الفايروسات هتكت عرض الفلاش مع الجهاز .. ساعدوني

Samy 89 · 20 أكتوبر 2008

السلام عليكم

دخلت الفلاش ميموري عالجهاز وطلعت لي الصوره التاليه من البرنامج

:er:

هل الفايروسات الثلاث الخطيره بالفلاش ميموري او مصابه في القرص المسؤول عن الفلاش

وكيف امسحها من الفلاش اذا كانت اصابت الفلاش .؟

بليز اخواني بدي مساعدتكم :er:

Demo-dash · 20 أكتوبر 2008

وعليكم السلام

1

عطل جميع برامج الحماية ,,
وحمل هذه الاداة واحفظها على سطح المكتب

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
انتظر حتى الاداة تنتهي من فحص جهازك ,,, وبشكل تلقائي يعاد تشغيل جهازك ,,
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ,, انسخه والصقه بردك القادم

2

اعمل تقرير للهايجاك

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

اذا انتهى التحميل ==> شغل البرنامج ==> واضغط على Do a system scan and save log
لحظات .. ويظهر لك تقرير اعمل تحديد الكل ==> انسخه والصقه بردك القادم

Demo-dash · 20 أكتوبر 2008

طبعا خلي الفلاش مشبوك في الجهاز واستخدم الاداوات الي اعطيتك
التقارير لأقرب متابع ..

ashalshaikh · 20 أكتوبر 2008

لا لا تخاف ... كانت الفيروسات بتنتقل للجهاز ولكن البرنامج لحقها ... ما في مشكلة ... اضغط على delete all ورح يشوف شغله معاهم ز.

ashalshaikh · 20 أكتوبر 2008

عذرا من الأخ ديمو داش ... يبدو أننا وضعنا الرد في نفس الوقت

Demo-dash · 20 أكتوبر 2008

عادي اخي الفاضل ,,, كلنا واحد

k:

Samy 89 · 20 أكتوبر 2008

هذا تقرير ComboFix

كود:

