 . 2009-04-09 01:20 -------- d-----w c:\documents and settings\bisbytat\Application Data\Canneverbe_Limited
2009-04-09 01:20 . 2009-04-12 20:08 -------- d-----w c:\program files\CDBurnerXP
2009-04-09 01:14 . 2009-04-09 01:14 -------- d-----w c:\documents and settings\All Users\Application Data\Windows Live Toolbar
2009-04-09 01:14 . 2009-04-27 20:56 -------- d-----w c:\program files\Windows Live Toolbar
2009-04-09 01:13 . 2009-05-04 05:15 -------- d-----w c:\program files\MSN Messenger
2009-04-09 00:45 . 2009-04-09 00:45 -------- d-----w c:\documents and settings\All Users\Application Data\Apple Computer
2009-04-09 00:45 . 2009-04-09 00:45 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\Apple
2009-04-09 00:45 . 2009-04-09 00:45 -------- d-----w c:\program files\Apple Software Update
2009-04-09 00:45 . 2009-04-09 00:45 -------- d-----w c:\documents and settings\All Users\Application Data\Apple
2009-04-09 00:44 . 2009-04-09 00:44 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\Apple Computer
2009-04-08 21:34 . 2009-04-08 21:34 -------- d-----w c:\program files\AVS4YOU
2009-04-08 21:33 . 2009-04-08 21:33 -------- d-----w c:\program files\Connectivity Cable Driver
2009-04-08 21:31 . 2009-04-08 21:32 -------- d-----w c:\program files\iPhoto Plus 4
2009-04-08 21:29 . 2009-04-08 21:30 -------- d-----w c:\program files\Windows Live
2009-04-08 21:29 . 2009-04-08 21:29 -------- d-----w c:\program files\PC Camera
2009-04-08 21:23 . 2009-04-28 23:35 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\Adobe
2009-04-08 20:54 . 2009-04-08 20:54 -------- d-----w c:\program files\Quran_AR
2009-04-08 20:38 . 2009-04-08 20:38 -------- d-----w c:\documents and settings\All Users\Application Data\AVS4YOU
2009-04-08 20:32 . 2009-04-08 20:32 348160 ----a-w c:\windows\system32\msvcr71.dll
2009-04-08 20:32 . 2009-04-08 20:32 499712 ----a-w c:\windows\system32\msvcp71.dll

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-05-01 07:34 . 2009-05-01 07:34 -------- d-----w c:\program files\Foxit Software
2009-05-01 07:26 . 2009-05-01 07:26 -------- d-----w c:\program files\PayWindow Payroll
2009-04-29 19:07 . 2009-04-07 12:06 79880 ----a-w c:\documents and settings\bisbytat\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-04-12 13:29 . 2009-04-07 11:54 -------- d--h--w c:\program files\InstallShield Installation Information
2009-04-12 04:52 . 2001-08-24 12:00 71248 ----a-w c:\windows\system32\perfc00C.dat
2009-04-12 04:52 . 2001-08-24 12:00 458230 ----a-w c:\windows\system32\perfh00C.dat
2009-04-12 04:50 . 2009-04-12 04:50 0 ---ha-w c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
2009-04-12 04:50 . 2009-04-12 04:50 0 ---ha-w c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2009-04-07 12:30 . 2009-04-07 12:30 315392 ----a-w c:\windows\HideWin.exe
2009-04-07 12:27 . 2009-04-07 12:27 -------- d-----w c:\program files\Realtek AC97
2009-04-07 12:27 . 2009-04-07 11:55 -------- d-----w c:\program files\Fichiers communs\InstallShield
2009-04-07 12:02 . 2009-04-07 11:56 -------- d-----w c:\program files\ATI Technologies
2009-04-07 11:25 . 2009-04-07 11:25 -------- d-----w c:\program files\microsoft frontpage
2009-04-07 11:24 . 2001-08-24 12:00 67 --sha-w c:\windows\Fonts\desktop.ini
2009-04-07 11:23 . 2009-04-07 11:23 86331 ----a-w c:\windows\pchealth\helpctr\OfflineCache\index.dat
2009-04-07 11:22 . 2009-04-07 11:22 -------- d-----w c:\program files\Services en ligne
2009-04-07 11:20 . 2009-04-07 11:20 21892 ----a-w c:\windows\system32\emptyregdb.dat
2006-05-03 09:06 . 2009-04-12 03:28 163328 --sh--r c:\windows\system32\flvDX.dll
2007-02-21 10:47 . 2009-04-12 03:28 31232 --sh--r c:\windows\system32\msfDX.dll
2008-03-16 12:30 . 2009-04-12 03:28 216064 --sh--r c:\windows\system32\nbDX.dll
2004-08-19 15:09 . 2004-08-19 15:09 2629632 --sha-r c:\windows\system32\rwydhygg.dll
.

------- Sigcheck -------

[-] 2006-03-09 08:25 578048 0DF75FB73F705B011630159A43D7C354 c:\windows\system32\user32.dll

[-] 2006-02-14 19:56 359808 667192A11DB19F36624119C0DD4DE4F2 c:\windows\system32\drivers\tcpip.sys

[-] 2006-05-09 08:11 2017280 50B3A210B6FA8D3089A36A32E7D8B21F c:\windows\system32\ntkrnlpa.exe

[-] 2006-03-09 08:25 2137600 E75F7AA5A33479F29C636FD0890F5762 c:\windows\system32\ntoskrnl.exe

[-] 2006-03-09 08:25 57856 DA81EC57ACD4CDC3D4C51CF3D409AF9F c:\windows\system32\spoolsv.exe

[-] 2006-03-09 09:40 1548288 E51172E3C82D76FCC02001D0FF41A1A1 c:\windows\system32\sfcfiles.dll
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ares"="c:\program files\Ares\Ares.exe" [2008-12-13 882176]
"Advanced SystemCare 3"="c:\program files\IObit\Advanced SystemCare 3\AWC.exe" [2009-04-07 2328200]
"SpeedBitVideoAccelerator"="c:\program files\SpeedBit Video Accelerator\VideoAccelerator.exe" [2009-04-12 2823784]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-03-20 1312256]
"msnmsgr"="c:\program files\MSN Messenger\msnmsgr.exe" [2007-01-19 5674352]
"DownloadAccelerator"="c:\program files\DAP\DAP.EXE" [2009-04-08 2811392]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-19 15360]
"Google Update"="c:\documents and settings\bisbytat\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2009-05-03 133104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATICCC"="c:\program files\ATI Technologies\ATI.ACE\CLIStart.exe" [2006-09-25 90112]
"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2009-04-12 198160]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"SkyTel"="SkyTel.EXE" - c:\windows\SkyTel.exe [2007-10-11 1826816]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"PcSync"="c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [BU]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nlsf"="move" [X]
"Config"="c:\windows\system32\run.cmd" [2006-02-14 248]
"tscuninstall"="c:\windows\system32\tscupgrd.exe" [2004-08-19 44544]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WgaLogon]
[BU]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"DisablePagingExecutive"=dword:00000001
"SecondLevelDataCache"=dword:00000200

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Ares\\Ares.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3101:TCP"= 3101:TCP:kxvrh

R2 ytsjn;Security Shell;c:\windows\system32\svchost.exe [2004-08-19 14336]
S2 VideoAcceleratorService;VideoAcceleratorService;c:\progra~1\SPEEDB~2\VideoAcceleratorService.exe [2009-04-12 288368]

.
Contenu du dossier 'Tâches planifiées'

2009-04-25 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

2009-05-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1715567821-2025429265-725345543-1003.job
- c:\documents and settings\bisbytat\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-05-03 22:02]

2009-05-04 c:\windows\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job
- c:\program files\Windows Live Toolbar\MSNTBUP.EXE [2006-09-27 15:39]
.
- - - - ORPHELINS SUPPRIMES - - - -

BHO-{FF6C3CF0-4B15-11D1-ABED-709549C10000} - (no file)


.
------- Examen supplémentaire -------
.
uStart Page = about:blank
mWindow Title =
uSearchURL,(Default) = hxxp://www.google.fr/keyword/%s
IE: &Clean Traces - c:\program files\DAP\Privacy Package\dapcleanerie.htm
IE: &Download with &DAP - c:\program files\DAP\dapextie.htm
IE: &Windows Live Search - c:\program files\Windows Live Toolbar\msntb.dll/search.htm
IE: Download &all with DAP - c:\program files\DAP\dapextie2.htm
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
LSP: c:\progra~1\SPEEDB~2\sblsp.dll
FF - ProfilePath - c:\documents and settings\bisbytat\Application Data\Mozilla\Firefox\Profiles\zb8uue7s.default\
FF - prefs.js: browser.startup.homepage - hxxp://search.speedbit.com/
FF - prefs.js: keyword.URL - hxxp://search.speedbit.com/searchresults.asp?src=default&q=
FF - component: c:\program files\DAP\DAPFireFox\components\DAPFireFox.dll
FF - component: c:\program files\Nokia\Nokia PC Suite 7\bkmrksync\components\BkMrkExt.dll
FF - component: c:\program files\Real\RealPlayer\browserrecord\components\nprpbrowserrecordplugin.dll
FF - plugin: c:\documents and settings\bisbytat\Application Data\Mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\bisbytat\Local Settings\Application Data\Google\Update\1.2.141.5\npGoogleOneClick7.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll

---- PARAMETRES FIREFOX ----
FF - user.js: yahoo.homepage.dontask - true.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-05 01:27
Windows 5.1.2600 Service Pack 2 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\ytsjn]
"ServiceDll"="c:\windows\system32\rwydhygg.dll"
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'winlogon.exe'(720)
c:\windows\system32\Ati2evxx.dll

- - - - - - - > 'explorer.exe'(2824)
c:\windows\system32\msi.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\windows\system32\ati2evxx.exe
c:\windows\system32\ati2evxx.exe
c:\program files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\program files\CDBurnerXP\NMSAccessU.exe
c:\windows\system32\WdfMgr.exe
c:\progra~1\SPEEDB~2\VideoAcceleratorEngine.exe
c:\program files\ATI Technologies\ATI.ACE\CLI.exe
c:\windows\system32\wscntfy.exe
c:\program files\PC Connectivity Solution\ServiceLayer.exe
c:\program files\PC Connectivity Solution\Transports\NclUSBSrv.exe
c:\program files\PC Connectivity Solution\Transports\NclRSSrv.exe
c:\program files\ATI Technologies\ATI.ACE\CLI.exe
c:\program files\ATI Technologies\ATI.ACE\CLI.exe
.
**************************************************************************
.
Heure de fin: 2009-05-04 1:30 - La machine a redémarré
ComboFix-quarantined-files.txt 2009-05-04 23:29
ComboFix2.txt 2009-05-03 00:49

Avant-CF: 3 350 900 736 octets libres
Après-CF: 3 348 566 016 octets libres

294
0
Réponse 92 / 105
dédétraqué Messages postés 4384 Date d'inscription vendredi 5 septembre 2008 Statut Contributeur sécurité Dernière intervention 4 février 2013 286
5 mai 2009 à 04:31
Salut vous deux

Un ptit coup de main

- Clique sur le menu démarrer/Exécuter, tape notepad à l’invite de commande et OK.

- Copie/colle ce qui est en gras ci-dessous dans le Bloc-Notes :

KillAll::

File::
c:\windows\system32\rwydhygg.dll

DirLook::
C:\Part4
C:\Part3
C:\Part2
C:\Part1

Registry::
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3101:TCP"=-
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\ytsjn]
"ServiceDll"=-

- Enregistre ce fichier sur le bureau (Impératif)

-Nom du fichier : CFScript.txt
-Type du fichier : tous les fichiers

- Clique sur Enregistrer et quitte le Bloc Notes

Important : Désactive ton Antivirus et antispyware avant de faire le glisser/déposer

- Fait un glisser/déposer de ce fichier CFScript sur le fichier ComboFix.exe sur le bureau, comme sur cette capture (l’icône est un lion) :

http://images4.hiboox.com/images/3408/6af2c97f0f4e497013ed9b32fc36b566.gif

* Patiente le temps du scan. Le bureau va disparaître à plusieurs reprises: c'est normal!
Ne touche à rien tant que le scan n'est pas terminé.
* Une fois le scan achevé, un rapport va s'afficher: poste son contenu.
* Si le fichier ne s'ouvre pas, il se trouve ici > C:\ ComboFix.txt


@++ :)
0
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
5 mai 2009 à 05:15
salut ,mais je l'ai dèjà fait plusieurs fois
0
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015 > apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
6 mai 2009 à 00:24
salut,je ne m'y connais pas en ces trucs
0
Réponse 93 / 105
dédétraqué Messages postés 4384 Date d'inscription vendredi 5 septembre 2008 Statut Contributeur sécurité Dernière intervention 4 février 2013 286
5 mai 2009 à 12:21
Salut apothik08


Justement ce fichier est la cause de tes problèmes, à toi de voir.


@++ :)
0
Réponse 94 / 105
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
6 mai 2009 à 01:10
ComboFix 09-05-03.6 - bisbytat 05/05/2009 23:37.2 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.33.1036.18.1790.1322 [GMT 2:00]
Lancé depuis: c:\documents and settings\bisbytat\Bureau\rambo.exe
Commutateurs utilisés :: c:\documents and settings\bisbytat\Bureau\CFScript.txt
AV: AntiVir Desktop *On-access scanning disabled* (Updated)

AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!

FILE ::
c:\windows\system32\rwydhygg.dll
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\rwydhygg.dll

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-04-05 au 2009-05-05 ))))))))))))))))))))))))))))))))))))
.

2009-05-05 08:14 . 2009-03-10 20:18 454024 ----a-w c:\windows\system32\KB905474\wgasetup.exe
2009-05-05 08:14 . 2009-03-10 20:26 1438080 ----a-w c:\windows\system32\KB905474\wganotifypackageinner.exe
2009-05-05 08:14 . 2009-05-05 08:14 -------- d-----w c:\windows\system32\KB905474
2009-05-05 08:14 . 2009-05-05 08:14 -------- d-----w c:\program files\MSXML 4.0
2009-05-05 04:47 . 2009-02-09 11:50 2059776 -c----w c:\windows\system32\dllcache\ntkrnlpa.exe
2009-05-05 04:47 . 2009-02-09 11:50 2017792 -c----w c:\windows\system32\dllcache\ntkrpamp.exe
2009-05-05 04:47 . 2005-07-26 04:39 60416 -c----w c:\windows\system32\dllcache\colbact.dll
2009-05-05 04:47 . 2009-02-09 11:50 2182528 -c----w c:\windows\system32\dllcache\ntoskrnl.exe
2009-05-05 04:47 . 2009-02-09 10:20 399360 -c----w c:\windows\system32\dllcache\rpcss.dll
2009-05-05 04:47 . 2009-02-09 10:20 730112 -c----w c:\windows\system32\dllcache\lsasrv.dll
2009-05-05 04:47 . 2009-02-09 11:50 2138112 -c----w c:\windows\system32\dllcache\ntkrnlmp.exe
2009-05-05 03:34 . 2008-10-24 11:10 453632 -c----w c:\windows\system32\dllcache\mrxsmb.sys
2009-05-05 03:33 . 2008-06-10 05:07 2376760 -c----w c:\windows\system32\dllcache\WMVCore.dll
2009-05-05 03:25 . 2008-06-14 17:59 272768 ------w c:\windows\system32\drivers\bthport.sys
2009-05-05 03:07 . 2008-12-11 11:57 333184 -c----w c:\windows\system32\dllcache\srv.sys
2009-05-05 03:03 . 2008-04-11 18:51 683520 -c----w c:\windows\system32\dllcache\inetcomm.dll
2009-05-05 02:57 . 2008-10-15 16:59 332800 -c----w c:\windows\system32\dllcache\netapi32.dll
2009-05-05 01:53 . 2009-03-24 14:07 55640 ----a-w c:\windows\system32\drivers\avgntflt.sys
2009-05-05 01:53 . 2009-05-05 01:53 -------- d-----w c:\program files\Avira
2009-05-03 22:02 . 2009-05-03 22:09 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\Google
2009-04-29 13:46 . 2009-04-29 13:48 -------- d-----w C:\rsit
2009-04-29 09:54 . 2009-04-29 09:57 -------- d-----w C:\Rooter$
2009-04-28 23:32 . 2009-04-28 23:33 -------- d-----w c:\program files\Fichiers communs\Adobe
2009-04-28 22:36 . 2009-04-28 22:39 -------- d-----w c:\program files\SpywareBlaster
2009-04-27 14:35 . 2009-05-05 05:04 -------- d-----w c:\windows\system32\fr-fr
2009-04-27 14:32 . 2009-05-05 05:06 -------- d--h--w c:\windows\$hf_mig$
2009-04-27 14:09 . 2009-04-27 14:09 -------- d-----w c:\documents and settings\bisbytat\Application Data\PDM
2009-04-27 14:08 . 2009-04-27 14:08 -------- d-----w c:\program files\Palm Digital Media
2009-04-26 22:34 . 2009-01-04 10:35 31232 ----a-w c:\windows\system\vdremote.dll
2009-04-26 22:34 . 2009-01-04 10:35 25088 ----a-w c:\windows\system\vdsvrlnk.dll
2009-04-26 21:52 . 2009-04-27 04:57 -------- d-----w c:\documents and settings\bisbytat\Application Data\vlc
2009-04-26 21:52 . 2009-04-27 04:58 -------- d-----w c:\program files\adslTV
2009-04-25 11:02 . 2009-04-25 11:02 -------- d-----w c:\documents and settings\bisbytat\Application Data\Malwarebytes
2009-04-25 11:02 . 2009-04-06 13:32 15504 ----a-w c:\windows\system32\drivers\mbam.sys
2009-04-25 11:02 . 2009-04-06 13:32 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
2009-04-25 11:02 . 2009-04-25 11:02 -------- d-----w c:\documents and settings\All Users\Application Data\Malwarebytes
2009-04-25 09:31 . 2009-04-29 13:48 -------- d-----w c:\program files\Trend Micro
2009-04-24 08:15 . 2009-04-24 08:15 -------- d-----w c:\program files\Fichiers communs\PCSuite
2009-04-24 08:14 . 2008-08-26 08:26 18816 ----a-w c:\windows\system32\drivers\pccsmcfd.sys
2009-04-24 08:14 . 2009-04-24 08:14 -------- d-----w c:\program files\PC Connectivity Solution
2009-04-24 08:13 . 2009-02-09 05:37 7808 ----a-w c:\windows\system32\drivers\usbser_lowerfltj.sys
2009-04-24 08:13 . 2009-02-09 05:37 7808 ----a-w c:\windows\system32\drivers\usbser_lowerflt.sys
2009-04-24 08:13 . 2009-02-09 05:37 22016 ----a-w c:\windows\system32\drivers\ccdcmbo.sys
2009-04-24 08:13 . 2009-02-09 05:37 17664 ----a-w c:\windows\system32\drivers\ccdcmb.sys
2009-04-24 08:13 . 2009-02-09 05:37 659968 ----a-w c:\windows\system32\nmwcdcocls.dll
2009-04-24 08:13 . 2009-02-09 05:32 1112288 ----a-w c:\windows\system32\wdfcoinstaller01007.dll
2009-04-24 04:39 . 2009-04-24 04:39 -------- d-----w c:\documents and settings\bisbytat\Application Data\Media Player Classic
2009-04-24 04:23 . 2009-01-22 13:28 290816 ----a-w c:\windows\system32\decdll.dll
2009-04-20 15:48 . 2009-04-25 11:37 -------- d-----w c:\program files\StuffPlug3
2009-04-17 10:28 . 2009-04-17 10:28 -------- d-----w c:\program files\AnmSMP
2009-04-15 10:46 . 2009-04-15 10:46 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\Help
2009-04-15 07:47 . 2009-04-15 07:47 -------- d-----w c:\program files\Free RM to MP3 Converter
2009-04-15 07:25 . 2009-04-15 07:25 -------- d-----w c:\program files\LitexMedia
2009-04-14 18:42 . 1999-09-10 11:06 4672 ----a-w c:\windows\system\wowpost.exe
2009-04-14 18:42 . 1999-09-10 11:06 5600 ----a-w c:\windows\system\winaspi.dll
2009-04-14 18:42 . 1999-09-10 11:06 25244 ----a-w c:\windows\system32\drivers\aspi32.sys
2009-04-14 18:42 . 1999-09-10 11:06 45056 ----a-w c:\windows\system32\wnaspi32.dll
2009-04-14 18:42 . 2009-04-14 18:42 203776 ----a-w c:\windows\system32\clrviddc.dll
2009-04-14 06:20 . 2009-04-14 06:20 -------- d-----w C:\Part4
2009-04-14 06:20 . 2009-04-14 06:20 -------- d-----w C:\Part3
2009-04-14 06:20 . 2009-04-14 06:20 -------- d-----w C:\Part2
2009-04-14 06:20 . 2005-01-15 19:41 -------- d-----w C:\Part1
2009-04-12 22:31 . 2009-04-12 22:31 -------- d-----w c:\program files\Fichiers communs\xing shared
2009-04-12 15:41 . 2009-04-12 15:41 -------- d-----w c:\documents and settings\bisbytat\Application Data\Mobipocket
2009-04-12 13:26 . 1998-06-17 22:00 89360 ----a-w c:\windows\system32\VB5DB.DLL
2009-04-12 13:19 . 2009-04-12 13:19 -------- d-----w c:\documents and settings\All Users\Application Data\Office Genuine Advantage
2009-04-12 04:51 . 2004-08-03 17:08 25600 -c--a-w c:\windows\system32\dllcache\usbser.sys
2009-04-12 04:51 . 2004-08-03 17:08 25600 ----a-w c:\windows\system32\drivers\usbser.sys
2009-04-12 04:50 . 2008-03-21 11:57 14640 ------w c:\windows\system32\spmsgXP_2k3.dll
2009-04-12 04:42 . 2009-04-12 04:42 -------- d-----w c:\documents and settings\All Users\Application Data\Nokia
2009-04-12 03:37 . 2009-04-12 03:37 -------- d-----w c:\program files\MSXML 6.0
2009-04-12 03:36 . 2009-04-24 08:11 -------- d-----w c:\documents and settings\All Users\Application Data\Installations
2009-04-12 03:28 . 2008-03-16 12:30 216064 --sh--r c:\windows\system32\nbDX.dll
2009-04-12 03:28 . 2007-02-21 10:47 31232 --sh--r c:\windows\system32\msfDX.dll
2009-04-12 03:28 . 2006-05-03 09:06 163328 --sh--r c:\windows\system32\flvDX.dll
2009-04-12 03:27 . 2009-04-12 03:30 -------- d-----w c:\program files\SUPER
2009-04-12 03:14 . 2009-04-12 03:14 -------- d-----w c:\documents and settings\All Users\Application Data\DVD Shrink
2009-04-12 02:15 . 2009-04-12 02:15 -------- d-----w c:\documents and settings\bisbytat\Application Data\IObit
2009-04-12 02:15 . 2009-04-12 02:15 -------- d-----w c:\program files\IObit
2009-04-12 02:06 . 2009-04-12 19:56 -------- d-----w c:\program files\SpeedBit Video Accelerator
2009-04-11 22:35 . 2009-04-22 20:46 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\WMTools Downloaded Files
2009-04-11 22:12 . 2004-08-19 10:09 116736 -c--a-w c:\windows\system32\dllcache\xrxwiadr.dll
2009-04-11 22:12 . 2001-08-23 14:47 23040 -c--a-w c:\windows\system32\dllcache\xrxwbtmp.dll
2009-04-11 22:12 . 2001-08-23 14:47 17408 -c--a-w c:\windows\system32\dllcache\xrxscnui.dll
2009-04-11 22:12 . 2001-08-23 14:47 27648 -c--a-w c:\windows\system32\dllcache\xrxftplt.exe
2009-04-11 22:12 . 2001-08-23 14:47 4608 -c--a-w c:\windows\system32\dllcache\xrxflnch.exe
2009-04-11 22:12 . 2001-08-23 14:47 99865 -c--a-w c:\windows\system32\dllcache\xlog.exe
2009-04-11 22:12 . 2001-08-17 17:11 16970 -c--a-w c:\windows\system32\dllcache\xem336n5.sys
2009-04-11 22:12 . 2004-08-03 16:29 19455 -c--a-w c:\windows\system32\dllcache\wvchntxx.sys
2009-04-11 22:12 . 2004-08-03 17:10 19328 -c--a-w c:\windows\system32\dllcache\wstcodec.sys
2009-04-11 22:12 . 2004-08-03 16:29 12063 -c--a-w c:\windows\system32\dllcache\wsiintxx.sys
2009-04-11 22:12 . 2004-08-19 10:09 8192 -c--a-w c:\windows\system32\dllcache\wshirda.dll
2009-04-11 22:12 . 2004-08-03 17:07 8832 -c--a-w c:\windows\system32\dllcache\wmiacpi.sys
2009-04-11 22:10 . 2001-08-17 18:53 7040 -c--a-w c:\windows\system32\dllcache\snyaitmc.sys
2009-04-11 22:09 . 2004-08-03 16:31 29502 -c--a-w c:\windows\system32\dllcache\pca200e.sys
2009-04-11 22:08 . 2004-08-03 17:10 15360 -c--a-w c:\windows\system32\dllcache\mpe.sys
2009-04-11 22:07 . 2004-08-03 16:41 1041536 -c--a-w c:\windows\system32\dllcache\hsfdpsp2.sys
2009-04-11 22:06 . 2001-08-17 17:20 334208 -c--a-w c:\windows\system32\dllcache\ds1wdm.sys
2009-04-11 22:05 . 2001-08-23 14:02 14080 -c--a-w c:\windows\system32\dllcache\bulltlp3.sys
2009-04-11 22:04 . 2004-08-03 17:00 12288 -c--a-w c:\windows\system32\dllcache\4mmdat.sys
2009-04-11 22:04 . 2001-08-17 17:48 148352 -c--a-w c:\windows\system32\dllcache\3dfxvsm.sys
2009-04-11 22:04 . 2001-08-23 14:46 689216 -c--a-w c:\windows\system32\dllcache\3dfxvs.dll
2009-04-11 22:04 . 2001-08-17 18:28 762780 -c--a-w c:\windows\system32\dllcache\3cwmcru.sys
2009-04-11 22:04 . 2001-08-17 19:06 11264 -c--a-w c:\windows\system32\dllcache\1394vdbg.sys
2009-04-11 22:04 . 2004-08-03 17:10 53248 -c--a-w c:\windows\system32\dllcache\1394bus.sys
2009-04-11 22:04 . 2001-08-23 14:46 66048 -c--a-w c:\windows\system32\dllcache\s3legacy.dll
2009-04-11 15:35 . 2009-04-11 15:35 -------- d-----w c:\documents and settings\NetworkService\Local Settings\Application Data\Apple
2009-04-10 15:18 . 2009-04-10 15:18 -------- d-----w c:\documents and settings\bisbytat\Application Data\Apple Computer
2009-04-10 14:57 . 2009-04-10 14:57 -------- d-----w c:\documents and settings\bisbytat\Application Data\NeroDigital(TM)
2009-04-10 14:49 . 2009-04-10 14:51 -------- d-----w c:\documents and settings\bisbytat\Application Data\Nero
2009-04-10 14:19 . 2009-04-10 15:35 -------- d-----w c:\program files\Nero
2009-04-10 14:19 . 2009-04-10 15:45 -------- d-----w c:\documents and settings\All Users\Application Data\Nero
2009-04-10 14:19 . 2009-04-10 15:45 -------- d-----w c:\program files\Fichiers communs\Nero
2009-04-10 10:30 . 2009-04-10 10:31 -------- d-----w c:\program files\QuickTime
2009-04-10 10:16 . 2009-04-15 20:57 -------- d-sh--w c:\documents and settings\bisbytat\Phone Browser
2009-04-10 09:59 . 2009-04-10 09:59 -------- d-----w c:\documents and settings\All Users\Application Data\PC Suite
2009-04-10 09:59 . 2009-05-04 11:23 -------- d-----w c:\documents and settings\bisbytat\Application Data\Nokia
2009-04-10 09:59 . 2009-04-24 08:15 -------- d-----w c:\program files\Fichiers communs\Nokia
2009-04-10 09:59 . 2009-04-10 09:59 -------- d-----w c:\program files\DIFX
2009-04-10 09:59 . 2009-04-15 20:31 -------- d-----w c:\documents and settings\bisbytat\Application Data\PC Suite
2009-04-10 09:57 . 2009-02-09 05:37 91136 ----a-w c:\windows\system32\nmwcdcls.dll
2009-04-10 09:57 . 2009-04-24 08:15 -------- d-----w c:\program files\Nokia
2009-04-09 20:07 . 2009-04-09 20:07 -------- d-sh--w c:\documents and settings\bisbytat\UserData
2009-04-09 01:33 . 2009-04-09 01:35 -------- d-----w c:\windows\Ulead.dat
2009-04-09 01:20 . 2009-04-09 01:20 -------- d-----w c:\documents and settings\bisbytat\Application Data\Canneverbe_Limited

