Wirus nvsvc32.exe Bardzo duzy problem - zamulony komp

aska00704 · 3 Grudzień 2007 19:27

Mam bardzo duzy problem… Nie wiem co mam juz robic. Formatuje 4 raz i to nic nie daje. Mialam tego wirusa: “nvsvc32.exe”. Niby mi go wywalilo… Sformatowalam i dalej jest to samo… Wszystko mi muli… Komputer, internet… o ogladaniu filmow nie ma nawet mowy.

Daje loga z kompa ktory jest po formacie. Zainstalowane sa tylko sterowniki i neostrada. Dysk D:\ nie jest jeszcze sformatowany. da sie jeszcze cos z tym zrobic? Probowalam juz na rozne sposoby: Spyware Doctor, Antivir, Kaspersky. Kazdy z nich wykryl jakies badziewie i niby skasowal ale wiem ze cos jest nadal. Tylko co? Brak mi juz pomyslów co to moze byc i jak to naprawic Prosze o jakakolwiek pomoc ;(

Zdesperowana…

Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 20:18:57, on 2007-12-03 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\System32\FTRTSVC.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\ctfmon.exe C:\PROGRA~1\NEOSTR~1\neostradatp.exe C:\Program Files\Gadu-Gadu\gg.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = neostrada tp R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\NEOSTR~1\SEARCH~1.DLL O4 - HKLM…\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM…\Run: [nwiz] nwiz.exe /install O4 - HKLM…\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM…\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM…\Run: [AdslTaskBar] rundll32.exe stmctrl.dll,TaskBar O4 - HKLM…\Run: [WOOWATCH] C:\PROGRA~1\NEOSTR~1\Watch.exe O4 - HKLM…\Run: [WOOTASKBARICON] C:\PROGRA~1\NEOSTR~1\GestMaj.exe TaskBarIcon.exe O4 - HKCU…\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU…\Run: [Gadu-Gadu] “C:\Program Files\Gadu-Gadu\gg.exe” /tray O4 - HKUS\S-1-5-19…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘USŁUGA LOKALNA’) O4 - HKUS\S-1-5-20…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘USŁUGA SIECIOWA’) O4 - HKUS\S-1-5-18…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’) O4 - HKUS.DEFAULT…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’) O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra ‘Tools’ menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O17 - HKLM\System\CCS\Services\Tcpip…{B08D5FFC-1092-40AE-AC75-DDEF988C69CE}: NameServer = 194.204.159.1 217.98.63.164 O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe – End of file - 2777 bytes

bez_pseudonimu · 3 Grudzień 2007 19:39

Mialam tego wirusa: “nvsvc32.exe”

ciekawe bo to akurat plik sterownika od gafiki

Gutek · 3 Grudzień 2007 19:52

Daj log z ComboFix

aska00704 · 4 Grudzień 2007 18:20

ComboFix 07-12-02.7 - ppp 2007-12-04 19:06:56.1 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.2.1250.1.1045.18.362 [GMT 1:00] Running from: C:\Documents and Settings\ppp\Pulpit\ComboFix.exe * Created a new restore point . ComboFix encountered a terminal error!! Please upload this file - C:\ComboFix_error.dat to: http://www.bleepingcomputer.com/submit- … ?channel=4 ((((((((((((((((((((((((( Files Created from 2007-11-04 to 2007-12-04 ))))))))))))))))))))))))))))))) . 2007-12-04 19:10 . 2007-12-04 19:10 15,450 --a------ C:\ComboFix_error.dat 2007-12-04 18:53 . 2005-08-02 23:45 1,552 -ra------ C:\WINDOWS\system32\lxce.loc 2007-12-04 18:52 . 2005-04-28 07:17 65,536 -ra------ C:\WINDOWS\system32\lxcecfg.dll 2007-12-04 18:52 . 2004-08-03 22:58 15,104 --a------ C:\WINDOWS\system32\drivers\usbscan.sys 2007-12-04 18:52 . 2004-08-03 22:58 15,104 --a–c— C:\WINDOWS\system32\dllcache\usbscan.sys 2007-12-04 18:51 . 2001-10-26 17:29 87,040 --a------ C:\WINDOWS\system32\wiafbdrv.dll 2007-12-04 18:51 . 2001-10-26 17:29 87,040 --a–c— C:\WINDOWS\system32\dllcache\wiafbdrv.dll 2007-12-04 18:47 . 2007-12-04 18:52 2007-12-04 18:46 . 2007-12-04 18:49 2007-12-04 18:46 . 2007-12-04 18:49 2007-12-04 18:46 . 2007-12-04 18:53 1,272 --a------ C:\LXCEINST.csv 2007-12-04 18:46 . 2007-12-04 18:47 1,004 --a------ C:\LXCEINST.000 2007-12-04 18:46 . 2007-12-04 18:50 0 --a------ C:\lxcefire.csv 2007-12-04 18:46 . 2007-12-04 18:46 0 --a------ C:\lxcefire.000 2007-12-04 18:32 . 2007-12-04 18:45 2007-12-04 17:55 . 2007-11-20 21:28 68,586 --------- C:\WINDOWS\system32\drivers\nvscv32.exe 2007-12-03 20:30 . 2007-12-03 20:30 2007-12-03 20:18 . 2007-12-04 17:58 2007-12-03 20:05 . 2004-08-04 00:01 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys 2007-12-03 20:05 . 2001-08-17 22:59 3,072 --a------ C:\WINDOWS\system32\drivers\audstub.sys 2007-12-03 20:04 . 2004-10-29 09:50 3,736,704 --a------ C:\WINDOWS\system32\nv4_disp.dll 2007-12-03 20:04 . 2004-10-29 09:50 2,826,944 --a------ C:\WINDOWS\system32\drivers\nv4_mini.sys 2007-12-03 20:04 . 2004-10-29 09:50 2,826,944 --a–c— C:\WINDOWS\system32\dllcache\nv4_mini.sys 2007-12-03 20:04 . 2004-08-04 01:35 58,624 --a------ C:\WINDOWS\system32\drivers\redbook.sys 2007-12-03 20:04 . 2004-08-04 00:08 10,624 --a------ C:\WINDOWS\system32\drivers\gameenum.sys 2007-12-03 20:03 . 2004-08-04 01:44 77,312 --a------ C:\WINDOWS\system32\usbui.dll 2007-12-03 20:03 . 2004-08-04 00:07 44,672 --a------ C:\WINDOWS\system32\drivers\UAGP35.SYS 2007-12-03 20:03 . 2001-08-17 21:13 27,165 --a------ C:\WINDOWS\system32\drivers\fetnd5.sys 2007-12-03 20:02 . 2007-12-03 20:55 2007-12-03 20:01 . 2007-12-03 19:32 2007-12-03 20:01 . 2007-12-04 17:56 2007-12-03 20:01 . 2007-12-03 19:32 763,990 --a------ C:\WINDOWS\system32\PerfStringBackup.INI 2007-12-03 20:01 . 2007-12-03 19:16 4,293 --a------ C:\WINDOWS\ODBCINST.INI 2007-12-03 20:00 . 2007-12-03 20:00 2007-12-03 20:00 . 2007-12-03 20:00 2007-12-03 20:00 . 2007-12-03 19:08 2007-12-03 20:00 . 2007-12-03 20:00 2007-12-03 20:00 . 2007-12-03 20:00 2007-12-03 20:00 . 2007-12-03 20:00 2007-12-03 20:00 . 2007-12-03 20:00 2007-12-03 20:00 . 2007-12-03 20:00 2007-12-03 20:00 . 2007-12-03 19:55 2007-12-03 20:00 . 2007-12-03 19:17 2007-12-03 20:00 . 2007-12-03 19:11 . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2007-12-04 18:04 --------- d-----w C:\Program Files\neostrada tp 2007-12-04 16:58 --------- d-----w C:\Program Files\ZTE ZXDSL 852 2007-12-04 16:58 --------- d-----w C:\Program Files\Usługi online 2007-12-04 16:56 --------- d-----w C:\Program Files\Java 2007-12-04 16:55 9 --sh–r C:\Program Files\Desktop_.ini 2007-12-04 16:55 --------- d-----w C:\Program Files\C-Media 3D Audio 2007-12-03 18:51 --------- d–h--w C:\Program Files\InstallShield Installation Information 2007-12-03 18:51 --------- d-----w C:\Program Files\Common Files\InstallShield 2007-12-03 18:39 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\nView_Profiles 2007-12-03 18:17 --------- d-----w C:\Program Files\microsoft frontpage 2001-11-23 04:08 712,704 ----a-w C:\WINDOWS\inf\OTHER\AUDIO3D.DLL . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “CTFMON.EXE”=“C:\WINDOWS\system32\ctfmon.exe” [2004-08-04 13:00] “Gadu-Gadu”=“C:\Program Files\Gadu-Gadu\gg.exe” [2007-11-14 11:54] “nvscv32”=“C:\WINDOWS\system32\drivers\nvscv32.exe” [2007-11-20 21:28] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “NvCplDaemon”=“RUNDLL32.exe” [2004-08-04 13:00 C:\WINDOWS\system32\rundll32.exe] “nwiz”=“nwiz.exe” [2004-10-29 09:50 C:\WINDOWS\system32\nwiz.exe] “NvMediaCenter”=“RUNDLL32.exe” [2004-08-04 13:00 C:\WINDOWS\system32\rundll32.exe] “Cmaudio”=“RunDll32 cmicnfg.cpl” [] “AdslTaskBar”=“stmctrl.dll” [2006-06-02 12:01 C:\WINDOWS\system32\stmctrl.dll] “WOOWATCH”=“C:\PROGRA~1\NEOSTR~1\Watch.exe” [2004-08-23 13:49] “WOOTASKBARICON”=“C:\PROGRA~1\NEOSTR~1\GestMaj.exe” [2004-10-14 15:55] [HKEY_USERS.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] “CTFMON.EXE”=“C:\WINDOWS\system32\CTFMON.EXE” [2004-08-04 13:00]

Złączono Posta : 04.12.2007 (Wto) 19:22

Wyskakuje mi rowniez taki komunikat:

"nvscv32.exe - Brak dysku

W stacji nie ma dysku. Włóż dysk do stacji \Device\Harddisk1\DR3"

Mimo ze nic nie uruchamiam.

Gutek · 4 Grudzień 2007 20:56

Użyj ATF-Cleaner - http://www.atribune.org/ccount/click.php?id=1 i oczyść TEMP

Do kasacji:

Pobierz program SDFix

aska00704 · 5 Grudzień 2007 17:12

SDFix: Version 1.117


Run by ppp on 2007-12-05 at 18:00


Microsoft Windows XP [Wersja 5.1.2600]


Running From: C:\SDFix


Safe Mode:

Checking Services: 



Restoring Windows Registry Values

Restoring Windows Default Hosts File

Restoring Missing Security Center Service 


Rebooting...



Normal Mode:

Checking Files: 


Trojan Files Found:


C:\WINDOWS\system32\drivers\nvscv32.exe - Deleted





Removing Temp Files...


ADS Check:


C:\WINDOWS

No streams found. 


C:\WINDOWS\system32

No streams found. 


C:\WINDOWS\system32\svchost.exe

No streams found.


C:\WINDOWS\system32\ntoskrnl.exe

No streams found.




                                 Final Check:


catchme 0.3.1262.1 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2007-12-05 18:07:49

Windows 5.1.2600 Dodatek Service Pack 2 NTFS


scanning hidden processes ...


scanning hidden services & system hive ...


scanning hidden registry entries ...