ComboFix 08-10-15.08 - winxp 10/20/2008 16:30:40.3 - [COLOR=red][B]FAT32[/B][/COLOR]x86
Microsoft Windows XP Professional  5.1.2600.2.1256.1.1025.18.61 [GMT 3:00]
Running from: C:\Documents and Settings\winxp\سطح المكتب\ComboFix.exe
[COLOR=red][B]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !![/B][/COLOR]
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
G:\autorun.inf
G:\copy.exe
G:\host.exe
.
(((((((((((((((((((((((((   Files Created from 2008-09-20 to 2008-10-20  )))))))))))))))))))))))))))))))
.
No new files created in this timespan
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-10-19 08:26 --------- d-----w C:\Program Files\IObit
2008-10-17 21:41 --------- d-----w C:\Program Files\Common Files\xing shared
2008-10-17 21:39 --------- d-----w C:\Program Files\Google
2008-10-17 20:10 --------- d-sh--w C:\Program Files\Common Files\WindowsLiveInstaller
2008-10-17 20:10 --------- d-----w C:\Program Files\Windows Live
2008-10-17 20:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-10-17 11:42 --------- d-----w C:\Program Files\Microsoft Windows OneCare Live
2008-10-17 10:52 --------- d-----w C:\Program Files\USB Disk Security
2008-10-17 08:38 --------- d-----w C:\Program Files\NOS
2008-10-17 08:38 --------- d-----w C:\Documents and Settings\All Users\Application Data\NOS
2008-10-17 08:22 --------- d-----w C:\Documents and Settings\winxp\Application Data\IDM
2008-10-17 08:22 --------- d-----w C:\Documents and Settings\winxp\Application Data\DMCache
2008-10-17 08:21 --------- d-----w C:\Program Files\Internet Download Manager
2008-10-17 03:13 155,995 ----a-w C:\WINDOWS\java\Packages\G6H7935N.ZIP
2008-10-16 20:20 --------- d-----w C:\Program Files\Windows Live Safety Center
2008-10-16 19:21 --------- d-----w C:\Program Files\Alwil Software
2008-10-16 18:40 --------- d-----w C:\Documents and Settings\winxp\Application Data\CyberScrub
2008-10-16 18:40 --------- d-----w C:\Documents and Settings\winxp\Application Data\cleaner
2008-10-16 13:48 0 ----a-w C:\osy3.sys
2008-10-16 12:50 --------- d-----w C:\Program Files\AxBx
2008-10-10 05:58 82,944 ----a-w C:\WINDOWS\system32\o4Patch.exe
2008-10-10 05:58 82,944 ----a-w C:\WINDOWS\system32\IEDFix.C.exe
2008-10-01 12:51 87,552 ----a-w C:\WINDOWS\system32\VACFix.exe
2008-09-15 15:37 1,845,888 ----a-w C:\WINDOWS\system32\win32k.sys
2008-09-15 15:37 1,845,888 ----a-w C:\WINDOWS\system32\dllcache\win32k.sys
2008-09-12 10:44 206,256 ----a-w C:\WINDOWS\system32\idmmbc.dll
2008-09-08 20:38 88,576 ----a-w C:\WINDOWS\system32\AntiXPVSTFix.exe
2008-08-28 10:04 333,056 ----a-w C:\WINDOWS\system32\drivers\srv.sys
2008-08-28 10:04 333,056 ----a-w C:\WINDOWS\system32\dllcache\srv.sys
2008-08-19 09:30 18,432 ----a-w C:\WINDOWS\system32\dllcache\iedw.exe
2008-08-18 09:19 82,432 ----a-w C:\WINDOWS\system32\404Fix.exe
2008-08-14 13:42 2,181,888 ------w C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2008-08-14 13:42 2,137,600 ----a-w C:\WINDOWS\system32\ntoskrnl.exe
2008-08-14 13:42 2,137,600 ------w C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2008-08-14 13:42 2,059,264 ------w C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2008-08-14 13:42 2,017,280 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe
2008-08-14 13:42 2,017,280 ------w C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2008-08-14 09:51 138,368 ------w C:\WINDOWS\system32\dllcache\afd.sys
.
(((((((((((((((((((((((((((((   snapshot@Thu 10-16-2008_21.34.50.42   )))))))))))))))))))))))))))))))))))))))))
.
- 2005-02-24 17:34:30 14,560 ------w C:\WINDOWS\$hf_mig$\KB894391\spmsg.dll
+ 2005-02-25 03:34:30 14,560 ------w C:\WINDOWS\$hf_mig$\KB894391\spmsg.dll
- 2005-02-24 17:34:30 209,120 ------w C:\WINDOWS\$hf_mig$\KB894391\spuninst.exe
+ 2005-02-25 03:34:30 209,120 ------w C:\WINDOWS\$hf_mig$\KB894391\spuninst.exe
- 2005-02-24 17:34:30 22,240 ------w C:\WINDOWS\$hf_mig$\KB894391\update\spcustom.dll
+ 2005-02-25 03:34:30 22,240 ------w C:\WINDOWS\$hf_mig$\KB894391\update\spcustom.dll
- 2005-02-24 17:34:30 714,976 ------w C:\WINDOWS\$hf_mig$\KB894391\update\update.exe
+ 2005-02-25 03:34:30 714,976 ------w C:\WINDOWS\$hf_mig$\KB894391\update\update.exe
- 2005-02-24 17:34:32 369,888 ------w C:\WINDOWS\$hf_mig$\KB894391\update\updspapi.dll
+ 2005-02-25 03:34:30 369,888 ------w C:\WINDOWS\$hf_mig$\KB894391\update\updspapi.dll
+ 2007-11-30 12:39:02 17,784 ------w C:\WINDOWS\$hf_mig$\KB938464\spmsg.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$hf_mig$\KB938464\spuninst.exe
+ 2007-11-30 12:39:02 26,488 ------w C:\WINDOWS\$hf_mig$\KB938464\update\spcustom.dll
+ 2007-11-30 11:18:14 752,504 ------w C:\WINDOWS\$hf_mig$\KB938464\update\update.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$hf_mig$\KB938464\update\updspapi.dll
+ 2007-12-18 14:32:26 450,560 ------w C:\WINDOWS\$hf_mig$\KB944338-v2\SP2QFE\jscript.dll
+ 2007-12-18 14:32:26 417,792 ------w C:\WINDOWS\$hf_mig$\KB944338-v2\SP2QFE\vbscript.dll
+ 2007-03-06 00:57:34 14,560 ------w C:\WINDOWS\$hf_mig$\KB944338-v2\spmsg.dll
+ 2007-03-06 00:57:40 213,216 ------w C:\WINDOWS\$hf_mig$\KB944338-v2\spuninst.exe
+ 2007-03-06 00:57:32 22,752 ------w C:\WINDOWS\$hf_mig$\KB944338-v2\update\spcustom.dll
+ 2007-03-06 00:57:56 712,928 ------w C:\WINDOWS\$hf_mig$\KB944338-v2\update\update.exe
+ 2007-03-06 00:58:46 369,376 ------w C:\WINDOWS\$hf_mig$\KB944338-v2\update\updspapi.dll
+ 2008-05-02 13:33:32 83,968 ------w C:\WINDOWS\$hf_mig$\KB946648\SP2QFE\msgsc.dll
+ 2008-05-02 14:01:50 83,968 ------w C:\WINDOWS\$hf_mig$\KB946648\SP3GDR\msgsc.dll
+ 2008-05-02 13:42:54 83,968 ------w C:\WINDOWS\$hf_mig$\KB946648\SP3QFE\msgsc.dll
+ 2007-11-30 12:39:02 17,784 ------w C:\WINDOWS\$hf_mig$\KB946648\spmsg.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$hf_mig$\KB946648\spuninst.exe
+ 2007-11-30 12:39:02 26,488 ------w C:\WINDOWS\$hf_mig$\KB946648\update\spcustom.dll
+ 2007-11-30 11:18:14 752,504 ------w C:\WINDOWS\$hf_mig$\KB946648\update\update.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$hf_mig$\KB946648\update\updspapi.dll
+ 2008-01-23 04:56:22 554,008 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\dao360.dll
+ 2007-12-10 12:41:12 518,944 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msexch40.dll
+ 2007-12-10 12:41:12 326,432 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msexcl40.dll
+ 2007-12-10 12:41:12 1,516,568 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msjet40.dll
+ 2007-12-10 12:41:12 355,112 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msjetol1.dll
+ 2007-11-01 05:14:16 158,496 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msjint40.dll
+ 2007-12-10 12:41:12 60,192 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msjter40.dll
+ 2007-12-10 12:41:12 248,608 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msjtes40.dll
+ 2007-12-10 12:41:12 219,936 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msltus40.dll
+ 2007-12-10 12:41:12 355,104 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\mspbde40.dll
+ 2007-12-10 12:41:14 432,928 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msrd2x40.dll
+ 2007-12-10 12:41:14 322,336 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msrd3x40.dll
+ 2007-12-10 12:41:14 559,904 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msrepl40.dll
+ 2007-12-10 12:41:14 264,992 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\mstext40.dll
+ 2007-12-10 12:41:14 838,432 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\mswdat10.dll
+ 2007-11-01 05:14:16 621,344 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\mswstr10.dll
+ 2007-12-10 12:41:14 355,104 ------w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msxbde40.dll
+ 2007-03-06 00:57:34 14,560 ------w C:\WINDOWS\$hf_mig$\KB950749\spmsg.dll
+ 2007-03-06 00:57:40 213,216 ------w C:\WINDOWS\$hf_mig$\KB950749\spuninst.exe
+ 2007-03-06 00:57:32 22,752 ------w C:\WINDOWS\$hf_mig$\KB950749\update\spcustom.dll
+ 2007-03-06 00:57:56 712,928 ------w C:\WINDOWS\$hf_mig$\KB950749\update\update.exe
+ 2007-03-06 00:58:46 369,376 ------w C:\WINDOWS\$hf_mig$\KB950749\update\updspapi.dll
+ 2008-05-08 12:14:52 203,008 ------w C:\WINDOWS\$hf_mig$\KB950762\SP2QFE\rmcast.sys
+ 2008-05-08 14:02:52 203,136 ------w C:\WINDOWS\$hf_mig$\KB950762\SP3GDR\rmcast.sys
+ 2008-05-08 13:58:18 203,136 ------w C:\WINDOWS\$hf_mig$\KB950762\SP3QFE\rmcast.sys
+ 2007-11-30 12:39:02 17,784 ------w C:\WINDOWS\$hf_mig$\KB950762\spmsg.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$hf_mig$\KB950762\spuninst.exe
+ 2007-11-30 12:39:02 26,488 ------w C:\WINDOWS\$hf_mig$\KB950762\update\spcustom.dll
+ 2007-11-30 12:39:04 752,504 ------w C:\WINDOWS\$hf_mig$\KB950762\update\update.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$hf_mig$\KB950762\update\updspapi.dll
+ 2008-07-07 20:17:16 253,952 ------w C:\WINDOWS\$hf_mig$\KB950974\SP2QFE\es.dll
+ 2008-07-07 20:27:48 253,952 ------w C:\WINDOWS\$hf_mig$\KB950974\SP3GDR\es.dll
+ 2008-07-07 20:23:58 253,952 ------w C:\WINDOWS\$hf_mig$\KB950974\SP3QFE\es.dll
+ 2007-11-30 12:39:02 17,784 ------w C:\WINDOWS\$hf_mig$\KB950974\spmsg.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$hf_mig$\KB950974\spuninst.exe
+ 2007-11-30 12:39:02 26,488 ------w C:\WINDOWS\$hf_mig$\KB950974\update\spcustom.dll
+ 2007-11-30 12:38:56 752,504 ------w C:\WINDOWS\$hf_mig$\KB950974\update\update.exe
+ 2007-11-30 12:38:56 380,792 ------w C:\WINDOWS\$hf_mig$\KB950974\update\updspapi.dll
+ 2008-04-11 18:40:02 683,520 ------w C:\WINDOWS\$hf_mig$\KB951066\SP2QFE\inetcomm.dll
+ 2008-04-11 19:04:32 691,712 ------w C:\WINDOWS\$hf_mig$\KB951066\SP3GDR\inetcomm.dll
+ 2008-04-11 21:22:32 691,712 ------w C:\WINDOWS\$hf_mig$\KB951066\SP3QFE\inetcomm.dll
+ 2007-11-30 12:39:02 17,784 ------w C:\WINDOWS\$hf_mig$\KB951066\spmsg.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$hf_mig$\KB951066\spuninst.exe
+ 2007-11-30 12:39:02 26,488 ------w C:\WINDOWS\$hf_mig$\KB951066\update\spcustom.dll
+ 2007-12-03 15:25:14 752,504 ------w C:\WINDOWS\$hf_mig$\KB951066\update\update.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$hf_mig$\KB951066\update\updspapi.dll
+ 2008-07-14 11:03:00 62,976 ------w C:\WINDOWS\$hf_mig$\KB951072-v2\SP2QFE\tzchange.exe
+ 2008-07-11 12:42:28 62,976 ------w C:\WINDOWS\$hf_mig$\KB951072-v2\SP3GDR\tzchange.exe
+ 2008-07-11 12:51:52 62,976 ------w C:\WINDOWS\$hf_mig$\KB951072-v2\SP3QFE\tzchange.exe
+ 2007-11-30 11:18:10 17,784 ------w C:\WINDOWS\$hf_mig$\KB951072-v2\spmsg.dll
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$hf_mig$\KB951072-v2\spuninst.exe
+ 2007-11-30 11:18:10 26,488 ------w C:\WINDOWS\$hf_mig$\KB951072-v2\update\spcustom.dll
+ 2007-11-30 12:39:04 752,504 ------w C:\WINDOWS\$hf_mig$\KB951072-v2\update\update.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$hf_mig$\KB951072-v2\update\updspapi.dll
+ 2008-06-14 18:02:52 271,616 ------w C:\WINDOWS\$hf_mig$\KB951376-v2\SP2QFE\bthport.sys
+ 2008-06-14 17:31:56 271,616 ------w C:\WINDOWS\$hf_mig$\KB951376-v2\SP3GDR\bthport.sys
+ 2008-06-14 17:37:46 271,616 ------w C:\WINDOWS\$hf_mig$\KB951376-v2\SP3QFE\bthport.sys
+ 2007-11-30 11:18:10 17,784 ------w C:\WINDOWS\$hf_mig$\KB951376-v2\spmsg.dll
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$hf_mig$\KB951376-v2\spuninst.exe
+ 2007-11-30 11:18:10 26,488 ------w C:\WINDOWS\$hf_mig$\KB951376-v2\update\spcustom.dll