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-05-05 05:17 . 2001-08-24 12:00 71248 ----a-w c:\windows\system32\perfc00C.dat
2009-05-05 05:17 . 2001-08-24 12:00 458230 ----a-w c:\windows\system32\perfh00C.dat
2009-05-01 07:34 . 2009-05-01 07:34 -------- d-----w c:\program files\Foxit Software
2009-04-29 19:07 . 2009-04-07 12:06 79880 ----a-w c:\documents and settings\bisbytat\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-04-12 13:29 . 2009-04-07 11:54 -------- d--h--w c:\program files\InstallShield Installation Information
2009-04-12 04:50 . 2009-04-12 04:50 0 ---ha-w c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
2009-04-12 04:50 . 2009-04-12 04:50 0 ---ha-w c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2009-04-07 12:30 . 2009-04-07 12:30 315392 ----a-w c:\windows\HideWin.exe
2009-04-07 12:27 . 2009-04-07 12:27 -------- d-----w c:\program files\Realtek AC97
2009-04-07 12:27 . 2009-04-07 11:55 -------- d-----w c:\program files\Fichiers communs\InstallShield
2009-04-07 12:02 . 2009-04-07 11:56 -------- d-----w c:\program files\ATI Technologies
2009-04-07 11:25 . 2009-04-07 11:25 -------- d-----w c:\program files\microsoft frontpage
2009-04-07 11:24 . 2001-08-24 12:00 67 --sha-w c:\windows\Fonts\desktop.ini
2009-04-07 11:23 . 2009-04-07 11:23 86331 ----a-w c:\windows\pchealth\helpctr\OfflineCache\index.dat
2009-04-07 11:22 . 2009-04-07 11:22 -------- d-----w c:\program files\Services en ligne
2009-04-07 11:20 . 2009-04-07 11:20 21892 ----a-w c:\windows\system32\emptyregdb.dat
2009-03-06 14:46 . 2004-08-19 15:09 286208 ----a-w c:\windows\system32\pdh.dll
2009-03-03 00:13 . 2006-04-12 18:13 826368 ----a-w c:\windows\system32\wininet.dll
2009-02-20 17:10 . 2004-08-19 15:09 78336 ----a-w c:\windows\system32\ieencode.dll
2009-02-09 14:17 . 2006-03-09 08:25 1846400 ----a-w c:\windows\system32\win32k.sys
2009-02-09 11:50 . 2005-03-02 16:08 2017792 ----a-w c:\windows\system32\ntkrnlpa.exe
2009-02-09 11:50 . 2006-03-09 08:25 2138112 ----a-w c:\windows\system32\ntoskrnl.exe
2009-02-09 10:20 . 2006-03-09 08:24 730112 ----a-w c:\windows\system32\lsasrv.dll
2009-02-09 10:20 . 2006-03-09 08:25 399360 ----a-w c:\windows\system32\rpcss.dll
2009-02-09 10:20 . 2004-08-19 15:09 685056 ----a-w c:\windows\system32\advapi32.dll
2009-02-09 10:20 . 2004-08-19 15:09 739840 ----a-w c:\windows\system32\ntdll.dll
2009-02-09 10:08 . 2004-08-19 15:10 111104 ----a-w c:\windows\system32\services.exe
2009-02-06 16:54 . 2001-08-24 12:00 35328 ----a-w c:\windows\system32\sc.exe
2006-05-03 09:06 . 2009-04-12 03:28 163328 --sh--r c:\windows\system32\flvDX.dll
2007-02-21 10:47 . 2009-04-12 03:28 31232 --sh--r c:\windows\system32\msfDX.dll
2008-03-16 12:30 . 2009-04-12 03:28 216064 --sh--r c:\windows\system32\nbDX.dll
.

(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.

---- Directory of C:\Part1 ----

2009-04-14 06:20 . 2003-09-23 15:56 72909 ----a-w c:\part1\YusufDB.pdb
2009-04-14 06:20 . 2004-10-04 19:00 241591 ----a-w c:\part1\Yusuf.prc
2009-04-14 06:20 . 2003-09-23 16:03 75651 ----a-w c:\part1\YunusDB.pdb
2009-04-14 06:20 . 2003-09-23 16:03 32413 ----a-w c:\part1\YaasiinDB.pdb
2009-04-14 06:20 . 2004-10-04 18:56 248955 ----a-w c:\part1\Yunus.prc
2009-04-14 06:20 . 2003-09-23 16:04 55851 ----a-w c:\part1\TahaDB.pdb
2009-04-14 06:20 . 2004-10-05 13:22 127101 ----a-w c:\part1\Yaasiin.prc
2009-04-14 06:20 . 2003-09-23 16:03 33935 ----a-w c:\part1\ShaadDB.pdb
2009-04-14 06:20 . 2004-10-04 19:17 200605 ----a-w c:\part1\Taha.prc
2009-04-14 06:20 . 2004-10-04 21:47 129504 ----a-w c:\part1\Shaad.prc
2009-04-14 06:20 . 2003-09-23 16:03 37026 ----a-w c:\part1\SabaDB.pdb
2009-04-14 06:20 . 2003-09-23 16:04 17988 ----a-w c:\part1\QaafDB.pdb
2009-04-14 06:20 . 2004-10-09 10:59 39235 ----a-w c:\part1\Quraisy.prc
2009-04-14 06:20 . 2003-09-23 16:02 1204 ----a-w c:\part1\QuraisyDB.pdb
2009-04-14 06:20 . 2005-01-15 18:13 138838 ----a-w c:\part1\Saba'.prc
2009-04-14 06:20 . 2003-09-23 16:03 10099 ----a-w c:\part1\NuhDB.pdb
2009-04-14 06:20 . 2004-10-05 13:00 82138 ----a-w c:\part1\Qaaf.prc
2009-04-14 06:20 . 2003-09-23 16:04 25316 ----a-w c:\part1\MuhammadDB.pdb
2009-04-14 06:20 . 2004-10-07 12:18 65346 ----a-w c:\part1\Nuh.prc
2009-04-14 06:20 . 2003-09-23 16:03 39983 ----a-w c:\part1\MaryamDB.pdb
2009-04-14 06:20 . 2004-10-05 09:26 105686 ----a-w c:\part1\Muhammad.prc
2009-04-14 06:20 . 2004-12-28 09:11 155496 ----a-w c:\part1\Maryam.prc
2009-04-14 06:20 . 2003-09-23 16:04 22167 ----a-w c:\part1\LuqmanDB.pdb
2009-04-14 06:20 . 2003-09-23 16:01 34809 ----a-w c:\part1\IbrahimDB.pdb
2009-04-14 06:20 . 2005-01-15 18:04 98256 ----a-w c:\part1\Luqman.prc
2009-04-14 06:20 . 2004-10-04 19:04 135964 ----a-w c:\part1\Ibrahim.prc
2009-04-14 06:20 . 2004-12-24 15:06 78590 ----a-w c:\part1\HudDB.pdb
2009-04-14 06:20 . 2003-09-23 16:01 50694 ----a-w c:\part1\GhaafirDB.pdb
2009-04-14 06:20 . 2004-12-24 15:00 258247 ----a-w c:\part1\Hud.prc
2009-04-14 06:20 . 2003-09-23 16:01 34942 ----a-w c:\part1\FussilatDB.pdb
2009-04-14 06:20 . 2005-01-15 18:24 182026 ----a-w c:\part1\Ghaafir.prc
2009-04-14 06:20 . 2003-09-23 16:01 32381 ----a-w c:\part1\FaatirDB.pdb
2009-04-14 06:20 . 2005-01-15 18:35 131896 ----a-w c:\part1\Fussilat.prc
2009-04-14 06:20 . 2004-10-04 21:34 126604 ----a-w c:\part1\Faatir.prc
2009-04-14 06:20 . 2003-09-23 16:00 1924 ----a-w c:\part1\AzZalzalahDB.pdb
2009-04-14 06:20 . 2003-09-23 16:00 38962 ----a-w c:\part1\AzZukhrufDB.pdb
2009-04-14 06:20 . 2003-09-23 16:01 49176 ----a-w c:\part1\AzZumarDB.pdb
2009-04-14 06:20 . 2005-01-15 18:19 172660 ----a-w c:\part1\Az-Zumar.prc
2009-04-14 06:20 . 2005-01-15 18:40 144844 ----a-w c:\part1\Az-Zukhruf.prc
2009-04-14 06:20 . 2003-09-23 15:59 15442 ----a-w c:\part1\AthThuurDB.pdb
2009-04-14 06:20 . 2003-09-23 15:59 3451 ----a-w c:\part1\AtTaariqDB.pdb
2009-04-14 06:20 . 2003-09-23 15:59 10861 ----a-w c:\part1\AtTaghaabunDB.pdb
2009-04-14 06:20 . 2003-09-23 15:59 11427 ----a-w c:\part1\AtTahriimDB.pdb
2009-04-14 06:20 . 2003-09-23 16:00 2172 ----a-w c:\part1\AtTakaathurDB.pdb
2009-04-14 06:20 . 2003-09-23 16:00 5477 ----a-w c:\part1\AtTakwiirDB.pdb
2009-04-14 06:20 . 2003-09-23 16:00 101798 ----a-w c:\part1\AtTaubahDB.pdb
2009-04-14 06:20 . 2003-09-23 16:00 1930 ----a-w c:\part1\AtTiinDB.pdb
2009-04-14 06:20 . 2004-10-09 07:51 41819 ----a-w c:\part1\Az-Zalzalah.prc
2009-04-14 06:20 . 2004-10-07 18:51 52020 ----a-w c:\part1\At-Takwiir.prc
2009-04-14 06:20 . 2004-10-04 18:55 341639 ----a-w c:\part1\At-Taubah.prc
2009-04-14 06:20 . 2004-10-08 21:12 41723 ----a-w c:\part1\At-Tiin.prc
2009-04-14 06:20 . 2004-10-05 13:28 78714 ----a-w c:\part1\Ath-Thuur.prc
2009-04-14 06:20 . 2004-10-07 19:11 45990 ----a-w c:\part1\At-Taariq.prc
2009-04-14 06:20 . 2004-10-05 19:22 67366 ----a-w c:\part1\At-Taghaabun.prc
2009-04-14 06:20 . 2004-10-05 19:37 79376 ----a-w c:\part1\At-Tahriim.prc
2009-04-14 06:20 . 2004-10-09 10:39 41025 ----a-w c:\part1\At-Takaathur.prc

