• بادئ الموضوع بادئ الموضوع abu-hanafy
  • تاريخ البدء تاريخ البدء
  • المشاهدات 607

abu-hanafy

زيزوومى مميز
إنضم
18 فبراير 2008
المشاركات
622
مستوى التفاعل
12
النقاط
530
الإقامة
palestine
غير متصل
مرحبا يا شباب الاسلام.......

الموضوع وما فيه انو لما تفرمت الويندوز وتنزل الفير فوكس بيكون طيارة

وبعد شهر وبعد تركيب اضافات له بسيطة صار بطيىء حتى لمن اضغط على الايقونة عند بداية الاستخدام ما بتيجي الصفحة على طول تاتي بعد 10 ثواني....

هل هناك حل؟؟؟:mad:
 

توقيع : abu-hanafy

الله يحييك اخوي
حمل هذا البرنامج
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

شغل البرنامج ==> واضغط على
Do a system scan and save log
لحظات .. ويظهر لك تقرير داخل المفكرة==> انسخه والصقه بردك القادم
 
التعديل الأخير بواسطة المشرف:
توقيع : KoNaMi
حياك الله على اهتمامك وهذا هو التقرير


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 03:33:38 م, on 16/07/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: تحميل الكل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى FLV بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: بحث - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{21C5CD6C-D7E4-43DB-81EF-AFE4EBFE85CA}: NameServer = 217.66.226.8
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\WINDOWS\system32\NMSSvc.exe

--
End of file - 4558 bytes
 
توقيع : abu-hanafy
في البدايه انا انصحك بحذف الاضافات لانها تثقل على المتصفح

بعدين اعمل الاتي

عطل برامج الحماية عن العمل
ثم
حمل الاداة التالية واحفظها على سطح المكتب
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
اثناء الفحص ممكن يعاد تشغيل الجهاز
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
لا تقم بتشغيل اي برنامج ،، ومهما طالت عملية الفحص انتظر حتى تنتهي
انتظر حتى يظهر لك تقرير ،،انسخه والصقه بمشاركتك القادمة
 
توقيع : KoNaMi
مرحبا اخي كونامي هاي التقرير من اخر اداة حياك اللهComboFix 09-07-14.08 - mahmoud 07/18/2009 16:41.2.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1256.966.1033.18.510.302 [GMT 2:00]
Running from: c:\documents and settings\mahmoud\Desktop\ComboFix.exe
AV: Kaspersky Internet Security *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
FW: Kaspersky Internet Security *disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\mahmoud\Favorites\Translator.URL
c:\documents and settings\mahmoud\My Documents\برامج\mem 6120\الصور\صور منوعة\Desktop_.ini
d:\جوال\6120\صور\صور منوعة\Desktop_.ini
d:\جوال\6120\نغمات\أناشيد إسلامية\Desktop_.ini
d:\جوال\6300\الصور\صور منوعة\Desktop_.ini
d:\جوال\6300\6120clcek\الصور\صور منوعة\Desktop_.ini
d:\جوال\6300\نغمات منوعة\إسلاميات\Desktop_.ini
f:\اسلاميات\القران\القرآن كاملا بصوت الغامدي\Desktop_.ini

.
((((((((((((((((((((((((( Files Created from 2009-06-18 to 2009-07-18 )))))))))))))))))))))))))))))))
.

2009-07-16 13:33 . 2009-07-16 13:33 -------- d-----w- c:\program files\Trend Micro
2009-07-09 18:05 . 2009-07-09 18:05 112144 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP7\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav6\7.0.1.321\X86\kl1.sys
2009-07-09 18:05 . 2009-07-09 18:05 25104 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP7\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav6\7.0.1.321\ushata.dll
2009-07-09 18:03 . 2009-07-09 18:05 772624 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP7\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav6\7.0.1.321\updater.dll
2009-07-09 18:03 . 2009-07-09 18:03 150032 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP7\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav6\7.0.1.321\diffs.dll
2009-07-09 18:02 . 2009-07-09 18:02 354832 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP7\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav6\7.0.1.321\ckahum.dll
2009-07-09 17:19 . 2009-07-09 17:19 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2009-07-09 12:36 . 2009-07-09 18:05 94643 ----a-w- c:\windows\system32\drivers\klick.dat
2009-07-09 12:36 . 2009-07-09 18:05 105395 ----a-w- c:\windows\system32\drivers\klin.dat
2009-07-09 12:35 . 2009-07-18 14:51 2883360 --sha-w- c:\windows\system32\drivers\fidbox.dat
2009-07-09 12:35 . 2009-07-18 14:50 78624 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2009-07-09 12:35 . 2009-07-18 13:57 -------- d-----w- c:\documents and settings\All Users\Application Data\Kaspersky Lab
2009-07-09 12:35 . 2009-07-09 12:35 -------- d-----w- c:\program files\Kaspersky Lab

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-07-18 14:51 . 2009-03-08 06:53 -------- d-----w- c:\documents and settings\mahmoud\Application Data\DMCache
2009-07-18 14:49 . 2009-07-09 12:35 8372 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2009-07-18 14:49 . 2009-07-09 12:35 39620 --sha-w- c:\windows\system32\drivers\fidbox.idx
2009-07-11 08:06 . 2009-03-15 17:33 -------- d-----w- c:\documents and settings\mahmoud\Application Data\cleaner
2009-07-09 18:05 . 2007-10-31 11:41 112144 ----a-w- c:\windows\system32\drivers\kl1.sys
2009-06-16 14:36 . 2004-08-04 12:00 81920 ----a-w- c:\windows\system32\fontsub.dll
2009-06-16 14:36 . 2004-08-04 12:00 119808 ----a-w- c:\windows\system32\t2embed.dll
2009-06-09 10:42 . 2009-06-08 10:58 -------- d-----w- c:\program files\EA SPORTS
2009-06-03 19:09 . 2004-08-04 12:00 1291264 ----a-w- c:\windows\system32\quartz.dll
2009-06-02 19:23 . 2009-06-02 18:53 -------- d-----w- c:\program files\JetAudio
2009-06-02 18:55 . 2009-03-08 16:53 -------- d-----w- c:\documents and settings\mahmoud\Application Data\COWON
2009-06-02 18:54 . 2009-06-02 18:53 -------- d-----w- c:\program files\Common Files\COWON
2009-06-02 18:53 . 2009-03-08 06:05 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-06-02 18:53 . 2009-06-02 18:53 -------- d-----w- c:\documents and settings\mahmoud\Application Data\InstallShield
2009-06-02 18:50 . 2009-04-01 22:22 -------- d-----w- c:\program files\Common Files\Real
2009-06-02 18:50 . 2009-03-12 09:09 -------- d-----w- c:\program files\Real
2009-06-01 20:50 . 2009-03-28 22:21 499712 ----a-w- c:\windows\system32\msvcp71.dll
2009-06-01 20:50 . 2009-03-28 22:13 348160 ----a-w- c:\windows\system32\msvcr71.dll
2009-06-01 19:46 . 2009-06-01 19:46 -------- d-----w- c:\program files\CCleaner
2009-06-01 19:35 . 2009-04-01 23:26 -------- d-----w- c:\program files\GRETECH
2009-06-01 19:25 . 2009-06-01 00:02 -------- d-----w- c:\program files\DivX
2009-05-31 23:40 . 2009-05-02 18:22 -------- d-----w- c:\program files\Zoom Player
2009-05-26 12:43 . 2009-03-07 20:41 81672 -c--a-w- c:\documents and settings\mahmoud\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-05-21 18:23 . 2009-05-21 18:23 -------- d-----w- c:\program files\AZZA3EEM GAMES
2009-05-12 12:14 . 2009-05-12 12:12 6118 -c--a-w- c:\windows\BricoPackFoldersDelete.cmd
2009-05-12 12:14 . 2009-04-10 22:27 65290 -c--a-w- c:\windows\BricoPackUninst.cmd
2009-05-07 15:32 . 2004-08-04 12:00 345600 ----a-w- c:\windows\system32\localspl.dll
2009-05-02 17:48 . 2009-05-01 19:56 28672 -c--a-w- c:\documents and settings\mahmoud\Application Data\IDM\NP_IDM5.dll
2009-05-02 17:48 . 2009-05-01 19:56 28672 -c--a-w- c:\documents and settings\mahmoud\Application Data\IDM\NP_IDM4.dll
2009-05-02 17:48 . 2009-05-01 19:56 28672 -c--a-w- c:\documents and settings\mahmoud\Application Data\IDM\NP_IDM3.dll
2009-05-02 17:48 . 2009-05-01 19:56 28672 -c--a-w- c:\documents and settings\mahmoud\Application Data\IDM\NP_IDM2.dll
2009-05-02 17:48 . 2009-05-01 19:56 28672 -c--a-w- c:\documents and settings\mahmoud\Application Data\IDM\NP_IDM1.dll
2009-05-02 15:21 . 2009-05-02 15:21 5992 -c--a-w- c:\program files\un_Internet Download Manager_16575.txt
2009-04-30 17:46 . 2009-04-10 18:05 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2009-04-26 18:07 . 2009-04-26 18:07 64184 -c-ha-w- c:\windows\system32\mlfcache.dat
2008-09-28 20:00 . 2009-05-02 15:21 439440 -c--a-w- c:\program files\un_Internet Download Manager_16575.exe
2009-06-24 13:36 . 2009-07-11 08:11 137208 ----a-w- c:\program files\mozilla firefox\components\brwsrcmp.dll
2009-03-22 17:22 . 2009-03-22 17:22 64 -csh--r- c:\windows\system32\SESdemo.drv
.