[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Favorites\A\1\5\1c]

"Order"=hex:08,00,00,00,02,00,00,00,b8,01,00,00,01,00,00,00,04,00,00,00,8c,..


scanning hidden files ...


scan completed successfully

hidden processes: 0

hidden services: 0

hidden files: 0



Remaining Services:

------------------




Authorized Application Key Export:


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\\Program Files\\Gadu-Gadu\\gg.exe"="C:\\Program Files\\Gadu-Gadu\\gg.exe:*:Enabled:Gadu-Gadu - program główny"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"


Remaining Files:

---------------


File Backups: - C:\SDFix\backups\backups.zip


Files with Hidden Attributes:


Tue 20 Nov 2007 68,586 A.SHR --- "C:\Program Files\Gadu-Gadu\agent.exe"

Tue 20 Nov 2007 68,586 A.SHR --- "C:\Program Files\neostrada tp\File2Reg.exe"

Tue 20 Nov 2007 68,586 A.SHR --- "C:\Program Files\neostrada tp\Uninstall.exe"

Tue 20 Nov 2007 68,586 A.SHR --- "C:\Program Files\neostrada tp\UNWISE.EXE"

Tue 20 Nov 2007 68,586 A.SHR --- "C:\Program Files\C-Media 3D Audio\Play3D\CmiPlay3D.exe"

Tue 20 Nov 2007 68,586 A.SHR --- "C:\Program Files\neostrada tp\inst\flashplayer7_winax.exe"

Tue 20 Nov 2007 68,586 A.SHR --- "C:\Program Files\neostrada tp\SafeInstall\neostrada.exe"

Tue 20 Nov 2007 68,586 A.SHR --- "C:\Program Files\Trend Micro\HijackThis\HijackThis.exe"

Tue 20 Nov 2007 68,586 A.SHR --- "C:\Program Files\ZTE ZXDSL 852\Disk1\DSLTest.exe"

Tue 20 Nov 2007 68,586 A.SHR --- "C:\Program Files\ZTE ZXDSL 852\Disk1\stmtrace.exe"

Tue 20 Nov 2007 68,586 A.SHR --- "C:\Program Files\ZTE ZXDSL 852\Disk1\usbenum.exe"

Tue 20 Nov 2007 68,586 A.SHR --- "C:\Program Files\C-Media 3D Audio\Driver\Win_XP\CMIRMDRV.EXE"

Tue 20 Nov 2007 68,586 A.SHR --- "C:\Program Files\C-Media 3D Audio\Driver\Win_XP\SmWizard.exe"

Tue 20 Nov 2007 68,586 A.SHR --- "C:\Program Files\Java\j2re1.4.0_03\bin\jinstall.exe"

Wed 5 Dec 2007 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\1738c621b33e51e95e7a1d6339d42049\BIT3.tmp"


Finished!

Złączono Posta : 05.12.2007 (Sro) 18:17

Jak skanowalam w trybie awaryjnym wyskoczyl mi napis ze nie mozna otworzyc (czy zeskanowac) jakiegos pliku. Mial on takie dziwne znaczki. Ale nie bylo podane gdzie ten plik sie znajduje. To byl tak jakby klucz czy cos… Nie znam sie

