جهازي مليان فيروسات والنود نايم

د

دلع طفلة

زيزوومي جديد
إنضم
2 مايو 2009
المشاركات
136
مستوى التفاعل
2
النقاط
0
الإقامة
K.S.A
غير متصل
عملت سكان ببرنامج GVR
وهذي الصورة توضح لكم وجود 13 فيروس موجودة في جهازي
وقبل كذا عملت سكان بالنود ايست ولامسك شي ..
ممكن اعرف ماهو السبب ؟؟
وهذا صورة البرنامج بعد وجود الفيروسات ..

i15136_13.JPG
 

توقيع : دلع طفلة
ترتيب حسب التاريخ ترتيب حسب الأصوات
عذرا بنقله الى القسم المناسب
 
توقيع : mezouari
تأييد 0
الله يحييك اخوي
حمل هذا البرنامج
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

شغل البرنامج ==> واضغط على
Do a system scan and save log
لحظات .. ويظهر لك تقرير داخل المفكرة==> انسخه والصقه بردك القادم

وايضا

عطل جميع برامج الحمايه

حمل هذه الاداة

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes

اثناء الفحص ممكن يعاد تشغيل الجهاز

وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
انتظر حتى يظهر لك تقرير ،، وبذلك يكون الفحص انتهى
الصق التقرير فى ردك القادم


 
التعديل الأخير بواسطة المشرف:
توقيع : king_man
تأييد 0
اللي اشوف بالصوره ملفات استعادة النضام ولو تلاحض قبل كل اكتشاف

مكتوب maybe يعني اشتباه مو شي اكيد
 
توقيع : ف ا ر س
تأييد 0
عذرا بنقله الى القسم المناسب
أنقر للتوسيع...

خذر راحتك اخوي ..


اللي اشوف بالصوره ملفات استعادة النضام ولو تلاحض قبل كل اكتشاف

مكتوب maybe يعني اشتباه مو شي اكيد
أنقر للتوسيع...

والله مدري انا ماعرف في ذي الاشياء ..
عشان كذا استشرتكم ..


(((( جااااااري التطبيق ولي عودة ))))
 
توقيع : دلع طفلة
تأييد 0
تقرير الهاجيك (( لي عودة مع التقرير الثاني ))


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:45:57, on 03/06/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\nz\سطح المكتب\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 212.71.32.97:8080
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: YcySoft Save Flash - {891F621C-85C4-406A-9666-1B7C822A91F4} - C:\PROGRA~1\ycysoft\SAVEFL~1\IEFLAS~1.DLL
O2 - BHO: Drdcha.Com Toolbar - {8b02ddce-7152-460e-8268-9c5c508e43a5} - C:\Program Files\Drdcha.Com\tbDrd1.dll
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [HiChatter] C:\Program Files\Beyluxe Messenger\Beyluxe Messenger.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: تحميل الكل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى FLV بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: بحث - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (a-squared Scanner) -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
--
End of file - 7079 bytes
 
توقيع : دلع طفلة
تأييد 0
تقرير الهايجاك سليم مافيه شي باذن الله

بس اذا النسخه اصليه افتح التحديث حق الوندز خله يحمل التحديثات
 
توقيع : ف ا ر س
تأييد 0
ComboFix 09-06-01.03 - nz 06/03/2009 11:51.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1256.966.1025.18.1014.548 [GMT 3:00]
Running from: c:\documents and settings\nz\My Documents\Downloads\Programs\ComboFix.exe
AV: ESET Smart Security 4.0 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personal firewall *enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Resident AV is active