+ 2007-11-30 11:18:14 752,504 ------w C:\WINDOWS\$hf_mig$\KB951376-v2\update\update.exe
+ 2007-11-30 11:18:14 380,792 ------w C:\WINDOWS\$hf_mig$\KB951376-v2\update\updspapi.dll
+ 2008-05-07 04:55:20 1,286,144 ------w C:\WINDOWS\$hf_mig$\KB951698\SP2QFE\quartz.dll
+ 2008-05-07 05:10:16 1,286,144 ------w C:\WINDOWS\$hf_mig$\KB951698\SP3GDR\quartz.dll
+ 2008-05-07 05:04:18 1,286,144 ------w C:\WINDOWS\$hf_mig$\KB951698\SP3QFE\quartz.dll
+ 2007-11-30 11:18:10 17,784 ------w C:\WINDOWS\$hf_mig$\KB951698\spmsg.dll
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$hf_mig$\KB951698\spuninst.exe
+ 2007-11-30 11:18:10 26,488 ------w C:\WINDOWS\$hf_mig$\KB951698\update\spcustom.dll
+ 2007-11-30 12:39:04 752,504 ------w C:\WINDOWS\$hf_mig$\KB951698\update\update.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$hf_mig$\KB951698\update\updspapi.dll
+ 2006-08-16 12:13:40 100,352 ------w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\6to4svc.dll
+ 2008-06-20 10:44:08 138,368 ------w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\afd.sys
+ 2008-06-20 17:36:14 147,968 ------w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\dnsapi.dll
+ 2008-06-20 17:36:14 245,248 ------w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\mswsock.dll
+ 2008-06-20 10:44:42 360,960 ------w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
+ 2008-06-20 09:32:40 225,920 ------w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip6.sys
+ 2008-06-20 11:40:08 138,496 ------w C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\afd.sys
+ 2008-06-20 17:47:48 147,968 ------w C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\dnsapi.dll
+ 2008-06-20 17:47:48 245,248 ------w C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\mswsock.dll
+ 2008-06-20 11:51:12 361,600 ------w C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
+ 2008-06-20 11:08:28 225,856 ------w C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip6.sys
+ 2008-06-20 11:48:04 138,496 ------w C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\afd.sys
+ 2008-06-20 17:43:08 147,968 ------w C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\dnsapi.dll
+ 2008-06-20 17:43:08 245,248 ------w C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\mswsock.dll
+ 2008-06-20 11:59:02 361,600 ------w C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
+ 2008-06-20 11:16:44 225,856 ------w C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip6.sys
+ 2007-11-30 12:39:02 17,784 ------w C:\WINDOWS\$hf_mig$\KB951748\spmsg.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$hf_mig$\KB951748\spuninst.exe
+ 2007-11-30 12:39:02 26,488 ------w C:\WINDOWS\$hf_mig$\KB951748\update\spcustom.dll
+ 2007-11-30 12:38:56 752,504 ------w C:\WINDOWS\$hf_mig$\KB951748\update\update.exe
+ 2007-11-30 12:38:56 380,792 ------w C:\WINDOWS\$hf_mig$\KB951748\update\updspapi.dll
+ 2008-05-01 15:04:04 331,776 ------w C:\WINDOWS\$hf_mig$\KB952287\SP2QFE\msadce.dll
+ 2008-05-01 14:34:52 331,776 ------w C:\WINDOWS\$hf_mig$\KB952287\SP3GDR\msadce.dll
+ 2008-05-01 14:38:28 331,776 ------w C:\WINDOWS\$hf_mig$\KB952287\SP3QFE\msadce.dll
+ 2007-11-30 11:18:10 17,784 ------w C:\WINDOWS\$hf_mig$\KB952287\spmsg.dll
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$hf_mig$\KB952287\spuninst.exe
+ 2007-11-30 11:18:10 26,488 ------w C:\WINDOWS\$hf_mig$\KB952287\update\spcustom.dll
+ 2007-11-30 11:18:14 752,504 ------w C:\WINDOWS\$hf_mig$\KB952287\update\update.exe
+ 2007-11-30 11:18:14 380,792 ------w C:\WINDOWS\$hf_mig$\KB952287\update\updspapi.dll
+ 2008-06-24 16:29:58 74,240 ------w C:\WINDOWS\$hf_mig$\KB952954\SP2QFE\mscms.dll
+ 2008-06-24 16:43:12 74,240 ------w C:\WINDOWS\$hf_mig$\KB952954\SP3GDR\mscms.dll
+ 2008-06-24 16:53:22 74,240 ------w C:\WINDOWS\$hf_mig$\KB952954\SP3QFE\mscms.dll
+ 2007-11-30 12:39:02 17,784 ------w C:\WINDOWS\$hf_mig$\KB952954\spmsg.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$hf_mig$\KB952954\spuninst.exe
+ 2007-11-30 12:39:02 26,488 ------w C:\WINDOWS\$hf_mig$\KB952954\update\spcustom.dll
+ 2007-11-30 12:39:04 752,504 ------w C:\WINDOWS\$hf_mig$\KB952954\update\update.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$hf_mig$\KB952954\update\updspapi.dll
+ 2008-09-15 15:13:54 1,846,784 ------w C:\WINDOWS\$hf_mig$\KB954211\SP2QFE\win32k.sys
+ 2008-09-15 15:24:22 1,846,272 ------w C:\WINDOWS\$hf_mig$\KB954211\SP3GDR\win32k.sys
+ 2008-09-15 15:18:38 1,846,656 ------w C:\WINDOWS\$hf_mig$\KB954211\SP3QFE\win32k.sys
+ 2007-11-30 12:39:02 17,784 ------w C:\WINDOWS\$hf_mig$\KB954211\spmsg.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$hf_mig$\KB954211\spuninst.exe
+ 2007-11-30 12:39:02 26,488 ------w C:\WINDOWS\$hf_mig$\KB954211\update\spcustom.dll
+ 2008-07-09 07:34:22 752,504 ------w C:\WINDOWS\$hf_mig$\KB954211\update\update.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$hf_mig$\KB954211\update\updspapi.dll
+ 2008-08-20 05:33:04 1,024,000 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\browseui.dll
+ 2008-08-20 05:33:00 151,040 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\cdfview.dll
+ 2008-08-20 05:33:00 1,053,696 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\danim.dll
+ 2008-08-20 05:33:00 357,888 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\dxtmsft.dll
+ 2008-08-20 05:33:00 205,312 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\dxtrans.dll
+ 2008-08-20 05:33:00 55,808 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\extmgr.dll
+ 2008-08-19 09:38:58 18,432 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\iedw.exe
+ 2008-08-20 05:33:00 251,392 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\iepeers.dll
+ 2008-08-20 05:33:00 96,256 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\inseng.dll
+ 2008-08-20 05:33:02 16,384 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\jsproxy.dll
+ 2008-08-20 05:33:08 3,088,384 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\mshtml.dll
+ 2008-08-20 05:33:02 449,024 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\mshtmled.dll
+ 2008-08-20 05:33:00 146,432 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\msrating.dll
+ 2008-08-20 05:33:00 532,480 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\mstime.dll
+ 2008-08-20 05:33:00 39,424 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\pngfilt.dll
+ 2008-08-20 05:33:02 1,499,136 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\shdocvw.dll
+ 2008-08-20 05:33:02 474,112 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\shlwapi.dll
+ 2008-08-19 09:51:30 690,176 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\spru0401.dll
+ 2008-08-20 05:33:04 617,984 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\urlmon.dll
+ 2008-08-20 05:33:02 666,112 ------w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\wininet.dll
+ 2008-08-20 05:10:14 3,088,896 ------w C:\WINDOWS\$hf_mig$\KB956390\SP3GDR\mshtml.dll
+ 2008-08-20 05:10:12 1,499,136 ------w C:\WINDOWS\$hf_mig$\KB956390\SP3GDR\shdocvw.dll
+ 2008-08-20 05:10:14 617,472 ------w C:\WINDOWS\$hf_mig$\KB956390\SP3GDR\urlmon.dll
+ 2008-08-20 05:10:12 664,576 ------w C:\WINDOWS\$hf_mig$\KB956390\SP3GDR\wininet.dll
+ 2008-08-20 05:06:30 3,088,896 ------w C:\WINDOWS\$hf_mig$\KB956390\SP3QFE\mshtml.dll
+ 2008-08-20 05:06:26 1,499,136 ------w C:\WINDOWS\$hf_mig$\KB956390\SP3QFE\shdocvw.dll
+ 2008-08-20 05:06:28 617,984 ------w C:\WINDOWS\$hf_mig$\KB956390\SP3QFE\urlmon.dll
+ 2008-08-20 05:06:26 665,088 ------w C:\WINDOWS\$hf_mig$\KB956390\SP3QFE\wininet.dll
+ 2007-11-30 11:18:10 17,784 ------w C:\WINDOWS\$hf_mig$\KB956390\spmsg.dll
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$hf_mig$\KB956390\spuninst.exe
+ 2007-11-30 11:18:10 26,488 ------w C:\WINDOWS\$hf_mig$\KB956390\update\spcustom.dll
+ 2007-11-30 12:39:04 752,504 ------w C:\WINDOWS\$hf_mig$\KB956390\update\update.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$hf_mig$\KB956390\update\updspapi.dll
+ 2007-11-30 12:39:02 17,784 ------w C:\WINDOWS\$hf_mig$\KB956391\spmsg.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$hf_mig$\KB956391\spuninst.exe
+ 2007-11-30 12:39:02 26,488 ------w C:\WINDOWS\$hf_mig$\KB956391\update\spcustom.dll
+ 2007-11-30 12:39:04 752,504 ------w C:\WINDOWS\$hf_mig$\KB956391\update\update.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$hf_mig$\KB956391\update\updspapi.dll
+ 2008-08-14 09:48:52 138,368 ------w C:\WINDOWS\$hf_mig$\KB956803\SP2QFE\afd.sys
+ 2008-08-14 10:04:36 138,496 ------w C:\WINDOWS\$hf_mig$\KB956803\SP3GDR\afd.sys
+ 2008-08-14 10:34:26 138,496 ------w C:\WINDOWS\$hf_mig$\KB956803\SP3QFE\afd.sys
+ 2007-11-30 11:18:10 17,784 ------w C:\WINDOWS\$hf_mig$\KB956803\spmsg.dll
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$hf_mig$\KB956803\spuninst.exe
+ 2007-11-30 11:18:10 26,488 ------w C:\WINDOWS\$hf_mig$\KB956803\update\spcustom.dll
+ 2007-11-30 11:18:14 752,504 ------w C:\WINDOWS\$hf_mig$\KB956803\update\update.exe
+ 2007-11-30 11:18:14 380,792 ------w C:\WINDOWS\$hf_mig$\KB956803\update\updspapi.dll
+ 2008-08-14 13:37:04 2,144,256 ------w C:\WINDOWS\$hf_mig$\KB956841\SP2QFE\ntkrnlmp.exe
+ 2008-08-14 13:37:06 2,064,512 ------w C:\WINDOWS\$hf_mig$\KB956841\SP2QFE\ntkrnlpa.exe
+ 2008-08-14 13:37:00 2,022,400 ------w C:\WINDOWS\$hf_mig$\KB956841\SP2QFE\ntkrpamp.exe
+ 2008-08-14 13:37:04 2,187,520 ------w C:\WINDOWS\$hf_mig$\KB956841\SP2QFE\ntoskrnl.exe
+ 2008-08-14 13:20:32 2,146,816 ------w C:\WINDOWS\$hf_mig$\KB956841\SP3GDR\ntkrnlmp.exe
+ 2008-08-14 13:20:34 2,067,584 ------w C:\WINDOWS\$hf_mig$\KB956841\SP3GDR\ntkrnlpa.exe
+ 2008-08-14 13:20:30 2,025,472 ------w C:\WINDOWS\$hf_mig$\KB956841\SP3GDR\ntkrpamp.exe
+ 2008-08-14 13:20:34 2,190,720 ------w C:\WINDOWS\$hf_mig$\KB956841\SP3GDR\ntoskrnl.exe
+ 2008-08-14 13:54:26 2,146,816 ------w C:\WINDOWS\$hf_mig$\KB956841\SP3QFE\ntkrnlmp.exe
+ 2008-08-14 16:24:30 2,067,584 ------w C:\WINDOWS\$hf_mig$\KB956841\SP3QFE\ntkrnlpa.exe
+ 2008-08-14 13:54:24 2,025,472 ------w C:\WINDOWS\$hf_mig$\KB956841\SP3QFE\ntkrpamp.exe
+ 2008-08-14 16:24:28 2,190,720 ------w C:\WINDOWS\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe
+ 2007-11-30 11:18:10 17,784 ------w C:\WINDOWS\$hf_mig$\KB956841\spmsg.dll
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$hf_mig$\KB956841\spuninst.exe
+ 2007-11-30 11:18:10 26,488 ------w C:\WINDOWS\$hf_mig$\KB956841\update\spcustom.dll
+ 2007-11-30 12:39:04 752,504 ------w C:\WINDOWS\$hf_mig$\KB956841\update\update.exe
+ 2008-07-09 07:34:30 380,792 ------w C:\WINDOWS\$hf_mig$\KB956841\update\updspapi.dll
+ 2008-08-28 10:35:34 333,056 ------w C:\WINDOWS\$hf_mig$\KB957095\SP2QFE\srv.sys
+ 2008-09-08 10:41:42 333,824 ------w C:\WINDOWS\$hf_mig$\KB957095\SP3GDR\srv.sys
+ 2008-09-08 11:37:20 333,824 ------w C:\WINDOWS\$hf_mig$\KB957095\SP3QFE\srv.sys
+ 2007-11-30 11:18:10 17,784 ------w C:\WINDOWS\$hf_mig$\KB957095\spmsg.dll
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$hf_mig$\KB957095\spuninst.exe
+ 2007-11-30 11:18:10 26,488 ------w C:\WINDOWS\$hf_mig$\KB957095\update\spcustom.dll
+ 2007-11-30 11:18:14 752,504 ------w C:\WINDOWS\$hf_mig$\KB957095\update\update.exe
+ 2007-11-30 11:18:14 380,792 ------w C:\WINDOWS\$hf_mig$\KB957095\update\updspapi.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$NtUninstallKB938464$\spuninst\updspapi.dll
+ 2006-05-18 05:31:28 450,560 ------w C:\WINDOWS\$NtUninstallKB944338-v2$\jscript.dll