I tego nie moge znalesc… C:\Program Files\Desktop_.ini

Gutek · 5 Grudzień 2007 21:10

Daj nowy log z Combo

aska00704 · 6 Grudzień 2007 15:24

ComboFix 07-12-02.7 - ppp 2007-12-06 16:15:44.2 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.2.1250.1.1045.18.343 [GMT 1:00] Running from: C:\Documents and Settings\ppp\Pulpit\ComboFix.exe . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\Program Files\C-Media 3D Audio\Desktop_.ini C:\Program Files\C-Media 3D Audio\Driver\Advance\Desktop_.ini C:\Program Files\C-Media 3D Audio\Driver\Advance\MUSIC\Desktop_.ini C:\Program Files\C-Media 3D Audio\Driver\Desktop_.ini C:\Program Files\C-Media 3D Audio\Driver\Win_XP\Desktop_.ini C:\Program Files\C-Media 3D Audio\Play3D\Desktop_.ini C:\Program Files\C-Media 3D Audio\Play3D\MUSIC\Desktop_.ini C:\Program Files\Desktop_.ini C:\Program Files\Gadu-Gadu\Desktop_.ini C:\Program Files\Gadu-Gadu\emots\1\Desktop_.ini C:\Program Files\Gadu-Gadu\emots\2\Desktop_.ini C:\Program Files\Gadu-Gadu\emots\3\Desktop_.ini C:\Program Files\Gadu-Gadu\emots\Desktop_.ini C:\Program Files\Gadu-Gadu\skins_dialup\Desktop_.ini C:\Program Files\Gadu-Gadu\skins\Desktop_.ini C:\Program Files\Gadu-Gadu\skins\modern\Desktop_.ini C:\Program Files\Gadu-Gadu\skins\modern\radio\Desktop_.ini C:\Program Files\Gadu-Gadu\skins\modern\radio\maxi\Desktop_.ini C:\Program Files\Gadu-Gadu\skins\modern\radio\mini\Desktop_.ini C:\Program Files\Gadu-Gadu\skins\modern\rssnews\Desktop_.ini C:\Program Files\Gadu-Gadu\skins\modern\toolbar\Desktop_.ini C:\Program Files\Gadu-Gadu\sounds\Desktop_.ini C:\Program Files\Java\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\bin\client\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\bin\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\applet\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\cmm\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\ext\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\fonts\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\i386\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\images\cursors\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\images\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\security\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\zi\Africa\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\zi\America\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\zi\America\Indiana\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\zi\America\Kentucky\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\zi\America\North_Dakota\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\zi\Antarctica\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\zi\Asia\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\zi\Atlantic\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\zi\Australia\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\zi\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\zi\Etc\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\zi\Europe\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\zi\Indian\Desktop_.ini C:\Program Files\Java\j2re1.4.0_03\lib\zi\Pacific\Desktop_.ini C:\Program Files\Lexmark 4300 Series\Desktop_.ini C:\Program Files\Lexmark 4300 Series\Drivers\COMMON\Desktop_.ini C:\Program Files\Lexmark 4300 Series\Drivers\COMMON\POLISH\Desktop_.ini C:\Program Files\Lexmark 4300 Series\Drivers\Desktop_.ini C:\Program Files\Lexmark 4300 Series\Drivers\I386\Desktop_.ini C:\Program Files\Lexmark 4300 Series\Drivers\I386\POLISH\Desktop_.ini C:\Program Files\MSN Gaming Zone\Desktop_.ini C:\Program Files\neostrada tp\Component\Desktop_.ini C:\Program Files\neostrada tp\Desktop_.ini C:\Program Files\neostrada tp\DetectADSLEthernet\Desktop_.ini C:\Program Files\neostrada tp\DetectADSLUSB\Desktop_.ini C:\Program Files\neostrada tp\Download\Desktop_.ini C:\Program Files\neostrada tp\DriversADSLUSB\Desktop_.ini C:\Program Files\neostrada tp\Icones\Desktop_.ini C:\Program Files\neostrada tp\IniFileADSLUSB\Desktop_.ini C:\Program Files\neostrada tp\inst\Desktop_.ini C:\Program Files\neostrada tp\instADSLEthernet\Desktop_.ini C:\Program Files\neostrada tp\instADSLUSB\Desktop_.ini C:\Program Files\neostrada tp\instRTCRNIS\Desktop_.ini C:\Program Files\neostrada tp\LiensAllUsersSupprimes\Desktop_.ini C:\Program Files\neostrada tp\PCARAWETHER\Desktop_.ini C:\Program Files\neostrada tp\PCARAWETHER\Exe\Desktop_.ini C:\Program Files\neostrada tp\PCARAWETHER\GP\Desktop_.ini C:\Program Files\neostrada tp\PCARAWETHER\PRO\Desktop_.ini C:\Program Files\neostrada tp\SafeInstall\Desktop_.ini C:\Program Files\neostrada tp\SafeInstall\UserGuide\1045\Desktop_.ini C:\Program Files\neostrada tp\SafeInstall\UserGuide\Desktop_.ini C:\Program Files\neostrada tp\skin\Default\Desktop_.ini C:\Program Files\neostrada tp\skin\Default\main\Desktop_.ini C:\Program Files\neostrada tp\skin\Desktop_.ini C:\Program Files\Trend Micro\Desktop_.ini C:\Program Files\Trend Micro\HijackThis\Desktop_.ini C:\Program Files\Uninstall Information\Desktop_.ini C:\Program Files\Usługi online\Desktop_.ini C:\Program Files\xerox\Desktop_.ini C:\Program Files\xerox\nwwia\Desktop_.ini C:\Program Files\ZTE ZXDSL 852\Desktop_.ini C:\Program Files\ZTE ZXDSL 852\Disk1\Desktop_.ini C:\Program Files\ZTE ZXDSL 852\Disk1\Ins\Desktop_.ini C:\qoobox\BackEnv\Desktop_.ini C:\qoobox\Desktop_.ini C:\qoobox\Hiv-backup\Desktop_.ini C:\qoobox\Hiv-backup\Users\00000001\Desktop_.ini C:\qoobox\Hiv-backup\Users\00000002\Desktop_.ini C:\qoobox\Hiv-backup\Users\00000003\Desktop_.ini C:\qoobox\Hiv-backup\Users\00000004\Desktop_.ini C:\qoobox\Hiv-backup\Users\00000005\Desktop_.ini C:\qoobox\Hiv-backup\Users\00000006\Desktop_.ini C:\qoobox\Hiv-backup\Users\Desktop_.ini C:\Temp\Desktop_.ini . ((((((((((((((((((((((((( Files Created from 2007-11-06 to 2007-12-06 ))))))))))))))))))))))))))))))) . 2007-12-05 17:58 . 2007-12-05 17:59 2007-12-05 17:12 . 2007-12-05 17:12 2007-12-04 21:13 . 2004-08-04 13:00 221,184 --a------ C:\WINDOWS\system32\wmpns.dll 2007-12-04 21:08 . 2005-06-28 09:21 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe 2007-12-04 18:54 . 2006-06-01 19:49 163,840 -----c— C:\WINDOWS\system32\dllcache\jgdw400.dll 2007-12-04 18:54 . 2006-06-01 19:49 27,648 -----c— C:\WINDOWS\system32\dllcache\jgpl400.dll 2007-12-04 18:53 . 2005-08-02 23:45 1,552 -ra------ C:\WINDOWS\system32\lxce.loc 2007-12-04 18:52 . 2005-04-28 07:17 65,536 -ra------ C:\WINDOWS\system32\lxcecfg.dll 2007-12-04 18:52 . 2004-08-03 22:58 15,104 --a------ C:\WINDOWS\system32\drivers\usbscan.sys 2007-12-04 18:52 . 2004-08-03 22:58 15,104 --a–c— C:\WINDOWS\system32\dllcache\usbscan.sys 2007-12-04 18:51 . 2001-10-26 17:29 87,040 --a------ C:\WINDOWS\system32\wiafbdrv.dll 2007-12-04 18:51 . 2001-10-26 17:29 87,040 --a–c— C:\WINDOWS\system32\dllcache\wiafbdrv.dll 2007-12-04 18:49 . 2006-03-17 01:38 28,672 --------- C:\WINDOWS\system32\verclsid.exe 2007-12-04 18:47 . 2007-12-06 16:17 2007-12-04 18:46 . 2007-12-06 16:18 2007-12-04 18:46 . 2007-12-04 18:53 1,272 --a------ C:\LXCEINST.csv 2007-12-04 18:46 . 2007-12-04 18:47 1,004 --a------ C:\LXCEINST.000 2007-12-04 18:46 . 2007-12-04 18:50 0 --a------ C:\lxcefire.csv 2007-12-04 18:46 . 2007-12-04 18:46 0 --a------ C:\lxcefire.000 2007-12-04 18:32 . 2007-12-05 20:16 2007-12-03 20:30 . 2007-12-03 20:30 2007-12-03 20:18 . 2007-12-06 16:18 2007-12-03 20:05 . 2004-08-04 00:01 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys 2007-12-03 20:05 . 2001-08-17 22:59 3,072 --a------ C:\WINDOWS\system32\drivers\audstub.sys 2007-12-03 20:04 . 2004-10-29 09:50 3,736,704 --a------ C:\WINDOWS\system32\nv4_disp.dll 2007-12-03 20:04 . 2004-10-29 09:50 2,826,944 --a------ C:\WINDOWS\system32\drivers\nv4_mini.sys 2007-12-03 20:04 . 2004-10-29 09:50 2,826,944 --a–c— C:\WINDOWS\system32\dllcache\nv4_mini.sys 2007-12-03 20:04 . 2004-08-04 01:35 58,624 --a------ C:\WINDOWS\system32\drivers\redbook.sys 2007-12-03 20:04 . 2004-08-04 00:08 10,624 --a------ C:\WINDOWS\system32\drivers\gameenum.sys 2007-12-03 20:03 . 2004-08-04 01:44 77,312 --a------ C:\WINDOWS\system32\usbui.dll 2007-12-03 20:03 . 2004-08-04 00:07 44,672 --a------ C:\WINDOWS\system32\drivers\UAGP35.SYS 2007-12-03 20:03 . 2001-08-17 21:13 27,165 --a------ C:\WINDOWS\system32\drivers\fetnd5.sys 2007-12-03 20:02 . 2007-12-03 20:55 2007-12-03 20:01 . 2007-12-03 19:32 2007-12-03 20:01 . 2007-12-06 16:17 2007-12-03 20:01 . 2007-12-06 05:11 763,990 --a------ C:\WINDOWS\system32\PerfStringBackup.INI 2007-12-03 20:01 . 2007-12-03 19:16 4,293 --a------ C:\WINDOWS\ODBCINST.INI 2007-12-03 20:01 . 2007-12-05 20:17 1,374 --a------ C:\WINDOWS\imsins.BAK 2007-12-03 20:00 . 2007-12-03 20:00 2007-12-03 20:00 . 2007-12-03 20:00 2007-12-03 20:00 . 2007-12-03 19:08 2007-12-03 20:00 . 2007-12-03 20:00 2007-12-03 20:00 . 2007-12-03 20:00 2007-12-03 20:00 . 2007-12-03 20:00 2007-12-03 20:00 . 2007-12-03 20:00 2007-12-03 20:00 . 2007-12-03 20:00 2007-12-03 20:00 . 2007-12-03 19:55 2007-12-03 20:00 . 2007-12-03 19:17 2007-12-03 20:00 . 2007-12-03 19:11 . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2007-12-06 15:18 --------- d-----w C:\Program Files\ZTE ZXDSL 852 2007-12-06 15:18 --------- d-----w C:\Program Files\Usługi online 2007-12-06 15:17 --------- d-----w C:\Program Files\neostrada tp 2007-12-06 15:17 --------- d-----w C:\Program Files\Java 2007-12-06 15:17 --------- d-----w C:\Program Files\C-Media 3D Audio 2007-12-03 18:51 --------- d–h--w C:\Program Files\InstallShield Installation Information 2007-12-03 18:51 --------- d-----w C:\Program Files\Common Files\InstallShield 2007-12-03 18:39 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\nView_Profiles 2007-12-03 18:17 --------- d-----w C:\Program Files\microsoft frontpage 2001-11-23 04:08 712,704 ----a-w C:\WINDOWS\inf\OTHER\AUDIO3D.DLL . ((((((((((((((((((((((((((((( snapshot@2007-12-04_19.11.13.09 ))))))))))))))))))))))))))))))))))))))))) . + 2005-06-15 17:49:36 297,984 ----a-w C:\WINDOWS$hf_mig$\KB899587\SP2QFE\kerberos.dll + 2005-02-24 19:36:08 16,096 ----a-w C:\WINDOWS$hf_mig$\KB899587\spmsg.dll + 2005-02-24 19:36:08 212,704 ----a-w C:\WINDOWS$hf_mig$\KB899587\spuninst.exe + 2005-06-29 15:54:32 30,720 ----a-w C:\WINDOWS$hf_mig$\KB899587\update\arpidfix.exe + 2005-02-24 19:36:08 22,240 ----a-w C:\WINDOWS$hf_mig$\KB899587\update\spcustom.dll + 2005-02-24 19:36:08 725,728 ----a-w C:\WINDOWS$hf_mig$\KB899587\update\update.exe + 2005-02-24 19:36:08 387,296 ----a-w C:\WINDOWS$hf_mig$\KB899587\update\updspapi.dll + 2007-11-20 15:04:32 1,523,536 ----a-w C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe + 2006-02-15 00:22:26 142,464 ------w C:\WINDOWS\Driver Cache\i386\aec.sys + 2006-03-17 00:33:10 262,784 ------w C:\WINDOWS\Driver Cache\i386\http.sys + 2006-06-14 08:47:45 172,416 ------w C:\WINDOWS\Driver Cache\i386\kmixer.sys + 2006-05-05 09:41:45 453,120 ------w C:\WINDOWS\Driver Cache\i386\mrxsmb.sys + 2007-02-28 