------- Sigcheck -------

[7] 2008-08-26 09:08 827904 77C192FE56A70D7FA0247BA0A6201C32 c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\wininet.dll
[7] 2008-10-16 10:20 667648 93C9D0A216498EE14EB9B26119BB95EE c:\windows\$hf_mig$\KB958215\SP2QFE\wininet.dll
[7] 2008-10-16 01:00 666112 1576318BF08D28CC61D1278114AD8D5B c:\windows\$hf_mig$\KB958215\SP3GDR\wininet.dll
[7] 2008-10-16 01:04 667136 E8FCE58A470999350F64C591557F9E42 c:\windows\$hf_mig$\KB958215\SP3QFE\wininet.dll
[7] 2008-12-20 23:56 827904 044E0A4E9FE97C0FB9AFE9C89E2A82E6 c:\windows\$hf_mig$\KB961260-IE7\SP2QFE\wininet.dll
[7] 2009-05-13 05:10 915456 C0EB6850C8A02A154281749DC61FAF22 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\wininet.dll
[7] 2008-10-16 10:37 659456 6F1E4BFD78C4E0D05FF3725D59B72925 c:\windows\ie7\wininet.dll
[7] 2007-08-14 01:54 818688 A4A0FC92358F39538A6494C42EF99FE9 c:\windows\ie7updates\KB956390-IE7\wininet.dll
[7] 2008-08-26 07:24 826368 EF8EBA98145BFA44E80D17A3B3453300 c:\windows\ie7updates\KB961260-IE7\wininet.dll
[-] 2009-03-08 02:34 905728 BFD199B9F007F6934D7C4C43F5507286 c:\windows\ServicePackFiles\i386\wininet.dll
[7] 2008-12-20 23:15 826368 A82935D32D0672E8FF4E91AE398E901C c:\windows\SoftwareDistribution\Download\2e4e820fa4f0714d84e95e04fd4b348e\SP2GDR\wininet.dll
[7] 2008-12-20 23:56 827904 044E0A4E9FE97C0FB9AFE9C89E2A82E6 c:\windows\SoftwareDistribution\Download\2e4e820fa4f0714d84e95e04fd4b348e\SP2QFE\wininet.dll
[7] 2008-08-26 07:24 826368 EF8EBA98145BFA44E80D17A3B3453300 c:\windows\SoftwareDistribution\Download\5d9d48823dca01f9929a959c29f5edc4\SP2GDR\wininet.dll
[7] 2008-08-26 09:08 827904 77C192FE56A70D7FA0247BA0A6201C32 c:\windows\SoftwareDistribution\Download\5d9d48823dca01f9929a959c29f5edc4\SP2QFE\wininet.dll
[-] 2008-12-20 23:15 892928 E14BAF11A7D925536693A150652F888D c:\windows\system32\wininet.dll
[-] 2008-12-20 23:15 892928 E14BAF11A7D925536693A150652F888D c:\windows\system32\dllcache\wininet.dll
.
((((((((((((((((((((((((((((( SnapShot@2009-04-28_13.31.05 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-18 14:50 . 2009-07-18 14:50 16384 c:\windows\Temp\Perflib_Perfdata_2ec.dat
+ 2004-08-04 12:00 . 2008-12-20 23:15 74752 c:\windows\system32\url.dll
+ 2009-04-16 13:49 . 2008-07-08 13:02 17272 c:\windows\system32\spmsg.dll
+ 2009-03-19 22:09 . 2009-06-05 06:02 62988 c:\windows\system32\Restore\rstrlog.dat
+ 2004-08-04 12:00 . 2008-12-20 23:15 44544 c:\windows\system32\pngfilt.dll
+ 2004-08-04 12:00 . 2009-07-10 11:52 68156 c:\windows\system32\perfc009.dat
- 2004-08-04 12:00 . 2009-04-27 20:34 68156 c:\windows\system32\perfc009.dat
+ 2009-05-17 12:11 . 1997-09-12 09:00 24336 c:\windows\system32\MSJTER35.DLL
+ 2009-05-17 12:11 . 1996-09-24 15:16 98356 c:\windows\system32\MSJTER32.DLL
+ 2009-05-17 12:11 . 1997-01-12 21:00 37136 c:\windows\system32\MSJINT35.DLL
+ 2009-05-17 12:11 . 1996-09-24 15:16 33552 c:\windows\system32\MSJINT32.DLL
- 2004-08-04 12:00 . 2009-03-08 02:31 48128 c:\windows\system32\mshtmler.dll
+ 2004-08-04 12:00 . 2007-08-14 01:01 48128 c:\windows\system32\mshtmler.dll
- 2004-08-04 12:00 . 2009-03-08 02:31 45568 c:\windows\system32\mshta.exe
+ 2004-08-04 12:00 . 2007-08-14 01:32 45568 c:\windows\system32\mshta.exe
+ 2007-08-14 01:36 . 2007-08-14 01:36 12288 c:\windows\system32\msfeedssync.exe
+ 2007-08-14 01:54 . 2008-12-20 23:15 52224 c:\windows\system32\msfeedsbs.dll
+ 1998-06-17 17:08 . 1998-06-17 17:08 53248 c:\windows\system32\MFC42ENU.DLL
+ 2004-08-04 12:00 . 2007-08-14 01:44 40960 c:\windows\system32\licmgr10.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 27648 c:\windows\system32\jsproxy.dll
+ 2004-08-04 12:00 . 2007-08-14 01:39 92672 c:\windows\system32\inseng.dll
+ 2004-08-04 12:00 . 2007-08-14 01:36 36352 c:\windows\system32\imgutil.dll
+ 2004-08-04 12:00 . 2007-08-14 01:39 55296 c:\windows\system32\iesetup.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 44544 c:\windows\system32\iernonce.dll
+ 2009-03-28 16:15 . 2008-04-14 00:11 81920 c:\windows\system32\ieencode.dll
+ 2004-08-04 12:00 . 2008-12-19 09:10 70656 c:\windows\system32\ie4uinit.exe
+ 2007-08-14 01:36 . 2008-12-20 23:15 63488 c:\windows\system32\icardie.dll
+ 2009-05-04 01:00 . 2008-11-24 14:32 57344 c:\windows\system32\ff_vfw.dll
- 2009-04-27 22:12 . 2008-11-24 14:32 57344 c:\windows\system32\ff_vfw.dll
+ 2008-02-08 16:35 . 2008-02-08 16:35 23604 c:\windows\system32\drivers\klopp.dat
+ 2007-12-13 11:28 . 2007-12-13 11:28 24592 c:\windows\system32\drivers\klim5.sys
+ 2009-06-11 05:50 . 2009-04-30 21:22 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 74752 c:\windows\system32\dllcache\url.dll
+ 2004-08-04 12:00 . 2008-04-14 00:12 50688 c:\windows\system32\dllcache\twain_32.dll
+ 2004-08-04 12:00 . 2008-04-14 00:12 33280 c:\windows\system32\dllcache\sstub.dll
+ 2004-08-04 12:00 . 2008-04-13 16:43 62976 c:\windows\system32\dllcache\spgrmr.dll
+ 2004-08-04 12:00 . 2008-04-14 00:12 34816 c:\windows\system32\dllcache\sniffpol.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 32866 c:\windows\system32\dllcache\slrundll.exe
+ 2004-08-04 12:00 . 2008-12-20 23:15 44544 c:\windows\system32\dllcache\pngfilt.dll
+ 2009-03-07 21:47 . 2008-04-14 00:12 69120 c:\windows\system32\dllcache\notepad.exe
+ 2004-08-04 12:00 . 2008-04-14 00:12 90624 c:\windows\system32\dllcache\muisetup.exe
+ 2004-08-04 12:00 . 2008-04-14 00:12 39936 c:\windows\system32\dllcache\mslwvtts.dll
+ 2004-08-04 12:00 . 2007-08-14 01:01 48128 c:\windows\system32\dllcache\mshtmler.dll
- 2004-08-04 12:00 . 2009-03-08 02:31 48128 c:\windows\system32\dllcache\mshtmler.dll
- 2004-08-04 12:00 . 2009-03-08 02:31 45568 c:\windows\system32\dllcache\mshta.exe
+ 2004-08-04 12:00 . 2007-08-14 01:32 45568 c:\windows\system32\dllcache\mshta.exe
+ 2009-03-08 13:52 . 2008-12-20 23:15 52224 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2004-08-04 12:00 . 2007-08-14 01:44 40960 c:\windows\system32\dllcache\licmgr10.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 27648 c:\windows\system32\dllcache\jsproxy.dll
+ 2004-08-04 12:00 . 2007-08-14 01:39 92672 c:\windows\system32\dllcache\inseng.dll
+ 2004-08-04 12:00 . 2007-08-14 01:36 36352 c:\windows\system32\dllcache\imgutil.dll
+ 2004-08-04 12:00 . 2007-08-14 01:39 55296 c:\windows\system32\dllcache\iesetup.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 44544 c:\windows\system32\dllcache\iernonce.dll
+ 2009-03-10 17:30 . 2009-01-11 05:00 79360 c:\windows\system32\dllcache\iecompat.dll
+ 2004-08-04 12:00 . 2008-12-19 09:10 70656 c:\windows\system32\dllcache\ie4uinit.exe
+ 2009-03-08 13:52 . 2008-12-20 23:15 63488 c:\windows\system32\dllcache\icardie.dll
+ 2009-03-08 05:57 . 2008-04-14 00:12 18432 c:\windows\system32\dllcache\hscupd.exe
+ 2009-03-08 05:57 . 2007-08-14 01:18 60416 c:\windows\system32\dllcache\hmmapi.dll
+ 2004-08-04 12:00 . 2008-04-14 00:12 10752 c:\windows\system32\dllcache\hh.exe
+ 2004-08-04 12:00 . 2004-08-04 12:00 69120 c:\windows\system32\dllcache\gcdef.dll
+ 2009-06-16 14:36 . 2009-06-16 14:36 81920 c:\windows\system32\dllcache\fontsub.dll
+ 2004-08-04 12:00 . 2004-08-04 12:00 30720 c:\windows\system32\dllcache\deskmon.dll
+ 2004-08-04 12:00 . 2004-08-04 12:00 69632 c:\windows\system32\dllcache\console.dll
+ 2004-08-04 12:00 . 2008-04-14 00:11 24064 c:\windows\system32\dllcache\agtintl.dll
+ 2004-08-04 12:00 . 2007-04-02 18:26 20480 c:\windows\system32\dllcache\agt0c0a.dll
+ 2004-08-04 12:00 . 2007-04-02 18:26 20992 c:\windows\system32\dllcache\agt0816.dll
+ 2009-03-07 21:51 . 2007-04-02 18:26 19456 c:\windows\system32\dllcache\agt0804.dll
+ 2009-03-07 21:47 . 2007-04-02 18:26 19456 c:\windows\system32\dllcache\agt041f.dll
+ 2004-08-04 12:00 . 2007-04-02 18:26 19456 c:\windows\system32\dllcache\agt041d.dll
+ 2009-03-07 21:47 . 2007-04-02 18:26 19456 c:\windows\system32\dllcache\agt0419.dll
+ 2004-08-04 12:00 . 2007-04-02 18:26 20480 c:\windows\system32\dllcache\agt0416.dll
+ 2009-03-07 21:47 . 2007-04-02 18:26 19456 c:\windows\system32\dllcache\agt0415.dll
+ 2004-08-04 12:00 . 2007-04-02 18:26 19456 c:\windows\system32\dllcache\agt0414.dll
+ 2004-08-04 12:00 . 2007-04-02 18:26 20992 c:\windows\system32\dllcache\agt0413.dll
+ 2009-03-07 21:51 . 2007-04-02 18:26 19456 c:\windows\system32\dllcache\agt0412.dll
+ 2009-03-07 21:51 . 2007-04-02 18:26 19456 c:\windows\system32\dllcache\agt0411.dll
+ 2004-08-04 12:00 . 2007-04-02 18:26 20992 c:\windows\system32\dllcache\agt0410.dll
+ 2009-03-07 21:47 . 2007-04-02 18:26 19968 c:\windows\system32\dllcache\agt040e.dll
+ 2009-03-07 21:50 . 2007-04-02 18:26 19456 c:\windows\system32\dllcache\agt040d.dll
+ 2004-08-04 12:00 . 2007-04-02 18:26 21504 c:\windows\system32\dllcache\agt040c.dll
+ 2004-08-04 12:00 . 2007-04-02 18:26 19456 c:\windows\system32\dllcache\agt040b.dll
+ 2004-08-04 12:00 . 2008-04-13 17:32 19968 c:\windows\system32\dllcache\agt0409.dll
+ 2009-03-07 21:47 . 2007-04-02 18:26 22016 c:\windows\system32\dllcache\agt0408.dll
+ 2004-08-04 12:00 . 2007-04-02 18:26 21504 c:\windows\system32\dllcache\agt0407.dll
+ 2004-08-04 12:00 . 2007-04-02 18:25 19456 c:\windows\system32\dllcache\agt0406.dll
+ 2009-03-07 21:47 . 2007-04-02 18:25 19456 c:\windows\system32\dllcache\agt0405.dll
+ 2009-03-07 21:51 . 2007-04-02 18:25 19456 c:\windows\system32\dllcache\agt0404.dll
+ 2009-03-07 21:50 . 2007-04-02 18:25 19456 c:\windows\system32\dllcache\agt0401.dll
+ 2004-08-04 12:00 . 2008-04-14 00:11 44032 c:\windows\system32\dllcache\agentsr.dll
+ 2004-08-04 12:00 . 2008-04-14 00:11 24064 c:\windows\system32\dllcache\agentpsh.dll
+ 2004-08-04 12:00 . 2008-04-14 00:11 49152 c:\windows\system32\dllcache\agentmpx.dll
+ 2004-08-04 12:00 . 2008-04-14 00:11 57344 c:\windows\system32\dllcache\agentdpv.dll
+ 2004-08-04 12:00 . 2008-04-14 00:11 42496 c:\windows\system32\dllcache\agentdp2.dll
+ 2004-08-04 12:00 . 2008-04-14 00:11 24064 c:\windows\system32\dllcache\agentanm.dll
+ 2004-08-04 12:00 . 2007-08-14 01:39 71680 c:\windows\system32\dllcache\admparse.dll
+ 2009-03-08 05:57 . 2004-08-04 12:00 98304 c:\windows\system32\dllcache\acctres.dll
+ 2004-08-04 12:00 . 2008-04-14 00:11 35328 c:\windows\system32\corpol.dll
