مشكله في ايقاف الكمبيوتر

[بيدو]

السلام عليكم ورحمة الله وبركاته
ارجو مساعدتي في حل هذه المشكله حيث ان جهازي لايغلق اضغط على ايقاف التشغيل ولايتوقف مما اظطر الى فصله من السلك
كما ان هناك رساله تظهر بشكل متكرر دائما انه صادف وجود خطأ تصحيح االخطأ أو عدم ارسال
ولكم الشكر الجزيل

 

[عزيز]

اتبع الاتي
اضغط ابدأ
بعدين اضغط لوحة التحكم
ابحث عن ( خيارات الطاقة) واضغطها ومن الخيارات اللي فوق اضغط خيارات متقدمه
بعدين في الخيار ( عند الضغط على زر Power في الكومبيوتر ) نختار ايقاف التشغيل
بعدين اضغط تطبيق ثم موافق ....... وخلاص

 

[صمت السكوت]

عطل جميع برامج الحماية ,,
وحمل هذه الاداة واحفظها على سطح المكتب

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
انتظر حتى الاداة تنتهي من فحص جهازك ,,, وبشكل تلقائي يعاد تشغيل جهازك ,,
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ,, انسخه والصقه بردك القادم
(2)
واعمل تقرير للهايجاك

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

اذا انتهى التحميل ==> شغل البرنامج ==> واضغط على Do a system scan and save log
لحظات ويظهر لك تقرير ,, انسخه والصقه بردك القادم

 

[بيدو]

اتبعت نفس الخطوات وهي نفس الخطوات الموجودة على جهازي

 

[السّاجد لله]

اعملي التالي

من ابدأ ختر run واكتب الامر التالي

msconfig

ثم اوكي

ستظهر شاشة التطبيق

system configuration utility ​

اعمل كما يلي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

​

ثم وافق على اعادة التغشيل​

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

​

 

[بيدو]