---- Directory of C:\Part2 ----

2009-04-14 06:20 . 2003-09-23 15:59 12079 ----a-w c:\part2\AthThalaaqDB.pdb
2009-04-14 06:20 . 2003-09-23 15:58 3785 ----a-w c:\part2\AsySyamsDB.pdb
2009-04-14 06:20 . 2003-09-23 15:58 58117 ----a-w c:\part2\AsySyuaraaDB.pdb
2009-04-14 06:20 . 2003-09-23 15:58 36919 ----a-w c:\part2\AsySyuuraDB.pdb
2009-04-14 06:20 . 2004-10-05 19:33 70298 ----a-w c:\part2\Ath-Thalaaq.prc
2009-04-14 06:20 . 2004-10-04 22:04 142986 ----a-w c:\part2\Asy-Syuura.prc
2009-04-14 06:20 . 2003-09-23 15:57 16427 ----a-w c:\part2\AsSajdahDB.pdb
2009-04-14 06:20 . 2004-10-08 20:52 44694 ----a-w c:\part2\Asy-Syams.prc
2009-04-14 06:20 . 2004-10-04 21:00 216245 ----a-w c:\part2\Asy-Syu'araa'.prc
2009-04-14 06:20 . 2004-10-08 21:08 40667 ----a-w c:\part2\Ash-Syar-h.prc
2009-04-14 06:20 . 2003-09-23 15:57 8710 ----a-w c:\part2\AshShaafDB.pdb
2009-04-14 06:20 . 2003-09-23 15:57 44206 ----a-w c:\part2\AshShaffaatDB.pdb
2009-04-14 06:20 . 2003-09-23 15:57 1893 ----a-w c:\part2\AshSyarhDB.pdb
2009-04-14 06:20 . 2005-01-15 18:46 64134 ----a-w c:\part2\Ash-Shaaf.prc
2009-04-14 06:20 . 2004-10-04 21:42 162853 ----a-w c:\part2\Ash-Shaffaat.prc
2009-04-14 06:20 . 2003-09-23 15:56 35474 ----a-w c:\part2\ArRadDB.pdb
2009-04-14 06:20 . 2003-09-23 15:57 17954 ----a-w c:\part2\ArRahmaanDB.pdb
2009-04-14 06:20 . 2003-11-15 19:02 35202 ----a-w c:\part2\ArRuumDB.pdb
2009-04-14 06:20 . 2004-10-04 21:12 82298 ----a-w c:\part2\As-Sajdah.prc
2009-04-14 06:20 . 2005-01-15 17:52 138996 ----a-w c:\part2\Ar-Ruum.prc
2009-04-14 06:20 . 2004-10-05 13:47 91252 ----a-w c:\part2\Ar-Rahmaan.prc
2009-04-14 06:20 . 2004-10-04 19:02 135034 ----a-w c:\part2\Ar-Ra'd.prc
2009-04-14 06:20 . 2003-09-23 15:56 53132 ----a-w c:\part2\AnNuurDB.pdb
2009-04-14 06:20 . 2004-10-04 20:56 194418 ----a-w c:\part2\AnNuur.prc
2009-04-14 06:20 . 2003-09-23 15:56 1042 ----a-w c:\part2\AnNasrDB.pdb
2009-04-14 06:20 . 2003-09-23 15:56 153030 ----a-w c:\part2\AnNisaaDB.pdb
2009-04-14 06:20 . 2003-09-23 15:56 47772 ----a-w c:\part2\AnNamlDB.pdb
2009-04-14 06:20 . 2003-09-23 15:31 1249 ----a-w c:\part2\AnNaasDB.pdb
2009-04-14 06:20 . 2003-09-23 15:56 10183 ----a-w c:\part2\AnNaaziaatDB.pdb
2009-04-14 06:20 . 2003-09-23 15:56 9358 ----a-w c:\part2\AnNabaDB.pdb
2009-04-14 06:20 . 2003-09-23 15:56 17030 ----a-w c:\part2\AnNajmDB.pdb
2009-04-14 06:20 . 2004-10-09 11:12 39053 ----a-w c:\part2\An-Nasr.prc
2009-04-14 06:20 . 2004-12-18 11:07 478865 ----a-w c:\part2\An-Nisaa'.prc
2009-04-14 06:20 . 2004-10-04 21:02 176802 ----a-w c:\part2\An-Naml.prc
2009-04-14 06:20 . 2004-10-05 13:32 83952 ----a-w c:\part2\An-Najm.prc
2009-04-14 06:20 . 2004-10-07 17:38 61832 ----a-w c:\part2\An-Naba'.prc
2009-04-14 06:20 . 2003-09-23 15:55 17485 ----a-w c:\part2\AlQamarDB.pdb
2009-04-14 06:20 . 2003-09-23 15:55 58026 ----a-w c:\part2\AlQasasDB.pdb
2009-04-14 06:20 . 2003-09-23 15:55 8696 ----a-w c:\part2\AlQiaamahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:56 19592 ----a-w c:\part2\AlWaaqiahDB.pdb
2009-04-14 06:20 . 2004-10-09 11:26 39567 ----a-w c:\part2\An-Naas.prc
2009-04-14 06:20 . 2004-10-07 17:45 63020 ----a-w c:\part2\An-Naazi'aat.prc
2009-04-14 06:20 . 2003-09-23 15:55 1363 ----a-w c:\part2\AlQadrDB.pdb
2009-04-14 06:20 . 2003-09-23 15:55 15229 ----a-w c:\part2\AlQalamDB.pdb
2009-04-14 06:20 . 2003-09-23 15:54 9327 ----a-w c:\part2\AlMuzzammilDB.pdb
2009-04-14 06:20 . 2003-09-23 15:55 75922 ----a-w c:\part2\AlNahlDB.pdb
2009-04-14 06:20 . 2003-09-23 15:55 2131 ----a-w c:\part2\AlQaariahDB.pdb
2009-04-14 06:20 . 2004-10-07 17:24 59790 ----a-w c:\part2\Al-Qiaamah.prc
2009-04-14 06:20 . 2004-10-05 13:50 95868 ----a-w c:\part2\Al-Waaqi'ah.prc
2009-04-14 06:20 . 2004-10-04 21:04 203042 ----a-w c:\part2\Al-Qasas.prc
2009-04-14 06:20 . 2004-10-09 10:34 42500 ----a-w c:\part2\Al-Qaari'ah.prc
2009-04-14 06:20 . 2004-10-08 21:20 40849 ----a-w c:\part2\Al-Qadr.prc
2009-04-14 06:20 . 2004-10-05 19:47 77240 ----a-w c:\part2\Al-Qalam.prc
2009-04-14 06:20 . 2004-10-05 13:43 83418 ----a-w c:\part2\Al-Qamar.prc
2009-04-14 06:20 . 2004-10-04 19:09 258753 ----a-w c:\part2\Al-Nahl.prc
2009-04-14 06:20 . 2004-10-07 13:12 61552 ----a-w c:\part2\Al-Muzzammil.prc

---- Directory of C:\Part3 ----

2009-04-14 06:20 . 2003-09-23 15:54 14908 ----a-w c:\part3\AlMumtahanahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:54 8468 ----a-w c:\part3\AlMunaafiquunDB.pdb
2009-04-14 06:20 . 2003-09-23 15:54 10807 ----a-w c:\part3\AlMursalaatDB.pdb
2009-04-14 06:20 . 2003-09-23 15:54 8333 ----a-w c:\part3\AlMutaffifiinDB.pdb
2009-04-14 06:20 . 2003-09-23 15:53 19390 ----a-w c:\part3\AlMujaadalahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:53 14305 ----a-w c:\part3\AlMulkDB.pdb
2009-04-14 06:20 . 2003-09-23 15:53 43459 ----a-w c:\part3\AlMuminuunDB.pdb
2009-04-14 06:20 . 2003-09-23 15:53 1658 ----a-w c:\part3\AlMaauunDB.pdb
2009-04-14 06:20 . 2003-09-23 15:53 1166 ----a-w c:\part3\AlMasadDB.pdb
2009-04-14 06:20 . 2003-09-23 15:53 12776 ----a-w c:\part3\AlMuddaththirDB.pdb
2009-04-14 06:20 . 2003-09-23 15:52 112113 ----a-w c:\part3\AlMaaidahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:50 953 ----a-w c:\part3\AlKautharDB.pdb
2009-04-14 06:20 . 2003-09-23 15:51 4369 ----a-w c:\part3\AlLailDB.pdb
2009-04-14 06:20 . 2003-09-23 15:51 10524 ----a-w c:\part3\AlMaaarijDB.pdb
2009-04-14 06:20 . 2003-09-23 15:50 1196 ----a-w c:\part3\AlKaafiruunDB.pdb
2009-04-14 06:20 . 2003-09-23 15:50 64116 ----a-w c:\part3\AlKahfiDB.pdb
2009-04-14 06:20 . 2003-09-23 15:49 65116 ----a-w c:\part3\AlIsraaDB.pdb
2009-04-14 06:20 . 2003-09-23 15:49 20791 ----a-w c:\part3\AlJaathiyahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:50 13008 ----a-w c:\part3\AlJinnDB.pdb
2009-04-14 06:20 . 2003-09-23 15:50 7874 ----a-w c:\part3\AlJumuahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:49 5331 ----a-w c:\part3\AlInsyiqaaqDB.pdb
2009-04-14 06:20 . 2003-09-23 15:49 873 ----a-w c:\part3\AlIkhlaasDB.pdb
2009-04-14 06:20 . 2003-09-23 16:03 4284 ----a-w c:\part3\AlInfitaarDB.pdb
2009-04-14 06:20 . 2003-09-23 15:49 12138 ----a-w c:\part3\AlInsaanDB.pdb
2009-04-14 06:20 . 2003-09-23 15:48 30180 ----a-w c:\part3\AlHijrDB.pdb
2009-04-14 06:20 . 2003-09-23 15:48 14652 ----a-w c:\part3\AlHujuraatDB.pdb
2009-04-14 06:20 . 2003-09-23 15:49 1806 ----a-w c:\part3\AlHumazahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:49 143987 ----a-w c:\part3\AliImraanDB.pdb
2009-04-14 06:20 . 2005-01-15 18:49 60782 ----a-w c:\part3\Al-Mutaffifiin.prc
2009-04-14 06:20 . 2004-10-05 19:16 59272 ----a-w c:\part3\Al-Munaafiquun.prc
2009-04-14 06:20 . 2004-10-07 17:34 65692 ----a-w c:\part3\Al-Mursalaat.prc
2009-04-14 06:20 . 2004-10-05 14:08 79038 ----a-w c:\part3\Al-Mumtahanah.prc
2009-04-14 06:20 . 2004-10-05 14:00 91524 ----a-w c:\part3\Al-Mujaadalah.prc
2009-04-14 06:20 . 2004-10-05 19:44 75866 ----a-w c:\part3\Al-Mulk.prc
2009-04-14 06:20 . 2004-10-07 13:16 73588 ----a-w c:\part3\Al-Muddaththir.prc
2009-04-14 06:20 . 2004-10-04 20:55 171701 ----a-w c:\part3\Al-Mu'minuun.prc
2009-04-14 06:20 . 2004-10-09 11:15 39455 ----a-w c:\part3\Al-Masad.prc
2009-04-14 06:20 . 2005-01-15 18:51 68618 ----a-w c:\part3\Al-Ma'aarij.prc
2009-04-14 06:20 . 2004-10-09 11:02 40589 ----a-w c:\part3\Al-Maa'uun.prc
2009-04-14 06:20 . 2004-10-04 18:45 362683 ----a-w c:\part3\Al-Maaidah.prc
2009-04-14 06:20 . 2004-10-09 11:05 38189 ----a-w c:\part3\Al-Kauthar.prc
2009-04-14 06:20 . 2004-10-08 20:57 47592 ----a-w c:\part3\Al-Lail.prc
2009-04-14 06:20 . 2004-10-04 19:14 222999 ----a-w c:\part3\Al-Kahfi.prc
2009-04-14 06:20 . 2004-10-09 11:09 39857 ----a-w c:\part3\Al-Kaafiruun.prc
2009-04-14 06:20 . 2004-10-07 12:27 69942 ----a-w c:\part3\Al-Jinn.prc
2009-04-14 06:20 . 2004-10-05 19:12 57502 ----a-w c:\part3\Al-Jumu'ah.prc
2009-04-14 06:20 . 2004-10-05 09:17 96532 ----a-w c:\part3\Al-Jaathiyah.prc
2009-04-14 06:20 . 2004-10-07 17:29 68094 ----a-w c:\part3\Al-Insaan.prc
2009-04-14 06:20 . 2004-10-07 19:04 51750 ----a-w c:\part3\Al-Insyiqaaq.prc
2009-04-14 06:20 . 2004-12-18 11:30 225995 ----a-w c:\part3\Al-Israa'.prc
2009-04-14 06:20 . 2004-10-09 11:19 38539 ----a-w c:\part3\Al-Ikhlaas.prc
2009-04-14 06:20 . 2004-10-07 18:55 47584 ----a-w c:\part3\Al-Infitaar.prc
2009-04-14 06:20 . 2004-10-09 10:52 41401 ----a-w c:\part3\Al-Humazah.prc
2009-04-14 06:20 . 2004-10-04 19:06 124146 ----a-w c:\part3\Al-Hijr.prc
2009-04-14 06:20 . 2004-10-05 12:53 78520 ----a-w c:\part3\Al-Hujuraat.prc
2009-04-14 06:20 . 2004-12-28 09:24 450129 ----a-w c:\part3\A-li 'Imran.prc

---- Directory of C:\Part4 ----

2009-04-14 06:20 . 2003-09-23 15:48 19363 ----a-w c:\part4\AlHasyrDB.pdb
2009-04-14 06:20 . 2003-09-23 15:47 1425 ----a-w c:\part4\AlFiilDB.pdb
2009-04-14 06:20 . 2003-09-23 15:47 38389 ----a-w c:\part4\AlFurqaanDB.pdb
2009-04-14 06:20 . 2003-09-23 15:48 4759 ----a-w c:\part4\AlGhaasyiyahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:48 13017 ----a-w c:\part4\AlHaaqqahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:48 24892 ----a-w c:\part4\AlHadiidDB.pdb
2009-04-14 06:20 . 2003-09-23 15:48 51232 ----a-w c:\part4\AlHajjDB.pdb
2009-04-14 06:20 . 2003-09-23 15:47 5315 ----a-w c:\part4\AlBuruujDB.pdb
2009-04-14 06:20 . 2003-09-23 15:47 1362 ----a-w c:\part4\AlFaatihahDB.pdb
2009-04-14 06:20 . 2004-10-07 19:22 56062 ----a-w c:\part4\AlFajr.prc
2009-04-14 06:20 . 2003-09-23 15:47 7336 ----a-w c:\part4\AlFajrDB.pdb
2009-04-14 06:20 . 2003-09-23 15:47 1196 ----a-w c:\part4\AlFalaqDB.pdb
2009-04-14 06:20 . 2003-09-23 15:47 25950 ----a-w c:\part4\AlFathDB.pdb
2009-04-14 06:20 . 2003-09-23 15:46 3719 ----a-w c:\part4\AlBayyinahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:46 4626 ----a-w c:\part4\AlBaladDB.pdb
2009-04-14 06:20 . 2003-09-23 15:46 247609 ----a-w c:\part4\AlBaqarahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:45 894 ----a-w c:\part4\AlAsrDB.pdb
2009-04-14 06:20 . 2003-09-23 15:45 136130 ----a-w c:\part4\AlAraafDB.pdb
2009-04-14 06:20 . 2003-09-23 15:45 41324 ----a-w c:\part4\AlAnkabuutDB.pdb
2009-04-14 06:20 . 2003-09-23 15:45 51287 ----a-w c:\part4\AlAnfaalDB.pdb
2009-04-14 06:20 . 2003-09-23 15:45 50595 ----a-w c:\part4\AlAnbiyaaDB.pdb
2009-04-14 06:20 . 2003-09-23 15:44 4409 ----a-w c:\part4\AlAlaaDB.pdb
2009-04-14 06:20 . 2003-09-23 15:44 3812 ----a-w c:\part4\AlAlaqDB.pdb
2009-04-14 06:20 . 2003-09-23 15:45 125358 ----a-w c:\part4\AlAnaamDB.pdb
2009-04-14 06:20 . 2003-09-23 15:44 2306 ----a-w c:\part4\AlAadiyaatDB.pdb
2009-04-14 06:20 . 2003-09-23 15:44 27354 ----a-w c:\part4\AlAhqaafDB.pdb
2009-04-14 06:20 . 2003-09-23 15:44 53838 ----a-w c:\part4\AlAhzaabDB.pdb
2009-04-14 06:20 . 2004-10-05 14:04 91176 ----a-w c:\part4\Al-Hasy-r.prc
2009-04-14 06:20 . 2004-10-04 20:52 185882 ----a-w c:\part4\Al-Hajj.prc
2009-04-14 06:20 . 2004-10-05 19:52 72738 ----a-w c:\part4\Al-Haaqqah.prc
2009-04-14 06:20 . 2004-10-05 13:56 106452 ----a-w c:\part4\Al-Hadiid.prc
2009-04-14 06:20 . 2004-10-07 19:18 50432 ----a-w c:\part4\Al-Ghaasyiyah.prc
2009-04-14 06:20 . 2004-10-09 10:55 39913 ----a-w c:\part4\Al-Fiil.prc
2009-04-14 06:20 . 2004-10-04 20:58 148198 ----a-w c:\part4\Al-Furqaan.prc
2009-04-14 06:20 . 2004-10-05 09:31 105788 ----a-w c:\part4\Al-Fat-h.prc
2009-04-14 06:20 . 2004-10-07 19:07 52396 ----a-w c:\part4\Al-Buruuj.prc
2009-04-14 06:20 . 2004-10-04 18:26 41159 ----a-w c:\part4\Al-Faatihah.prc
2009-04-14 06:20 . 2004-10-09 11:23 39267 ----a-w c:\part4\Al-Falaq.prc
2009-04-14 06:20 . 2004-10-09 07:47 48039 ----a-w c:\part4\Al-Bayyinah.prc
2009-04-14 06:20 . 2004-10-07 19:25 48080 ----a-w c:\part4\Al-Balad.prc
2009-04-14 06:20 . 2004-12-17 17:58 760717 ----a-w c:\part4\Al-Baqarah.prc
2009-04-14 06:20 . 2004-12-28 09:18 188852 ----a-w c:\part4\Al-Anfaal.prc
2009-04-14 06:20 . 2004-10-04 20:50 184103 ----a-w c:\part4\Al-Anbiyaa'.prc
2009-04-14 06:20 . 2004-12-18 11:14 395447 ----a-w c:\part4\Al-An'aam.prc
2009-04-14 06:20 . 2004-10-04 21:13 191618 ----a-w c:\part4\Al-Ahzaab.prc
2009-04-14 06:20 . 2004-10-05 09:21 110388 ----a-w c:\part4\Al-Ahqaaf.prc
2009-04-14 06:20 . 2004-10-07 19:14 47078 ----a-w c:\part4\Al-A'laa.prc
2009-04-14 06:20 . 2004-10-04 18:51 438971 ----a-w c:\part4\Al-A'raaf.prc
2009-04-14 06:20 . 2004-10-09 10:48 38853 ----a-w c:\part4\Al-'Asr.prc
2009-04-14 06:20 . 2005-01-15 17:47 157024 ----a-w c:\part4\Al-'Ankabuut.prc
2009-04-14 06:20 . 2004-10-09 07:57 42694 ----a-w c:\part4\Al-'Aadiyaat.prc
2009-04-14 06:20 . 2004-10-08 21:16 46878 ----a-w c:\part4\Al-'Alaq.prc
2009-04-14 06:20 . 2003-09-23 15:44 17870 ----a-w c:\part4\AdzDzaariyaatDB.pdb
2009-04-14 06:20 . 2003-09-23 15:41 17109 ----a-w c:\part4\AdDukhaanDB.pdb
2009-04-14 06:20 . 2004-10-08 21:01 43130 ----a-w c:\part4\Adh-Dhuha.prc
2009-04-14 06:20 . 2003-09-23 15:41 2446 ----a-w c:\part4\AdhDhuhaDB.pdb
2009-04-14 06:20 . 2004-10-05 13:06 85390 ----a-w c:\part4\Adz-Dzaariyaat.prc
2009-04-14 06:20 . 2004-10-07 17:49 57538 ----a-w c:\part4\'Abasa.prc
2009-04-14 06:20 . 2003-09-23 15:40 7469 ----a-w c:\part4\AbasaDB.pdb
2009-04-14 06:20 . 2004-10-05 09:12 82736 ----a-w c:\part4\Ad-Dukhaan.prc


------- Sigcheck -------

[-] 2006-03-09 08:25 578048 0DF75FB73F705B011630159A43D7C354 c:\windows\system32\user32.dll

[-] 2006-03-09 08:25 57856 DA81EC57ACD4CDC3D4C51CF3D409AF9F c:\windows\system32\spoolsv.exe