+ 2009-03-08 14:27 . 2009-07-11 06:36 32768 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
- 2009-03-08 14:27 . 2009-03-14 13:51 32768 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2009-03-08 14:27 . 2009-07-11 06:36 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2009-03-08 14:27 . 2009-03-14 13:51 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2009-03-08 14:27 . 2009-07-11 06:36 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
- 2009-03-08 14:27 . 2009-03-14 13:51 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2004-08-04 12:00 . 2007-08-14 01:39 71680 c:\windows\system32\admparse.dll
+ 2004-08-04 12:00 . 2009-03-21 14:06 27497 c:\windows\system32\aagtxq.dll
+ 2009-06-05 06:12 . 1994-03-24 22:00 82832 c:\windows\system\SPLUS.DLL
+ 2008-04-14 00:12 . 2008-10-16 22:09 66584 c:\windows\ServicePackFiles\i386\wuauclt.exe
+ 2008-04-14 00:12 . 2009-03-08 02:34 62464 c:\windows\ServicePackFiles\i386\url.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 55808 c:\windows\ServicePackFiles\i386\narrator.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 86016 c:\windows\ServicePackFiles\i386\mydocs.dll
+ 2008-04-14 00:12 . 2009-03-08 02:31 45568 c:\windows\ServicePackFiles\i386\mshta.exe
+ 2008-04-14 00:11 . 2009-03-08 02:32 71680 c:\windows\ServicePackFiles\i386\iesetup.dll
+ 2008-04-14 00:12 . 2007-08-14 01:44 69120 c:\windows\ServicePackFiles\i386\iedw.exe
+ 2008-04-14 00:11 . 2009-03-08 02:24 68608 c:\windows\ServicePackFiles\i386\hmmapi.dll
+ 2008-04-14 00:11 . 2008-04-14 00:11 82944 c:\windows\ServicePackFiles\i386\cabview.dll
+ 2008-04-14 00:11 . 2008-04-14 00:11 14336 c:\windows\ServicePackFiles\i386\batt.dll
+ 2008-04-14 00:11 . 2008-04-14 00:11 28672 c:\windows\ServicePackFiles\i386\batmeter.dll
+ 2008-04-14 00:11 . 2009-03-08 02:32 72704 c:\windows\ServicePackFiles\i386\admparse.dll
+ 2009-06-05 06:12 . 1994-04-07 22:00 50738 c:\windows\OPENMAIL.EXE
+ 2009-05-17 12:11 . 1997-10-08 12:26 19456 c:\windows\LHSP\TPP\ENGTEXT.DLL
+ 2009-03-23 00:46 . 2009-03-23 00:46 88576 c:\windows\Installer\5fde92.msi
+ 2008-07-29 19:07 . 2008-07-29 19:07 23040 c:\windows\Installer\3fda91.msp
+ 2009-03-26 14:11 . 2009-03-26 14:11 25088 c:\windows\Installer\1cde62.msi
+ 2009-03-26 14:11 . 2009-03-26 14:11 28160 c:\windows\Installer\1cde5a.msi
+ 2009-03-26 14:11 . 2009-03-26 14:11 83456 c:\windows\Installer\1cde52.msi
+ 2009-03-26 14:11 . 2009-03-26 14:11 59904 c:\windows\Installer\1cde4a.msi
- 2009-03-14 19:11 . 2009-04-16 10:16 23040 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\unbndico.exe
+ 2009-03-14 19:11 . 2009-07-15 19:43 23040 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\unbndico.exe
- 2009-03-14 19:11 . 2009-04-16 10:16 61440 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pubs.exe
+ 2009-03-14 19:11 . 2009-07-15 19:43 61440 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pubs.exe
+ 2009-03-14 19:11 . 2009-07-15 19:43 27136 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\oisicon.exe
- 2009-03-14 19:11 . 2009-04-16 10:16 27136 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\oisicon.exe
- 2009-03-14 19:11 . 2009-04-16 10:16 11264 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2009-03-14 19:11 . 2009-07-15 19:43 11264 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2009-03-14 19:11 . 2009-07-15 19:43 86016 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\inficon.exe
- 2009-03-14 19:11 . 2009-04-16 10:16 86016 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\inficon.exe
+ 2009-03-14 19:11 . 2009-07-15 19:43 12288 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\cagicon.exe
- 2009-03-14 19:11 . 2009-04-16 10:16 12288 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2007-03-22 17:05 . 2007-03-22 17:05 97632 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\PP7X32.DLL
+ 2009-05-12 12:12 . 2008-04-14 00:12 60416 c:\windows\BricoPacks\SysFiles\80_msimn.exe
+ 2009-05-12 12:12 . 2008-04-14 00:12 64000 c:\windows\BricoPacks\SysFiles\8_cleanmgr.exe
+ 2009-05-12 12:12 . 2008-10-16 22:09 51224 c:\windows\BricoPacks\SysFiles\73_wuauclt.exe
+ 2009-05-12 12:12 . 2008-04-14 00:11 84480 c:\windows\BricoPacks\SysFiles\6_cabview.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 69120 c:\windows\BricoPacks\SysFiles\41_notepad.exe
+ 2009-05-12 12:12 . 2008-04-14 00:12 69120 c:\windows\BricoPacks\SysFiles\40_notepad.exe
+ 2009-05-12 12:12 . 2008-04-14 00:11 29184 c:\windows\BricoPacks\SysFiles\4_batmeter.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 53760 c:\windows\BricoPacks\SysFiles\35_narrator.exe
+ 2009-05-12 12:12 . 2008-04-14 00:12 90624 c:\windows\BricoPacks\SysFiles\34_mydocs.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 98304 c:\windows\BricoPacks\SysFiles\2_ahui.exe
+ 2009-05-12 12:12 . 2004-08-04 12:00 66560 c:\windows\BricoPacks\SysFiles\11_console.dll
+ 2009-05-17 12:11 . 1999-09-21 11:38 28672 c:\windows\AGTCOMM.DLL
+ 2009-06-11 06:45 . 2007-11-30 12:39 26488 c:\windows\$hf_mig$\KB970238\update\spcustom.dll
+ 2009-06-11 06:45 . 2007-11-30 12:39 17272 c:\windows\$hf_mig$\KB970238\spmsg.dll
+ 2009-06-11 06:46 . 2007-11-30 12:39 26488 c:\windows\$hf_mig$\KB969898\update\spcustom.dll
+ 2009-06-11 06:46 . 2007-11-30 12:39 17272 c:\windows\$hf_mig$\KB969898\spmsg.dll
+ 2009-06-11 06:48 . 2007-11-30 12:39 26488 c:\windows\$hf_mig$\KB969897-IE8\update\spcustom.dll
+ 2009-06-11 06:48 . 2007-11-30 12:39 17272 c:\windows\$hf_mig$\KB969897-IE8\spmsg.dll
+ 2009-06-11 05:50 . 2009-04-30 21:22 12800 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\xpshims.dll
+ 2009-06-11 05:50 . 2009-04-30 21:22 25600 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\jsproxy.dll
+ 2009-06-11 06:44 . 2008-07-09 07:38 26488 c:\windows\$hf_mig$\KB968537\update\spcustom.dll
+ 2009-06-11 06:44 . 2008-07-09 07:38 17272 c:\windows\$hf_mig$\KB968537\spmsg.dll
+ 2009-04-29 22:46 . 2007-11-30 12:39 26488 c:\windows\$hf_mig$\KB961503\update\spcustom.dll
+ 2009-04-29 22:46 . 2007-11-30 12:39 17272 c:\windows\$hf_mig$\KB961503\spmsg.dll
+ 2009-06-11 06:47 . 2008-07-09 07:38 26488 c:\windows\$hf_mig$\KB961501\update\spcustom.dll
+ 2009-06-11 06:47 . 2008-07-09 07:38 17272 c:\windows\$hf_mig$\KB961501\spmsg.dll
+ 2009-06-05 06:12 . 1994-03-24 22:00 8192 c:\windows\system\APPEXEC.DLL
+ 2009-03-14 19:11 . 2009-07-15 19:43 4096 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\opwicon.exe
- 2009-03-14 19:11 . 2009-04-16 10:16 4096 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\opwicon.exe
- 2009-04-27 22:12 . 2004-01-25 16:18 217088 c:\windows\system32\yv12vfw.dll
+ 2009-05-04 01:00 . 2004-01-25 16:18 217088 c:\windows\system32\yv12vfw.dll
- 2009-04-27 22:12 . 2008-01-10 12:16 159839 c:\windows\system32\xvidvfw.dll
+ 2009-05-04 01:00 . 2008-01-10 12:16 159839 c:\windows\system32\xvidvfw.dll
- 2009-04-27 22:12 . 2008-01-10 12:15 755027 c:\windows\system32\xvidcore.dll
+ 2009-05-04 01:00 . 2008-01-10 12:15 755027 c:\windows\system32\xvidcore.dll
+ 2007-08-14 01:45 . 2007-08-14 01:45 206336 c:\windows\system32\winfxdocobj.exe
+ 2004-08-04 12:00 . 2008-12-20 23:15 233472 c:\windows\system32\webcheck.dll
+ 2004-08-04 12:00 . 2008-05-09 10:53 430080 c:\windows\system32\vbscript.dll
+ 2009-05-17 12:11 . 1996-11-07 23:48 368912 c:\windows\system32\VBAR332.DLL
+ 2009-05-17 12:11 . 1996-09-24 15:16 244496 c:\windows\system32\VBAR2232.DLL
- 2004-08-04 12:00 . 2009-04-24 21:40 218624 c:\windows\system32\uxtheme.dll
+ 2004-08-04 12:00 . 2008-04-25 17:41 218624 c:\windows\system32\uxtheme.dll
- 2009-04-27 22:12 . 2007-09-04 16:56 164352 c:\windows\system32\unrar.dll
+ 2009-05-04 01:00 . 2007-09-04 16:56 164352 c:\windows\system32\unrar.dll
+ 2004-08-04 12:00 . 2009-04-15 14:51 585216 c:\windows\system32\rpcrt4.dll
- 2004-08-04 12:00 . 2009-04-27 20:34 435260 c:\windows\system32\perfh009.dat
+ 2004-08-04 12:00 . 2009-07-10 11:52 435260 c:\windows\system32\perfh009.dat
+ 2004-08-04 12:00 . 2008-12-20 23:15 145920 c:\windows\system32\occache.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 671232 c:\windows\system32\mstime.dll
+ 2009-05-17 12:11 . 1997-09-12 09:00 251664 c:\windows\system32\MSRD2X35.DLL
+ 2004-08-04 12:00 . 2008-12-20 23:15 193024 c:\windows\system32\msrating.dll
- 2004-08-04 12:00 . 2009-03-08 02:22 156160 c:\windows\system32\msls31.dll
+ 2004-08-04 12:00 . 2007-08-14 01:54 156160 c:\windows\system32\msls31.dll
+ 2009-05-17 12:11 . 1996-09-24 15:16 965904 c:\windows\system32\MSJT3032.DLL
+ 2004-08-04 12:00 . 2008-12-20 23:15 477696 c:\windows\system32\mshtmled.dll
+ 2007-08-14 01:54 . 2008-12-20 23:15 459264 c:\windows\system32\msfeeds.dll
+ 2008-02-08 16:37 . 2008-02-08 16:37 219664 c:\windows\system32\klogon.dll
+ 2004-08-04 12:00 . 2008-05-09 10:53 512000 c:\windows\system32\jscript.dll
+ 2007-08-14 01:54 . 2007-08-14 01:54 180736 c:\windows\system32\ieui.dll
+ 2007-08-14 01:34 . 2008-12-20 23:15 267776 c:\windows\system32\iertutil.dll
+ 2004-08-04 12:00 . 2007-08-14 01:54 191488 c:\windows\system32\iepeers.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 384512 c:\windows\system32\iedkcs32.dll
+ 2007-07-11 19:27 . 2008-12-20 23:15 383488 c:\windows\system32\ieapfltr.dll
+ 2004-08-04 12:00 . 2008-12-19 05:23 161792 c:\windows\system32\ieakui.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 418816 c:\windows\system32\ieaksie.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 153088 c:\windows\system32\ieakeng.dll
+ 2009-05-02 17:48 . 2009-03-26 16:35 210352 c:\windows\system32\idmmbc.dll
+ 2009-03-07 21:46 . 2009-06-11 06:49 298048 c:\windows\system32\FNTCACHE.DAT
+ 2004-08-04 12:00 . 2008-12-20 23:15 214528 c:\windows\system32\dxtrans.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 347136 c:\windows\system32\dxtmsft.dll
+ 2007-12-28 17:51 . 2007-12-28 17:51 195344 c:\windows\system32\drivers\klif.sys
+ 2004-08-04 12:00 . 2008-04-14 00:12 283648 c:\windows\system32\dllcache\winhlp32.exe
+ 2004-08-04 12:00 . 2008-12-20 23:15 233472 c:\windows\system32\dllcache\webcheck.dll
+ 2009-03-08 05:57 . 2008-05-27 17:23 765952 c:\windows\system32\dllcache\vgx.dll