ComboFix 08-10-25.01 - user 10/26/2008 22:23:19.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1256.1.1025.18.168 [GMT 3:00]
Running from: C:\Documents and Settings\user\سطح المكتب\ComboFix.exe
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\IE4 Error Log.txt
.
((((((((((((((((((((((((( Files Created from 2008-09-26 to 2008-10-26 )))))))))))))))))))))))))))))))
.
No new files created in this timespan
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-10-26 19:33 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-10-26 19:32 360,480 --sha-w C:\WINDOWS\system32\drivers\fidbox2.dat
2008-10-26 19:31 4,408 --sha-w C:\WINDOWS\system32\drivers\fidbox2.idx
2008-10-26 19:29 33,108 --sha-w C:\WINDOWS\system32\drivers\fidbox.idx
2008-10-26 19:29 3,831,328 --sha-w C:\WINDOWS\system32\drivers\fidbox.dat
2008-10-26 07:35 --------- d-----w C:\Program Files\Soft Catcher
2008-10-26 06:32 --------- d-----w C:\Program Files\Free Video Tools
2008-10-21 22:48 --------- d-----w C:\Program Files\Circle Developement
2008-10-21 22:48 --------- d-----w C:\Documents and Settings\user\Application Data\movenewfilm
2008-10-21 21:39 96,976 ----a-w C:\WINDOWS\system32\drivers\klin.dat
2008-10-21 21:09 87,855 ----a-w C:\WINDOWS\system32\drivers\klick.dat
2008-10-21 15:29 --------- d-----w C:\Program Files\Kaspersky Lab
2008-10-21 14:38 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
2008-10-20 10:52 --------- d-----w C:\Documents and Settings\All Users\Application Data\Long slow road itch
2008-10-20 10:50 --------- d-----w C:\Program Files\movenewfilm
2008-10-19 05:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\avg7
2008-10-18 07:04 --------- d-----w C:\Documents and Settings\user\Application Data\AVG7
2008-10-16 17:14 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-10-15 13:49 --------- d-----w C:\Documents and Settings\All Users\Application Data\Messenger Plus!
2008-10-15 12:23 --------- d-----w C:\Program Files\Windows Live
2008-10-15 12:23 --------- d-----w C:\Program Files\MSN Messenger
2008-10-15 12:23 --------- d-----w C:\Program Files\Messenger Plus! Live
2008-10-14 22:00 --------- d-----w C:\Program Files\Common Files\Hewlett-Packard
2008-10-14 21:59 --------- d-----w C:\Program Files\HP
2008-10-14 05:42 --------- d-----w C:\Program Files\GlobFX
2008-10-12 19:43 --------- d-----w C:\Documents and Settings\user\Application Data\ACD Systems
2008-10-12 19:42 10,368 ----a-w C:\WINDOWS\system32\drivers\pfc.sys
2008-10-12 19:42 --------- d-----w C:\Program Files\Common Files\ACD Systems
2008-10-12 19:42 --------- d-----w C:\Program Files\ACD Systems
2008-10-12 19:42 --------- d-----w C:\Documents and Settings\All Users\Application Data\ACD Systems
2008-10-12 19:40 --------- d-----w C:\Program Files\Common Files\Adobe
2008-10-12 19:35 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-10-12 19:35 --------- d-----w C:\Program Files\Macromedia
2008-10-12 19:34 --------- d-----w C:\Program Files\JetAudio
2008-10-12 19:31 --------- d-----w C:\Program Files\Windows Media Connect 2
2008-10-12 19:27 --------- d-----w C:\Program Files\Common Files\Ahead
2008-10-12 19:27 --------- d-----w C:\Program Files\Ahead
2008-10-12 19:23 --------- d-----w C:\Documents and Settings\LocalService\Application Data\AVG7
2008-10-12 19:19 47,104 ------w C:\WINDOWS\AKDeInstall.exe
2008-10-12 19:19 --------- d-----w C:\Program Files\mpegable
2008-10-12 19:12 --------- d-----w C:\Program Files\CyberLink
2008-10-12 19:12 --------- d-----w C:\Documents and Settings\All Users\Application Data\CyberLink
2008-10-12 19:09 --------- d-----w C:\Program Files\Real
2008-10-12 19:09 --------- d-----w C:\Program Files\Common Files\xing shared
2008-10-12 19:09 --------- d-----w C:\Program Files\Common Files\Real
2008-10-12 19:06 --------- d-----w C:\Program Files\Java
2008-10-12 19:05 428,568 ----a-w C:\WINDOWS\system32\cdky1.reg
2008-10-12 19:05 --------- d-----w C:\Program Files\Common Files\Java
2008-10-12 19:04 --------- d-----w C:\Program Files\Golden Al-Wafi Translator
2008-10-12 19:03 --------- d-----w C:\Program Files\Google
2008-10-12 19:03 --------- d-----w C:\Documents and Settings\All Users\Application Data\WinZip
2008-10-12 19:02 90,112 ----a-w C:\WINDOWS\system32\agsaami.dll
2008-10-12 19:02 73,216 ----a-w C:\WINDOWS\ST6UNST.EXE
2008-10-12 19:02 610,304 ----a-w C:\WINDOWS\system32\agsaamg.dll
2008-10-12 19:02 372,736 ----a-w C:\WINDOWS\system32\agsaamc.dll
2008-10-12 19:02 2,535,424 ----a-w C:\WINDOWS\system32\agsaamj.dll
2008-10-12 19:02 196,608 ----a-w C:\WINDOWS\system32\maag.dll
2008-10-12 19:02 172,032 ------w C:\WINDOWS\Setup1.exe
2008-10-12 19:02 1,986,560 ----a-w C:\WINDOWS\system32\akll.dll
2008-10-12 19:02 1,245,184 ----a-w C:\WINDOWS\system32\bkll.dll
2008-10-12 19:02 1,212,416 ----a-w C:\WINDOWS\system32\ckll.dll
2008-10-12 19:02 --------- d-----w C:\Program Files\Real_SC
2008-10-12 18:52 --------- d-----w C:\Program Files\K-Lite Codec Pack
2008-10-12 18:49 155,995 ----a-w C:\WINDOWS\java\Packages\V9BTB9RH.ZIP
2008-10-12 18:43 --------- d-----w C:\Program Files\MSBuild
2008-10-12 18:43 --------- d-----w C:\Program Files\Microsoft Works
2008-10-12 18:41 --------- d-----w C:\Program Files\Microsoft.NET
2008-10-12 18:39 --------- d-----w C:\Program Files\Microsoft Visual Studio 8
2008-10-12 18:30 --------- d-----w C:\Program Files\Launch Manager
2008-10-12 18:23 --------- d-----w C:\Program Files\Realtek
2008-10-12 18:23 --------- d-----w C:\Program Files\Common Files\InstallShield
2008-10-12 18:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\InstallShield
2008-10-12 18:22 --------- d-----w C:\Program Files\CONEXANT
2008-10-12 18:22 --------- d-----w C:\Program Files\Broadcom
2008-10-12 18:20 --------- d-----w C:\Program Files\Synaptics
2008-10-12 18:17 --------- d-----w C:\Program Files\DIFX
2008-10-12 18:15 --------- d-----w C:\Documents and Settings\user\Application Data\ATI
2008-10-12 18:12 --------- d-----w C:\Program Files\ATI Technologies
2008-10-12 17:51 --------- d-----w C:\Program Files\microsoft frontpage
2008-09-15 15:37 1,845,888 ----a-w C:\WINDOWS\system32\win32k.sys
2008-08-28 10:04 333,056 ----a-w C:\WINDOWS\system32\drivers\srv.sys
2008-08-20 05:36 657,920 ----a-w C:\WINDOWS\system32\wininet.dll
2008-08-14 13:42 2,181,888 ----a-w C:\WINDOWS\system32\ntoskrnl.exe
2008-08-14 13:42 2,059,264 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe
2008-07-29 17:21 218,376 ----a-w C:\WINDOWS\system32\klogon.dll
.
((((((((((((((((((((((((((((( snapshot@Tue 10-21-2008_20.52.52.76 )))))))))))))))))))))))))))))))))))))))))
.
+ 2005-02-25 03:34:29 14,560 ----a-w C:\WINDOWS\$hf_mig$\KB898461\spmsg.dll
+ 2005-02-25 03:34:29 209,120 ----a-w C:\WINDOWS\$hf_mig$\KB898461\spuninst.exe
+ 2005-02-25 03:34:29 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB898461\spupdsvc.exe
+ 2005-02-25 03:34:29 22,240 ----a-w C:\WINDOWS\$hf_mig$\KB898461\update\spcustom.dll
+ 2005-02-25 03:34:29 714,976 ----a-w C:\WINDOWS\$hf_mig$\KB898461\update\update.exe
+ 2005-02-25 03:34:30 369,888 ----a-w C:\WINDOWS\$hf_mig$\KB898461\update\updspapi.dll
+ 2006-12-14 08:53:36 14,560 ----a-w C:\WINDOWS\$hf_mig$\KB935448\spmsg.dll
+ 2006-12-14 08:53:36 213,216 ----a-w C:\WINDOWS\$hf_mig$\KB935448\spuninst.exe
+ 2006-12-14 08:53:36 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB935448\update\spcustom.dll
+ 2006-12-14 08:53:37 712,928 ----a-w C:\WINDOWS\$hf_mig$\KB935448\update\update.exe
+ 2006-12-14 08:53:37 369,376 ----a-w C:\WINDOWS\$hf_mig$\KB935448\update\updspapi.dll
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB938464\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB938464\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB938464\update\spcustom.dll
+ 2007-11-30 11:18:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB938464\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB938464\update\updspapi.dll
+ 2007-12-18 14:32:26 450,560 ----a-w C:\WINDOWS\$hf_mig$\KB944338-v2\SP2QFE\jscript.dll
+ 2007-12-18 14:32:26 417,792 ----a-w C:\WINDOWS\$hf_mig$\KB944338-v2\SP2QFE\vbscript.dll
+ 2007-03-06 00:57:34 14,560 ----a-w C:\WINDOWS\$hf_mig$\KB944338-v2\spmsg.dll
+ 2007-03-06 00:57:39 213,216 ----a-w C:\WINDOWS\$hf_mig$\KB944338-v2\spuninst.exe
+ 2007-03-06 00:57:32 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB944338-v2\update\spcustom.dll
+ 2007-03-06 00:57:56 712,928 ----a-w C:\WINDOWS\$hf_mig$\KB944338-v2\update\update.exe
+ 2007-03-06 00:58:46 369,376 ----a-w C:\WINDOWS\$hf_mig$\KB944338-v2\update\updspapi.dll
+ 2008-05-02 13:33:32 83,968 ----a-w C:\WINDOWS\$hf_mig$\KB946648\SP2QFE\msgsc.dll
+ 2008-05-02 14:01:50 83,968 ----a-w C:\WINDOWS\$hf_mig$\KB946648\SP3GDR\msgsc.dll
+ 2008-05-02 13:42:54 83,968 ----a-w C:\WINDOWS\$hf_mig$\KB946648\SP3QFE\msgsc.dll
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB946648\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB946648\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB946648\update\spcustom.dll
+ 2007-11-30 11:18:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB946648\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB946648\update\updspapi.dll
+ 2008-03-25 04:50:25 554,008 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\dao360.dll
+ 2008-03-25 04:50:28 518,944 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msexch40.dll
+ 2008-03-25 04:50:30 326,432 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msexcl40.dll
+ 2008-03-25 04:50:34 1,516,568 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msjet40.dll
+ 2008-03-25 04:50:40 355,112 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msjetol1.dll
+ 2008-03-25 04:49:29 158,496 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msjint40.dll
+ 2008-03-25 04:50:42 60,192 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msjter40.dll
+ 2008-03-25 04:50:42 248,608 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msjtes40.dll
+ 2008-03-25 07:20:46 219,936 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msltus40.dll
+ 2008-03-25 04:50:45 355,104 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\mspbde40.dll
+ 2008-03-25 04:50:47 432,928 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msrd2x40.dll
+ 2008-03-25 04:50:49 322,336 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msrd3x40.dll
+ 2008-03-25 04:50:52 559,904 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msrepl40.dll
+ 2008-03-25 04:50:55 264,992 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\mstext40.dll
+ 2008-03-25 04:50:57 838,432 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\mswdat10.dll
+ 2008-03-25 04:49:30 621,344 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\mswstr10.dll
+ 2008-03-25 04:50:58 355,104 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msxbde40.dll
+ 2007-03-06 00:57:33 14,560 ----a-w C:\WINDOWS\$hf_mig$\KB950749\spmsg.dll
+ 2007-03-06 00:57:38 213,216 ----a-w C:\WINDOWS\$hf_mig$\KB950749\spuninst.exe
+ 2007-03-06 00:57:32 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB950749\update\spcustom.dll
+ 2007-03-06 00:57:56 712,928 ----a-w C:\WINDOWS\$hf_mig$\KB950749\update\update.exe
+ 2007-03-06 00:58:46 369,376 ----a-w C:\WINDOWS\$hf_mig$\KB950749\update\updspapi.dll
+ 2008-05-08 12:14:51 203,008 ----a-w C:\WINDOWS\$hf_mig$\KB950762\SP2QFE\rmcast.sys
+ 2008-05-08 14:02:52 203,136 ----a-w C:\WINDOWS\$hf_mig$\KB950762\SP3GDR\rmcast.sys
+ 2008-05-08 13:58:17 203,136 ----a-w C:\WINDOWS\$hf_mig$\KB950762\SP3QFE\rmcast.sys
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB950762\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB950762\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB950762\update\spcustom.dll
+ 2007-11-30 12:39:03 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB950762\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB950762\update\updspapi.dll
+ 2008-07-07 20:17:16 253,952 ----a-w C:\WINDOWS\$hf_mig$\KB950974\SP2QFE\es.dll
+ 2008-07-07 20:27:47 253,952 ----a-w C:\WINDOWS\$hf_mig$\KB950974\SP3GDR\es.dll
+ 2008-07-07 20:23:57 253,952 ----a-w C:\WINDOWS\$hf_mig$\KB950974\SP3QFE\es.dll
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB950974\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB950974\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB950974\update\spcustom.dll
+ 2007-11-30 12:38:55 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB950974\update\update.exe
+ 2007-11-30 12:38:55 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB950974\update\updspapi.dll
+ 2008-04-11 18:40:01 683,520 ----a-w C:\WINDOWS\$hf_mig$\KB951066\SP2QFE\inetcomm.dll
+ 2008-04-11 19:04:32 691,712 ----a-w C:\WINDOWS\$hf_mig$\KB951066\SP3GDR\inetcomm.dll
+ 2008-04-11 21:22:32 691,712 ----a-w C:\WINDOWS\$hf_mig$\KB951066\SP3QFE\inetcomm.dll
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB951066\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB951066\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB951066\update\spcustom.dll
+ 2007-12-03 15:25:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB951066\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB951066\update\updspapi.dll
+ 2008-07-14 11:03:00 62,976 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\SP2QFE\tzchange.exe
+ 2008-07-11 12:42:28 62,976 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\SP3GDR\tzchange.exe
+ 2008-07-11 12:51:51 62,976 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\SP3QFE\tzchange.exe
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\update\spcustom.dll
+ 2007-11-30 12:39:03 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\update\updspapi.dll
+ 2008-06-14 18:02:52 271,616 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\SP2QFE\bthport.sys
+ 2008-06-14 17:31:55 271,616 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\SP3GDR\bthport.sys
+ 2008-06-14 17:37:45 271,616 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\SP3QFE\bthport.sys
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\update\spcustom.dll
+ 2007-11-30 11:18:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\update\update.exe
+ 2007-11-30 11:18:13 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\update\updspapi.dll
+ 2008-05-07 04:55:20 1,286,144 ----a-w C:\WINDOWS\$hf_mig$\KB951698\SP2QFE\quartz.dll
+ 2008-05-07 05:10:16 1,286,144 ----a-w C:\WINDOWS\$hf_mig$\KB951698\SP3GDR\quartz.dll
+ 2008-05-07 05:04:17 1,286,144 ----a-w C:\WINDOWS\$hf_mig$\KB951698\SP3QFE\quartz.dll
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB951698\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB951698\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB951698\update\spcustom.dll
+ 2007-11-30 12:39:03 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB951698\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB951698\update\updspapi.dll
+ 2006-08-16 12:13:40 100,352 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\6to4svc.dll
+ 2008-06-20 10:44:08 138,368 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\afd.sys
+ 2008-06-20 17:36:14 147,968 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\dnsapi.dll
+ 2008-06-20 17:36:14 245,248 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\mswsock.dll
+ 2008-06-20 10:44:42 360,960 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
+ 2008-06-20 09:32:39 225,920 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip6.sys
+ 2008-06-20 11:40:08 138,496 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\afd.sys
+ 2008-06-20 17:47:47 147,968 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\dnsapi.dll
+ 2008-06-20 17:47:47 245,248 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\mswsock.dll
+ 2008-06-20 11:51:12 361,600 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
+ 2008-06-20 11:08:27 225,856 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip6.sys
+ 2008-06-20 11:48:03 138,496 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\afd.sys
+ 2008-06-20 17:43:07 147,968 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\dnsapi.dll
+ 2008-06-20 17:43:07 245,248 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\mswsock.dll
+ 2008-06-20 11:59:02 361,600 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
+ 2008-06-20 11:16:44 225,856 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip6.sys
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB951748\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB951748\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB951748\update\spcustom.dll
+ 2007-11-30 12:38:55 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB951748\update\update.exe
+ 2007-11-30 12:38:55 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB951748\update\updspapi.dll
+ 2008-05-01 15:04:03 331,776 ----a-w C:\WINDOWS\$hf_mig$\KB952287\SP2QFE\msadce.dll
+ 2008-05-01 14:34:51 331,776 ----a-w C:\WINDOWS\$hf_mig$\KB952287\SP3GDR\msadce.dll
+ 2008-05-01 14:38:27 331,776 ----a-w C:\WINDOWS\$hf_mig$\KB952287\SP3QFE\msadce.dll
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB952287\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB952287\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB952287\update\spcustom.dll
+ 2007-11-30 11:18:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB952287\update\update.exe
+ 2007-11-30 11:18:13 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB952287\update\updspapi.dll
+ 2008-06-24 16:29:58 74,240 ----a-w C:\WINDOWS\$hf_mig$\KB952954\SP2QFE\mscms.dll
+ 2008-06-24 16:43:12 74,240 ----a-w C:\WINDOWS\$hf_mig$\KB952954\SP3GDR\mscms.dll
+ 2008-06-24 16:53:22 74,240 ----a-w C:\WINDOWS\$hf_mig$\KB952954\SP3QFE\mscms.dll
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB952954\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB952954\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB952954\update\spcustom.dll
+ 2007-11-30 12:39:03 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB952954\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB952954\update\updspapi.dll
+ 2008-09-15 15:13:54 1,846,784 ----a-w C:\WINDOWS\$hf_mig$\KB954211\SP2QFE\win32k.sys
+ 2008-09-15 15:24:21 1,846,272 ----a-w C:\WINDOWS\$hf_mig$\KB954211\SP3GDR\win32k.sys
+ 2008-09-15 15:18:38 1,846,656 ----a-w C:\WINDOWS\$hf_mig$\KB954211\SP3QFE\win32k.sys
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB954211\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB954211\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB954211\update\spcustom.dll
+ 2008-07-09 07:34:22 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB954211\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB954211\update\updspapi.dll
+ 2008-08-20 05:33:03 1,024,000 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\browseui.dll
+ 2008-08-20 05:32:59 151,040 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\cdfview.dll
+ 2008-08-20 05:32:59 1,053,696 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\danim.dll
+ 2008-08-20 05:32:59 357,888 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\dxtmsft.dll
+ 2008-08-20 05:32:59 205,312 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\dxtrans.dll
+ 2008-08-20 05:32:59 55,808 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\extmgr.dll
+ 2008-08-19 09:38:57 18,432 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\iedw.exe
+ 2008-08-20 05:33:00 251,392 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\iepeers.dll
+ 2008-08-20 05:33:00 96,256 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\inseng.dll
+ 2008-08-20 05:33:02 16,384 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\jsproxy.dll
+ 2008-08-20 05:33:07 3,088,384 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\mshtml.dll
+ 2008-08-20 05:33:02 449,024 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\mshtmled.dll
+ 2008-08-20 05:33:00 146,432 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\msrating.dll
+ 2008-08-20 05:33:00 532,480 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\mstime.dll
+ 2008-08-20 05:33:00 39,424 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\pngfilt.dll
+ 2008-08-20 05:33:01 1,499,136 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\shdocvw.dll
+ 2008-08-20 05:33:02 474,112 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\shlwapi.dll
+ 2008-08-19 12:21:32 690,176 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\spru0401.dll
+ 2008-08-20 05:33:04 617,984 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\urlmon.dll
+ 2008-08-20 05:33:02 666,112 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\wininet.dll
+ 2008-08-20 07:40:14 3,088,896 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3GDR\mshtml.dll
+ 2008-08-20 05:10:12 1,499,136 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3GDR\shdocvw.dll
+ 2008-08-20 05:10:13 617,472 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3GDR\urlmon.dll
+ 2008-08-20 05:10:12 664,576 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3GDR\wininet.dll
+ 2008-08-20 05:06:29 3,088,896 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3QFE\mshtml.dll
+ 2008-08-20 05:06:25 1,499,136 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3QFE\shdocvw.dll
+ 2008-08-20 05:06:27 617,984 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3QFE\urlmon.dll
+ 2008-08-20 05:06:26 665,088 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3QFE\wininet.dll
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB956390\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB956390\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB956390\update\spcustom.dll
+ 2007-11-30 12:39:03 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB956390\update\update.exe
+ 2008-07-09 07:34:30 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB956390\update\updspapi.dll
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB956391\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB956391\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB956391\update\spcustom.dll
+ 2007-11-30 12:39:03 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB956391\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB956391\update\updspapi.dll
+ 2008-08-14 09:48:52 138,368 ----a-w C:\WINDOWS\$hf_mig$\KB956803\SP2QFE\afd.sys
+ 2008-08-14 10:04:36 138,496 ----a-w C:\WINDOWS\$hf_mig$\KB956803\SP3GDR\afd.sys
+ 2008-08-14 10:34:26 138,496 ----a-w C:\WINDOWS\$hf_mig$\KB956803\SP3QFE\afd.sys
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB956803\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB956803\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB956803\update\spcustom.dll
+ 2007-11-30 11:18:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB956803\update\update.exe
+ 2007-11-30 11:18:13 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB956803\update\updspapi.dll
+ 2008-08-14 13:37:03 2,144,256 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP2QFE\ntkrnlmp.exe
+ 2008-08-14 13:37:05 2,064,512 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP2QFE\ntkrnlpa.exe
+ 2008-08-14 13:37:00 2,022,400 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP2QFE\ntkrpamp.exe
+ 2008-08-14 13:37:03 2,187,520 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP2QFE\ntoskrnl.exe
+ 2008-08-14 13:20:31 2,146,816 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3GDR\ntkrnlmp.exe
+ 2008-08-14 13:20:34 2,067,584 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3GDR\ntkrnlpa.exe
+ 2008-08-14 13:20:30 2,025,472 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3GDR\ntkrpamp.exe
+ 2008-08-14 13:20:33 2,190,720 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3GDR\ntoskrnl.exe
+ 2008-08-14 13:54:25 2,146,816 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3QFE\ntkrnlmp.exe
+ 2008-08-14 16:24:30 2,067,584 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3QFE\ntkrnlpa.exe
+ 2008-08-14 13:54:24 2,025,472 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3QFE\ntkrpamp.exe
+ 2008-08-14 16:24:28 2,190,720 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB956841\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB956841\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB956841\update\spcustom.dll
+ 2007-11-30 12:39:03 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB956841\update\update.exe
+ 2008-07-09 07:34:30 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB956841\update\updspapi.dll
+ 2008-08-28 10:35:33 333,056 ----a-w C:\WINDOWS\$hf_mig$\KB957095\SP2QFE\srv.sys
+ 2008-09-08 10:41:42 333,824 ----a-w C:\WINDOWS\$hf_mig$\KB957095\SP3GDR\srv.sys
+ 2008-09-08 11:37:19 333,824 ----a-w C:\WINDOWS\$hf_mig$\KB957095\SP3QFE\srv.sys
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB957095\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB957095\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB957095\update\spcustom.dll
+ 2007-11-30 11:18:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB957095\update\update.exe
+ 2007-11-30 11:18:13 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB957095\update\updspapi.dll
+ 2008-10-15 16:54:24 339,456 ----a-w C:\WINDOWS\$hf_mig$\KB958644\SP2QFE\netapi32.dll
+ 2008-10-15 16:35:25 337,408 ----a-w C:\WINDOWS\$hf_mig$\KB958644\SP3GDR\netapi32.dll
+ 2008-10-15 16:26:10 339,456 ----a-w C:\WINDOWS\$hf_mig$\KB958644\SP3QFE\netapi32.dll
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB958644\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB958644\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB958644\update\spcustom.dll
+ 2007-11-30 11:18:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB958644\update\update.exe
+ 2007-11-30 11:18:13 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB958644\update\updspapi.dll
+ 2005-02-25 03:34:29 209,120 -c----w C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe
+ 2005-02-25 03:34:30 369,888 -c----w C:\WINDOWS\$NtUninstallKB898461$\spuninst\updspapi.dll
+ 2006-10-18 18:47:16 414,208 -c----w C:\WINDOWS\$NtUninstallKB929399$\msscp.dll
+ 2005-06-28 07:23:26 213,216 -c----w C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe
+ 2005-06-28 07:23:54 371,424 -c----w C:\WINDOWS\$NtUninstallKB929399$\spuninst\updspapi.dll
+ 2006-12-14 08:53:36 213,216 -c----w C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe
+ 2006-12-14 08:53:37 369,376 -c----w C:\WINDOWS\$NtUninstallKB935448$\spuninst\updspapi.dll
+ 2005-06-28 07:23:28 213,216 -c----w C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe
+ 2005-06-28 07:23:54 371,424 -c----w C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\updspapi.dll
+ 2006-10-18 18:47:20 10,834,432 -c----w C:\WINDOWS\$NtUninstallKB936782_WMP11$\wmp.dll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB938464$\spuninst\updspapi.dll
+ 2005-06-28 07:23:28 213,216 -c----w C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe
+ 2005-06-28 07:23:54 371,424 -c----w C:\WINDOWS\$NtUninstallKB941569$\spuninst\updspapi.dll
+ 2006-10-18 18:47:18 222,208 -c----w C:\WINDOWS\$NtUninstallKB941569$\wmasf.dll
+ 2004-08-03 21:55:40 450,560 -c----w C:\WINDOWS\$NtUninstallKB944338-v2$\jscript.dll
+ 2007-03-06 00:57:39 213,216 -c----w C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe
+ 2007-03-06 00:58:46 369,376 -c----w C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\updspapi.dll
+ 2004-08-03 21:55:54 417,792 -c----w C:\WINDOWS\$NtUninstallKB944338-v2$\vbscript.dll
+ 2004-08-03 22:09:14 82,944 -c----w C:\WINDOWS\$NtUninstallKB946648$\msgsc.dll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB946648$\spuninst\updspapi.dll
+ 2004-08-03 21:55:34 561,179 -c----w C:\WINDOWS\$NtUninstallKB950749$\dao360.dll
+ 2004-08-03 21:55:42 512,029 -c----w C:\WINDOWS\$NtUninstallKB950749$\msexch40.dll
+ 2004-08-03 21:55:42 319,517 -c----w C:\WINDOWS\$NtUninstallKB950749$\msexcl40.dll
+ 2004-08-03 21:55:42 1,507,356 -c----w C:\WINDOWS\$NtUninstallKB950749$\msjet40.dll
+ 2004-07-17 08:34:48 358,976 -c----w C:\WINDOWS\$NtUninstallKB950749$\msjetol1.dll
+ 2004-07-17 08:34:48 358,976 -c----w C:\WINDOWS\$NtUninstallKB950749$\msjetoledb40.dll
+ 2004-08-03 21:55:44 151,583 -c----w C:\WINDOWS\$NtUninstallKB950749$\msjint40.dll
+ 2004-08-03 21:55:44 53,279 -c----w C:\WINDOWS\$NtUninstallKB950749$\msjter40.dll
+ 2004-08-03 21:55:44 241,693 -c----w C:\WINDOWS\$NtUninstallKB950749$\msjtes40.dll
+ 2004-08-03 21:55:44 213,023 -c----w C:\WINDOWS\$NtUninstallKB950749$\msltus40.dll
+ 2004-08-03 21:55:44 348,189 -c----w C:\WINDOWS\$NtUninstallKB950749$\mspbde40.dll
+ 2004-08-03 21:55:44 421,919 -c----w C:\WINDOWS\$NtUninstallKB950749$\msrd2x40.dll
+ 2004-08-03 21:55:44 315,423 -c----w C:\WINDOWS\$NtUninstallKB950749$\msrd3x40.dll
+ 2004-08-03 21:55:46 552,989 -c----w C:\WINDOWS\$NtUninstallKB950749$\msrepl40.dll
+ 2004-08-03 21:55:46 258,077 -c----w C:\WINDOWS\$NtUninstallKB950749$\mstext40.dll
+ 2004-08-03 21:55:46 831,519 -c----w C:\WINDOWS\$NtUninstallKB950749$\mswdat10.dll
+ 2004-08-03 21:55:46 614,429 -c----w C:\WINDOWS\$NtUninstallKB950749$\mswstr10.dll
+ 2004-08-03 21:55:46 348,189 -c----w C:\WINDOWS\$NtUninstallKB950749$\msxbde40.dll
+ 2007-03-06 00:57:38 213,216 -c----w C:\WINDOWS\$NtUninstallKB950749$\spuninst\spuninst.exe
+ 2007-03-06 00:58:46 369,376 -c----w C:\WINDOWS\$NtUninstallKB950749$\spuninst\updspapi.dll
+ 2001-09-19 12:00:00 200,064 -c----w C:\WINDOWS\$NtUninstallKB950762$\rmcast.sys
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB950762$\spuninst\updspapi.dll
+ 2004-08-03 21:55:36 243,200 -c----w C:\WINDOWS\$NtUninstallKB950974$\es.dll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe
+ 2007-11-30 12:38:55 380,792 -c----w C:\WINDOWS\$NtUninstallKB950974$\spuninst\updspapi.dll
+ 2004-08-03 21:55:38 678,400 -c----w C:\WINDOWS\$NtUninstallKB951066$\inetcomm.dll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB951066$\spuninst\updspapi.dll
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\updspapi.dll
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe
+ 2007-11-30 11:18:13 380,792 -c----w C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\updspapi.dll