16:04:45 2,137,600 ------w C:\WINDOWS\Driver Cache\i386\ntkrnlmp.exe + 2007-02-28 16:04:56 2,058,880 ------w C:\WINDOWS\Driver Cache\i386\ntkrnlpa.exe + 2007-02-28 16:04:47 2,017,280 ------w C:\WINDOWS\Driver Cache\i386\ntkrpamp.exe + 2007-02-28 16:04:58 2,181,632 ------w C:\WINDOWS\Driver Cache\i386\ntoskrnl.exe + 2006-06-14 08:47:46 6,400 ------w C:\WINDOWS\Driver Cache\i386\splitter.sys + 2006-06-14 09:00:45 82,944 ------w C:\WINDOWS\Driver Cache\i386\wdmaud.sys + 2007-12-05 14:08:58 163,328 ----a-w C:\WINDOWS\ERUNT\SDFIX\ERDNT.EXE + 2007-12-05 16:59:21 724,992 ----a-w C:\WINDOWS\ERUNT\SDFIX\Users\00000001\NTUSER.DAT + 2007-12-05 16:59:21 8,192 ----a-w C:\WINDOWS\ERUNT\SDFIX\Users\00000002\UsrClass.dat + 2007-12-05 14:08:58 163,328 ----a-w C:\WINDOWS\ERUNT\SDFIX_First_Run\ERDNT.EXE + 2007-12-05 16:59:09 724,992 ----a-w C:\WINDOWS\ERUNT\SDFIX_First_Run\Users\00000001\NTUSER.DAT + 2007-12-05 16:59:09 8,192 ----a-w C:\WINDOWS\ERUNT\SDFIX_First_Run\Users\00000002\UsrClass.dat - 2004-08-04 12:00:00 1,033,728 ----a-w C:\WINDOWS\explorer.exe + 2007-06-13 13:23:49 1,034,752 ----a-w C:\WINDOWS\explorer.exe - 2004-08-04 12:00:00 10,752 ----a-w C:\WINDOWS\hh.exe + 2005-05-26 23:22:01 10,752 ----a-w C:\WINDOWS\hh.exe - 2004-08-04 12:00:00 41,984 ----a-w C:\WINDOWS\msagent\agentdp2.dll + 2006-10-12 14:05:18 42,496 ----a-w C:\WINDOWS\msagent\agentdp2.dll - 2004-08-04 12:00:00 58,880 ----a-w C:\WINDOWS\msagent\agentdpv.dll + 2007-03-09 13:48:14 57,344 ----a-w C:\WINDOWS\msagent\agentdpv.dll - 2004-08-04 12:00:00 256,512 ----a-w C:\WINDOWS\msagent\agentsvr.exe + 2006-10-12 11:09:53 256,512 ----a-w C:\WINDOWS\msagent\agentsvr.exe - 2007-12-03 18:15:54 8,738 ----a-w C:\WINDOWS\pchealth\helpctr\Config\Cntstore.bin + 2007-12-04 18:26:58 8,972 ----a-w C:\WINDOWS\pchealth\helpctr\Config\Cntstore.bin - 2007-12-03 18:15:47 76,487 ----a-w C:\WINDOWS\pchealth\helpctr\OfflineCache\index.dat + 2007-12-04 18:30:10 76,487 ----a-w C:\WINDOWS\pchealth\helpctr\OfflineCache\index.dat - 2004-08-04 12:00:00 100,352 ----a-w C:\WINDOWS\system32\6to4svc.dll + 2006-08-16 11:59:43 100,352 ----a-w C:\WINDOWS\system32\6to4svc.dll - 2004-08-04 12:00:00 56,832 ----a-w C:\WINDOWS\system32\authz.dll + 2005-03-02 18:18:38 56,832 ----a-w C:\WINDOWS\system32\authz.dll - 2004-08-04 12:00:00 1,017,344 ----a-w C:\WINDOWS\system32\browseui.dll + 2007-08-22 13:19:16 1,022,976 ----a-w C:\WINDOWS\system32\browseui.dll - 2004-08-04 12:00:00 229,888 ----a-w C:\WINDOWS\system32\catsrv.dll + 2005-07-26 04:42:32 225,792 ----a-w C:\WINDOWS\system32\catsrv.dll - 2004-08-04 12:00:00 628,224 ----a-w C:\WINDOWS\system32\catsrvut.dll + 2005-07-26 04:42:33 625,152 ----a-w C:\WINDOWS\system32\catsrvut.dll - 2004-08-04 12:00:00 151,040 ----a-w C:\WINDOWS\system32\cdfview.dll + 2007-08-22 13:19:16 151,552 ----a-w C:\WINDOWS\system32\cdfview.dll - 2004-08-04 12:00:00 2,067,968 ----a-w C:\WINDOWS\system32\cdosys.dll + 2005-09-10 01:55:33 2,067,968 ----a-w C:\WINDOWS\system32\cdosys.dll - 2004-08-04 12:00:00 69,120 ----a-w C:\WINDOWS\system32\ciodm.dll + 2006-06-22 05:18:13 69,120 ----a-w C:\WINDOWS\system32\ciodm.dll - 2004-08-04 12:00:00 110,080 ----a-w C:\WINDOWS\system32\clbcatex.dll + 2005-07-26 04:42:33 110,080 ----a-w C:\WINDOWS\system32\clbcatex.dll - 2004-08-04 12:00:00 501,248 ----a-w C:\WINDOWS\system32\clbcatq.dll + 2005-07-26 04:42:33 498,688 ----a-w C:\WINDOWS\system32\clbcatq.dll - 2004-08-04 12:00:00 62,464 ----a-w C:\WINDOWS\system32\colbact.dll + 2005-07-26 04:42:33 60,416 ----a-w C:\WINDOWS\system32\colbact.dll - 2004-08-04 12:00:00 195,584 ----a-w C:\WINDOWS\system32\Com\comadmin.dll + 2005-07-26 04:42:33 195,072 ----a-w C:\WINDOWS\system32\Com\comadmin.dll - 2004-08-04 12:00:00 611,328 ----a-w C:\WINDOWS\system32\comctl32.dll + 2006-08-25 15:51:15 617,472 ----a-w C:\WINDOWS\system32\comctl32.dll - 2004-08-04 12:00:00 82,432 ----a-w C:\WINDOWS\system32\comrepl.dll + 2005-07-26 04:42:33 97,792 ----a-w C:\WINDOWS\system32\comrepl.dll - 2004-08-04 12:00:00 1,251,840 ----a-w C:\WINDOWS\system32\comsvcs.dll + 2005-07-26 04:42:34 1,267,200 ----a-w C:\WINDOWS\system32\comsvcs.dll - 2004-08-04 12:00:00 540,160 ----a-w C:\WINDOWS\system32\comuid.dll + 2005-07-26 04:42:34 540,160 ----a-w C:\WINDOWS\system32\comuid.dll - 2004-08-04 12:00:00 1,055,232 ----a-w C:\WINDOWS\system32\danim.dll + 2007-08-22 13:19:16 1,055,744 ----a-w C:\WINDOWS\system32\danim.dll - 2004-08-04 12:00:00 110,592 ----a-w C:\WINDOWS\system32\dhcpcsvc.dll + 2006-05-19 13:26:53 111,104 ----a-w C:\WINDOWS\system32\dhcpcsvc.dll - 2004-08-04 12:00:00 100,352 -c–a-w C:\WINDOWS\system32\dllcache\6to4svc.dll + 2006-08-16 11:59:43 100,352 -c–a-w C:\WINDOWS\system32\dllcache\6to4svc.dll - 2004-08-03 21:39:38 142,464 -c–a-w C:\WINDOWS\system32\dllcache\aec.sys + 2006-02-15 00:22:26 142,464 -c–a-w C:\WINDOWS\system32\dllcache\aec.sys - 2004-08-04 12:00:00 41,984 -c–a-w C:\WINDOWS\system32\dllcache\agentdp2.dll + 2006-10-12 14:05:18 42,496 -c–a-w C:\WINDOWS\system32\dllcache\agentdp2.dll - 2004-08-04 12:00:00 58,880 -c–a-w C:\WINDOWS\system32\dllcache\agentdpv.dll + 2007-03-09 13:48:14 57,344 -c–a-w C:\WINDOWS\system32\dllcache\agentdpv.dll - 2004-08-04 12:00:00 256,512 -c–a-w C:\WINDOWS\system32\dllcache\agentsvr.exe + 2006-10-12 11:09:53 256,512 -c–a-w C:\WINDOWS\system32\dllcache\agentsvr.exe - 2004-08-04 12:00:00 56,832 -c–a-w C:\WINDOWS\system32\dllcache\authz.dll + 2005-03-02 18:18:38 56,832 -c–a-w C:\WINDOWS\system32\dllcache\authz.dll - 2004-08-04 12:00:00 1,017,344 -c–a-w C:\WINDOWS\system32\dllcache\browseui.dll + 2007-08-22 13:19:16 1,022,976 -c–a-w C:\WINDOWS\system32\dllcache\browseui.dll - 2004-08-04 12:00:00 229,888 -c–a-w C:\WINDOWS\system32\dllcache\catsrv.dll + 2005-07-26 04:42:32 225,792 -c–a-w C:\WINDOWS\system32\dllcache\catsrv.dll - 2004-08-04 12:00:00 628,224 -c–a-w C:\WINDOWS\system32\dllcache\catsrvut.dll + 2005-07-26 04:42:33 625,152 -c–a-w C:\WINDOWS\system32\dllcache\catsrvut.dll - 2004-08-04 12:00:00 151,040 -c–a-w C:\WINDOWS\system32\dllcache\cdfview.dll + 2007-08-22 13:19:16 151,552 -c–a-w C:\WINDOWS\system32\dllcache\cdfview.dll - 2004-08-04 12:00:00 2,067,968 -c–a-w C:\WINDOWS\system32\dllcache\cdosys.dll + 2005-09-10 01:55:33 2,067,968 -c–a-w C:\WINDOWS\system32\dllcache\cdosys.dll - 2004-08-04 12:00:00 69,120 -c–a-w C:\WINDOWS\system32\dllcache\ciodm.dll + 2006-06-22 05:18:13 69,120 -c–a-w C:\WINDOWS\system32\dllcache\ciodm.dll - 2004-08-04 12:00:00 110,080 -c–a-w C:\WINDOWS\system32\dllcache\clbcatex.dll + 2005-07-26 04:42:33 110,080 -c–a-w C:\WINDOWS\system32\dllcache\clbcatex.dll - 2004-08-04 12:00:00 501,248 -c–a-w C:\WINDOWS\system32\dllcache\clbcatq.dll + 2005-07-26 04:42:33 498,688 -c–a-w C:\WINDOWS\system32\dllcache\clbcatq.dll - 2004-08-04 12:00:00 62,464 -c–a-w C:\WINDOWS\system32\dllcache\colbact.dll + 2005-07-26 04:42:33 60,416 -c–a-w C:\WINDOWS\system32\dllcache\colbact.dll - 2004-08-04 12:00:00 195,584 -c–a-w C:\WINDOWS\system32\dllcache\comadmin.dll + 2005-07-26 04:42:33 195,072 -c–a-w C:\WINDOWS\system32\dllcache\comadmin.dll - 2004-08-04 12:00:00 611,328 -c–a-w C:\WINDOWS\system32\dllcache\comctl32.dll + 2006-08-25 15:51:15 617,472 -c–a-w C:\WINDOWS\system32\dllcache\comctl32.dll - 2004-08-04 12:00:00 82,432 -c–a-w C:\WINDOWS\system32\dllcache\comrepl.dll + 2005-07-26 04:42:33 97,792 -c–a-w C:\WINDOWS\system32\dllcache\comrepl.dll - 2004-08-04 12:00:00 1,251,840 -c–a-w C:\WINDOWS\system32\dllcache\comsvcs.dll + 2005-07-26 04:42:34 1,267,200 -c–a-w C:\WINDOWS\system32\dllcache\comsvcs.dll - 2004-08-04 12:00:00 540,160 -c–a-w C:\WINDOWS\system32\dllcache\comuid.dll + 2005-07-26 04:42:34 540,160 -c–a-w C:\WINDOWS\system32\dllcache\comuid.dll - 2004-08-04 12:00:00 1,055,232 -c–a-w C:\WINDOWS\system32\dllcache\danim.dll + 2007-08-22 13:19:16 1,055,744 -c–a-w C:\WINDOWS\system32\dllcache\danim.dll - 2004-08-04 12:00:00 110,592 -c–a-w C:\WINDOWS\system32\dllcache\dhcpcsvc.dll + 2006-05-19 13:26:53 111,104 -c–a-w C:\WINDOWS\system32\dllcache\dhcpcsvc.dll - 2004-08-04 12:00:00 81,408 -c–a-w C:\WINDOWS\system32\dllcache\directdb.dll + 2007-05-16 15:18:58 86,528 -c–a-w C:\WINDOWS\system32\dllcache\directdb.dll - 2004-08-04 12:00:00 148,480 -c–a-w C:\WINDOWS\system32\dllcache\dnsapi.dll + 2006-06-26 17:45:40 148,480 -c–a-w C:\WINDOWS\system32\dllcache\dnsapi.dll - 2004-08-04 12:00:00 499,229 -c–a-w C:\WINDOWS\system32\dllcache\dxmasf.dll + 2006-08-24 12:18:20 499,766 -c–a-w C:\WINDOWS\system32\dllcache\dxmasf.dll - 2004-08-04 12:00:00 357,888 -c–a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll + 2007-08-22 13:19:17 357,888 -c–a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll - 2004-08-04 12:00:00 201,728 -c–a-w C:\WINDOWS\system32\dllcache\dxtrans.dll + 2007-08-22 13:19:17 205,312 -c–a-w C:\WINDOWS\system32\dllcache\dxtrans.dll - 2004-08-04 12:00:00 243,200 -c–a-w C:\WINDOWS\system32\dllcache\es.dll + 2005-07-26 04:42:34 243,200 -c–a-w C:\WINDOWS\system32\dllcache\es.dll - 2004-08-04 12:00:00 1,092,608 -c–a-w C:\WINDOWS\system32\dllcache\esent.dll + 2005-10-20 22:30:53 1,092,608 -c–a-w C:\WINDOWS\system32\dllcache\esent.dll - 2004-08-04 12:00:00 1,033,728 -c–a-w C:\WINDOWS\system32\dllcache\explorer.exe + 2007-06-13 13:23:49 1,034,752 -c–a-w C:\WINDOWS\system32\dllcache\explorer.exe - 2004-08-04 12:00:00 55,808 -c–a-w C:\WINDOWS\system32\dllcache\extmgr.dll + 2007-08-22 13:19:17 55,808 -c–a-w C:\WINDOWS\system32\dllcache\extmgr.dll - 2004-08-04 12:00:00 16,896 -c–a-w C:\WINDOWS\system32\dllcache\fltlib.dll + 2006-08-21 12:28:21 16,896 -c–a-w C:\WINDOWS\system32\dllcache\fltlib.dll - 2004-08-04 12:00:00 22,528 -c–a-w C:\WINDOWS\system32\dllcache\fltmc.exe + 2006-08-21 09:14:58 23,040 -c–a-w C:\WINDOWS\system32\dllcache\fltmc.exe - 2004-08-04 12:00:00 124,800 -c–a-w C:\WINDOWS\system32\dllcache\fltmgr.sys + 2006-08-21 09:14:58 128,896 -c–a-w C:\WINDOWS\system32\dllcache\fltmgr.sys - 2004-08-04 12:00:00 79,360 -c–a-w C:\WINDOWS\system32\dllcache\fontsub.dll + 2005-10-17 21:21:40 80,896 -c–a-w C:\WINDOWS\system32\dllcache\fontsub.dll - 2004-08-04 12:00:00 278,016 -c–a-w C:\WINDOWS\system32\dllcache\gdi32.dll + 2007-06-19 13:32:56 282,112 -c–a-w C:\WINDOWS\system32\dllcache\gdi32.dll - 2004-08-04 12:00:00 10,752 -c–a-w C:\WINDOWS\system32\dllcache\hh.exe + 2005-05-26 23:22:01 10,752 -c–a-w C:\WINDOWS\system32\dllcache\hh.exe - 2004-08-04 12:00:00 38,912 -c–a-w C:\WINDOWS\system32\dllcache\hhsetup.dll + 2005-05-27 02:08:15 41,472 -c–a-w C:\WINDOWS\system32\dllcache\hhsetup.dll - 2004-08-04 12:00:00 77,850 -c–a-w C:\WINDOWS\system32\dllcache\hlink.dll + 2006-07-21 08:29:01 72,704 -c–a-w C:\WINDOWS\system32\dllcache\hlink.dll - 2004-08-04 12:00:00 253,952 -c–a-w C:\WINDOWS\system32\dllcache\icm32.dll + 2005-06-29 01:52:57 254,976 -c–a-w C:\WINDOWS\system32\dllcache\icm32.dll - 2004-08-04 12:00:00 18,432 -c–a-w C:\WINDOWS\system32\dllcache\iedw.exe + 2007-08-21 10:30:45 18,432 -c–a-w C:\WINDOWS\system32\dllcache\iedw.exe - 2004-08-04 12:00:00 249,344 -c–a-w C:\WINDOWS\system32\dllcache\iepeers.dll + 2007-08-22 13:19:17 251,392 -c–a-w C:\WINDOWS\system32\dllcache\iepeers.dll - 2004-08-04 12:00:00 678,400 -c–a-w C:\WINDOWS\system32\dllcache\inetcomm.dll + 2007-08-21 06:18:06 683,520 -c–a-w C:\WINDOWS\system32\dllcache\inetcomm.dll - 2004-08-04 12:00:00 96,768 -c–a-w C:\WINDOWS\system32\dllcache\inseng.dll + 2007-08-22 13:19:17 96,768 -c–a-w C:\WINDOWS\system32\dllcache\inseng.dll - 2004-08-04 12:00:00 95,744 -c–a-w C:\WINDOWS\system32\dllcache\iphlpapi.dll + 2006-05-19 13:26:53 95,744 -c–a-w C:\WINDOWS\system32\dllcache\iphlpapi.dll - 2004-08-04 12:00:00 134,912 -c–a-w C:\WINDOWS\system32\dllcache\ipnat.sys + 2004-09-29 22:28:37 134,912 -c–a-w C:\WINDOWS\system32\dllcache\ipnat.sys - 2004-08-04 12:00:00 143,872 -c–a-w C:\WINDOWS\system32\dllcache\itircl.dll + 2005-05-27 02:08:15 155,136 -c–a-w C:\WINDOWS\system32\dllcache\itircl.dll - 2004-08-04 12:00:00 134,144 -c–a-w C:\WINDOWS\system32\dllcache\itss.dll + 2005-05-27 02:08:15 137,216 -c–a-w C:\WINDOWS\system32\dllcache\itss.dll - 2004-08-04 12:00:00 450,560 -c–a-w C:\WINDOWS\system32\dllcache\jscript.dll + 2006-05-18 05:43:42 450,560 -c–a-w C:\WINDOWS\system32\dllcache\jscript.dll - 2004-08-04 12:00:00 15,872 -c–a-w C:\WINDOWS\system32\dllcache\jsproxy.dll + 2007-08-22 13:19:17 16,384 -c–a-w C:\WINDOWS\system32\dllcache\jsproxy.dll - 2004-08-04 12:00:00 294,400 -c–a-w C:\WINDOWS\system32\dllcache\kerberos.dll + 2005-06-15 17:51:00 295,936 -c–a-w C:\WINDOWS\system32\dllcache\kerberos.dll - 2004-08-04 12:00:00 1,012,224 -c–a-w C:\WINDOWS\system32\dllcache\kernel32.dll + 2007-04-16 15:54:44 1,013,248 -c–a-w C:\WINDOWS\system32\dllcache\kernel32.dll - 2004-08-03 22:07:50 171,776 -c–a-w C:\WINDOWS\system32\dllcache\kmixer.sys + 2006-06-14 08:47:45 172,416 -c–a-w C:\WINDOWS\system32\dllcache\kmixer.sys - 2004-08-04 12:00:00 18,944 -c–a-w C:\WINDOWS\system32\dllcache\linkinfo.dll + 2005-09-01 02:28:38 19,968 -c–a-w C:\WINDOWS\system32\dllcache\linkinfo.dll - 2004-08-04 12:00:00 723,968 -c–a-w C:\WINDOWS\system32\dllcache\lsasrv.dll + 2006-08-17 12:30:06 723,968 -c–a-w C:\WINDOWS\system32\dllcache\lsasrv.dll - 2004-08-04 12:00:00 39,936 -c–a-w C:\WINDOWS\system32\dllcache\mf3216.dll + 2007-03-08 15:38:47 40,960 -c–a-w C:\WINDOWS\system32\dllcache\mf3216.dll - 2004-08-04 12:00:00 924,432 -c–a-w C:\WINDOWS\system32\dllcache\mfc40u.dll + 2006-11-01 19:19:04 927,504 -c–a-w C:\WINDOWS\system32\dllcache\mfc40u.dll - 2004-08-04 12:00:00 1,024,000 -c–a-w C:\WINDOWS\system32\dllcache\mfc42u.dll + 2006-10-14 08:13:25 981,760 -c–a-w C:\WINDOWS\system32\dllcache\mfc42u.dll - 2004-08-04 12:00:00 7,680 -c–a-w C:\WINDOWS\system32\dllcache\migregdb.exe + 2005-07-25 23:46:57 7,680 -c–a-w C:\WINDOWS\system32\dllcache\migregdb.exe + 2006-05-05 09:41:45 453,120 -c----w C:\WINDOWS\system32\dllcache\mrxsmb.sys - 2004-08-04 12:00:00 143,360 -c–a-w C:\WINDOWS\system32\dllcache\msadco.dll + 2006-03-23 05:51:28 143,360 -c–a-w C:\WINDOWS\system32\dllcache\msadco.dll - 2004-08-04 12:00:00 536,576 -c–a-w C:\WINDOWS\system32\dllcache\msado15.dll + 2006-12-26 13:09:22 536,576 -c–a-w C:\WINDOWS\system32\dllcache\msado15.dll - 2004-08-04 12:00:00 180,224 -c–a-w C:\WINDOWS\system32\dllcache\msadomd.dll + 2006-12-26 13:09:22 180,224 -c–a-w C:\WINDOWS\system32\dllcache\msadomd.dll - 2004-08-04 12:00:00 200,704 -c–a-w C:\WINDOWS\system32\dllcache\msadox.dll + 2006-12-26 13:09:22 200,704 -c–a-w C:\WINDOWS\system32\dllcache\msadox.dll - 2004-08-04 12:00:00 73,728 -c–a-w C:\WINDOWS\system32\dllcache\mscms.dll + 2005-06-29 01:52:57 74,240 -c–a-w C:\WINDOWS\system32\dllcache\mscms.dll - 2004-08-04 12:00:00 425,472 -c–a-w C:\WINDOWS\system32\dllcache\msdtcprx.dll + 2006-03-01 19:44:19 426,496 -c–a-w C:\WINDOWS\system32\dllcache\msdtcprx.dll - 2004-08-04 12:00:00 949,248 -c–a-w C:\WINDOWS\system32\dllcache\msdtctm.dll + 2006-03-01 19:44:19 956,416 -c–a-w C:\WINDOWS\system32\dllcache\msdtctm.dll - 2004-08-04 12:00:00 161,280 -c–a-w C:\WINDOWS\system32\dllcache\msdtcuiu.dll + 2006-03-01 19:44:19 161,280 -c–a-w C:\WINDOWS\system32\dllcache\msdtcuiu.dll - 2004-08-04 12:00:00 537,088 -c–a-w C:\WINDOWS\system32\dllcache\msftedit.dll + 2006-11-27 14:55:46 539,136 -c–a-w C:\WINDOWS\system32\dllcache\msftedit.dll - 2004-08-04 12:00:00 3,003,392 -c–a-w C:\WINDOWS\system32\dllcache\mshtml.dll + 2007-08-22 13:19:18 3,079,168 -c–a-w C:\WINDOWS\system32\dllcache\mshtml.dll - 2004-08-04 12:00:00 448,512 -c–a-w C:\WINDOWS\system32\dllcache\mshtmled.dll + 2007-08-22 13:19:18 449,024 -c–a-w C:\WINDOWS\system32\dllcache\mshtmled.dll - 2004-08-04 12:00:00 2,804,224 -c–a-w C:\WINDOWS\system32\dllcache\msi.dll + 2007-04-18 16:14:32 2,854,400 -c–a-w C:\WINDOWS\system32\dllcache\msi.dll - 2004-08-04 12:00:00 77,312 -c–a-w C:\WINDOWS\system32\dllcache\msiexec.exe + 2005-05-04 13:45:36 78,848 -c–a-w C:\WINDOWS\system32\dllcache\msiexec.exe - 2004-08-04 12:00:00 331,264 -c–a-w C:\WINDOWS\system32\dllcache\msihnd.dll + 2005-05-04 13:45:36 271,360 -c–a-w C:\WINDOWS\system32\dllcache\msihnd.dll - 2004-08-04 12:00:00 884,736 -c–a-w C:\WINDOWS\system32\dllcache\msimsg.dll + 2005-05-04 13:45:36 884,736 -c–a-w C:\WINDOWS\system32\dllcache\msimsg.dll - 2004-08-04 12:00:00 44,032 -c–a-w C:\WINDOWS\system32\dllcache\msisip.dll + 2005-05-04 13:45:36 15,360 -c–a-w C:\WINDOWS\system32\dllcache\msisip.dll - 2004-08-04 12:00:00 102,400 -c–a-w C:\WINDOWS\system32\dllcache\msjro.dll + 2006-12-26 13:09:22 102,400 -c–a-w C:\WINDOWS\system32\dllcache\msjro.dll - 2004-08-04 12:00:00 1,311,232 -c–a-w C:\WINDOWS\system32\dllcache\msoe.dll + 2007-05-16 15:19:02 1,314,816 -c–a-w C:\WINDOWS\system32\dllcache\msoe.dll - 2004-08-04 12:00:00 146,432 -c–a-w C:\WINDOWS\system32\dllcache\msrating.dll + 2007-08-22 13:19:18 146,432 -c–a-w C:\WINDOWS\system32\dllcache\msrating.dll - 2004-08-04 12:00:00 530,432 -c–a-w C:\WINDOWS\system32\dllcache\mstime.dll + 2007-08-22 13:19:19 532,480 -c–a-w C:\WINDOWS\system32\dllcache\mstime.dll - 2004-08-04 12:00:00 1,236,480 -c–a-w C:\WINDOWS\system32\dllcache\msxml3.dll + 2007-06-26 06:10:36 1,104,896 -c–a-w C:\WINDOWS\system32\dllcache\msxml3.dll - 2004-08-04 12:00:00 66,560 -c–a-w C:\WINDOWS\system32\dllcache\mtxclu.dll + 2006-03-01 19:44:19 66,560 -c–a-w C:\WINDOWS\system32\dllcache\mtxclu.dll - 2004-08-04 12:00:00 90,112 -c–a-w C:\WINDOWS\system32\dllcache\mtxoci.dll + 2006-03-01 19:44:19 91,136 -c–a-w C:\WINDOWS\system32\dllcache\mtxoci.dll - 2004-08-04 12:00:00 332,288 -c–a-w C:\WINDOWS\system32\dllcache\netapi32.dll + 2006-08-17 12:30:06 332,288 -c–a-w C:\WINDOWS\system32\dllcache\netapi32.dll - 2004-08-04 12:00:00 198,144 -c–a-w C:\WINDOWS\system32\dllcache\netman.dll + 2005-08-22 18:36:16 197,632 -c–a-w C:\WINDOWS\system32\dllcache\netman.dll - 2004-08-04 12:00:00 364,544 -c–a-w C:\WINDOWS\system32\dllcache\npdsplay.dll + 2005-11-29 15:27:06 364,544 -c–a-w C:\WINDOWS\system32\dllcache\npdsplay.dll - 2004-08-04 12:00:00 574,592 -c–a-w C:\WINDOWS\system32\dllcache\ntfs.sys + 2007-02-09 11:10:35 574,464 -c–a-w C:\WINDOWS\system32\dllcache\ntfs.sys + 2007-02-28 16:04:45 2,137,600 -c----w C:\WINDOWS\system32\dllcache\ntkrnlmp.exe + 2007-02-28 16:04:56 2,058,880 -c----w C:\WINDOWS\system32\dllcache\ntkrnlpa.exe + 2007-02-28 16:04:47 2,017,280 -c----w C:\WINDOWS\system32\dllcache\ntkrpamp.exe + 2007-02-28 16:04:58 2,181,632 -c----w C:\WINDOWS\system32\dllcache\ntoskrnl.exe - 2004-08-04 12:00:00 145,920 -c–a-w C:\WINDOWS\system32\dllcache\nwprovau.dll + 2006-10-13 12:41:11 143,872 -c–a-w C:\WINDOWS\system32\dllcache\nwprovau.dll - 2004-08-04 12:00:00 1,281,024 -c–a-w C:\WINDOWS\system32\dllcache\ole32.dll + 2005-07-26 04:42:36 1,284,608 -c–a-w C:\WINDOWS\system32\dllcache\ole32.dll - 2004-08-04 12:00:00 553,472 -c–a-w C:\WINDOWS\system32\dllcache\oleaut32.dll + 2007-05-17 11:30:17 549,376 -c–a-w C:\WINDOWS\system32\dllcache\oleaut32.dll - 2004-08-04 12:00:00 69,120 -c–a-w C:\WINDOWS\system32\dllcache\olecli32.dll + 2005-07-26 04:42:36 75,264 -c–a-w C:\WINDOWS\system32\dllcache\olecli32.dll - 2004-08-04 12:00:00 34,304 -c–a-w C:\WINDOWS\system32\dllcache\olecnv32.dll + 2005-07-26 04:42:36 37,888 -c–a-w C:\WINDOWS\system32\dllcache\olecnv32.dll - 2004-08-04 12:00:00 118,272 -c–a-w C:\WINDOWS\system32\dllcache\oledlg.dll + 2006-10-16 16:16:22 123,392 -c–a-w C:\WINDOWS\system32\dllcache\oledlg.dll - 2004-08-04 12:00:00 39,424 -c–a-w C:\WINDOWS\system32\dllcache\pngfilt.dll + 2007-08-22 13:19:19 39,424 -c–a-w C:\WINDOWS\system32\dllcache\pngfilt.dll - 2004-08-04 12:00:00 1,291,264 -c–a-w C:\WINDOWS\system32\dllcache\quartz.dll + 2005-08-30 03:56:13 1,290,752 -c–a-w C:\WINDOWS\system32\dllcache\quartz.dll - 2004-08-04 12:00:00 1,439,744 -c–a-w C:\WINDOWS\system32\dllcache\query.dll + 2006-06-22 05:18:14 1,439,744 -c–a-w C:\WINDOWS\system32\dllcache\query.dll - 2004-08-04 12:00:00 8,192 -c–a-w C:\WINDOWS\system32\dllcache\rasadhlp.dll + 2006-06-26 17:45:40 8,192 -c–a-w C:\WINDOWS\system32\dllcache\rasadhlp.dll - 2004-08-04 12:00:00 174,080 -c–a-w C:\WINDOWS\system32\dllcache\rasmans.dll + 2006-06-22 10:54:46 181,248 -c–a-w C:\WINDOWS\system32\dllcache\rasmans.dll - 2004-08-04 12:00:00 176,512 -c–a-w C:\WINDOWS\system32\dllcache\rdbss.sys + 2006-05-05 09:47:57 174,592 -c–a-w C:\WINDOWS\system32\dllcache\rdbss.sys - 2004-08-04 12:00:00 139,400 -c–a-w C:\WINDOWS\system32\dllcache\rdpwd.sys + 2005-06-10 04:11:36 139,528 -c–a-w C:\WINDOWS\system32\dllcache\rdpwd.sys - 2004-08-04 12:00:00 431,616 -c–a-w C:\WINDOWS\system32\dllcache\riched20.dll + 2006-11-27 14:55:46 433,152 -c–a-w C:\WINDOWS\system32\dllcache\riched20.dll - 2004-08-04 12:00:00 200,064 -c–a-w C:\WINDOWS\system32\dllcache\rmcast.sys + 2006-07-13 08:48:58 202,240 -c–a-w C:\WINDOWS\system32\dllcache\rmcast.sys - 2004-08-04 12:00:00 581,120 -c–a-w C:\WINDOWS\system32\dllcache\rpcrt4.dll + 2007-07-09 13:11:53 584,192 -c–a-w C:\WINDOWS\system32\dllcache\rpcrt4.dll - 2004-08-04 12:00:00 395,776 -c–a-w C:\WINDOWS\system32\dllcache\rpcss.dll + 2005-07-26 04:42:36 397,824 -c–a-w C:\WINDOWS\system32\dllcache\rpcss.dll - 2004-08-04 12:00:00 144,896 -c–a-w C:\WINDOWS\system32\dllcache\schannel.dll + 2007-04-25 14:23:30 144,896 -c–a-w C:\WINDOWS\system32\dllcache\schannel.dll - 2004-08-04 12:00:00 1,483,264 -c–a-w C:\WINDOWS\system32\dllcache\shdocvw.dll + 2007-08-22 13:19:19 1,494,528 -c–a-w C:\WINDOWS\system32\dllcache\shdocvw.dll - 2004-08-04 12:00:00 8,412,672 -c–a-w C:\WINDOWS\system32\dllcache\shell32.dll + 2007-10-25 16:57:22 8,483,328 -c–a-w C:\WINDOWS\system32\dllcache\shell32.dll - 2004-08-04 12:00:00 473,600 -c–a-w C:\WINDOWS\system32\dllcache\shlwapi.dll + 2007-08-22 13:19:19 474,112 -c–a-w C:\WINDOWS\system32\dllcache\shlwapi.dll - 2004-08-04 12:00:00 135,168 -c–a-w C:\WINDOWS\system32\dllcache\shsvcs.dll + 2006-12-19 21:51:04 135,168 -c–a-w C:\WINDOWS\system32\dllcache\shsvcs.dll - 2004-08-03 22:07:48 6,400 -c–a-w