+ 2008-05-09 10:53 . 2008-05-09 10:53 430080 c:\windows\system32\dllcache\vbscript.dll
+ 2009-06-02 09:16 . 2008-04-25 17:41 218624 c:\windows\system32\dllcache\uxtheme.dll
+ 2009-03-08 05:57 . 2008-04-14 00:12 150528 c:\windows\system32\dllcache\uploadm.exe
+ 2004-08-04 12:00 . 2008-04-14 00:12 279040 c:\windows\system32\dllcache\tshoot.dll
+ 2009-06-16 14:36 . 2009-06-16 14:36 119808 c:\windows\system32\dllcache\t2embed.dll
+ 2004-08-04 12:00 . 2008-04-14 00:12 110592 c:\windows\system32\dllcache\sqlse20.dll
+ 2004-08-04 12:00 . 2008-04-14 00:12 462848 c:\windows\system32\dllcache\sqlqp20.dll
+ 2004-08-04 12:00 . 2008-04-14 00:12 151552 c:\windows\system32\dllcache\sqldb20.dll
+ 2004-08-04 12:00 . 2008-04-14 00:12 250368 c:\windows\system32\dllcache\sptip.dll
+ 2004-08-04 12:00 . 2008-04-14 00:12 130048 c:\windows\system32\dllcache\softkbd.dll
+ 2009-03-08 05:56 . 2004-08-04 12:00 152064 c:\windows\system32\dllcache\sndvol32.exe
+ 2009-04-15 14:51 . 2009-04-15 14:51 585216 c:\windows\system32\dllcache\rpcrt4.dll
+ 2004-08-04 12:00 . 2008-04-14 00:12 146432 c:\windows\system32\dllcache\regedit.exe
+ 2009-03-08 05:57 . 2008-04-14 00:12 102912 c:\windows\system32\dllcache\pchshell.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 145920 c:\windows\system32\dllcache\occache.dll
+ 2009-03-08 05:55 . 2008-04-14 00:12 677888 c:\windows\system32\dllcache\mstsc.exe
- 2009-03-08 05:55 . 2008-04-14 00:12 677888 c:\windows\system32\dllcache\mstsc.exe
+ 2004-08-04 12:00 . 2008-12-20 23:15 671232 c:\windows\system32\dllcache\mstime.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 193024 c:\windows\system32\dllcache\msrating.dll
- 2004-08-04 12:00 . 2009-03-08 02:22 156160 c:\windows\system32\dllcache\msls31.dll
+ 2004-08-04 12:00 . 2007-08-14 01:54 156160 c:\windows\system32\dllcache\msls31.dll
+ 2009-03-08 05:57 . 2008-04-14 00:11 376832 c:\windows\system32\dllcache\msinfo.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 477696 c:\windows\system32\dllcache\mshtmled.dll
+ 2009-03-08 13:52 . 2008-12-20 23:15 459264 c:\windows\system32\dllcache\msfeeds.dll
+ 2009-03-08 05:57 . 2008-04-14 00:12 169984 c:\windows\system32\dllcache\msconfig.exe
+ 2004-08-04 12:00 . 2008-04-14 00:11 220160 c:\windows\system32\dllcache\mscandui.dll
+ 2009-05-07 15:32 . 2009-05-07 15:32 345600 c:\windows\system32\dllcache\localspl.dll
+ 2008-05-09 10:53 . 2008-05-09 10:53 512000 c:\windows\system32\dllcache\jscript.dll
+ 2004-08-04 12:00 . 2004-08-04 12:00 280576 c:\windows\system32\dllcache\inetcplc.dll
+ 2009-03-08 05:57 . 2008-12-19 05:25 506536 c:\windows\system32\dllcache\iexplore.exe
+ 2009-03-08 13:52 . 2008-12-20 23:15 267776 c:\windows\system32\dllcache\iertutil.dll
+ 2009-06-11 05:50 . 2009-04-30 21:22 246272 c:\windows\system32\dllcache\ieproxy.dll
+ 2004-08-04 12:00 . 2007-08-14 01:54 191488 c:\windows\system32\dllcache\iepeers.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 384512 c:\windows\system32\dllcache\iedkcs32.dll
+ 2009-03-08 13:52 . 2008-12-20 23:15 383488 c:\windows\system32\dllcache\ieapfltr.dll
+ 2004-08-04 12:00 . 2008-12-19 05:23 161792 c:\windows\system32\dllcache\ieakui.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 418816 c:\windows\system32\dllcache\ieaksie.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 153088 c:\windows\system32\dllcache\ieakeng.dll
+ 2009-03-08 05:57 . 2008-04-14 00:12 744448 c:\windows\system32\dllcache\helpsvc.exe
+ 2009-03-08 05:57 . 2008-04-14 00:12 769024 c:\windows\system32\dllcache\helpctr.exe
+ 2004-08-04 12:00 . 2008-12-20 23:15 214528 c:\windows\system32\dllcache\dxtrans.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 347136 c:\windows\system32\dllcache\dxtmsft.dll
+ 2009-03-08 05:56 . 2004-08-04 12:00 117760 c:\windows\system32\dllcache\calc.exe
+ 2004-08-04 12:00 . 2008-04-14 00:12 256512 c:\windows\system32\dllcache\agentsvr.exe
+ 2004-08-04 12:00 . 2008-04-14 00:11 214016 c:\windows\system32\dllcache\agentctl.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 124928 c:\windows\system32\dllcache\advpack.dll
+ 2004-08-04 12:00 . 2008-04-14 00:11 116224 c:\windows\system32\dllcache\acxtrnal.dll
+ 2004-08-04 12:00 . 2008-04-14 00:11 245248 c:\windows\system32\dllcache\acspecfc.dll
+ 2004-08-04 12:00 . 2008-04-14 00:11 141312 c:\windows\system32\dllcache\aclua.dll
+ 2004-08-04 12:00 . 2008-04-14 00:11 451072 c:\windows\system32\dllcache\aclayers.dll
+ 2009-05-17 12:11 . 1995-08-29 02:52 220672 c:\windows\system32\BC450RTL.DLL
+ 2004-08-04 12:00 . 2008-12-20 23:15 124928 c:\windows\system32\advpack.dll
+ 2009-06-05 06:12 . 1994-03-24 22:00 398416 c:\windows\system\VBRUN300.DLL
+ 2008-04-14 00:12 . 2008-04-14 00:12 905728 c:\windows\ServicePackFiles\i386\zipfldr.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 285696 c:\windows\ServicePackFiles\i386\wuauclt1.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 294400 c:\windows\ServicePackFiles\i386\winsrv.dll
+ 2008-04-14 00:11 . 2008-04-14 00:11 755712 c:\windows\ServicePackFiles\i386\WINNTBBU.DLL
+ 2008-04-14 00:12 . 2004-08-04 12:00 168960 c:\windows\ServicePackFiles\i386\winhlp32.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 769536 c:\windows\ServicePackFiles\i386\wiashext.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 885248 c:\windows\ServicePackFiles\i386\wiaacmgr.exe
+ 2008-04-14 00:12 . 2009-03-08 02:34 397312 c:\windows\ServicePackFiles\i386\webcheck.dll
- 2008-04-14 00:12 . 2009-04-24 21:40 218624 c:\windows\ServicePackFiles\i386\uxtheme.dll
+ 2008-04-14 00:12 . 2009-05-12 11:54 218624 c:\windows\ServicePackFiles\i386\uxtheme.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 776192 c:\windows\ServicePackFiles\i386\upnpui.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 388096 c:\windows\ServicePackFiles\i386\themeui.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 182272 c:\windows\ServicePackFiles\i386\sysocmgr.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 147456 c:\windows\ServicePackFiles\i386\stobject.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 180736 c:\windows\ServicePackFiles\i386\sndrec32.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 498688 c:\windows\ServicePackFiles\i386\shlwapi.dll
+ 2008-04-13 17:03 . 2008-04-13 17:03 666112 c:\windows\ServicePackFiles\i386\shdoclc.dll
- 2008-04-14 00:12 . 2008-04-14 00:12 380416 c:\windows\ServicePackFiles\i386\rstrui.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 380416 c:\windows\ServicePackFiles\i386\rstrui.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 224256 c:\windows\ServicePackFiles\i386\regedit.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 740864 c:\windows\ServicePackFiles\i386\printui.dll
+ 2008-04-14 00:12 . 2009-03-08 02:34 171008 c:\windows\ServicePackFiles\i386\occache.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 231936 c:\windows\ServicePackFiles\i386\ntshrui.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 155136 c:\windows\ServicePackFiles\i386\notepad.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 413184 c:\windows\ServicePackFiles\i386\newdev.dll
+ 2008-04-14 00:16 . 2008-04-14 00:16 623616 c:\windows\ServicePackFiles\i386\netsetup.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 147456 c:\windows\ServicePackFiles\i386\netid.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 321536 c:\windows\ServicePackFiles\i386\mstask.dll
+ 2008-04-14 00:12 . 2009-03-08 02:34 193536 c:\windows\ServicePackFiles\i386\msrating.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 439808 c:\windows\ServicePackFiles\i386\mspaint.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 223232 c:\windows\ServicePackFiles\i386\msimn.exe
+ 2008-04-13 16:45 . 2008-04-13 16:45 379904 c:\windows\ServicePackFiles\i386\moricons.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 543232 c:\windows\ServicePackFiles\i386\migwiz.exe
+ 2008-04-14 00:11 . 2008-04-14 00:11 402944 c:\windows\ServicePackFiles\i386\keymgr.dll
+ 2008-04-14 00:12 . 2008-04-13 15:12 151552 c:\windows\ServicePackFiles\i386\irftp.exe
- 2008-04-14 00:12 . 2008-04-14 00:12 151552 c:\windows\ServicePackFiles\i386\irftp.exe
+ 2008-04-14 00:11 . 2009-03-08 02:31 183808 c:\windows\ServicePackFiles\i386\iepeers.dll
+ 2008-04-14 00:11 . 2008-04-14 00:11 221184 c:\windows\ServicePackFiles\i386\icwhelp.dll
+ 2008-04-14 00:11 . 2008-04-14 00:11 159744 c:\windows\ServicePackFiles\i386\hotplug.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 765440 c:\windows\ServicePackFiles\i386\helpctr.exe
+ 2008-04-14 00:11 . 2008-04-14 00:11 392704 c:\windows\ServicePackFiles\i386\fontext.dll
+ 2008-04-14 00:11 . 2008-12-20 23:15 133120 c:\windows\ServicePackFiles\i386\extmgr.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 975872 c:\windows\ServicePackFiles\i386\explorer.exe
+ 2009-03-08 13:05 . 2004-08-04 12:00 366080 c:\windows\ServicePackFiles\i386\digreqex.msi
+ 2009-03-08 13:05 . 2004-08-04 12:00 863232 c:\windows\ServicePackFiles\i386\digopt.msi
+ 2008-04-14 00:11 . 2008-04-14 00:11 188928 c:\windows\ServicePackFiles\i386\credui.dll
+ 2008-04-14 00:11 . 2008-04-14 00:11 449536 c:\windows\ServicePackFiles\i386\cmdial32.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 415744 c:\windows\ServicePackFiles\i386\cmd.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 108544 c:\windows\ServicePackFiles\i386\cleanmgr.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 100864 c:\windows\ServicePackFiles\i386\ahui.exe
+ 2007-04-21 09:07 . 2007-04-21 09:07 894464 c:\windows\Resources\Themes\Inspirat2\Shell\ClassicXP\Shellstyle.dll
+ 2009-03-26 14:47 . 2009-03-26 14:47 652800 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs_setup.msi
+ 2009-05-17 12:11 . 1997-11-13 14:08 143360 c:\windows\LHSP\VOICE\ENGUM150.DLL
+ 2009-05-17 12:11 . 1997-11-13 14:08 143360 c:\windows\LHSP\VOICE\ENGUF150.DLL
+ 2009-05-17 12:11 . 1997-10-15 08:19 189952 c:\windows\LHSP\TTSMGR32.DLL
+ 2009-05-17 12:11 . 1997-04-25 14:00 108544 c:\windows\LHSP\TTSDCT32.DLL
+ 2009-05-17 12:11 . 1997-04-25 13:00 321536 c:\windows\LHSP\TTSCORE.EXE