[-] 2006-03-09 09:40 1548288 E51172E3C82D76FCC02001D0FF41A1A1 c:\windows\system32\sfcfiles.dll
.
((((((((((((((((((((((((((((( SnapShot@2009-05-04_23.27.32 )))))))))))))))))))))))))))))))))))))))))
.
+ 2007-11-07 00:19 . 2007-11-07 00:19 54272 c:\windows\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_ecc42bd1\vcomp90.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 62976 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90rus.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 46080 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90kor.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 46592 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90jpn.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 64512 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90ita.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 66048 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90fra.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 65024 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esp.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 65024 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esn.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 56832 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90enu.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 66560 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90deu.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 39936 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90cht.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 38912 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90chs.dll
+ 2008-07-29 04:07 . 2008-07-29 04:07 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90u.dll
+ 2008-07-29 04:07 . 2008-07-29 04:07 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90.dll
+ 2008-09-30 14:45 . 2008-09-30 14:45 91656 c:\windows\WinSxS\x86_Microsoft.MSXML2R_6bd6b9abf345378f_4.1.1.0_x-ww_2a41bceb\msxml4r.dll
+ 2005-11-11 11:47 . 2008-10-16 12:09 43544 c:\windows\system32\wups2.dll
+ 2009-04-07 11:21 . 2008-10-16 12:08 34328 c:\windows\system32\wups.dll
+ 2009-04-07 11:21 . 2008-10-16 12:09 51224 c:\windows\system32\wuauclt.exe
+ 2008-10-22 09:47 . 2008-10-22 09:47 62976 c:\windows\system32\tzchange.exe
+ 2009-04-07 12:31 . 2008-07-09 07:40 26488 c:\windows\system32\spupdsvc.exe
+ 2009-04-08 17:32 . 2007-07-27 07:41 16760 c:\windows\system32\spmsg.dll
+ 2009-05-05 02:34 . 2008-10-16 12:09 43544 c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.2.6001.788\wups2.dll
+ 2009-05-05 02:34 . 2008-10-16 12:08 34328 c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.2.6001.788\wups.dll
+ 2004-08-19 15:09 . 2009-02-03 20:10 55808 c:\windows\system32\secur32.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 55808 c:\windows\system32\secur32.dll
- 2006-04-12 18:13 . 2006-10-17 09:58 44544 c:\windows\system32\pngfilt.dll
+ 2006-04-12 18:13 . 2009-02-20 17:10 44544 c:\windows\system32\pngfilt.dll
- 2001-08-24 12:00 . 2009-04-12 04:52 58596 c:\windows\system32\perfc009.dat
+ 2001-08-24 12:00 . 2009-05-05 05:17 58596 c:\windows\system32\perfc009.dat
+ 2009-04-07 11:19 . 2008-06-12 14:18 91648 c:\windows\system32\mtxoci.dll
- 2006-05-09 16:31 . 2006-05-09 16:31 66560 c:\windows\system32\mtxclu.dll
+ 2006-05-09 16:31 . 2008-06-12 14:18 66560 c:\windows\system32\mtxclu.dll
+ 2006-11-07 19:03 . 2009-02-20 17:10 52224 c:\windows\system32\msfeedsbs.dll
+ 2009-04-07 11:19 . 2008-06-12 14:18 58880 c:\windows\system32\msdtclog.dll
- 2009-04-07 11:19 . 2004-08-19 15:09 58880 c:\windows\system32\msdtclog.dll
- 2006-03-09 08:24 . 2006-03-09 08:24 74240 c:\windows\system32\mscms.dll
+ 2006-03-09 08:24 . 2008-06-24 16:23 74240 c:\windows\system32\mscms.dll
- 2006-03-09 11:48 . 2006-03-09 11:48 96768 c:\windows\system32\logagent.exe
+ 2006-03-09 11:48 . 2008-06-10 03:52 96768 c:\windows\system32\logagent.exe
+ 2004-08-19 15:09 . 2009-02-20 17:10 27648 c:\windows\system32\jsproxy.dll
+ 2006-11-07 01:26 . 2009-02-20 10:20 13824 c:\windows\system32\ieudinit.exe
+ 2004-08-19 15:09 . 2009-02-20 17:10 44544 c:\windows\system32\iernonce.dll
+ 2004-08-19 15:09 . 2009-02-20 10:20 70656 c:\windows\system32\ie4uinit.exe
+ 2006-10-17 09:58 . 2009-02-20 17:10 63488 c:\windows\system32\icardie.dll
+ 2009-05-05 01:53 . 2009-02-13 10:49 28376 c:\windows\system32\drivers\ssmdrv.sys
+ 2009-05-05 01:53 . 2009-03-30 08:32 96104 c:\windows\system32\drivers\avipbb.sys
+ 2009-05-05 01:53 . 2009-02-13 10:28 22360 c:\windows\system32\drivers\avgntmgr.sys
+ 2009-05-05 01:53 . 2009-02-13 10:17 45416 c:\windows\system32\drivers\avgntdd.sys
+ 2009-04-07 11:21 . 2008-10-16 12:08 34328 c:\windows\system32\dllcache\wups.dll
+ 2009-04-07 11:21 . 2008-10-16 12:09 51224 c:\windows\system32\dllcache\wuauclt.exe
+ 2004-08-19 15:09 . 2009-02-03 20:10 55808 c:\windows\system32\dllcache\secur32.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 55808 c:\windows\system32\dllcache\secur32.dll
+ 2001-08-24 12:00 . 2009-02-06 16:54 35328 c:\windows\system32\dllcache\sc.exe
- 2006-10-17 09:58 . 2006-10-17 09:58 44544 c:\windows\system32\dllcache\pngfilt.dll
+ 2006-10-17 09:58 . 2009-02-20 17:10 44544 c:\windows\system32\dllcache\pngfilt.dll
+ 2008-06-12 14:18 . 2008-06-12 14:18 91648 c:\windows\system32\dllcache\mtxoci.dll
+ 2008-06-12 14:18 . 2008-06-12 14:18 66560 c:\windows\system32\dllcache\mtxclu.dll
+ 2009-02-20 17:10 . 2009-02-20 17:10 52224 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2009-04-07 11:19 . 2008-06-12 14:18 58880 c:\windows\system32\dllcache\msdtclog.dll
- 2009-04-07 11:19 . 2004-08-19 15:09 58880 c:\windows\system32\dllcache\msdtclog.dll
+ 2008-06-24 16:23 . 2008-06-24 16:23 74240 c:\windows\system32\dllcache\mscms.dll
+ 2006-03-09 11:48 . 2008-06-10 03:52 96768 c:\windows\system32\dllcache\logagent.exe
- 2006-03-09 11:48 . 2006-03-09 11:48 96768 c:\windows\system32\dllcache\logagent.exe
+ 2004-08-19 15:09 . 2009-02-20 17:10 27648 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-02-20 10:20 . 2009-02-20 10:20 13824 c:\windows\system32\dllcache\ieudinit.exe
+ 2004-08-19 15:09 . 2009-02-20 17:10 44544 c:\windows\system32\dllcache\iernonce.dll
- 2004-08-19 15:09 . 2006-10-17 10:06 78336 c:\windows\system32\dllcache\ieencode.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 78336 c:\windows\system32\dllcache\ieencode.dll
+ 2004-08-19 15:09 . 2009-02-20 10:20 70656 c:\windows\system32\dllcache\ie4uinit.exe
+ 2009-02-20 17:10 . 2009-02-20 17:10 63488 c:\windows\system32\dllcache\icardie.dll
+ 2005-11-11 11:48 . 2008-10-16 12:09 92696 c:\windows\system32\dllcache\cdm.dll
+ 2005-11-11 11:48 . 2008-10-16 12:09 92696 c:\windows\system32\cdm.dll
+ 2009-05-05 08:14 . 2009-05-05 08:14 32768 c:\windows\Installer\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}\icon.exe
+ 2009-05-05 05:04 . 2006-10-17 09:58 44544 c:\windows\ie7updates\KB963027-IE7\pngfilt.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 50688 c:\windows\ie7updates\KB963027-IE7\msfeedsbs.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 27136 c:\windows\ie7updates\KB963027-IE7\jsproxy.dll
+ 2009-05-05 05:04 . 2006-11-07 01:26 13312 c:\windows\ie7updates\KB963027-IE7\ieudinit.exe
+ 2009-05-05 05:04 . 2006-11-07 01:26 43008 c:\windows\ie7updates\KB963027-IE7\iernonce.dll
+ 2009-05-05 05:04 . 2006-10-17 10:06 78336 c:\windows\ie7updates\KB963027-IE7\ieencode.dll
+ 2009-05-05 05:04 . 2006-11-07 01:26 54784 c:\windows\ie7updates\KB963027-IE7\ie4uinit.exe
+ 2009-05-05 05:04 . 2006-10-17 09:58 61952 c:\windows\ie7updates\KB963027-IE7\icardie.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 655872 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcr90.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 572928 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcp90.dll
+ 2008-07-29 01:54 . 2008-07-29 01:54 225280 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcm90.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 161784 c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_d01483b2\atl90.dll
+ 2006-04-12 18:13 . 2008-02-17 02:33 370176 c:\windows\system32\xpsp3res.dll
+ 2009-04-07 11:21 . 2008-10-16 12:13 202776 c:\windows\system32\wuweb.dll
+ 2009-04-07 11:21 . 2008-10-16 12:12 323608 c:\windows\system32\wucltui.dll
+ 2009-04-07 11:21 . 2008-10-16 12:12 561688 c:\windows\system32\wuapi.dll
+ 2006-03-09 11:49 . 2007-10-20 04:01 227328 c:\windows\system32\wmasf.dll
+ 2005-11-11 11:50 . 2008-12-16 12:49 351232 c:\windows\system32\winhttp.dll
- 2005-11-11 11:50 . 2005-11-11 11:50 351232 c:\windows\system32\winhttp.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 233472 c:\windows\system32\webcheck.dll
+ 2009-04-07 11:19 . 2009-02-06 16:39 227840 c:\windows\system32\wbem\wmiprvse.exe
+ 2009-04-07 11:19 . 2009-02-09 10:20 453120 c:\windows\system32\wbem\wmiprvsd.dll
+ 2009-04-07 11:19 . 2009-02-09 10:20 473088 c:\windows\system32\wbem\fastprox.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 105984 c:\windows\system32\url.dll
- 2004-08-19 15:09 . 2006-10-17 10:05 105984 c:\windows\system32\url.dll
+ 2004-08-19 15:09 . 2008-10-03 10:17 247326 c:\windows\system32\strmdll.dll
+ 2004-08-19 15:09 . 2008-12-05 07:12 144896 c:\windows\system32\schannel.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 144896 c:\windows\system32\schannel.dll
+ 2001-08-24 12:00 . 2009-05-05 05:17 392296 c:\windows\system32\perfh009.dat
- 2001-08-24 12:00 . 2009-04-12 04:52 392296 c:\windows\system32\perfh009.dat
+ 2004-08-19 15:09 . 2009-02-20 17:10 102912 c:\windows\system32\occache.dll
+ 2006-03-09 08:25 . 2008-10-15 16:59 332800 c:\windows\system32\netapi32.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 247808 c:\windows\system32\mswsock.dll
+ 2004-08-19 15:09 . 2008-06-20 17:41 247808 c:\windows\system32\mswsock.dll
+ 2006-04-12 18:13 . 2009-02-20 17:10 671232 c:\windows\system32\mstime.dll
+ 2006-04-12 18:13 . 2009-02-20 17:10 193024 c:\windows\system32\msrating.dll
+ 2006-04-12 18:13 . 2009-02-20 17:10 477696 c:\windows\system32\mshtmled.dll
+ 2006-11-07 19:03 . 2009-02-20 17:10 459264 c:\windows\system32\msfeeds.dll
+ 2009-04-07 11:19 . 2008-06-12 14:18 161792 c:\windows\system32\msdtcuiu.dll
+ 2009-04-07 11:19 . 2008-06-12 14:18 956928 c:\windows\system32\msdtctm.dll
+ 2009-04-07 11:19 . 2008-06-12 14:18 428032 c:\windows\system32\msdtcprx.dll
+ 2009-04-07 11:21 . 2008-04-11 18:51 683520 c:\windows\system32\inetcomm.dll
+ 2006-10-17 09:57 . 2009-02-20 17:10 268288 c:\windows\system32\iertutil.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 385024 c:\windows\system32\iedkcs32.dll
+ 2006-10-17 09:27 . 2009-02-20 17:10 383488 c:\windows\system32\ieapfltr.dll
+ 2001-08-24 12:00 . 2009-02-20 05:14 161792 c:\windows\system32\ieakui.dll
- 2001-08-24 12:00 . 2006-11-07 01:25 161792 c:\windows\system32\ieakui.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 230400 c:\windows\system32\ieaksie.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 153088 c:\windows\system32\ieakeng.dll
+ 2006-03-09 08:24 . 2008-10-23 13:00 283648 c:\windows\system32\gdi32.dll
+ 2009-04-07 13:12 . 2009-05-05 05:12 303624 c:\windows\system32\FNTCACHE.DAT
- 2009-04-07 13:12 . 2009-04-27 14:37 303624 c:\windows\system32\FNTCACHE.DAT
+ 2006-04-12 18:13 . 2009-02-20 17:10 133120 c:\windows\system32\extmgr.dll
+ 2006-03-09 08:24 . 2008-07-07 20:31 253952 c:\windows\system32\es.dll
- 2006-04-12 18:13 . 2006-10-17 09:57 214528 c:\windows\system32\dxtrans.dll
+ 2006-04-12 18:13 . 2009-02-20 17:10 214528 c:\windows\system32\dxtrans.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 347136 c:\windows\system32\dxtmsft.dll
+ 2004-08-03 22:07 . 2008-06-20 09:52 225920 c:\windows\system32\drivers\tcpip6.sys
+ 2006-02-14 19:56 . 2008-06-20 10:45 360320 c:\windows\system32\drivers\tcpip.sys
+ 2006-03-09 08:25 . 2008-12-11 11:57 333184 c:\windows\system32\drivers\srv.sys
+ 2001-08-24 12:00 . 2008-05-08 12:28 202752 c:\windows\system32\drivers\rmcast.sys
+ 2006-03-09 08:24 . 2008-10-24 11:10 453632 c:\windows\system32\drivers\mrxsmb.sys
+ 2004-08-03 22:14 . 2008-08-14 09:51 138368 c:\windows\system32\drivers\afd.sys
+ 2004-08-19 15:09 . 2008-06-20 17:41 148992 c:\windows\system32\dnsapi.dll
+ 2009-04-07 11:21 . 2008-10-16 12:13 202776 c:\windows\system32\dllcache\wuweb.dll
+ 2009-04-07 11:21 . 2008-10-16 12:12 323608 c:\windows\system32\dllcache\wucltui.dll
+ 2009-04-07 11:21 . 2008-10-16 12:12 561688 c:\windows\system32\dllcache\wuapi.dll
+ 2009-04-07 11:19 . 2008-04-21 21:27 219136 c:\windows\system32\dllcache\wordpad.exe
+ 2009-04-07 11:19 . 2009-02-06 16:39 227840 c:\windows\system32\dllcache\wmiprvse.exe
+ 2009-04-07 11:19 . 2009-02-09 10:20 453120 c:\windows\system32\dllcache\wmiprvsd.dll
+ 2006-03-09 11:49 . 2007-10-20 04:01 227328 c:\windows\system32\dllcache\wmasf.dll
+ 2006-11-07 19:03 . 2009-03-03 00:13 826368 c:\windows\system32\dllcache\wininet.dll
+ 2005-11-11 11:50 . 2008-12-16 12:49 351232 c:\windows\system32\dllcache\winhttp.dll
- 2005-11-11 11:50 . 2005-11-11 11:50 351232 c:\windows\system32\dllcache\winhttp.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 233472 c:\windows\system32\dllcache\webcheck.dll
+ 2009-04-07 11:21 . 2008-05-27 17:25 765952 c:\windows\system32\dllcache\vgx.dll
- 2009-04-07 11:21 . 2006-11-07 19:03 765952 c:\windows\system32\dllcache\VGX.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 105984 c:\windows\system32\dllcache\url.dll
- 2004-08-19 15:09 . 2006-10-17 10:05 105984 c:\windows\system32\dllcache\url.dll
+ 2004-08-03 22:07 . 2008-06-20 09:52 225920 c:\windows\system32\dllcache\tcpip6.sys
+ 2008-06-20 10:45 . 2008-06-20 10:45 360320 c:\windows\system32\dllcache\tcpip.sys
+ 2004-08-19 15:09 . 2008-10-03 10:17 247326 c:\windows\system32\dllcache\strmdll.dll
+ 2004-08-19 15:10 . 2009-02-09 10:08 111104 c:\windows\system32\dllcache\services.exe
- 2004-08-19 15:09 . 2004-08-19 15:09 144896 c:\windows\system32\dllcache\schannel.dll
+ 2004-08-19 15:09 . 2008-12-05 07:12 144896 c:\windows\system32\dllcache\schannel.dll
+ 2001-08-24 12:00 . 2008-05-08 12:28 202752 c:\windows\system32\dllcache\rmcast.sys
- 2004-08-19 15:09 . 2004-08-19 15:09 286208 c:\windows\system32\dllcache\pdh.dll
+ 2004-08-19 15:09 . 2009-03-06 14:46 286208 c:\windows\system32\dllcache\pdh.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 102912 c:\windows\system32\dllcache\occache.dll
+ 2004-08-19 15:09 . 2009-02-09 10:20 739840 c:\windows\system32\dllcache\ntdll.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 247808 c:\windows\system32\dllcache\mswsock.dll
+ 2004-08-19 15:09 . 2008-06-20 17:41 247808 c:\windows\system32\dllcache\mswsock.dll
+ 2006-11-07 19:03 . 2009-02-20 17:10 671232 c:\windows\system32\dllcache\mstime.dll
+ 2006-10-17 10:05 . 2009-02-20 17:10 193024 c:\windows\system32\dllcache\msrating.dll
+ 2006-11-07 19:03 . 2009-02-20 17:10 477696 c:\windows\system32\dllcache\mshtmled.dll
+ 2009-02-20 17:10 . 2009-02-20 17:10 459264 c:\windows\system32\dllcache\msfeeds.dll
+ 2008-06-12 14:18 . 2008-06-12 14:18 161792 c:\windows\system32\dllcache\msdtcuiu.dll
+ 2008-06-12 14:18 . 2008-06-12 14:18 956928 c:\windows\system32\dllcache\msdtctm.dll
+ 2008-06-12 14:18 . 2008-06-12 14:18 428032 c:\windows\system32\dllcache\msdtcprx.dll
- 2009-04-07 11:21 . 2004-08-19 15:09 331776 c:\windows\system32\dllcache\msadce.dll
+ 2009-04-07 11:21 . 2008-05-01 14:31 331776 c:\windows\system32\dllcache\msadce.dll
+ 2009-04-07 11:21 . 2009-02-28 04:54 636072 c:\windows\system32\dllcache\iexplore.exe
+ 2009-02-20 17:10 . 2009-02-20 17:10 268288 c:\windows\system32\dllcache\iertutil.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 385024 c:\windows\system32\dllcache\iedkcs32.dll
+ 2009-02-20 17:10 . 2009-02-20 17:10 383488 c:\windows\system32\dllcache\ieapfltr.dll
- 2001-08-24 12:00 . 2006-11-07 01:25 161792 c:\windows\system32\dllcache\ieakui.dll
+ 2001-08-24 12:00 . 2009-02-20 05:14 161792 c:\windows\system32\dllcache\ieakui.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 230400 c:\windows\system32\dllcache\ieaksie.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 153088 c:\windows\system32\dllcache\ieakeng.dll
+ 2008-10-23 13:00 . 2008-10-23 13:00 283648 c:\windows\system32\dllcache\gdi32.dll
+ 2009-04-07 11:19 . 2009-02-09 10:20 473088 c:\windows\system32\dllcache\fastprox.dll
+ 2006-11-07 19:03 . 2009-02-20 17:10 133120 c:\windows\system32\dllcache\extmgr.dll
+ 2008-07-07 20:31 . 2008-07-07 20:31 253952 c:\windows\system32\dllcache\es.dll
+ 2006-10-17 09:57 . 2009-02-20 17:10 214528 c:\windows\system32\dllcache\dxtrans.dll
- 2006-10-17 09:57 . 2006-10-17 09:57 214528 c:\windows\system32\dllcache\dxtrans.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 347136 c:\windows\system32\dllcache\dxtmsft.dll
+ 2004-08-19 15:09 . 2008-06-20 17:41 148992 c:\windows\system32\dllcache\dnsapi.dll
+ 2009-04-11 22:05 . 2008-06-14 17:59 272768 c:\windows\system32\dllcache\bthport.sys
+ 2004-08-03 22:14 . 2008-08-14 09:51 138368 c:\windows\system32\dllcache\afd.sys
+ 2004-08-19 15:09 . 2009-02-20 17:10 124928 c:\windows\system32\dllcache\advpack.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 685056 c:\windows\system32\dllcache\advapi32.dll
+ 2004-08-19 15:09 . 2009-02-09 10:20 685056 c:\windows\system32\dllcache\advapi32.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 100352 c:\windows\system32\dllcache\6to4svc.dll
+ 2004-08-19 15:09 . 2006-08-16 11:59 100352 c:\windows\system32\dllcache\6to4svc.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 124928 c:\windows\system32\advpack.dll
+ 2004-08-19 15:09 . 2006-08-16 11:59 100352 c:\windows\system32\6to4svc.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 100352 c:\windows\system32\6to4svc.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 818688 c:\windows\ie7updates\KB963027-IE7\wininet.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 231424 c:\windows\ie7updates\KB963027-IE7\webcheck.dll
+ 2009-05-05 05:04 . 2006-10-17 10:05 105984 c:\windows\ie7updates\KB963027-IE7\url.dll
+ 2009-05-05 05:04 . 2008-07-09 07:40 406392 c:\windows\ie7updates\KB963027-IE7\spuninst\updspapi.dll
+ 2009-05-05 05:04 . 2008-07-08 13:03 234872 c:\windows\ie7updates\KB963027-IE7\spuninst\spuninst.exe
+ 2009-05-05 05:04 . 2006-10-17 10:04 101376 c:\windows\ie7updates\KB963027-IE7\occache.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 670720 c:\windows\ie7updates\KB963027-IE7\mstime.dll
+ 2009-05-05 05:04 . 2006-10-17 10:05 192000 c:\windows\ie7updates\KB963027-IE7\msrating.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 475648 c:\windows\ie7updates\KB963027-IE7\mshtmled.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 458752 c:\windows\ie7updates\KB963027-IE7\msfeeds.dll
+ 2009-05-05 05:04 . 2006-10-17 10:04 622080 c:\windows\ie7updates\KB963027-IE7\iexplore.exe
+ 2009-05-05 05:04 . 2006-10-17 09:57 266752 c:\windows\ie7updates\KB963027-IE7\iertutil.dll
+ 2009-05-05 05:04 . 2006-11-07 01:27 382976 c:\windows\ie7updates\KB963027-IE7\iedkcs32.dll
+ 2009-05-05 05:04 . 2006-10-17 09:27 380928 c:\windows\ie7updates\KB963027-IE7\ieapfltr.dll
+ 2009-05-05 05:04 . 2006-11-07 01:25 161792 c:\windows\ie7updates\KB963027-IE7\ieakui.dll
+ 2009-05-05 05:04 . 2006-11-07 01:27 229376 c:\windows\ie7updates\KB963027-IE7\ieaksie.dll
+ 2009-05-05 05:04 . 2006-11-07 01:26 152064 c:\windows\ie7updates\KB963027-IE7\ieakeng.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 131584 c:\windows\ie7updates\KB963027-IE7\extmgr.dll
+ 2009-05-05 05:04 . 2006-10-17 09:57 214528 c:\windows\ie7updates\KB963027-IE7\dxtrans.dll
+ 2009-05-05 05:04 . 2006-10-17 09:58 346624 c:\windows\ie7updates\KB963027-IE7\dxtmsft.dll
+ 2009-05-05 05:04 . 2006-11-07 01:26 123904 c:\windows\ie7updates\KB963027-IE7\advpack.dll
+ 2009-05-05 05:05 . 2006-11-07 19:03 765952 c:\windows\ie7updates\KB938127-v2-IE7\vgx.dll
+ 2009-05-05 05:05 . 2007-03-06 01:35 394976 c:\windows\ie7updates\KB938127-v2-IE7\spuninst\updspapi.dll
+ 2009-05-05 05:05 . 2007-03-06 01:34 216800 c:\windows\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe
+ 2009-05-05 03:34 . 2008-10-24 11:10 453632 c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2009-05-05 03:25 . 2008-06-14 17:59 272768 c:\windows\Driver Cache\i386\bthport.sys
+ 2009-05-05 04:03 . 2008-04-15 17:56 1724416 c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.3352_x-ww_81af8e88\GdiPlus.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 3783672 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90u.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 3768312 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90.dll
+ 2008-09-30 14:42 . 2008-09-30 14:42 1286152 c:\windows\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9870.0_x-ww_a32d74cf\msxml4.dll
+ 2009-04-07 11:21 . 2008-10-16 12:13 1809944 c:\windows\system32\wuaueng.dll
+ 2006-03-09 12:01 . 2008-06-10 05:07 2376760 c:\windows\system32\WMVCore.dll
+ 2006-04-12 09:09 . 2007-04-30 06:20 5537792 c:\windows\system32\wmp.dll
+ 2006-03-09 11:49 . 2008-06-10 04:28 1028096 c:\windows\system32\WMNetmgr.dll
+ 2006-04-12 18:13 . 2009-02-20 17:10 1160192 c:\windows\system32\urlmon.dll
+ 2006-04-26 10:15 . 2008-07-03 13:15 8510976 c:\windows\system32\shell32.dll
+ 2006-03-09 08:25 . 2008-12-20 22:43 1293824 c:\windows\system32\quartz.dll
+ 2008-08-29 18:06 . 2008-08-29 18:06 1350664 c:\windows\system32\msxml6.dll
+ 2008-09-30 14:43 . 2008-09-30 14:43 1286152 c:\windows\system32\msxml4.dll
+ 2004-08-19 15:09 . 2008-09-04 16:45 1106944 c:\windows\system32\msxml3.dll
+ 2006-04-21 16:40 . 2009-02-20 17:10 3595264 c:\windows\system32\mshtml.dll
+ 2004-08-19 15:09 . 2009-03-21 14:20 1051136 c:\windows\system32\kernel32.dll
+ 2006-11-07 19:03 . 2009-02-20 17:10 6066176 c:\windows\system32\ieframe.dll
+ 2006-09-05 21:01 . 2008-07-09 14:25 2455488 c:\windows\system32\ieapfltr.dat
+ 2009-04-07 11:21 . 2008-10-16 12:13 1809944 c:\windows\system32\dllcache\wuaueng.dll
+ 2006-03-09 11:49 . 2008-06-10 04:28 1028096 c:\windows\system32\dllcache\WMNetmgr.dll
+ 2009-02-09 14:17 . 2009-02-09 14:17 1846400 c:\windows\system32\dllcache\win32k.sys
+ 2006-11-07 19:03 . 2009-02-20 17:10 1160192 c:\windows\system32\dllcache\urlmon.dll
+ 2008-07-03 13:15 . 2008-07-03 13:15 8510976 c:\windows\system32\dllcache\shell32.dll
+ 2008-12-20 22:43 . 2008-12-20 22:43 1293824 c:\windows\system32\dllcache\quartz.dll
+ 2004-08-19 15:09 . 2008-09-04 16:45 1106944 c:\windows\system32\dllcache\msxml3.dll
+ 2006-11-07 19:03 . 2009-02-20 17:10 3595264 c:\windows\system32\dllcache\mshtml.dll
+ 2004-08-19 15:09 . 2009-03-21 14:20 1051136 c:\windows\system32\dllcache\kernel32.dll
+ 2009-02-20 17:10 . 2009-02-20 17:10 6066176 c:\windows\system32\dllcache\ieframe.dll
+ 2008-07-09 14:25 . 2008-07-09 14:25 2455488 c:\windows\system32\dllcache\ieapfltr.dat
+ 2009-05-05 05:04 . 2006-11-07 19:03 1162240 c:\windows\ie7updates\KB963027-IE7\urlmon.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 3577856 c:\windows\ie7updates\KB963027-IE7\mshtml.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 6049280 c:\windows\ie7updates\KB963027-IE7\ieframe.dll
+ 2009-05-05 05:04 . 2006-09-05 21:01 2451824 c:\windows\ie7updates\KB963027-IE7\ieapfltr.dat
+ 2009-05-05 04:47 . 2009-02-09 11:50 2182528 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2009-05-05 04:47 . 2009-02-09 11:50 2017792 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2009-05-05 04:47 . 2009-02-09 11:50 2059776 c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2009-05-05 04:47 . 2009-02-09 11:50 2138112 c:\windows\Driver Cache\i386\ntkrnlmp.exe
.
-- Instantané actualisé --
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ares"="c:\program files\Ares\Ares.exe" [2008-12-13 882176]
"Advanced SystemCare 3"="c:\program files\IObit\Advanced SystemCare 3\AWC.exe" [2009-04-07 2328200]
"SpeedBitVideoAccelerator"="c:\program files\SpeedBit Video Accelerator\VideoAccelerator.exe" [2009-04-12 2823784]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-03-20 1312256]
"msnmsgr"="c:\program files\MSN Messenger\msnmsgr.exe" [2007-01-19 5674352]
"DownloadAccelerator"="c:\program files\DAP\DAP.EXE" [2009-04-08 2811392]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-19 15360]
"Google Update"="c:\documents and settings\bisbytat\Local Settin
0
Réponse 95 / 105
Utilisateur anonyme
6 mai 2009 à 12:19
slt apothic