+ 2004-08-03 21:55:48 1,285,632 -c----w C:\WINDOWS\$NtUninstallKB951698$\quartz.dll
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB951698$\spuninst\updspapi.dll
+ 2004-08-03 21:55:32 100,352 -c----w C:\WINDOWS\$NtUninstallKB951748$\6to4svc.dll
+ 2004-08-03 20:14:16 138,496 -c----w C:\WINDOWS\$NtUninstallKB951748$\afd.sys
+ 2004-08-03 21:55:34 148,480 -c----w C:\WINDOWS\$NtUninstallKB951748$\dnsapi.dll
+ 2004-08-03 21:55:46 245,248 -c----w C:\WINDOWS\$NtUninstallKB951748$\mswsock.dll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe
+ 2007-11-30 12:38:55 380,792 -c----w C:\WINDOWS\$NtUninstallKB951748$\spuninst\updspapi.dll
+ 2004-08-03 20:14:42 359,040 -c----w C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
+ 2004-08-03 20:07:46 223,616 -c----w C:\WINDOWS\$NtUninstallKB951748$\tcpip6.sys
+ 2004-08-03 21:55:40 331,776 -c----w C:\WINDOWS\$NtUninstallKB952287$\msadce.dll
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe
+ 2007-11-30 11:18:13 380,792 -c----w C:\WINDOWS\$NtUninstallKB952287$\spuninst\updspapi.dll
+ 2004-08-03 21:55:42 73,728 -c----w C:\WINDOWS\$NtUninstallKB952954$\mscms.dll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB952954$\spuninst\updspapi.dll
+ 2007-07-27 07:42:32 231,288 -c----w C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe
+ 2007-07-27 07:41:48 382,840 -c----w C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\updspapi.dll
+ 2006-10-18 18:47:20 295,936 -c----w C:\WINDOWS\$NtUninstallKB954154_WM11$\wmpeffects.dll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB954211$\spuninst\updspapi.dll
+ 2004-08-03 21:46:22 1,835,776 -c----w C:\WINDOWS\$NtUninstallKB954211$\win32k.sys
+ 2004-08-03 21:55:32 1,016,832 -c----w C:\WINDOWS\$NtUninstallKB956390$\browseui.dll
+ 2004-08-03 21:55:32 150,528 -c----w C:\WINDOWS\$NtUninstallKB956390$\cdfview.dll
+ 2004-08-03 21:55:34 1,053,184 -c----w C:\WINDOWS\$NtUninstallKB956390$\danim.dll
+ 2004-08-03 21:55:36 357,888 -c----w C:\WINDOWS\$NtUninstallKB956390$\dxtmsft.dll
+ 2004-08-03 21:55:36 201,728 -c----w C:\WINDOWS\$NtUninstallKB956390$\dxtrans.dll
+ 2004-08-03 21:55:36 55,808 -c----w C:\WINDOWS\$NtUninstallKB956390$\extmgr.dll
+ 2004-08-03 21:56:16 18,432 -c----w C:\WINDOWS\$NtUninstallKB956390$\iedw.exe
+ 2004-08-03 21:55:38 248,832 -c----w C:\WINDOWS\$NtUninstallKB956390$\iepeers.dll
+ 2004-08-03 21:55:38 96,256 -c----w C:\WINDOWS\$NtUninstallKB956390$\inseng.dll
+ 2004-08-03 21:55:40 15,872 -c----w C:\WINDOWS\$NtUninstallKB956390$\jsproxy.dll
+ 2004-08-03 21:55:42 3,003,392 -c----w C:\WINDOWS\$NtUninstallKB956390$\mshtml.dll
+ 2004-08-03 21:55:42 448,512 -c----w C:\WINDOWS\$NtUninstallKB956390$\mshtmled.dll
+ 2004-08-03 21:55:44 146,432 -c----w C:\WINDOWS\$NtUninstallKB956390$\msrating.dll
+ 2004-08-03 21:55:46 530,432 -c----w C:\WINDOWS\$NtUninstallKB956390$\mstime.dll
+ 2004-08-03 21:55:48 39,424 -c----w C:\WINDOWS\$NtUninstallKB956390$\pngfilt.dll
+ 2004-08-03 21:55:52 1,483,264 -c----w C:\WINDOWS\$NtUninstallKB956390$\shdocvw.dll
+ 2004-08-03 21:55:52 473,600 -c----w C:\WINDOWS\$NtUninstallKB956390$\shlwapi.dll
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst.exe
+ 2008-07-09 07:34:30 380,792 -c----w C:\WINDOWS\$NtUninstallKB956390$\spuninst\updspapi.dll
+ 2004-08-03 21:55:54 600,064 -c----w C:\WINDOWS\$NtUninstallKB956390$\urlmon.dll
+ 2004-08-03 21:55:58 654,848 -c----w C:\WINDOWS\$NtUninstallKB956390$\wininet.dll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB956391$\spuninst\updspapi.dll
+ 2008-06-20 10:44:38 138,368 -c----w C:\WINDOWS\$NtUninstallKB956803$\afd.sys
+ 2008-06-20 10:44:38 138,368 -c----w C:\WINDOWS\$NtUninstallKB956803$\afd.sys.000
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe
+ 2007-11-30 11:18:13 380,792 -c----w C:\WINDOWS\$NtUninstallKB956803$\spuninst\updspapi.dll
+ 2004-08-03 22:08:00 2,058,368 -c----w C:\WINDOWS\$NtUninstallKB956841$\ntkrnlpa.exe
+ 2004-08-03 21:49:02 2,182,528 -c----w C:\WINDOWS\$NtUninstallKB956841$\ntoskrnl.exe
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe
+ 2008-07-09 07:34:30 380,792 -c----w C:\WINDOWS\$NtUninstallKB956841$\spuninst\updspapi.dll
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe
+ 2007-11-30 11:18:13 380,792 -c----w C:\WINDOWS\$NtUninstallKB957095$\spuninst\updspapi.dll
+ 2004-08-03 20:14:46 336,256 -c----w C:\WINDOWS\$NtUninstallKB957095$\srv.sys
+ 2004-08-03 21:55:46 332,288 -c----w C:\WINDOWS\$NtUninstallKB958644$\netapi32.dll
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe
+ 2007-11-30 11:18:13 380,792 -c----w C:\WINDOWS\$NtUninstallKB958644$\spuninst\updspapi.dll
+ 2008-06-14 17:59:04 271,616 ------w C:\WINDOWS\Driver Cache\i386\bthport.sys
+ 2008-08-14 13:42:30 2,137,600 ------w C:\WINDOWS\Driver Cache\i386\ntkrnlmp.exe
+ 2008-08-14 13:42:32 2,059,264 ------w C:\WINDOWS\Driver Cache\i386\ntkrnlpa.exe
+ 2008-08-14 13:42:30 2,017,280 ------w C:\WINDOWS\Driver Cache\i386\ntkrpamp.exe
+ 2008-08-14 13:42:32 2,181,888 ------w C:\WINDOWS\Driver Cache\i386\ntoskrnl.exe
- 2004-08-03 21:55:32 100,352 ----a-w C:\WINDOWS\system32\6to4svc.dll
+ 2006-08-16 11:58:04 100,352 ----a-w C:\WINDOWS\system32\6to4svc.dll
- 2004-08-03 21:55:32 1,016,832 ----a-w C:\WINDOWS\system32\browseui.dll
+ 2008-08-20 05:36:15 1,023,488 ----a-w C:\WINDOWS\system32\browseui.dll
- 2004-08-03 21:55:32 150,528 ----a-w C:\WINDOWS\system32\cdfview.dll
+ 2008-08-20 05:36:11 151,040 ----a-w C:\WINDOWS\system32\cdfview.dll
- 2004-08-03 21:55:32 66,560 ----a-w C:\WINDOWS\system32\cdm.dll
+ 2007-07-30 16:19:20 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
- 2008-10-21 15:45:46 16,384 ----a-w C:\WINDOWS\system32\config\systemprofile\s\index.dat
+ 2008-10-22 05:08:02 16,384 ----a-w C:\WINDOWS\system32\config\systemprofile\s\index.dat
- 2008-10-21 15:45:46 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2008-10-22 05:08:02 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2008-10-21 15:45:46 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\.IE5\index.dat
+ 2008-10-22 05:08:02 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\.IE5\index.dat
- 2004-08-03 21:55:34 1,053,184 ----a-w C:\WINDOWS\system32\danim.dll
+ 2008-08-20 05:36:11 1,053,696 ----a-w C:\WINDOWS\system32\danim.dll
- 2004-08-03 21:55:32 100,352 -c--a-w C:\WINDOWS\system32\dllcache\6to4svc.dll
+ 2006-08-16 11:58:04 100,352 -c--a-w C:\WINDOWS\system32\dllcache\6to4svc.dll
- 2004-08-03 20:14:16 138,496 -c--a-w C:\WINDOWS\system32\dllcache\afd.sys
+ 2008-08-14 09:51:43 138,368 -c----w C:\WINDOWS\system32\dllcache\afd.sys
- 2004-08-03 21:55:32 1,016,832 -c--a-w C:\WINDOWS\system32\dllcache\browseui.dll
+ 2008-08-20 05:36:15 1,023,488 -c--a-w C:\WINDOWS\system32\dllcache\browseui.dll
+ 2008-06-14 17:59:04 271,616 -c----w C:\WINDOWS\system32\dllcache\bthport.sys
- 2004-08-03 21:55:32 150,528 -c--a-w C:\WINDOWS\system32\dllcache\cdfview.dll
+ 2008-08-20 05:36:11 151,040 -c--a-w C:\WINDOWS\system32\dllcache\cdfview.dll
- 2004-08-03 21:55:32 66,560 -c--a-w C:\WINDOWS\system32\dllcache\cdm.dll
+ 2007-07-30 16:19:20 92,504 -c--a-w C:\WINDOWS\system32\dllcache\cdm.dll
- 2004-08-03 21:55:34 1,053,184 -c--a-w C:\WINDOWS\system32\dllcache\danim.dll
+ 2008-08-20 05:36:11 1,053,696 -c--a-w C:\WINDOWS\system32\dllcache\danim.dll
- 2004-08-03 21:55:34 561,179 -c--a-w C:\WINDOWS\system32\dllcache\dao360.dll
+ 2008-03-25 04:50:25 554,008 -c--a-w C:\WINDOWS\system32\dllcache\dao360.dll
- 2004-08-03 21:55:34 148,480 -c--a-w C:\WINDOWS\system32\dllcache\dnsapi.dll
+ 2008-06-20 17:39:47 148,992 -c--a-w C:\WINDOWS\system32\dllcache\dnsapi.dll
- 2004-08-03 21:55:36 357,888 -c--a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll
+ 2008-08-20 05:36:11 357,888 -c--a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll
- 2004-08-03 21:55:36 201,728 -c--a-w C:\WINDOWS\system32\dllcache\dxtrans.dll
+ 2008-08-20 05:36:12 205,312 -c--a-w C:\WINDOWS\system32\dllcache\dxtrans.dll
- 2004-08-03 21:55:36 243,200 -c--a-w C:\WINDOWS\system32\dllcache\es.dll
+ 2008-07-07 20:30:47 253,952 -c--a-w C:\WINDOWS\system32\dllcache\es.dll
- 2004-08-03 21:55:36 55,808 -c--a-w C:\WINDOWS\system32\dllcache\extmgr.dll
+ 2008-08-20 05:36:12 55,808 -c--a-w C:\WINDOWS\system32\dllcache\extmgr.dll
- 2004-08-03 21:56:16 18,432 -c--a-w C:\WINDOWS\system32\dllcache\iedw.exe
+ 2008-08-19 09:30:39 18,432 -c--a-w C:\WINDOWS\system32\dllcache\iedw.exe
- 2004-08-03 21:55:38 248,832 -c--a-w C:\WINDOWS\system32\dllcache\iepeers.dll
+ 2008-08-20 05:36:12 250,880 -c--a-w C:\WINDOWS\system32\dllcache\iepeers.dll
- 2004-08-03 21:55:38 678,400 -c--a-w C:\WINDOWS\system32\dllcache\inetcomm.dll
+ 2008-04-11 18:50:11 683,520 -c--a-w C:\WINDOWS\system32\dllcache\inetcomm.dll
- 2004-08-03 21:55:38 96,256 -c--a-w C:\WINDOWS\system32\dllcache\inseng.dll
+ 2008-08-20 05:36:12 96,256 -c--a-w C:\WINDOWS\system32\dllcache\inseng.dll
- 2004-08-03 21:55:40 450,560 -c--a-w C:\WINDOWS\system32\dllcache\jscript.dll
+ 2007-12-18 14:41:00 450,560 -c--a-w C:\WINDOWS\system32\dllcache\jscript.dll
- 2004-08-03 21:55:40 15,872 -c--a-w C:\WINDOWS\system32\dllcache\jsproxy.dll
+ 2008-08-20 05:36:14 16,384 -c--a-w C:\WINDOWS\system32\dllcache\jsproxy.dll
- 2004-08-03 21:55:40 331,776 -c--a-w C:\WINDOWS\system32\dllcache\msadce.dll
+ 2008-05-01 14:30:35 331,776 -c--a-w C:\WINDOWS\system32\dllcache\msadce.dll
- 2004-08-03 21:55:42 73,728 -c--a-w C:\WINDOWS\system32\dllcache\mscms.dll
+ 2008-06-24 16:22:22 74,240 -c--a-w C:\WINDOWS\system32\dllcache\mscms.dll
- 2004-08-03 21:55:42 512,029 -c--a-w C:\WINDOWS\system32\dllcache\msexch40.dll
+ 2008-03-25 04:50:28 518,944 -c--a-w C:\WINDOWS\system32\dllcache\msexch40.dll
- 2004-08-03 21:55:42 319,517 -c--a-w C:\WINDOWS\system32\dllcache\msexcl40.dll
+ 2008-03-25 04:50:30 326,432 -c--a-w C:\WINDOWS\system32\dllcache\msexcl40.dll
- 2004-08-03 21:55:42 3,003,392 -c--a-w C:\WINDOWS\system32\dllcache\mshtml.dll
+ 2008-08-20 05:36:17 3,081,216 -c--a-w C:\WINDOWS\system32\dllcache\mshtml.dll
- 2004-08-03 21:55:42 448,512 -c--a-w C:\WINDOWS\system32\dllcache\mshtmled.dll
+ 2008-08-20 05:36:14 449,024 -c--a-w C:\WINDOWS\system32\dllcache\mshtmled.dll
- 2004-08-03 21:55:42 1,507,356 -c--a-w C:\WINDOWS\system32\dllcache\msjet40.dll
+ 2008-03-25 04:50:34 1,516,568 -c--a-w C:\WINDOWS\system32\dllcache\msjet40.dll
- 2004-07-17 08:34:48 358,976 -c--a-w C:\WINDOWS\system32\dllcache\msjetol1.dll
+ 2008-03-25 04:50:40 355,112 -c--a-w C:\WINDOWS\system32\dllcache\msjetol1.dll
- 2004-08-03 21:55:44 151,583 -c--a-w C:\WINDOWS\system32\dllcache\msjint40.dll
+ 2008-03-25 04:49:29 158,496 -c--a-w C:\WINDOWS\system32\dllcache\msjint40.dll
- 2004-08-03 21:55:44 53,279 -c--a-w C:\WINDOWS\system32\dllcache\msjter40.dll
+ 2008-03-25 04:50:42 60,192 -c--a-w C:\WINDOWS\system32\dllcache\msjter40.dll
- 2004-08-03 21:55:44 241,693 -c--a-w C:\WINDOWS\system32\dllcache\msjtes40.dll
+ 2008-03-25 04:50:42 248,608 -c--a-w C:\WINDOWS\system32\dllcache\msjtes40.dll
- 2004-08-03 21:55:44 213,023 -c--a-w C:\WINDOWS\system32\dllcache\msltus40.dll
+ 2008-03-25 07:20:46 219,936 -c--a-w C:\WINDOWS\system32\dllcache\msltus40.dll
- 2004-08-03 21:55:44 348,189 -c--a-w C:\WINDOWS\system32\dllcache\mspbde40.dll
+ 2008-03-25 04:50:45 355,104 -c--a-w C:\WINDOWS\system32\dllcache\mspbde40.dll
- 2004-08-03 21:55:44 146,432 -c--a-w C:\WINDOWS\system32\dllcache\msrating.dll
+ 2008-08-20 05:36:12 146,432 -c--a-w C:\WINDOWS\system32\dllcache\msrating.dll
- 2004-08-03 21:55:44 421,919 -c--a-w C:\WINDOWS\system32\dllcache\msrd2x40.dll
+ 2008-03-25 04:50:47 432,928 -c--a-w C:\WINDOWS\system32\dllcache\msrd2x40.dll
- 2004-08-03 21:55:44 315,423 -c--a-w C:\WINDOWS\system32\dllcache\msrd3x40.dll
+ 2008-03-25 04:50:49 322,336 -c--a-w C:\WINDOWS\system32\dllcache\msrd3x40.dll
- 2004-08-03 21:55:46 552,989 -c--a-w C:\WINDOWS\system32\dllcache\msrepl40.dll
+ 2008-03-25 04:50:52 559,904 -c--a-w C:\WINDOWS\system32\dllcache\msrepl40.dll
- 2006-10-18 18:47:16 414,208 -c--a-w C:\WINDOWS\system32\dllcache\msscp.dll
+ 2006-12-04 13:21:50 414,720 -c--a-w C:\WINDOWS\system32\dllcache\msscp.dll
- 2004-08-03 21:55:46 258,077 -c--a-w C:\WINDOWS\system32\dllcache\mstext40.dll
+ 2008-03-25 04:50:55 264,992 -c--a-w C:\WINDOWS\system32\dllcache\mstext40.dll
- 2004-08-03 21:55:46 530,432 -c--a-w C:\WINDOWS\system32\dllcache\mstime.dll
+ 2008-08-20 05:36:12 532,480 -c--a-w C:\WINDOWS\system32\dllcache\mstime.dll
- 2004-08-03 21:55:46 831,519 -c--a-w C:\WINDOWS\system32\dllcache\mswdat10.dll
+ 2008-03-25 04:50:57 838,432 -c--a-w C:\WINDOWS\system32\dllcache\mswdat10.dll
- 2004-08-03 21:55:46 245,248 -c--a-w C:\WINDOWS\system32\dllcache\mswsock.dll
+ 2008-06-20 17:39:48 245,248 -c--a-w C:\WINDOWS\system32\dllcache\mswsock.dll
- 2004-08-03 21:55:46 614,429 -c--a-w C:\WINDOWS\system32\dllcache\mswstr10.dll
+ 2008-03-25 04:49:30 621,344 -c--a-w C:\WINDOWS\system32\dllcache\mswstr10.dll
- 2004-08-03 21:55:46 348,189 -c--a-w C:\WINDOWS\system32\dllcache\msxbde40.dll
+ 2008-03-25 04:50:58 355,104 -c--a-w C:\WINDOWS\system32\dllcache\msxbde40.dll
- 2004-08-03 21:55:46 332,288 -c--a-w C:\WINDOWS\system32\dllcache\netapi32.dll
+ 2008-10-15 16:57:47 332,800 -c--a-w C:\WINDOWS\system32\dllcache\netapi32.dll
+ 2008-08-14 13:42:30 2,137,600 -c----w C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
+ 2008-08-14 13:42:32 2,059,264 -c----w C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
+ 2008-08-14 13:42:30 2,017,280 -c----w C:\WINDOWS\system32\dllcache\ntkrpamp.exe
+ 2008-08-14 13:42:32 2,181,888 -c----w C:\WINDOWS\system32\dllcache\ntoskrnl.exe
- 2004-08-03 21:55:48 39,424 -c--a-w C:\WINDOWS\system32\dllcache\pngfilt.dll
+ 2008-08-20 05:36:12 39,424 -c--a-w C:\WINDOWS\system32\dllcache\pngfilt.dll
- 2004-08-03 21:55:48 1,285,632 -c--a-w C:\WINDOWS\system32\dllcache\quartz.dll
+ 2008-05-07 05:14:35 1,285,632 -c--a-w C:\WINDOWS\system32\dllcache\quartz.dll
- 2001-09-19 12:00:00 200,064 -c--a-w C:\WINDOWS\system32\dllcache\rmcast.sys
+ 2008-05-08 12:28:49 202,752 -c--a-w C:\WINDOWS\system32\dllcache\rmcast.sys
- 2004-08-03 21:55:52 1,483,264 -c--a-w C:\WINDOWS\system32\dllcache\shdocvw.dll
+ 2008-08-20 05:36:13 1,494,528 -c--a-w C:\WINDOWS\system32\dllcache\shdocvw.dll
- 2004-08-03 21:55:52 473,600 -c--a-w C:\WINDOWS\system32\dllcache\shlwapi.dll
+ 2008-08-20 05:36:14 474,112 -c--a-w C:\WINDOWS\system32\dllcache\shlwapi.dll
- 2004-08-03 20:14:46 336,256 -c--a-w C:\WINDOWS\system32\dllcache\srv.sys
+ 2008-08-28 10:04:17 333,056 -c--a-w C:\WINDOWS\system32\dllcache\srv.sys
- 2004-08-03 20:14:42 359,040 -c--a-w C:\WINDOWS\system32\dllcache\tcpip.sys
+ 2008-06-20 10:45:13 360,320 -c--a-w C:\WINDOWS\system32\dllcache\tcpip.sys
- 2004-08-03 20:07:46 223,616 -c--a-w C:\WINDOWS\system32\dllcache\tcpip6.sys
+ 2008-06-20 09:52:06 225,920 -c--a-w C:\WINDOWS\system32\dllcache\tcpip6.sys
- 2004-08-03 21:55:54 600,064 -c--a-w C:\WINDOWS\system32\dllcache\urlmon.dll
+ 2008-08-20 05:36:15 614,912 -c--a-w C:\WINDOWS\system32\dllcache\urlmon.dll
- 2004-08-03 21:55:54 417,792 -c--a-w C:\WINDOWS\system32\dllcache\vbscript.dll
+ 2007-12-18 14:41:00 417,792 -c--a-w C:\WINDOWS\system32\dllcache\vbscript.dll
- 2004-08-03 21:46:22 1,835,776 -c--a-w C:\WINDOWS\system32\dllcache\win32k.sys
+ 2008-09-15 15:37:40 1,845,888 -c--a-w C:\WINDOWS\system32\dllcache\win32k.sys
- 2004-08-03 21:55:58 654,848 -c--a-w C:\WINDOWS\system32\dllcache\wininet.dll
+ 2008-08-20 05:36:13 657,920 -c--a-w C:\WINDOWS\system32\dllcache\wininet.dll
- 2006-10-18 18:47:18 222,208 -c--a-w C:\WINDOWS\system32\dllcache\WMASF.dll
+ 2007-10-25 06:28:30 222,720 -c--a-w C:\WINDOWS\system32\dllcache\wmasf.dll
- 2006-10-18 18:47:20 10,834,432 -c--a-w C:\WINDOWS\system32\dllcache\wmp.dll
+ 2007-06-11 20:51:12 10,834,944 -c--a-w C:\WINDOWS\system32\dllcache\wmp.dll
- 2004-08-03 21:56:00 430,080 -c--a-w C:\WINDOWS\system32\dllcache\wuapi.dll
+ 2007-07-30 16:19:36 549,720 -c--a-w C:\WINDOWS\system32\dllcache\wuapi.dll
- 2004-08-03 21:56:36 110,592 -c--a-w C:\WINDOWS\system32\dllcache\wuauclt.exe
+ 2007-07-30 16:19:16 53,080 -c--a-w C:\WINDOWS\system32\dllcache\wuauclt.exe
- 2004-08-03 21:56:02 1,134,592 -c--a-w C:\WINDOWS\system32\dllcache\wuaueng.dll
+ 2007-07-30 16:19:42 1,712,984 -c--a-w C:\WINDOWS\system32\dllcache\wuaueng.dll
- 2004-08-03 21:56:02 112,128 -c--a-w C:\WINDOWS\system32\dllcache\wucltui.dll
+ 2007-07-30 16:19:32 325,976 -c--a-w C:\WINDOWS\system32\dllcache\wucltui.dll
- 2004-08-03 21:56:02 36,864 -c--a-w C:\WINDOWS\system32\dllcache\wups.dll
+ 2007-07-30 16:18:40 33,624 -c--a-w C:\WINDOWS\system32\dllcache\wups.dll
- 2004-08-03 21:56:02 120,320 -c--a-w C:\WINDOWS\system32\dllcache\wuweb.dll
+ 2007-07-30 16:19:28 203,096 -c--a-w C:\WINDOWS\system32\dllcache\wuweb.dll
- 2004-08-03 21:55:34 148,480 ----a-w C:\WINDOWS\system32\dnsapi.dll
+ 2008-06-20 17:39:47 148,992 ----a-w C:\WINDOWS\system32\dnsapi.dll
- 2004-08-03 20:14:16 138,496 ----a-w C:\WINDOWS\system32\drivers\afd.sys
+ 2008-08-14 09:51:43 138,368 ----a-w C:\WINDOWS\system32\drivers\afd.sys
+ 2008-06-14 17:59:04 271,616 ------w C:\WINDOWS\system32\drivers\bthport.sys
- 2008-07-18 14:39:18 213,008 ----a-w C:\WINDOWS\system32\drivers\klif.sys
+ 2008-10-21 21:07:32 213,008 ----a-w C:\WINDOWS\system32\drivers\klif.sys
- 2001-09-19 12:00:00 200,064 ----a-w C:\WINDOWS\system32\drivers\RMCast.sys
+ 2008-05-08 12:28:49 202,752 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys
- 2004-08-03 20:14:42 359,040 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
+ 2008-06-20 10:45:13 360,320 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
- 2004-08-03 20:07:46 223,616 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
+ 2008-06-20 09:52:06 225,920 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
- 2004-08-03 21:55:36 357,888 ----a-w C:\WINDOWS\system32\dxtmsft.dll
+ 2008-08-20 05:36:11 357,888 ----a-w C:\WINDOWS\system32\dxtmsft.dll
- 2004-08-03 21:55:36 201,728 ----a-w C:\WINDOWS\system32\dxtrans.dll
+ 2008-08-20 05:36:12 205,312 ----a-w C:\WINDOWS\system32\dxtrans.dll
- 2004-08-03 21:55:36 243,200 ----a-w C:\WINDOWS\system32\es.dll
+ 2008-07-07 20:30:47 253,952 ----a-w C:\WINDOWS\system32\es.dll
- 2004-08-03 21:55:36 55,808 ----a-w C:\WINDOWS\system32\extmgr.dll
+ 2008-08-20 05:36:12 55,808 ----a-w C:\WINDOWS\system32\extmgr.dll
- 2008-10-12 19:49:09 458,840 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
+ 2008-10-22 05:07:52 458,840 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
- 2004-08-03 21:55:38 248,832 ----a-w C:\WINDOWS\system32\iepeers.dll
+ 2008-08-20 05:36:12 250,880 ----a-w C:\WINDOWS\system32\iepeers.dll
- 2004-08-03 21:55:38 678,400 ----a-w C:\WINDOWS\system32\inetcomm.dll
+ 2008-04-11 18:50:11 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
- 2004-08-03 21:55:38 96,256 ----a-w C:\WINDOWS\system32\inseng.dll
+ 2008-08-20 05:36:12 96,256 ----a-w C:\WINDOWS\system32\inseng.dll
- 2004-08-03 21:55:40 450,560 ----a-w C:\WINDOWS\system32\jscript.dll
+ 2007-12-18 14:41:00 450,560 ----a-w C:\WINDOWS\system32\jscript.dll
- 2004-08-03 21:55:40 15,872 ----a-w C:\WINDOWS\system32\jsproxy.dll
+ 2008-08-20 05:36:14 16,384 ----a-w C:\WINDOWS\system32\jsproxy.dll
- 2004-08-03 21:55:42 73,728 ----a-w C:\WINDOWS\system32\mscms.dll
+ 2008-06-24 16:22:22 74,240 ----a-w C:\WINDOWS\system32\mscms.dll
- 2004-08-03 21:55:42 512,029 ----a-w C:\WINDOWS\system32\msexch40.dll
+ 2008-03-25 04:50:28 518,944 ----a-w C:\WINDOWS\system32\msexch40.dll
- 2004-08-03 21:55:42 319,517 ----a-w C:\WINDOWS\system32\msexcl40.dll
+ 2008-03-25 04:50:30 326,432 ----a-w C:\WINDOWS\system32\msexcl40.dll
- 2004-08-03 21:55:42 3,003,392 ----a-w C:\WINDOWS\system32\mshtml.dll
+ 2008-08-20 05:36:17 3,081,216 ----a-w C:\WINDOWS\system32\mshtml.dll
- 2004-08-03 21:55:42 448,512 ----a-w C:\WINDOWS\system32\mshtmled.dll
+ 2008-08-20 05:36:14 449,024 ----a-w C:\WINDOWS\system32\mshtmled.dll
- 2004-08-03 21:55:42 1,507,356 ----a-w C:\WINDOWS\system32\msjet40.dll
+ 2008-03-25 04:50:34 1,516,568 ----a-w C:\WINDOWS\system32\msjet40.dll
- 2004-07-17 08:34:48 358,976 ----a-w C:\WINDOWS\system32\msjetoledb40.dll
+ 2008-03-25 04:50:40 355,112 ----a-w C:\WINDOWS\system32\msjetoledb40.dll
- 2004-08-03 21:55:44 151,583 ----a-w C:\WINDOWS\system32\msjint40.dll
+ 2008-03-25 04:49:29 158,496 ----a-w C:\WINDOWS\system32\msjint40.dll
- 2004-08-03 21:55:44 53,279 ----a-w C:\WINDOWS\system32\msjter40.dll
+ 2008-03-25 04:50:42 60,192 ----a-w C:\WINDOWS\system32\msjter40.dll
- 2004-08-03 21:55:44 241,693 ----a-w C:\WINDOWS\system32\msjtes40.dll
+ 2008-03-25 04:50:42 248,608 ----a-w C:\WINDOWS\system32\msjtes40.dll
- 2004-08-03 21:55:44 213,023 ----a-w C:\WINDOWS\system32\msltus40.dll
+ 2008-03-25 07:20:46 219,936 ----a-w C:\WINDOWS\system32\msltus40.dll
- 2004-08-03 21:55:44 348,189 ----a-w C:\WINDOWS\system32\mspbde40.dll
+ 2008-03-25 04:50:45 355,104 ----a-w C:\WINDOWS\system32\mspbde40.dll
- 2004-08-03 21:55:44 146,432 ----a-w C:\WINDOWS\system32\msrating.dll
+ 2008-08-20 05:36:12 146,432 ----a-w C:\WINDOWS\system32\msrating.dll
- 2004-08-03 21:55:44 421,919 ----a-w C:\WINDOWS\system32\msrd2x40.dll
+ 2008-03-25 04:50:47 432,928 ----a-w C:\WINDOWS\system32\msrd2x40.dll
- 2004-08-03 21:55:44 315,423 ----a-w C:\WINDOWS\system32\msrd3x40.dll
+ 2008-03-25 04:50:49 322,336 ----a-w C:\WINDOWS\system32\msrd3x40.dll
- 2004-08-03 21:55:46 552,989 ----a-w C:\WINDOWS\system32\msrepl40.dll
+ 2008-03-25 04:50:52 559,904 ----a-w C:\WINDOWS\system32\msrepl40.dll
- 2006-10-18 18:47:16 414,208 ----a-w C:\WINDOWS\system32\msscp.dll
+ 2006-12-04 13:21:50 414,720 ----a-w C:\WINDOWS\system32\msscp.dll
- 2004-08-03 21:55:46 258,077 ----a-w C:\WINDOWS\system32\mstext40.dll
+ 2008-03-25 04:50:55 264,992 ----a-w C:\WINDOWS\system32\mstext40.dll
- 2004-08-03 21:55:46 530,432 ----a-w C:\WINDOWS\system32\mstime.dll
+ 2008-08-20 05:36:12 532,480 ----a-w C:\WINDOWS\system32\mstime.dll
- 2004-08-03 21:55:46 831,519 ----a-w C:\WINDOWS\system32\mswdat10.dll
+ 2008-03-25 04:50:57 838,432 ----a-w C:\WINDOWS\system32\mswdat10.dll
- 2004-08-03 21:55:46 245,248 ----a-w C:\WINDOWS\system32\mswsock.dll
+ 2008-06-20 17:39:48 245,248 ----a-w C:\WINDOWS\system32\mswsock.dll
- 2004-08-03 21:55:46 614,429 ----a-w C:\WINDOWS\system32\mswstr10.dll
+ 2008-03-25 04:49:30 621,344 ----a-w C:\WINDOWS\system32\mswstr10.dll
- 2004-08-03 21:55:46 348,189 ----a-w C:\WINDOWS\system32\msxbde40.dll
+ 2008-03-25 04:50:58 355,104 ----a-w C:\WINDOWS\system32\msxbde40.dll
- 2004-08-03 21:55:46 332,288 ----a-w C:\WINDOWS\system32\netapi32.dll
+ 2008-10-15 16:57:47 332,800 ----a-w C:\WINDOWS\system32\netapi32.dll
- 2008-10-21 16:10:25 58,920 ----a-w C:\WINDOWS\system32\perfc001.dat
+ 2008-10-26 18:36:40 59,878 ----a-w C:\WINDOWS\system32\perfc001.dat
- 2008-10-21 16:10:25 58,930 ----a-w C:\WINDOWS\system32\perfc009.dat
+ 2008-10-26 18:36:40 59,774 ----a-w C:\WINDOWS\system32\perfc009.dat
- 2008-10-21 16:10:25 328,690 ----a-w C:\WINDOWS\system32\perfh001.dat
+ 2008-10-26 18:36:40 331,338 ----a-w C:\WINDOWS\system32\perfh001.dat
- 2008-10-21 16:10:25 392,630 ----a-w C:\WINDOWS\system32\perfh009.dat
+ 2008-10-26 18:36:40 395,534 ----a-w C:\WINDOWS\system32\perfh009.dat
- 2004-08-03 21:55:48 39,424 ----a-w C:\WINDOWS\system32\pngfilt.dll
+ 2008-08-20 05:36:12 39,424 ----a-w C:\WINDOWS\system32\pngfilt.dll
- 2004-08-03 21:55:48 1,285,632 ----a-w C:\WINDOWS\system32\quartz.dll
+ 2008-05-07 05:14:35 1,285,632 ----a-w C:\WINDOWS\system32\quartz.dll
- 2004-08-03 21:55:52 1,483,264 ----a-w C:\WINDOWS\system32\shdocvw.dll
+ 2008-08-20 05:36:13 1,494,528 ----a-w C:\WINDOWS\system32\shdocvw.dll
- 2004-08-03 21:55:52 473,600 ----a-w C:\WINDOWS\system32\shlwapi.dll
+ 2008-08-20 05:36:14 474,112 ----a-w C:\WINDOWS\system32\shlwapi.dll
+ 2007-07-30 16:18:40 33,624 ----a-w C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.0.6000.381\wups.dll
- 2006-09-25 14:58:48 14,640 ------w C:\WINDOWS\system32\spmsg.dll
+ 2007-11-30 11:18:09 17,784 ------w C:\WINDOWS\system32\spmsg.dll
+ 2008-07-14 11:09:18 62,976 ------w C:\WINDOWS\system32\tzchange.exe
- 2004-08-03 21:55:54 600,064 ----a-w C:\WINDOWS\system32\urlmon.dll
+ 2008-08-20 05:36:15 614,912 ----a-w C:\WINDOWS\system32\urlmon.dll
- 2004-08-03 21:55:54 417,792 ----a-w C:\WINDOWS\system32\vbscript.dll
+ 2007-12-18 14:41:00 417,792 ----a-w C:\WINDOWS\system32\vbscript.dll
- 2006-10-18 18:47:18 222,208 ----a-w C:\WINDOWS\system32\WMASF.dll
+ 2007-10-25 06:28:30 222,720 ----a-w C:\WINDOWS\system32\wmasf.dll
- 2006-10-18 18:47:20 10,834,432 ----a-w C:\WINDOWS\system32\wmp.dll
+ 2007-06-11 20:51:12 10,834,944 ----a-w C:\WINDOWS\system32\wmp.dll
- 2006-10-18 18:47:20 295,936 ------w C:\WINDOWS\system32\wmpeffects.dll
+ 2008-06-24 15:12:58 295,936 ------w C:\WINDOWS\system32\wmpeffects.dll
- 2004-08-03 21:56:00 430,080 ----a-w C:\WINDOWS\system32\wuapi.dll
+ 2007-07-30 16:19:36 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
- 2004-08-03 21:56:36 110,592 ----a-w C:\WINDOWS\system32\wuauclt.exe
+ 2007-07-30 16:19:16 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
- 2004-08-03 21:56:02 1,134,592 ----a-w C:\WINDOWS\system32\wuaueng.dll
+ 2007-07-30 16:19:42 1,712,984 ----a-w C:\WINDOWS\system32\wuaueng.dll
- 2004-08-03 21:56:02 112,128 ----a-w C:\WINDOWS\system32\wucltui.dll
+ 2007-07-30 16:19:32 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
- 2004-08-03 21:56:02 36,864 ----a-w C:\WINDOWS\system32\wups.dll
+ 2007-07-30 16:18:40 33,624 ----a-w C:\WINDOWS\system32\wups.dll
+ 2007-07-30 16:19:12 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
- 2004-08-03 21:56:02 120,320 ----a-w C:\WINDOWS\system32\wuweb.dll
+ 2007-07-30 16:19:28 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
+ 2008-08-19 12:21:32 690,176 ------w C:\WINDOWS\system32\xpsp3res.dll
+ 2008-04-15 17:55:17 1,724,416 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.3352_x-ww_81af8e88\GdiPlus.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [08/04/2004 12:56 AM 15360]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.Exe" [01/19/2007 12:55 PM 5674352]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [08/04/2004 01:09 AM 1667584]
"GREATITCH"="C:\DOCUME~1\user\APPLIC~1\MOVENE~1\mail log.exe" [10/20/2008 01:50 PM 518656]
"SoftCatcher"="C:\Program Files\Soft Catcher\SoftCatcher.exe" [10/21/2008 12:15 AM 992256]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe" [05/10/2006 11:12 AM 90112]
"AzMixerSel"="C:\Program Files\Realtek\InstallShield\AzMixerSel.exe" [08/16/2006 06:20 AM 53248]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [08/16/2006 06:34 AM 766041]
"Broadcom Wireless Manager UI"="C:\WINDOWS\system32\WLTRAY.exe" [08/16/2006 06:24 AM 1236992]
"LManager"="C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE" [09/07/2006 02:52 PM 479232]
"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [10/27/2006 12:47 AM 31016]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [11/02/2004 08:24 PM 32768]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [10/12/2008 10:09 PM 185896]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [07/29/2008 08:20 PM 206088]
"RTHDCPL"="RTHDCPL.EXE" [08/16/2006 06:23 AM 16248320 C:\WINDOWS\RTHDCPL.exe]
"SkyTel"="SkyTel.EXE" [08/16/2006 06:21 AM 2879488 C:\WINDOWS\SkyTel.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [08/04/2004 12:56 AM 15360]
C:\Documents and Settings\user\çں‍ê، ں §ڑ\ںé ©ںê¤\ §ک ں颬نïé\
OneNote 2007 Screen Clipper and Launcher.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632]
C:\Documents and Settings\All Users\çں‍ê، ں §ڑ\ںé ©ںê¤\ §ک ں颬نïé\
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2008-10-12 113664]
Adobe Reader Synchronizer.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-23 734872]
«©م، ¢¬نïé Adobe Reader.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.ACDV"= ACDV.dll
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UpdatesDisableNotify"=dword:00000001
"AntiVirusOverride"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"C:\\Program Files\\MSN Messenger\\livecall.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
R0 klbg;Kaspersky Lab Boot Guard Driver;C:\WINDOWS\system32\drivers\klbg.sys [01/29/2008 06:29 PM 32784]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;C:\WINDOWS\system32\DRIVERS\klfltdev.sys [03/13/2008 07:02 PM 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\WINDOWS\system32\DRIVERS\klim5.sys [04/30/2008 06:06 PM 24592]
S3 AVPsys;AVPsys;C:\WINDOWS\system32\drivers\cdaudio.sys [08/17/2001 01:52 PM 18688]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c96d4896-99b2-11dd-ab63-001636e432c4}]
\Shell\AutoRun\command - G:\yssjnngm.cmd
\Shell\explore\Command - G:\yssjnngm.cmd
\Shell\open\Command - G:\yssjnngm.cmd
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c96d4897-99b2-11dd-ab63-001636e432c4}]
\Shell\AutoRun\command - H:\yssjnngm.cmd
\Shell\explore\Command - H:\yssjnngm.cmd
\Shell\open\Command - H:\yssjnngm.cmd
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c96d4898-99b2-11dd-ab63-001636e432c4}]
\Shell\AutoRun\command - I:\yssjnngm.cmd
\Shell\explore\Command - I:\yssjnngm.cmd
\Shell\open\Command - I:\yssjnngm.cmd
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d11a400b-9e62-11dd-ab87-001636e432c4}]
\Shell\AutoRun\command - G:\yssjnngm.cmd
\Shell\explore\Command - G:\yssjnngm.cmd
\Shell\open\Command - G:\yssjnngm.cmd
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fbc5de6e-9e82-11dd-ab8b-001636e432c4}]
\Shell\AutoRun\command - G:\yssjnngm.cmd
\Shell\explore\Command - G:\yssjnngm.cmd
\Shell\open\Command - G:\yssjnngm.cmd
.
s of the 'Scheduled Tasks' folder
2008-10-26 C:\WINDOWS\Tasks\AF326454918E1650.job
- c:\docume~1\user\applic~1\movene~1\tray balm junk.exe [10/20/2008 01:55 PM]
.
.
------- Supplementary Scan -------
.
R0 -: HKCU-Main,Start Page = hxxp://www.google.com/
O8 -: "إضافة إلى حاجب الدعايات" - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 -: ت&صدير إلى Microsoft Excel - C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O16 -: Microsoft XML Parser for Java -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