+ 2009-05-17 12:11 . 1997-10-08 12:40 124928 c:\windows\LHSP\LANGUAGE\ENG_U250.DLL
+ 2009-05-17 12:11 . 1997-10-09 10:21 699392 c:\windows\LHSP\G2P\ENG_UL50.DLL
+ 2009-03-08 06:07 . 2009-03-08 06:07 825344 c:\windows\Installer\ed22.msi
+ 2009-03-08 06:04 . 2009-03-08 06:04 264704 c:\windows\Installer\e863.msi
+ 2009-03-08 14:09 . 2009-03-08 14:09 562176 c:\windows\Installer\bcd06.msi
+ 2009-03-08 15:34 . 2009-03-08 15:34 140288 c:\windows\Installer\b5f9f.msi
+ 2009-03-08 15:34 . 2009-03-08 15:34 202752 c:\windows\Installer\b5f97.msi
+ 2009-03-26 13:10 . 2009-03-26 13:10 301056 c:\windows\Installer\698e9.msi
+ 2008-07-29 15:35 . 2008-07-29 15:35 553472 c:\windows\Installer\5fde97.msp
+ 2008-07-29 15:33 . 2008-07-29 15:33 506368 c:\windows\Installer\5fde95.msp
+ 2008-07-29 15:37 . 2008-07-29 15:37 911360 c:\windows\Installer\5fde94.msp
+ 2008-01-23 14:45 . 2008-01-23 14:45 738816 c:\windows\Installer\48b034.msp
+ 2008-07-28 13:00 . 2008-07-28 13:00 161792 c:\windows\Installer\48b01d.msp
+ 2008-12-13 07:58 . 2008-12-13 07:58 754688 c:\windows\Installer\412b2e.msp
+ 2009-03-26 14:48 . 2009-03-26 14:48 648192 c:\windows\Installer\412b14.msi
+ 2008-07-29 19:23 . 2008-07-29 19:23 250880 c:\windows\Installer\3fda9a.msp
+ 2008-07-29 19:28 . 2008-07-29 19:28 278016 c:\windows\Installer\3fda98.msp
+ 2008-07-29 17:40 . 2008-07-29 17:40 291840 c:\windows\Installer\3fda96.msp
+ 2009-03-26 14:46 . 2009-03-26 14:46 137728 c:\windows\Installer\3fda90.msi
+ 2009-03-26 14:12 . 2009-03-26 14:12 431104 c:\windows\Installer\1cde80.msi
+ 2009-03-26 14:11 . 2009-03-26 14:11 107008 c:\windows\Installer\1cde42.msi
+ 2009-03-14 19:11 . 2009-07-15 19:43 409600 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\xlicons.exe
- 2009-03-14 19:11 . 2009-04-16 10:16 409600 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\xlicons.exe
- 2009-03-14 19:11 . 2009-04-16 10:16 286720 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2009-03-14 19:11 . 2009-07-15 19:43 286720 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2009-03-14 19:11 . 2009-07-15 19:43 249856 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pptico.exe
- 2009-03-14 19:11 . 2009-04-16 10:16 249856 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pptico.exe
- 2009-03-14 19:11 . 2009-04-16 10:16 794624 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\outicon.exe
+ 2009-03-14 19:11 . 2009-07-15 19:43 794624 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\outicon.exe
+ 2009-03-14 19:11 . 2009-07-15 19:43 135168 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2009-03-14 19:11 . 2009-04-16 10:16 135168 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2009-03-14 19:11 . 2009-04-16 10:16 593920 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2009-03-14 19:11 . 2009-07-15 19:43 593920 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2009-03-28 16:15 . 2006-09-07 00:43 213216 c:\windows\ie7\spuninst\spuninst.exe
+ 2009-05-12 12:14 . 2009-05-12 11:54 218624 c:\windows\BricoPacks\SysFiles\Ux_uxtheme.dll
- 2009-04-10 22:27 . 2009-03-26 20:49 218624 c:\windows\BricoPacks\SysFiles\Ux_uxtheme.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 389120 c:\windows\BricoPacks\SysFiles\9_cmd.exe
+ 2009-05-12 12:12 . 2008-04-14 00:12 514560 c:\windows\BricoPacks\SysFiles\78_logonui.exe
+ 2009-05-12 12:12 . 2008-04-14 00:12 338432 c:\windows\BricoPacks\SysFiles\77_zipfldr.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 165888 c:\windows\BricoPacks\SysFiles\74_wuauclt1.exe
+ 2009-05-12 12:12 . 2008-04-14 00:12 293376 c:\windows\BricoPacks\SysFiles\71_winsrv.dll
+ 2009-05-12 12:12 . 2008-04-14 00:11 756224 c:\windows\BricoPacks\SysFiles\70_WINNTBBU.DLL
+ 2009-05-12 12:12 . 2004-08-04 12:00 114688 c:\windows\BricoPacks\SysFiles\7_calc.exe
+ 2009-05-12 12:12 . 2009-03-08 02:34 914944 c:\windows\BricoPacks\SysFiles\69_wininet.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 589312 c:\windows\BricoPacks\SysFiles\68_wiashext.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 433664 c:\windows\BricoPacks\SysFiles\67_wiaacmgr.exe
+ 2009-05-12 12:12 . 2009-03-08 02:34 236544 c:\windows\BricoPacks\SysFiles\66_webcheck.dll
+ 2009-05-12 12:12 . 2009-03-08 02:34 105984 c:\windows\BricoPacks\SysFiles\64_url.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 385536 c:\windows\BricoPacks\SysFiles\62_themeui.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 183296 c:\windows\BricoPacks\SysFiles\60_taskmgr.exe
+ 2009-05-12 12:12 . 2008-04-14 00:12 990208 c:\windows\BricoPacks\SysFiles\59_syssetup.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 106496 c:\windows\BricoPacks\SysFiles\58_sysocmgr.exe
+ 2009-05-12 12:12 . 2008-04-14 00:12 121856 c:\windows\BricoPacks\SysFiles\56_stobject.dll
+ 2009-05-12 12:12 . 2004-08-04 12:00 138752 c:\windows\BricoPacks\SysFiles\55_sndvol32.exe
+ 2009-05-12 12:12 . 2008-04-14 00:12 131584 c:\windows\BricoPacks\SysFiles\54_sndrec32.exe
+ 2009-05-12 12:12 . 2008-04-14 00:12 474112 c:\windows\BricoPacks\SysFiles\53_shlwapi.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 438272 c:\windows\BricoPacks\SysFiles\52_shimgvw.dll
+ 2009-05-12 12:12 . 2008-04-13 17:03 549376 c:\windows\BricoPacks\SysFiles\49_shdoclc.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 146432 c:\windows\BricoPacks\SysFiles\48_regedit.exe
+ 2009-05-12 12:12 . 2008-04-14 00:12 658432 c:\windows\BricoPacks\SysFiles\47_rasdlg.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 560640 c:\windows\BricoPacks\SysFiles\46_printui.dll
+ 2009-05-12 12:12 . 2009-03-08 02:34 109568 c:\windows\BricoPacks\SysFiles\44_occache.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 143360 c:\windows\BricoPacks\SysFiles\42_ntshrui.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 247808 c:\windows\BricoPacks\SysFiles\39_newdev.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 139264 c:\windows\BricoPacks\SysFiles\37_netid.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 274944 c:\windows\BricoPacks\SysFiles\32_mstask.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 343040 c:\windows\BricoPacks\SysFiles\31_mspaint.exe
+ 2009-05-12 12:12 . 2008-04-14 00:12 997376 c:\windows\BricoPacks\SysFiles\29_msgina.dll
+ 2009-05-12 12:12 . 2008-04-13 16:45 216064 c:\windows\BricoPacks\SysFiles\28_moricons.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 245248 c:\windows\BricoPacks\SysFiles\26_migwiz.exe
+ 2009-05-12 12:12 . 2008-04-14 00:11 150528 c:\windows\BricoPacks\SysFiles\23_keymgr.dll
+ 2009-05-12 12:12 . 2004-08-04 12:00 110592 c:\windows\BricoPacks\SysFiles\20_inetcplc.dll
+ 2009-05-12 12:12 . 2008-04-14 00:11 144896 c:\windows\BricoPacks\SysFiles\18_hotplug.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 769024 c:\windows\BricoPacks\SysFiles\17_helpctr.exe
+ 2009-05-12 12:12 . 2008-04-14 00:11 382976 c:\windows\BricoPacks\SysFiles\15_fontext.dll
+ 2009-05-12 12:12 . 2008-04-14 00:11 163840 c:\windows\BricoPacks\SysFiles\12_credui.dll
+ 2009-05-12 12:12 . 2008-04-14 00:11 344064 c:\windows\BricoPacks\SysFiles\10_cmdial32.dll
+ 2009-06-11 06:45 . 2007-11-30 12:39 382840 c:\windows\$hf_mig$\KB970238\update\updspapi.dll
+ 2009-06-11 06:45 . 2007-11-30 12:39 755576 c:\windows\$hf_mig$\KB970238\update\update.exe
+ 2009-06-11 06:45 . 2007-11-30 12:39 231288 c:\windows\$hf_mig$\KB970238\spuninst.exe
+ 2009-04-15 15:24 . 2009-04-15 15:24 585216 c:\windows\$hf_mig$\KB970238\SP3QFE\rpcrt4.dll
+ 2009-06-11 06:46 . 2007-11-30 12:39 382840 c:\windows\$hf_mig$\KB969898\update\updspapi.dll
+ 2009-06-11 06:46 . 2007-11-30 12:39 755576 c:\windows\$hf_mig$\KB969898\update\update.exe
+ 2009-06-11 06:46 . 2007-11-30 12:39 231288 c:\windows\$hf_mig$\KB969898\spuninst.exe
+ 2009-06-11 06:48 . 2008-07-09 07:38 382840 c:\windows\$hf_mig$\KB969897-IE8\update\updspapi.dll
+ 2009-06-11 06:48 . 2007-11-30 12:39 755576 c:\windows\$hf_mig$\KB969897-IE8\update\update.exe
+ 2009-06-11 06:48 . 2007-11-30 12:39 231288 c:\windows\$hf_mig$\KB969897-IE8\spuninst.exe
+ 2009-06-11 05:50 . 2009-05-13 05:10 915456 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\wininet.dll
+ 2009-06-11 05:50 . 2009-04-30 21:22 246272 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\ieproxy.dll
+ 2009-06-11 05:50 . 2009-04-30 21:22 385536 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\iedkcs32.dll
+ 2009-06-11 05:50 . 2009-04-30 10:47 173056 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\ie4uinit.exe
+ 2009-06-11 06:44 . 2008-07-09 07:38 382840 c:\windows\$hf_mig$\KB968537\update\updspapi.dll
+ 2009-06-11 06:44 . 2008-07-09 07:38 755576 c:\windows\$hf_mig$\KB968537\update\update.exe
+ 2009-06-11 06:44 . 2008-07-09 07:38 231288 c:\windows\$hf_mig$\KB968537\spuninst.exe
+ 2009-04-29 22:46 . 2007-11-30 12:39 382840 c:\windows\$hf_mig$\KB961503\update\updspapi.dll
+ 2009-04-29 22:46 . 2007-11-30 12:39 755576 c:\windows\$hf_mig$\KB961503\update\update.exe
+ 2009-04-29 22:46 . 2007-11-30 12:39 231288 c:\windows\$hf_mig$\KB961503\spuninst.exe
+ 2009-06-11 06:47 . 2008-07-09 07:38 382840 c:\windows\$hf_mig$\KB961501\update\updspapi.dll
+ 2009-06-11 06:47 . 2008-07-09 07:38 755576 c:\windows\$hf_mig$\KB961501\update\update.exe
+ 2009-06-11 06:47 . 2008-07-09 07:38 231288 c:\windows\$hf_mig$\KB961501\spuninst.exe
+ 2009-05-07 15:14 . 2009-05-07 15:14 346112 c:\windows\$hf_mig$\KB961501\SP3QFE\localspl.dll
+ 2004-08-04 12:00 . 2009-04-17 12:26 1847168 c:\windows\system32\win32k.sys
+ 2004-08-04 12:00 . 2004-08-04 12:00 1326080 c:\windows\system32\webfldrs.msi
+ 2008-04-14 00:12 . 2008-04-14 00:12 3513856 c:\windows\system32\usmt\migwiza.exe
+ 2004-08-04 12:00 . 2008-12-20 23:15 1206784 c:\windows\system32\urlmon.dll
- 2004-08-04 12:00 . 2009-03-08 02:34 1206784 c:\windows\system32\urlmon.dll
+ 2009-05-04 01:00 . 2008-09-19 21:57 3596288 c:\windows\system32\qt-dx331.dll
- 2009-04-27 22:12 . 2008-09-19 21:57 3596288 c:\windows\system32\qt-dx331.dll
+ 2009-05-17 12:11 . 1997-09-12 09:00 1037312 c:\windows\system32\MSJET35.DLL
+ 2004-08-04 12:00 . 2009-01-17 04:35 3755008 c:\windows\system32\mshtml.dll
+ 2007-08-14 01:54 . 2008-12-20 23:15 6066688 c:\windows\system32\ieframe.dll