+ 2007-03-06 00:57:40 213,216 ------w C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe
+ 2007-03-06 00:58:46 369,376 ------w C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\updspapi.dll
+ 2004-08-04 06:55:54 417,792 ------w C:\WINDOWS\$NtUninstallKB944338-v2$\vbscript.dll
+ 2004-08-03 22:09:14 82,944 ------w C:\WINDOWS\$NtUninstallKB946648$\msgsc.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$NtUninstallKB946648$\spuninst\updspapi.dll
+ 2004-08-04 09:55:34 561,179 ------w C:\WINDOWS\$NtUninstallKB950749$\dao360.dll
+ 2004-08-04 06:55:42 512,029 ------w C:\WINDOWS\$NtUninstallKB950749$\msexch40.dll
+ 2004-08-04 06:55:42 319,517 ------w C:\WINDOWS\$NtUninstallKB950749$\msexcl40.dll
+ 2004-08-04 06:55:42 1,507,356 ------w C:\WINDOWS\$NtUninstallKB950749$\msjet40.dll
+ 2004-07-17 17:34:48 358,976 ------w C:\WINDOWS\$NtUninstallKB950749$\msjetol1.dll
+ 2004-07-17 17:34:48 358,976 ------w C:\WINDOWS\$NtUninstallKB950749$\msjetoledb40.dll
+ 2004-08-04 06:55:44 151,583 ------w C:\WINDOWS\$NtUninstallKB950749$\msjint40.dll
+ 2004-08-04 06:55:44 53,279 ------w C:\WINDOWS\$NtUninstallKB950749$\msjter40.dll
+ 2004-08-04 06:55:44 241,693 ------w C:\WINDOWS\$NtUninstallKB950749$\msjtes40.dll
+ 2004-08-04 06:55:44 213,023 ------w C:\WINDOWS\$NtUninstallKB950749$\msltus40.dll
+ 2004-08-04 06:55:44 348,189 ------w C:\WINDOWS\$NtUninstallKB950749$\mspbde40.dll
+ 2004-08-04 06:55:44 421,919 ------w C:\WINDOWS\$NtUninstallKB950749$\msrd2x40.dll
+ 2004-08-04 06:55:44 315,423 ------w C:\WINDOWS\$NtUninstallKB950749$\msrd3x40.dll
+ 2004-08-04 06:55:46 552,989 ------w C:\WINDOWS\$NtUninstallKB950749$\msrepl40.dll
+ 2004-08-04 06:55:46 258,077 ------w C:\WINDOWS\$NtUninstallKB950749$\mstext40.dll
+ 2004-08-04 06:55:46 831,519 ------w C:\WINDOWS\$NtUninstallKB950749$\mswdat10.dll
+ 2004-08-04 06:55:46 614,429 ------w C:\WINDOWS\$NtUninstallKB950749$\mswstr10.dll
+ 2004-08-04 06:55:46 348,189 ------w C:\WINDOWS\$NtUninstallKB950749$\msxbde40.dll
+ 2007-03-06 00:57:40 213,216 ------w C:\WINDOWS\$NtUninstallKB950749$\spuninst\spuninst.exe
+ 2007-03-06 00:58:46 369,376 ------w C:\WINDOWS\$NtUninstallKB950749$\spuninst\updspapi.dll
+ 2006-07-13 08:48:58 202,240 ------w C:\WINDOWS\$NtUninstallKB950762$\rmcast.sys
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$NtUninstallKB950762$\spuninst\updspapi.dll
+ 2005-07-26 04:39:48 243,200 ------w C:\WINDOWS\$NtUninstallKB950974$\es.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe
+ 2007-11-30 12:38:56 380,792 ------w C:\WINDOWS\$NtUninstallKB950974$\spuninst\updspapi.dll
+ 2007-05-16 15:13:30 683,520 ------w C:\WINDOWS\$NtUninstallKB951066$\inetcomm.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$NtUninstallKB951066$\spuninst\updspapi.dll
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\updspapi.dll
+ 2007-01-29 08:58:06 60,416 ------w C:\WINDOWS\$NtUninstallKB951072-v2$\tzchange.exe
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe
+ 2007-11-30 11:18:14 380,792 ------w C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\updspapi.dll
+ 2005-08-30 03:54:28 1,285,120 ------w C:\WINDOWS\$NtUninstallKB951698$\quartz.dll
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$NtUninstallKB951698$\spuninst\updspapi.dll
+ 2004-08-04 05:14:16 138,496 ------w C:\WINDOWS\$NtUninstallKB951748$\afd.sys
+ 2006-06-26 17:40:40 148,480 ------w C:\WINDOWS\$NtUninstallKB951748$\dnsapi.dll
+ 2004-08-04 06:55:46 245,248 ------w C:\WINDOWS\$NtUninstallKB951748$\mswsock.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe
+ 2007-11-30 12:38:56 380,792 ------w C:\WINDOWS\$NtUninstallKB951748$\spuninst\updspapi.dll
+ 2006-04-20 11:51:50 359,808 ------w C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
+ 2006-08-16 09:37:30 225,664 ------w C:\WINDOWS\$NtUninstallKB951748$\tcpip6.sys
+ 2004-08-04 09:55:40 331,776 ------w C:\WINDOWS\$NtUninstallKB952287$\msadce.dll
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe
+ 2007-11-30 11:18:14 380,792 ------w C:\WINDOWS\$NtUninstallKB952287$\spuninst\updspapi.dll
+ 2005-06-29 01:48:40 74,240 ------w C:\WINDOWS\$NtUninstallKB952954$\mscms.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$NtUninstallKB952954$\spuninst\updspapi.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$NtUninstallKB954211$\spuninst\updspapi.dll
+ 2007-03-08 15:32:20 1,843,456 ------w C:\WINDOWS\$NtUninstallKB954211$\win32k.sys
+ 2007-05-04 12:31:40 1,023,488 ------w C:\WINDOWS\$NtUninstallKB956390$\browseui.dll
+ 2007-05-04 12:31:42 151,040 ------w C:\WINDOWS\$NtUninstallKB956390$\cdfview.dll
+ 2007-05-04 12:31:58 1,053,696 ------w C:\WINDOWS\$NtUninstallKB956390$\danim.dll
+ 2007-05-04 12:32:04 357,888 ------w C:\WINDOWS\$NtUninstallKB956390$\dxtmsft.dll
+ 2007-05-04 12:32:10 205,312 ------w C:\WINDOWS\$NtUninstallKB956390$\dxtrans.dll
+ 2007-05-04 12:32:16 55,808 ------w C:\WINDOWS\$NtUninstallKB956390$\extmgr.dll
+ 2007-05-04 10:21:22 18,432 ------w C:\WINDOWS\$NtUninstallKB956390$\iedw.exe
+ 2007-05-04 12:32:20 250,880 ------w C:\WINDOWS\$NtUninstallKB956390$\iepeers.dll
+ 2007-05-04 12:32:20 96,256 ------w C:\WINDOWS\$NtUninstallKB956390$\inseng.dll
+ 2007-05-04 12:32:20 16,384 ------w C:\WINDOWS\$NtUninstallKB956390$\jsproxy.dll
+ 2007-05-04 12:32:50 3,079,680 ------w C:\WINDOWS\$NtUninstallKB956390$\mshtml.dll
+ 2007-05-04 12:32:58 449,024 ------w C:\WINDOWS\$NtUninstallKB956390$\mshtmled.dll
+ 2007-05-04 12:33:10 146,432 ------w C:\WINDOWS\$NtUninstallKB956390$\msrating.dll
+ 2007-05-04 12:33:26 532,480 ------w C:\WINDOWS\$NtUninstallKB956390$\mstime.dll
+ 2007-05-04 12:33:30 39,424 ------w C:\WINDOWS\$NtUninstallKB956390$\pngfilt.dll
+ 2007-05-04 12:33:48 1,494,528 ------w C:\WINDOWS\$NtUninstallKB956390$\shdocvw.dll
+ 2007-05-04 12:34:00 474,112 ------w C:\WINDOWS\$NtUninstallKB956390$\shlwapi.dll
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$NtUninstallKB956390$\spuninst\updspapi.dll
+ 2007-05-04 12:34:08 614,400 ------w C:\WINDOWS\$NtUninstallKB956390$\urlmon.dll
+ 2007-05-04 12:34:20 657,408 ------w C:\WINDOWS\$NtUninstallKB956390$\wininet.dll
+ 2007-05-04 10:38:40 253,440 ------w C:\WINDOWS\$NtUninstallKB956390$\xpsp3res.dll
+ 2007-11-30 12:39:02 231,288 ------w C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 ------w C:\WINDOWS\$NtUninstallKB956391$\spuninst\updspapi.dll
+ 2008-06-20 10:44:38 138,368 ------w C:\WINDOWS\$NtUninstallKB956803$\afd.sys
+ 2008-06-20 10:44:38 138,368 ------w C:\WINDOWS\$NtUninstallKB956803$\afd.sys.000
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe
+ 2007-11-30 11:18:14 380,792 ------w C:\WINDOWS\$NtUninstallKB956803$\spuninst\updspapi.dll
+ 2007-02-28 16:01:42 2,137,600 ------w C:\WINDOWS\$NtUninstallKB956841$\ntkrnlmp.exe
+ 2007-02-28 16:01:38 2,017,280 ------w C:\WINDOWS\$NtUninstallKB956841$\ntkrnlpa.exe
+ 2007-02-28 16:01:38 2,017,280 ------w C:\WINDOWS\$NtUninstallKB956841$\ntkrpamp.exe
+ 2007-02-28 16:01:42 2,137,600 ------w C:\WINDOWS\$NtUninstallKB956841$\ntoskrnl.exe
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe
+ 2008-07-09 07:34:30 380,792 ------w C:\WINDOWS\$NtUninstallKB956841$\spuninst\updspapi.dll
+ 2007-11-30 11:18:10 231,288 ------w C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe
+ 2007-11-30 11:18:14 380,792 ------w C:\WINDOWS\$NtUninstallKB957095$\spuninst\updspapi.dll
+ 2006-08-14 10:34:42 332,928 ------w C:\WINDOWS\$NtUninstallKB957095$\srv.sys
+ 2008-10-04 17:16:46 1,887,080 ----a-w C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe
+ 2008-06-24 05:05:12 455,744 ----a-w C:\WINDOWS\Downloaded Program Files\wlscBase.dll
+ 2008-06-14 17:59:04 271,616 ------w C:\WINDOWS\Driver Cache\i386\bthport.sys
- 2007-02-28 16:01:42 2,137,600 ------w C:\WINDOWS\Driver Cache\i386\ntkrnlmp.exe
+ 2008-08-14 13:42:30 2,137,600 ------w C:\WINDOWS\Driver Cache\i386\ntkrnlmp.exe
- 2007-02-28 16:01:44 2,059,136 ------w C:\WINDOWS\Driver Cache\i386\ntkrnlpa.exe
+ 2008-08-14 13:42:32 2,059,264 ------w C:\WINDOWS\Driver Cache\i386\ntkrnlpa.exe
- 2007-02-28 16:01:38 2,017,280 ------w C:\WINDOWS\Driver Cache\i386\ntkrpamp.exe
+ 2008-08-14 13:42:30 2,017,280 ------w C:\WINDOWS\Driver Cache\i386\ntkrpamp.exe
- 2007-02-28 16:01:42 2,181,888 ------w C:\WINDOWS\Driver Cache\i386\ntoskrnl.exe
+ 2008-08-14 13:42:32 2,181,888 ------w C:\WINDOWS\Driver Cache\i386\ntoskrnl.exe
+ 2003-07-07 10:36:00 2,058,343 ----a-r C:\WINDOWS\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OUTLFLTR.DAT
+ 2003-07-08 08:48:00 115,288 ----a-r C:\WINDOWS\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OUTLFLTR.DLL
- 2006-11-23 05:41:26 593,920 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2008-10-19 05:19:18 593,920 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\accicons.exe
- 2006-11-23 05:41:26 12,288 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2008-10-19 05:19:18 12,288 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\cagicon.exe
- 2006-11-23 05:41:26 86,016 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\inficon.exe
+ 2008-10-19 05:19:18 86,016 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\inficon.exe
- 2006-11-23 05:41:26 135,168 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2008-10-19 05:19:18 135,168 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2006-11-23 05:41:26 11,264 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2008-10-19 05:19:18 11,264 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\mspicons.exe
- 2006-11-23 05:41:26 27,136 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2008-10-19 05:19:18 27,136 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\oisicon.exe
- 2006-11-23 05:41:26 4,096 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2008-10-19 05:19:18 4,096 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\opwicon.exe
- 2006-11-23 05:41:26 794,624 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\outicon.exe
+ 2008-10-19 05:19:18 794,624 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2006-11-23 05:41:26 249,856 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pptico.exe
+ 2008-10-19 05:19:18 249,856 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pptico.exe
- 2006-11-23 05:41:26 61,440 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pubs.exe
+ 2008-10-19 05:19:18 61,440 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pubs.exe
- 2006-11-23 05:41:26 23,040 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\unbndico.exe
+ 2008-10-19 05:19:18 23,040 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\unbndico.exe
- 2006-11-23 05:41:26 286,720 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2008-10-19 05:19:18 286,720 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\wordicon.exe
- 2006-11-23 05:41:26 409,600 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2008-10-19 05:19:18 409,600 ----a-r C:\WINDOWS\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2008-10-17 10:24:22 295,606 ----a-r C:\WINDOWS\Installer\{AC76BA86-7AD7-1033-7B44-A81000000003}\SC_Reader.exe
+ 2008-10-17 20:10:54 29,926 ----a-r C:\WINDOWS\Installer\{CACE46A6-D098-40B3-911D-A7334E336714}\MsblIco.Exe
- 2003-04-29 18:07:38 306,688 ------w C:\WINDOWS\IsUninst.exe
+ 1998-10-29 13:45:06 306,688 ----a-w C:\WINDOWS\IsUninst.exe
+ 2003-02-28 13:35:26 6,550 ----a-w C:\WINDOWS\jautoexp.dat