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((( Files Created from 2009-05-03 to 2009-06-03 )))))))))))))))))))))))))))))))
.
2009-06-03 03:03 . 2009-06-03 03:03 354951 ----a-w- c:\documents and settings\nz\Application Data\IDM\DwnlData\nz\bitcomet_setup_85\bitcomet_setup.exe
2009-06-02 17:18 . 2009-06-03 04:56 -------- d-----w- c:\program files\SWiSHmax
2009-05-30 23:53 . 2009-05-30 23:53 -------- d-----w- C:\Temp
2009-05-26 21:53 . 2008-10-16 11:06 268648 ----a-w- c:\windows\system32\mucltui.dll
2009-05-24 10:40 . 2009-05-24 10:40 -------- d--h--w- c:\windows\system32\GroupPolicy
2009-05-23 18:59 . 2009-05-23 18:59 -------- d-----w- c:\program files\ESET
2009-05-22 03:00 . 2009-05-22 03:00 -------- d-----w- c:\documents and settings\All Users\Application Data\newsreader_images
2009-05-22 02:59 . 2009-05-22 03:05 -------- d-----w- c:\documents and settings\All Users\Application Data\images
2009-05-21 03:26 . 2009-05-21 03:26 -------- d-----w- c:\program files\Common Files\EZB Systems
2009-05-21 03:26 . 2009-05-21 03:26 -------- d-----w- c:\program files\UltraISO
2009-05-21 00:27 . 2009-05-21 00:27 -------- d-----w- c:\program files\VS Revo Group
2009-05-19 16:37 . 2009-05-19 16:37 -------- d-----w- c:\documents and settings\nz\Application Data\Aleo Software
2009-05-19 15:44 . 2009-05-19 15:44 -------- d--h--w- c:\windows\PIF
2009-05-19 15:37 . 2009-05-21 00:39 -------- d-----w- c:\program files\Internet Download Manager
2009-05-15 00:05 . 2009-05-15 00:05 -------- d-----w- c:\documents and settings\All Users\Application Data\Office Genuine Advantage
2009-05-14 12:49 . 2009-05-14 12:49 55768 ----a-w- c:\windows\system32\drivers\epfwtdi.sys
2009-05-14 12:49 . 2009-05-14 12:49 33096 ----a-w- c:\windows\system32\drivers\epfwndis.sys
2009-05-14 12:49 . 2009-05-14 12:49 133000 ----a-w- c:\windows\system32\drivers\epfw.sys
2009-05-14 12:47 . 2009-05-14 12:47 107256 ----a-w- c:\windows\system32\drivers\ehdrv.sys
2009-05-14 12:41 . 2009-05-14 12:41 114472 ----a-w- c:\windows\system32\drivers\eamon.sys
2009-05-08 08:32 . 2009-05-08 08:32 -------- d-----w- c:\documents and settings\nz\Local Settings\Application Data\ESET
2009-05-08 02:35 . 2009-05-08 02:35 -------- d-----w- c:\documents and settings\nz\Local Settings\Application Data\Thinstall
2009-05-08 02:35 . 2009-05-08 02:35 -------- d-----w- c:\documents and settings\nz\Application Data\Thinstall
2009-05-07 07:42 . 2009-03-26 15:35 210352 ----a-w- c:\windows\system32\idmmbc.dll
2009-05-06 20:28 . 2009-05-06 20:28 -------- d-----w- c:\program files\CCleaner
2009-05-06 20:05 . 2004-08-03 19:58 5504 ----a-w- c:\windows\system32\drivers\MSTEE.sys
2009-05-06 20:05 . 2004-08-03 20:10 10880 ----a-w- c:\windows\system32\drivers\NdisIP.sys
2009-05-06 20:05 . 2004-08-03 20:10 15360 ----a-w- c:\windows\system32\drivers\StreamIP.sys
2009-05-06 20:05 . 2004-08-03 20:10 11136 ----a-w- c:\windows\system32\drivers\SLIP.sys
2009-05-06 20:05 . 2004-08-03 20:10 19328 ----a-w- c:\windows\system32\drivers\WSTCODEC.SYS
2009-05-06 20:04 . 2004-08-03 20:10 85376 ----a-w- c:\windows\system32\drivers\NABTSFEC.sys
2009-05-06 20:04 . 2004-08-03 20:10 17024 ----a-w- c:\windows\system32\drivers\CCDECODE.sys
2009-05-06 20:04 . 2004-08-03 21:55 53760 ----a-w- c:\windows\system32\vfwwdm32.dll
2009-05-06 19:31 . 2009-05-19 15:38 198064 ----a-w- c:\documents and settings\nz\Application Data\IDM\idmmzcc3\components\idmmzcc.dll
2009-05-06 19:30 . 2009-05-06 22:05 -------- d-----w- c:\documents and settings\nz\Application Data\IDM
2009-05-05 15:58 . 2009-05-05 15:58 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\ESET
2009-05-05 13:18 . 2009-05-05 13:18 -------- d-----w- c:\documents and settings\nz\Application Data\ESET
2009-05-05 13:17 . 2009-05-05 13:17 -------- d-----w- c:\documents and settings\All Users\Application Data\ESET
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-03 08:53 . 2008-12-30 17:40 -------- d-----w- c:\documents and settings\nz\Application Data\DMCache
2009-06-03 07:49 . 2009-04-29 23:25 -------- d-----w- c:\program files\GVR
2009-06-02 23:46 . 2001-09-19 11:00 41274 ----a-w- c:\windows\system32\perfc001.dat
2009-06-02 23:46 . 2001-09-19 11:00 254598 ----a-w- c:\windows\system32\perfh001.dat
2009-06-02 18:39 . 2008-12-30 17:21 -------- d-----w- c:\documents and settings\nz\Application Data\Skype
2009-06-02 17:39 . 2009-01-08 06:14 -------- d-----w- c:\documents and settings\nz\Application Data\skypePM
2009-05-30 23:53 . 2009-04-30 18:40 -------- d-----w- c:\documents and settings\nz\Application Data\cleaner
2009-05-27 23:31 . 2008-12-30 17:16 139704 ----a-w- c:\documents and settings\nz\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-05-27 10:44 . 2008-12-30 17:00 -------- d-----w- c:\program files\Microsoft Works
2009-05-24 22:55 . 2009-01-16 17:38 -------- d-----w- c:\program files\Beyluxe Messenger
2009-05-19 19:11 . 2008-12-30 17:16 -------- d-----w- c:\program files\Messenger Plus! Live
2009-05-05 13:01 . 2009-04-28 04:12 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
2009-05-03 22:32 . 2009-02-06 23:14 -------- d-----w- c:\program files\Drdcha.Com
2009-05-03 11:17 . 2009-05-02 23:05 -------- d-----w- c:\program files\Time Watch
2009-05-01 18:54 . 2009-05-01 18:54 -------- d-----w- c:\program files\MSXML 4.0
2009-05-01 00:06 . 2008-12-30 17:21 -------- d-----w- c:\program files\Google
2009-04-30 18:41 . 2009-04-30 18:41 -------- d-----w- c:\documents and settings\nz\Application Data\CyberScrub
2009-04-29 15:45 . 2009-03-30 17:20 -------- d-----w- c:\program files\All2Chat
2009-04-29 08:38 . 2009-04-29 08:43 55640 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2009-04-26 05:39 . 2009-04-26 05:39 -------- d-----w- c:\documents and settings\nz\Application Data\Media Player Classic
2009-04-15 17:32 . 2009-04-15 17:32 0 ----a-w- c:\windows\nsreg.dat
2009-04-11 02:51 . 2009-02-13 22:00 -------- d-----w- c:\program files\Circle Developeent
2009-04-09 22:57 . 2009-04-09 22:57 -------- d-----w- c:\documents and settings\All Users\Application Data\Kaspersky Lab Setup Files
2009-03-31 17:15 . 2009-03-31 17:15 390664 ----a-w- c:\documents and settings\nz\Application Data\Real\RealPlayer\Update\RealPlayer11.exe
2009-03-21 14:19 . 2004-08-03 20:55 56880 ----a-w- c:\windows\system32\scvideo.dll
2009-03-06 14:44 . 2004-08-03 20:55 282624 ----a-w- c:\windows\system32\pdh.dll
.
------- Sigcheck -------
[-] 2008-04-14 15:59 1571328 6B8B7B206FA0C50B4CF99EEE2AC14BC7 c:\windows\SoftwareDistribution\Download\b86141217825998609b93e71cc29eb6e\sfcfiles.dll
[-] 2008-05-07 06:41 1547776 6E932D21E116B51ED9D5157E31C48E33 c:\windows\system32\sfcfiles.dll
.
((((((((((((((((((((((((((((( SnapShot@2009-05-03_11.44.18 )))))))))))))))))))))))))))))))))))))))))
.
+ 2004-08-03 20:55 . 2006-03-24 04:37 49152 c:\windows\system32\wdigest.dll
- 2004-08-03 20:55 . 2004-08-03 20:55 49152 c:\windows\system32\wdigest.dll
+ 2008-12-30 17:02 . 2007-04-09 10:23 28552 c:\windows\system32\spool\prtprocs\w32x86\mdippr.dll
+ 2008-12-30 17:02 . 2007-04-09 10:23 46472 c:\windows\system32\spool\drivers\w32x86\mdiui.dll