+ 2007-02-12 23:10 . 2007-04-17 09:32 2455488 c:\windows\system32\ieapfltr.dat
+ 2009-03-08 10:49 . 2009-04-17 12:26 1847168 c:\windows\system32\dllcache\win32k.sys
- 2004-08-04 12:00 . 2009-03-08 02:34 1206784 c:\windows\system32\dllcache\urlmon.dll
+ 2004-08-04 12:00 . 2008-12-20 23:15 1206784 c:\windows\system32\dllcache\urlmon.dll
- 2008-06-17 19:02 . 2008-06-17 19:02 8461312 c:\windows\system32\dllcache\shell32.dll
+ 2008-06-17 19:02 . 2008-06-17 19:02 8461312 c:\windows\system32\dllcache\shell32.dll
+ 2008-05-07 05:12 . 2009-06-03 19:09 1291264 c:\windows\system32\dllcache\quartz.dll
+ 2004-08-04 12:00 . 2009-02-06 11:08 2189056 c:\windows\system32\dllcache\ntoskrnl.exe
- 2009-03-08 11:19 . 2009-02-06 11:08 2189056 c:\windows\system32\dllcache\ntoskrnl.exe
+ 2004-08-03 22:59 . 2009-02-07 17:02 2066048 c:\windows\system32\dllcache\ntkrnlpa.exe
- 2009-03-08 11:19 . 2009-02-07 17:02 2066048 c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2009-03-08 05:55 . 2008-04-14 00:11 2089472 c:\windows\system32\dllcache\mstscax.dll
+ 2004-08-04 12:00 . 2009-01-17 04:35 3755008 c:\windows\system32\dllcache\mshtml.dll
+ 2009-03-08 13:52 . 2008-12-20 23:15 6066688 c:\windows\system32\dllcache\ieframe.dll
+ 2009-03-08 13:52 . 2007-04-17 09:32 2455488 c:\windows\system32\dllcache\ieapfltr.dat
+ 2008-04-13 17:39 . 2008-04-13 17:39 3288064 c:\windows\ServicePackFiles\i386\xpsp2res.dll
- 2008-04-13 16:48 . 2008-04-13 16:48 1647616 c:\windows\ServicePackFiles\i386\winbrand.dll
+ 2008-04-13 16:48 . 2008-04-13 16:48 1647616 c:\windows\ServicePackFiles\i386\winbrand.dll
+ 2009-03-08 13:05 . 2004-08-04 12:00 1326080 c:\windows\ServicePackFiles\i386\webfldrs.msi
+ 2008-04-14 00:12 . 2009-03-08 02:34 1280512 c:\windows\ServicePackFiles\i386\urlmon.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 1246720 c:\windows\ServicePackFiles\i386\syssetup.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 1788416 c:\windows\ServicePackFiles\i386\shimgvw.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 1778688 c:\windows\ServicePackFiles\i386\shdocvw.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 1230336 c:\windows\ServicePackFiles\i386\rasdlg.dll
+ 2008-04-13 19:27 . 2009-02-06 11:08 2189056 c:\windows\ServicePackFiles\i386\ntoskrnl.exe
- 2008-04-13 19:27 . 2009-02-06 11:08 2189056 c:\windows\ServicePackFiles\i386\ntoskrnl.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 2118656 c:\windows\ServicePackFiles\i386\netshell.dll
+ 2008-04-14 00:12 . 2008-09-04 17:15 1106944 c:\windows\ServicePackFiles\i386\msxml3.dll
+ 2008-04-14 00:11 . 2009-03-08 02:41 6210560 c:\windows\ServicePackFiles\i386\mshtml.dll
+ 2008-04-14 00:11 . 2008-04-14 00:12 1104896 c:\windows\ServicePackFiles\i386\msgina.dll
+ 2008-04-14 00:12 . 2008-04-14 00:12 3679744 c:\windows\ServicePackFiles\i386\moviemk.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 3513856 c:\windows\ServicePackFiles\i386\migwiza.exe
+ 2008-04-14 00:12 . 2008-04-14 00:12 5650432 c:\windows\ServicePackFiles\i386\logonui.exe
+ 2008-04-14 00:11 . 2008-04-14 00:11 1022976 c:\windows\ServicePackFiles\i386\browseui.dll
+ 2005-08-20 11:48 . 2005-08-20 11:48 1201664 c:\windows\Resources\Themes\Vista\Shell\VISTA22\shellstyle.dll
+ 2005-08-20 09:30 . 2005-08-20 09:30 2085888 c:\windows\Resources\Themes\Vista\Shell\VISTA2\shellstyle.dll
+ 2005-08-20 11:48 . 2005-08-20 11:48 1201664 c:\windows\Resources\Themes\Vista\Shell\VISTA12\shellstyle.dll
+ 2005-08-20 09:30 . 2005-08-20 09:30 2085888 c:\windows\Resources\Themes\Vista\Shell\NormalColor\shellstyle.dll
+ 2007-04-20 17:16 . 2007-04-20 17:16 1117184 c:\windows\Resources\Themes\Inspirat2\Shell\NormalColor\Shellstyle.dll
+ 2007-04-20 17:16 . 2007-04-20 17:16 1117184 c:\windows\Resources\Themes\Inspirat2\Shell\AeroBlue\Shellstyle.dll
+ 2007-04-20 17:16 . 2007-04-20 17:16 1117184 c:\windows\Resources\Themes\Inspirat2\Shell\AeroBlack\Shellstyle.dll
+ 2006-04-26 19:13 . 2006-04-26 19:13 1532416 c:\windows\Resources\Themes\Crystal Clear\Shell\NormalColor\Shellstyle.dll
+ 2006-04-26 19:13 . 2006-04-26 19:13 1532416 c:\windows\Resources\Themes\Crystal Clear\Shell\CrCl2s\Shellstyle.dll
+ 2006-04-26 19:13 . 2006-04-26 19:13 1532416 c:\windows\Resources\Themes\Crystal Clear\Shell\CrCl2\Shellstyle.dll
+ 2006-04-26 19:13 . 2006-04-26 19:13 1532416 c:\windows\Resources\Themes\Crystal Clear\Shell\CrCl1s\Shellstyle.dll
+ 2006-03-04 19:39 . 2006-03-04 19:39 1117184 c:\windows\Resources\Themes\Crystal Clear Aero\Shell\NormalColor\shellstyle.dll
+ 2006-03-04 19:39 . 2006-03-04 19:39 1117184 c:\windows\Resources\Themes\Crystal Clear Aero\Shell\CrCl2s\Shellstyle.dll
+ 2006-03-04 19:39 . 2006-03-04 19:39 1117184 c:\windows\Resources\Themes\Crystal Clear Aero\Shell\CrCl2\Shellstyle.dll
+ 2006-03-04 19:39 . 2006-03-04 19:39 1117184 c:\windows\Resources\Themes\Crystal Clear Aero\Shell\CrCl1s\Shellstyle.dll
+ 2009-04-06 15:00 . 2009-04-06 15:00 5518336 c:\windows\Installer\fbfb88.msp
+ 2009-06-30 09:30 . 2009-06-30 09:30 5520384 c:\windows\Installer\940b41.msp
+ 2009-05-01 13:49 . 2009-05-01 13:49 4328960 c:\windows\Installer\900b55.msp
+ 2005-10-26 12:59 . 2005-10-26 12:59 2883072 c:\windows\Installer\72f746.msp
+ 2009-02-11 13:02 . 2009-02-11 13:02 5519872 c:\windows\Installer\72f72e.msp
+ 2009-03-08 06:47 . 2009-03-08 06:47 1771008 c:\windows\Installer\689fa.msi
+ 2008-12-13 07:57 . 2008-12-13 07:57 8397824 c:\windows\Installer\653c00.msp
+ 2008-07-29 15:45 . 2008-07-29 15:45 2543616 c:\windows\Installer\5fde9b.msp
+ 2008-07-29 15:29 . 2008-07-29 15:29 2926080 c:\windows\Installer\5fde9a.msp
+ 2008-07-29 15:41 . 2008-07-29 15:41 6487040 c:\windows\Installer\5fde99.msp
+ 2008-07-29 15:39 . 2008-07-29 15:39 3403264 c:\windows\Installer\5fde98.msp
+ 2008-07-29 15:43 . 2008-07-29 15:43 1013248 c:\windows\Installer\5fde96.msp
+ 2008-07-29 15:31 . 2008-07-29 15:31 6083072 c:\windows\Installer\5fde93.msp
+ 2009-07-09 12:36 . 2009-07-09 12:36 2878464 c:\windows\Installer\5e068.msi
+ 2009-03-08 08:31 . 2009-03-08 08:31 1383424 c:\windows\Installer\5c08ae.msi
+ 2008-06-11 13:05 . 2008-06-11 13:05 9994240 c:\windows\Installer\48b148.msp
+ 2008-10-22 20:43 . 2008-10-22 20:43 6820352 c:\windows\Installer\48b12c.msp
+ 2008-10-22 20:48 . 2008-10-22 20:48 7672832 c:\windows\Installer\48b0fc.msp
+ 2008-04-01 12:33 . 2008-04-01 12:33 5479936 c:\windows\Installer\48b0e4.msp
+ 2008-01-31 08:30 . 2008-01-31 08:30 9947648 c:\windows\Installer\48b0b1.msp
+ 2008-01-14 14:53 . 2008-01-14 14:53 5213696 c:\windows\Installer\48b092.msp
+ 2008-10-25 07:15 . 2008-10-25 07:15 6227456 c:\windows\Installer\48b07b.msp
+ 2008-07-08 09:27 . 2008-07-08 09:27 8436736 c:\windows\Installer\48b04c.msp
+ 2009-05-12 11:01 . 2009-05-12 11:01 6818816 c:\windows\Installer\40826f.msp
+ 2009-05-28 10:32 . 2009-05-28 10:32 5518848 c:\windows\Installer\408257.msp
+ 2009-04-23 15:57 . 2009-04-23 15:57 7672832 c:\windows\Installer\40823f.msp
+ 2008-07-29 17:26 . 2008-07-29 17:26 1043456 c:\windows\Installer\3fda99.msp
+ 2008-07-29 18:37 . 2008-07-29 18:37 2679808 c:\windows\Installer\3fda97.msp
+ 2008-07-29 19:15 . 2008-07-29 19:15 3697664 c:\windows\Installer\3fda95.msp
+ 2008-07-29 17:34 . 2008-07-29 17:34 1448448 c:\windows\Installer\3fda94.msp
+ 2008-07-29 18:22 . 2008-07-29 18:22 4137984 c:\windows\Installer\3fda93.msp
+ 2008-07-29 17:18 . 2008-07-29 17:18 3376640 c:\windows\Installer\3fda92.msp
+ 2009-03-14 19:11 . 2009-03-14 19:11 5797376 c:\windows\Installer\28a17b.msi
+ 2009-03-05 13:40 . 2009-03-05 13:40 6819840 c:\windows\Installer\20490a.msp
+ 2009-05-12 12:12 . 2008-04-14 00:12 3558912 c:\windows\BricoPacks\SysFiles\82_moviemk.exe
+ 2009-05-12 12:12 . 2008-04-13 16:23 2479616 c:\windows\BricoPacks\SysFiles\81_msoeres.dll
+ 2009-05-12 12:12 . 2008-04-13 17:39 2897920 c:\windows\BricoPacks\SysFiles\76_xpsp2res.dll
+ 2009-05-12 12:12 . 2009-03-08 02:34 1206784 c:\windows\BricoPacks\SysFiles\65_urlmon.dll
+ 2009-05-12 12:12 . 2008-06-17 19:02 8461312 c:\windows\BricoPacks\SysFiles\51_shell32.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 1499136 c:\windows\BricoPacks\SysFiles\50_shdocvw.dll
+ 2009-05-12 12:12 . 2008-04-14 00:11 1025024 c:\windows\BricoPacks\SysFiles\5_browseui.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 1703936 c:\windows\BricoPacks\SysFiles\38_netshell.dll
+ 2009-05-12 12:12 . 2008-04-14 00:11 2061824 c:\windows\BricoPacks\SysFiles\33_mstscax.dll
+ 2009-05-12 12:12 . 2009-03-08 02:41 5937152 c:\windows\BricoPacks\SysFiles\30_mshtml.dll
+ 2009-05-12 12:12 . 2008-04-14 00:12 1033728 c:\windows\BricoPacks\SysFiles\14_explorer.exe
+ 2009-06-11 05:50 . 2009-04-30 21:22 1207808 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\urlmon.dll
+ 2009-06-11 05:50 . 2009-05-13 05:10 5936128 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\mshtml.dll
+ 2009-06-11 05:50 . 2009-04-30 21:22 1985024 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\iertutil.dll
+ 2009-04-17 10:50 . 2009-04-17 10:50 1847808 c:\windows\$hf_mig$\KB968537\SP3QFE\win32k.sys
+ 2009-03-08 13:48 . 2009-07-07 15:10 24539592 c:\windows\system32\mrt.exe
+ 2008-04-14 00:12 . 2008-06-17 19:02 12873216 c:\windows\ServicePackFiles\i386\shell32.dll
+ 2008-07-30 06:50 . 2008-07-30 06:50 12506112 c:\windows\Installer\48b114.msp
+ 2008-06-04 11:29 . 2008-06-04 11:29 16905728 c:\windows\Installer\48b0c9.msp
+ 2008-01-14 13:24 . 2008-01-14 13:24 10721280 c:\windows\Installer\48b063.msp
+ 2008-12-13 08:21 . 2008-12-13 08:21 10473472 c:\windows\Installer\412b20.msp
+ 2009-05-01 13:22 . 2009-05-01 13:22 11064832 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\ieframe.dll
+ 2007-07-27 06:10 . 2007-07-27 06:10 108331008 c:\windows\Installer\c5f030.msp
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2009-04-29 2799024]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Documents and Settings\\All Users\\Application Data\\Kaspersky Lab Setup Files\\Kaspersky Internet Security 7.0.1.325\\English\\setup.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Documents and Settings\\mahmoud\\My Documents\\برامج\\BM_Radio_v3.0\\BM Radio v3.0.exe"=