+ 2008-10-20 12:15:28 2,678 ----a-w C:\WINDOWS\java\Packages\Data\6FNZTRND.DAT
+ 2008-10-20 12:15:28 2,678 ----a-w C:\WINDOWS\java\Packages\Data\BTN1V9NB.DAT
+ 2008-10-20 12:15:28 2,678 ----a-w C:\WINDOWS\java\Packages\Data\E7LB9NBX.DAT
+ 2008-10-17 03:13:14 2,232 ----a-w C:\WINDOWS\java\Packages\Data\JDFH35ZX.DAT
+ 2008-10-20 12:15:28 2,678 ----a-w C:\WINDOWS\java\Packages\Data\LFTJPJXJ.DAT
+ 2008-10-20 12:15:32 2,678 ----a-w C:\WINDOWS\java\Packages\Data\VVPR77L3.DAT
+ 2003-02-28 15:26:30 46,352 ----a-w C:\WINDOWS\setdebug.exe
+ 2008-10-20 12:15:46 2,402 ----a-w C:\WINDOWS\SoftwareDistribution\EventCache\{69CFCE9E-A1D1-43DE-9992-3F7C3899CDDD}.bin
+ 2008-07-19 14:43:08 1,163,960 ----a-w C:\WINDOWS\system32\aswBoot.exe
+ 2008-07-19 14:30:54 94,392 ----a-w C:\WINDOWS\system32\AvastSS.scr
- 2007-05-04 12:31:40 1,023,488 ----a-w C:\WINDOWS\system32\browseui.dll
+ 2008-08-20 05:36:16 1,023,488 ----a-w C:\WINDOWS\system32\browseui.dll
- 2007-05-04 12:31:42 151,040 ----a-w C:\WINDOWS\system32\cdfview.dll
+ 2008-08-20 05:36:12 151,040 ----a-w C:\WINDOWS\system32\cdfview.dll
+ 2003-02-28 15:26:26 49,424 ----a-w C:\WINDOWS\system32\clspack.exe
- 2007-05-04 12:31:58 1,053,696 ----a-w C:\WINDOWS\system32\danim.dll
+ 2008-08-20 05:36:12 1,053,696 ----a-w C:\WINDOWS\system32\danim.dll
- 2007-05-04 12:31:40 1,023,488 ----a-w C:\WINDOWS\system32\dllcache\browseui.dll
+ 2008-08-20 05:36:16 1,023,488 ----a-w C:\WINDOWS\system32\dllcache\browseui.dll
+ 2008-06-14 17:59:04 271,616 ------w C:\WINDOWS\system32\dllcache\bthport.sys
- 2007-05-04 12:31:42 151,040 ----a-w C:\WINDOWS\system32\dllcache\cdfview.dll
+ 2008-08-20 05:36:12 151,040 ----a-w C:\WINDOWS\system32\dllcache\cdfview.dll
- 2007-05-04 12:31:58 1,053,696 ----a-w C:\WINDOWS\system32\dllcache\danim.dll
+ 2008-08-20 05:36:12 1,053,696 ----a-w C:\WINDOWS\system32\dllcache\danim.dll
- 2004-08-04 09:55:34 561,179 ----a-w C:\WINDOWS\system32\dllcache\dao360.dll
+ 2008-03-25 04:50:26 554,008 ----a-w C:\WINDOWS\system32\dllcache\dao360.dll
- 2006-06-26 17:40:40 148,480 ----a-w C:\WINDOWS\system32\dllcache\dnsapi.dll
+ 2008-06-20 17:39:48 148,992 ----a-w C:\WINDOWS\system32\dllcache\dnsapi.dll
- 2007-05-04 12:32:04 357,888 ----a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll
+ 2008-08-20 05:36:12 357,888 ----a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll
- 2007-05-04 12:32:10 205,312 ----a-w C:\WINDOWS\system32\dllcache\dxtrans.dll
+ 2008-08-20 05:36:12 205,312 ----a-w C:\WINDOWS\system32\dllcache\dxtrans.dll
- 2005-07-26 04:39:48 243,200 ----a-w C:\WINDOWS\system32\dllcache\es.dll
+ 2008-07-07 20:30:48 253,952 ----a-w C:\WINDOWS\system32\dllcache\es.dll
- 2007-05-04 12:32:16 55,808 ----a-w C:\WINDOWS\system32\dllcache\extmgr.dll
+ 2008-08-20 05:36:12 55,808 ----a-w C:\WINDOWS\system32\dllcache\extmgr.dll
- 2007-05-04 12:32:20 250,880 ----a-w C:\WINDOWS\system32\dllcache\iepeers.dll
+ 2008-08-20 05:36:12 250,880 ----a-w C:\WINDOWS\system32\dllcache\iepeers.dll
- 2007-05-16 15:13:30 683,520 ----a-w C:\WINDOWS\system32\dllcache\inetcomm.dll
+ 2008-04-11 18:50:12 683,520 ----a-w C:\WINDOWS\system32\dllcache\inetcomm.dll
- 2007-05-04 12:32:20 96,256 ----a-w C:\WINDOWS\system32\dllcache\inseng.dll
+ 2008-08-20 05:36:12 96,256 ----a-w C:\WINDOWS\system32\dllcache\inseng.dll
- 2006-05-18 05:31:28 450,560 ----a-w C:\WINDOWS\system32\dllcache\jscript.dll
+ 2007-12-18 14:41:00 450,560 ----a-w C:\WINDOWS\system32\dllcache\jscript.dll
- 2007-05-04 12:32:20 16,384 ----a-w C:\WINDOWS\system32\dllcache\jsproxy.dll
+ 2008-08-20 05:36:14 16,384 ----a-w C:\WINDOWS\system32\dllcache\jsproxy.dll
- 2004-08-04 09:55:40 331,776 ----a-w C:\WINDOWS\system32\dllcache\msadce.dll
+ 2008-05-01 14:30:36 331,776 ----a-w C:\WINDOWS\system32\dllcache\msadce.dll
- 2005-06-29 01:48:40 74,240 ----a-w C:\WINDOWS\system32\dllcache\mscms.dll
+ 2008-06-24 16:22:22 74,240 ----a-w C:\WINDOWS\system32\dllcache\mscms.dll
- 2004-08-04 06:55:42 512,029 ----a-w C:\WINDOWS\system32\dllcache\msexch40.dll
+ 2008-03-25 04:50:28 518,944 ----a-w C:\WINDOWS\system32\dllcache\msexch40.dll
- 2004-08-04 06:55:42 319,517 ----a-w C:\WINDOWS\system32\dllcache\msexcl40.dll
+ 2008-03-25 04:50:30 326,432 ----a-w C:\WINDOWS\system32\dllcache\msexcl40.dll
- 2007-05-04 12:32:50 3,079,680 ----a-w C:\WINDOWS\system32\dllcache\mshtml.dll
+ 2008-08-20 05:36:18 3,081,216 ----a-w C:\WINDOWS\system32\dllcache\mshtml.dll
- 2007-05-04 12:32:58 449,024 ----a-w C:\WINDOWS\system32\dllcache\mshtmled.dll
+ 2008-08-20 05:36:14 449,024 ----a-w C:\WINDOWS\system32\dllcache\mshtmled.dll
- 2004-08-04 06:55:42 1,507,356 ----a-w C:\WINDOWS\system32\dllcache\msjet40.dll
+ 2008-03-25 04:50:34 1,516,568 ----a-w C:\WINDOWS\system32\dllcache\msjet40.dll
- 2004-07-17 17:34:48 358,976 ----a-w C:\WINDOWS\system32\dllcache\msjetol1.dll
+ 2008-03-25 04:50:40 355,112 ----a-w C:\WINDOWS\system32\dllcache\msjetol1.dll
- 2004-08-04 06:55:44 151,583 ----a-w C:\WINDOWS\system32\dllcache\msjint40.dll
+ 2008-03-25 04:49:30 158,496 ----a-w C:\WINDOWS\system32\dllcache\msjint40.dll
- 2004-08-04 06:55:44 53,279 ----a-w C:\WINDOWS\system32\dllcache\msjter40.dll
+ 2008-03-25 04:50:42 60,192 ----a-w C:\WINDOWS\system32\dllcache\msjter40.dll
- 2004-08-04 06:55:44 241,693 ----a-w C:\WINDOWS\system32\dllcache\msjtes40.dll
+ 2008-03-25 04:50:42 248,608 ----a-w C:\WINDOWS\system32\dllcache\msjtes40.dll
- 2004-08-04 06:55:44 213,023 ----a-w C:\WINDOWS\system32\dllcache\msltus40.dll
+ 2008-03-25 04:50:44 219,936 ----a-w C:\WINDOWS\system32\dllcache\msltus40.dll
- 2004-08-04 06:55:44 348,189 ----a-w C:\WINDOWS\system32\dllcache\mspbde40.dll
+ 2008-03-25 04:50:46 355,104 ----a-w C:\WINDOWS\system32\dllcache\mspbde40.dll
- 2007-05-04 12:33:10 146,432 ----a-w C:\WINDOWS\system32\dllcache\msrating.dll
+ 2008-08-20 05:36:12 146,432 ----a-w C:\WINDOWS\system32\dllcache\msrating.dll
- 2004-08-04 06:55:44 421,919 ----a-w C:\WINDOWS\system32\dllcache\msrd2x40.dll
+ 2008-03-25 04:50:48 432,928 ----a-w C:\WINDOWS\system32\dllcache\msrd2x40.dll
- 2004-08-04 06:55:44 315,423 ----a-w C:\WINDOWS\system32\dllcache\msrd3x40.dll
+ 2008-03-25 04:50:50 322,336 ----a-w C:\WINDOWS\system32\dllcache\msrd3x40.dll
- 2004-08-04 06:55:46 552,989 ----a-w C:\WINDOWS\system32\dllcache\msrepl40.dll
+ 2008-03-25 04:50:52 559,904 ----a-w C:\WINDOWS\system32\dllcache\msrepl40.dll
- 2004-08-04 06:55:46 258,077 ----a-w C:\WINDOWS\system32\dllcache\mstext40.dll
+ 2008-03-25 04:50:56 264,992 ----a-w C:\WINDOWS\system32\dllcache\mstext40.dll
- 2007-05-04 12:33:26 532,480 ----a-w C:\WINDOWS\system32\dllcache\mstime.dll
+ 2008-08-20 05:36:12 532,480 ----a-w C:\WINDOWS\system32\dllcache\mstime.dll
- 2004-08-04 06:55:46 831,519 ----a-w C:\WINDOWS\system32\dllcache\mswdat10.dll
+ 2008-03-25 04:50:58 838,432 ----a-w C:\WINDOWS\system32\dllcache\mswdat10.dll
- 2004-08-04 09:55:46 245,248 ----a-w C:\WINDOWS\system32\dllcache\mswsock.dll
+ 2008-06-20 17:39:48 245,248 ----a-w C:\WINDOWS\system32\dllcache\mswsock.dll
- 2004-08-04 06:55:46 614,429 ----a-w C:\WINDOWS\system32\dllcache\mswstr10.dll
+ 2008-03-25 04:49:30 621,344 ----a-w C:\WINDOWS\system32\dllcache\mswstr10.dll
- 2004-08-04 06:55:46 348,189 ----a-w C:\WINDOWS\system32\dllcache\msxbde40.dll
+ 2008-03-25 04:50:58 355,104 ----a-w C:\WINDOWS\system32\dllcache\msxbde40.dll
- 2007-05-04 12:33:30 39,424 ----a-w C:\WINDOWS\system32\dllcache\pngfilt.dll
+ 2008-08-20 05:36:12 39,424 ----a-w C:\WINDOWS\system32\dllcache\pngfilt.dll
- 2005-08-30 03:54:28 1,285,120 ----a-w C:\WINDOWS\system32\dllcache\quartz.dll
+ 2008-05-07 05:14:36 1,285,632 ----a-w C:\WINDOWS\system32\dllcache\quartz.dll
- 2006-07-13 08:48:58 202,240 ----a-w C:\WINDOWS\system32\dllcache\rmcast.sys
+ 2008-05-08 12:28:50 202,752 ----a-w C:\WINDOWS\system32\dllcache\rmcast.sys
- 2007-05-04 12:33:48 1,494,528 ----a-w C:\WINDOWS\system32\dllcache\shdocvw.dll
+ 2008-08-20 05:36:14 1,494,528 ----a-w C:\WINDOWS\system32\dllcache\shdocvw.dll
- 2007-05-04 12:34:00 474,112 ----a-w C:\WINDOWS\system32\dllcache\shlwapi.dll
+ 2008-08-20 05:36:14 474,112 ----a-w C:\WINDOWS\system32\dllcache\shlwapi.dll
- 2006-04-20 11:51:50 359,808 ----a-w C:\WINDOWS\system32\dllcache\tcpip.sys
+ 2008-06-20 10:45:14 360,320 ----a-w C:\WINDOWS\system32\dllcache\tcpip.sys
- 2006-08-16 09:37:30 225,664 ----a-w C:\WINDOWS\system32\dllcache\tcpip6.sys
+ 2008-06-20 09:52:06 225,920 ----a-w C:\WINDOWS\system32\dllcache\tcpip6.sys
- 2007-05-04 12:34:08 614,400 ----a-w C:\WINDOWS\system32\dllcache\urlmon.dll
+ 2008-08-20 05:36:16 614,912 ----a-w C:\WINDOWS\system32\dllcache\urlmon.dll
- 2004-08-04 06:55:54 417,792 ----a-w C:\WINDOWS\system32\dllcache\vbscript.dll
+ 2007-12-18 14:41:00 417,792 ----a-w C:\WINDOWS\system32\dllcache\vbscript.dll
- 2007-05-04 12:34:20 657,408 ----a-w C:\WINDOWS\system32\dllcache\wininet.dll
+ 2008-08-20 05:36:14 657,920 ----a-w C:\WINDOWS\system32\dllcache\wininet.dll
- 2006-06-26 17:40:40 148,480 ----a-w C:\WINDOWS\system32\dnsapi.dll
+ 2008-06-20 17:39:48 148,992 ----a-w C:\WINDOWS\system32\dnsapi.dll
+ 2008-07-19 14:32:16 26,944 ----a-w C:\WINDOWS\system32\drivers\aavmker4.sys
- 2004-08-04 05:14:16 138,496 ----a-w C:\WINDOWS\system32\drivers\afd.sys
+ 2008-08-14 09:51:44 138,368 ----a-w C:\WINDOWS\system32\drivers\afd.sys
+ 2008-07-19 14:37:42 20,560 ----a-w C:\WINDOWS\system32\drivers\aswFsBlk.sys
+ 2008-01-17 17:34:02 93,264 ----a-w C:\WINDOWS\system32\drivers\aswmon.sys
+ 2008-07-19 14:37:22 94,416 ----a-w C:\WINDOWS\system32\drivers\aswmon2.sys
+ 2008-07-19 14:33:42 23,152 ----a-w C:\WINDOWS\system32\drivers\aswRdr.sys
+ 2008-07-19 14:35:18 78,416 ----a-w C:\WINDOWS\system32\drivers\aswSP.sys
+ 2008-07-19 14:32:36 42,912 ----a-w C:\WINDOWS\system32\drivers\aswTdi.sys
+ 2008-06-14 17:59:04 271,616 ------w C:\WINDOWS\system32\drivers\bthport.sys
- 2006-07-13 08:48:58 202,240 ----a-w C:\WINDOWS\system32\drivers\RMCast.sys
+ 2008-05-08 12:28:50 202,752 ----a-w C:\WINDOWS\system32\drivers\RMCast.sys
- 2006-04-20 11:51:50 359,808 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
+ 2008-06-20 10:45:14 360,320 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
- 2006-08-16 09:37:30 225,664 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
+ 2008-06-20 09:52:06 225,920 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
+ 2003-02-28 13:34:42 313,856 ----a-w C:\WINDOWS\system32\dx3j.dll
- 2007-05-04 12:32:04 357,888 ----a-w C:\WINDOWS\system32\dxtmsft.dll
+ 2008-08-20 05:36:12 357,888 ----a-w C:\WINDOWS\system32\dxtmsft.dll
- 2007-05-04 12:32:10 205,312 ----a-w C:\WINDOWS\system32\dxtrans.dll
+ 2008-08-20 05:36:12 205,312 ----a-w C:\WINDOWS\system32\dxtrans.dll
- 2005-07-26 04:39:48 243,200 ----a-w C:\WINDOWS\system32\es.dll
+ 2008-07-07 20:30:48 253,952 ----a-w C:\WINDOWS\system32\es.dll
- 2007-05-04 12:32:16 55,808 ----a-w C:\WINDOWS\system32\extmgr.dll
+ 2008-08-20 05:36:12 55,808 ----a-w C:\WINDOWS\system32\extmgr.dll
- 2007-04-18 17:39:04 334,664 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
+ 2008-10-17 02:39:22 334,664 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
- 2007-05-04 12:32:20 250,880 ----a-w C:\WINDOWS\system32\iepeers.dll
+ 2008-08-20 05:36:12 250,880 ----a-w C:\WINDOWS\system32\iepeers.dll
- 2007-05-16 15:13:30 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
+ 2008-04-11 18:50:12 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
- 2007-05-04 12:32:20 96,256 ----a-w C:\WINDOWS\system32\inseng.dll