+ 2008-12-30 17:02 . 2007-04-09 10:23 46472 c:\windows\system32\spool\drivers\w32x86\3\mdiui.dll
+ 2008-12-30 17:29 . 2008-07-08 12:58 17784 c:\windows\system32\spmsg.dll
- 2008-12-30 17:29 . 2007-11-30 11:18 17784 c:\windows\system32\spmsg.dll
+ 2001-09-19 11:00 . 2009-06-02 23:46 41170 c:\windows\system32\perfc009.dat
- 2001-09-19 11:00 . 2009-05-03 11:18 41170 c:\windows\system32\perfc009.dat
+ 2004-08-04 00:55 . 2004-08-03 21:55 17408 c:\windows\system32\msyuv.dll
- 2004-08-04 00:55 . 2004-08-03 21:08 17408 c:\windows\system32\msyuv.dll
+ 2004-08-03 20:55 . 2005-05-04 11:45 15360 c:\windows\system32\msisip.dll
+ 2004-08-03 20:56 . 2005-05-04 11:45 78848 c:\windows\system32\msiexec.exe
+ 2008-12-30 17:02 . 2007-04-09 10:23 28040 c:\windows\system32\mdimon.dll
+ 2009-05-11 10:38 . 2009-05-11 10:38 84661 c:\windows\system32\Macromed\Flash\uninstall_plugin.exe
- 2004-08-04 00:55 . 2004-08-03 21:08 47616 c:\windows\system32\iyuv_32.dll
+ 2004-08-04 00:55 . 2004-08-03 21:55 47616 c:\windows\system32\iyuv_32.dll
+ 2007-03-22 16:17 . 2007-03-22 16:17 35440 c:\windows\system32\FM20ENU.DLL
+ 2009-05-03 22:22 . 2006-06-02 19:32 33792 c:\windows\network diagnostic\custsat.dll
- 2008-12-30 17:02 . 2008-12-30 17:02 23040 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\unbndico.exe
+ 2008-12-30 17:02 . 2009-05-27 23:53 23040 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\unbndico.exe
- 2008-12-30 17:02 . 2008-12-30 17:02 61440 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pubs.exe
+ 2008-12-30 17:02 . 2009-05-27 23:53 61440 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pubs.exe
+ 2008-12-30 17:02 . 2009-05-27 23:53 27136 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\oisicon.exe
- 2008-12-30 17:02 . 2008-12-30 17:02 27136 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\oisicon.exe
- 2008-12-30 17:02 . 2008-12-30 17:02 11264 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2008-12-30 17:02 . 2009-05-27 23:53 11264 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\mspicons.exe
- 2008-12-30 17:02 . 2008-12-30 17:02 86016 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\inficon.exe
+ 2008-12-30 17:02 . 2009-05-27 23:53 86016 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\inficon.exe
- 2008-12-30 17:02 . 2008-12-30 17:02 12288 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2008-12-30 17:02 . 2009-05-27 23:53 12288 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2009-05-23 19:00 . 2009-05-23 19:00 97360 c:\windows\Installer\{71CBF9BB-7E07-4A9D-BF30-84C11810B242}\egui.exe
+ 2009-05-23 19:00 . 2009-05-23 19:00 10134 c:\windows\Installer\{71CBF9BB-7E07-4A9D-BF30-84C11810B242}\callmsi.exe
+ 2007-03-22 16:07 . 2007-03-22 16:07 78168 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\RM.DLL
+ 2007-03-22 16:07 . 2007-03-22 16:07 41824 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\RECALL.DLL
+ 2007-03-22 16:05 . 2007-03-22 16:05 97632 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\PP7X32.DLL
+ 2007-04-19 10:53 . 2007-04-19 10:53 69984 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\OUTLRPC.DLL
+ 2001-06-05 05:13 . 2001-06-05 05:13 40972 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\OCRVC.DAT
+ 2001-10-22 21:13 . 2001-10-22 21:13 53260 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\OCRHC.DAT
+ 2001-06-05 05:13 . 2001-06-05 05:13 65536 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\LOOKUP.DAT
+ 2001-06-05 05:13 . 2001-06-05 05:13 18844 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\JFONT.DAT
+ 2001-06-05 05:13 . 2001-06-05 05:13 34168 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\ENGIDX.DAT
+ 2007-03-22 16:07 . 2007-03-22 16:07 80224 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\DLGSETP.DLL
+ 2007-03-22 16:07 . 2007-03-22 16:07 91488 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\ADDRPARS.DLL
+ 2003-01-17 11:03 . 2003-01-17 11:03 59466 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\XSCAN32.DAT
+ 2003-07-14 19:57 . 2003-07-14 19:57 59960 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\UNBIND.EXE
+ 2002-10-07 06:49 . 2002-10-07 06:49 81983 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\TWRECS.DLL
+ 2003-07-14 20:00 . 2003-07-14 20:00 99904 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\TRANSMGR.DLL
+ 2003-07-14 19:53 . 2003-07-14 19:53 11848 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\SMARTTAGINSTALL.EXE
+ 2003-07-14 19:57 . 2003-07-14 19:57 58944 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\SEQCHK10.DLL
+ 2003-07-14 19:44 . 2003-07-14 19:44 66616 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\SENDTO.DLL
+ 2003-07-14 19:43 . 2003-07-14 19:43 74288 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\RM.DLL
+ 2002-10-07 06:49 . 2002-10-07 06:49 81984 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\REVERSE.DLL
+ 2003-07-14 19:57 . 2003-07-14 19:57 40512 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\REFIEBAR.DLL
+ 2003-05-08 18:54 . 2003-05-08 18:54 77824 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\REFEDIT.DLL
+ 2003-07-14 19:42 . 2003-07-14 19:42 37432 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\RECALL.DLL
+ 2003-07-14 19:40 . 2003-07-14 19:40 51256 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\PUBTRAP.DLL
+ 2003-07-15 00:18 . 2003-07-15 00:18 93752 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\PP7X32.DLL
+ 2003-07-14 19:43 . 2003-07-14 19:43 49208 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OUTLWAB.DLL
+ 2003-07-14 19:43 . 2003-07-14 19:43 64056 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OUTLRPC.DLL
+ 2003-07-14 19:44 . 2003-07-14 19:44 88128 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OUTLMIME.DLL
+ 2003-07-14 19:41 . 2003-07-14 19:41 24640 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OUTLACCT.DLL
+ 2003-07-14 19:53 . 2003-07-14 19:53 95792 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OSA.EXE
+ 2003-07-15 00:14 . 2003-07-15 00:14 27192 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OISCTRL.DLL
+ 2003-07-14 19:56 . 2003-07-14 19:56 13888 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\NPOFFICE.DLL
+ 2003-07-14 19:57 . 2003-07-14 19:57 56888 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\NAME.DLL
+ 2003-07-14 19:52 . 2003-07-14 19:52 41528 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSSH.DLL
+ 2003-06-18 14:31 . 2003-06-18 14:31 16384 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSPGIMME.DLL
+ 2003-07-14 19:45 . 2003-07-14 19:45 39488 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSOXMLMF.DLL
+ 2003-07-14 19:45 . 2003-07-14 19:45 55360 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSOXMLED.EXE
+ 2003-07-14 19:46 . 2003-07-14 19:46 42040 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSOXEV.DLL
+ 2003-07-14 19:53 . 2003-07-14 19:53 39488 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSOSVFBR.DLL