R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [13/12/2007 01:28 م 24592]
.
Contents of the 'Scheduled Tasks' folder

2009-07-18 c:\windows\Tasks\User_Feed_Synchronization-{DB43A56F-5903-466F-B499-A6624A85145F}.job
- c:\windows\system32\msfeedssync.exe [2007-08-14 01:36]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = local
IE: تحميل الكل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetAll.htm
IE: تحميل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEExt.htm
IE: تحميل محتوى FLV بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetVL.htm
LSP: c:\windows\system32\idmmbc.dll
TCP: {21C5CD6C-D7E4-43DB-81EF-AFE4EBFE85CA} = 217.66.226.8
FF - ProfilePath - c:\documents and settings\mahmoud\Application Data\Mozilla\Firefox\Profiles\pjcixlpe.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=3&q=
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?ei=UTF-8&fr=chrff-brandt_off&type=000104X001US&p=
FF - component: c:\documents and settings\mahmoud\Application Data\IDM\idmmzcc3\components\idmmzcc.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("media.enforce_same_site_origin", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("media.cache_size", 51200);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("media.ogg.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("media.wave.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("media.autoplay.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.urlbar.autocomplete.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("capability.policy.mailnews.*.wholeText", "noAccess");
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.storage.default_quota", 5120);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("content.sink.event_probe_rate", 3);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.http.prompt-temp-redirect", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("layout.css.dpi", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("layout.css.devPixelsPerPx", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("gestures.enable_single_finger_input", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.max_chrome_script_run_time", 0);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.tcp.sendbuffer", 131072);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("geo.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.remember_cert_checkbox_default_setting", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr", "moz35");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-cjkt", "moz35");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.blocklist.level", 2);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.urlbar.restrict.typed", "~");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.urlbar.default.behavior", 0);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.history", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.formdata", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.passwords", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.downloads", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cookies", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cache", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.sessions", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.offlineApps", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.siteSettings", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.history", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.formdata", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.passwords", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.downloads", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.cookies", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.cache", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.sessions", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.offlineApps", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.siteSettings", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.sanitize.migrateFx3Prefs", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.ssl_override_behavior", 2);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("security.alternate_certificate_error_page", "certerror");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.autostart", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.dont_prompt_on_enter", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("geo.wifi.uri", "https://www.google.com/loc/json");
.
.
------- File Associations -------
.
txtfile=c:\windows\notepad.exe %1
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
يجب عليك تسجيل الدخول او تسجيل لمشاهدة الرابط المخفي