ton rapport n'est pas complet :)

il doit etre trop long pour le message , peux tu aller le chercher ici
C:\ ComboFix.txt
puis l'heberger au choix sur cjoint clique sur parcourir, choisis le fichier, upload, puis postes l'adresse du lien stp :)

a+
0
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
6 mai 2009 à 15:36
salut Neo,qqn m'a demandé la même chose que toi avant hier et m'a fait parvenir un outil et auquel j'ai transmis le rapport suivant (je pensais que c'etait toi pcq je n'ai pas vu son username) ,je t'envoie le rapport que voici :
ComboFix 09-05-03.6 - bisbytat 05/05/2009 23:37.2 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.33.1036.18.1790.1322 [GMT 2:00]
Lancé depuis: c:\documents and settings\bisbytat\Bureau\rambo.exe
Commutateurs utilisés :: c:\documents and settings\bisbytat\Bureau\CFScript.txt
AV: AntiVir Desktop *On-access scanning disabled* (Updated)

AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!

FILE ::
c:\windows\system32\rwydhygg.dll
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\rwydhygg.dll

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-04-05 au 2009-05-05 ))))))))))))))))))))))))))))))))))))
.

2009-05-05 08:14 . 2009-03-10 20:18 454024 ----a-w c:\windows\system32\KB905474\wgasetup.exe
2009-05-05 08:14 . 2009-03-10 20:26 1438080 ----a-w c:\windows\system32\KB905474\wganotifypackageinner.exe
2009-05-05 08:14 . 2009-05-05 08:14 -------- d-----w c:\windows\system32\KB905474
2009-05-05 08:14 . 2009-05-05 08:14 -------- d-----w c:\program files\MSXML 4.0
2009-05-05 04:47 . 2009-02-09 11:50 2059776 -c----w c:\windows\system32\dllcache\ntkrnlpa.exe
2009-05-05 04:47 . 2009-02-09 11:50 2017792 -c----w c:\windows\system32\dllcache\ntkrpamp.exe
2009-05-05 04:47 . 2005-07-26 04:39 60416 -c----w c:\windows\system32\dllcache\colbact.dll
2009-05-05 04:47 . 2009-02-09 11:50 2182528 -c----w c:\windows\system32\dllcache\ntoskrnl.exe
2009-05-05 04:47 . 2009-02-09 10:20 399360 -c----w c:\windows\system32\dllcache\rpcss.dll
2009-05-05 04:47 . 2009-02-09 10:20 730112 -c----w c:\windows\system32\dllcache\lsasrv.dll
2009-05-05 04:47 . 2009-02-09 11:50 2138112 -c----w c:\windows\system32\dllcache\ntkrnlmp.exe
2009-05-05 03:34 . 2008-10-24 11:10 453632 -c----w c:\windows\system32\dllcache\mrxsmb.sys
2009-05-05 03:33 . 2008-06-10 05:07 2376760 -c----w c:\windows\system32\dllcache\WMVCore.dll
2009-05-05 03:25 . 2008-06-14 17:59 272768 ------w c:\windows\system32\drivers\bthport.sys
2009-05-05 03:07 . 2008-12-11 11:57 333184 -c----w c:\windows\system32\dllcache\srv.sys
2009-05-05 03:03 . 2008-04-11 18:51 683520 -c----w c:\windows\system32\dllcache\inetcomm.dll
2009-05-05 02:57 . 2008-10-15 16:59 332800 -c----w c:\windows\system32\dllcache\netapi32.dll
2009-05-05 01:53 . 2009-03-24 14:07 55640 ----a-w c:\windows\system32\drivers\avgntflt.sys
2009-05-05 01:53 . 2009-05-05 01:53 -------- d-----w c:\program files\Avira
2009-05-03 22:02 . 2009-05-03 22:09 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\Google
2009-04-29 13:46 . 2009-04-29 13:48 -------- d-----w C:\rsit
2009-04-29 09:54 . 2009-04-29 09:57 -------- d-----w C:\Rooter$
2009-04-28 23:32 . 2009-04-28 23:33 -------- d-----w c:\program files\Fichiers communs\Adobe
2009-04-28 22:36 . 2009-04-28 22:39 -------- d-----w c:\program files\SpywareBlaster
2009-04-27 14:35 . 2009-05-05 05:04 -------- d-----w c:\windows\system32\fr-fr
2009-04-27 14:32 . 2009-05-05 05:06 -------- d--h--w c:\windows\$hf_mig$
2009-04-27 14:09 . 2009-04-27 14:09 -------- d-----w c:\documents and settings\bisbytat\Application Data\PDM
2009-04-27 14:08 . 2009-04-27 14:08 -------- d-----w c:\program files\Palm Digital Media
2009-04-26 22:34 . 2009-01-04 10:35 31232 ----a-w c:\windows\system\vdremote.dll
2009-04-26 22:34 . 2009-01-04 10:35 25088 ----a-w c:\windows\system\vdsvrlnk.dll
2009-04-26 21:52 . 2009-04-27 04:57 -------- d-----w c:\documents and settings\bisbytat\Application Data\vlc
2009-04-26 21:52 . 2009-04-27 04:58 -------- d-----w c:\program files\adslTV
2009-04-25 11:02 . 2009-04-25 11:02 -------- d-----w c:\documents and settings\bisbytat\Application Data\Malwarebytes
2009-04-25 11:02 . 2009-04-06 13:32 15504 ----a-w c:\windows\system32\drivers\mbam.sys
2009-04-25 11:02 . 2009-04-06 13:32 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
2009-04-25 11:02 . 2009-04-25 11:02 -------- d-----w c:\documents and settings\All Users\Application Data\Malwarebytes
2009-04-25 09:31 . 2009-04-29 13:48 -------- d-----w c:\program files\Trend Micro
2009-04-24 08:15 . 2009-04-24 08:15 -------- d-----w c:\program files\Fichiers communs\PCSuite
2009-04-24 08:14 . 2008-08-26 08:26 18816 ----a-w c:\windows\system32\drivers\pccsmcfd.sys
2009-04-24 08:14 . 2009-04-24 08:14 -------- d-----w c:\program files\PC Connectivity Solution
2009-04-24 08:13 . 2009-02-09 05:37 7808 ----a-w c:\windows\system32\drivers\usbser_lowerfltj.sys
2009-04-24 08:13 . 2009-02-09 05:37 7808 ----a-w c:\windows\system32\drivers\usbser_lowerflt.sys
2009-04-24 08:13 . 2009-02-09 05:37 22016 ----a-w c:\windows\system32\drivers\ccdcmbo.sys
2009-04-24 08:13 . 2009-02-09 05:37 17664 ----a-w c:\windows\system32\drivers\ccdcmb.sys
2009-04-24 08:13 . 2009-02-09 05:37 659968 ----a-w c:\windows\system32\nmwcdcocls.dll
2009-04-24 08:13 . 2009-02-09 05:32 1112288 ----a-w c:\windows\system32\wdfcoinstaller01007.dll
2009-04-24 04:39 . 2009-04-24 04:39 -------- d-----w c:\documents and settings\bisbytat\Application Data\Media Player Classic
2009-04-24 04:23 . 2009-01-22 13:28 290816 ----a-w c:\windows\system32\decdll.dll
2009-04-20 15:48 . 2009-04-25 11:37 -------- d-----w c:\program files\StuffPlug3
2009-04-17 10:28 . 2009-04-17 10:28 -------- d-----w c:\program files\AnmSMP
2009-04-15 10:46 . 2009-04-15 10:46 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\Help
2009-04-15 07:47 . 2009-04-15 07:47 -------- d-----w c:\program files\Free RM to MP3 Converter
2009-04-15 07:25 . 2009-04-15 07:25 -------- d-----w c:\program files\LitexMedia
2009-04-14 18:42 . 1999-09-10 11:06 4672 ----a-w c:\windows\system\wowpost.exe
2009-04-14 18:42 . 1999-09-10 11:06 5600 ----a-w c:\windows\system\winaspi.dll
2009-04-14 18:42 . 1999-09-10 11:06 25244 ----a-w c:\windows\system32\drivers\aspi32.sys
2009-04-14 18:42 . 1999-09-10 11:06 45056 ----a-w c:\windows\system32\wnaspi32.dll
2009-04-14 18:42 . 2009-04-14 18:42 203776 ----a-w c:\windows\system32\clrviddc.dll
2009-04-14 06:20 . 2009-04-14 06:20 -------- d-----w C:\Part4
2009-04-14 06:20 . 2009-04-14 06:20 -------- d-----w C:\Part3
2009-04-14 06:20 . 2009-04-14 06:20 -------- d-----w C:\Part2
2009-04-14 06:20 . 2005-01-15 19:41 -------- d-----w C:\Part1
2009-04-12 22:31 . 2009-04-12 22:31 -------- d-----w c:\program files\Fichiers communs\xing shared
2009-04-12 15:41 . 2009-04-12 15:41 -------- d-----w c:\documents and settings\bisbytat\Application Data\Mobipocket
2009-04-12 13:26 . 1998-06-17 22:00 89360 ----a-w c:\windows\system32\VB5DB.DLL
2009-04-12 13:19 . 2009-04-12 13:19 -------- d-----w c:\documents and settings\All Users\Application Data\Office Genuine Advantage
2009-04-12 04:51 . 2004-08-03 17:08 25600 -c--a-w c:\windows\system32\dllcache\usbser.sys
2009-04-12 04:51 . 2004-08-03 17:08 25600 ----a-w c:\windows\system32\drivers\usbser.sys
2009-04-12 04:50 . 2008-03-21 11:57 14640 ------w c:\windows\system32\spmsgXP_2k3.dll
2009-04-12 04:42 . 2009-04-12 04:42 -------- d-----w c:\documents and settings\All Users\Application Data\Nokia
2009-04-12 03:37 . 2009-04-12 03:37 -------- d-----w c:\program files\MSXML 6.0
2009-04-12 03:36 . 2009-04-24 08:11 -------- d-----w c:\documents and settings\All Users\Application Data\Installations
2009-04-12 03:28 . 2008-03-16 12:30 216064 --sh--r c:\windows\system32\nbDX.dll
2009-04-12 03:28 . 2007-02-21 10:47 31232 --sh--r c:\windows\system32\msfDX.dll
2009-04-12 03:28 . 2006-05-03 09:06 163328 --sh--r c:\windows\system32\flvDX.dll
2009-04-12 03:27 . 2009-04-12 03:30 -------- d-----w c:\program files\SUPER
2009-04-12 03:14 . 2009-04-12 03:14 -------- d-----w c:\documents and settings\All Users\Application Data\DVD Shrink
2009-04-12 02:15 . 2009-04-12 02:15 -------- d-----w c:\documents and settings\bisbytat\Application Data\IObit
2009-04-12 02:15 . 2009-04-12 02:15 -------- d-----w c:\program files\IObit
2009-04-12 02:06 . 2009-04-12 19:56 -------- d-----w c:\program files\SpeedBit Video Accelerator
2009-04-11 22:35 . 2009-04-22 20:46 -------- d-----w c:\documents and settings\bisbytat\Local Settings\Application Data\WMTools Downloaded Files
2009-04-11 22:12 . 2004-08-19 10:09 116736 -c--a-w c:\windows\system32\dllcache\xrxwiadr.dll
2009-04-11 22:12 . 2001-08-23 14:47 23040 -c--a-w c:\windows\system32\dllcache\xrxwbtmp.dll
2009-04-11 22:12 . 2001-08-23 14:47 17408 -c--a-w c:\windows\system32\dllcache\xrxscnui.dll
2009-04-11 22:12 . 2001-08-23 14:47 27648 -c--a-w c:\windows\system32\dllcache\xrxftplt.exe
2009-04-11 22:12 . 2001-08-23 14:47 4608 -c--a-w c:\windows\system32\dllcache\xrxflnch.exe
2009-04-11 22:12 . 2001-08-23 14:47 99865 -c--a-w c:\windows\system32\dllcache\xlog.exe
2009-04-11 22:12 . 2001-08-17 17:11 16970 -c--a-w c:\windows\system32\dllcache\xem336n5.sys
2009-04-11 22:12 . 2004-08-03 16:29 19455 -c--a-w c:\windows\system32\dllcache\wvchntxx.sys
2009-04-11 22:12 . 2004-08-03 17:10 19328 -c--a-w c:\windows\system32\dllcache\wstcodec.sys
2009-04-11 22:12 . 2004-08-03 16:29 12063 -c--a-w c:\windows\system32\dllcache\wsiintxx.sys
2009-04-11 22:12 . 2004-08-19 10:09 8192 -c--a-w c:\windows\system32\dllcache\wshirda.dll
2009-04-11 22:12 . 2004-08-03 17:07 8832 -c--a-w c:\windows\system32\dllcache\wmiacpi.sys
2009-04-11 22:10 . 2001-08-17 18:53 7040 -c--a-w c:\windows\system32\dllcache\snyaitmc.sys
2009-04-11 22:09 . 2004-08-03 16:31 29502 -c--a-w c:\windows\system32\dllcache\pca200e.sys
2009-04-11 22:08 . 2004-08-03 17:10 15360 -c--a-w c:\windows\system32\dllcache\mpe.sys
2009-04-11 22:07 . 2004-08-03 16:41 1041536 -c--a-w c:\windows\system32\dllcache\hsfdpsp2.sys
2009-04-11 22:06 . 2001-08-17 17:20 334208 -c--a-w c:\windows\system32\dllcache\ds1wdm.sys
2009-04-11 22:05 . 2001-08-23 14:02 14080 -c--a-w c:\windows\system32\dllcache\bulltlp3.sys
2009-04-11 22:04 . 2004-08-03 17:00 12288 -c--a-w c:\windows\system32\dllcache\4mmdat.sys
2009-04-11 22:04 . 2001-08-17 17:48 148352 -c--a-w c:\windows\system32\dllcache\3dfxvsm.sys
2009-04-11 22:04 . 2001-08-23 14:46 689216 -c--a-w c:\windows\system32\dllcache\3dfxvs.dll
2009-04-11 22:04 . 2001-08-17 18:28 762780 -c--a-w c:\windows\system32\dllcache\3cwmcru.sys
2009-04-11 22:04 . 2001-08-17 19:06 11264 -c--a-w c:\windows\system32\dllcache\1394vdbg.sys
2009-04-11 22:04 . 2004-08-03 17:10 53248 -c--a-w c:\windows\system32\dllcache\1394bus.sys
2009-04-11 22:04 . 2001-08-23 14:46 66048 -c--a-w c:\windows\system32\dllcache\s3legacy.dll
2009-04-11 15:35 . 2009-04-11 15:35 -------- d-----w c:\documents and settings\NetworkService\Local Settings\Application Data\Apple
2009-04-10 15:18 . 2009-04-10 15:18 -------- d-----w c:\documents and settings\bisbytat\Application Data\Apple Computer
2009-04-10 14:57 . 2009-04-10 14:57 -------- d-----w c:\documents and settings\bisbytat\Application Data\NeroDigital(TM)
2009-04-10 14:49 . 2009-04-10 14:51 -------- d-----w c:\documents and settings\bisbytat\Application Data\Nero
2009-04-10 14:19 . 2009-04-10 15:35 -------- d-----w c:\program files\Nero
2009-04-10 14:19 . 2009-04-10 15:45 -------- d-----w c:\documents and settings\All Users\Application Data\Nero
2009-04-10 14:19 . 2009-04-10 15:45 -------- d-----w c:\program files\Fichiers communs\Nero
2009-04-10 10:30 . 2009-04-10 10:31 -------- d-----w c:\program files\QuickTime
2009-04-10 10:16 . 2009-04-15 20:57 -------- d-sh--w c:\documents and settings\bisbytat\Phone Browser
2009-04-10 09:59 . 2009-04-10 09:59 -------- d-----w c:\documents and settings\All Users\Application Data\PC Suite
2009-04-10 09:59 . 2009-05-04 11:23 -------- d-----w c:\documents and settings\bisbytat\Application Data\Nokia
2009-04-10 09:59 . 2009-04-24 08:15 -------- d-----w c:\program files\Fichiers communs\Nokia
2009-04-10 09:59 . 2009-04-10 09:59 -------- d-----w c:\program files\DIFX
2009-04-10 09:59 . 2009-04-15 20:31 -------- d-----w c:\documents and settings\bisbytat\Application Data\PC Suite
2009-04-10 09:57 . 2009-02-09 05:37 91136 ----a-w c:\windows\system32\nmwcdcls.dll
2009-04-10 09:57 . 2009-04-24 08:15 -------- d-----w c:\program files\Nokia
2009-04-09 20:07 . 2009-04-09 20:07 -------- d-sh--w c:\documents and settings\bisbytat\UserData
2009-04-09 01:33 . 2009-04-09 01:35 -------- d-----w c:\windows\Ulead.dat
2009-04-09 01:20 . 2009-04-09 01:20 -------- d-----w c:\documents and settings\bisbytat\Application Data\Canneverbe_Limited