+ 2003-07-14 19:53 . 2003-07-14 19:53 55872 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSOSVABW.DLL
+ 2003-07-14 19:52 . 2003-07-14 19:52 35896 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSOSV.DLL
+ 2003-07-14 19:52 . 2003-07-14 19:52 28224 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSOSTYLE.DLL
+ 2003-07-14 19:56 . 2003-07-14 19:56 54328 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSOMSE.DLL
+ 2003-07-14 19:52 . 2003-07-14 19:52 55360 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSOHTMED.EXE
+ 2003-07-14 19:44 . 2003-07-14 19:44 25144 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSOEURO.DLL
+ 2003-07-14 19:52 . 2003-07-14 19:52 27704 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSODCW.DLL
+ 2003-07-14 19:52 . 2003-07-14 19:52 17464 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSMH.DLL
+ 2003-07-14 19:51 . 2003-07-14 19:51 87104 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSENCODE.DLL
+ 2003-07-14 19:56 . 2003-07-14 19:56 40504 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSE7.EXE
+ 2003-07-14 20:12 . 2003-07-14 20:12 47872 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSB1XTOR.DLL
+ 2003-06-18 14:31 . 2003-06-18 14:31 35328 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MDIUI.DLL
+ 2003-06-18 14:31 . 2003-06-18 14:31 18944 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MDIPPR.DLL
+ 2003-06-18 14:31 . 2003-06-18 14:31 17920 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MDIMON.DLL
+ 2003-07-14 19:45 . 2003-07-14 19:45 58944 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\INLAUNCH.DLL
+ 2003-07-14 19:57 . 2003-07-14 19:57 87096 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\IEAWSDC.DLL
+ 2003-07-14 19:41 . 2003-07-14 19:41 13368 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\FINDER.EXE
+ 2003-07-14 19:57 . 2003-07-14 19:57 98360 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\DSSM.EXE
+ 2003-07-14 19:56 . 2003-07-14 19:56 14904 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\DSITF.DLL
+ 2003-07-25 15:57 . 2003-07-25 15:57 75832 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\DLGSETP.DLL
+ 2003-07-15 00:18 . 2003-07-15 00:18 47160 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\DFUICOM.EXE
+ 2003-07-14 19:57 . 2003-07-14 19:57 44608 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\CONVTEXT.EXE
+ 2003-07-14 19:53 . 2003-07-14 19:53 46144 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\BLNMGRPS.DLL
+ 2003-07-14 19:53 . 2003-07-14 19:53 60984 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\BLNMGR.DLL
+ 2003-07-14 19:53 . 2003-07-14 19:53 94768 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\AW.DLL
+ 2003-07-14 19:57 . 2003-07-14 19:57 38968 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\AUTHZAX.DLL
+ 2003-07-14 19:43 . 2003-07-14 19:43 87616 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\ADDRPARS.DLL
+ 2009-05-01 17:15 . 2009-03-25 05:49 39424 c:\windows\AppPatch\acadproc.dll
+ 2009-05-03 22:22 . 2004-08-03 20:55 49152 c:\windows\$NtUninstallKB904942$\wdigest.dll
+ 2009-05-03 22:22 . 2005-10-12 23:08 22752 c:\windows\$hf_mig$\KB904942\update\spcustom.dll
+ 2009-05-03 22:22 . 2005-10-12 23:08 14560 c:\windows\$hf_mig$\KB904942\spmsg.dll
+ 2006-03-24 04:48 . 2006-03-24 04:48 49152 c:\windows\$hf_mig$\KB904942\SP2QFE\wdigest.dll
+ 2001-09-18 14:05 . 2001-09-18 11:05 8192 c:\windows\system32\tsbyuv.dll
- 2001-09-18 14:05 . 2001-09-19 11:00 8192 c:\windows\system32\tsbyuv.dll
+ 2008-12-30 17:02 . 2009-05-27 23:53 4096 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\opwicon.exe
- 2008-12-30 17:02 . 2008-12-30 17:02 4096 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2003-06-18 14:31 . 2003-06-18 14:31 6144 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OCRPS.DLL
+ 2009-03-10 19:18 . 2009-03-10 19:18 960392 c:\windows\system32\WgaTray.exe
+ 2009-03-10 19:18 . 2009-03-10 19:18 264576 c:\windows\system32\WgaLogon.dll
+ 2008-12-30 17:02 . 2007-04-09 10:24 758664 c:\windows\system32\spool\drivers\w32x86\mdigraph.dll
+ 2008-12-30 17:02 . 2007-04-09 10:24 758664 c:\windows\system32\spool\drivers\w32x86\3\mdigraph.dll
+ 2001-09-19 11:00 . 2009-06-02 23:46 314842 c:\windows\system32\perfh009.dat
- 2001-09-19 11:00 . 2009-05-03 11:18 314842 c:\windows\system32\perfh009.dat
+ 2009-02-21 05:25 . 2009-02-21 05:25 691592 c:\windows\system32\OGACheckControl.DLL
+ 2008-10-16 11:07 . 2008-10-16 11:07 208744 c:\windows\system32\muweb.dll
- 2004-08-03 20:54 . 2004-08-03 20:54 884736 c:\windows\system32\msimsg.dll
+ 2004-08-03 20:54 . 2005-05-04 11:45 884736 c:\windows\system32\msimsg.dll
+ 2004-08-03 20:55 . 2005-05-04 11:45 271360 c:\windows\system32\msihnd.dll
- 2004-08-04 00:56 . 2004-08-03 21:08 294912 c:\windows\system32\msh263.drv
+ 2004-08-04 00:56 . 2004-08-03 21:56 294912 c:\windows\system32\msh263.drv
+ 2009-02-03 02:15 . 2009-02-03 02:15 240544 c:\windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe
+ 2008-12-30 18:35 . 2009-05-27 22:14 442128 c:\windows\system32\FNTCACHE.DAT
- 2008-12-30 18:35 . 2009-05-01 21:27 442128 c:\windows\system32\FNTCACHE.DAT
+ 2009-05-03 22:22 . 2006-10-10 12:44 557568 c:\windows\network diagnostic\xpnetdiag.exe
- 2008-12-30 17:02 . 2008-12-30 17:02 409600 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2008-12-30 17:02 . 2009-05-27 23:53 409600 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2008-12-30 17:02 . 2009-05-27 23:53 286720 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\wordicon.exe
- 2008-12-30 17:02 . 2008-12-30 17:02 286720 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2008-12-30 17:02 . 2009-05-27 23:53 249856 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pptico.exe
- 2008-12-30 17:02 . 2008-12-30 17:02 249856 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pptico.exe
+ 2008-12-30 17:02 . 2009-05-27 23:53 794624 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2008-12-30 17:02 . 2008-12-30 17:02 794624 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\outicon.exe
+ 2008-12-30 17:02 . 2009-05-27 23:53 135168 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2008-12-30 17:02 . 2008-12-30 17:02 135168 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2008-12-30 17:02 . 2008-12-30 17:02 593920 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2008-12-30 17:02 . 2009-05-27 23:53 593920 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2007-03-22 16:22 . 2007-03-22 16:22 103264 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\TRANSMGR.DLL
+ 2007-05-10 10:34 . 2007-05-10 10:34 562528 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\PUBCONV.DLL
+ 2007-05-31 10:36 . 2007-05-31 10:36 612184 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\PTXT9.DLL
+ 2007-05-31 10:35 . 2007-05-31 10:35 133976 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\PRTF9.DLL
+ 2007-04-19 10:53 . 2007-04-19 10:53 149856 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\OUTLPH.DLL
+ 2007-05-31 10:42 . 2007-05-31 10:42 200032 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\OUTLOOK.EXE
