infections rapport de combofix (joint) Fermé

Question

Bonjour, avec le rapport c'est mieux! Cordialement ComboFix 08-11-23.01 - User 2008-11-24 8:34:27.2 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.197 [GMT 1:00] * Un nouveau point de restauration a été créé [COLOR=RED][B]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/B][/COLOR] . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\Autorun.inf c:\documents and settings\All Users\Application Data\Adsl Software Limited c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat c:\program files\SAV c:\program files\SAV\sav.ooo c:\program files\SAV\sav0.dat c:\program files\SAV\sav1.dat c:\program files\WinIFixer c:\program files\WinIFixer\database.dat c:\program files\WinIFixer\license.txt c:\program files\WinIFixer\WinIFixer.exe.local C:\resycled c:\resycled\boot.com c:\windows\cookies.ini c:\windows\rs.txt c:\windows\system32\aqcoebqa.ini c:\windows\system32\ascditvp.ini c:\windows\system32\avsdoaky.ini c:\windows\system32\ayxqfvve.ini c:\windows\system32\bbjgyvyo.ini c:\windows\system32\bjoofxbm.ini c:\windows\system32\bmrgtptl.ini c:\windows\system32\bobahtex.ini c:\windows\system32\bohvglcp.ini c:\windows\system32\botslukt.ini c:\windows\system32\buesvuhc.ini c:\windows\system32\bxdpwhoq.ini c:\windows\system32\cexyfiuh.ini c:\windows\system32\ctfmonb.bmp c:\windows\system32\dbtjqeqy.ini c:\windows\system32\dntafoko.ini c:\windows\system32\ebueuabc.ini c:\windows\system32\eciyhfns.ini c:\windows\system32\emrqbbjp.ini c:\windows\system32\eokcmijn.ini c:\windows\system32\exnyvmpa.ini c:\windows\system32\fixadakf.ini c:\windows\system32\fohokphd.ini c:\windows\system32\fykyccql.ini c:\windows\system32\gpaakgjv.ini c:\windows\system32\hhmyyeif.ini c:\windows\system32\hopjkemg.ini c:\windows\system32\idisuenc.ini c:\windows\system32\ifdmuqpe.ini c:\windows\system32\inbvarvt.ini c:\windows\system32\jcstdijg.ini c:\windows\system32\jjafhevu.ini c:\windows\system32\jksfbtbs.ini c:\windows\system32\kdtok.exe c:\windows\system32\KlRuDfhk.ini c:\windows\system32\KlRuDfhk.ini2 c:\windows\system32\ktxmpcsr.ini c:\windows\system32\kvltjwsc.ini c:\windows\system32\lfwkyvxw.ini c:\windows\system32\mayohabg.ini c:\windows\system32\mcrh.tmp c:\windows\system32\mhutorxk.ini c:\windows\system32\mtnkeifd.ini c:\windows\system32\mvdgbcsj.ini c:\windows\system32\mvsrkldp.ini c:\windows\system32\nextuhja.ini c:\windows\system32\nlfneuvg.ini c:\windows\system32\nsakexkp.ini c:\windows\system32\ojfxkfgf.ini c:\windows\system32\olubaxbt.ini c:\windows\system32\onmbmirv.ini c:\windows\system32\orodaskb.ini c:\windows\system32\ounlvbmq.ini c:\windows\system32\pcoxvyxx.ini c:\windows\system32\peffwtfk.ini c:\windows\system32\qbjnyqkf.ini c:\windows\system32\qbkfjiau.ini c:\windows\system32\qivvfurx.ini c:\windows\system32\qrugumir.ini c:\windows\system32\rpqakihu.ini c:\windows\system32\sfhmnvwn.ini c:\windows\system32\suohtvxg.ini c:\windows\system32\tbhflfss.ini c:\windows\system32\tdssinit.dll c:\windows\system32\tdssservers.dat c:\windows\system32\tkjrqpnq.ini c:\windows\system32\ugitnvkv.ini c:\windows\system32\uyvlcqcf.ini c:\windows\system32\vlsfopjb.ini c:\windows\system32\volyxxwq.ini c:\windows\system32\wekpuugk.ini c:\windows\system32\wogdjdhd.ini c:\windows\system32\xfncoimq.ini c:\windows\system32\xtjfbetx.ini c:\windows\system32\yccerysy.ini c:\windows\system32\ylfcrbty.ini c:\windows\system32\yowjlqcc.ini c:\windows\system32\ywyearns.ini ----- BITS: Il y a peut-être des sites infectés ----- hxxp://premium.virginmega.fr . ((((((((((((((((((((((((((((((((((((((( Pilotes/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_NPF -------\Legacy_TDSSSERV -------\Service_TDSSserv ((((((((((((((((((((((((((((( Fichiers créés du 2008-10-24 au 2008-11-24 )))))))))))))))))))))))))))))))))))) . 2008-11-23 18:42 . 2008-11-23 18:42 d-------- c:\program files\Trend Micro 2008-11-09 21:50 . 2008-11-09 21:50 d-------- c:\documents and settings\User\Bluetooth Software 2008-11-09 21:48 . 2008-11-09 21:48 d-------- c:\program files\Fujitsu Siemens 2008-11-09 21:47 . 2003-09-17 19:01 49,152 --a------ c:\windows\CMBTAPI.dll 2008-11-09 21:47 . 2004-03-08 22:20 28,748 --a------ c:\windows\AntSwitch.exe 2008-11-03 21:28 . 2008-11-03 21:28 d-------- c:\program files\ESTsoft 2008-11-03 21:28 . 2008-11-03 22:00 d--h----- c:\documents and settings\User\Application Data\ESTsoft 2008-11-03 20:51 . 2008-11-04 08:12 d-------- c:\program files\7-Zip 2008-11-03 18:11 . 2008-11-03 19:09 36,363 --a------ c:\windows\CSTBox.INI 2008-11-03 11:20 . 2008-11-03 11:20 d--h----- c:\documents and settings\User\Application Data\Canon 2008-11-03 11:18 . 2004-08-03 22:58 15,104 --a------ c:\windows\system32\drivers\usbscan.sys 2008-11-03 11:18 . 2004-08-03 22:58 15,104 --a--c--- c:\windows\system32\dllcache\usbscan.sys 2008-11-03 11:15 . 2008-11-03 11:15 d-------- c:\program files\Canon 2008-11-03 11:13 . 2008-11-03 11:13 d--h----- C:\CanoScan 2008-11-03 11:13 . 2005-06-23 22:17 352,256 --a------ c:\windows\system32\CNQL1213.DLL 2008-11-03 11:13 . 2005-02-28 13:20 57,344 --a------ c:\windows\system32\CNQU110.DLL 2008-10-25 20:02 . 2008-10-25 20:02 d-------- c:\program files\Microsoft SQL Server Compact Edition 2008-10-25 19:56 . 2008-10-25 20:01 d-------- c:\program files\Windows Live 2008-10-24 12:59 . 2008-10-24 12:59 d-------- c:\program files\IP Scanner . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-11-23 20:01 --------- d-----w c:\program files\Yahoo! 2008-11-23 16:38 --------- d-----w c:\program files\Spybot - Search & Destroy 2008-11-23 15:42 --------- d-----w c:\program files\Navilog1 2008-11-03 10:15 --------- d--h--w c:\program files\InstallShield Installation Information 2008-10-31 15:14 --------- d-----w c:\documents and settings\All Users\Application Data\Downloaded Installations 2008-10-25 19:28 --------- d-----w c:\documents and settings\All Users\Application Data\WLInstaller 2008-10-16 18:25 --------- d-----w c:\program files\Picasa2 2008-10-14 16:35 --------- d-----w c:\program files\Google 2008-10-13 20:01 --------- d-----w c:\program files\Java 2008-10-10 06:40 --------- d-----w c:\program files\Symantec 2008-10-10 06:39 73,224 ----a-w c:\windows\system32\drivers\SYMEVENT.SYS 2008-10-10 06:39 --------- d-----w c:\program files\Fichiers communs\Symantec Shared 2008-10-09 19:26 --------- d-----w c:\program files\Symantec AntiVirus 2008-10-09 19:26 --------- d-----w c:\documents and settings\All Users\Application Data\Symantec 2008-10-09 19:02 --------- d-----w c:\program files\VirginMega 2008-10-09 19:02 --------- d-----w c:\program files\UPHClean 2008-10-09 19:00 --------- d-----w c:\program files\MSECache 2008-10-09 19:00 --------- d-----w c:\documents and settings\All Users\Application Data\Malwarebytes 2008-10-09 15:35 --------- d-----w c:\program files\Symantec_Client_Security 2008-05-14 04:49 0 ----a-w c:\program files\uninstall.dat 2008-04-06 08:17 15,397 ----a-w c:\program files\settings.dat . ((((((((((((((((((((((((((((( snapshot@2008-05-05_20.49.32.86 ))))))))))))))))))))))))))))))))))))))))) . + 2008-02-26 11:49:32 297,984 ----a-w c:\windows\$hf_mig$\KB932823-v3\SP2QFE\msctf.dll + 2007-03-06 01:34:33 15,072 ----a-w c:\windows\$hf_mig$\KB932823-v3\spmsg.dll + 2007-03-06 01:34:38 216,800 ----a-w c:\windows\$hf_mig$\KB932823-v3\spuninst.exe + 2007-03-06 01:34:31 22,752 ----a-w c:\windows\$hf_mig$\KB932823-v3\update\spcustom.dll + 2007-03-06 01:34:56 727,776 ----a-w c:\windows\$hf_mig$\KB932823-v3\update\update.exe + 2007-03-06 01:35:48 394,976 ----a-w c:\windows\$hf_mig$\KB932823-v3\update\updspapi.dll + 2008-05-27 17:31:29 765,952 ----a-w c:\windows\$hf_mig$\KB938127-v2-IE7\SP2QFE\vgx.dll + 2007-03-06 01:34:33 15,072 ----a-w c:\windows\$hf_mig$\KB938127-v2-IE7\spmsg.dll + 2007-03-06 01:34:38 216,800 ----a-w c:\windows\$hf_mig$\KB938127-v2-IE7\spuninst.exe + 2007-03-06 01:34:31 22,752 ----a-w c:\windows\$hf_mig$\KB938127-v2-IE7\update\spcustom.dll + 2007-03-06 01:34:56 727,776 ----a-w c:\windows\$hf_mig$\KB938127-v2-IE7\update\update.exe + 2007-03-06 01:35:47 394,976 ----a-w c:\windows\$hf_mig$\KB938127-v2-IE7\update\updspapi.dll + 2007-11-30 12:39:29 18,296 ----a-w c:\windows\$hf_mig$\KB938464\spmsg.dll + 2007-11-30 12:39:29 234,872 ----a-w c:\windows\$hf_mig$\KB938464\spuninst.exe + 2007-11-30 12:39:29 26,488 ----a-w c:\windows\$hf_mig$\KB938464\update\spcustom.dll + 2007-11-30 11:19:06 767,352 ----a-w c:\windows\$hf_mig$\KB938464\update\update.exe + 2007-11-30 12:39:31 406,392 ----a-w c:\windows\$hf_mig$\KB938464\update\updspapi.dll + 2008-01-23 04:56:21 554,008 