C:\WINDOWS\system32\dllcache\splitter.sys + 2006-06-14 08:47:46 6,400 -c–a-w C:\WINDOWS\system32\dllcache\splitter.sys - 2004-08-04 12:00:00 57,856 -c–a-w C:\WINDOWS\system32\dllcache\spoolsv.exe + 2005-06-10 23:53:32 57,856 -c–a-w C:\WINDOWS\system32\dllcache\spoolsv.exe - 2004-08-04 12:00:00 336,256 -c–a-w C:\WINDOWS\system32\dllcache\srv.sys + 2006-08-14 10:34:41 332,928 -c–a-w C:\WINDOWS\system32\dllcache\srv.sys - 2004-08-04 12:00:00 96,768 -c–a-w C:\WINDOWS\system32\dllcache\srvsvc.dll + 2004-12-07 19:34:12 96,768 -c–a-w C:\WINDOWS\system32\dllcache\srvsvc.dll - 2004-08-04 12:00:00 246,302 -c–a-w C:\WINDOWS\system32\dllcache\strmdll.dll + 2006-08-24 12:19:52 246,814 -c–a-w C:\WINDOWS\system32\dllcache\strmdll.dll - 2004-08-04 12:00:00 714,240 -c–a-w C:\WINDOWS\system32\dllcache\sxs.dll + 2006-10-20 01:39:31 714,240 -c–a-w C:\WINDOWS\system32\dllcache\sxs.dll - 2004-08-04 12:00:00 210,432 -c–a-w C:\WINDOWS\system32\dllcache\t2embed.dll + 2005-10-17 21:21:40 118,272 -c–a-w C:\WINDOWS\system32\dllcache\t2embed.dll - 2004-08-04 12:00:00 246,272 -c–a-w C:\WINDOWS\system32\dllcache\tapisrv.dll + 2005-07-08 16:29:17 249,344 -c–a-w C:\WINDOWS\system32\dllcache\tapisrv.dll - 2004-08-04 12:00:00 359,040 -c–a-w C:\WINDOWS\system32\dllcache\tcpip.sys + 2006-04-20 11:51:50 359,808 -c–a-w C:\WINDOWS\system32\dllcache\tcpip.sys - 2004-08-04 12:00:00 223,616 -c–a-w C:\WINDOWS\system32\dllcache\tcpip6.sys + 2006-08-16 09:37:30 225,664 -c–a-w C:\WINDOWS\system32\dllcache\tcpip6.sys - 2004-08-04 12:00:00 77,312 -c–a-w C:\WINDOWS\system32\dllcache\telnet.exe + 2005-05-11 02:31:23 77,824 -c–a-w C:\WINDOWS\system32\dllcache\telnet.exe - 2004-08-04 12:00:00 101,376 -c–a-w C:\WINDOWS\system32\dllcache\txflog.dll + 2005-07-26 04:42:36 101,376 -c–a-w C:\WINDOWS\system32\dllcache\txflog.dll - 2004-08-04 12:00:00 118,784 -c–a-w C:\WINDOWS\system32\dllcache\umpnpmgr.dll + 2005-08-23 03:40:06 123,904 -c–a-w C:\WINDOWS\system32\dllcache\umpnpmgr.dll - 2004-08-04 12:00:00 209,408 -c–a-w C:\WINDOWS\system32\dllcache\update.sys + 2007-04-23 10:32:54 364,160 -c–a-w C:\WINDOWS\system32\dllcache\update.sys - 2004-08-04 12:00:00 185,856 -c–a-w C:\WINDOWS\system32\dllcache\upnphost.dll + 2007-02-05 20:19:48 185,856 -c–a-w C:\WINDOWS\system32\dllcache\upnphost.dll - 2004-08-04 12:00:00 602,112 -c–a-w C:\WINDOWS\system32\dllcache\urlmon.dll + 2007-08-22 13:19:19 616,448 -c–a-w C:\WINDOWS\system32\dllcache\urlmon.dll - 2004-08-04 12:00:00 578,560 -c–a-w C:\WINDOWS\system32\dllcache\user32.dll + 2007-03-08 15:38:47 579,072 -c–a-w C:\WINDOWS\system32\dllcache\user32.dll - 2004-08-04 12:00:00 848,384 -c–a-w C:\WINDOWS\system32\dllcache\vgx.dll + 2007-06-26 13:57:29 851,968 -c–a-w C:\WINDOWS\system32\dllcache\vgx.dll - 2004-08-04 12:00:00 504,832 -c–a-w C:\WINDOWS\system32\dllcache\wab32.dll + 2007-05-16 15:19:02 510,976 -c–a-w C:\WINDOWS\system32\dllcache\wab32.dll - 2004-08-04 12:00:00 84,992 -c–a-w C:\WINDOWS\system32\dllcache\wabimp.dll + 2007-05-16 15:19:02 85,504 -c–a-w C:\WINDOWS\system32\dllcache\wabimp.dll - 2004-08-03 22:15:06 82,944 -c–a-w C:\WINDOWS\system32\dllcache\wdmaud.sys + 2006-06-14 09:00:45 82,944 -c–a-w C:\WINDOWS\system32\dllcache\wdmaud.sys - 2004-08-04 12:00:00 67,584 -c–a-w C:\WINDOWS\system32\dllcache\webclnt.dll + 2006-01-04 03:36:30 68,096 -c–a-w C:\WINDOWS\system32\dllcache\webclnt.dll - 2004-08-04 12:00:00 333,824 -c–a-w C:\WINDOWS\system32\dllcache\wiaservc.dll + 2006-12-19 18:18:25 334,336 -c–a-w C:\WINDOWS\system32\dllcache\wiaservc.dll - 2004-08-04 12:00:00 1,836,160 -c–a-w C:\WINDOWS\system32\dllcache\win32k.sys + 2007-03-08 15:37:33 1,843,840 -c–a-w C:\WINDOWS\system32\dllcache\win32k.sys - 2004-08-04 12:00:00 658,944 -c–a-w C:\WINDOWS\system32\dllcache\wininet.dll + 2007-08-22 13:19:20 661,504 -c–a-w C:\WINDOWS\system32\dllcache\wininet.dll - 2004-08-04 12:00:00 291,328 -c–a-w C:\WINDOWS\system32\dllcache\winsrv.dll + 2007-03-17 13:45:36 293,376 -c–a-w C:\WINDOWS\system32\dllcache\winsrv.dll - 2004-08-04 12:00:00 132,096 -c–a-w C:\WINDOWS\system32\dllcache\wkssvc.dll + 2006-08-17 12:30:06 132,096 -c–a-w C:\WINDOWS\system32\dllcache\wkssvc.dll - 2004-08-04 12:00:00 4,874,240 -c–a-w C:\WINDOWS\system32\dllcache\wmp.dll + 2007-04-30 01:22:16 4,734,976 -c–a-w C:\WINDOWS\system32\dllcache\wmp.dll - 2004-08-04 12:00:00 2,105,344 -c–a-w C:\WINDOWS\system32\dllcache\wmvcore.dll + 2006-12-07 17:02:24 2,174,976 -c–a-w C:\WINDOWS\system32\dllcache\wmvcore.dll - 2004-08-04 12:00:00 11,776 -c–a-w C:\WINDOWS\system32\dllcache\xolehlp.dll + 2006-03-01 19:44:19 11,776 -c–a-w C:\WINDOWS\system32\dllcache\xolehlp.dll - 2004-08-04 12:00:00 148,480 ----a-w C:\WINDOWS\system32\dnsapi.dll + 2006-06-26 17:45:40 148,480 ----a-w C:\WINDOWS\system32\dnsapi.dll - 2004-08-03 21:39:38 142,464 ----a-w C:\WINDOWS\system32\drivers\aec.sys + 2006-02-15 00:22:26 142,464 ----a-w C:\WINDOWS\system32\drivers\aec.sys - 2004-08-04 12:00:00 124,800 ----a-w C:\WINDOWS\system32\drivers\fltMgr.sys + 2006-08-21 09:14:58 128,896 ----a-w C:\WINDOWS\system32\drivers\fltmgr.sys - 2004-08-04 12:00:00 263,040 ----a-w C:\WINDOWS\system32\drivers\http.sys + 2006-03-17 00:33:10 262,784 ----a-w C:\WINDOWS\system32\drivers\http.sys - 2004-08-04 12:00:00 134,912 ----a-w C:\WINDOWS\system32\drivers\ipnat.sys + 2004-09-29 22:28:37 134,912 ----a-w C:\WINDOWS\system32\drivers\ipnat.sys - 2004-08-03 22:07:50 171,776 ----a-w C:\WINDOWS\system32\drivers\kmixer.sys + 2006-06-14 08:47:45 172,416 ----a-w C:\WINDOWS\system32\drivers\kmixer.sys - 2004-08-04 12:00:00 451,456 ----a-w C:\WINDOWS\system32\drivers\mrxsmb.sys + 2006-05-05 09:41:45 453,120 ----a-w C:\WINDOWS\system32\drivers\mrxsmb.sys - 2004-08-04 12:00:00 574,592 ----a-w C:\WINDOWS\system32\drivers\ntfs.sys + 2007-02-09 11:10:35 574,464 ----a-w C:\WINDOWS\system32\drivers\ntfs.sys - 2004-08-04 12:00:00 176,512 ----a-w C:\WINDOWS\system32\drivers\rdbss.sys + 2006-05-05 09:47:57 174,592 ----a-w C:\WINDOWS\system32\drivers\rdbss.sys - 2004-08-04 12:00:00 139,400 ----a-w C:\WINDOWS\system32\drivers\rdpwd.sys + 2005-06-10 04:11:36 139,528 ----a-w C:\WINDOWS\system32\drivers\rdpwd.sys - 2004-08-04 12:00:00 200,064 ----a-w C:\WINDOWS\system32\drivers\RMCast.sys + 2006-07-13 08:48:58 202,240 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys - 2004-08-03 22:07:48 6,400 ----a-w C:\WINDOWS\system32\drivers\splitter.sys + 2006-06-14 08:47:46 6,400 ----a-w C:\WINDOWS\system32\drivers\splitter.sys - 2004-08-04 12:00:00 336,256 ----a-w C:\WINDOWS\system32\drivers\srv.sys + 2006-08-14 10:34:41 332,928 ----a-w C:\WINDOWS\system32\drivers\srv.sys - 2004-08-04 12:00:00 359,040 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys + 2006-04-20 11:51:50 359,808 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys - 2004-08-04 12:00:00 223,616 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys + 2006-08-16 09:37:30 225,664 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys - 2004-08-04 12:00:00 209,408 ----a-w C:\WINDOWS\system32\drivers\update.sys + 2007-04-23 10:32:54 364,160 ----a-w C:\WINDOWS\system32\drivers\update.sys - 2004-08-03 22:15:06 82,944 ----a-w C:\WINDOWS\system32\drivers\wdmaud.sys + 2006-06-14 09:00:45 82,944 ----a-w C:\WINDOWS\system32\drivers\wdmaud.sys - 2004-08-04 12:00:00 499,229 ----a-w C:\WINDOWS\system32\dxmasf.dll + 2006-08-24 12:18:20 499,766 ----a-w C:\WINDOWS\system32\dxmasf.dll - 2004-08-04 12:00:00 357,888 ----a-w C:\WINDOWS\system32\dxtmsft.dll + 2007-08-22 13:19:17 357,888 ----a-w C:\WINDOWS\system32\dxtmsft.dll - 2004-08-04 12:00:00 201,728 ----a-w C:\WINDOWS\system32\dxtrans.dll + 2007-08-22 13:19:17 205,312 ----a-w C:\WINDOWS\system32\dxtrans.dll - 2004-08-04 12:00:00 243,200 ----a-w C:\WINDOWS\system32\es.dll + 2005-07-26 04:42:34 243,200 ----a-w C:\WINDOWS\system32\es.dll - 2004-08-04 12:00:00 1,092,608 ----a-w C:\WINDOWS\system32\esent.dll + 2005-10-20 22:30:53 1,092,608 ----a-w C:\WINDOWS\system32\esent.dll - 2004-08-04 12:00:00 55,808 ----a-w C:\WINDOWS\system32\extmgr.dll + 2007-08-22 13:19:17 55,808 ----a-w C:\WINDOWS\system32\extmgr.dll - 2004-08-04 12:00:00 16,896 ----a-w C:\WINDOWS\system32\fltlib.dll + 2006-08-21 12:28:21 16,896 ----a-w C:\WINDOWS\system32\fltlib.dll - 2004-08-04 12:00:00 22,528 ----a-w C:\WINDOWS\system32\fltMc.exe + 2006-08-21 09:14:58 23,040 ----a-w C:\WINDOWS\system32\fltmc.exe - 2007-12-03 18:25:57 93,480 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT + 2007-12-05 16:07:42 93,480 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT - 2004-08-04 12:00:00 79,360 ----a-w C:\WINDOWS\system32\fontsub.dll + 2005-10-17 21:21:40 80,896 ----a-w C:\WINDOWS\system32\fontsub.dll - 2004-08-04 12:00:00 278,016 ----a-w C:\WINDOWS\system32\gdi32.dll + 2007-06-19 13:32:56 282,112 ----a-w C:\WINDOWS\system32\gdi32.dll - 2004-08-04 12:00:00 38,912 ----a-w C:\WINDOWS\system32\hhsetup.dll + 2005-05-27 02:08:15 41,472 ----a-w C:\WINDOWS\system32\hhsetup.dll - 2004-08-04 12:00:00 77,850 ----a-w C:\WINDOWS\system32\hlink.dll + 2006-07-21 08:29:01 72,704 ----a-w C:\WINDOWS\system32\hlink.dll - 2004-08-04 12:00:00 349,696 ----a-w C:\WINDOWS\system32\hypertrm.dll + 2004-11-17 17:43:29 351,744 ----a-w C:\WINDOWS\system32\hypertrm.dll - 2004-08-04 12:00:00 253,952 ----a-w C:\WINDOWS\system32\icm32.dll + 2005-06-29 01:52:57 254,976 ----a-w C:\WINDOWS\system32\icm32.dll - 2004-08-04 12:00:00 249,344 ----a-w C:\WINDOWS\system32\iepeers.dll + 2007-08-22 13:19:17 251,392 ----a-w C:\WINDOWS\system32\iepeers.dll - 2004-08-04 12:00:00 678,400 ----a-w C:\WINDOWS\system32\inetcomm.dll + 2007-08-21 06:18:06 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll - 2004-08-04 12:00:00 96,768 ----a-w C:\WINDOWS\system32\inseng.dll + 2007-08-22 13:19:17 96,768 ----a-w C:\WINDOWS\system32\inseng.dll - 2004-08-04 12:00:00 95,744 ----a-w C:\WINDOWS\system32\iphlpapi.dll + 2006-05-19 13:26:53 95,744 ----a-w C:\WINDOWS\system32\iphlpapi.dll - 2004-08-04 12:00:00 143,872 ----a-w C:\WINDOWS\system32\itircl.dll + 2005-05-27 02:08:15 155,136 ----a-w C:\WINDOWS\system32\itircl.dll - 2004-08-04 12:00:00 134,144 ----a-w C:\WINDOWS\system32\itss.dll + 2005-05-27 02:08:15 137,216 ----a-w C:\WINDOWS\system32\itss.dll - 2004-08-04 12:00:00 144,896 ----a-w C:\WINDOWS\system32\jgdw400.dll + 2006-06-01 18:49:32 163,840 ----a-w C:\WINDOWS\system32\jgdw400.dll - 2004-08-04 12:00:00 42,496 ----a-w C:\WINDOWS\system32\jgpl400.dll + 2006-06-01 18:49:32 27,648 ----a-w C:\WINDOWS\system32\jgpl400.dll - 2004-08-04 12:00:00 450,560 ----a-w C:\WINDOWS\system32\jscript.dll + 2006-05-18 05:43:42 450,560 ----a-w C:\WINDOWS\system32\jscript.dll - 2004-08-04 12:00:00 15,872 ----a-w C:\WINDOWS\system32\jsproxy.dll + 2007-08-22 13:19:17 16,384 ----a-w C:\WINDOWS\system32\jsproxy.dll - 2004-08-04 12:00:00 294,400 ----a-w C:\WINDOWS\system32\kerberos.dll + 2005-06-15 17:51:00 295,936 ----a-w C:\WINDOWS\system32\kerberos.dll - 2004-08-04 12:00:00 1,012,224 ----a-w