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-05-05 05:17 . 2001-08-24 12:00 71248 ----a-w c:\windows\system32\perfc00C.dat
2009-05-05 05:17 . 2001-08-24 12:00 458230 ----a-w c:\windows\system32\perfh00C.dat
2009-05-01 07:34 . 2009-05-01 07:34 -------- d-----w c:\program files\Foxit Software
2009-04-29 19:07 . 2009-04-07 12:06 79880 ----a-w c:\documents and settings\bisbytat\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-04-12 13:29 . 2009-04-07 11:54 -------- d--h--w c:\program files\InstallShield Installation Information
2009-04-12 04:50 . 2009-04-12 04:50 0 ---ha-w c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
2009-04-12 04:50 . 2009-04-12 04:50 0 ---ha-w c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2009-04-07 12:30 . 2009-04-07 12:30 315392 ----a-w c:\windows\HideWin.exe
2009-04-07 12:27 . 2009-04-07 12:27 -------- d-----w c:\program files\Realtek AC97
2009-04-07 12:27 . 2009-04-07 11:55 -------- d-----w c:\program files\Fichiers communs\InstallShield
2009-04-07 12:02 . 2009-04-07 11:56 -------- d-----w c:\program files\ATI Technologies
2009-04-07 11:25 . 2009-04-07 11:25 -------- d-----w c:\program files\microsoft frontpage
2009-04-07 11:24 . 2001-08-24 12:00 67 --sha-w c:\windows\Fonts\desktop.ini
2009-04-07 11:23 . 2009-04-07 11:23 86331 ----a-w c:\windows\pchealth\helpctr\OfflineCache\index.dat
2009-04-07 11:22 . 2009-04-07 11:22 -------- d-----w c:\program files\Services en ligne
2009-04-07 11:20 . 2009-04-07 11:20 21892 ----a-w c:\windows\system32\emptyregdb.dat
2009-03-06 14:46 . 2004-08-19 15:09 286208 ----a-w c:\windows\system32\pdh.dll
2009-03-03 00:13 . 2006-04-12 18:13 826368 ----a-w c:\windows\system32\wininet.dll
2009-02-20 17:10 . 2004-08-19 15:09 78336 ----a-w c:\windows\system32\ieencode.dll
2009-02-09 14:17 . 2006-03-09 08:25 1846400 ----a-w c:\windows\system32\win32k.sys
2009-02-09 11:50 . 2005-03-02 16:08 2017792 ----a-w c:\windows\system32\ntkrnlpa.exe
2009-02-09 11:50 . 2006-03-09 08:25 2138112 ----a-w c:\windows\system32\ntoskrnl.exe
2009-02-09 10:20 . 2006-03-09 08:24 730112 ----a-w c:\windows\system32\lsasrv.dll
2009-02-09 10:20 . 2006-03-09 08:25 399360 ----a-w c:\windows\system32\rpcss.dll
2009-02-09 10:20 . 2004-08-19 15:09 685056 ----a-w c:\windows\system32\advapi32.dll
2009-02-09 10:20 . 2004-08-19 15:09 739840 ----a-w c:\windows\system32\ntdll.dll
2009-02-09 10:08 . 2004-08-19 15:10 111104 ----a-w c:\windows\system32\services.exe
2009-02-06 16:54 . 2001-08-24 12:00 35328 ----a-w c:\windows\system32\sc.exe
2006-05-03 09:06 . 2009-04-12 03:28 163328 --sh--r c:\windows\system32\flvDX.dll
2007-02-21 10:47 . 2009-04-12 03:28 31232 --sh--r c:\windows\system32\msfDX.dll
2008-03-16 12:30 . 2009-04-12 03:28 216064 --sh--r c:\windows\system32\nbDX.dll
.

(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.

---- Directory of C:\Part1 ----

2009-04-14 06:20 . 2003-09-23 15:56 72909 ----a-w c:\part1\YusufDB.pdb
2009-04-14 06:20 . 2004-10-04 19:00 241591 ----a-w c:\part1\Yusuf.prc
2009-04-14 06:20 . 2003-09-23 16:03 75651 ----a-w c:\part1\YunusDB.pdb
2009-04-14 06:20 . 2003-09-23 16:03 32413 ----a-w c:\part1\YaasiinDB.pdb
2009-04-14 06:20 . 2004-10-04 18:56 248955 ----a-w c:\part1\Yunus.prc
2009-04-14 06:20 . 2003-09-23 16:04 55851 ----a-w c:\part1\TahaDB.pdb
2009-04-14 06:20 . 2004-10-05 13:22 127101 ----a-w c:\part1\Yaasiin.prc
2009-04-14 06:20 . 2003-09-23 16:03 33935 ----a-w c:\part1\ShaadDB.pdb
2009-04-14 06:20 . 2004-10-04 19:17 200605 ----a-w c:\part1\Taha.prc
2009-04-14 06:20 . 2004-10-04 21:47 129504 ----a-w c:\part1\Shaad.prc
2009-04-14 06:20 . 2003-09-23 16:03 37026 ----a-w c:\part1\SabaDB.pdb
2009-04-14 06:20 . 2003-09-23 16:04 17988 ----a-w c:\part1\QaafDB.pdb
2009-04-14 06:20 . 2004-10-09 10:59 39235 ----a-w c:\part1\Quraisy.prc
2009-04-14 06:20 . 2003-09-23 16:02 1204 ----a-w c:\part1\QuraisyDB.pdb
2009-04-14 06:20 . 2005-01-15 18:13 138838 ----a-w c:\part1\Saba'.prc
2009-04-14 06:20 . 2003-09-23 16:03 10099 ----a-w c:\part1\NuhDB.pdb
2009-04-14 06:20 . 2004-10-05 13:00 82138 ----a-w c:\part1\Qaaf.prc
2009-04-14 06:20 . 2003-09-23 16:04 25316 ----a-w c:\part1\MuhammadDB.pdb
2009-04-14 06:20 . 2004-10-07 12:18 65346 ----a-w c:\part1\Nuh.prc
2009-04-14 06:20 . 2003-09-23 16:03 39983 ----a-w c:\part1\MaryamDB.pdb
2009-04-14 06:20 . 2004-10-05 09:26 105686 ----a-w c:\part1\Muhammad.prc
2009-04-14 06:20 . 2004-12-28 09:11 155496 ----a-w c:\part1\Maryam.prc
2009-04-14 06:20 . 2003-09-23 16:04 22167 ----a-w c:\part1\LuqmanDB.pdb
2009-04-14 06:20 . 2003-09-23 16:01 34809 ----a-w c:\part1\IbrahimDB.pdb
2009-04-14 06:20 . 2005-01-15 18:04 98256 ----a-w c:\part1\Luqman.prc
2009-04-14 06:20 . 2004-10-04 19:04 135964 ----a-w c:\part1\Ibrahim.prc
2009-04-14 06:20 . 2004-12-24 15:06 78590 ----a-w c:\part1\HudDB.pdb
2009-04-14 06:20 . 2003-09-23 16:01 50694 ----a-w c:\part1\GhaafirDB.pdb
2009-04-14 06:20 . 2004-12-24 15:00 258247 ----a-w c:\part1\Hud.prc
2009-04-14 06:20 . 2003-09-23 16:01 34942 ----a-w c:\part1\FussilatDB.pdb
2009-04-14 06:20 . 2005-01-15 18:24 182026 ----a-w c:\part1\Ghaafir.prc
2009-04-14 06:20 . 2003-09-23 16:01 32381 ----a-w c:\part1\FaatirDB.pdb
2009-04-14 06:20 . 2005-01-15 18:35 131896 ----a-w c:\part1\Fussilat.prc
2009-04-14 06:20 . 2004-10-04 21:34 126604 ----a-w c:\part1\Faatir.prc
2009-04-14 06:20 . 2003-09-23 16:00 1924 ----a-w c:\part1\AzZalzalahDB.pdb
2009-04-14 06:20 . 2003-09-23 16:00 38962 ----a-w c:\part1\AzZukhrufDB.pdb
2009-04-14 06:20 . 2003-09-23 16:01 49176 ----a-w c:\part1\AzZumarDB.pdb
2009-04-14 06:20 . 2005-01-15 18:19 172660 ----a-w c:\part1\Az-Zumar.prc
2009-04-14 06:20 . 2005-01-15 18:40 144844 ----a-w c:\part1\Az-Zukhruf.prc
2009-04-14 06:20 . 2003-09-23 15:59 15442 ----a-w c:\part1\AthThuurDB.pdb
2009-04-14 06:20 . 2003-09-23 15:59 3451 ----a-w c:\part1\AtTaariqDB.pdb
2009-04-14 06:20 . 2003-09-23 15:59 10861 ----a-w c:\part1\AtTaghaabunDB.pdb
2009-04-14 06:20 . 2003-09-23 15:59 11427 ----a-w c:\part1\AtTahriimDB.pdb
2009-04-14 06:20 . 2003-09-23 16:00 2172 ----a-w c:\part1\AtTakaathurDB.pdb
2009-04-14 06:20 . 2003-09-23 16:00 5477 ----a-w c:\part1\AtTakwiirDB.pdb
2009-04-14 06:20 . 2003-09-23 16:00 101798 ----a-w c:\part1\AtTaubahDB.pdb
2009-04-14 06:20 . 2003-09-23 16:00 1930 ----a-w c:\part1\AtTiinDB.pdb
2009-04-14 06:20 . 2004-10-09 07:51 41819 ----a-w c:\part1\Az-Zalzalah.prc
2009-04-14 06:20 . 2004-10-07 18:51 52020 ----a-w c:\part1\At-Takwiir.prc
2009-04-14 06:20 . 2004-10-04 18:55 341639 ----a-w c:\part1\At-Taubah.prc
2009-04-14 06:20 . 2004-10-08 21:12 41723 ----a-w c:\part1\At-Tiin.prc
2009-04-14 06:20 . 2004-10-05 13:28 78714 ----a-w c:\part1\Ath-Thuur.prc
2009-04-14 06:20 . 2004-10-07 19:11 45990 ----a-w c:\part1\At-Taariq.prc
2009-04-14 06:20 . 2004-10-05 19:22 67366 ----a-w c:\part1\At-Taghaabun.prc
2009-04-14 06:20 . 2004-10-05 19:37 79376 ----a-w c:\part1\At-Tahriim.prc
2009-04-14 06:20 . 2004-10-09 10:39 41025 ----a-w c:\part1\At-Takaathur.prc

---- Directory of C:\Part2 ----

2009-04-14 06:20 . 2003-09-23 15:59 12079 ----a-w c:\part2\AthThalaaqDB.pdb
2009-04-14 06:20 . 2003-09-23 15:58 3785 ----a-w c:\part2\AsySyamsDB.pdb
2009-04-14 06:20 . 2003-09-23 15:58 58117 ----a-w c:\part2\AsySyuaraaDB.pdb
2009-04-14 06:20 . 2003-09-23 15:58 36919 ----a-w c:\part2\AsySyuuraDB.pdb
2009-04-14 06:20 . 2004-10-05 19:33 70298 ----a-w c:\part2\Ath-Thalaaq.prc
2009-04-14 06:20 . 2004-10-04 22:04 142986 ----a-w c:\part2\Asy-Syuura.prc
2009-04-14 06:20 . 2003-09-23 15:57 16427 ----a-w c:\part2\AsSajdahDB.pdb
2009-04-14 06:20 . 2004-10-08 20:52 44694 ----a-w c:\part2\Asy-Syams.prc
2009-04-14 06:20 . 2004-10-04 21:00 216245 ----a-w c:\part2\Asy-Syu'araa'.prc
2009-04-14 06:20 . 2004-10-08 21:08 40667 ----a-w c:\part2\Ash-Syar-h.prc
2009-04-14 06:20 . 2003-09-23 15:57 8710 ----a-w c:\part2\AshShaafDB.pdb
2009-04-14 06:20 . 2003-09-23 15:57 44206 ----a-w c:\part2\AshShaffaatDB.pdb
2009-04-14 06:20 . 2003-09-23 15:57 1893 ----a-w c:\part2\AshSyarhDB.pdb
2009-04-14 06:20 . 2005-01-15 18:46 64134 ----a-w c:\part2\Ash-Shaaf.prc
2009-04-14 06:20 . 2004-10-04 21:42 162853 ----a-w c:\part2\Ash-Shaffaat.prc
2009-04-14 06:20 . 2003-09-23 15:56 35474 ----a-w c:\part2\ArRadDB.pdb
2009-04-14 06:20 . 2003-09-23 15:57 17954 ----a-w c:\part2\ArRahmaanDB.pdb
2009-04-14 06:20 . 2003-11-15 19:02 35202 ----a-w c:\part2\ArRuumDB.pdb
2009-04-14 06:20 . 2004-10-04 21:12 82298 ----a-w c:\part2\As-Sajdah.prc
2009-04-14 06:20 . 2005-01-15 17:52 138996 ----a-w c:\part2\Ar-Ruum.prc
2009-04-14 06:20 . 2004-10-05 13:47 91252 ----a-w c:\part2\Ar-Rahmaan.prc
2009-04-14 06:20 . 2004-10-04 19:02 135034 ----a-w c:\part2\Ar-Ra'd.prc
2009-04-14 06:20 . 2003-09-23 15:56 53132 ----a-w c:\part2\AnNuurDB.pdb
2009-04-14 06:20 . 2004-10-04 20:56 194418 ----a-w c:\part2\AnNuur.prc
2009-04-14 06:20 . 2003-09-23 15:56 1042 ----a-w c:\part2\AnNasrDB.pdb
2009-04-14 06:20 . 2003-09-23 15:56 153030 ----a-w c:\part2\AnNisaaDB.pdb
2009-04-14 06:20 . 2003-09-23 15:56 47772 ----a-w c:\part2\AnNamlDB.pdb
2009-04-14 06:20 . 2003-09-23 15:31 1249 ----a-w c:\part2\AnNaasDB.pdb
2009-04-14 06:20 . 2003-09-23 15:56 10183 ----a-w c:\part2\AnNaaziaatDB.pdb
2009-04-14 06:20 . 2003-09-23 15:56 9358 ----a-w c:\part2\AnNabaDB.pdb
2009-04-14 06:20 . 2003-09-23 15:56 17030 ----a-w c:\part2\AnNajmDB.pdb
2009-04-14 06:20 . 2004-10-09 11:12 39053 ----a-w c:\part2\An-Nasr.prc
2009-04-14 06:20 . 2004-12-18 11:07 478865 ----a-w c:\part2\An-Nisaa'.prc
2009-04-14 06:20 . 2004-10-04 21:02 176802 ----a-w c:\part2\An-Naml.prc
2009-04-14 06:20 . 2004-10-05 13:32 83952 ----a-w c:\part2\An-Najm.prc
2009-04-14 06:20 . 2004-10-07 17:38 61832 ----a-w c:\part2\An-Naba'.prc
2009-04-14 06:20 . 2003-09-23 15:55 17485 ----a-w c:\part2\AlQamarDB.pdb
2009-04-14 06:20 . 2003-09-23 15:55 58026 ----a-w c:\part2\AlQasasDB.pdb
2009-04-14 06:20 . 2003-09-23 15:55 8696 ----a-w c:\part2\AlQiaamahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:56 19592 ----a-w c:\part2\AlWaaqiahDB.pdb
2009-04-14 06:20 . 2004-10-09 11:26 39567 ----a-w c:\part2\An-Naas.prc
2009-04-14 06:20 . 2004-10-07 17:45 63020 ----a-w c:\part2\An-Naazi'aat.prc
2009-04-14 06:20 . 2003-09-23 15:55 1363 ----a-w c:\part2\AlQadrDB.pdb
2009-04-14 06:20 . 2003-09-23 15:55 15229 ----a-w c:\part2\AlQalamDB.pdb
2009-04-14 06:20 . 2003-09-23 15:54 9327 ----a-w c:\part2\AlMuzzammilDB.pdb
2009-04-14 06:20 . 2003-09-23 15:55 75922 ----a-w c:\part2\AlNahlDB.pdb
2009-04-14 06:20 . 2003-09-23 15:55 2131 ----a-w c:\part2\AlQaariahDB.pdb
2009-04-14 06:20 . 2004-10-07 17:24 59790 ----a-w c:\part2\Al-Qiaamah.prc
2009-04-14 06:20 . 2004-10-05 13:50 95868 ----a-w c:\part2\Al-Waaqi'ah.prc
2009-04-14 06:20 . 2004-10-04 21:04 203042 ----a-w c:\part2\Al-Qasas.prc
2009-04-14 06:20 . 2004-10-09 10:34 42500 ----a-w c:\part2\Al-Qaari'ah.prc
2009-04-14 06:20 . 2004-10-08 21:20 40849 ----a-w c:\part2\Al-Qadr.prc
2009-04-14 06:20 . 2004-10-05 19:47 77240 ----a-w c:\part2\Al-Qalam.prc
2009-04-14 06:20 . 2004-10-05 13:43 83418 ----a-w c:\part2\Al-Qamar.prc
2009-04-14 06:20 . 2004-10-04 19:09 258753 ----a-w c:\part2\Al-Nahl.prc
2009-04-14 06:20 . 2004-10-07 13:12 61552 ----a-w c:\part2\Al-Muzzammil.prc

---- Directory of C:\Part3 ----

2009-04-14 06:20 . 2003-09-23 15:54 14908 ----a-w c:\part3\AlMumtahanahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:54 8468 ----a-w c:\part3\AlMunaafiquunDB.pdb
2009-04-14 06:20 . 2003-09-23 15:54 10807 ----a-w c:\part3\AlMursalaatDB.pdb
2009-04-14 06:20 . 2003-09-23 15:54 8333 ----a-w c:\part3\AlMutaffifiinDB.pdb
2009-04-14 06:20 . 2003-09-23 15:53 19390 ----a-w c:\part3\AlMujaadalahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:53 14305 ----a-w c:\part3\AlMulkDB.pdb
2009-04-14 06:20 . 2003-09-23 15:53 43459 ----a-w c:\part3\AlMuminuunDB.pdb
2009-04-14 06:20 . 2003-09-23 15:53 1658 ----a-w c:\part3\AlMaauunDB.pdb
2009-04-14 06:20 . 2003-09-23 15:53 1166 ----a-w c:\part3\AlMasadDB.pdb
2009-04-14 06:20 . 2003-09-23 15:53 12776 ----a-w c:\part3\AlMuddaththirDB.pdb
2009-04-14 06:20 . 2003-09-23 15:52 112113 ----a-w c:\part3\AlMaaidahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:50 953 ----a-w c:\part3\AlKautharDB.pdb
2009-04-14 06:20 . 2003-09-23 15:51 4369 ----a-w c:\part3\AlLailDB.pdb
2009-04-14 06:20 . 2003-09-23 15:51 10524 ----a-w c:\part3\AlMaaarijDB.pdb
2009-04-14 06:20 . 2003-09-23 15:50 1196 ----a-w c:\part3\AlKaafiruunDB.pdb
2009-04-14 06:20 . 2003-09-23 15:50 64116 ----a-w c:\part3\AlKahfiDB.pdb
2009-04-14 06:20 . 2003-09-23 15:49 65116 ----a-w c:\part3\AlIsraaDB.pdb
2009-04-14 06:20 . 2003-09-23 15:49 20791 ----a-w c:\part3\AlJaathiyahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:50 13008 ----a-w c:\part3\AlJinnDB.pdb
2009-04-14 06:20 . 2003-09-23 15:50 7874 ----a-w c:\part3\AlJumuahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:49 5331 ----a-w c:\part3\AlInsyiqaaqDB.pdb
2009-04-14 06:20 . 2003-09-23 15:49 873 ----a-w c:\part3\AlIkhlaasDB.pdb
2009-04-14 06:20 . 2003-09-23 16:03 4284 ----a-w c:\part3\AlInfitaarDB.pdb
2009-04-14 06:20 . 2003-09-23 15:49 12138 ----a-w c:\part3\AlInsaanDB.pdb
2009-04-14 06:20 . 2003-09-23 15:48 30180 ----a-w c:\part3\AlHijrDB.pdb
2009-04-14 06:20 . 2003-09-23 15:48 14652 ----a-w c:\part3\AlHujuraatDB.pdb
2009-04-14 06:20 . 2003-09-23 15:49 1806 ----a-w c:\part3\AlHumazahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:49 143987 ----a-w c:\part3\AliImraanDB.pdb
2009-04-14 06:20 . 2005-01-15 18:49 60782 ----a-w c:\part3\Al-Mutaffifiin.prc
2009-04-14 06:20 . 2004-10-05 19:16 59272 ----a-w c:\part3\Al-Munaafiquun.prc
2009-04-14 06:20 . 2004-10-07 17:34 65692 ----a-w c:\part3\Al-Mursalaat.prc
2009-04-14 06:20 . 2004-10-05 14:08 79038 ----a-w c:\part3\Al-Mumtahanah.prc
2009-04-14 06:20 . 2004-10-05 14:00 91524 ----a-w c:\part3\Al-Mujaadalah.prc
2009-04-14 06:20 . 2004-10-05 19:44 75866 ----a-w c:\part3\Al-Mulk.prc
2009-04-14 06:20 . 2004-10-07 13:16 73588 ----a-w c:\part3\Al-Muddaththir.prc
2009-04-14 06:20 . 2004-10-04 20:55 171701 ----a-w c:\part3\Al-Mu'minuun.prc
2009-04-14 06:20 . 2004-10-09 11:15 39455 ----a-w c:\part3\Al-Masad.prc
2009-04-14 06:20 . 2005-01-15 18:51 68618 ----a-w c:\part3\Al-Ma'aarij.prc
2009-04-14 06:20 . 2004-10-09 11:02 40589 ----a-w c:\part3\Al-Maa'uun.prc
2009-04-14 06:20 . 2004-10-04 18:45 362683 ----a-w c:\part3\Al-Maaidah.prc
2009-04-14 06:20 . 2004-10-09 11:05 38189 ----a-w c:\part3\Al-Kauthar.prc
2009-04-14 06:20 . 2004-10-08 20:57 47592 ----a-w c:\part3\Al-Lail.prc
2009-04-14 06:20 . 2004-10-04 19:14 222999 ----a-w c:\part3\Al-Kahfi.prc
2009-04-14 06:20 . 2004-10-09 11:09 39857 ----a-w c:\part3\Al-Kaafiruun.prc
2009-04-14 06:20 . 2004-10-07 12:27 69942 ----a-w c:\part3\Al-Jinn.prc
2009-04-14 06:20 . 2004-10-05 19:12 57502 ----a-w c:\part3\Al-Jumu'ah.prc
2009-04-14 06:20 . 2004-10-05 09:17 96532 ----a-w c:\part3\Al-Jaathiyah.prc
2009-04-14 06:20 . 2004-10-07 17:29 68094 ----a-w c:\part3\Al-Insaan.prc
2009-04-14 06:20 . 2004-10-07 19:04 51750 ----a-w c:\part3\Al-Insyiqaaq.prc
2009-04-14 06:20 . 2004-12-18 11:30 225995 ----a-w c:\part3\Al-Israa'.prc
2009-04-14 06:20 . 2004-10-09 11:19 38539 ----a-w c:\part3\Al-Ikhlaas.prc
2009-04-14 06:20 . 2004-10-07 18:55 47584 ----a-w c:\part3\Al-Infitaar.prc
2009-04-14 06:20 . 2004-10-09 10:52 41401 ----a-w c:\part3\Al-Humazah.prc
2009-04-14 06:20 . 2004-10-04 19:06 124146 ----a-w c:\part3\Al-Hijr.prc
2009-04-14 06:20 . 2004-10-05 12:53 78520 ----a-w c:\part3\Al-Hujuraat.prc
2009-04-14 06:20 . 2004-12-28 09:24 450129 ----a-w c:\part3\A-li 'Imran.prc