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\dao360.dll + 2007-12-10 12:41:11 518,944 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msexch40.dll + 2007-12-10 12:41:11 326,432 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msexcl40.dll + 2007-12-10 12:41:11 1,516,568 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msjet40.dll + 2007-12-10 12:41:11 355,112 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msjetol1.dll + 2008-03-25 06:56:31 194,144 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msjint40.dll + 2007-12-10 12:41:12 60,192 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msjter40.dll + 2007-12-10 12:41:12 248,608 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msjtes40.dll + 2007-12-10 12:41:12 219,936 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msltus40.dll + 2007-12-10 12:41:12 355,104 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\mspbde40.dll + 2007-12-10 12:41:13 432,928 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msrd2x40.dll + 2007-12-10 12:41:13 322,336 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msrd3x40.dll + 2007-12-10 12:41:13 559,904 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msrepl40.dll + 2007-12-10 12:41:13 264,992 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\mstext40.dll + 2007-12-10 12:41:13 838,432 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\mswdat10.dll + 2007-11-01 05:15:27 621,344 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\mswstr10.dll + 2007-12-10 12:41:14 355,104 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msxbde40.dll + 2007-03-06 01:34:33 15,072 ----a-w c:\windows\$hf_mig$\KB950749\spmsg.dll + 2007-03-06 01:34:38 216,800 ----a-w c:\windows\$hf_mig$\KB950749\spuninst.exe + 2007-03-06 01:34:31 22,752 ----a-w c:\windows\$hf_mig$\KB950749\update\spcustom.dll + 2007-03-06 01:34:56 727,776 ----a-w c:\windows\$hf_mig$\KB950749\update\update.exe + 2007-03-06 01:35:48 394,976 ----a-w c:\windows\$hf_mig$\KB950749\update\updspapi.dll + 2008-05-08 12:14:51 203,008 ----a-w c:\windows\$hf_mig$\KB950762\SP2QFE\rmcast.sys + 2008-05-08 14:02:52 203,136 ----a-w c:\windows\$hf_mig$\KB950762\SP3GDR\rmcast.sys + 2008-05-08 13:58:17 203,136 ----a-w c:\windows\$hf_mig$\KB950762\SP3QFE\rmcast.sys + 2007-11-30 12:39:29 18,296 ----a-w c:\windows\$hf_mig$\KB950762\spmsg.dll + 2007-11-30 12:39:29 234,872 ----a-w c:\windows\$hf_mig$\KB950762\spuninst.exe + 2007-11-30 12:39:29 26,488 ----a-w c:\windows\$hf_mig$\KB950762\update\spcustom.dll + 2007-11-30 12:39:29 767,352 ----a-w c:\windows\$hf_mig$\KB950762\update\update.exe + 2007-11-30 12:39:31 406,392 ----a-w c:\windows\$hf_mig$\KB950762\update\updspapi.dll + 2008-07-07 20:18:27 253,952 ----a-w c:\windows\$hf_mig$\KB950974\SP2QFE\es.dll + 2008-07-07 20:28:20 253,952 ----a-w c:\windows\$hf_mig$\KB950974\SP3GDR\es.dll + 2008-07-07 20:24:11 253,952 ----a-w c:\windows\$hf_mig$\KB950974\SP3QFE\es.dll + 2007-11-30 12:39:29 18,296 ----a-w c:\windows\$hf_mig$\KB950974\spmsg.dll + 2007-11-30 12:39:29 234,872 ----a-w c:\windows\$hf_mig$\KB950974\spuninst.exe + 2007-11-30 12:39:29 26,488 ----a-w c:\windows\$hf_mig$\KB950974\update\spcustom.dll + 2007-11-30 12:39:26 767,352 ----a-w c:\windows\$hf_mig$\KB950974\update\update.exe + 2007-11-30 12:39:29 406,392 ----a-w c:\windows\$hf_mig$\KB950974\update\updspapi.dll + 2008-04-11 18:40:33 683,520 ----a-w c:\windows\$hf_mig$\KB951066\SP2QFE\inetcomm.dll + 2008-04-11 19:05:22 691,712 ----a-w c:\windows\$hf_mig$\KB951066\SP3GDR\inetcomm.dll + 2008-04-11 22:23:04 691,712 ----a-w c:\windows\$hf_mig$\KB951066\SP3QFE\inetcomm.dll + 2007-11-30 12:39:29 18,296 ----a-w c:\windows\$hf_mig$\KB951066\spmsg.dll + 2007-11-30 12:39:29 234,872 ----a-w c:\windows\$hf_mig$\KB951066\spuninst.exe + 2007-11-30 12:39:29 26,488 ----a-w c:\windows\$hf_mig$\KB951066\update\spcustom.dll + 2007-12-03 15:25:43 767,352 ----a-w c:\windows\$hf_mig$\KB951066\update\update.exe + 2007-11-30 12:39:31 406,392 ----a-w c:\windows\$hf_mig$\KB951066\update\updspapi.dll + 2008-07-14 11:03:00 62,976 ----a-w c:\windows\$hf_mig$\KB951072-v2\SP2QFE\tzchange.exe + 2008-07-11 12:42:28 62,976 ----a-w c:\windows\$hf_mig$\KB951072-v2\SP3GDR\tzchange.exe + 2008-07-11 12:51:51 62,976 ----a-w c:\windows\$hf_mig$\KB951072-v2\SP3QFE\tzchange.exe + 2007-11-30 11:19:06 18,296 ----a-w c:\windows\$hf_mig$\KB951072-v2\spmsg.dll + 2007-11-30 11:19:06 234,872 ----a-w c:\windows\$hf_mig$\KB951072-v2\spuninst.exe + 2007-11-30 11:19:06 26,488 ----a-w c:\windows\$hf_mig$\KB951072-v2\update\spcustom.dll + 2007-11-30 12:39:29 767,352 ----a-w c:\windows\$hf_mig$\KB951072-v2\update\update.exe + 2007-11-30 12:39:31 406,392 ----a-w c:\windows\$hf_mig$\KB951072-v2\update\updspapi.dll + 2008-06-14 18:03:13 272,768 ----a-w c:\windows\$hf_mig$\KB951376-v2\SP2QFE\bthport.sys + 2008-06-14 17:33:37 272,768 ----a-w c:\windows\$hf_mig$\KB951376-v2\SP3GDR\bthport.sys + 2008-06-14 17:40:19 272,768 ----a-w c:\windows\$hf_mig$\KB951376-v2\SP3QFE\bthport.sys + 2007-11-30 11:19:06 18,296 ----a-w c:\windows\$hf_mig$\KB951376-v2\spmsg.dll + 2007-11-30 11:19:06 234,872 ----a-w c:\windows\$hf_mig$\KB951376-v2\spuninst.exe + 2007-11-30 11:19:06 26,488 ----a-w c:\windows\$hf_mig$\KB951376-v2\update\spcustom.dll + 2007-11-30 11:19:06 767,352 ----a-w c:\windows\$hf_mig$\KB951376-v2\update\update.exe + 2007-11-30 11:19:10 406,392 ----a-w c:\windows\$hf_mig$\KB951376-v2\update\updspapi.dll + 2008-05-07 04:55:47 1,294,336 ----a-w c:\windows\$hf_mig$\KB951698\SP2QFE\quartz.dll + 2008-05-07 05:11:24 1,294,336 ----a-w c:\windows\$hf_mig$\KB951698\SP3GDR\quartz.dll + 2008-05-07 05:04:59 1,294,336 ----a-w c:\windows\$hf_mig$\KB951698\SP3QFE\quartz.dll + 2007-11-30 11:19:06 18,296 ----a-w c:\windows\$hf_mig$\KB951698\spmsg.dll + 2007-11-30 11:19:06 234,872 ----a-w c:\windows\$hf_mig$\KB951698\spuninst.exe + 2007-11-30 11:19:06 26,488 ----a-w c:\windows\$hf_mig$\KB951698\update\spcustom.dll + 2007-11-30 12:39:29 767,352 ----a-w c:\windows\$hf_mig$\KB951698\update\update.exe + 2007-11-30 12:39:31 406,392 ----a-w c:\windows\$hf_mig$\KB951698\update\updspapi.dll + 2006-08-16 12:13:24 100,352 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\6to4svc.dll + 2008-06-20 10:44:08 138,368 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\afd.sys + 2008-06-20 17:37:01 147,968 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\dnsapi.dll + 2008-06-20 17:37:01 247,808 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\mswsock.dll + 2008-06-20 10:44:42 360,960 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\tcpip.sys + 2008-06-20 09:32:39 225,920 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\tcpip6.sys + 2008-06-20 11:40:08 138,496 ----a-w c:\windows\$hf_mig$\KB951748\SP3GDR\afd.sys + 2008-06-20 17:47:22 147,968 ----a-w c:\windows\$hf_mig$\KB951748\SP3GDR\dnsapi.dll + 2008-06-20 17:47:22 247,808 ----a-w c:\windows\$hf_mig$\KB951748\SP3GDR\mswsock.dll + 2008-06-20 11:51:12 361,600 ----a-w c:\windows\$hf_mig$\KB951748\SP3GDR\tcpip.sys + 2008-06-20 11:08:27 225,856 ----a-w c:\windows\$hf_mig$\KB951748\SP3GDR\tcpip6.sys + 2008-06-20 11:48:03 138,496 ----a-w c:\windows\$hf_mig$\KB951748\SP3QFE\afd.sys + 2008-06-20 17:44:02 147,968 ----a-w c:\windows\$hf_mig$\KB951748\SP3QFE\dnsapi.dll + 2008-06-20 17:44:02 247,808 ----a-w c:\windows\$hf_mig$\KB951748\SP3QFE\mswsock.dll + 2008-06-20 11:59:02 361,600 ----a-w c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys + 2008-06-20 11:16:44 225,856 ----a-w c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip6.sys + 2007-11-30 12:39:29 18,296 ----a-w c:\windows\$hf_mig$\KB951748\spmsg.dll + 2007-11-30 12:39:29 234,872 ----a-w c:\windows\$hf_mig$\KB951748\spuninst.exe + 2007-11-30 12:39:29 26,488 ----a-w c:\windows\$hf_mig$\KB951748\update\spcustom.dll + 2007-11-30 12:39:26 767,352 ----a-w c:\windows\$hf_mig$\KB951748\update\update.exe + 2007-11-30 12:39:29 406,392 ----a-w c:\windows\$hf_mig$\KB951748\update\updspapi.dll + 2008-05-01 15:04:51 331,776 ----a-w c:\windows\$hf_mig$\KB952287\SP2QFE\msadce.dll + 2008-05-01 14:36:26 331,776 ----a-w c:\windows\$hf_mig$\KB952287\SP3GDR\msadce.dll + 2008-05-01 14:39:23 331,776 ----a-w c:\windows\$hf_mig$\KB952287\SP3QFE\msadce.dll + 2007-11-30 11:19:06 18,296 ----a-w c:\windows\$hf_mig$\KB952287\spmsg.dll + 2007-11-30 11:19:06 234,872 ----a-w c:\windows\$hf_mig$\KB952287\spuninst.exe + 2007-11-30 11:19:06 26,488 ----a-w c:\windows\$hf_mig$\KB952287\update\spcustom.dll + 2007-11-30 11:19:06 767,352 ----a-w c:\windows\$hf_mig$\KB952287\update\update.exe + 2007-11-30 11:19:10 406,392 ----a-w