C:\WINDOWS\Downloaded Program Files\Microsoft XML Parser for Java.osd
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2008-10-26 22:31:47
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...

**************************************************************************
.
Completion time: 10/26/2008 22:39:09 - machine was rebooted
ComboFix-quarantined-files.txt 2008-10-26 19:37:29
ComboFix2.txt 2008-10-21 17:53:17
Pre-Run: 13,886,337,024 bytes free
Post-Run: 13,910,560,768 bytes free
826 --- E O F --- 2008-10-24 12:04:12

 

[بيدو]

,وهذا الهايجاكLogfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:44:42 م, on 26/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Soft Catcher\SoftCatcher.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\user\LOCALS~1\Temp\RtkBtMnt.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\.IE5\UDQ34H67\Zyzoom_HijackThis[1].exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O2 - BHO: مساعد رابط Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [GREATITCH] C:\DOCUME~1\user\APPLIC~1\MOVENE~1\mail log.exe
O4 - HKCU\..\Run: [SoftCatcher] C:\Program Files\Soft Catcher\SoftCatcher.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: سرعة تشغيل Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O8 - Extra context menu item: "إضافة إلى حاجب الدعايات" - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: ت&صدير إلى Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O9 - Extra button: احصائيات حماية حركة مرور الشبكة - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: إرسال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: إر&سال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
--
End of file - 7126 bytes

 

[بيدو]

ياناس افزعولي راسي داج

 

[MMA_LORD_735]

في عدة أسباب لهل مشكلة هي ....

و أنا أول شي بنصحك أخي لكريم ...

أنك تعمل أستعادة نظام لأي نقطة كانت حالت لجهاذ منيحة فيها ...

و أذا عملت هيك و ما صار ...

فممكن من ضغط البرامج ...

لحل ...

أول أبداء ( START ) ...

تاني شي تشغيل ( RUN ) ...

تالت شي كتب هل أمر هاد ... Msconfig ...

بعدها ( STARTUP) ....

Disable All

نعم و حاول أن توقف تشغيل ...

بنتظار ردك ...