+ 2008-08-20 05:36:12 96,256 ----a-w C:\WINDOWS\system32\inseng.dll
+ 2003-02-28 15:26:16 187,152 ----a-w C:\WINDOWS\system32\javacypt.dll
+ 2003-02-28 15:26:18 139,536 ----a-w C:\WINDOWS\system32\javaee.dll
+ 2003-02-28 15:26:18 63,248 ----a-w C:\WINDOWS\system32\javaprxy.dll
+ 2003-02-28 15:26:18 404,752 ----a-w C:\WINDOWS\system32\javart.dll
+ 2003-02-28 15:26:30 15,120 ----a-w C:\WINDOWS\system32\jdbgmgr.exe
+ 2003-02-28 15:26:20 171,280 ----a-w C:\WINDOWS\system32\jit.dll
- 2006-05-18 05:31:28 450,560 ----a-w C:\WINDOWS\system32\jscript.dll
+ 2007-12-18 14:41:00 450,560 ----a-w C:\WINDOWS\system32\jscript.dll
- 2007-05-04 12:32:20 16,384 ----a-w C:\WINDOWS\system32\jsproxy.dll
+ 2008-08-20 05:36:14 16,384 ----a-w C:\WINDOWS\system32\jsproxy.dll
+ 2003-02-28 15:26:30 172,304 ----a-w C:\WINDOWS\system32\jview.exe
+ 2008-09-04 22:35:40 1,488,688 ----a-w C:\WINDOWS\system32\LegitCheckControl.dll
+ 2008-09-04 22:35:40 1,488,688 ----a-w C:\WINDOWS\system32\legitcheckcontrol.dll.bak
+ 2008-10-05 03:16:26 235,936 ----a-r C:\WINDOWS\system32\Macromed\Flash\FlashUtil10a.exe
+ 2008-06-26 21:00:28 3,644,928 ----a-w C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
+ 2008-06-26 20:52:02 229,888 ----a-w C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe
+ 2008-10-17 21:45:02 89,102 ----a-w C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
+ 2008-10-19 08:24:50 84,517 ----a-w C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
+ 2003-03-18 21:20:00 1,060,864 ----a-w C:\WINDOWS\system32\MFC71.dll
- 2007-06-27 21:57:28 16,256,984 ----a-w C:\WINDOWS\system32\MRT.exe
+ 2008-10-07 09:19:42 16,721,856 ----a-w C:\WINDOWS\system32\MRT.exe
+ 2003-02-28 15:26:20 154,384 ----a-w C:\WINDOWS\system32\msawt.dll
- 2005-06-29 01:48:40 74,240 ----a-w C:\WINDOWS\system32\mscms.dll
+ 2008-06-24 16:22:22 74,240 ----a-w C:\WINDOWS\system32\mscms.dll
- 2004-08-04 06:55:42 512,029 ----a-w C:\WINDOWS\system32\msexch40.dll
+ 2008-03-25 04:50:28 518,944 ----a-w C:\WINDOWS\system32\msexch40.dll
- 2004-08-04 06:55:42 319,517 ----a-w C:\WINDOWS\system32\msexcl40.dll
+ 2008-03-25 04:50:30 326,432 ----a-w C:\WINDOWS\system32\msexcl40.dll
- 2007-05-04 12:32:50 3,079,680 ----a-w C:\WINDOWS\system32\mshtml.dll
+ 2008-08-20 05:36:18 3,081,216 ----a-w C:\WINDOWS\system32\mshtml.dll
- 2007-05-04 12:32:58 449,024 ----a-w C:\WINDOWS\system32\mshtmled.dll
+ 2008-08-20 05:36:14 449,024 ----a-w C:\WINDOWS\system32\mshtmled.dll
+ 2003-02-28 15:26:26 947,472 ----a-w C:\WINDOWS\system32\msjava.dll
+ 2003-02-28 15:26:26 21,264 ----a-w C:\WINDOWS\system32\msjdbc10.dll
- 2004-08-04 06:55:42 1,507,356 ----a-w C:\WINDOWS\system32\msjet40.dll
+ 2008-03-25 04:50:34 1,516,568 ----a-w C:\WINDOWS\system32\msjet40.dll
- 2004-07-17 17:34:48 358,976 ----a-w C:\WINDOWS\system32\msjetoledb40.dll
+ 2008-03-25 04:50:40 355,112 ----a-w C:\WINDOWS\system32\msjetoledb40.dll
- 2004-08-04 06:55:44 151,583 ----a-w C:\WINDOWS\system32\msjint40.dll
+ 2008-03-25 04:49:30 158,496 ----a-w C:\WINDOWS\system32\msjint40.dll
- 2004-08-04 06:55:44 53,279 ----a-w C:\WINDOWS\system32\msjter40.dll
+ 2008-03-25 04:50:42 60,192 ----a-w C:\WINDOWS\system32\msjter40.dll
- 2004-08-04 06:55:44 241,693 ----a-w C:\WINDOWS\system32\msjtes40.dll
+ 2008-03-25 04:50:42 248,608 ----a-w C:\WINDOWS\system32\msjtes40.dll
- 2004-08-04 06:55:44 213,023 ----a-w C:\WINDOWS\system32\msltus40.dll
+ 2008-03-25 04:50:44 219,936 ----a-w C:\WINDOWS\system32\msltus40.dll
- 2004-08-04 06:55:44 348,189 ----a-w C:\WINDOWS\system32\mspbde40.dll
+ 2008-03-25 04:50:46 355,104 ----a-w C:\WINDOWS\system32\mspbde40.dll
- 2007-05-04 12:33:10 146,432 ----a-w C:\WINDOWS\system32\msrating.dll
+ 2008-08-20 05:36:12 146,432 ----a-w C:\WINDOWS\system32\msrating.dll
- 2004-08-04 06:55:44 421,919 ----a-w C:\WINDOWS\system32\msrd2x40.dll
+ 2008-03-25 04:50:48 432,928 ----a-w C:\WINDOWS\system32\msrd2x40.dll
- 2004-08-04 06:55:44 315,423 ----a-w C:\WINDOWS\system32\msrd3x40.dll
+ 2008-03-25 04:50:50 322,336 ----a-w C:\WINDOWS\system32\msrd3x40.dll
- 2004-08-04 06:55:46 552,989 ----a-w C:\WINDOWS\system32\msrepl40.dll
+ 2008-03-25 04:50:52 559,904 ----a-w C:\WINDOWS\system32\msrepl40.dll
- 2004-08-04 06:55:46 258,077 ----a-w C:\WINDOWS\system32\mstext40.dll
+ 2008-03-25 04:50:56 264,992 ----a-w C:\WINDOWS\system32\mstext40.dll
- 2007-05-04 12:33:26 532,480 ----a-w C:\WINDOWS\system32\mstime.dll
+ 2008-08-20 05:36:12 532,480 ----a-w C:\WINDOWS\system32\mstime.dll
+ 2003-03-18 20:14:52 499,712 ----a-w C:\WINDOWS\system32\MSVCP71.dll
+ 2003-02-21 04:42:22 348,160 ----a-w C:\WINDOWS\system32\MSVCR71.dll
- 2004-08-04 06:55:46 831,519 ----a-w C:\WINDOWS\system32\mswdat10.dll
+ 2008-03-25 04:50:58 838,432 ----a-w C:\WINDOWS\system32\mswdat10.dll
- 2004-08-04 06:55:46 245,248 ----a-w C:\WINDOWS\system32\mswsock.dll
+ 2008-06-20 17:39:48 245,248 ----a-w C:\WINDOWS\system32\mswsock.dll
- 2004-08-04 06:55:46 614,429 ----a-w C:\WINDOWS\system32\mswstr10.dll
+ 2008-03-25 04:49:30 621,344 ----a-w C:\WINDOWS\system32\mswstr10.dll
- 2004-08-04 06:55:46 348,189 ----a-w C:\WINDOWS\system32\msxbde40.dll
+ 2008-03-25 04:50:58 355,104 ----a-w C:\WINDOWS\system32\msxbde40.dll
+ 2007-07-30 16:19:10 271,224 ----a-w C:\WINDOWS\system32\mucltui.dll
+ 2007-07-30 16:19:04 207,736 ----a-w C:\WINDOWS\system32\muweb.dll
- 2006-11-14 19:22:04 278,528 ----a-w C:\WINDOWS\system32\pncrt.dll
+ 2008-10-17 21:41:08 278,528 ----a-w C:\WINDOWS\system32\pncrt.dll
- 2006-11-14 19:22:06 6,656 ----a-w C:\WINDOWS\system32\pndx5016.dll
+ 2008-10-17 21:41:10 6,656 ----a-w C:\WINDOWS\system32\pndx5016.dll
- 2006-11-14 19:22:06 5,632 ----a-w C:\WINDOWS\system32\pndx5032.dll
+ 2008-10-17 21:41:10 5,632 ----a-w C:\WINDOWS\system32\pndx5032.dll
- 2007-05-04 12:33:30 39,424 ----a-w C:\WINDOWS\system32\pngfilt.dll
+ 2008-08-20 05:36:12 39,424 ----a-w C:\WINDOWS\system32\pngfilt.dll
- 2005-08-30 03:54:28 1,285,120 ----a-w C:\WINDOWS\system32\quartz.dll
+ 2008-05-07 05:14:36 1,285,632 ----a-w C:\WINDOWS\system32\quartz.dll
- 2006-11-14 19:22:14 176,167 ----a-w C:\WINDOWS\system32\rmoc3260.dll
+ 2008-10-17 21:41:24 185,920 ----a-w C:\WINDOWS\system32\rmoc3260.dll
- 2007-05-04 12:33:48 1,494,528 ----a-w C:\WINDOWS\system32\shdocvw.dll
+ 2008-08-20 05:36:14 1,494,528 ----a-w C:\WINDOWS\system32\shdocvw.dll
- 2007-05-04 12:34:00 474,112 ----a-w C:\WINDOWS\system32\shlwapi.dll
+ 2008-08-20 05:36:14 474,112 ----a-w C:\WINDOWS\system32\shlwapi.dll
- 2006-06-16 11:34:44 48,936 ----a-w C:\WINDOWS\system32\sirenacm.dll
+ 2007-10-18 08:31:46 51,224 ----a-w C:\WINDOWS\system32\sirenacm.dll
- 2005-10-12 23:08:42 14,560 ------w C:\WINDOWS\system32\spmsg.dll
+ 2007-11-30 11:18:10 17,784 ------w C:\WINDOWS\system32\spmsg.dll
- 2007-01-29 08:58:06 60,416 ------w C:\WINDOWS\system32\tzchange.exe
+ 2008-07-14 11:09:18 62,976 ------w C:\WINDOWS\system32\tzchange.exe
- 2007-05-04 12:34:08 614,400 ----a-w C:\WINDOWS\system32\urlmon.dll
+ 2008-08-20 05:36:16 614,912 ----a-w C:\WINDOWS\system32\urlmon.dll
- 2004-08-04 06:55:54 417,792 ----a-w C:\WINDOWS\system32\vbscript.dll
+ 2007-12-18 14:41:00 417,792 ----a-w C:\WINDOWS\system32\vbscript.dll
+ 2003-02-28 15:26:26 286,992 ----a-w C:\WINDOWS\system32\vmhelper.dll
+ 2008-09-04 22:36:02 200,064 ----a-w C:\WINDOWS\system32\WgaLogon.dll
+ 2008-09-04 22:36:02 200,064 ----a-w C:\WINDOWS\system32\wgalogon.dll.bak
+ 2008-09-04 22:36:20 332,672 ----a-w C:\WINDOWS\system32\WgaTray.exe
+ 2008-09-04 22:36:20 332,672 ----a-w C:\WINDOWS\system32\wgatray.exe.bak
- 2007-05-04 12:34:20 657,408 ----a-w C:\WINDOWS\system32\wininet.dll
+ 2008-08-20 05:36:14 657,920 ----a-w C:\WINDOWS\system32\wininet.dll
+ 2003-02-28 15:26:32 171,792 ----a-w C:\WINDOWS\system32\wjview.exe
- 2007-05-04 10:38:40 253,440 ----a-w C:\WINDOWS\system32\xpsp3res.dll
+ 2008-08-19 09:51:30 690,176 ----a-w C:\WINDOWS\system32\xpsp3res.dll
+ 2008-10-20 12:19:44 16,384 ----a-w C:\WINDOWS\temp\Perflib_Perfdata_4b8.dat
+ 2006-06-05 11:14:28 479,232 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcm80.dll
+ 2006-06-05 11:14:28 548,864 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcp80.dll
+ 2006-06-05 11:14:28 626,688 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcr80.dll
+ 2008-04-15 17:55:18 1,724,416 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.3352_x-ww_81af8e88\GdiPlus.dll
.
-- Snapshot reset to current date --
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [10/13/2004 07:24 PM 1694208]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [10/18/2007 11:34 AM 5724184]
"IDMan"="C:\Program Files\Internet Download Manager\IDMan.exe" [10/17/2008 11:26 AM 2606512]
"Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [10/18/2008 12:40 AM 120320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [07/09/2001 10:50 AM 155648]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [07/19/2008 05:38 PM 78008]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [05/11/2007 03:06 AM 40048]
"USB Antivirus"="C:\Program Files\USB Disk Security\USBGuard.exe" [09/23/2008 05:21 PM 798720]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [10/18/2008 12:41 AM 185872]
"SoundMan"="SOUNDMAN.EXE" [03/01/2006 04:22 PM 577536 C:\WINDOWS\soundman.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [08/04/2004 09:56 AM 15360]
C:\Documents and Settings\All Users\çں‍ê، ں §ڑ\ںé ©ںê¤\ §ک ںé¢¬نïé\
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2006-11-14 113664]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveSearch"= 1 (0x1)
[HKLM\~\startupfolder\C:^Documents and Settings^winxp^قائمة ابدأ^البرامج^بدء التشغيل^Webshots.lnk]
path=C:\Documents and Settings\winxp\قائمة ابدأ\البرامج\بدء التشغيل\Webshots.lnk
backup=C:\WINDOWS\pss\Webshots.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
--a------ 08/04/2004 09:56 AM 15360 C:\WINDOWS\system32\ctfmon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
--------- 10/13/2004 07:24 PM 1694208 C:\Program Files\Messenger\msmsgs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 11/14/2006 10:10 PM 98304 C:\Program Files\QuickTime\qttask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a------ 10/18/2008 12:41 AM 185872 C:\Program Files\Common Files\Real\Update_OB\realsched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCTVOICE]
-ra------ 04/05/2006 12:31 PM 180224 C:\WINDOWS\system32\pctspk.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PV92TRAY]
-ra------ 04/05/2006 12:31 PM 323584 C:\WINDOWS\system32\PV92Tray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer]
-ra------ 03/08/2005 06:33 AM 53248 C:\WINDOWS\system32\VTTimer.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTrayp]
-ra------ 03/11/2005 08:33 PM 147456 C:\WINDOWS\system32\VTTrayp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"C:\\WINDOWS\\PCHEALTH\\HELPCTR\\BINARIES\\HelpCtr.exe"=
R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [07/19/2008 05:35 PM 78416]
R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [07/19/2008 05:37 PM 20560]
S3 getPlus(R) Helper;getPlus(R) Helper;C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [08/29/2008 10:00 AM 33752]
.
s of the 'Scheduled Tasks' folder
2008-10-16 C:\WINDOWS\Tasks\McAfee Cleanup.job
- C:\DOCUME~1\winxp\LOCALS~1\TEMP\MCPR.tmp\mccleanup.exe []
.
- - - - ORPHANS REMOVED - - - -
MSConfigStartUp-MsnMsgr - C:\Program Files\MSN Messenger\MsnMsgr.Exe
 