c:\windows\$hf_mig$\KB952287\update\updspapi.dll + 2008-06-24 16:30:27 74,240 ----a-w c:\windows\$hf_mig$\KB952954\SP2QFE\mscms.dll + 2008-06-24 16:44:02 74,240 ----a-w c:\windows\$hf_mig$\KB952954\SP3GDR\mscms.dll + 2008-06-24 16:53:52 74,240 ----a-w c:\windows\$hf_mig$\KB952954\SP3QFE\mscms.dll + 2007-11-30 11:19:06 18,296 ----a-w c:\windows\$hf_mig$\KB952954\spmsg.dll + 2007-11-30 11:19:06 234,872 ----a-w c:\windows\$hf_mig$\KB952954\spuninst.exe + 2007-11-30 11:19:06 26,488 ----a-w c:\windows\$hf_mig$\KB952954\update\spcustom.dll + 2007-11-30 12:39:29 767,352 ----a-w c:\windows\$hf_mig$\KB952954\update\update.exe + 2007-11-30 12:39:31 406,392 ----a-w c:\windows\$hf_mig$\KB952954\update\updspapi.dll + 2008-06-23 15:40:01 124,928 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\advpack.dll + 2008-06-23 15:40:01 347,136 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\dxtmsft.dll + 2008-06-23 15:40:01 214,528 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\dxtrans.dll + 2008-06-23 15:40:01 132,608 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\extmgr.dll + 2008-06-23 15:40:01 63,488 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\icardie.dll + 2008-06-23 08:23:18 70,656 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\ie4uinit.exe + 2008-06-23 15:40:01 153,088 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\ieakeng.dll + 2008-06-23 15:40:01 230,400 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\ieaksie.dll + 2008-06-21 05:23:53 161,792 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\ieakui.dll + 2007-04-17 09:32:38 2,455,488 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\ieapfltr.dat + 2008-06-23 15:40:02 383,488 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\ieapfltr.dll + 2008-06-23 15:40:02 388,608 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\iedkcs32.dll + 2008-06-23 15:40:04 6,068,736 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\ieframe.dll + 2008-06-23 15:40:04 44,544 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\iernonce.dll + 2008-06-23 15:40:04 267,776 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\iertutil.dll + 2008-06-23 08:23:18 13,824 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\ieudinit.exe + 2008-06-23 08:23:52 625,664 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\iexplore.exe + 2008-06-23 15:40:05 27,648 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\jsproxy.dll + 2008-06-23 15:40:05 459,264 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\msfeeds.dll + 2008-06-23 15:40:05 52,224 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\msfeedsbs.dll + 2008-06-23 15:40:07 3,594,240 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\mshtml.dll + 2008-06-23 15:40:07 477,696 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\mshtmled.dll + 2008-06-23 15:40:07 193,024 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\msrating.dll + 2008-06-23 15:40:07 671,232 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\mstime.dll + 2008-06-23 15:40:07 102,912 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\occache.dll + 2008-06-23 15:40:07 44,544 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\pngfilt.dll + 2008-06-23 15:40:07 105,984 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\url.dll + 2008-06-23 15:40:08 1,162,752 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\urlmon.dll + 2008-06-23 15:40:08 233,472 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\webcheck.dll + 2008-06-23 15:40:08 827,904 ----a-w c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\wininet.dll + 2007-03-06 01:34:33 15,072 ----a-w c:\windows\$hf_mig$\KB953838-IE7\spmsg.dll + 2007-03-06 01:34:38 216,800 ----a-w c:\windows\$hf_mig$\KB953838-IE7\spuninst.exe + 2007-03-06 01:34:31 22,752 ----a-w c:\windows\$hf_mig$\KB953838-IE7\update\spcustom.dll + 2007-03-06 01:34:56 727,776 ----a-w c:\windows\$hf_mig$\KB953838-IE7\update\update.exe + 2007-03-06 01:35:48 394,976 ----a-w c:\windows\$hf_mig$\KB953838-IE7\update\updspapi.dll + 2007-11-30 11:19:06 18,296 ----a-w c:\windows\$hf_mig$\KB953839\spmsg.dll + 2007-11-30 11:19:06 234,872 ----a-w c:\windows\$hf_mig$\KB953839\spuninst.exe + 2007-11-30 11:19:06 26,488 ----a-w c:\windows\$hf_mig$\KB953839\update\spcustom.dll + 2007-11-30 11:19:06 767,352 ----a-w c:\windows\$hf_mig$\KB953839\update\update.exe + 2007-11-30 11:19:10 406,392 ----a-w c:\windows\$hf_mig$\KB953839\update\updspapi.dll + 2008-09-15 15:14:42 1,847,040 ----a-w c:\windows\$hf_mig$\KB954211\SP2QFE\win32k.sys + 2008-09-15 15:26:07 1,846,528 ----a-w c:\windows\$hf_mig$\KB954211\SP3GDR\win32k.sys + 2008-09-15 15:20:39 1,847,040 ----a-w c:\windows\$hf_mig$\KB954211\SP3QFE\win32k.sys + 2007-11-30 12:39:29 18,296 ----a-w c:\windows\$hf_mig$\KB954211\spmsg.dll + 2007-11-30 12:39:29 234,872 ----a-w c:\windows\$hf_mig$\KB954211\spuninst.exe + 2007-11-30 12:39:29 26,488 ----a-w c:\windows\$hf_mig$\KB954211\update\spcustom.dll + 2008-07-09 07:40:26 767,352 ----a-w c:\windows\$hf_mig$\KB954211\update\update.exe + 2007-11-30 12:39:31 406,392 ----a-w c:\windows\$hf_mig$\KB954211\update\updspapi.dll + 2008-08-26 09:10:25 124,928 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\advpack.dll + 2008-08-26 09:10:25 347,136 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\dxtmsft.dll + 2008-08-26 09:10:25 214,528 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\dxtrans.dll + 2008-08-26 09:10:25 132,608 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\extmgr.dll + 2008-08-26 09:10:25 63,488 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\icardie.dll + 2008-08-25 08:43:21 70,656 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ie4uinit.exe + 2008-08-26 09:10:26 153,088 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieakeng.dll + 2008-08-26 09:10:26 230,400 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieaksie.dll + 2008-08-23 05:54:50 161,792 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieakui.dll + 2007-04-17 09:32:38 2,455,488 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieapfltr.dat + 2008-08-26 09:10:26 380,928 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieapfltr.dll + 2008-08-26 09:10:26 388,608 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\iedkcs32.dll + 2008-10-03 16:22:30 6,068,224 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieframe.dll + 2008-08-26 09:10:27 44,544 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\iernonce.dll + 2008-08-26 09:10:27 267,776 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\iertutil.dll + 2008-08-25 08:43:21 13,824 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\ieudinit.exe + 2008-08-23 05:56:16 635,848 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\iexplore.exe + 2008-08-26 09:10:27 27,648 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\jsproxy.dll + 2008-08-26 09:10:27 459,264 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\msfeeds.dll + 2008-08-26 09:10:27 52,224 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\msfeedsbs.dll + 2008-08-26 09:10:28 3,594,752 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\mshtml.dll + 2008-08-26 09:10:28 477,696 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\mshtmled.dll + 2008-08-26 09:10:28 193,024 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\msrating.dll + 2008-08-26 09:10:29 671,232 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\mstime.dll + 2008-08-26 09:10:29 102,912 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\occache.dll + 2008-08-26 09:10:29 44,544 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\pngfilt.dll + 2008-08-26 09:10:29 105,984 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\url.dll + 2008-08-26 09:10:29 1,162,752 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\urlmon.dll + 2008-08-26 09:10:29 233,472 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\webcheck.dll + 2008-08-26 09:10:29 827,904 ----a-w c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\wininet.dll + 2007-03-06 01:34:33 15,072 ----a-w c:\windows\$hf_mig$\KB956390-IE7\spmsg.dll + 2007-03-06 01:34:38 216,800 ----a-w c:\windows\$hf_mig$\KB956390-IE7\spuninst.exe + 2007-03-06 01:34:31 22,752 ----a-w c:\windows\$hf_mig$\KB956390-IE7\update\spcustom.dll + 2007-03-06 01:34:56 727,776 ----a-w c:\windows\$hf_mig$\KB956390-IE7\update\update.exe + 2007-03-06 01:35:48 394,976 ----a-w c:\windows\$hf_mig$\KB956390-IE7\update\updspapi.dll + 2007-11-30 12:39:29 18,296 ----a-w c:\windows\$hf_mig$\KB956391\spmsg.dll + 2007-11-30 12:39:29 234,872 ----a-w c:\windows\$hf_mig$\KB956391\spuninst.exe + 2007-11-30 12:39:29 26,488 ----a-w c:\windows\$hf_mig$\KB956391\update\spcustom.dll + 2007-11-30 12:39:29 767,352 ----a-w c:\windows\$hf_mig$\KB956391\update\update.exe + 2007-11-30 12:39:31 406,392 ----a-w c:\windows\$hf_mig$\KB956391\update\updspapi.dll + 2008-08-14 09:48:52 138,368 ----a-w c:\windows\$hf_mig$\KB956803\SP2QFE\afd.sys + 2008-08-14 10:04:36 138,496 ----a-w c:\windows\$hf_mig$\KB956803\SP3GDR\afd.sys + 2008-08-14 10:34:26 138,496 ----a-w c:\windows\$hf_mig$\KB956803\SP3QFE\afd.sys + 2007-11-30 11:19:06 18,296 ----a-w c:\windows\$hf_mig$\KB956803\spmsg.dll + 2007-11-30 11:19:06 234,872 ----a-w c:\windows\$hf_mig$\KB956803\spuninst.exe + 2007-11-30 11:19:06 26,488 ----a-w c:\windows\$hf_mig$\KB956803\update\spcustom.dll + 2007-11-30 11:19:06 767,352 ----a-w c:\windows\$hf_mig$\KB956803\update\update.exe + 2007-11-30 11:19:10 406,392 ----a-w c:\windows\$hf_mig$\KB956803\update\updspapi.dll + 2008-08-14 13:39:07 2,144,768 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntkrnlmp.exe + 2008-08-14 13:39:12 2,065,024 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntkrnlpa.exe + 2008-08-14 13:39:03 2,022,912 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntkrpamp.exe + 2008-08-14 13:39:11 2,188,032 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntoskrnl.exe + 2008-08-14 13:23:44 2,147,328 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrnlmp.exe + 2008-08-14 13:23:49 2,068,096 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrnlpa.exe + 2008-08-14 13:23:44 2,025,984 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrpamp.exe + 2008-08-14 13:23:49 2,191,232 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntoskrnl.exe + 2008-08-14 13:55:54 2,147,328 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrnlmp.exe + 2008-08-14 17:26:00 2,068,096 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrnlpa.exe + 2008-08-14 13:55:47 2,025,984 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrpamp.exe + 2008-08-14 17:26:02 2,191,232 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe + 2007-11-30 11:19:06 18,296 ----a-w c:\windows\$hf_mig$\KB956841\spmsg.dll + 2007-11-30 11:19:06 234,872 ----a-w c:\windows\$hf_mig$\KB956841\spuninst.exe + 2007-11-30 11:19:06 26,488 ----a-w c:\windows\$hf_mig$\KB956841\update\spcustom.dll + 2007-11-30 12:39:29 767,352 ----a-w c:\windows\$hf_mig$\KB956841\update\update.exe + 2008-07-09 07:40:35 406,392 ----a-w c:\windows\$hf_mig$\KB956841\update\updspapi.dll + 2008-08-28 10:35:33 333,056 ----a-w c:\windows\$hf_mig$\KB957095\SP2QFE\srv.sys + 2008-09-08 10:41:42 333,824 ----a-w c:\windows\$hf_mig$\KB957095\SP3GDR\srv.sys + 2008-09-08 11:37:19 333,824 ----a-w c:\windows\$hf_mig$\KB957095\SP3QFE\srv.sys + 2007-11-30 11:19:06 18,296 ----a-w c:\windows\$hf_mig$\KB957095\spmsg.dll + 2007-11-30 11:19:06 234,872 ----a-w c:\windows\$hf_mig$\KB957095\spuninst.exe + 2007-11-30 11:19:06 26,488 ----a-w c:\windows\$hf_mig$\KB957095\update\spcustom.dll + 2007-11-30 11:19:06 767,352 ----a-w c:\windows\$hf_mig$\KB957095\update\update.exe + 2007-11-30 11:19:10 406,392 ----a-w c:\windows\$hf_mig$\KB957095\update\updspapi.dll + 2004-08-05 12:00:00 294,400 -c----w c:\windows\$NtUninstallKB932823-v3$\msctf.dll + 2007-03-06 01:34:38 216,800 -c----w c:\windows\$NtUninstallKB932823-v3$\spuninst\spuninst.exe + 2007-03-06 01:35:48 394,976 -c----w c:\windows\$NtUninstallKB932823-v3$\spuninst\updspapi.dll + 2007-11-30 12:39:29 234,872 -c----w c:\windows\$NtUninstallKB938464$\spuninst\spuninst.exe + 2007-11-30 12:39:31 406,392 -c----w c:\windows\$NtUninstallKB938464$\spuninst\updspapi.dll + 2004-08-05 12:00:00 561,179 -c----w c:\windows\$NtUninstallKB950749$\dao360.dll + 2004-08-05 12:00:00 512,029 -c----w c:\windows\$NtUninstallKB950749$\msexch40.dll + 2004-08-05 12:00:00 319,517 -c----w c:\windows\$NtUninstallKB950749$\msexcl40.dll + 2004-08-05 12:00:00 1,507,356 -c----w c:\windows\$NtUninstallKB950749$\msjet40.dll + 2004-08-05 12:00:00 358,976 -c----w c:\windows\$NtUninstallKB950749$\msjetol1.dll + 2004-08-05 12:00:00 358,976 -c----w c:\windows\$NtUninstallKB950749$\msjetoledb40.dll + 2004-08-05 12:00:00 184,351 -c----w c:\windows\$NtUninstallKB950749$\msjint40.dll + 2004-08-05 12:00:00 53,279 -c----w c:\windows\$NtUninstallKB950749$\msjter40.dll + 2004-08-05 12:00:00 241,693 -c----w c:\windows\$NtUninstallKB950749$\msjtes40.dll + 2004-08-05 12:00:00 213,023 -c----w c:\windows\$NtUninstallKB950749$\msltus40.dll + 2004-08-05 12:00:00 348,189 -c----w c:\windows\$NtUninstallKB950749$\mspbde40.dll + 2004-08-05 12:00:00 421,919 -c----w c:\windows\$NtUninstallKB950749$\msrd2x40.dll + 2004-08-05 12:00:00 315,423 -c----w c:\windows\$NtUninstallKB950749$\msrd3x40.dll + 2004-08-05 12:00:00 552,989 -c----w c:\windows\$NtUninstallKB950749$\msrepl40.dll + 2004-08-05 12:00:00 258,077 -c----w c:\windows\$NtUninstallKB950749$\mstext40.dll + 2004-08-05 12:00:00 831,519 -c----w c:\windows\$NtUninstallKB950749$\mswdat10.dll + 2004-08-05 12:00:00 614,429 -c----w c:\windows\$NtUninstallKB950749$\mswstr10.dll + 2004-08-05 12:00:00 348,189 -c----w c:\windows\$NtUninstallKB950749$\msxbde40.dll + 2007-03-06 01:34:38 216,800 -c----w c:\windows\$NtUninstallKB950749$\spuninst\spuninst.exe + 2007-03-06 01:35:48 394,976 -c----w c:\windows\$NtUninstallKB950749$\spuninst\updspapi.dll + 2006-07-13 08:48:58 202,240 -c----w c:\windows\$NtUninstallKB950762$\rmcast.sys + 2007-11-30 12:39:29 234,872 -c----w c:\windows\$NtUninstallKB950762$\spuninst\spuninst.exe + 2007-11-30 12:39:31 406,392 -c----w c:\windows\$NtUninstallKB950762$\spuninst\updspapi.dll + 2005-07-26 04:39:57 243,200 -c----w c:\windows\$NtUninstallKB950974$\es.dll + 2007-11-30 12:39:29 234,872 -c----w c:\windows\$NtUninstallKB950974$\spuninst\spuninst.exe + 2007-11-30 12:39:29 406,392 -c----w c:\windows\$NtUninstallKB950974$\spuninst\updspapi.dll + 2007-08-21 06:17:23 683,520 -c----w c:\windows\$NtUninstallKB951066$\inetcomm.dll + 2007-11-30 12:39:29 234,872 -c----w c:\windows\$NtUninstallKB951066$\spuninst\spuninst.exe + 2007-11-30 12:39:31 406,392 -c----w c:\windows\$NtUninstallKB951066$\spuninst\updspapi.dll + 2007-11-30 11:19:06 234,872 -c----w c:\windows\$NtUninstallKB951072-v2$\spuninst\spuninst.exe + 2007-11-30 12:39:31 406,392 -c----w c:\windows\$NtUninstallKB951072-v2$\spuninst\updspapi.dll + 2007-11-13 11:31:11 60,416 -c----w c:\windows\$NtUninstallKB951072-v2$\tzchange.exe + 2007-11-30 11:19:06 234,872 -c----w c:\windows\$NtUninstallKB951376-v2$\spuninst\spuninst.exe + 2007-11-30 11:19:10 406,392 -c----w c:\windows\$NtUninstallKB951376-v2$\spuninst\updspapi.dll + 2007-10-29 22:43:32 1,293,824 -c----w c:\windows\$NtUninstallKB951698$\quartz.dll + 2007-11-30 11:19:06 234,872 -c----w c:\windows\$NtUninstallKB951698$\spuninst\spuninst.exe + 2007-11-30 12:39:31 406,392 -c----w c:\windows\$NtUninstallKB951698$\spuninst\updspapi.dll + 2004-08-05 12:00:00 138,496 -c----w c:\windows\$NtUninstallKB951748$\afd.sys + 2008-02-20 05:35:05 148,992 -c----w c:\windows\$NtUninstallKB951748$\dnsapi.dll + 2004-08-05 12:00:00 247,808 -c----w c:\windows\$NtUninstallKB951748$\mswsock.dll + 2007-11-30 12:39:29 234,872 -c----w c:\windows\$NtUninstallKB951748$\spuninst\spuninst.exe + 2007-11-30 12:39:29 406,392 -c----w c:\windows\$NtUninstallKB951748$\spuninst\updspapi.dll + 2007-10-30 17:20:55 360,064 -c----w c:\windows\$NtUninstallKB951748$\tcpip.sys + 2006-08-16 09:37:30 225,664 -c----w c:\windows\$NtUninstallKB951748$\tcpip6.sys + 2004-08-05 12:00:00 331,776 -c----w c:\windows\$NtUninstallKB952287$\msadce.dll + 2007-11-30 11:19:06 234,872 -c----w c:\windows\$NtUninstallKB952287$\spuninst\spuninst.exe + 2007-11-30 11:19:10 406,392 -c----w c:\windows\$NtUninstallKB952287$\spuninst\updspapi.dll + 2005-06-29 01:49:41 74,240 -c----w c:\windows\$NtUninstallKB952954$\mscms.dll + 2007-11-30 11:19:06 234,872 -c----w c:\windows\$NtUninstallKB952954$\spuninst\spuninst.exe + 2007-11-30 12:39:31 406,392 -c----w c:\windows\$NtUninstallKB952954$\spuninst\updspapi.dll + 2007-11-30 11:19:06 234,872 -c----w c:\windows\$NtUninstallKB953839$\spuninst\spuninst.exe + 2007-11-30 11:19:10 406,392 -c----w c:\windows\$NtUninstallKB953839$\spuninst\updspapi.dll + 2007-07-27 06:28:58 234,872 -c----w c:\windows\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe + 2007-07-27 08:41:48 382,840 -c----w c:\windows\$NtUninstallKB954154_WM11$\spuninst\updspapi.dll + 2006-10-18 20:47:20 295,936 -c----w c:\windows\$NtUninstallKB954154_WM11$\wmpeffects.dll + 2007-11-30 12:39:29 234,872 -c----w c:\windows\$NtUninstallKB954211$\spuninst\spuninst.exe + 2007-11-30 12:39:31 406,392 -c----w c:\windows\$NtUninstallKB954211$\spuninst\updspapi.dll + 2008-03-20 08:09:22 1,845,376 -c----w c:\windows\$NtUninstallKB954211$\win32k.sys + 2007-11-30 12:39:29 234,872 -c----w c:\windows\$NtUninstallKB956391$\spuninst\spuninst.exe + 2007-11-30 12:39:31 406,392 -c----w c:\windows\$NtUninstallKB956391$\spuninst\updspapi.dll + 2008-06-20 10:44:38 138,368 -c----w c:\windows\$NtUninstallKB956803$\afd.sys + 2007-11-30 11:19:06 234,872 -c----w c:\windows\$NtUninstallKB956803$\spuninst\spuninst.exe + 2007-11-30 11:19:10 406,392 -c----w c:\windows\$NtUninstallKB956803$\spuninst\updspapi.dll + 2007-02-28 16:02:21 2,138,112 -c----w c:\windows\$NtUninstallKB956841$\ntkrnlmp.exe + 2007-02-28 16:02:36 2,059,648 -c----w c:\windows\$NtUninstallKB956841$\ntkrnlpa.exe + 2007-02-28 16:02:21 2,017,792 -c----w c:\windows\$NtUninstallKB956841$\ntkrpamp.exe + 2007-02-28 16:02:36 2,182,400 -c----w c:\windows\$NtUninstallKB956841$\ntoskrnl.exe + 2007-11-30 11:19:06 234,872 -c----w c:\windows\$NtUninstallKB956841$\spuninst\spuninst.exe + 2008-07-09 07:40:35 406,392 -c----w c:\windows\$NtUninstallKB956841$\spuninst\updspapi.dll + 2007-11-30 11:19:06 234,872 -c----w c:\windows\$NtUninstallKB957095$\spuninst\spuninst.exe + 2007-11-30 11:19:10 406,392 -c----w c:\windows\$NtUninstallKB957095$\spuninst\updspapi.dll + 2006-08-14 10:34:41 332,928 -c----w c:\windows\$NtUninstallKB957095$\srv.sys + 2008-09-11 06:26:06 820,984 ----a-w c:\windows\assembly\GAC_MSIL\Autodesk.AutoCAD.Interop.Common\17.0.54.0__eed84259d7cbf30b\Autodesk.AutoCAD.Interop.Common.dll + 2008-09-11 06:26:08 1,103,608 ----a-w c:\windows\assembly\GAC_MSIL\Autodesk.AutoCAD.Interop.Common\17.1.51.0__eed84259d7cbf30b\Autodesk.AutoCAD.Interop.Common.dll + 2008-09-11 06:28:51 1,125,672 ----a-w c:\windows\assembly\GAC_MSIL\Autodesk.AutoCAD.Interop.Common\17.2.0.0__eed84259d7cbf30b\Autodesk.AutoCAD.Interop.Common.dll + 2008-09-11 06:26:07 145,144 ----a-w c:\windows\assembly\GAC_MSIL\Autodesk.AutoCAD.Interop\17.0.54.0__eed84259d7cbf30b\Autodesk.AutoCAD.Interop.dll + 2008-09-11 06:26:08 153,336 ----a-w c:\windows\assembly\GAC_MSIL\Autodesk.AutoCAD.Interop\17.1.51.0__eed84259d7cbf30b\Autodesk.AutoCAD.Interop.dll + 2008-09-11 06:28:51 163,112 ----a-w c:\windows\assembly\GAC_MSIL\Autodesk.AutoCAD.Interop\17.2.0.0__eed84259d7cbf30b\Autodesk.AutoCAD.Interop.dll + 2008-10-25 19:02:15 236,392 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.SqlServerCe\9.0.242.0__89845dcd8080cc91\System.Data.SqlServerCe.dll + 2008-09-11 06:31:48 7,929,856 ----a-w c:\windows\assembly\NativeImages_v2.0.50727_32\acdbmgd\6b6bf44d9ee468aee23a2931e7600830\acdbmgd.ni.dll + 2008-09-11 06:32:19 1,671,168 ----a-w c:\windows\assembly\NativeImages_v2.0.50727_32\AcLayer\7e43cfa22280641800c6733daf223cf0\AcLayer.ni.dll + 2008-09-11 06:32:26 2,494,464 ----a-w c:\windows\assembly\NativeImages_v2.0.50727_32\acmgd\6ec6a145e55c688e098e1c8df6cb97bd\acmgd.ni.dll + 2008-09-11 06:32:29 1,650,688 ----a-w c:\windows\assembly\NativeImages_v2.0.50727_32\acmgdinternal\a9487ad6be841545040313665abeca60\acmgdinternal.ni.dll + 2008-09-11 06:32:34 2,154,496 ----a-w c:\windows\assembly\NativeImages_v2.0.50727_32\AdWindows\4dbb41b69ed510670c31a8b05e001b1b\AdWindows.ni.dll + 2008-09-11 06:32:39 458,752 ----a-w c:\windows\assembly\NativeImages_v2.0.50727_32\AdWindowsWrapper\f82c0e973264d7021e6b2589e89e63b6\AdWindowsWrapper.ni.dll + 2008-02-10 07:31:50 112,280 ----a-w c:\windows\Downloaded Program Files\IDropENU.dll + 2008-02-25 08:47:03 114,504 ----a-w c:\windows\Downloaded Program Files\IDropFRA.dll + 2008-06-14 17:59:52 272,768 ------w c:\windows\Driver Cache\i386\bthport.sys - 2007-02-28 16:02:21 2,138,112 ------w c:\windows\Driver Cache\i386\ntkrnlmp.exe + 2008-08-14 13:44:35 2,138,112 ------w c:\windows\Driver Cache\i386\ntkrnlmp.exe - 2007-02-28 16:02:36 2,059,648 ------w c:\windows\Driver Cache\i386\ntkrnlpa.exe + 2008-08-14 13:44:39 2,059,776 ------w c:\windows\Driver Cache\i386\ntkrnlpa.exe - 2007-02-28 16:02:21 2,017,792 ------w c:\windows\Driver Cache\i386\ntkrpamp.exe + 2008-08-14 13:44:33 2,017,792 ------w c:\windows\Driver Cache\i386\ntkrpamp.exe - 2007-02-28 16:02:36 2,182,400 ------w c:\windows\Driver Cache\i386\ntoskrnl.exe + 2008-08-14 13:44:37 2,182,400 ------w c:\windows\Driver Cache\i386\ntoskrnl.exe - 2005-10-20 18:02:28 163,328 ----a-w c:\windows\erdnt\Hiv-backup\ERDNT.EXE + 2005-10-20 19:02:28 163,328 ----a-w c:\windows\erdnt\Hiv-backup\ERDNT.EXE - 2005-10-20 18:02:28 163,328 ----a-w c:\windows\erdnt\subs\ERDNT.EXE + 2005-10-20 19:02:28 163,328 ----a-w c:\windows\erdnt\subs\ERDNT.EXE - 2000-08-31 06:00:00 73,728 ----a-w c:\windows\fdsv.exe + 2000-08-31 07:00:00 89,504 ----a-w c:\windows\fdsv.exe - 2000-08-31 06:00:00 80,412 ----a-w c:\windows\grep.exe + 2000-08-31 07:00:00 80,412 ----a-w c:\windows\grep.exe - 2006-11-17 17:30:08 32,368 -c--a-w c:\windows\ie7\spuninst\iecustom.dll + 2006-11-07 21:23:56 32,368 -c----w c:\windows\ie7\spuninst\iecustom.dll - 2006-11-17 17:28:20 66,048 -c--a-w c:\windows\ie7\spuninst\ieResetIcons.exe + 2006-11-07 21:20:26 66,048 -c--a-w c:\windows\ie7\spuninst\ieResetIcons.exe + 2007-03-06 01:34:38 216,800 -c----w c:\windows\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe + 2007-03-06 01:35:47 394,976 -c----w c:\windows\ie7updates\KB938127-v2-IE7\spuninst\updspapi.dll + 2007-07-12 23:30:52 765,952 -c----w c:\windows\ie7updates\KB938127-v2-IE7\vgx.dll + 2006-11-07 01:26:24 123,904 -c----w c:\windows\ie7updates\KB953838-IE7\advpack.dll + 2006-10-17 09:58:06 346,624 -c----w c:\windows\ie7updates\KB953838-IE7\dxtmsft.dll + 2006-10-17 09:57:50 214,528 -c----w c:\windows\ie7updates\KB953838-IE7\dxtrans.dll + 2006-11-07 19:03:36 131,584 -c----w c:\windows\ie7updates\KB953838-IE7\extmgr.dll + 2006-10-17 09:58:20 61,952 -c----w c:\windows\ie7updates\KB953838-IE7\icardie.dll + 2006-11-07 01:26:28 54,784 -c----w c:\windows\ie7updates\KB953838-IE7\ie4uinit.exe + 2006-11-07 01:26:56 152,064 -c----w c:\windows\ie7updates\KB953838-IE7\ieakeng.dll + 2006-11-07 01:27:02 229,376 -c----w c:\windows\ie7updates\KB953838-IE7\ieaksie.dll + 2006-11-07 01:25:14 161,792 -c----w c:\windows\ie7updates\KB953838-IE7\ieakui.dll + 2006-09-05 21:01:26 2,451,824 -c----w c:\windows\ie7updates\KB953838-IE7\ieapfltr.dat + 2006-10-17 09:27:56 380,928 -c----w c:\windows\ie7updates\KB953838-IE7\ieapfltr.dll + 2006-11-07 01:27:10 382,976 -c----w c:\windows\ie7updates\KB953838-IE7\iedkcs32.dll + 2006-11-07 19:03:36 6,049,280 -c----w c:\windows\ie7updates\KB953838-IE7\ieframe.dll + 2006-11-07 01:26:28 43,008 -c----w c:\windows\ie7updates\KB953838-IE7\iernonce.dll + 2006-10-17 09:57:20 266,752 -c----w c:\windows\ie7updates\KB953838-IE7\iertutil.dll + 2006-11-07 01:26:32 13,312 -c----w c:\windows\ie7updates\KB953838-IE7\ieudinit.exe + 2006-10-17 10:04:40 622,080 -c----w c:\windows\ie7updates\KB953838-IE7\iexplore.exe + 2006-11-07 19:03:36 27,136 -c----w c:\windows\ie7updates\KB953838-IE7\jsproxy.dll + 2006-11-07 19:03:36 458,752 -c----w c:\windows\ie7updates\KB953838-IE7\msfeeds.dll + 2006-11-07 19:03:36 50,688 -c----w c:\windows\ie7updates\KB953838-IE7\msfeedsbs.dll + 2006-11-07 19:03:36 3,577,856 -c----w c:\windows\ie7updates\KB953838-IE7\mshtml.dll + 2006-11-07 19:03:36 475,648 -c----w c:\windows\ie7updates\KB953838-IE7\mshtmled.dll + 2006-10-17 10:05:10 192,000 -c----w c:\windows\ie7updates\KB953838-IE7\msrating.dll + 2006-11-07 19:03:36 670,720 -c----w c:\windows\ie7updates\KB953838-IE7\mstime.dll + 2006-10-17 10:04:46 101,376 -c----w c:\windows\ie7updates\KB953838-IE7\occache.dll + 2006-10-17 09:58:08 44,544 -c----w c:\windows\ie7updates\KB953838-IE7\pngfilt.dll + 2007-03-06 01:34:38 216,800 -c----w c:\windows\ie7updates\KB953838-IE7\spuninst\spuninst.exe + 2007-03-06 01:35:48 394,976 -c----w c:\windows\ie7updates\KB953838-IE7\spuninst\updspapi.dll + 2006-10-17 10:05:22 105,984 -c----w c:\windows\ie7updates\KB953838-IE7\url.dll + 2006-11-07 19:03:36 1,162,240 -c----w c:\windows\ie7updates\KB953838-IE7\urlmon.dll + 2006-11-07 19:03:36 231,424 -c----w c:\windows\ie7updates\KB953838-IE7\webcheck.dll + 2006-11-07 19:03:36 818,688 -c----w c:\windows\ie7updates\KB953838-IE7\wininet.dll + 2008-06-23 16:28:17 124,928 -c----w c:\windows\ie7updates\KB956390-IE7\advpack.dll + 2008-06-23 16:28:17 347,136 -c----w c:\windows\ie7updates\KB956390-IE7\dxtmsft.dll + 2008-06-23 16:28:17 214,528 -c----w c:\windows\ie7updates\KB956390-IE7\dxtrans.dll + 2008-06-23 16:28:17 133,120 -c----w c:\windows\ie7updates\KB956390-IE7\extmgr.dll + 2008-06-23 16:28:17 63,488 -c----w c:\windows\ie7updates\KB956390-IE7\icardie.dll + 2008-06-23 09:21:30 