 

[MA222]

هلا فيك
اعمل الاتي مرة اخرى
عطل جميع برامج الحماية ,,
وحمل هذه الاداة واحفظها على سطح المكتب

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
انتظر حتى الاداة تنتهي من فحص جهازك ,,, وبشكل تلقائي يعاد تشغيل جهازك ,,
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ,, انسخه والصقه بردك القادم

واعمل تحديث لبرنامج الحماية
الذي لديك
وقم بفحص الجهاز بالكامل

ثم قم بالاتي
جرب هذه الادوات وشوف
اداة استعادة افتراضيات الريجستري ( xp )

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

​

لاصلاح الريجستري بعد تعطله (xp )

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

اداة dial-a-fix

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

شرح الاستخدام

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

​

 

[بيدو]

انا فحصت الجهاز وعملت الهايجاك

ComboFix 08-10-25.01 - user 10/26/2008 22:23:19.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1256.1.1025.18.168 [GMT 3:00]
Running from: C:\Documents and Settings\user\سطح المكتب\ComboFix.exe
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\IE4 Error Log.txt
.
((((((((((((((((((((((((( Files Created from 2008-09-26 to 2008-10-26 )))))))))))))))))))))))))))))))
.
No new files created in this timespan
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2008-10-26 19:33 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-10-26 19:32 360,480 --sha-w C:\WINDOWS\system32\drivers\fidbox2.dat
2008-10-26 19:31 4,408 --sha-w C:\WINDOWS\system32\drivers\fidbox2.idx
2008-10-26 19:29 33,108 --sha-w C:\WINDOWS\system32\drivers\fidbox.idx
2008-10-26 19:29 3,831,328 --sha-w C:\WINDOWS\system32\drivers\fidbox.dat
2008-10-26 07:35 --------- d-----w C:\Program Files\Soft Catcher
2008-10-26 06:32 --------- d-----w C:\Program Files\Free Video Tools
2008-10-21 22:48 --------- d-----w C:\Program Files\Circle Developement
2008-10-21 22:48 --------- d-----w C:\Documents and Settings\user\Application Data\movenewfilm
2008-10-21 21:39 96,976 ----a-w C:\WINDOWS\system32\drivers\klin.dat
2008-10-21 21:09 87,855 ----a-w C:\WINDOWS\system32\drivers\klick.dat
2008-10-21 15:29 --------- d-----w C:\Program Files\Kaspersky Lab
2008-10-21 14:38 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
2008-10-20 10:52 --------- d-----w C:\Documents and Settings\All Users\Application Data\Long slow road itch
2008-10-20 10:50 --------- d-----w C:\Program Files\movenewfilm
2008-10-19 05:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\avg7
2008-10-18 07:04 --------- d-----w C:\Documents and Settings\user\Application Data\AVG7
2008-10-16 17:14 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-10-15 13:49 --------- d-----w C:\Documents and Settings\All Users\Application Data\Messenger Plus!
2008-10-15 12:23 --------- d-----w C:\Program Files\Windows Live
2008-10-15 12:23 --------- d-----w C:\Program Files\MSN Messenger
2008-10-15 12:23 --------- d-----w C:\Program Files\Messenger Plus! Live
2008-10-14 22:00 --------- d-----w C:\Program Files\Common Files\Hewlett-Packard
2008-10-14 21:59 --------- d-----w C:\Program Files\HP
2008-10-14 05:42 --------- d-----w C:\Program Files\GlobFX
2008-10-12 19:43 --------- d-----w C:\Documents and Settings\user\Application Data\ACD Systems
2008-10-12 19:42 10,368 ----a-w C:\WINDOWS\system32\drivers\pfc.sys
2008-10-12 19:42 --------- d-----w C:\Program Files\Common Files\ACD Systems
2008-10-12 19:42 --------- d-----w C:\Program Files\ACD Systems
2008-10-12 19:42 --------- d-----w C:\Documents and Settings\All Users\Application Data\ACD Systems
2008-10-12 19:40 --------- d-----w C:\Program Files\Common Files\Adobe
2008-10-12 19:35 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-10-12 19:35 --------- d-----w C:\Program Files\Macromedia
2008-10-12 19:34 --------- d-----w C:\Program Files\JetAudio
2008-10-12 19:31 --------- d-----w C:\Program Files\Windows Media Connect 2
2008-10-12 19:27 --------- d-----w C:\Program Files\Common Files\Ahead
2008-10-12 19:27 --------- d-----w C:\Program Files\Ahead
2008-10-12 19:23 --------- d-----w C:\Documents and Settings\LocalService\Application Data\AVG7
2008-10-12 19:19 47,104 ------w C:\WINDOWS\AKDeInstall.exe
2008-10-12 19:19 --------- d-----w C:\Program Files\mpegable
2008-10-12 19:12 --------- d-----w C:\Program Files\CyberLink
2008-10-12 19:12 --------- d-----w C:\Documents and Settings\All Users\Application Data\CyberLink
2008-10-12 19:09 --------- d-----w C:\Program Files\Real
2008-10-12 19:09 --------- d-----w C:\Program Files\Common Files\xing shared
2008-10-12 19:09 --------- d-----w C:\Program Files\Common Files\Real
2008-10-12 19:06 --------- d-----w C:\Program Files\Java
2008-10-12 19:05 428,568 ----a-w C:\WINDOWS\system32\cdky1.reg
2008-10-12 19:05 --------- d-----w C:\Program Files\Common Files\Java
2008-10-12 19:04 --------- d-----w C:\Program Files\Golden Al-Wafi Translator
2008-10-12 19:03 --------- d-----w C:\Program Files\Google
2008-10-12 19:03 --------- d-----w C:\Documents and Settings\All Users\Application Data\WinZip
2008-10-12 19:02 90,112 ----a-w C:\WINDOWS\system32\agsaami.dll
2008-10-12 19:02 73,216 ----a-w C:\WINDOWS\ST6UNST.EXE
2008-10-12 19:02 610,304 ----a-w C:\WINDOWS\system32\agsaamg.dll
2008-10-12 19:02 372,736 ----a-w C:\WINDOWS\system32\agsaamc.dll
2008-10-12 19:02 2,535,424 ----a-w C:\WINDOWS\system32\agsaamj.dll
2008-10-12 19:02 196,608 ----a-w C:\WINDOWS\system32\maag.dll
2008-10-12 19:02 172,032 ------w C:\WINDOWS\Setup1.exe
2008-10-12 19:02 1,986,560 ----a-w C:\WINDOWS\system32\akll.dll
2008-10-12 19:02 1,245,184 ----a-w C:\WINDOWS\system32\bkll.dll
2008-10-12 19:02 1,212,416 ----a-w C:\WINDOWS\system32\ckll.dll
2008-10-12 19:02 --------- d-----w C:\Program Files\Real_SC
2008-10-12 18:52 --------- d-----w C:\Program Files\K-Lite Codec Pack
2008-10-12 18:49 155,995 ----a-w C:\WINDOWS\java\Packages\V9BTB9RH.ZIP
2008-10-12 18:43 --------- d-----w C:\Program Files\MSBuild
2008-10-12 18:43 --------- d-----w C:\Program Files\Microsoft Works
2008-10-12 18:41 --------- d-----w C:\Program Files\Microsoft.NET
2008-10-12 18:39 --------- d-----w C:\Program Files\Microsoft Visual Studio 8
2008-10-12 18:30 --------- d-----w C:\Program Files\Launch Manager
2008-10-12 18:23 --------- d-----w C:\Program Files\Realtek
2008-10-12 18:23 --------- d-----w C:\Program Files\Common Files\InstallShield
2008-10-12 18:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\InstallShield
2008-10-12 18:22 --------- d-----w C:\Program Files\CONEXANT
2008-10-12 18:22 --------- d-----w C:\Program Files\Broadcom
2008-10-12 18:20 --------- d-----w C:\Program Files\Synaptics
2008-10-12 18:17 --------- d-----w C:\Program Files\DIFX
2008-10-12 18:15 --------- d-----w C:\Documents and Settings\user\Application Data\ATI
2008-10-12 18:12 --------- d-----w C:\Program Files\ATI Technologies
2008-10-12 17:51 --------- d-----w C:\Program Files\microsoft frontpage
2008-09-15 15:37 1,845,888 ----a-w C:\WINDOWS\system32\win32k.sys
2008-08-28 10:04 333,056 ----a-w C:\WINDOWS\system32\drivers\srv.sys
2008-08-20 05:36 657,920 ----a-w C:\WINDOWS\system32\wininet.dll
2008-08-14 13:42 2,181,888 ----a-w C:\WINDOWS\system32\ntoskrnl.exe
2008-08-14 13:42 2,059,264 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe
2008-07-29 17:21 218,376 ----a-w C:\WINDOWS\system32\klogon.dll
.
((((((((((((((((((((((((((((( snapshot@Tue 10-21-2008_20.52.52.76 )))))))))))))))))))))))))))))))))))))))))
.
+ 2005-02-25 03:34:29 14,560 ----a-w C:\WINDOWS\$hf_mig$\KB898461\spmsg.dll
+ 2005-02-25 03:34:29 209,120 ----a-w C:\WINDOWS\$hf_mig$\KB898461\spuninst.exe
+ 2005-02-25 03:34:29 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB898461\spupdsvc.exe
+ 2005-02-25 03:34:29 22,240 ----a-w C:\WINDOWS\$hf_mig$\KB898461\update\spcustom.dll
+ 2005-02-25 03:34:29 714,976 ----a-w C:\WINDOWS\$hf_mig$\KB898461\update\update.exe
+ 2005-02-25 03:34:30 369,888 ----a-w C:\WINDOWS\$hf_mig$\KB898461\update\updspapi.dll
+ 2006-12-14 08:53:36 14,560 ----a-w C:\WINDOWS\$hf_mig$\KB935448\spmsg.dll
+ 2006-12-14 08:53:36 213,216 ----a-w C:\WINDOWS\$hf_mig$\KB935448\spuninst.exe
+ 2006-12-14 08:53:36 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB935448\update\spcustom.dll
+ 2006-12-14 08:53:37 712,928 ----a-w C:\WINDOWS\$hf_mig$\KB935448\update\update.exe
+ 2006-12-14 08:53:37 369,376 ----a-w C:\WINDOWS\$hf_mig$\KB935448\update\updspapi.dll
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB938464\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB938464\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB938464\update\spcustom.dll
+ 2007-11-30 11:18:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB938464\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB938464\update\updspapi.dll
+ 2007-12-18 14:32:26 450,560 ----a-w C:\WINDOWS\$hf_mig$\KB944338-v2\SP2QFE\jscript.dll
+ 2007-12-18 14:32:26 417,792 ----a-w C:\WINDOWS\$hf_mig$\KB944338-v2\SP2QFE\vbscript.dll
+ 2007-03-06 00:57:34 14,560 ----a-w C:\WINDOWS\$hf_mig$\KB944338-v2\spmsg.dll
+ 2007-03-06 00:57:39 213,216 ----a-w C:\WINDOWS\$hf_mig$\KB944338-v2\spuninst.exe
+ 2007-03-06 00:57:32 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB944338-v2\update\spcustom.dll
+ 2007-03-06 00:57:56 712,928 ----a-w C:\WINDOWS\$hf_mig$\KB944338-v2\update\update.exe
+ 2007-03-06 00:58:46 369,376 ----a-w C:\WINDOWS\$hf_mig$\KB944338-v2\update\updspapi.dll
+ 2008-05-02 13:33:32 83,968 ----a-w C:\WINDOWS\$hf_mig$\KB946648\SP2QFE\msgsc.dll
+ 2008-05-02 14:01:50 83,968 ----a-w C:\WINDOWS\$hf_mig$\KB946648\SP3GDR\msgsc.dll
+ 2008-05-02 13:42:54 83,968 ----a-w C:\WINDOWS\$hf_mig$\KB946648\SP3QFE\msgsc.dll
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB946648\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB946648\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB946648\update\spcustom.dll
+ 2007-11-30 11:18:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB946648\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB946648\update\updspapi.dll
+ 2008-03-25 04:50:25 554,008 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\dao360.dll
+ 2008-03-25 04:50:28 518,944 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msexch40.dll
+ 2008-03-25 04:50:30 326,432 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msexcl40.dll
+ 2008-03-25 04:50:34 1,516,568 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msjet40.dll
+ 2008-03-25 04:50:40 355,112 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msjetol1.dll
+ 2008-03-25 04:49:29 158,496 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msjint40.dll
+ 2008-03-25 04:50:42 60,192 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msjter40.dll
+ 2008-03-25 04:50:42 248,608 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msjtes40.dll
+ 2008-03-25 07:20:46 219,936 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msltus40.dll
+ 2008-03-25 04:50:45 355,104 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\mspbde40.dll
+ 2008-03-25 04:50:47 432,928 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msrd2x40.dll
+ 2008-03-25 04:50:49 322,336 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msrd3x40.dll
+ 2008-03-25 04:50:52 559,904 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msrepl40.dll
+ 2008-03-25 04:50:55 264,992 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\mstext40.dll
+ 2008-03-25 04:50:57 838,432 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\mswdat10.dll
+ 2008-03-25 04:49:30 621,344 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\mswstr10.dll
+ 2008-03-25 04:50:58 355,104 ----a-w C:\WINDOWS\$hf_mig$\KB950749\SP2QFE\msxbde40.dll
+ 2007-03-06 00:57:33 14,560 ----a-w C:\WINDOWS\$hf_mig$\KB950749\spmsg.dll
+ 2007-03-06 00:57:38 213,216 ----a-w C:\WINDOWS\$hf_mig$\KB950749\spuninst.exe
+ 2007-03-06 00:57:32 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB950749\update\spcustom.dll
+ 2007-03-06 00:57:56 712,928 ----a-w C:\WINDOWS\$hf_mig$\KB950749\update\update.exe
+ 2007-03-06 00:58:46 369,376 ----a-w C:\WINDOWS\$hf_mig$\KB950749\update\updspapi.dll
+ 2008-05-08 12:14:51 203,008 ----a-w C:\WINDOWS\$hf_mig$\KB950762\SP2QFE\rmcast.sys
+ 2008-05-08 14:02:52 203,136 ----a-w C:\WINDOWS\$hf_mig$\KB950762\SP3GDR\rmcast.sys
+ 2008-05-08 13:58:17 203,136 ----a-w C:\WINDOWS\$hf_mig$\KB950762\SP3QFE\rmcast.sys
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB950762\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB950762\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB950762\update\spcustom.dll
+ 2007-11-30 12:39:03 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB950762\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB950762\update\updspapi.dll
+ 2008-07-07 20:17:16 253,952 ----a-w C:\WINDOWS\$hf_mig$\KB950974\SP2QFE\es.dll
+ 2008-07-07 20:27:47 253,952 ----a-w C:\WINDOWS\$hf_mig$\KB950974\SP3GDR\es.dll
+ 2008-07-07 20:23:57 253,952 ----a-w C:\WINDOWS\$hf_mig$\KB950974\SP3QFE\es.dll
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB950974\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB950974\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB950974\update\spcustom.dll
+ 2007-11-30 12:38:55 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB950974\update\update.exe
+ 2007-11-30 12:38:55 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB950974\update\updspapi.dll
+ 2008-04-11 18:40:01 683,520 ----a-w C:\WINDOWS\$hf_mig$\KB951066\SP2QFE\inetcomm.dll
+ 2008-04-11 19:04:32 691,712 ----a-w C:\WINDOWS\$hf_mig$\KB951066\SP3GDR\inetcomm.dll
+ 2008-04-11 21:22:32 691,712 ----a-w C:\WINDOWS\$hf_mig$\KB951066\SP3QFE\inetcomm.dll
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB951066\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB951066\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB951066\update\spcustom.dll
+ 2007-12-03 15:25:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB951066\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB951066\update\updspapi.dll
+ 2008-07-14 11:03:00 62,976 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\SP2QFE\tzchange.exe
+ 2008-07-11 12:42:28 62,976 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\SP3GDR\tzchange.exe
+ 2008-07-11 12:51:51 62,976 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\SP3QFE\tzchange.exe
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\update\spcustom.dll
+ 2007-11-30 12:39:03 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\update\updspapi.dll
+ 2008-06-14 18:02:52 271,616 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\SP2QFE\bthport.sys
+ 2008-06-14 17:31:55 271,616 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\SP3GDR\bthport.sys
+ 2008-06-14 17:37:45 271,616 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\SP3QFE\bthport.sys
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\update\spcustom.dll
+ 2007-11-30 11:18:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\update\update.exe
+ 2007-11-30 11:18:13 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB951376-v2\update\updspapi.dll
+ 2008-05-07 04:55:20 1,286,144 ----a-w C:\WINDOWS\$hf_mig$\KB951698\SP2QFE\quartz.dll
+ 2008-05-07 05:10:16 1,286,144 ----a-w C:\WINDOWS\$hf_mig$\KB951698\SP3GDR\quartz.dll
+ 2008-05-07 05:04:17 1,286,144 ----a-w C:\WINDOWS\$hf_mig$\KB951698\SP3QFE\quartz.dll
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB951698\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB951698\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB951698\update\spcustom.dll
+ 2007-11-30 12:39:03 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB951698\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB951698\update\updspapi.dll
+ 2006-08-16 12:13:40 100,352 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\6to4svc.dll
+ 2008-06-20 10:44:08 138,368 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\afd.sys
+ 2008-06-20 17:36:14 147,968 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\dnsapi.dll
+ 2008-06-20 17:36:14 245,248 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\mswsock.dll
+ 2008-06-20 10:44:42 360,960 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
+ 2008-06-20 09:32:39 225,920 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip6.sys
+ 2008-06-20 11:40:08 138,496 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\afd.sys
+ 2008-06-20 17:47:47 147,968 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\dnsapi.dll
+ 2008-06-20 17:47:47 245,248 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\mswsock.dll
+ 2008-06-20 11:51:12 361,600 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
+ 2008-06-20 11:08:27 225,856 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip6.sys
+ 2008-06-20 11:48:03 138,496 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\afd.sys
+ 2008-06-20 17:43:07 147,968 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\dnsapi.dll
+ 2008-06-20 17:43:07 245,248 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\mswsock.dll
+ 2008-06-20 11:59:02 361,600 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
+ 2008-06-20 11:16:44 225,856 ----a-w C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip6.sys
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB951748\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB951748\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB951748\update\spcustom.dll
+ 2007-11-30 12:38:55 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB951748\update\update.exe
+ 2007-11-30 12:38:55 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB951748\update\updspapi.dll
+ 2008-05-01 15:04:03 331,776 ----a-w C:\WINDOWS\$hf_mig$\KB952287\SP2QFE\msadce.dll
+ 2008-05-01 14:34:51 331,776 ----a-w C:\WINDOWS\$hf_mig$\KB952287\SP3GDR\msadce.dll
+ 2008-05-01 14:38:27 331,776 ----a-w C:\WINDOWS\$hf_mig$\KB952287\SP3QFE\msadce.dll
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB952287\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB952287\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB952287\update\spcustom.dll
+ 2007-11-30 11:18:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB952287\update\update.exe
+ 2007-11-30 11:18:13 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB952287\update\updspapi.dll
+ 2008-06-24 16:29:58 74,240 ----a-w C:\WINDOWS\$hf_mig$\KB952954\SP2QFE\mscms.dll
+ 2008-06-24 16:43:12 74,240 ----a-w C:\WINDOWS\$hf_mig$\KB952954\SP3GDR\mscms.dll
+ 2008-06-24 16:53:22 74,240 ----a-w C:\WINDOWS\$hf_mig$\KB952954\SP3QFE\mscms.dll
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB952954\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB952954\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB952954\update\spcustom.dll
+ 2007-11-30 12:39:03 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB952954\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB952954\update\updspapi.dll
+ 2008-09-15 15:13:54 1,846,784 ----a-w C:\WINDOWS\$hf_mig$\KB954211\SP2QFE\win32k.sys
+ 2008-09-15 15:24:21 1,846,272 ----a-w C:\WINDOWS\$hf_mig$\KB954211\SP3GDR\win32k.sys
+ 2008-09-15 15:18:38 1,846,656 ----a-w C:\WINDOWS\$hf_mig$\KB954211\SP3QFE\win32k.sys
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB954211\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB954211\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB954211\update\spcustom.dll
+ 2008-07-09 07:34:22 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB954211\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB954211\update\updspapi.dll
+ 2008-08-20 05:33:03 1,024,000 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\browseui.dll
+ 2008-08-20 05:32:59 151,040 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\cdfview.dll
+ 2008-08-20 05:32:59 1,053,696 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\danim.dll
+ 2008-08-20 05:32:59 357,888 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\dxtmsft.dll
+ 2008-08-20 05:32:59 205,312 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\dxtrans.dll
+ 2008-08-20 05:32:59 55,808 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\extmgr.dll
+ 2008-08-19 09:38:57 18,432 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\iedw.exe
+ 2008-08-20 05:33:00 251,392 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\iepeers.dll
+ 2008-08-20 05:33:00 96,256 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\inseng.dll
+ 2008-08-20 05:33:02 16,384 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\jsproxy.dll
+ 2008-08-20 05:33:07 3,088,384 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\mshtml.dll
+ 2008-08-20 05:33:02 449,024 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\mshtmled.dll