C:\WINDOWS\system32\kernel32.dll + 2007-04-16 15:54:44 1,013,248 ----a-w C:\WINDOWS\system32\kernel32.dll - 2004-08-04 12:00:00 18,944 ----a-w C:\WINDOWS\system32\linkinfo.dll + 2005-09-01 02:28:38 19,968 ----a-w C:\WINDOWS\system32\linkinfo.dll - 2004-08-04 12:00:00 723,968 ----a-w C:\WINDOWS\system32\lsasrv.dll + 2006-08-17 12:30:06 723,968 ----a-w C:\WINDOWS\system32\lsasrv.dll + 2007-11-21 00:04:14 218,496 ----a-r C:\WINDOWS\system32\Macromed\Flash\FlashUtil9e.exe + 2007-12-05 17:24:13 74,649 ----a-w C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe - 2004-08-04 12:00:00 39,936 ----a-w C:\WINDOWS\system32\mf3216.dll + 2007-03-08 15:38:47 40,960 ----a-w C:\WINDOWS\system32\mf3216.dll - 2004-08-04 12:00:00 924,432 ----a-w C:\WINDOWS\system32\mfc40u.dll + 2006-11-01 19:19:04 927,504 ----a-w C:\WINDOWS\system32\mfc40u.dll - 2004-08-04 12:00:00 1,024,000 ----a-w C:\WINDOWS\system32\mfc42u.dll + 2006-10-14 08:13:25 981,760 ----a-w C:\WINDOWS\system32\mfc42u.dll - 2004-08-04 12:00:00 73,728 ----a-w C:\WINDOWS\system32\mscms.dll + 2005-06-29 01:52:57 74,240 ----a-w C:\WINDOWS\system32\mscms.dll - 2004-08-04 12:00:00 425,472 ----a-w C:\WINDOWS\system32\msdtcprx.dll + 2006-03-01 19:44:19 426,496 ----a-w C:\WINDOWS\system32\msdtcprx.dll - 2004-08-04 12:00:00 949,248 ----a-w C:\WINDOWS\system32\msdtctm.dll + 2006-03-01 19:44:19 956,416 ----a-w C:\WINDOWS\system32\msdtctm.dll - 2004-08-04 12:00:00 161,280 ----a-w C:\WINDOWS\system32\msdtcuiu.dll + 2006-03-01 19:44:19 161,280 ----a-w C:\WINDOWS\system32\msdtcuiu.dll - 2004-08-04 12:00:00 537,088 ----a-w C:\WINDOWS\system32\msftedit.dll + 2006-11-27 14:55:46 539,136 ----a-w C:\WINDOWS\system32\msftedit.dll - 2004-08-04 12:00:00 3,003,392 ----a-w C:\WINDOWS\system32\mshtml.dll + 2007-08-22 13:19:18 3,079,168 ----a-w C:\WINDOWS\system32\mshtml.dll - 2004-08-04 12:00:00 448,512 ----a-w C:\WINDOWS\system32\mshtmled.dll + 2007-08-22 13:19:18 449,024 ----a-w C:\WINDOWS\system32\mshtmled.dll - 2004-08-04 12:00:00 2,804,224 ----a-w C:\WINDOWS\system32\msi.dll + 2007-04-18 16:14:32 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll - 2004-08-04 12:00:00 77,312 ----a-w C:\WINDOWS\system32\msiexec.exe + 2005-05-04 13:45:36 78,848 ----a-w C:\WINDOWS\system32\msiexec.exe - 2004-08-04 12:00:00 331,264 ----a-w C:\WINDOWS\system32\msihnd.dll + 2005-05-04 13:45:36 271,360 ----a-w C:\WINDOWS\system32\msihnd.dll - 2004-08-04 12:00:00 884,736 ----a-w C:\WINDOWS\system32\msimsg.dll + 2005-05-04 13:45:36 884,736 ----a-w C:\WINDOWS\system32\msimsg.dll - 2004-08-04 12:00:00 44,032 ----a-w C:\WINDOWS\system32\msisip.dll + 2005-05-04 13:45:36 15,360 ----a-w C:\WINDOWS\system32\msisip.dll - 2004-08-04 12:00:00 146,432 ----a-w C:\WINDOWS\system32\msrating.dll + 2007-08-22 13:19:18 146,432 ----a-w C:\WINDOWS\system32\msrating.dll - 2004-08-04 12:00:00 530,432 ----a-w C:\WINDOWS\system32\mstime.dll + 2007-08-22 13:19:19 532,480 ----a-w C:\WINDOWS\system32\mstime.dll - 2004-08-04 12:00:00 1,236,480 ----a-w C:\WINDOWS\system32\msxml3.dll + 2007-06-26 06:10:36 1,104,896 ----a-w C:\WINDOWS\system32\msxml3.dll - 2004-08-04 12:00:00 66,560 ----a-w C:\WINDOWS\system32\mtxclu.dll + 2006-03-01 19:44:19 66,560 ----a-w C:\WINDOWS\system32\mtxclu.dll - 2004-08-04 12:00:00 90,112 ----a-w C:\WINDOWS\system32\mtxoci.dll + 2006-03-01 19:44:19 91,136 ----a-w C:\WINDOWS\system32\mtxoci.dll - 2004-08-04 12:00:00 332,288 ----a-w C:\WINDOWS\system32\netapi32.dll + 2006-08-17 12:30:06 332,288 ----a-w C:\WINDOWS\system32\netapi32.dll - 2004-08-04 12:00:00 198,144 ----a-w C:\WINDOWS\system32\netman.dll + 2005-08-22 18:36:16 197,632 ----a-w C:\WINDOWS\system32\netman.dll - 2004-08-04 12:00:00 2,058,112 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe + 2007-02-28 16:04:56 2,058,880 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe - 2004-08-04 12:00:00 2,182,272 ----a-w C:\WINDOWS\system32\ntoskrnl.exe + 2007-02-28 16:04:58 2,181,632 ----a-w C:\WINDOWS\system32\ntoskrnl.exe - 2004-08-04 12:00:00 145,920 ----a-w C:\WINDOWS\system32\nwprovau.dll + 2006-10-13 12:41:11 143,872 ----a-w C:\WINDOWS\system32\nwprovau.dll - 2004-08-04 12:00:00 1,281,024 ----a-w C:\WINDOWS\system32\ole32.dll + 2005-07-26 04:42:36 1,284,608 ----a-w C:\WINDOWS\system32\ole32.dll - 2004-08-04 12:00:00 553,472 ----a-w C:\WINDOWS\system32\oleaut32.dll + 2007-05-17 11:30:17 549,376 ----a-w C:\WINDOWS\system32\oleaut32.dll - 2004-08-04 12:00:00 69,120 ----a-w C:\WINDOWS\system32\olecli32.dll + 2005-07-26 04:42:36 75,264 ----a-w C:\WINDOWS\system32\olecli32.dll - 2004-08-04 12:00:00 34,304 ----a-w C:\WINDOWS\system32\olecnv32.dll + 2005-07-26 04:42:36 37,888 ----a-w C:\WINDOWS\system32\olecnv32.dll - 2004-08-04 12:00:00 118,272 ----a-w C:\WINDOWS\system32\oledlg.dll + 2006-10-16 16:16:22 123,392 ----a-w C:\WINDOWS\system32\oledlg.dll - 2007-12-03 18:32:59 40,128 ----a-w C:\WINDOWS\system32\perfc009.dat + 2007-12-06 04:11:02 40,128 ----a-w C:\WINDOWS\system32\perfc009.dat - 2007-12-03 18:32:59 49,712 ----a-w C:\WINDOWS\system32\perfc015.dat + 2007-12-06 04:11:02 49,712 ----a-w C:\WINDOWS\system32\perfc015.dat - 2007-12-03 18:32:59 311,740 ----a-w C:\WINDOWS\system32\perfh009.dat + 2007-12-06 04:11:02 311,740 ----a-w C:\WINDOWS\system32\perfh009.dat - 2007-12-03 18:32:59 355,830 ----a-w C:\WINDOWS\system32\perfh015.dat + 2007-12-06 04:11:02 355,830 ----a-w C:\WINDOWS\system32\perfh015.dat - 2004-08-04 12:00:00 39,424 ----a-w C:\WINDOWS\system32\pngfilt.dll + 2007-08-22 13:19:19 39,424 ----a-w C:\WINDOWS\system32\pngfilt.dll - 2004-08-04 12:00:00 1,291,264 ----a-w C:\WINDOWS\system32\quartz.dll + 2005-08-30 03:56:13 1,290,752 ----a-w C:\WINDOWS\system32\quartz.dll - 2004-08-04 12:00:00 1,439,744 ----a-w C:\WINDOWS\system32\query.dll + 2006-06-22 05:18:14 1,439,744 ----a-w C:\WINDOWS\system32\query.dll - 2004-08-04 12:00:00 8,192 ----a-w C:\WINDOWS\system32\rasadhlp.dll + 2006-06-26 17:45:40 8,192 ----a-w C:\WINDOWS\system32\rasadhlp.dll - 2004-08-04 12:00:00 174,080 ----a-w C:\WINDOWS\system32\rasmans.dll + 2006-06-22 10:54:46 181,248 ----a-w C:\WINDOWS\system32\rasmans.dll - 2004-08-04 12:00:00 431,616 ----a-w C:\WINDOWS\system32\riched20.dll + 2006-11-27 14:55:46 433,152 ----a-w C:\WINDOWS\system32\riched20.dll - 2004-08-04 12:00:00 581,120 ----a-w C:\WINDOWS\system32\rpcrt4.dll + 2007-07-09 13:11:53 584,192 ----a-w C:\WINDOWS\system32\rpcrt4.dll - 2004-08-04 12:00:00 395,776 ----a-w C:\WINDOWS\system32\rpcss.dll + 2005-07-26 04:42:36 397,824 ----a-w C:\WINDOWS\system32\rpcss.dll - 2004-08-04 12:00:00 144,896 ----a-w C:\WINDOWS\system32\schannel.dll + 2007-04-25 14:23:30 144,896 ----a-w C:\WINDOWS\system32\schannel.dll - 2004-08-04 12:00:00 1,483,264 ----a-w C:\WINDOWS\system32\shdocvw.dll + 2007-08-22 13:19:19 1,494,528 ----a-w C:\WINDOWS\system32\shdocvw.dll - 2004-08-04 12:00:00 8,412,672 ----a-w C:\WINDOWS\system32\shell32.dll + 2007-10-25 16:57:22 8,483,328 ----a-w C:\WINDOWS\system32\shell32.dll - 2004-08-04 12:00:00 473,600 ----a-w C:\WINDOWS\system32\shlwapi.dll + 2007-08-22 13:19:19 474,112 ----a-w C:\WINDOWS\system32\shlwapi.dll - 2004-08-04 12:00:00 135,168 ----a-w C:\WINDOWS\system32\shsvcs.dll + 2006-12-19 21:51:04 135,168 ----a-w C:\WINDOWS\system32\shsvcs.dll + 2006-01-19 19:30:18 16,096 ------w C:\WINDOWS\system32\spmsg.dll - 2004-08-04 12:00:00 57,856 ----a-w C:\WINDOWS\system32\spoolsv.exe + 2005-06-10 23:53:32 57,856 ----a-w C:\WINDOWS\system32\spoolsv.exe - 2004-08-04 12:00:00 96,768 ----a-w C:\WINDOWS\system32\srvsvc.dll + 2004-12-07 19:34:12 96,768 ----a-w C:\WINDOWS\system32\srvsvc.dll - 2004-08-04 12:00:00 246,302 ----a-w C:\WINDOWS\system32\strmdll.dll + 2006-08-24 12:19:52 246,814 ----a-w C:\WINDOWS\system32\strmdll.dll - 2004-08-04 12:00:00 714,240 ----a-w C:\WINDOWS\system32\sxs.dll + 2006-10-20 01:39:31 714,240 ----a-w C:\WINDOWS\system32\sxs.dll - 2004-08-04 12:00:00 210,432 ----a-w C:\WINDOWS\system32\t2embed.dll + 2005-10-17 21:21:40 118,272 ----a-w C:\WINDOWS\system32\t2embed.dll - 2004-08-04 12:00:00 246,272 ----a-w C:\WINDOWS\system32\tapisrv.dll + 2005-07-08 16:29:17 249,344 ----a-w C:\WINDOWS\system32\tapisrv.dll - 2004-08-04 12:00:00 77,312 ----a-w C:\WINDOWS\system32\telnet.exe + 2005-05-11 02:31:23 77,824 ----a-w C:\WINDOWS\system32\telnet.exe - 2004-08-04 12:00:00 101,376 ----a-w C:\WINDOWS\system32\txflog.dll + 2005-07-26 04:42:36 101,376 ----a-w C:\WINDOWS\system32\txflog.dll + 2007-07-18 12:42:22 60,416 ------w C:\WINDOWS\system32\tzchange.exe - 2004-08-04 12:00:00 118,784 ----a-w C:\WINDOWS\system32\umpnpmgr.dll + 2005-08-23 03:40:06 123,904 ----a-w C:\WINDOWS\system32\umpnpmgr.dll - 2004-08-04 12:00:00 185,856 ----a-w C:\WINDOWS\system32\upnphost.dll + 2007-02-05 20:19:48 185,856 ----a-w C:\WINDOWS\system32\upnphost.dll - 2004-08-04 12:00:00 602,112 ----a-w C:\WINDOWS\system32\urlmon.dll + 2007-08-22 13:19:19 616,448 ----a-w C:\WINDOWS\system32\urlmon.dll - 2004-08-04 12:00:00 578,560 ----a-w C:\WINDOWS\system32\user32.dll + 2007-03-08 15:38:47 579,072 ----a-w C:\WINDOWS\system32\user32.dll - 2004-08-04 12:00:00 67,584 ----a-w C:\WINDOWS\system32\webclnt.dll + 2006-01-04 03:36:30 68,096 ----a-w C:\WINDOWS\system32\webclnt.dll - 2004-08-04 12:00:00 333,824 ----a-w C:\WINDOWS\system32\wiaservc.dll + 2006-12-19 18:18:25 334,336 ----a-w C:\WINDOWS\system32\wiaservc.dll - 2004-08-04 12:00:00 1,836,160 ----a-w C:\WINDOWS\system32\win32k.sys + 2007-03-08 15:37:33 1,843,840 ----a-w C:\WINDOWS\system32\win32k.sys - 2004-08-04 12:00:00 658,944 ----a-w C:\WINDOWS\system32\wininet.dll + 2007-08-22 13:19:20 661,504 ----a-w C:\WINDOWS\system32\wininet.dll - 2004-08-04 12:00:00 291,328 ----a-w C:\WINDOWS\system32\winsrv.dll + 2007-03-17 13:45:36 293,376 ----a-w C:\WINDOWS\system32\winsrv.dll - 2004-08-04 12:00:00 132,096 ----a-w C:\WINDOWS\system32\wkssvc.dll + 2006-08-17 12:30:06 132,096 ----a-w C:\WINDOWS\system32\wkssvc.dll - 2004-08-04 12:00:00 4,874,240 ----a-w C:\WINDOWS\system32\wmp.dll + 2007-04-30 01:22:16 4,734,976 ----a-w C:\WINDOWS\system32\wmp.dll - 2004-08-04 12:00:00 2,105,344 ----a-w C:\WINDOWS\system32\wmvcore.dll + 2006-12-07 17:02:24 2,174,976 ----a-w C:\WINDOWS\system32\wmvcore.dll - 2004-08-04 12:00:00 11,776 ----a-w C:\WINDOWS\system32\xolehlp.dll + 2006-03-01 19:44:19 11,776 ----a-w C:\WINDOWS\system32\xolehlp.dll + 2007-10-29 15:35:22 122,368 ----a-w C:\WINDOWS\system32\xpsp3res.dll + 2007-01-19 12:52:03 74,802 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a\atl.dll + 2007-01-19 12:52:03 995,383 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a\mfc42.dll + 2007-01-19 12:52:04 1,011,774 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a\mfc42u.dll + 2007-01-19 12:52:04 401,462 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a\msvcp60.dll + 2006-08-25 15:51:13 1,054,208 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll . – Snapshot reset to current date – . ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