+ 2007-04-19 10:53 . 2007-04-19 10:53 106336 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\OUTLMIME.DLL
+ 2007-04-19 10:54 . 2007-04-19 10:54 183136 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\MIMEDIR.DLL
+ 2007-04-19 10:53 . 2007-04-19 10:53 127328 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\IMPMAIL.DLL
+ 2007-04-19 11:09 . 2007-04-19 11:09 167256 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\IETAG.DLL
+ 2007-04-19 10:53 . 2007-04-19 10:53 137568 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\ENVELOPE.DLL
+ 2001-06-05 05:13 . 2001-06-05 05:13 289926 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\ENGDIC.DAT
+ 2002-10-07 06:51 . 2002-10-07 06:51 221252 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\TWSTRUCT.DLL
+ 2002-10-07 06:50 . 2002-10-07 06:50 118847 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\TWRECE.DLL
+ 2002-10-07 06:51 . 2002-10-07 06:51 102467 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\TWORIENT.DLL
+ 2002-10-07 06:51 . 2002-10-07 06:51 147520 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\TWLAY32.DLL
+ 2002-10-07 06:51 . 2002-10-07 06:51 180289 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\TWCUTLIN.DLL
+ 2002-10-07 06:50 . 2002-10-07 06:50 241729 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\TWCUTCHR.DLL
+ 2002-10-07 06:53 . 2002-10-07 06:53 106561 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\THOCRAPI.DLL
+ 2003-08-06 10:26 . 2003-08-06 10:26 445488 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\SOA.DLL
+ 2003-08-06 10:31 . 2003-08-06 10:31 362552 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\SETLANG.EXE
+ 2003-07-14 19:57 . 2003-07-14 19:57 349248 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\SELFCERT.EXE
+ 2003-07-21 08:46 . 2003-07-21 08:46 390712 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\RTFHTML.DLL
+ 2003-07-14 19:50 . 2003-07-14 19:50 551480 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\PUBCONV.DLL
+ 2003-07-14 19:51 . 2003-07-14 19:51 604728 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\PTXT9.DLL
+ 2002-10-07 07:11 . 2002-10-07 07:11 167997 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\PSOM.DLL
+ 2003-07-14 19:40 . 2003-07-14 19:40 130104 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\PRTF9.DLL
+ 2003-07-15 00:18 . 2003-07-15 00:18 430136 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\PP4X322.DLL
+ 2003-07-14 19:43 . 2003-07-14 19:43 139320 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OUTLPH.DLL
+ 2003-07-14 19:45 . 2003-07-14 19:45 196152 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OUTLOOK.EXE
+ 2003-07-08 08:48 . 2003-07-08 08:48 115288 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OUTLFLTR.DLL
+ 2003-07-14 19:44 . 2003-07-14 19:44 102968 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OUTLCTL.DLL
+ 2003-07-15 00:14 . 2003-07-15 00:14 242240 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OISGRAPH.DLL
+ 2003-07-15 00:14 . 2003-07-15 00:14 828472 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OISAPP.DLL
+ 2003-07-15 00:14 . 2003-07-15 00:14 283696 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OIS.EXE
+ 2003-07-14 20:00 . 2003-07-14 20:00 145984 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSWEBCAP.DLL
+ 2003-07-23 19:40 . 2003-07-23 19:40 482872 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSTORES.DLL
+ 2003-07-14 19:56 . 2003-07-14 19:56 124984 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSTORE.EXE
+ 2003-07-14 20:02 . 2003-07-14 20:02 627256 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSTORDB.EXE
+ 2003-07-14 20:02 . 2003-07-14 20:02 637496 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSQRY32.EXE
+ 2003-06-19 13:05 . 2003-06-19 13:05 364648 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSPVIEW.EXE
+ 2003-06-19 13:05 . 2003-06-19 13:05 128104 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSPSCAN.EXE
+ 2003-06-18 14:31 . 2003-06-18 14:31 788480 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSPFILT.DLL
+ 2003-07-15 00:18 . 2003-07-15 00:18 376888 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSORUN.DLL
+ 2003-07-23 19:35 . 2003-07-23 19:35 127032 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSOCFU.DLL
+ 2003-07-15 00:14 . 2003-07-15 00:14 106552 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSOCF.DLL
+ 2003-07-14 19:57 . 2003-07-14 19:57 120888 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSOAUTH.DLL
+ 2002-04-09 17:14 . 2002-04-09 17:14 187560 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSMDUN80.DLL
+ 2003-07-15 00:14 . 2003-07-15 00:14 139328 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSJSPP40.DLL
+ 2002-12-17 16:08 . 2002-12-17 16:08 359600 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSDMENG.DLL
+ 2003-07-14 19:51 . 2003-07-14 19:51 116288 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSCONV97.DLL
+ 2003-07-14 19:58 . 2003-07-14 19:58 230968 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSCDM.DLL
+ 2003-07-14 19:57 . 2003-07-14 19:57 124480 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSB1CORE.DLL
+ 2003-07-15 00:13 . 2003-07-15 00:13 130112 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSAEXP30.DLL
+ 2003-07-14 20:01 . 2003-07-14 20:01 445496 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MODHELP.DLL
+ 2003-07-14 19:46 . 2003-07-14 19:46 176696 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MIMEDIR.DLL
+ 2003-05-28 12:42 . 2003-05-28 12:42 342616 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\METCONV.DLL
+ 2003-06-18 14:31 . 2003-06-18 14:31 443904 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MDIVWCTL.DLL
+ 2003-06-18 14:31 . 2003-06-18 14:31 252928 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MDIINK.DLL
+ 2003-06-18 14:31 . 2003-06-18 14:31 758784 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MDIGRAPH.DLL
+ 2003-05-28 12:42 . 2003-05-28 12:42 514680 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\INTLNAME.DLL
+ 2003-07-23 19:32 . 2003-07-23 19:32 121400 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\IMPMAIL.DLL
+ 2003-07-14 19:53 . 2003-07-14 19:53 161336 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\IETAG.DLL
+ 2003-07-25 16:14 . 2003-07-25 16:14 799288 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\FPWEC.DLL
+ 2003-07-14 19:40 . 2003-07-14 19:40 179768 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\FPERSON.DLL
+ 2003-07-14 20:36 . 2003-07-14 20:36 186424 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\FPDTC.DLL
+ 2002-10-07 06:49 . 2002-10-07 06:49 192573 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\FORM.DLL
+ 2003-07-31 12:19 . 2003-07-31 12:19 131648 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\ENVELOPE.DLL
+ 2003-07-15 00:14 . 2003-07-15 00:14 350264 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\CDLMSO.DLL
+ 2003-07-15 00:13 . 2003-07-15 00:13 166456 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\ACCWIZ.DLL