+ 2008-08-20 05:33:00 146,432 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\msrating.dll
+ 2008-08-20 05:33:00 532,480 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\mstime.dll
+ 2008-08-20 05:33:00 39,424 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\pngfilt.dll
+ 2008-08-20 05:33:01 1,499,136 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\shdocvw.dll
+ 2008-08-20 05:33:02 474,112 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\shlwapi.dll
+ 2008-08-19 12:21:32 690,176 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\spru0401.dll
+ 2008-08-20 05:33:04 617,984 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\urlmon.dll
+ 2008-08-20 05:33:02 666,112 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\wininet.dll
+ 2008-08-20 07:40:14 3,088,896 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3GDR\mshtml.dll
+ 2008-08-20 05:10:12 1,499,136 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3GDR\shdocvw.dll
+ 2008-08-20 05:10:13 617,472 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3GDR\urlmon.dll
+ 2008-08-20 05:10:12 664,576 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3GDR\wininet.dll
+ 2008-08-20 05:06:29 3,088,896 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3QFE\mshtml.dll
+ 2008-08-20 05:06:25 1,499,136 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3QFE\shdocvw.dll
+ 2008-08-20 05:06:27 617,984 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3QFE\urlmon.dll
+ 2008-08-20 05:06:26 665,088 ----a-w C:\WINDOWS\$hf_mig$\KB956390\SP3QFE\wininet.dll
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB956390\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB956390\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB956390\update\spcustom.dll
+ 2007-11-30 12:39:03 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB956390\update\update.exe
+ 2008-07-09 07:34:30 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB956390\update\updspapi.dll
+ 2007-11-30 12:39:01 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB956391\spmsg.dll
+ 2007-11-30 12:39:01 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB956391\spuninst.exe
+ 2007-11-30 12:39:01 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB956391\update\spcustom.dll
+ 2007-11-30 12:39:03 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB956391\update\update.exe
+ 2007-11-30 12:39:04 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB956391\update\updspapi.dll
+ 2008-08-14 09:48:52 138,368 ----a-w C:\WINDOWS\$hf_mig$\KB956803\SP2QFE\afd.sys
+ 2008-08-14 10:04:36 138,496 ----a-w C:\WINDOWS\$hf_mig$\KB956803\SP3GDR\afd.sys
+ 2008-08-14 10:34:26 138,496 ----a-w C:\WINDOWS\$hf_mig$\KB956803\SP3QFE\afd.sys
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB956803\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB956803\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB956803\update\spcustom.dll
+ 2007-11-30 11:18:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB956803\update\update.exe
+ 2007-11-30 11:18:13 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB956803\update\updspapi.dll
+ 2008-08-14 13:37:03 2,144,256 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP2QFE\ntkrnlmp.exe
+ 2008-08-14 13:37:05 2,064,512 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP2QFE\ntkrnlpa.exe
+ 2008-08-14 13:37:00 2,022,400 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP2QFE\ntkrpamp.exe
+ 2008-08-14 13:37:03 2,187,520 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP2QFE\ntoskrnl.exe
+ 2008-08-14 13:20:31 2,146,816 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3GDR\ntkrnlmp.exe
+ 2008-08-14 13:20:34 2,067,584 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3GDR\ntkrnlpa.exe
+ 2008-08-14 13:20:30 2,025,472 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3GDR\ntkrpamp.exe
+ 2008-08-14 13:20:33 2,190,720 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3GDR\ntoskrnl.exe
+ 2008-08-14 13:54:25 2,146,816 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3QFE\ntkrnlmp.exe
+ 2008-08-14 16:24:30 2,067,584 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3QFE\ntkrnlpa.exe
+ 2008-08-14 13:54:24 2,025,472 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3QFE\ntkrpamp.exe
+ 2008-08-14 16:24:28 2,190,720 ----a-w C:\WINDOWS\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB956841\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB956841\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB956841\update\spcustom.dll
+ 2007-11-30 12:39:03 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB956841\update\update.exe
+ 2008-07-09 07:34:30 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB956841\update\updspapi.dll
+ 2008-08-28 10:35:33 333,056 ----a-w C:\WINDOWS\$hf_mig$\KB957095\SP2QFE\srv.sys
+ 2008-09-08 10:41:42 333,824 ----a-w C:\WINDOWS\$hf_mig$\KB957095\SP3GDR\srv.sys
+ 2008-09-08 11:37:19 333,824 ----a-w C:\WINDOWS\$hf_mig$\KB957095\SP3QFE\srv.sys
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB957095\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB957095\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB957095\update\spcustom.dll
+ 2007-11-30 11:18:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB957095\update\update.exe
+ 2007-11-30 11:18:13 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB957095\update\updspapi.dll
+ 2008-10-15 16:54:24 339,456 ----a-w C:\WINDOWS\$hf_mig$\KB958644\SP2QFE\netapi32.dll
+ 2008-10-15 16:35:25 337,408 ----a-w C:\WINDOWS\$hf_mig$\KB958644\SP3GDR\netapi32.dll
+ 2008-10-15 16:26:10 339,456 ----a-w C:\WINDOWS\$hf_mig$\KB958644\SP3QFE\netapi32.dll
+ 2007-11-30 11:18:09 17,784 ----a-w C:\WINDOWS\$hf_mig$\KB958644\spmsg.dll
+ 2007-11-30 11:18:09 231,288 ----a-w C:\WINDOWS\$hf_mig$\KB958644\spuninst.exe
+ 2007-11-30 11:18:09 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB958644\update\spcustom.dll
+ 2007-11-30 11:18:13 752,504 ----a-w C:\WINDOWS\$hf_mig$\KB958644\update\update.exe
+ 2007-11-30 11:18:13 380,792 ----a-w C:\WINDOWS\$hf_mig$\KB958644\update\updspapi.dll
+ 2005-02-25 03:34:29 209,120 -c----w C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst .exe
+ 2005-02-25 03:34:30 369,888 -c----w C:\WINDOWS\$NtUninstallKB898461$\spuninst\updspapi .dll
+ 2006-10-18 18:47:16 414,208 -c----w C:\WINDOWS\$NtUninstallKB929399$\msscp.dll
+ 2005-06-28 07:23:26 213,216 -c----w C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst .exe
+ 2005-06-28 07:23:54 371,424 -c----w C:\WINDOWS\$NtUninstallKB929399$\spuninst\updspapi .dll
+ 2006-12-14 08:53:36 213,216 -c----w C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst .exe
+ 2006-12-14 08:53:37 369,376 -c----w C:\WINDOWS\$NtUninstallKB935448$\spuninst\updspapi .dll
+ 2005-06-28 07:23:28 213,216 -c----w C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\sp uninst.exe
+ 2005-06-28 07:23:54 371,424 -c----w C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\up dspapi.dll
+ 2006-10-18 18:47:20 10,834,432 -c----w C:\WINDOWS\$NtUninstallKB936782_WMP11$\wmp.dll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst .exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB938464$\spuninst\updspapi .dll
+ 2005-06-28 07:23:28 213,216 -c----w C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst .exe
+ 2005-06-28 07:23:54 371,424 -c----w C:\WINDOWS\$NtUninstallKB941569$\spuninst\updspapi .dll
+ 2006-10-18 18:47:18 222,208 -c----w C:\WINDOWS\$NtUninstallKB941569$\wmasf.dll
+ 2004-08-03 21:55:40 450,560 -c----w C:\WINDOWS\$NtUninstallKB944338-v2$\jscript.dll
+ 2007-03-06 00:57:39 213,216 -c----w C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe
+ 2007-03-06 00:58:46 369,376 -c----w C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\updspapi.dll
+ 2004-08-03 21:55:54 417,792 -c----w C:\WINDOWS\$NtUninstallKB944338-v2$\vbscript.dll
+ 2004-08-03 22:09:14 82,944 -c----w C:\WINDOWS\$NtUninstallKB946648$\msgsc.dll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst .exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB946648$\spuninst\updspapi .dll
+ 2004-08-03 21:55:34 561,179 -c----w C:\WINDOWS\$NtUninstallKB950749$\dao360.dll
+ 2004-08-03 21:55:42 512,029 -c----w C:\WINDOWS\$NtUninstallKB950749$\msexch40.dll
+ 2004-08-03 21:55:42 319,517 -c----w C:\WINDOWS\$NtUninstallKB950749$\msexcl40.dll
+ 2004-08-03 21:55:42 1,507,356 -c----w C:\WINDOWS\$NtUninstallKB950749$\msjet40.dll
+ 2004-07-17 08:34:48 358,976 -c----w C:\WINDOWS\$NtUninstallKB950749$\msjetol1.dll
+ 2004-07-17 08:34:48 358,976 -c----w C:\WINDOWS\$NtUninstallKB950749$\msjetoledb40.dll
+ 2004-08-03 21:55:44 151,583 -c----w C:\WINDOWS\$NtUninstallKB950749$\msjint40.dll
+ 2004-08-03 21:55:44 53,279 -c----w C:\WINDOWS\$NtUninstallKB950749$\msjter40.dll
+ 2004-08-03 21:55:44 241,693 -c----w C:\WINDOWS\$NtUninstallKB950749$\msjtes40.dll
+ 2004-08-03 21:55:44 213,023 -c----w C:\WINDOWS\$NtUninstallKB950749$\msltus40.dll
+ 2004-08-03 21:55:44 348,189 -c----w C:\WINDOWS\$NtUninstallKB950749$\mspbde40.dll
+ 2004-08-03 21:55:44 421,919 -c----w C:\WINDOWS\$NtUninstallKB950749$\msrd2x40.dll
+ 2004-08-03 21:55:44 315,423 -c----w C:\WINDOWS\$NtUninstallKB950749$\msrd3x40.dll
+ 2004-08-03 21:55:46 552,989 -c----w C:\WINDOWS\$NtUninstallKB950749$\msrepl40.dll
+ 2004-08-03 21:55:46 258,077 -c----w C:\WINDOWS\$NtUninstallKB950749$\mstext40.dll
+ 2004-08-03 21:55:46 831,519 -c----w C:\WINDOWS\$NtUninstallKB950749$\mswdat10.dll
+ 2004-08-03 21:55:46 614,429 -c----w C:\WINDOWS\$NtUninstallKB950749$\mswstr10.dll
+ 2004-08-03 21:55:46 348,189 -c----w C:\WINDOWS\$NtUninstallKB950749$\msxbde40.dll
+ 2007-03-06 00:57:38 213,216 -c----w C:\WINDOWS\$NtUninstallKB950749$\spuninst\spuninst .exe
+ 2007-03-06 00:58:46 369,376 -c----w C:\WINDOWS\$NtUninstallKB950749$\spuninst\updspapi .dll
+ 2001-09-19 12:00:00 200,064 -c----w C:\WINDOWS\$NtUninstallKB950762$\rmcast.sys
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst .exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB950762$\spuninst\updspapi .dll
+ 2004-08-03 21:55:36 243,200 -c----w C:\WINDOWS\$NtUninstallKB950974$\es.dll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst .exe
+ 2007-11-30 12:38:55 380,792 -c----w C:\WINDOWS\$NtUninstallKB950974$\spuninst\updspapi .dll
+ 2004-08-03 21:55:38 678,400 -c----w C:\WINDOWS\$NtUninstallKB951066$\inetcomm.dll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst .exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB951066$\spuninst\updspapi .dll
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\updspapi.dll
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe
+ 2007-11-30 11:18:13 380,792 -c----w C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\updspapi.dll
+ 2004-08-03 21:55:48 1,285,632 -c----w C:\WINDOWS\$NtUninstallKB951698$\quartz.dll
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst .exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB951698$\spuninst\updspapi .dll
+ 2004-08-03 21:55:32 100,352 -c----w C:\WINDOWS\$NtUninstallKB951748$\6to4svc.dll
+ 2004-08-03 20:14:16 138,496 -c----w C:\WINDOWS\$NtUninstallKB951748$\afd.sys
+ 2004-08-03 21:55:34 148,480 -c----w C:\WINDOWS\$NtUninstallKB951748$\dnsapi.dll
+ 2004-08-03 21:55:46 245,248 -c----w C:\WINDOWS\$NtUninstallKB951748$\mswsock.dll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst .exe
+ 2007-11-30 12:38:55 380,792 -c----w C:\WINDOWS\$NtUninstallKB951748$\spuninst\updspapi .dll
+ 2004-08-03 20:14:42 359,040 -c----w C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
+ 2004-08-03 20:07:46 223,616 -c----w C:\WINDOWS\$NtUninstallKB951748$\tcpip6.sys
+ 2004-08-03 21:55:40 331,776 -c----w C:\WINDOWS\$NtUninstallKB952287$\msadce.dll
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst .exe
+ 2007-11-30 11:18:13 380,792 -c----w C:\WINDOWS\$NtUninstallKB952287$\spuninst\updspapi .dll
+ 2004-08-03 21:55:42 73,728 -c----w C:\WINDOWS\$NtUninstallKB952954$\mscms.dll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst .exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB952954$\spuninst\updspapi .dll
+ 2007-07-27 07:42:32 231,288 -c----w C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spu ninst.exe
+ 2007-07-27 07:41:48 382,840 -c----w C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\upd spapi.dll
+ 2006-10-18 18:47:20 295,936 -c----w C:\WINDOWS\$NtUninstallKB954154_WM11$\wmpeffects.d ll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst .exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB954211$\spuninst\updspapi .dll
+ 2004-08-03 21:46:22 1,835,776 -c----w C:\WINDOWS\$NtUninstallKB954211$\win32k.sys
+ 2004-08-03 21:55:32 1,016,832 -c----w C:\WINDOWS\$NtUninstallKB956390$\browseui.dll
+ 2004-08-03 21:55:32 150,528 -c----w C:\WINDOWS\$NtUninstallKB956390$\cdfview.dll
+ 2004-08-03 21:55:34 1,053,184 -c----w C:\WINDOWS\$NtUninstallKB956390$\danim.dll
+ 2004-08-03 21:55:36 357,888 -c----w C:\WINDOWS\$NtUninstallKB956390$\dxtmsft.dll
+ 2004-08-03 21:55:36 201,728 -c----w C:\WINDOWS\$NtUninstallKB956390$\dxtrans.dll
+ 2004-08-03 21:55:36 55,808 -c----w C:\WINDOWS\$NtUninstallKB956390$\extmgr.dll
+ 2004-08-03 21:56:16 18,432 -c----w C:\WINDOWS\$NtUninstallKB956390$\iedw.exe
+ 2004-08-03 21:55:38 248,832 -c----w C:\WINDOWS\$NtUninstallKB956390$\iepeers.dll
+ 2004-08-03 21:55:38 96,256 -c----w C:\WINDOWS\$NtUninstallKB956390$\inseng.dll
+ 2004-08-03 21:55:40 15,872 -c----w C:\WINDOWS\$NtUninstallKB956390$\jsproxy.dll
+ 2004-08-03 21:55:42 3,003,392 -c----w C:\WINDOWS\$NtUninstallKB956390$\mshtml.dll
+ 2004-08-03 21:55:42 448,512 -c----w C:\WINDOWS\$NtUninstallKB956390$\mshtmled.dll
+ 2004-08-03 21:55:44 146,432 -c----w C:\WINDOWS\$NtUninstallKB956390$\msrating.dll
+ 2004-08-03 21:55:46 530,432 -c----w C:\WINDOWS\$NtUninstallKB956390$\mstime.dll
+ 2004-08-03 21:55:48 39,424 -c----w C:\WINDOWS\$NtUninstallKB956390$\pngfilt.dll
+ 2004-08-03 21:55:52 1,483,264 -c----w C:\WINDOWS\$NtUninstallKB956390$\shdocvw.dll
+ 2004-08-03 21:55:52 473,600 -c----w C:\WINDOWS\$NtUninstallKB956390$\shlwapi.dll
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst .exe
+ 2008-07-09 07:34:30 380,792 -c----w C:\WINDOWS\$NtUninstallKB956390$\spuninst\updspapi .dll
+ 2004-08-03 21:55:54 600,064 -c----w C:\WINDOWS\$NtUninstallKB956390$\urlmon.dll
+ 2004-08-03 21:55:58 654,848 -c----w C:\WINDOWS\$NtUninstallKB956390$\wininet.dll
+ 2007-11-30 12:39:01 231,288 -c----w C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst .exe
+ 2007-11-30 12:39:04 380,792 -c----w C:\WINDOWS\$NtUninstallKB956391$\spuninst\updspapi .dll
+ 2008-06-20 10:44:38 138,368 -c----w C:\WINDOWS\$NtUninstallKB956803$\afd.sys
+ 2008-06-20 10:44:38 138,368 -c----w C:\WINDOWS\$NtUninstallKB956803$\afd.sys.000
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst .exe
+ 2007-11-30 11:18:13 380,792 -c----w C:\WINDOWS\$NtUninstallKB956803$\spuninst\updspapi .dll
+ 2004-08-03 22:08:00 2,058,368 -c----w C:\WINDOWS\$NtUninstallKB956841$\ntkrnlpa.exe
+ 2004-08-03 21:49:02 2,182,528 -c----w C:\WINDOWS\$NtUninstallKB956841$\ntoskrnl.exe
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst .exe
+ 2008-07-09 07:34:30 380,792 -c----w C:\WINDOWS\$NtUninstallKB956841$\spuninst\updspapi .dll
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst .exe
+ 2007-11-30 11:18:13 380,792 -c----w C:\WINDOWS\$NtUninstallKB957095$\spuninst\updspapi .dll
+ 2004-08-03 20:14:46 336,256 -c----w C:\WINDOWS\$NtUninstallKB957095$\srv.sys
+ 2004-08-03 21:55:46 332,288 -c----w C:\WINDOWS\$NtUninstallKB958644$\netapi32.dll
+ 2007-11-30 11:18:09 231,288 -c----w C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst .exe
+ 2007-11-30 11:18:13 380,792 -c----w C:\WINDOWS\$NtUninstallKB958644$\spuninst\updspapi .dll
+ 2008-06-14 17:59:04 271,616 ------w C:\WINDOWS\Driver Cache\i386\bthport.sys
+ 2008-08-14 13:42:30 2,137,600 ------w C:\WINDOWS\Driver Cache\i386\ntkrnlmp.exe
+ 2008-08-14 13:42:32 2,059,264 ------w C:\WINDOWS\Driver Cache\i386\ntkrnlpa.exe
+ 2008-08-14 13:42:30 2,017,280 ------w C:\WINDOWS\Driver Cache\i386\ntkrpamp.exe
+ 2008-08-14 13:42:32 2,181,888 ------w C:\WINDOWS\Driver Cache\i386\ntoskrnl.exe
- 2004-08-03 21:55:32 100,352 ----a-w C:\WINDOWS\system32\6to4svc.dll
+ 2006-08-16 11:58:04 100,352 ----a-w C:\WINDOWS\system32\6to4svc.dll
- 2004-08-03 21:55:32 1,016,832 ----a-w C:\WINDOWS\system32\browseui.dll
+ 2008-08-20 05:36:15 1,023,488 ----a-w C:\WINDOWS\system32\browseui.dll
- 2004-08-03 21:55:32 150,528 ----a-w C:\WINDOWS\system32\cdfview.dll
+ 2008-08-20 05:36:11 151,040 ----a-w C:\WINDOWS\system32\cdfview.dll
- 2004-08-03 21:55:32 66,560 ----a-w C:\WINDOWS\system32\cdm.dll
+ 2007-07-30 16:19:20 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
- 2008-10-21 15:45:46 16,384 ----a-w C:\WINDOWS\system32\config\systemprofile\s\index.d at
+ 2008-10-22 05:08:02 16,384 ----a-w C:\WINDOWS\system32\config\systemprofile\s\index.d at
- 2008-10-21 15:45:46 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2008-10-22 05:08:02 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2008-10-21 15:45:46 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\.IE5\index.dat
+ 2008-10-22 05:08:02 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\.IE5\index.dat
- 2004-08-03 21:55:34 1,053,184 ----a-w C:\WINDOWS\system32\danim.dll
+ 2008-08-20 05:36:11 1,053,696 ----a-w C:\WINDOWS\system32\danim.dll
- 2004-08-03 21:55:32 100,352 -c--a-w C:\WINDOWS\system32\dllcache\6to4svc.dll
+ 2006-08-16 11:58:04 100,352 -c--a-w C:\WINDOWS\system32\dllcache\6to4svc.dll
- 2004-08-03 20:14:16 138,496 -c--a-w C:\WINDOWS\system32\dllcache\afd.sys
+ 2008-08-14 09:51:43 138,368 -c----w C:\WINDOWS\system32\dllcache\afd.sys
- 2004-08-03 21:55:32 1,016,832 -c--a-w C:\WINDOWS\system32\dllcache\browseui.dll
+ 2008-08-20 05:36:15 1,023,488 -c--a-w C:\WINDOWS\system32\dllcache\browseui.dll
+ 2008-06-14 17:59:04 271,616 -c----w C:\WINDOWS\system32\dllcache\bthport.sys
- 2004-08-03 21:55:32 150,528 -c--a-w C:\WINDOWS\system32\dllcache\cdfview.dll
+ 2008-08-20 05:36:11 151,040 -c--a-w C:\WINDOWS\system32\dllcache\cdfview.dll
- 2004-08-03 21:55:32 66,560 -c--a-w C:\WINDOWS\system32\dllcache\cdm.dll
+ 2007-07-30 16:19:20 92,504 -c--a-w C:\WINDOWS\system32\dllcache\cdm.dll
- 2004-08-03 21:55:34 1,053,184 -c--a-w C:\WINDOWS\system32\dllcache\danim.dll
+ 2008-08-20 05:36:11 1,053,696 -c--a-w C:\WINDOWS\system32\dllcache\danim.dll
- 2004-08-03 21:55:34 561,179 -c--a-w C:\WINDOWS\system32\dllcache\dao360.dll
+ 2008-03-25 04:50:25 554,008 -c--a-w C:\WINDOWS\system32\dllcache\dao360.dll
- 2004-08-03 21:55:34 148,480 -c--a-w C:\WINDOWS\system32\dllcache\dnsapi.dll
+ 2008-06-20 17:39:47 148,992 -c--a-w C:\WINDOWS\system32\dllcache\dnsapi.dll
- 2004-08-03 21:55:36 357,888 -c--a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll
+ 2008-08-20 05:36:11 357,888 -c--a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll
- 2004-08-03 21:55:36 201,728 -c--a-w C:\WINDOWS\system32\dllcache\dxtrans.dll
+ 2008-08-20 05:36:12 205,312 -c--a-w C:\WINDOWS\system32\dllcache\dxtrans.dll
- 2004-08-03 21:55:36 243,200 -c--a-w C:\WINDOWS\system32\dllcache\es.dll
+ 2008-07-07 20:30:47 253,952 -c--a-w C:\WINDOWS\system32\dllcache\es.dll
- 2004-08-03 21:55:36 55,808 -c--a-w C:\WINDOWS\system32\dllcache\extmgr.dll
+ 2008-08-20 05:36:12 55,808 -c--a-w C:\WINDOWS\system32\dllcache\extmgr.dll
- 2004-08-03 21:56:16 18,432 -c--a-w C:\WINDOWS\system32\dllcache\iedw.exe
+ 2008-08-19 09:30:39 18,432 -c--a-w C:\WINDOWS\system32\dllcache\iedw.exe
- 2004-08-03 21:55:38 248,832 -c--a-w C:\WINDOWS\system32\dllcache\iepeers.dll
+ 2008-08-20 05:36:12 250,880 -c--a-w C:\WINDOWS\system32\dllcache\iepeers.dll
- 2004-08-03 21:55:38 678,400 -c--a-w C:\WINDOWS\system32\dllcache\inetcomm.dll
+ 2008-04-11 18:50:11 683,520 -c--a-w C:\WINDOWS\system32\dllcache\inetcomm.dll
- 2004-08-03 21:55:38 96,256 -c--a-w C:\WINDOWS\system32\dllcache\inseng.dll
+ 2008-08-20 05:36:12 96,256 -c--a-w C:\WINDOWS\system32\dllcache\inseng.dll
- 2004-08-03 21:55:40 450,560 -c--a-w C:\WINDOWS\system32\dllcache\jscript.dll
+ 2007-12-18 14:41:00 450,560 -c--a-w C:\WINDOWS\system32\dllcache\jscript.dll
- 2004-08-03 21:55:40 15,872 -c--a-w C:\WINDOWS\system32\dllcache\jsproxy.dll
+ 2008-08-20 05:36:14 16,384 -c--a-w C:\WINDOWS\system32\dllcache\jsproxy.dll
- 2004-08-03 21:55:40 331,776 -c--a-w C:\WINDOWS\system32\dllcache\msadce.dll
+ 2008-05-01 14:30:35 331,776 -c--a-w C:\WINDOWS\system32\dllcache\msadce.dll
- 2004-08-03 21:55:42 73,728 -c--a-w C:\WINDOWS\system32\dllcache\mscms.dll
+ 2008-06-24 16:22:22 74,240 -c--a-w C:\WINDOWS\system32\dllcache\mscms.dll
- 2004-08-03 21:55:42 512,029 -c--a-w C:\WINDOWS\system32\dllcache\msexch40.dll