---- Directory of C:\Part4 ----

2009-04-14 06:20 . 2003-09-23 15:48 19363 ----a-w c:\part4\AlHasyrDB.pdb
2009-04-14 06:20 . 2003-09-23 15:47 1425 ----a-w c:\part4\AlFiilDB.pdb
2009-04-14 06:20 . 2003-09-23 15:47 38389 ----a-w c:\part4\AlFurqaanDB.pdb
2009-04-14 06:20 . 2003-09-23 15:48 4759 ----a-w c:\part4\AlGhaasyiyahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:48 13017 ----a-w c:\part4\AlHaaqqahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:48 24892 ----a-w c:\part4\AlHadiidDB.pdb
2009-04-14 06:20 . 2003-09-23 15:48 51232 ----a-w c:\part4\AlHajjDB.pdb
2009-04-14 06:20 . 2003-09-23 15:47 5315 ----a-w c:\part4\AlBuruujDB.pdb
2009-04-14 06:20 . 2003-09-23 15:47 1362 ----a-w c:\part4\AlFaatihahDB.pdb
2009-04-14 06:20 . 2004-10-07 19:22 56062 ----a-w c:\part4\AlFajr.prc
2009-04-14 06:20 . 2003-09-23 15:47 7336 ----a-w c:\part4\AlFajrDB.pdb
2009-04-14 06:20 . 2003-09-23 15:47 1196 ----a-w c:\part4\AlFalaqDB.pdb
2009-04-14 06:20 . 2003-09-23 15:47 25950 ----a-w c:\part4\AlFathDB.pdb
2009-04-14 06:20 . 2003-09-23 15:46 3719 ----a-w c:\part4\AlBayyinahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:46 4626 ----a-w c:\part4\AlBaladDB.pdb
2009-04-14 06:20 . 2003-09-23 15:46 247609 ----a-w c:\part4\AlBaqarahDB.pdb
2009-04-14 06:20 . 2003-09-23 15:45 894 ----a-w c:\part4\AlAsrDB.pdb
2009-04-14 06:20 . 2003-09-23 15:45 136130 ----a-w c:\part4\AlAraafDB.pdb
2009-04-14 06:20 . 2003-09-23 15:45 41324 ----a-w c:\part4\AlAnkabuutDB.pdb
2009-04-14 06:20 . 2003-09-23 15:45 51287 ----a-w c:\part4\AlAnfaalDB.pdb
2009-04-14 06:20 . 2003-09-23 15:45 50595 ----a-w c:\part4\AlAnbiyaaDB.pdb
2009-04-14 06:20 . 2003-09-23 15:44 4409 ----a-w c:\part4\AlAlaaDB.pdb
2009-04-14 06:20 . 2003-09-23 15:44 3812 ----a-w c:\part4\AlAlaqDB.pdb
2009-04-14 06:20 . 2003-09-23 15:45 125358 ----a-w c:\part4\AlAnaamDB.pdb
2009-04-14 06:20 . 2003-09-23 15:44 2306 ----a-w c:\part4\AlAadiyaatDB.pdb
2009-04-14 06:20 . 2003-09-23 15:44 27354 ----a-w c:\part4\AlAhqaafDB.pdb
2009-04-14 06:20 . 2003-09-23 15:44 53838 ----a-w c:\part4\AlAhzaabDB.pdb
2009-04-14 06:20 . 2004-10-05 14:04 91176 ----a-w c:\part4\Al-Hasy-r.prc
2009-04-14 06:20 . 2004-10-04 20:52 185882 ----a-w c:\part4\Al-Hajj.prc
2009-04-14 06:20 . 2004-10-05 19:52 72738 ----a-w c:\part4\Al-Haaqqah.prc
2009-04-14 06:20 . 2004-10-05 13:56 106452 ----a-w c:\part4\Al-Hadiid.prc
2009-04-14 06:20 . 2004-10-07 19:18 50432 ----a-w c:\part4\Al-Ghaasyiyah.prc
2009-04-14 06:20 . 2004-10-09 10:55 39913 ----a-w c:\part4\Al-Fiil.prc
2009-04-14 06:20 . 2004-10-04 20:58 148198 ----a-w c:\part4\Al-Furqaan.prc
2009-04-14 06:20 . 2004-10-05 09:31 105788 ----a-w c:\part4\Al-Fat-h.prc
2009-04-14 06:20 . 2004-10-07 19:07 52396 ----a-w c:\part4\Al-Buruuj.prc
2009-04-14 06:20 . 2004-10-04 18:26 41159 ----a-w c:\part4\Al-Faatihah.prc
2009-04-14 06:20 . 2004-10-09 11:23 39267 ----a-w c:\part4\Al-Falaq.prc
2009-04-14 06:20 . 2004-10-09 07:47 48039 ----a-w c:\part4\Al-Bayyinah.prc
2009-04-14 06:20 . 2004-10-07 19:25 48080 ----a-w c:\part4\Al-Balad.prc
2009-04-14 06:20 . 2004-12-17 17:58 760717 ----a-w c:\part4\Al-Baqarah.prc
2009-04-14 06:20 . 2004-12-28 09:18 188852 ----a-w c:\part4\Al-Anfaal.prc
2009-04-14 06:20 . 2004-10-04 20:50 184103 ----a-w c:\part4\Al-Anbiyaa'.prc
2009-04-14 06:20 . 2004-12-18 11:14 395447 ----a-w c:\part4\Al-An'aam.prc
2009-04-14 06:20 . 2004-10-04 21:13 191618 ----a-w c:\part4\Al-Ahzaab.prc
2009-04-14 06:20 . 2004-10-05 09:21 110388 ----a-w c:\part4\Al-Ahqaaf.prc
2009-04-14 06:20 . 2004-10-07 19:14 47078 ----a-w c:\part4\Al-A'laa.prc
2009-04-14 06:20 . 2004-10-04 18:51 438971 ----a-w c:\part4\Al-A'raaf.prc
2009-04-14 06:20 . 2004-10-09 10:48 38853 ----a-w c:\part4\Al-'Asr.prc
2009-04-14 06:20 . 2005-01-15 17:47 157024 ----a-w c:\part4\Al-'Ankabuut.prc
2009-04-14 06:20 . 2004-10-09 07:57 42694 ----a-w c:\part4\Al-'Aadiyaat.prc
2009-04-14 06:20 . 2004-10-08 21:16 46878 ----a-w c:\part4\Al-'Alaq.prc
2009-04-14 06:20 . 2003-09-23 15:44 17870 ----a-w c:\part4\AdzDzaariyaatDB.pdb
2009-04-14 06:20 . 2003-09-23 15:41 17109 ----a-w c:\part4\AdDukhaanDB.pdb
2009-04-14 06:20 . 2004-10-08 21:01 43130 ----a-w c:\part4\Adh-Dhuha.prc
2009-04-14 06:20 . 2003-09-23 15:41 2446 ----a-w c:\part4\AdhDhuhaDB.pdb
2009-04-14 06:20 . 2004-10-05 13:06 85390 ----a-w c:\part4\Adz-Dzaariyaat.prc
2009-04-14 06:20 . 2004-10-07 17:49 57538 ----a-w c:\part4\'Abasa.prc
2009-04-14 06:20 . 2003-09-23 15:40 7469 ----a-w c:\part4\AbasaDB.pdb
2009-04-14 06:20 . 2004-10-05 09:12 82736 ----a-w c:\part4\Ad-Dukhaan.prc


------- Sigcheck -------

[-] 2006-03-09 08:25 578048 0DF75FB73F705B011630159A43D7C354 c:\windows\system32\user32.dll

[-] 2006-03-09 08:25 57856 DA81EC57ACD4CDC3D4C51CF3D409AF9F c:\windows\system32\spoolsv.exe