+ 2009-05-01 18:53 . 2004-08-03 20:56 214016 c:\windows\$NtUninstallKB923561_0$\wordpad.exe
+ 2009-05-01 18:53 . 2008-07-09 07:34 380792 c:\windows\$NtUninstallKB923561_0$\spuninst\updspapi.dll
+ 2009-05-01 18:53 . 2008-07-09 07:34 231288 c:\windows\$NtUninstallKB923561_0$\spuninst\spuninst.exe
+ 2009-05-03 22:23 . 2008-04-21 21:26 215040 c:\windows\$NtUninstallKB923561$\wordpad.exe
+ 2009-05-03 22:23 . 2008-07-09 07:34 380792 c:\windows\$NtUninstallKB923561$\spuninst\updspapi.dll
- 2009-05-01 18:53 . 2008-07-09 07:34 380792 c:\windows\$NtUninstallKB923561$\spuninst\updspapi.dll
+ 2009-05-03 22:23 . 2008-07-09 07:34 231288 c:\windows\$NtUninstallKB923561$\spuninst\spuninst.exe
- 2009-05-01 18:53 . 2008-07-09 07:34 231288 c:\windows\$NtUninstallKB923561$\spuninst\spuninst.exe
+ 2009-05-03 22:23 . 2005-10-12 23:08 369376 c:\windows\$NtUninstallKB914440$\spuninst\updspapi.dll
+ 2009-05-03 22:23 . 2005-10-12 23:08 213216 c:\windows\$NtUninstallKB914440$\spuninst\spuninst.exe
+ 2009-05-03 22:22 . 2005-10-12 23:08 369376 c:\windows\$NtUninstallKB904942$\spuninst\updspapi.dll
+ 2009-05-03 22:22 . 2005-10-12 23:08 213216 c:\windows\$NtUninstallKB904942$\spuninst\spuninst.exe
+ 2009-05-03 22:22 . 2005-10-12 23:08 369376 c:\windows\$hf_mig$\KB904942\update\updspapi.dll
+ 2009-05-03 22:22 . 2005-10-12 23:08 712928 c:\windows\$hf_mig$\KB904942\update\update.exe
+ 2009-05-03 22:22 . 2005-10-12 23:08 213216 c:\windows\$hf_mig$\KB904942\spuninst.exe
+ 2004-08-03 20:55 . 2005-05-04 11:45 2890240 c:\windows\system32\msi.dll
+ 2009-02-03 02:15 . 2009-02-03 02:15 3771296 c:\windows\system32\Macromed\Flash\NPSWF32.dll
+ 2009-02-06 09:35 . 2009-03-10 19:18 1482112 c:\windows\system32\LegitCheckControl.dll
+ 2007-06-06 07:53 . 2007-06-06 07:53 1195888 c:\windows\system32\FM20.DLL
+ 2007-05-09 14:19 . 2007-05-09 14:19 2585936 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\VBE6.DLL
+ 2007-05-31 10:35 . 2007-05-31 10:35 6420320 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\POWERPNT.EXE
+ 2007-05-31 10:43 . 2007-05-31 10:43 7613280 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\OUTLLIB.DLL
+ 2007-05-10 10:35 . 2007-05-10 10:35 6747480 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\MSPUB.EXE
+ 2003-04-30 08:52 . 2003-04-30 08:52 1581120 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\XPAGE3C.DLL
+ 2002-10-07 07:03 . 2002-10-07 07:03 1794113 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\XIMAGE3B.DLL
+ 2003-07-03 12:19 . 2003-07-03 12:19 2502656 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\VBE6.DLL
+ 2003-08-03 07:52 . 2003-08-03 07:52 2808376 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\STSLIST.DLL
+ 2003-07-31 12:21 . 2003-07-31 12:21 1782840 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\PPTVIEW.EXE
+ 2003-07-30 09:40 . 2003-07-30 09:40 6133312 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\POWERPNT.EXE
+ 2003-08-01 12:09 . 2003-08-01 12:09 8086072 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OWC11.DLL
+ 2003-08-04 10:19 . 2003-08-04 10:19 7330360 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OWC10.DLL
+ 2003-08-09 20:06 . 2003-08-09 20:06 7522360 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OUTLLIB.DLL
+ 2003-07-07 10:36 . 2003-07-07 10:36 2058343 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OUTLFLTR.DAT
+ 2003-07-14 20:05 . 2003-07-14 20:05 1054264 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\OMFC.DLL
+ 2003-06-18 14:31 . 2003-06-18 14:31 1033216 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSPCORE.DLL
+ 2003-07-10 23:15 . 2003-07-10 23:15 1292872 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSONSEXT.DLL
+ 2002-12-17 16:09 . 2002-12-17 16:09 2071752 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSOLAP80.DLL
+ 2002-12-17 16:08 . 2002-12-17 16:08 1383592 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSDMINE.DLL
+ 2003-08-14 21:54 . 2003-08-14 21:54 6627392 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSACCESS.EXE
+ 2003-08-01 12:07 . 2003-08-01 12:07 4815424 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\INFOPATH.EXE
+ 2003-07-14 20:11 . 2003-07-14 20:11 2139192 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\GRAPH.EXE
+ 2003-07-25 16:00 . 2003-07-25 16:00 1157696 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\FPSRVUTL.DLL
+ 2003-07-23 20:01 . 2003-07-23 20:01 1949240 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\FPCUTL.DLL
+ 2003-08-03 07:56 . 2003-08-03 07:56 1146184 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\FM20.DLL
+ 2009-05-03 22:23 . 2009-04-06 04:57 24921544 c:\windows\system32\MRT.exe
+ 2007-05-31 10:37 . 2007-05-31 10:37 12310368 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\WINWORD.EXE
+ 2007-06-18 14:16 . 2007-06-18 14:16 12259160 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\MSO.DLL
+ 2007-05-31 10:41 . 2007-05-31 10:41 10352472 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\EXCEL.EXE
+ 2003-08-06 10:24 . 2003-08-06 10:24 12037688 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\WINWORD.EXE
+ 2003-08-07 21:23 . 2003-08-07 21:23 12172336 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.5614\MSO.DLL
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8b02ddce-7152-460e-8268-9c5c508e43a5}]
2009-04-11 09:18 1883672 ----a-w- c:\program files\Drdcha.Com\tbDrd1.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-03 15360]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-01-01 68856]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2004-08-03 1667584]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2009-05-07 2807216]
"HiChatter"="c:\program files\Beyluxe Messenger\Beyluxe Messenger.exe" [2009-03-09 3281920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2008-07-04 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2008-07-04 118784]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2007-03-16 1392640]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-03-31 198160]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-05-14 2029640]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360]
c:\documents and settings\All Users\çں‍ê، ں §ڑ\ںé ©ںê¤\ §ک ں颬نïé\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2006-5-24 622653]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" -osboot
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001
"UacDisableNotify"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001
"AntiVirusDisableNotify"=dword:00000001
"FirewallDisableNotify"=dword:00000001
"FirewallOverride"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
"UacDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\\WINDOWS\\system32\\wscntfy.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [14/05/2009 03:47 م 107256]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [14/05/2009 03:47 م 731840]
S3 abp470n5;abp470n5;\??\c:\windows\system32\drivers\hhnlmn.sys --> c:\windows\system32\drivers\hhnlmn.sys [?]
.
- - - - ORPHANS REMOVED - - - -
SafeBoot-procexp90.Sys