70,656 -c----w c:\windows\ie7updates\KB956390-IE7\ie4uinit.exe + 2008-06-23 16:28:18 153,088 -c----w c:\windows\ie7updates\KB956390-IE7\ieakeng.dll + 2008-06-23 16:28:18 230,400 -c----w c:\windows\ie7updates\KB956390-IE7\ieaksie.dll + 2008-06-21 05:23:54 161,792 -c----w c:\windows\ie7updates\KB956390-IE7\ieakui.dll + 2008-06-23 16:28:18 383,488 -c----w c:\windows\ie7updates\KB956390-IE7\ieapfltr.dll + 2008-06-23 16:28:18 384,512 -c----w c:\windows\ie7updates\KB956390-IE7\iedkcs32.dll + 2008-06-23 16:28:19 6,066,176 -c----w c:\windows\ie7updates\KB956390-IE7\ieframe.dll + 2008-06-23 16:28:19 44,544 -c----w c:\windows\ie7updates\KB956390-IE7\iernonce.dll + 2008-06-23 16:28:20 267,776 -c----w c:\windows\ie7updates\KB956390-IE7\iertutil.dll + 2008-06-23 09:20:26 13,824 -c----w c:\windows\ie7updates\KB956390-IE7\ieudinit.exe + 2008-06-23 09:21:49 625,664 -c----w c:\windows\ie7updates\KB956390-IE7\iexplore.exe + 2008-06-23 16:28:20 27,648 -c----w c:\windows\ie7updates\KB956390-IE7\jsproxy.dll + 2008-06-23 16:28:20 459,264 -c----w c:\windows\ie7updates\KB956390-IE7\msfeeds.dll + 2008-06-23 16:28:20 52,224 -c----w c:\windows\ie7updates\KB956390-IE7\msfeedsbs.dll + 2008-06-24 08:28:24 3,592,192 -c----w c:\windows\ie7updates\KB956390-IE7\mshtml.dll + 2008-06-23 16:28:22 477,696 -c----w c:\windows\ie7updates\KB956390-IE7\mshtmled.dll + 2008-06-23 16:28:22 193,024 -c----w c:\windows\ie7updates\KB956390-IE7\msrating.dll + 2008-06-23 16:28:22 671,232 -c----w c:\windows\ie7updates\KB956390-IE7\mstime.dll + 2008-06-23 16:28:22 102,912 -c----w c:\windows\ie7updates\KB956390-IE7\occache.dll + 2008-06-23 16:28:22 44,544 -c----w c:\windows\ie7updates\KB956390-IE7\pngfilt.dll + 2007-03-06 01:34:38 216,800 -c----w c:\windows\ie7updates\KB956390-IE7\spuninst\spuninst.exe + 2007-03-06 01:35:48 394,976 -c----w c:\windows\ie7updates\KB956390-IE7\spuninst\updspapi.dll + 2008-06-23 16:28:22 105,984 -c----w c:\windows\ie7updates\KB956390-IE7\url.dll + 2008-06-23 16:28:23 1,159,680 -c----w c:\windows\ie7updates\KB956390-IE7\urlmon.dll + 2008-06-23 16:28:23 233,472 -c----w c:\windows\ie7updates\KB956390-IE7\webcheck.dll + 2008-06-23 16:28:23 826,368 -c----w c:\windows\ie7updates\KB956390-IE7\wininet.dll + 2006-10-26 18:12:56 396,592 ----a-r c:\windows\Installer\$PatchCache$\Managed\[u]0[/u]00021090200C0400000000000F01FEC\12.0.6021\MOC.EXE + 2007-05-08 09:10:18 16,874,376 ----a-r c:\windows\Installer\$PatchCache$\Managed\[u]0[/u]00021090200C0400000000000F01FEC\12.0.6021\MSO.DLL + 2007-03-21 16:56:50 8,425,856 ----a-r c:\windows\Installer\$PatchCache$\Managed\[u]0[/u]00021090200C0400000000000F01FEC\12.0.6021\OARTCONV.DLL + 2006-10-27 13:18:34 1,658,152 ----a-r c:\windows\Installer\$PatchCache$\Managed\[u]0[/u]00021090200C0400000000000F01FEC\12.0.6021\OGL.DLL + 2007-05-10 07:04:28 846,248 ----a-r c:\windows\Installer\$PatchCache$\Managed\[u]0[/u]00021090200C0400000000000F01FEC\12.0.6021\OICE.EXE + 2007-05-10 08:11:42 1,767,256 ----a-r c:\windows\Installer\$PatchCache$\Managed\[u]0[/u]00021090200C0400000000000F01FEC\12.0.6021\PPCNV.DLL + 2007-03-21 17:00:06 72,096 ----a-r c:\windows\Installer\$PatchCache$\Managed\[u]0[/u]00021090200C0400000000000F01FEC\12.0.6021\PXBCOM.EXE + 2007-03-21 16:58:40 4,145,520 ----a-r c:\windows\Installer\$PatchCache$\Managed\[u]0[/u]00021090200C0400000000000F01FEC\12.0.6021\WRD12CNV.DLL + 2007-03-21 16:58:46 24,416 ----a-r c:\windows\Installer\$PatchCache$\Managed\[u]0[/u]00021090200C0400000000000F01FEC\12.0.6021\WRD12EXE.EXE + 2007-05-10 08:25:40 14,677,368 ----a-r c:\windows\Installer\$PatchCache$\Managed\[u]0[/u]00021090200C0400000000000F01FEC\12.0.6021\XL12CNV.EXE + 2007-09-14 19:45:58 16,901,168 ----a-r c:\windows\Installer\$PatchCache$\Managed\[u]0[/u]00021090200C0400000000000F01FEC\12.0.6215\MSO.DLL + 2007-08-28 22:19:24 1,654,648 ----a-r c:\windows\Installer\$PatchCache$\Managed\[u]0[/u]00021090200C0400000000000F01FEC\12.0.6215\OGL.DLL + 2007-08-24 03:00:34 1,767,768 ----a-r c:\windows\Installer\$PatchCache$\Managed\[u]0[/u]00021090200C0400000000000F01FEC\12.0.6215\PPCNV.DLL + 2007-08-24 03:00:48 72,096 ----a-r c:\windows\Installer\$PatchCache$\Managed\[u]0[/u]00021090200C0400000000000F01FEC\12.0.6215\PXBCOM.EXE + 2007-10-02 18:00:06 14,708,760 ----a-r c:\windows\Installer\$PatchCache$\Managed\[u]0[/u]00021090200C0400000000000F01FEC\12.0.6215\XL12CNV.EXE + 2008-09-11 06:31:09 339,968 ----a-r c:\windows\Installer\{5783F2D7-7009-040C-0002-0060B0CE6BBA}\Acadlt162_icon.exe + 2008-02-25 08:46:43 25,928 ----a-w c:\windows\Installer\{5783F2D7-7009-040C-0002-0060B0CE6BBA}\CustomRes.dll + 2008-02-10 07:28:31 265,368 ----a-w c:\windows\Installer\{5783F2D7-7009-040C-0002-0060B0CE6BBA}\InstBasicUI.dll + 2008-02-25 08:47:04 308,552 ----a-w c:\windows\Installer\{5783F2D7-7009-040C-0002-0060B0CE6BBA}\InstRes.dll + 2008-10-19 07:23:56 38,240 ----a-r c:\windows\Installer\{90120000-0020-040C-0000-0000000FF1CE}\O12ConvIcon.exe + 2008-11-09 20:48:19 33,982 ----a-r c:\windows\Installer\{90535871-81B9-4D99-8A13-A7EE97F2D7FE}\ARPPRODUCTICON.exe + 2008-10-25 19:00:47 86,746 ----a-r c:\windows\Installer\{C514C594-23AA-4F13-A070-DB8BDB27594F}\wlmail.exe + 2008-08-17 15:24:37 327,680 ----a-r c:\windows\Installer\{EE467474-04A8-48D5-8DDF-0F8D3A3CCBE5}\NewShortcut2_439CCEF89767436AB00754ACFDCFF417.exe - 2000-08-31 06:00:00 28,160 ----a-w c:\windows\Nircmd.exe + 2000-08-31 07:00:00 28,672 ----a-w c:\windows\NIRCMD.exe - 2008-04-23 19:03:33 190,846 ----a-w c:\windows\pchealth\helpctr\Config\Cache\Professional_32_1036.dat + 2008-11-04 07:55:09 382,474 ----a-w c:\windows\pchealth\helpctr\Config\Cache\Professional_32_1036.dat + 2008-11-04 07:55:09 382,474 ----a-w c:\windows\pchealth\helpctr\Config\Cache\Professional_32_1036.dat.bak - 2000-08-31 06:00:00 98,816 ----a-w c:\windows\sed.exe + 2000-08-31 07:00:00 98,816 ----a-w c:\windows\sed.exe - 2000-08-31 06:00:00 161,792 ----a-w c:\windows\swreg.exe + 2000-08-31 07:00:00 161,792 ----a-w c:\windows\SWREG.exe - 2000-08-31 06:00:00 136,704 ----a-w c:\windows\swsc.exe + 2000-08-31 07:00:00 136,704 ----a-w c:\windows\SWSC.exe - 2000-08-31 06:00:00 212,480 ----a-w c:\windows\swxcacls.exe + 2000-08-31 07:00:00 212,480 ----a-w c:\windows\SWXCACLS.exe + 2008-02-10 08:37:58 28,312 ----a-w c:\windows\system32\AcSignExt.dll + 2008-02-25 08:45:54 16,200 ----a-w c:\windows\system32\AcSignExtRes.dll + 2008-02-10 08:37:57 43,160 ----a-w c:\windows\system32\AcSignIcon.dll + 2008-02-10 08:37:58 426,136 ----a-w c:\windows\system32\AcSignOpt.exe - 2008-03-01 12:58:06 124,928 ----a-w c:\windows\system32\advpack.dll + 2008-08-26 08:11:45 124,928 ----a-w c:\windows\system32\advpack.dll + 2004-04-19 15:03:52 90,112 ----a-w c:\windows\system32\bt2k_ins.dll + 2004-04-19 14:56:28 49,152 ----a-w c:\windows\system32\BtAudioHelper.dll + 2004-04-19 15:06:36 122,880 ----a-w c:\windows\system32\btbigbmp.dll + 2004-04-12 23:03:06 147,456 ----a-w c:\windows\system32\btbip.dll + 2004-04-19 14:57:54 376,897 ----a-w c:\windows\system32\btcss.dll + 2004-04-19 14:48:50 32,768 ----a-w c:\windows\system32\btdev.dll + 2004-04-02 12:47:50 102,400 ----a-w c:\windows\system32\bthcrp.dll + 2004-04-02 15:47:24 114,688 ----a-w c:\windows\system32\bthcrpui.dll + 2004-04-19 14:40:50 405,504 ----a-w c:\windows\system32\btins.dll + 2004-04-19 14:58:50 53,248 ----a-w c:\windows\system32\BTNCopy.dll + 2004-04-19 15:12:10 999,507 ----a-w c:\windows\system32\BTNeighborhood.dll + 2004-04-19 14:49:36 118,784 ----a-w c:\windows\system32\btosif.dll + 2004-04-19 14:59:40 159,744 ----a-w c:\windows\system32\btosif_notes.dll + 2004-04-19 15:00:06 200,704 ----a-w c:\windows\system32\btosif_ol.dll + 2004-04-19 15:07:10 139,264 ----a-w c:\windows\system32\btosif_olx.dll + 2004-04-02 12:49:10 86,016 ----a-w c:\windows\system32\btprn2k.dll + 2004-03-12 12:03:06 2,879,488 ----a-w c:\windows\system32\btrez.dll + 2004-04-19 15:07:22 86,016 ----a-w c:\windows\system32\btrezxp.dll + 2004-04-19 14:38:16 196,608 ----a-w c:\windows\system32\btsec.dll + 2004-04-02 12:50:10 126,976 ----a-w c:\windows\system32\btsendto.dll + 2004-04-02 12:54:16 73,728 ----a-w c:\windows\system32\btsendto_ie.dll + 2004-04-02 12:51:24 49,152 ----a-w c:\windows\system32\btsendto_notes.dll + 2004-04-02 12:53:10 163,840 ----a-w c:\windows\system32\btsendto_office.dll + 2004-04-02 12:53:34 65,536 ----a-w c:\windows\system32\btsendto_wab.dll + 2004-04-19 15:12:38 794,624 ----a-w c:\windows\system32\BtWizard.dll + 2004-04-19 15:00:20 45,056 ----a-w c:\windows\system32\btwpimif.dll + 2004-04-19 14:56:22 110,592 ----a-w c:\windows\system32\BTXPPanel.dll + 2004-04-19 15:05:22 24,576 ----a-w