.
------- Supplementary Scan -------
.
R0 -: HKCU-Main,Start Page = hxxp://www.google.com.sa/
R1 -: HKCU-SearchURL,(Default) = hxxp://www.google.com/search?q=%s
O8 -: &تصدير إلى Microsoft Excel - C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 -: تحميل الكل بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 -: تحميل بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEExt.htm
O8 -: تحميل محتوى فيديو (إف.إل.في) بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEGetVL.htm
O16 -: Microsoft XML Parser for Java - [URL="file:///C:/WINDOWS/Java/classes/xmldso.cab"]file://C:\WINDOWS\Java\classes\xmldso.cab[/URL]
C:\WINDOWS\Downloaded Program Files\Microsoft XML Parser for Java.osd
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [URL="http://www.gmer.net/"]http://www.gmer.net[/URL]
Rootkit scan 2008-10-20 16:32:07
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ... 
scanning hidden autostart entries ...
scanning hidden files ... 
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
PROCESS: C:\WINDOWS\system32\lsass.exe
-> C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork1.dll
.
Completion time: 10/20/2008 16:32:50
ComboFix-quarantined-files.txt  2008-10-20 13:32:50
ComboFix3.txt  2008-10-16 18:35:18
ComboFix2.txt  2008-10-16 18:47:44
Pre-Run: 25,938,804,736 bytes free
Post-Run: 26,069,549,056 bytes free
772 --- E O F --- 2008-10-20 12:17:41