.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com.sa/
uInternet Settings,ProxyServer = 212.71.32.97:8080
IE: تحميل الكل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetAll.htm
IE: تحميل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEExt.htm
IE: تحميل محتوى FLV بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetVL.htm
DPF: Microsoft XML Parser for Java -
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

FF - ProfilePath - c:\documents and settings\nz\Application Data\Mozilla\Firefox\Profiles\nrn1e38t.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.sa/
.
.
------- File Associations -------
.
txtfile=c:\windows\notepad.exe %1
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2009-06-03 11:53
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5374aff9-709e-4fe5-b869-17235220d504}]
@Denied: (Full) (Everyone)
"Model"=dword:0000001b
"Therad"=dword:0000001e
"MData"=hex(0):2b,8f,78,29,5a,0c,ce,ec,48,d4,68,e5,9f,6a,96,3e,ab,de,c5,81,26,
38,95,44,85,b1,12,f9,90,dd,23,a1,49,8c,bf,1a,9d,fe,41,71,cb,3f,46,a4,7c,ab,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):b1,ce,69,1c,0c,a1,d0,d4,10,1c,0d,05,9a,cc,49,9b,ab,13,73,25,e3,
ce,cb,16,6c,39,76,0b,fb,51,7e,a6,3a,b2,0e,5c,5a,de,85,cc,00,00,00,00,00,00,\
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'explorer.exe'(576)
c:\windows\system32\msi.dll
.
Completion time: 2009-06-03 11:54
ComboFix-quarantined-files.txt 2009-06-03 08:54
Pre-Run: 30,883,262,464 bytes free
Post-Run: 30,909,702,144 bytes free
442 --- E O F --- 2009-05-27 23:53
 