[-] 2006-03-09 09:40 1548288 E51172E3C82D76FCC02001D0FF41A1A1 c:\windows\system32\sfcfiles.dll
.
((((((((((((((((((((((((((((( SnapShot@2009-05-04_23.27.32 )))))))))))))))))))))))))))))))))))))))))
.
+ 2007-11-07 00:19 . 2007-11-07 00:19 54272 c:\windows\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_ecc42bd1\vcomp90.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 62976 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90rus.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 46080 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90kor.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 46592 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90jpn.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 64512 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90ita.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 66048 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90fra.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 65024 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esp.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 65024 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esn.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 56832 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90enu.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 66560 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90deu.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 39936 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90cht.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 38912 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90chs.dll
+ 2008-07-29 04:07 . 2008-07-29 04:07 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90u.dll
+ 2008-07-29 04:07 . 2008-07-29 04:07 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90.dll
+ 2008-09-30 14:45 . 2008-09-30 14:45 91656 c:\windows\WinSxS\x86_Microsoft.MSXML2R_6bd6b9abf345378f_4.1.1.0_x-ww_2a41bceb\msxml4r.dll
+ 2005-11-11 11:47 . 2008-10-16 12:09 43544 c:\windows\system32\wups2.dll
+ 2009-04-07 11:21 . 2008-10-16 12:08 34328 c:\windows\system32\wups.dll
+ 2009-04-07 11:21 . 2008-10-16 12:09 51224 c:\windows\system32\wuauclt.exe
+ 2008-10-22 09:47 . 2008-10-22 09:47 62976 c:\windows\system32\tzchange.exe
+ 2009-04-07 12:31 . 2008-07-09 07:40 26488 c:\windows\system32\spupdsvc.exe
+ 2009-04-08 17:32 . 2007-07-27 07:41 16760 c:\windows\system32\spmsg.dll
+ 2009-05-05 02:34 . 2008-10-16 12:09 43544 c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.2.6001.788\wups2.dll
+ 2009-05-05 02:34 . 2008-10-16 12:08 34328 c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.2.6001.788\wups.dll
+ 2004-08-19 15:09 . 2009-02-03 20:10 55808 c:\windows\system32\secur32.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 55808 c:\windows\system32\secur32.dll
- 2006-04-12 18:13 . 2006-10-17 09:58 44544 c:\windows\system32\pngfilt.dll
+ 2006-04-12 18:13 . 2009-02-20 17:10 44544 c:\windows\system32\pngfilt.dll
- 2001-08-24 12:00 . 2009-04-12 04:52 58596 c:\windows\system32\perfc009.dat
+ 2001-08-24 12:00 . 2009-05-05 05:17 58596 c:\windows\system32\perfc009.dat
+ 2009-04-07 11:19 . 2008-06-12 14:18 91648 c:\windows\system32\mtxoci.dll
- 2006-05-09 16:31 . 2006-05-09 16:31 66560 c:\windows\system32\mtxclu.dll
+ 2006-05-09 16:31 . 2008-06-12 14:18 66560 c:\windows\system32\mtxclu.dll
+ 2006-11-07 19:03 . 2009-02-20 17:10 52224 c:\windows\system32\msfeedsbs.dll
+ 2009-04-07 11:19 . 2008-06-12 14:18 58880 c:\windows\system32\msdtclog.dll
- 2009-04-07 11:19 . 2004-08-19 15:09 58880 c:\windows\system32\msdtclog.dll
- 2006-03-09 08:24 . 2006-03-09 08:24 74240 c:\windows\system32\mscms.dll
+ 2006-03-09 08:24 . 2008-06-24 16:23 74240 c:\windows\system32\mscms.dll
- 2006-03-09 11:48 . 2006-03-09 11:48 96768 c:\windows\system32\logagent.exe
+ 2006-03-09 11:48 . 2008-06-10 03:52 96768 c:\windows\system32\logagent.exe
+ 2004-08-19 15:09 . 2009-02-20 17:10 27648 c:\windows\system32\jsproxy.dll
+ 2006-11-07 01:26 . 2009-02-20 10:20 13824 c:\windows\system32\ieudinit.exe
+ 2004-08-19 15:09 . 2009-02-20 17:10 44544 c:\windows\system32\iernonce.dll
+ 2004-08-19 15:09 . 2009-02-20 10:20 70656 c:\windows\system32\ie4uinit.exe
+ 2006-10-17 09:58 . 2009-02-20 17:10 63488 c:\windows\system32\icardie.dll
+ 2009-05-05 01:53 . 2009-02-13 10:49 28376 c:\windows\system32\drivers\ssmdrv.sys
+ 2009-05-05 01:53 . 2009-03-30 08:32 96104 c:\windows\system32\drivers\avipbb.sys
+ 2009-05-05 01:53 . 2009-02-13 10:28 22360 c:\windows\system32\drivers\avgntmgr.sys
+ 2009-05-05 01:53 . 2009-02-13 10:17 45416 c:\windows\system32\drivers\avgntdd.sys
+ 2009-04-07 11:21 . 2008-10-16 12:08 34328 c:\windows\system32\dllcache\wups.dll
+ 2009-04-07 11:21 . 2008-10-16 12:09 51224 c:\windows\system32\dllcache\wuauclt.exe
+ 2004-08-19 15:09 . 2009-02-03 20:10 55808 c:\windows\system32\dllcache\secur32.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 55808 c:\windows\system32\dllcache\secur32.dll
+ 2001-08-24 12:00 . 2009-02-06 16:54 35328 c:\windows\system32\dllcache\sc.exe
- 2006-10-17 09:58 . 2006-10-17 09:58 44544 c:\windows\system32\dllcache\pngfilt.dll
+ 2006-10-17 09:58 . 2009-02-20 17:10 44544 c:\windows\system32\dllcache\pngfilt.dll
+ 2008-06-12 14:18 . 2008-06-12 14:18 91648 c:\windows\system32\dllcache\mtxoci.dll
+ 2008-06-12 14:18 . 2008-06-12 14:18 66560 c:\windows\system32\dllcache\mtxclu.dll
+ 2009-02-20 17:10 . 2009-02-20 17:10 52224 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2009-04-07 11:19 . 2008-06-12 14:18 58880 c:\windows\system32\dllcache\msdtclog.dll
- 2009-04-07 11:19 . 2004-08-19 15:09 58880 c:\windows\system32\dllcache\msdtclog.dll
+ 2008-06-24 16:23 . 2008-06-24 16:23 74240 c:\windows\system32\dllcache\mscms.dll
+ 2006-03-09 11:48 . 2008-06-10 03:52 96768 c:\windows\system32\dllcache\logagent.exe
- 2006-03-09 11:48 . 2006-03-09 11:48 96768 c:\windows\system32\dllcache\logagent.exe
+ 2004-08-19 15:09 . 2009-02-20 17:10 27648 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-02-20 10:20 . 2009-02-20 10:20 13824 c:\windows\system32\dllcache\ieudinit.exe
+ 2004-08-19 15:09 . 2009-02-20 17:10 44544 c:\windows\system32\dllcache\iernonce.dll
- 2004-08-19 15:09 . 2006-10-17 10:06 78336 c:\windows\system32\dllcache\ieencode.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 78336 c:\windows\system32\dllcache\ieencode.dll
+ 2004-08-19 15:09 . 2009-02-20 10:20 70656 c:\windows\system32\dllcache\ie4uinit.exe
+ 2009-02-20 17:10 . 2009-02-20 17:10 63488 c:\windows\system32\dllcache\icardie.dll
+ 2005-11-11 11:48 . 2008-10-16 12:09 92696 c:\windows\system32\dllcache\cdm.dll
+ 2005-11-11 11:48 . 2008-10-16 12:09 92696 c:\windows\system32\cdm.dll
+ 2009-05-05 08:14 . 2009-05-05 08:14 32768 c:\windows\Installer\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}\icon.exe
+ 2009-05-05 05:04 . 2006-10-17 09:58 44544 c:\windows\ie7updates\KB963027-IE7\pngfilt.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 50688 c:\windows\ie7updates\KB963027-IE7\msfeedsbs.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 27136 c:\windows\ie7updates\KB963027-IE7\jsproxy.dll
+ 2009-05-05 05:04 . 2006-11-07 01:26 13312 c:\windows\ie7updates\KB963027-IE7\ieudinit.exe
+ 2009-05-05 05:04 . 2006-11-07 01:26 43008 c:\windows\ie7updates\KB963027-IE7\iernonce.dll
+ 2009-05-05 05:04 . 2006-10-17 10:06 78336 c:\windows\ie7updates\KB963027-IE7\ieencode.dll
+ 2009-05-05 05:04 . 2006-11-07 01:26 54784 c:\windows\ie7updates\KB963027-IE7\ie4uinit.exe
+ 2009-05-05 05:04 . 2006-10-17 09:58 61952 c:\windows\ie7updates\KB963027-IE7\icardie.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 655872 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcr90.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 572928 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcp90.dll
+ 2008-07-29 01:54 . 2008-07-29 01:54 225280 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcm90.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 161784 c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_d01483b2\atl90.dll
+ 2006-04-12 18:13 . 2008-02-17 02:33 370176 c:\windows\system32\xpsp3res.dll
+ 2009-04-07 11:21 . 2008-10-16 12:13 202776 c:\windows\system32\wuweb.dll
+ 2009-04-07 11:21 . 2008-10-16 12:12 323608 c:\windows\system32\wucltui.dll
+ 2009-04-07 11:21 . 2008-10-16 12:12 561688 c:\windows\system32\wuapi.dll
+ 2006-03-09 11:49 . 2007-10-20 04:01 227328 c:\windows\system32\wmasf.dll
+ 2005-11-11 11:50 . 2008-12-16 12:49 351232 c:\windows\system32\winhttp.dll
- 2005-11-11 11:50 . 2005-11-11 11:50 351232 c:\windows\system32\winhttp.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 233472 c:\windows\system32\webcheck.dll
+ 2009-04-07 11:19 . 2009-02-06 16:39 227840 c:\windows\system32\wbem\wmiprvse.exe
+ 2009-04-07 11:19 . 2009-02-09 10:20 453120 c:\windows\system32\wbem\wmiprvsd.dll
+ 2009-04-07 11:19 . 2009-02-09 10:20 473088 c:\windows\system32\wbem\fastprox.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 105984 c:\windows\system32\url.dll
- 2004-08-19 15:09 . 2006-10-17 10:05 105984 c:\windows\system32\url.dll
+ 2004-08-19 15:09 . 2008-10-03 10:17 247326 c:\windows\system32\strmdll.dll
+ 2004-08-19 15:09 . 2008-12-05 07:12 144896 c:\windows\system32\schannel.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 144896 c:\windows\system32\schannel.dll
+ 2001-08-24 12:00 . 2009-05-05 05:17 392296 c:\windows\system32\perfh009.dat
- 2001-08-24 12:00 . 2009-04-12 04:52 392296 c:\windows\system32\perfh009.dat
+ 2004-08-19 15:09 . 2009-02-20 17:10 102912 c:\windows\system32\occache.dll
+ 2006-03-09 08:25 . 2008-10-15 16:59 332800 c:\windows\system32\netapi32.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 247808 c:\windows\system32\mswsock.dll
+ 2004-08-19 15:09 . 2008-06-20 17:41 247808 c:\windows\system32\mswsock.dll
+ 2006-04-12 18:13 . 2009-02-20 17:10 671232 c:\windows\system32\mstime.dll
+ 2006-04-12 18:13 . 2009-02-20 17:10 193024 c:\windows\system32\msrating.dll
+ 2006-04-12 18:13 . 2009-02-20 17:10 477696 c:\windows\system32\mshtmled.dll
+ 2006-11-07 19:03 . 2009-02-20 17:10 459264 c:\windows\system32\msfeeds.dll
+ 2009-04-07 11:19 . 2008-06-12 14:18 161792 c:\windows\system32\msdtcuiu.dll
+ 2009-04-07 11:19 . 2008-06-12 14:18 956928 c:\windows\system32\msdtctm.dll
+ 2009-04-07 11:19 . 2008-06-12 14:18 428032 c:\windows\system32\msdtcprx.dll
+ 2009-04-07 11:21 . 2008-04-11 18:51 683520 c:\windows\system32\inetcomm.dll
+ 2006-10-17 09:57 . 2009-02-20 17:10 268288 c:\windows\system32\iertutil.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 385024 c:\windows\system32\iedkcs32.dll
+ 2006-10-17 09:27 . 2009-02-20 17:10 383488 c:\windows\system32\ieapfltr.dll
+ 2001-08-24 12:00 . 2009-02-20 05:14 161792 c:\windows\system32\ieakui.dll
- 2001-08-24 12:00 . 2006-11-07 01:25 161792 c:\windows\system32\ieakui.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 230400 c:\windows\system32\ieaksie.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 153088 c:\windows\system32\ieakeng.dll
+ 2006-03-09 08:24 . 2008-10-23 13:00 283648 c:\windows\system32\gdi32.dll
+ 2009-04-07 13:12 . 2009-05-05 05:12 303624 c:\windows\system32\FNTCACHE.DAT
- 2009-04-07 13:12 . 2009-04-27 14:37 303624 c:\windows\system32\FNTCACHE.DAT
+ 2006-04-12 18:13 . 2009-02-20 17:10 133120 c:\windows\system32\extmgr.dll
+ 2006-03-09 08:24 . 2008-07-07 20:31 253952 c:\windows\system32\es.dll
- 2006-04-12 18:13 . 2006-10-17 09:57 214528 c:\windows\system32\dxtrans.dll
+ 2006-04-12 18:13 . 2009-02-20 17:10 214528 c:\windows\system32\dxtrans.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 347136 c:\windows\system32\dxtmsft.dll
+ 2004-08-03 22:07 . 2008-06-20 09:52 225920 c:\windows\system32\drivers\tcpip6.sys
+ 2006-02-14 19:56 . 2008-06-20 10:45 360320 c:\windows\system32\drivers\tcpip.sys
+ 2006-03-09 08:25 . 2008-12-11 11:57 333184 c:\windows\system32\drivers\srv.sys
+ 2001-08-24 12:00 . 2008-05-08 12:28 202752 c:\windows\system32\drivers\rmcast.sys
+ 2006-03-09 08:24 . 2008-10-24 11:10 453632 c:\windows\system32\drivers\mrxsmb.sys
+ 2004-08-03 22:14 . 2008-08-14 09:51 138368 c:\windows\system32\drivers\afd.sys
+ 2004-08-19 15:09 . 2008-06-20 17:41 148992 c:\windows\system32\dnsapi.dll
+ 2009-04-07 11:21 . 2008-10-16 12:13 202776 c:\windows\system32\dllcache\wuweb.dll
+ 2009-04-07 11:21 . 2008-10-16 12:12 323608 c:\windows\system32\dllcache\wucltui.dll
+ 2009-04-07 11:21 . 2008-10-16 12:12 561688 c:\windows\system32\dllcache\wuapi.dll
+ 2009-04-07 11:19 . 2008-04-21 21:27 219136 c:\windows\system32\dllcache\wordpad.exe
+ 2009-04-07 11:19 . 2009-02-06 16:39 227840 c:\windows\system32\dllcache\wmiprvse.exe
+ 2009-04-07 11:19 . 2009-02-09 10:20 453120 c:\windows\system32\dllcache\wmiprvsd.dll
+ 2006-03-09 11:49 . 2007-10-20 04:01 227328 c:\windows\system32\dllcache\wmasf.dll
+ 2006-11-07 19:03 . 2009-03-03 00:13 826368 c:\windows\system32\dllcache\wininet.dll
+ 2005-11-11 11:50 . 2008-12-16 12:49 351232 c:\windows\system32\dllcache\winhttp.dll
- 2005-11-11 11:50 . 2005-11-11 11:50 351232 c:\windows\system32\dllcache\winhttp.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 233472 c:\windows\system32\dllcache\webcheck.dll
+ 2009-04-07 11:21 . 2008-05-27 17:25 765952 c:\windows\system32\dllcache\vgx.dll
- 2009-04-07 11:21 . 2006-11-07 19:03 765952 c:\windows\system32\dllcache\VGX.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 105984 c:\windows\system32\dllcache\url.dll
- 2004-08-19 15:09 . 2006-10-17 10:05 105984 c:\windows\system32\dllcache\url.dll
+ 2004-08-03 22:07 . 2008-06-20 09:52 225920 c:\windows\system32\dllcache\tcpip6.sys
+ 2008-06-20 10:45 . 2008-06-20 10:45 360320 c:\windows\system32\dllcache\tcpip.sys
+ 2004-08-19 15:09 . 2008-10-03 10:17 247326 c:\windows\system32\dllcache\strmdll.dll
+ 2004-08-19 15:10 . 2009-02-09 10:08 111104 c:\windows\system32\dllcache\services.exe
- 2004-08-19 15:09 . 2004-08-19 15:09 144896 c:\windows\system32\dllcache\schannel.dll
+ 2004-08-19 15:09 . 2008-12-05 07:12 144896 c:\windows\system32\dllcache\schannel.dll
+ 2001-08-24 12:00 . 2008-05-08 12:28 202752 c:\windows\system32\dllcache\rmcast.sys
- 2004-08-19 15:09 . 2004-08-19 15:09 286208 c:\windows\system32\dllcache\pdh.dll
+ 2004-08-19 15:09 . 2009-03-06 14:46 286208 c:\windows\system32\dllcache\pdh.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 102912 c:\windows\system32\dllcache\occache.dll
+ 2004-08-19 15:09 . 2009-02-09 10:20 739840 c:\windows\system32\dllcache\ntdll.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 247808 c:\windows\system32\dllcache\mswsock.dll
+ 2004-08-19 15:09 . 2008-06-20 17:41 247808 c:\windows\system32\dllcache\mswsock.dll
+ 2006-11-07 19:03 . 2009-02-20 17:10 671232 c:\windows\system32\dllcache\mstime.dll
+ 2006-10-17 10:05 . 2009-02-20 17:10 193024 c:\windows\system32\dllcache\msrating.dll
+ 2006-11-07 19:03 . 2009-02-20 17:10 477696 c:\windows\system32\dllcache\mshtmled.dll
+ 2009-02-20 17:10 . 2009-02-20 17:10 459264 c:\windows\system32\dllcache\msfeeds.dll
+ 2008-06-12 14:18 . 2008-06-12 14:18 161792 c:\windows\system32\dllcache\msdtcuiu.dll
+ 2008-06-12 14:18 . 2008-06-12 14:18 956928 c:\windows\system32\dllcache\msdtctm.dll
+ 2008-06-12 14:18 . 2008-06-12 14:18 428032 c:\windows\system32\dllcache\msdtcprx.dll
- 2009-04-07 11:21 . 2004-08-19 15:09 331776 c:\windows\system32\dllcache\msadce.dll
+ 2009-04-07 11:21 . 2008-05-01 14:31 331776 c:\windows\system32\dllcache\msadce.dll
+ 2009-04-07 11:21 . 2009-02-28 04:54 636072 c:\windows\system32\dllcache\iexplore.exe
+ 2009-02-20 17:10 . 2009-02-20 17:10 268288 c:\windows\system32\dllcache\iertutil.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 385024 c:\windows\system32\dllcache\iedkcs32.dll
+ 2009-02-20 17:10 . 2009-02-20 17:10 383488 c:\windows\system32\dllcache\ieapfltr.dll
- 2001-08-24 12:00 . 2006-11-07 01:25 161792 c:\windows\system32\dllcache\ieakui.dll
+ 2001-08-24 12:00 . 2009-02-20 05:14 161792 c:\windows\system32\dllcache\ieakui.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 230400 c:\windows\system32\dllcache\ieaksie.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 153088 c:\windows\system32\dllcache\ieakeng.dll
+ 2008-10-23 13:00 . 2008-10-23 13:00 283648 c:\windows\system32\dllcache\gdi32.dll
+ 2009-04-07 11:19 . 2009-02-09 10:20 473088 c:\windows\system32\dllcache\fastprox.dll
+ 2006-11-07 19:03 . 2009-02-20 17:10 133120 c:\windows\system32\dllcache\extmgr.dll
+ 2008-07-07 20:31 . 2008-07-07 20:31 253952 c:\windows\system32\dllcache\es.dll
+ 2006-10-17 09:57 . 2009-02-20 17:10 214528 c:\windows\system32\dllcache\dxtrans.dll
- 2006-10-17 09:57 . 2006-10-17 09:57 214528 c:\windows\system32\dllcache\dxtrans.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 347136 c:\windows\system32\dllcache\dxtmsft.dll
+ 2004-08-19 15:09 . 2008-06-20 17:41 148992 c:\windows\system32\dllcache\dnsapi.dll
+ 2009-04-11 22:05 . 2008-06-14 17:59 272768 c:\windows\system32\dllcache\bthport.sys
+ 2004-08-03 22:14 . 2008-08-14 09:51 138368 c:\windows\system32\dllcache\afd.sys
+ 2004-08-19 15:09 . 2009-02-20 17:10 124928 c:\windows\system32\dllcache\advpack.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 685056 c:\windows\system32\dllcache\advapi32.dll
+ 2004-08-19 15:09 . 2009-02-09 10:20 685056 c:\windows\system32\dllcache\advapi32.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 100352 c:\windows\system32\dllcache\6to4svc.dll
+ 2004-08-19 15:09 . 2006-08-16 11:59 100352 c:\windows\system32\dllcache\6to4svc.dll
+ 2004-08-19 15:09 . 2009-02-20 17:10 124928 c:\windows\system32\advpack.dll
+ 2004-08-19 15:09 . 2006-08-16 11:59 100352 c:\windows\system32\6to4svc.dll
- 2004-08-19 15:09 . 2004-08-19 15:09 100352 c:\windows\system32\6to4svc.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 818688 c:\windows\ie7updates\KB963027-IE7\wininet.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 231424 c:\windows\ie7updates\KB963027-IE7\webcheck.dll
+ 2009-05-05 05:04 . 2006-10-17 10:05 105984 c:\windows\ie7updates\KB963027-IE7\url.dll
+ 2009-05-05 05:04 . 2008-07-09 07:40 406392 c:\windows\ie7updates\KB963027-IE7\spuninst\updspapi.dll
+ 2009-05-05 05:04 . 2008-07-08 13:03 234872 c:\windows\ie7updates\KB963027-IE7\spuninst\spuninst.exe
+ 2009-05-05 05:04 . 2006-10-17 10:04 101376 c:\windows\ie7updates\KB963027-IE7\occache.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 670720 c:\windows\ie7updates\KB963027-IE7\mstime.dll
+ 2009-05-05 05:04 . 2006-10-17 10:05 192000 c:\windows\ie7updates\KB963027-IE7\msrating.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 475648 c:\windows\ie7updates\KB963027-IE7\mshtmled.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 458752 c:\windows\ie7updates\KB963027-IE7\msfeeds.dll
+ 2009-05-05 05:04 . 2006-10-17 10:04 622080 c:\windows\ie7updates\KB963027-IE7\iexplore.exe
+ 2009-05-05 05:04 . 2006-10-17 09:57 266752 c:\windows\ie7updates\KB963027-IE7\iertutil.dll
+ 2009-05-05 05:04 . 2006-11-07 01:27 382976 c:\windows\ie7updates\KB963027-IE7\iedkcs32.dll
+ 2009-05-05 05:04 . 2006-10-17 09:27 380928 c:\windows\ie7updates\KB963027-IE7\ieapfltr.dll
+ 2009-05-05 05:04 . 2006-11-07 01:25 161792 c:\windows\ie7updates\KB963027-IE7\ieakui.dll
+ 2009-05-05 05:04 . 2006-11-07 01:27 229376 c:\windows\ie7updates\KB963027-IE7\ieaksie.dll
+ 2009-05-05 05:04 . 2006-11-07 01:26 152064 c:\windows\ie7updates\KB963027-IE7\ieakeng.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 131584 c:\windows\ie7updates\KB963027-IE7\extmgr.dll
+ 2009-05-05 05:04 . 2006-10-17 09:57 214528 c:\windows\ie7updates\KB963027-IE7\dxtrans.dll
+ 2009-05-05 05:04 . 2006-10-17 09:58 346624 c:\windows\ie7updates\KB963027-IE7\dxtmsft.dll
+ 2009-05-05 05:04 . 2006-11-07 01:26 123904 c:\windows\ie7updates\KB963027-IE7\advpack.dll
+ 2009-05-05 05:05 . 2006-11-07 19:03 765952 c:\windows\ie7updates\KB938127-v2-IE7\vgx.dll
+ 2009-05-05 05:05 . 2007-03-06 01:35 394976 c:\windows\ie7updates\KB938127-v2-IE7\spuninst\updspapi.dll
+ 2009-05-05 05:05 . 2007-03-06 01:34 216800 c:\windows\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe
+ 2009-05-05 03:34 . 2008-10-24 11:10 453632 c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2009-05-05 03:25 . 2008-06-14 17:59 272768 c:\windows\Driver Cache\i386\bthport.sys
+ 2009-05-05 04:03 . 2008-04-15 17:56 1724416 c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.3352_x-ww_81af8e88\GdiPlus.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 3783672 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90u.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 3768312 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90.dll
+ 2008-09-30 14:42 . 2008-09-30 14:42 1286152 c:\windows\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9870.0_x-ww_a32d74cf\msxml4.dll
+ 2009-04-07 11:21 . 2008-10-16 12:13 1809944 c:\windows\system32\wuaueng.dll
+ 2006-03-09 12:01 . 2008-06-10 05:07 2376760 c:\windows\system32\WMVCore.dll
+ 2006-04-12 09:09 . 2007-04-30 06:20 5537792 c:\windows\system32\wmp.dll
+ 2006-03-09 11:49 . 2008-06-10 04:28 1028096 c:\windows\system32\WMNetmgr.dll
+ 2006-04-12 18:13 . 2009-02-20 17:10 1160192 c:\windows\system32\urlmon.dll
+ 2006-04-26 10:15 . 2008-07-03 13:15 8510976 c:\windows\system32\shell32.dll
+ 2006-03-09 08:25 . 2008-12-20 22:43 1293824 c:\windows\system32\quartz.dll
+ 2008-08-29 18:06 . 2008-08-29 18:06 1350664 c:\windows\system32\msxml6.dll
+ 2008-09-30 14:43 . 2008-09-30 14:43 1286152 c:\windows\system32\msxml4.dll
+ 2004-08-19 15:09 . 2008-09-04 16:45 1106944 c:\windows\system32\msxml3.dll
+ 2006-04-21 16:40 . 2009-02-20 17:10 3595264 c:\windows\system32\mshtml.dll
+ 2004-08-19 15:09 . 2009-03-21 14:20 1051136 c:\windows\system32\kernel32.dll
+ 2006-11-07 19:03 . 2009-02-20 17:10 6066176 c:\windows\system32\ieframe.dll
+ 2006-09-05 21:01 . 2008-07-09 14:25 2455488 c:\windows\system32\ieapfltr.dat
+ 2009-04-07 11:21 . 2008-10-16 12:13 1809944 c:\windows\system32\dllcache\wuaueng.dll
+ 2006-03-09 11:49 . 2008-06-10 04:28 1028096 c:\windows\system32\dllcache\WMNetmgr.dll
+ 2009-02-09 14:17 . 2009-02-09 14:17 1846400 c:\windows\system32\dllcache\win32k.sys
+ 2006-11-07 19:03 . 2009-02-20 17:10 1160192 c:\windows\system32\dllcache\urlmon.dll
+ 2008-07-03 13:15 . 2008-07-03 13:15 8510976 c:\windows\system32\dllcache\shell32.dll
+ 2008-12-20 22:43 . 2008-12-20 22:43 1293824 c:\windows\system32\dllcache\quartz.dll
+ 2004-08-19 15:09 . 2008-09-04 16:45 1106944 c:\windows\system32\dllcache\msxml3.dll
+ 2006-11-07 19:03 . 2009-02-20 17:10 3595264 c:\windows\system32\dllcache\mshtml.dll
+ 2004-08-19 15:09 . 2009-03-21 14:20 1051136 c:\windows\system32\dllcache\kernel32.dll
+ 2009-02-20 17:10 . 2009-02-20 17:10 6066176 c:\windows\system32\dllcache\ieframe.dll
+ 2008-07-09 14:25 . 2008-07-09 14:25 2455488 c:\windows\system32\dllcache\ieapfltr.dat
+ 2009-05-05 05:04 . 2006-11-07 19:03 1162240 c:\windows\ie7updates\KB963027-IE7\urlmon.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 3577856 c:\windows\ie7updates\KB963027-IE7\mshtml.dll
+ 2009-05-05 05:04 . 2006-11-07 19:03 6049280 c:\windows\ie7updates\KB963027-IE7\ieframe.dll
+ 2009-05-05 05:04 . 2006-09-05 21:01 2451824 c:\windows\ie7updates\KB963027-IE7\ieapfltr.dat
+ 2009-05-05 04:47 . 2009-02-09 11:50 2182528 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2009-05-05 04:47 . 2009-02-09 11:50 2017792 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2009-05-05 04:47 . 2009-02-09 11:50 2059776 c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2009-05-05 04:47 . 2009-02-09 11:50 2138112 c:\windows\Driver Cache\i386\ntkrnlmp.exe
.
-- Instantané actualisé --
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ares"="c:\program files\Ares\Ares.exe" [2008-12-13 882176]
"Advanced SystemCare 3"="c:\program files\IObit\Advanced SystemCare 3\AWC.exe" [2009-04-07 2328200]
"SpeedBitVideoAccelerator"="c:\program files\SpeedBit Video Accelerator\VideoAccelerator.exe" [2009-04-12 2823784]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-03-20 1312256]
"msnmsgr"="c:\program files\MSN Messenger\msnmsgr.exe" [2007-01-19 5674352]
"DownloadAccelerator"=&quo
0
Réponse 96 / 105
Utilisateur anonyme
6 mai 2009 à 17:19
slt

oui j'ai vu mais son conseil etait bon tu as bien fais de le suivre , ce fichier etait infectieux :)

par contre le rapport que tu m'a reposté est toujours incomplet, il est trop long pour rentrer dans un message ici,
donc il faut l'heberger sur un site, ca va te donner un lien qu'il faut que tu nous donne, comme ca on aura le rapport complet pour l'etudier :)
fais donc cette procedure stp

a+
0
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
6 mai 2009 à 17:21
tu ne l'as pas reçu completement ?
0
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
6 mai 2009 à 18:35
salut,que signifie cela ?
0
Réponse 97 / 105
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
6 mai 2009 à 17:30
je l'ai fait mais je ne sais pas si je l'ai bien fait
0
Réponse 98 / 105
Utilisateur anonyme
6 mai 2009 à 18:32
regardes la fin du rapport posté, c'est pas bon :

"msnmsgr"="c:\program files\MSN Messenger\msnmsgr.exe" [2007-01-19 5674352]
"DownloadAccelerator"=&quo

Je l'ai fait mais je ne sais pas si je l'ai bien fait

en l'hebergeant sur cjoint ca va te donner un lien : http ... c'est ce lien qui faut me donner , en cliquant dessus on verra ton rapport en entier ;)

si t'as du mal, essaies de me l'envoyer en MP (mais l'heberger serait plus sur)
pour mp : clique sur mon pseudo et lui ecrire un message, mais meme en mp je ne suis pas sur de le voir
entier :(
0
Réponse 99 / 105
apothik08 Messages postés 155 Date d'inscription mardi 18 novembre 2008 Statut Membre Dernière intervention 20 juillet 2015
6 mai 2009 à 18:40
que dois-je faire ,désinstaller msn messenger ?
0
Réponse 100 / 105
Utilisateur anonyme
6 mai 2009 à 19:42
non pas du tout !!! c'est pour te montrer que ton rapport n'est pas complet :)
0

Discussions similaires

expressions francaises
bifaka -
lanonyme -

4 réponses
L'antivirus ESET NOD32 bloque UPTOBOX ( HTML/ScrInject.B ).
Logan -
Snoopyx -

10 réponses
Présence ou non de cheval de troie ?
hunter55 -
Malekal_morte- -

14 réponses
Nom d'une musique classique
panoramaaa -
Thierry -

9 réponses
windows defender cheval de troie
dplonguet -
Faarid.31 -

3 réponses