c:\windows\system32\BtXpShell.dll - 2003-06-09 16:21:10 28,723 ----a-r c:\windows\system32\cba.dll + 2001-09-20 00:52:34 28,723 ----a-w c:\windows\system32\CBA.DLL - 2007-07-30 17:19:20 92,504 ----a-w c:\windows\system32\cdm.dll + 2008-07-18 20:10:48 94,920 ----a-w c:\windows\system32\cdm.dll - 2007-05-29 13:47:00 16,384 ----a-w c:\windows\system32\config\systemprofile\Cookies\index.dat + 2008-09-03 09:53:14 32,768 ----a-w c:\windows\system32\config\systemprofile\Cookies\index.dat - 2008-04-02 16:53:58 27,648 ----a-w c:\windows\system32\config\systemprofile\Local Settings\Application Data\GDIPFONTCACHEV1.DAT + 2008-10-18 20:18:49 64,864 ----a-w c:\windows\system32\config\systemprofile\Local Settings\Application Data\GDIPFONTCACHEV1.DAT - 2007-05-29 13:47:00 32,768 ----a-w c:\windows\system32\config\systemprofile\Local Settings\Historique\History.IE5\index.dat + 2008-09-03 09:53:14 32,768 ----a-w c:\windows\system32\config\systemprofile\Local Settings\Historique\History.IE5\index.dat + 2008-09-01 05:54:50 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\Historique\History.IE5\MSHist012008082520080901\index.dat + 2008-09-01 05:54:50 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\Historique\History.IE5\MSHist012008090120080902\index.dat + 2008-09-02 17:10:28 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\Historique\History.IE5\MSHist012008090220080903\index.dat + 2008-08-31 13:04:42 78,924 ----a-w c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat - 2004-08-05 12:00:00 35,328 ------w c:\windows\system32\corpol.dll + 2006-10-17 10:03:56 17,408 ----a-w c:\windows\system32\corpol.dll + 2002-07-15 13:58:00 50,176 ----a-w c:\windows\system32\CSH.DLL - 2007-12-04 00:33:16 682,496 ----a-w c:\windows\system32\divx.dll + 2008-07-25 08:34:36 683,520 ----a-w c:\windows\system32\DivX.dll + 2008-07-25 08:34:42 823,296 ----a-w c:\windows\system32\divx_xx07.dll + 2008-07-25 08:34:40 815,104 ----a-w c:\windows\system32\divx_xx0a.dll + 2008-07-25 08:34:40 823,296 ----a-w c:\windows\system32\divx_xx0c.dll + 2008-07-25 08:34:40 802,816 ----a-w c:\windows\system32\divx_xx11.dll - 2008-03-31 21:25:52 161,096 ----a-w c:\windows\system32\DivXCodecVersionChecker.exe + 2008-07-25 08:34:30 161,096 ----a-w c:\windows\system32\DivXCodecVersionChecker.exe + 2008-07-25 08:36:00 524,288 ----a-w c:\windows\system32\DivXsm.exe + 2008-07-23 16:46:38 12,288 ----a-w c:\windows\system32\DivXWMPExtType.dll - 2008-03-01 12:58:06 124,928 -c--a-w c:\windows\system32\dllcache\advpack.dll + 2008-08-26 08:11:45 124,928 -c--a-w c:\windows\system32\dllcache\advpack.dll - 2004-08-05 12:00:00 138,496 -c--a-w c:\windows\system32\dllcache\afd.sys + 2008-08-14 09:51:43 138,368 -c--a-w c:\windows\system32\dllcache\afd.sys + 2008-06-14 17:59:52 272,768 -c----w c:\windows\system32\dllcache\bthport.sys - 2007-07-30 17:19:20 92,504 -c--a-w c:\windows\system32\dllcache\cdm.dll + 2008-07-18 20:10:48 94,920 -c--a-w c:\windows\system32\dllcache\cdm.dll - 2004-08-05 12:00:00 35,328 -c----w c:\windows\system32\dllcache\corpol.dll + 2006-10-17 10:03:56 17,408 -c--a-w c:\windows\system32\dllcache\corpol.dll - 2004-08-05 12:00:00 561,179 -c--a-w c:\windows\system32\dllcache\dao360.dll + 2008-03-25 04:50:25 554,008 -c--a-w c:\windows\system32\dllcache\dao360.dll - 2008-02-20 05:35:05 148,992 -c--a-w c:\windows\system32\dllcache\dnsapi.dll + 2008-06-20 17:41:06 148,992 -c--a-w c:\windows\system32\dllcache\dnsapi.dll + 2004-08-03 22:08:00 60,288 -c--a-w c:\windows\system32\dllcache\drmk.sys - 2008-03-01 12:58:06 347,136 -c--a-w c:\windows\system32\dllcache\dxtmsft.dll + 2008-08-26 08:11:45 347,136 -c--a-w c:\windows\system32\dllcache\dxtmsft.dll - 2008-03-01 12:58:06 214,528 -c--a-w c:\windows\system32\dllcache\dxtrans.dll + 2008-08-26 08:11:45 214,528 -c--a-w c:\windows\system32\dllcache\dxtrans.dll - 2005-07-26 04:39:57 243,200 -c--a-w c:\windows\system32\dllcache\es.dll + 2008-07-07 20:31:48 253,952 -c--a-w c:\windows\system32\dllcache\es.dll - 2008-03-01 12:58:06 133,120 -c--a-w c:\windows\system32\dllcache\extmgr.dll + 2008-08-26 08:11:45 133,120 -c--a-w c:\windows\system32\dllcache\extmgr.dll + 2004-08-03 22:54:28 21,504 -c--a-w c:\windows\system32\dllcache\hidserv.dll + 2006-03-17 00:33:10 262,784 -c--a-w c:\windows\system32\dllcache\http.sys - 2008-03-01 12:58:06 63,488 -c--a-w c:\windows\system32\dllcache\icardie.dll + 2008-08-26 08:11:45 63,488 -c--a-w c:\windows\system32\dllcache\icardie.dll - 2008-02-29 08:56:41 70,656 -c--a-w c:\windows\system32\dllcache\ie4uinit.exe + 2008-08-25 08:39:40 70,656 -c--a-w c:\windows\system32\dllcache\ie4uinit.exe - 2008-03-01 12:58:06 153,088 -c--a-w c:\windows\system32\dllcache\ieakeng.dll + 2008-08-26 08:11:45 153,088 -c--a-w c:\windows\system32\dllcache\ieakeng.dll - 2008-03-01 12:58:06 230,400 -c--a-w c:\windows\system32\dllcache\ieaksie.dll + 2008-08-26 08:11:45 230,400 -c--a-w c:\windows\system32\dllcache\ieaksie.dll - 2008-02-15 05:44:25 161,792 -c--a-w c:\windows\system32\dllcache\ieakui.dll + 2008-08-23 05:54:51 161,792 -c--a-w c:\windows\system32\dllcache\ieakui.dll - 2008-03-01 12:58:07 383,488 -c--a-w c:\windows\system32\dllcache\ieapfltr.dll + 2008-08-26 08:11:46 383,488 -c--a-w c:\windows\system32\dllcache\ieapfltr.dll - 2008-03-01 12:58:07 384,512 -c--a-w c:\windows\system32\dllcache\iedkcs32.dll + 2008-08-26 08:11:46 384,512 -c--a-w c:\windows\system32\dllcache\iedkcs32.dll - 2008-03-01 12:58:08 6,066,176 -c--a-w c:\windows\system32\dllcache\ieframe.dll + 2008-10-03 17:12:27 6,066,176 -c--a-w c:\windows\system32\dllcache\ieframe.dll - 2008-03-01 12:58:08 44,544 -c--a-w c:\windows\system32\dllcache\iernonce.dll + 2008-08-26 08:11:48 44,544 -c--a-w c:\windows\system32\dllcache\iernonce.dll - 2008-03-01 12:58:08 267,776 -c--a-w c:\windows\system32\dllcache\iertutil.dll + 2008-08-26 08:11:48 267,776 -c--a-w c:\windows\system32\dllcache\iertutil.dll - 2008-02-22 10:00:51 13,824 -c--a-w c:\windows\system32\dllcache\ieudinit.exe + 2008-08-25 08:38:00 13,824 -c--a-w c:\windows\system32\dllcache\ieudinit.exe - 2008-02-29 08:57:05 625,664 -c--a-w c:\windows\system32\dllcache\iexplore.exe + 2008-08-23 05:56:15 635,848 -c--a-w c:\windows\system32\dllcache\iexplore.exe - 2007-08-21 06:17:23 683,520 -c--a-w c:\windows\system32\dllcache\inetcomm.dll + 2008-04-11 18:51:06 683,520 -c--a-w c:\windows\system32\dllcache\inetcomm.dll - 2008-03-01 12:58:08 27,648 -c--a-w c:\windows\system32\dllcache\jsproxy.dll + 2008-08-26 08:11:49 27,648 -c--a-w c:\windows\system32\dllcache\jsproxy.dll + 2004-08-03 22:15:22 140,928 -c--a-w c:\windows\system32\dllcache\ks.sys + 2004-08-03 23:54:30 4,096 -c--a-w c:\windows\system32\dllcache\ksuser.dll - 2004-08-05 12:00:00 331,776 -c--a-w c:\windows\system32\dllcache\msadce.dll + 2008-05-01 14:31:48 331,776 -c--a-w c:\windows\system32\dllcache\msadce.dll - 2005-06-29 01:49:41 74,240 -c--a-w c:\windows\system32\dllcache\mscms.dll + 2008-06-24 16:23:56 74,240 -c--a-w c:\windows\system32\dllcache\mscms.dll - 2004-08-05 12:00:00 294,400 -c--a-w c:\windows\system32\dllcache\msctf.dll + 2008-02-26 12:00:31 294,912 -c--a-w c:\windows\system32\dllcache\msctf.dll - 2004-08-05 12:00:00 512,029 -c--a-w c:\windows\system32\dllcache\msexch40.dll + 2008-03-25 04:50:28 518,944 -c--a-w c:\windows\system32\dllcache\msexch40.dll - 2004-08-05 12:00:00 319,517 -c--a-w c:\windows\system32\dllcache\msexcl40.dll + 2008-03-25 04:50:30 326,432 -c--a-w c:\windows\system32\dllcache\msexcl40.dll - 2008-03-01 12:58:08 459,264 -c--a-w c:\windows\system32\dllcache\msfeeds.dll + 2008-08-26 08:11:49 459,264 -c--a-w c:\windows\system32\dllcache\msfeeds.dll - 2008-03-01 12:58:08 52,224 -c--a-w c:\windows\system32\dllcache\msfeedsbs.dll + 2008-08-26 08:11:49 52,224 -c--a-w c:\windows\system32\dllcache\msfeedsbs.dll - 2008-03-01 16:28:10 3,591,680 -c--a-w c:\windows\system32\dllcache\mshtml.dll + 2008-08-27 09:11:52 3,593,216 -c--a-w c:\windows\system32\dllcache\mshtml.dll - 2008-03-01 12:58:09 478,208 -c--a-w c:\windows\system32\dllcache\mshtmled.dll + 2008-08-26 08:11:52 477,696 -c--a-w c:\windows\system32\dllcache\mshtmled.dll - 2004-08-05 12:00:00 1,507,356 -c--a-w c:\windows\system32\dllcache\msjet40.dll + 2008-03-25 04:50:34 1,516,568 -c--a-w c:\windows\system32\dllcache\msjet40.dll - 2004-08-05 12:00:00 358,976 -c--a-w c:\windows\system32\dllcache\msjetol1.dll + 2008-03-25 04:50:40 355,112 -c--a-w c:\windows\system32\dllcache\msjetol1.dll - 2004-08-05 12:00:00 184,351 -c--a-w c:\windows\system32\dllcache\msjint40.dll + 2008-03-25 04:51:08 194,144 -c--a-w c:\windows\system32\dllcache\msjint40.dll - 2004-08-05 12:00:00 53