توقيع : دلع طفلة
تأييد 0
تقرير الهايجاك سليم مافيه شي باذن الله

بس اذا النسخه اصليه افتح التحديث حق الوندز خله يحمل التحديثات
أنقر للتوسيع...

ايوووه يطلع لي درع اصفر جنب الساعه
مكتوب عليه حق تحديثات الوندز ولااعرف وش اسوي فيه ..
 
توقيع : دلع طفلة
تأييد 0
اضافة الى كلام الغالي فارس

عطلى استعادة النظام حسب الشرح التالي

i7549_1.png


i7550_2.png


i7551_3.png




ثم اعيدي تشغيل الجهاز
واعيدي تشغيلها

وان شاء الله ان الجهاز سليم

بالتوفيق
 
توقيع : SUL6AN
تأييد 0
اضغط على الدرع الاصفر

وبتجيك نفس الصوره

MAB19884.png



اضغط تثبيت وهو بيثبتها واذا انتها بيطلب منك اعادة التشغيل
 
توقيع : ف ا ر س
تأييد 0
سويت نفس الخطوات بالحرف ثبت التحديثات
واستعادة النظام ..
اعدت التشغيل ..
وطلع لي الدرع مرة ثانية مع نجمة الاوفيس :no::er:
 
توقيع : دلع طفلة
تأييد 0
طيب النسخه مو اصليه

حملي هالكراك وباذن الله بتروح النجمه حقت الوندز

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي


واتبع الشرح بالموضوع هذا

يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي



وقفلي التحديثات علشان ماتعبين ورا الكراكات لان النسخه مو اصليه مكركه
 
توقيع : ف ا ر س
تأييد 0
توقيع : king_man
تأييد 0
king-man عملت نفس مافي الموضوع والنجمة راحت ..

وقفلي التحديثات علشان ماتعبين ورا الكراكات لان النسخه مو اصليه مكركه
أنقر للتوسيع...

طريقة تقفيلها ادخل على لوحة التحكم التحديثات التلقائيه
اي اختيار اختار ..؟؟

تعبتكم معي سووري ..
الله يسعدكم دنيا واخرة على مساعدتي ..
 
توقيع : دلع طفلة
تأييد 0
السلام عليكم أختي
أستأذن الاخوان بالمداخلة

أختي إختاري المحدد علية بالاحمر لإيقاف التحديث نهائياً
i15143_20090603130047.jpg



تحياتي ...

 
توقيع : waget
تأييد 0
توقيع : king_man
تأييد 0
قم بالدخول على هذا الموضوع وان شاء الله تستفيد
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي
 
تأييد 0
توقيع : format
تأييد 0
يعطيكم العافية جميعاً ..
اتمنى لكم التوفيق والسعادة ..
 
توقيع : دلع طفلة
تأييد 0
يجب تسجيل الدخول أو التسجيل كي تتمكن من الرد هنا.
عودة
أعلى