+ 2008-03-25 04:50:28 518,944 -c--a-w C:\WINDOWS\system32\dllcache\msexch40.dll
- 2004-08-03 21:55:42 319,517 -c--a-w C:\WINDOWS\system32\dllcache\msexcl40.dll
+ 2008-03-25 04:50:30 326,432 -c--a-w C:\WINDOWS\system32\dllcache\msexcl40.dll
- 2004-08-03 21:55:42 3,003,392 -c--a-w C:\WINDOWS\system32\dllcache\mshtml.dll
+ 2008-08-20 05:36:17 3,081,216 -c--a-w C:\WINDOWS\system32\dllcache\mshtml.dll
- 2004-08-03 21:55:42 448,512 -c--a-w C:\WINDOWS\system32\dllcache\mshtmled.dll
+ 2008-08-20 05:36:14 449,024 -c--a-w C:\WINDOWS\system32\dllcache\mshtmled.dll
- 2004-08-03 21:55:42 1,507,356 -c--a-w C:\WINDOWS\system32\dllcache\msjet40.dll
+ 2008-03-25 04:50:34 1,516,568 -c--a-w C:\WINDOWS\system32\dllcache\msjet40.dll
- 2004-07-17 08:34:48 358,976 -c--a-w C:\WINDOWS\system32\dllcache\msjetol1.dll
+ 2008-03-25 04:50:40 355,112 -c--a-w C:\WINDOWS\system32\dllcache\msjetol1.dll
- 2004-08-03 21:55:44 151,583 -c--a-w C:\WINDOWS\system32\dllcache\msjint40.dll
+ 2008-03-25 04:49:29 158,496 -c--a-w C:\WINDOWS\system32\dllcache\msjint40.dll
- 2004-08-03 21:55:44 53,279 -c--a-w C:\WINDOWS\system32\dllcache\msjter40.dll
+ 2008-03-25 04:50:42 60,192 -c--a-w C:\WINDOWS\system32\dllcache\msjter40.dll
- 2004-08-03 21:55:44 241,693 -c--a-w C:\WINDOWS\system32\dllcache\msjtes40.dll
+ 2008-03-25 04:50:42 248,608 -c--a-w C:\WINDOWS\system32\dllcache\msjtes40.dll
- 2004-08-03 21:55:44 213,023 -c--a-w C:\WINDOWS\system32\dllcache\msltus40.dll
+ 2008-03-25 07:20:46 219,936 -c--a-w C:\WINDOWS\system32\dllcache\msltus40.dll
- 2004-08-03 21:55:44 348,189 -c--a-w C:\WINDOWS\system32\dllcache\mspbde40.dll
+ 2008-03-25 04:50:45 355,104 -c--a-w C:\WINDOWS\system32\dllcache\mspbde40.dll
- 2004-08-03 21:55:44 146,432 -c--a-w C:\WINDOWS\system32\dllcache\msrating.dll
+ 2008-08-20 05:36:12 146,432 -c--a-w C:\WINDOWS\system32\dllcache\msrating.dll
- 2004-08-03 21:55:44 421,919 -c--a-w C:\WINDOWS\system32\dllcache\msrd2x40.dll
+ 2008-03-25 04:50:47 432,928 -c--a-w C:\WINDOWS\system32\dllcache\msrd2x40.dll
- 2004-08-03 21:55:44 315,423 -c--a-w C:\WINDOWS\system32\dllcache\msrd3x40.dll
+ 2008-03-25 04:50:49 322,336 -c--a-w C:\WINDOWS\system32\dllcache\msrd3x40.dll
- 2004-08-03 21:55:46 552,989 -c--a-w C:\WINDOWS\system32\dllcache\msrepl40.dll
+ 2008-03-25 04:50:52 559,904 -c--a-w C:\WINDOWS\system32\dllcache\msrepl40.dll
- 2006-10-18 18:47:16 414,208 -c--a-w C:\WINDOWS\system32\dllcache\msscp.dll
+ 2006-12-04 13:21:50 414,720 -c--a-w C:\WINDOWS\system32\dllcache\msscp.dll
- 2004-08-03 21:55:46 258,077 -c--a-w C:\WINDOWS\system32\dllcache\mstext40.dll
+ 2008-03-25 04:50:55 264,992 -c--a-w C:\WINDOWS\system32\dllcache\mstext40.dll
- 2004-08-03 21:55:46 530,432 -c--a-w C:\WINDOWS\system32\dllcache\mstime.dll
+ 2008-08-20 05:36:12 532,480 -c--a-w C:\WINDOWS\system32\dllcache\mstime.dll
- 2004-08-03 21:55:46 831,519 -c--a-w C:\WINDOWS\system32\dllcache\mswdat10.dll
+ 2008-03-25 04:50:57 838,432 -c--a-w C:\WINDOWS\system32\dllcache\mswdat10.dll
- 2004-08-03 21:55:46 245,248 -c--a-w C:\WINDOWS\system32\dllcache\mswsock.dll
+ 2008-06-20 17:39:48 245,248 -c--a-w C:\WINDOWS\system32\dllcache\mswsock.dll
- 2004-08-03 21:55:46 614,429 -c--a-w C:\WINDOWS\system32\dllcache\mswstr10.dll
+ 2008-03-25 04:49:30 621,344 -c--a-w C:\WINDOWS\system32\dllcache\mswstr10.dll
- 2004-08-03 21:55:46 348,189 -c--a-w C:\WINDOWS\system32\dllcache\msxbde40.dll
+ 2008-03-25 04:50:58 355,104 -c--a-w C:\WINDOWS\system32\dllcache\msxbde40.dll
- 2004-08-03 21:55:46 332,288 -c--a-w C:\WINDOWS\system32\dllcache\netapi32.dll
+ 2008-10-15 16:57:47 332,800 -c--a-w C:\WINDOWS\system32\dllcache\netapi32.dll
+ 2008-08-14 13:42:30 2,137,600 -c----w C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
+ 2008-08-14 13:42:32 2,059,264 -c----w C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
+ 2008-08-14 13:42:30 2,017,280 -c----w C:\WINDOWS\system32\dllcache\ntkrpamp.exe
+ 2008-08-14 13:42:32 2,181,888 -c----w C:\WINDOWS\system32\dllcache\ntoskrnl.exe
- 2004-08-03 21:55:48 39,424 -c--a-w C:\WINDOWS\system32\dllcache\pngfilt.dll
+ 2008-08-20 05:36:12 39,424 -c--a-w C:\WINDOWS\system32\dllcache\pngfilt.dll
- 2004-08-03 21:55:48 1,285,632 -c--a-w C:\WINDOWS\system32\dllcache\quartz.dll
+ 2008-05-07 05:14:35 1,285,632 -c--a-w C:\WINDOWS\system32\dllcache\quartz.dll
- 2001-09-19 12:00:00 200,064 -c--a-w C:\WINDOWS\system32\dllcache\rmcast.sys
+ 2008-05-08 12:28:49 202,752 -c--a-w C:\WINDOWS\system32\dllcache\rmcast.sys
- 2004-08-03 21:55:52 1,483,264 -c--a-w C:\WINDOWS\system32\dllcache\shdocvw.dll
+ 2008-08-20 05:36:13 1,494,528 -c--a-w C:\WINDOWS\system32\dllcache\shdocvw.dll
- 2004-08-03 21:55:52 473,600 -c--a-w C:\WINDOWS\system32\dllcache\shlwapi.dll
+ 2008-08-20 05:36:14 474,112 -c--a-w C:\WINDOWS\system32\dllcache\shlwapi.dll
- 2004-08-03 20:14:46 336,256 -c--a-w C:\WINDOWS\system32\dllcache\srv.sys
+ 2008-08-28 10:04:17 333,056 -c--a-w C:\WINDOWS\system32\dllcache\srv.sys
- 2004-08-03 20:14:42 359,040 -c--a-w C:\WINDOWS\system32\dllcache\tcpip.sys
+ 2008-06-20 10:45:13 360,320 -c--a-w C:\WINDOWS\system32\dllcache\tcpip.sys
- 2004-08-03 20:07:46 223,616 -c--a-w C:\WINDOWS\system32\dllcache\tcpip6.sys
+ 2008-06-20 09:52:06 225,920 -c--a-w C:\WINDOWS\system32\dllcache\tcpip6.sys
- 2004-08-03 21:55:54 600,064 -c--a-w C:\WINDOWS\system32\dllcache\urlmon.dll
+ 2008-08-20 05:36:15 614,912 -c--a-w C:\WINDOWS\system32\dllcache\urlmon.dll
- 2004-08-03 21:55:54 417,792 -c--a-w C:\WINDOWS\system32\dllcache\vbscript.dll
+ 2007-12-18 14:41:00 417,792 -c--a-w C:\WINDOWS\system32\dllcache\vbscript.dll
- 2004-08-03 21:46:22 1,835,776 -c--a-w C:\WINDOWS\system32\dllcache\win32k.sys
+ 2008-09-15 15:37:40 1,845,888 -c--a-w C:\WINDOWS\system32\dllcache\win32k.sys
- 2004-08-03 21:55:58 654,848 -c--a-w C:\WINDOWS\system32\dllcache\wininet.dll
+ 2008-08-20 05:36:13 657,920 -c--a-w C:\WINDOWS\system32\dllcache\wininet.dll
- 2006-10-18 18:47:18 222,208 -c--a-w C:\WINDOWS\system32\dllcache\WMASF.dll
+ 2007-10-25 06:28:30 222,720 -c--a-w C:\WINDOWS\system32\dllcache\wmasf.dll
- 2006-10-18 18:47:20 10,834,432 -c--a-w C:\WINDOWS\system32\dllcache\wmp.dll
+ 2007-06-11 20:51:12 10,834,944 -c--a-w C:\WINDOWS\system32\dllcache\wmp.dll
- 2004-08-03 21:56:00 430,080 -c--a-w C:\WINDOWS\system32\dllcache\wuapi.dll
+ 2007-07-30 16:19:36 549,720 -c--a-w C:\WINDOWS\system32\dllcache\wuapi.dll
- 2004-08-03 21:56:36 110,592 -c--a-w C:\WINDOWS\system32\dllcache\wuauclt.exe
+ 2007-07-30 16:19:16 53,080 -c--a-w C:\WINDOWS\system32\dllcache\wuauclt.exe
- 2004-08-03 21:56:02 1,134,592 -c--a-w C:\WINDOWS\system32\dllcache\wuaueng.dll
+ 2007-07-30 16:19:42 1,712,984 -c--a-w C:\WINDOWS\system32\dllcache\wuaueng.dll
- 2004-08-03 21:56:02 112,128 -c--a-w C:\WINDOWS\system32\dllcache\wucltui.dll
+ 2007-07-30 16:19:32 325,976 -c--a-w C:\WINDOWS\system32\dllcache\wucltui.dll
- 2004-08-03 21:56:02 36,864 -c--a-w C:\WINDOWS\system32\dllcache\wups.dll
+ 2007-07-30 16:18:40 33,624 -c--a-w C:\WINDOWS\system32\dllcache\wups.dll
- 2004-08-03 21:56:02 120,320 -c--a-w C:\WINDOWS\system32\dllcache\wuweb.dll
+ 2007-07-30 16:19:28 203,096 -c--a-w C:\WINDOWS\system32\dllcache\wuweb.dll
- 2004-08-03 21:55:34 148,480 ----a-w C:\WINDOWS\system32\dnsapi.dll
+ 2008-06-20 17:39:47 148,992 ----a-w C:\WINDOWS\system32\dnsapi.dll
- 2004-08-03 20:14:16 138,496 ----a-w C:\WINDOWS\system32\drivers\afd.sys
+ 2008-08-14 09:51:43 138,368 ----a-w C:\WINDOWS\system32\drivers\afd.sys
+ 2008-06-14 17:59:04 271,616 ------w C:\WINDOWS\system32\drivers\bthport.sys
- 2008-07-18 14:39:18 213,008 ----a-w C:\WINDOWS\system32\drivers\klif.sys
+ 2008-10-21 21:07:32 213,008 ----a-w C:\WINDOWS\system32\drivers\klif.sys
- 2001-09-19 12:00:00 200,064 ----a-w C:\WINDOWS\system32\drivers\RMCast.sys
+ 2008-05-08 12:28:49 202,752 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys
- 2004-08-03 20:14:42 359,040 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
+ 2008-06-20 10:45:13 360,320 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
- 2004-08-03 20:07:46 223,616 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
+ 2008-06-20 09:52:06 225,920 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
- 2004-08-03 21:55:36 357,888 ----a-w C:\WINDOWS\system32\dxtmsft.dll
+ 2008-08-20 05:36:11 357,888 ----a-w C:\WINDOWS\system32\dxtmsft.dll
- 2004-08-03 21:55:36 201,728 ----a-w C:\WINDOWS\system32\dxtrans.dll
+ 2008-08-20 05:36:12 205,312 ----a-w C:\WINDOWS\system32\dxtrans.dll
- 2004-08-03 21:55:36 243,200 ----a-w C:\WINDOWS\system32\es.dll
+ 2008-07-07 20:30:47 253,952 ----a-w C:\WINDOWS\system32\es.dll
- 2004-08-03 21:55:36 55,808 ----a-w C:\WINDOWS\system32\extmgr.dll
+ 2008-08-20 05:36:12 55,808 ----a-w C:\WINDOWS\system32\extmgr.dll
- 2008-10-12 19:49:09 458,840 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
+ 2008-10-22 05:07:52 458,840 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
- 2004-08-03 21:55:38 248,832 ----a-w C:\WINDOWS\system32\iepeers.dll
+ 2008-08-20 05:36:12 250,880 ----a-w C:\WINDOWS\system32\iepeers.dll
- 2004-08-03 21:55:38 678,400 ----a-w C:\WINDOWS\system32\inetcomm.dll
+ 2008-04-11 18:50:11 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
- 2004-08-03 21:55:38 96,256 ----a-w C:\WINDOWS\system32\inseng.dll
+ 2008-08-20 05:36:12 96,256 ----a-w C:\WINDOWS\system32\inseng.dll
- 2004-08-03 21:55:40 450,560 ----a-w C:\WINDOWS\system32\jscript.dll
+ 2007-12-18 14:41:00 450,560 ----a-w C:\WINDOWS\system32\jscript.dll
- 2004-08-03 21:55:40 15,872 ----a-w C:\WINDOWS\system32\jsproxy.dll
+ 2008-08-20 05:36:14 16,384 ----a-w C:\WINDOWS\system32\jsproxy.dll
- 2004-08-03 21:55:42 73,728 ----a-w C:\WINDOWS\system32\mscms.dll
+ 2008-06-24 16:22:22 74,240 ----a-w C:\WINDOWS\system32\mscms.dll
- 2004-08-03 21:55:42 512,029 ----a-w C:\WINDOWS\system32\msexch40.dll
+ 2008-03-25 04:50:28 518,944 ----a-w C:\WINDOWS\system32\msexch40.dll
- 2004-08-03 21:55:42 319,517 ----a-w C:\WINDOWS\system32\msexcl40.dll
+ 2008-03-25 04:50:30 326,432 ----a-w C:\WINDOWS\system32\msexcl40.dll
- 2004-08-03 21:55:42 3,003,392 ----a-w C:\WINDOWS\system32\mshtml.dll
+ 2008-08-20 05:36:17 3,081,216 ----a-w C:\WINDOWS\system32\mshtml.dll
- 2004-08-03 21:55:42 448,512 ----a-w C:\WINDOWS\system32\mshtmled.dll
+ 2008-08-20 05:36:14 449,024 ----a-w C:\WINDOWS\system32\mshtmled.dll
- 2004-08-03 21:55:42 1,507,356 ----a-w C:\WINDOWS\system32\msjet40.dll
+ 2008-03-25 04:50:34 1,516,568 ----a-w C:\WINDOWS\system32\msjet40.dll
- 2004-07-17 08:34:48 358,976 ----a-w C:\WINDOWS\system32\msjetoledb40.dll
+ 2008-03-25 04:50:40 355,112 ----a-w C:\WINDOWS\system32\msjetoledb40.dll
- 2004-08-03 21:55:44 151,583 ----a-w C:\WINDOWS\system32\msjint40.dll
+ 2008-03-25 04:49:29 158,496 ----a-w C:\WINDOWS\system32\msjint40.dll
- 2004-08-03 21:55:44 53,279 ----a-w C:\WINDOWS\system32\msjter40.dll
+ 2008-03-25 04:50:42 60,192 ----a-w C:\WINDOWS\system32\msjter40.dll
- 2004-08-03 21:55:44 241,693 ----a-w C:\WINDOWS\system32\msjtes40.dll
+ 2008-03-25 04:50:42 248,608 ----a-w C:\WINDOWS\system32\msjtes40.dll
- 2004-08-03 21:55:44 213,023 ----a-w C:\WINDOWS\system32\msltus40.dll
+ 2008-03-25 07:20:46 219,936 ----a-w C:\WINDOWS\system32\msltus40.dll
- 2004-08-03 21:55:44 348,189 ----a-w C:\WINDOWS\system32\mspbde40.dll
+ 2008-03-25 04:50:45 355,104 ----a-w C:\WINDOWS\system32\mspbde40.dll
- 2004-08-03 21:55:44 146,432 ----a-w C:\WINDOWS\system32\msrating.dll
+ 2008-08-20 05:36:12 146,432 ----a-w C:\WINDOWS\system32\msrating.dll
- 2004-08-03 21:55:44 421,919 ----a-w C:\WINDOWS\system32\msrd2x40.dll
+ 2008-03-25 04:50:47 432,928 ----a-w C:\WINDOWS\system32\msrd2x40.dll
- 2004-08-03 21:55:44 315,423 ----a-w C:\WINDOWS\system32\msrd3x40.dll
+ 2008-03-25 04:50:49 322,336 ----a-w C:\WINDOWS\system32\msrd3x40.dll
- 2004-08-03 21:55:46 552,989 ----a-w C:\WINDOWS\system32\msrepl40.dll
+ 2008-03-25 04:50:52 559,904 ----a-w C:\WINDOWS\system32\msrepl40.dll
- 2006-10-18 18:47:16 414,208 ----a-w C:\WINDOWS\system32\msscp.dll
+ 2006-12-04 13:21:50 414,720 ----a-w C:\WINDOWS\system32\msscp.dll
- 2004-08-03 21:55:46 258,077 ----a-w C:\WINDOWS\system32\mstext40.dll
+ 2008-03-25 04:50:55 264,992 ----a-w C:\WINDOWS\system32\mstext40.dll
- 2004-08-03 21:55:46 530,432 ----a-w C:\WINDOWS\system32\mstime.dll
+ 2008-08-20 05:36:12 532,480 ----a-w C:\WINDOWS\system32\mstime.dll
- 2004-08-03 21:55:46 831,519 ----a-w C:\WINDOWS\system32\mswdat10.dll
+ 2008-03-25 04:50:57 838,432 ----a-w C:\WINDOWS\system32\mswdat10.dll
- 2004-08-03 21:55:46 245,248 ----a-w C:\WINDOWS\system32\mswsock.dll
+ 2008-06-20 17:39:48 245,248 ----a-w C:\WINDOWS\system32\mswsock.dll
- 2004-08-03 21:55:46 614,429 ----a-w C:\WINDOWS\system32\mswstr10.dll
+ 2008-03-25 04:49:30 621,344 ----a-w C:\WINDOWS\system32\mswstr10.dll
- 2004-08-03 21:55:46 348,189 ----a-w C:\WINDOWS\system32\msxbde40.dll
+ 2008-03-25 04:50:58 355,104 ----a-w C:\WINDOWS\system32\msxbde40.dll
- 2004-08-03 21:55:46 332,288 ----a-w C:\WINDOWS\system32\netapi32.dll
+ 2008-10-15 16:57:47 332,800 ----a-w C:\WINDOWS\system32\netapi32.dll
- 2008-10-21 16:10:25 58,920 ----a-w C:\WINDOWS\system32\perfc001.dat
+ 2008-10-26 18:36:40 59,878 ----a-w C:\WINDOWS\system32\perfc001.dat
- 2008-10-21 16:10:25 58,930 ----a-w C:\WINDOWS\system32\perfc009.dat
+ 2008-10-26 18:36:40 59,774 ----a-w C:\WINDOWS\system32\perfc009.dat
- 2008-10-21 16:10:25 328,690 ----a-w C:\WINDOWS\system32\perfh001.dat
+ 2008-10-26 18:36:40 331,338 ----a-w C:\WINDOWS\system32\perfh001.dat
- 2008-10-21 16:10:25 392,630 ----a-w C:\WINDOWS\system32\perfh009.dat
+ 2008-10-26 18:36:40 395,534 ----a-w C:\WINDOWS\system32\perfh009.dat
- 2004-08-03 21:55:48 39,424 ----a-w C:\WINDOWS\system32\pngfilt.dll
+ 2008-08-20 05:36:12 39,424 ----a-w C:\WINDOWS\system32\pngfilt.dll
- 2004-08-03 21:55:48 1,285,632 ----a-w C:\WINDOWS\system32\quartz.dll
+ 2008-05-07 05:14:35 1,285,632 ----a-w C:\WINDOWS\system32\quartz.dll
- 2004-08-03 21:55:52 1,483,264 ----a-w C:\WINDOWS\system32\shdocvw.dll
+ 2008-08-20 05:36:13 1,494,528 ----a-w C:\WINDOWS\system32\shdocvw.dll
- 2004-08-03 21:55:52 473,600 ----a-w C:\WINDOWS\system32\shlwapi.dll
+ 2008-08-20 05:36:14 474,112 ----a-w C:\WINDOWS\system32\shlwapi.dll
+ 2007-07-30 16:18:40 33,624 ----a-w C:\WINDOWS\system32\SoftwareDistribution\Setup\Ser viceStartup\wups.dll\7.0.6000.381\wups.dll
- 2006-09-25 14:58:48 14,640 ------w C:\WINDOWS\system32\spmsg.dll
+ 2007-11-30 11:18:09 17,784 ------w C:\WINDOWS\system32\spmsg.dll
+ 2008-07-14 11:09:18 62,976 ------w C:\WINDOWS\system32\tzchange.exe
- 2004-08-03 21:55:54 600,064 ----a-w C:\WINDOWS\system32\urlmon.dll
+ 2008-08-20 05:36:15 614,912 ----a-w C:\WINDOWS\system32\urlmon.dll
- 2004-08-03 21:55:54 417,792 ----a-w C:\WINDOWS\system32\vbscript.dll
+ 2007-12-18 14:41:00 417,792 ----a-w C:\WINDOWS\system32\vbscript.dll
- 2006-10-18 18:47:18 222,208 ----a-w C:\WINDOWS\system32\WMASF.dll
+ 2007-10-25 06:28:30 222,720 ----a-w C:\WINDOWS\system32\wmasf.dll
- 2006-10-18 18:47:20 10,834,432 ----a-w C:\WINDOWS\system32\wmp.dll
+ 2007-06-11 20:51:12 10,834,944 ----a-w C:\WINDOWS\system32\wmp.dll
- 2006-10-18 18:47:20 295,936 ------w C:\WINDOWS\system32\wmpeffects.dll
+ 2008-06-24 15:12:58 295,936 ------w C:\WINDOWS\system32\wmpeffects.dll
- 2004-08-03 21:56:00 430,080 ----a-w C:\WINDOWS\system32\wuapi.dll
+ 2007-07-30 16:19:36 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
- 2004-08-03 21:56:36 110,592 ----a-w C:\WINDOWS\system32\wuauclt.exe
+ 2007-07-30 16:19:16 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
- 2004-08-03 21:56:02 1,134,592 ----a-w C:\WINDOWS\system32\wuaueng.dll
+ 2007-07-30 16:19:42 1,712,984 ----a-w C:\WINDOWS\system32\wuaueng.dll
- 2004-08-03 21:56:02 112,128 ----a-w C:\WINDOWS\system32\wucltui.dll
+ 2007-07-30 16:19:32 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
- 2004-08-03 21:56:02 36,864 ----a-w C:\WINDOWS\system32\wups.dll
+ 2007-07-30 16:18:40 33,624 ----a-w C:\WINDOWS\system32\wups.dll
+ 2007-07-30 16:19:12 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
- 2004-08-03 21:56:02 120,320 ----a-w C:\WINDOWS\system32\wuweb.dll
+ 2007-07-30 16:19:28 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
+ 2008-08-19 12:21:32 690,176 ------w C:\WINDOWS\system32\xpsp3res.dll
+ 2008-04-15 17:55:17 1,724,416 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_65 95b64144ccf1df_1.0.2600.3352_x-ww_81af8e88\GdiPlus.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [08/04/2004 12:56 AM 15360]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.Exe" [01/19/2007 12:55 PM 5674352]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [08/04/2004 01:09 AM 1667584]
"GREATITCH"="C:\DOCUME~1\user\APPLIC~1\MOVENE~1\ma il log.exe" [10/20/2008 01:50 PM 518656]
"SoftCatcher"="C:\Program Files\Soft Catcher\SoftCatcher.exe" [10/21/2008 12:15 AM 992256]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe" [05/10/2006 11:12 AM 90112]
"AzMixerSel"="C:\Program Files\Realtek\InstallShield\AzMixerSel.exe" [08/16/2006 06:20 AM 53248]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [08/16/2006 06:34 AM 766041]
"Broadcom Wireless Manager UI"="C:\WINDOWS\system32\WLTRAY.exe" [08/16/2006 06:24 AM 1236992]
"LManager"="C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE" [09/07/2006 02:52 PM 479232]
"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [10/27/2006 12:47 AM 31016]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [11/02/2004 08:24 PM 32768]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [10/12/2008 10:09 PM 185896]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [07/29/2008 08:20 PM 206088]
"RTHDCPL"="RTHDCPL.EXE" [08/16/2006 06:23 AM 16248320 C:\WINDOWS\RTHDCPL.exe]
"SkyTel"="SkyTel.EXE" [08/16/2006 06:21 AM 2879488 C:\WINDOWS\SkyTel.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\Cur rentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [08/04/2004 12:56 AM 15360]
C:\Documents and Settings\user\çں‍ê، ں §ڑ\ںé ©ںê¤\ §ک ں颬نïé\
OneNote 2007 Screen Clipper and Launcher.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632]
C:\Documents and Settings\All Users\çں‍ê، ں §ڑ\ںé ©ںê¤\ §ک ں颬نïé\
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2008-10-12 113664]
Adobe Reader Synchronizer.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-23 734872]
«©م، ¢¬نïé Adobe Reader.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.ACDV"= ACDV.dll
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UpdatesDisableNotify"=dword:00000001
"AntiVirusOverride"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpo licy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpo licy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"C:\\Program Files\\MSN Messenger\\livecall.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
R0 klbg;Kaspersky Lab Boot Guard Driver;C:\WINDOWS\system32\drivers\klbg.sys [01/29/2008 06:29 PM 32784]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;C:\WINDOWS\system32\DRIVERS\klfltdev.sys [03/13/2008 07:02 PM 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\WINDOWS\system32\DRIVERS\klim5.sys [04/30/2008 06:06 PM 24592]
S3 AVPsys;AVPsys;C:\WINDOWS\system32\drivers\cdaudio. sys [08/17/2001 01:52 PM 18688]
[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{c96d4896-99b2-11dd-ab63-001636e432c4}]
\Shell\AutoRun\command - G:\yssjnngm.cmd
\Shell\explore\Command - G:\yssjnngm.cmd
\Shell\open\Command - G:\yssjnngm.cmd
[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{c96d4897-99b2-11dd-ab63-001636e432c4}]
\Shell\AutoRun\command - H:\yssjnngm.cmd
\Shell\explore\Command - H:\yssjnngm.cmd
\Shell\open\Command - H:\yssjnngm.cmd
[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{c96d4898-99b2-11dd-ab63-001636e432c4}]
\Shell\AutoRun\command - I:\yssjnngm.cmd
\Shell\explore\Command - I:\yssjnngm.cmd
\Shell\open\Command - I:\yssjnngm.cmd
[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{d11a400b-9e62-11dd-ab87-001636e432c4}]
\Shell\AutoRun\command - G:\yssjnngm.cmd
\Shell\explore\Command - G:\yssjnngm.cmd
\Shell\open\Command - G:\yssjnngm.cmd
[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{fbc5de6e-9e82-11dd-ab8b-001636e432c4}]
\Shell\AutoRun\command - G:\yssjnngm.cmd
\Shell\explore\Command - G:\yssjnngm.cmd
\Shell\open\Command - G:\yssjnngm.cmd
.
s of the 'Scheduled Tasks' folder
2008-10-26 C:\WINDOWS\Tasks\AF326454918E1650.job
- c:\docume~1\user\applic~1\movene~1\tray balm junk.exe [10/20/2008 01:55 PM]
.
.
------- Supplementary Scan -------
.
R0 -: HKCU-Main,Start Page = hxxp://www.google.com/
O8 -: "إضافة إلى حاجب الدعايات" - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 -: ت&صدير إلى Microsoft Excel - C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O16 -: Microsoft XML Parser for Java -