chimay8 · Accepted Answer

bonjour
pour suivre
merci
@+

neor · Answer

Télécharge HijackThis ici :

-> http://www.trendsecure.com/portal/en-US/_download/HiJackThis.exe

Tutoriel d´instalation : (Merci a Balltrap34 pour cette réalisation)

-> http://pageperso.aol.fr/balltrap34/Hijenr.gif

Tutoriel d´utilisation (video) : (Merci a Balltrap34 pour cette réalisation)

-> http://perso.orange.fr/rginformatique/section%20virus/demohijack.htm

Renomer Hijackthis, pour contrer une éventuelle infection de Vundo.

ex:Renomme le fichier HijackThis.exe en CCM.exe pour cela, fais un clic droit sur le fichier HijackThis.exe et choisis renommer dans la liste

Ensuite avec Explorer créer un dossier c:\hijackthis
Décompresser Hijackthis dans ce dossier.
C'est important pour les sauvegardes.

Lance Hitjack this
Do a system scan and save a log file

Post le rapport généré ici stp...

crapoulou · Answer

Edit : autant aller droit au but déjà :

Télécharge UsbFix sur ton bureau :
http://sd-1.archive-host.com/membres/up/116615172019703188/UsbFix.exe

--> Lance l’installation avec les paramètres par défaut

Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d’avoir été infectés sans les ouvrir

--> Double clic sur le raccourci UsbFix sur ton bureau

--> Le pc va redémarrer

-->Après redémarrage poste le rapport UsbFix.txt

Note : le rapport UsbFix.txt est sauvegardé a la racine du disque
Note : Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr , Onglet "Fichier" , "Nouvelle tâche" , tapes explorer.exe et valides

jfkpresident · Answer

Bonjour a tous ;

Pour suivre également ....;))

Infections rapport de combofix (joint)

4 réponses

Discussions similaires