Rootkit scan 2009-07-18 16:50
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{605d6468-2f7e-4450-a7c3-9cbe14ae9e73}]
@Denied: (Full) (Everyone)
"Model"=dword:000000c3
"Therad"=dword:0000001e
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,98,07,ff,fc,5d,
df,1c,2f,3b,8a,0a,32,11,89,01,b5,00,80,d7,ab,be,ac,0b,0d,2a,54,39,47,fa,2f,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):f7,e0,1c,84,04,0d,49,ed,6f,4f,e9,33,00,a2,46,10,f6,c2,5b,da,23,
29,2c,d7,34,87,c8,04,16,2a,59,cf,72,bf,a0,51,45,63,58,ff,00,00,00,00,00,00,\
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(1028)
c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll
c:\windows\system32\klogon.dll

- - - - - - - > 'lsass.exe'(1084)
c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll
c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll
c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll
c:\windows\system32\idmmbc.dll

- - - - - - - > 'explorer.exe'(380)
c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll
c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll
c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\MSVCR80.dll
c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\scrchpg.dll
c:\windows\system32\msi.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
c:\program files\Java\jre6\bin\jqs.exe
.
**************************************************************************
.
Completion time: 2009-07-18 16:56 - machine was rebooted
ComboFix-quarantined-files.txt 2009-07-18 14:56

Pre-Run: 10,313,531,392 bytes free
Post-Run: 10,314,776,576 bytes free

792 --- E O F --- 2009-07-15 19:43
 
توقيع : abu-hanafy
عودة
أعلى