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

C:\WINDOWS\Downloaded Program Files\Microsoft XML Parser for Java.osd
.
************************************************** ************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2008-10-26 22:31:47
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...

************************************************** ************************
.
Completion time: 10/26/2008 22:39:09 - machine was rebooted
ComboFix-quarantined-files.txt 2008-10-26 19:37:29
ComboFix2.txt 2008-10-21 17:53:17
Pre-Run: 13,886,337,024 bytes free
Post-Run: 13,910,560,768 bytes free
826 --- E O F --- 2008-10-24 12:04:12​

 

[بيدو]

,وهذا الهايجاكLogfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:44:42 م, on 26/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Soft Catcher\SoftCatcher.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\user\LOCALS~1\Temp\RtkBtMnt.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\.IE5\UDQ34H67\Zyzoom_HijackThis[1].exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O2 - BHO: مساعد رابط Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [GREATITCH] C:\DOCUME~1\user\APPLIC~1\MOVENE~1\mail log.exe
O4 - HKCU\..\Run: [SoftCatcher] C:\Program Files\Soft Catcher\SoftCatcher.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: سرعة تشغيل Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O8 - Extra context menu item: "إضافة إلى حاجب الدعايات" - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: ت&صدير إلى Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O9 - Extra button: احصائيات حماية حركة مرور الشبكة - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: إرسال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: إر&سال إلى OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
--
End of file - 7126 bytes​

 

[بيدو]

بالنسبة لايقاف التشغيل مشيت على الخطوات السابقة والحمدلله الآن تمام
اما بالنسبة للرسالة مازالت تظهر بشكل متكرر

[/url][/IMG]

 

[صمت السكوت]

جرب هذا الحل لاصلاح الاخطاء

اداة IEFix لاصلاح الاكسبلورر​

بعد تشغيلها

اضغط Apply​

ستظهر لك نافذة لوضع قرص الويندوز

تجاوزها بالضغط على Cancel

​

انتظر قليلا لتتم عملية الاصلاح​

انتهاء عملية الاصلاح​

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

 

[بيدو]

هذه الرسالة التي تظهر بشكل متكرر

 

[بيدو]

اداة التحميل موجودة في موقع محجوب لايمكن التحميل

 

[صمت السكوت]

تفضل اخي

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

 

[MA222]

بالاضافة
جرب هذه الاداة
اداة dial-a-fix

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

شرح الاستخدام

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

اداة استعادة افتراضيات الريجستري ( xp )

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

لاصلاح الريجستري بعد تعطله (xp )

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

واعد التشغيل ​