وهذا تقرير الهايجاكـ

كود:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 04:35:41 م, on 20/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\explorer.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Documents and Settings\winxp\سطح المكتب\Zyzoom_HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [URL]http://go.microsoft.com/fwlink/?LinkId=69157[/URL]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [URL]http://go.microsoft.com/fwlink/?LinkId=54896[/URL]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [URL]http://go.microsoft.com/fwlink/?LinkId=54896[/URL]
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [USB Antivirus] C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: &تصدير إلى Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: تحميل الكل بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى فيديو (إف.إل.في) بـ إنترنت داونلود مانيجر - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: بحث - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - [URL]http://download.bitdefender.com/resources/scan8/oscan8.cab[/URL]
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - [URL]http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5036.cab[/URL]
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - [URL]http://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab[/URL]
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
--
End of file - 5585 bytes

ديمو داش .. ماتقصر يالغالي .. ومشكور عالمساعده مقدما .. جزاك الله الجنه

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

.. ماقصرت يالغالي ... وطمنتني الله يريحك دنيا وآخره وجزاك الله الجنه

Demo-dash · 20 أكتوبر 2008

وياك يارب

اداه الكومبو فكس حذفت الفايروسات

باقي لك من تقرير الهاي جاك الاخير انك تحذف هذي القيم

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

طريقة الحذف

نزل هالاداة لتنظيف الجهاز

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

والله يوفقكم جميعا

Samy 89 · 20 أكتوبر 2008

تم الحذف

k:

والتنظيف

جزاك الله خير ياغالي

k:

الفايروسات هتكت عرض الفلاش مع الجهاز .. ساعدوني

Samy 89

زيزوومى فعال

Demo-dash

داعم للمنتدى،(خبراء زيزووم )

توقيع : Demo-dash

Demo-dash

داعم للمنتدى،(خبراء زيزووم )

توقيع : Demo-dash

ashalshaikh

زيزوومى فضى

توقيع : ashalshaikh

ashalshaikh

زيزوومى فضى

توقيع : ashalshaikh

Demo-dash

داعم للمنتدى،(خبراء زيزووم )

توقيع : Demo-dash

Samy 89

زيزوومى فعال

Demo-dash

داعم للمنتدى،(خبراء زيزووم )

توقيع : Demo-dash

Samy 89

زيزوومى فعال

NTLite Business 2025.8.10552 X64

زيزوومى فعال

داعم للمنتدى،(خبراء زيزووم )

توقيع : Demo-dashDemo-dash is verified member.

داعم للمنتدى،(خبراء زيزووم )

توقيع : Demo-dashDemo-dash is verified member.

زيزوومى فضى

توقيع : ashalshaikh

زيزوومى فضى

توقيع : ashalshaikh

داعم للمنتدى،(خبراء زيزووم )

توقيع : Demo-dashDemo-dash is verified member.

زيزوومى فعال

داعم للمنتدى،(خبراء زيزووم )

توقيع : Demo-dashDemo-dash is verified member.

زيزوومى فعال

توقيع : Demo-dash

توقيع : Demo-dash

توقيع : Demo-dash

توقيع : Demo-dash