Złączono Posta : 06.12.2007 (Czw) 16:48

Eee… Co to za daty? 2004? Jej… To przy formatowaniu nie wszystko mi sie kasuje? A co moge zrobic zeby calkowicie wszystko wywalic z kompa? tak zeby byl jak nowiutki?

Gutek · 6 Grudzień 2007 17:07

Skan AVG Anti-Spyware 7.5 po update + raport

aska00704 · 6 Grudzień 2007 19:30

--------------------------------------------------------- AVG Anti-Spyware - Scan Report --------------------------------------------------------- + Created at: 20:27 2007-12-06 + Scan result: C:\Documents and Settings\ppp\Cookies\ppp@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken. C:\Documents and Settings\ppp\Cookies\ppp@ssl-hints.netflame[1].txt -> TrackingCookie.Netflame : No action taken. C:\Documents and Settings\ppp\Cookies\ppp@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : No action taken. C:\Program Files\C-Media 3D Audio\Driver\Win_XP\CMIRMDRV.EXE -> Worm.Fujack.h : No action taken. C:\Program Files\C-Media 3D Audio\Driver\Win_XP\SmWizard.exe -> Worm.Fujack.h : No action taken. C:\Program Files\C-Media 3D Audio\Play3D\CmiPlay3D.exe -> Worm.Fujack.h : No action taken. C:\Program Files\Gadu-Gadu\agent.exe -> Worm.Fujack.h : No action taken. C:\Program Files\Java\j2re1.4.0_03\bin\jinstall.exe -> Worm.Fujack.h : No action taken. C:\Program Files\Lexmark 4300 Series\Drivers\I386\lxceunst.exe -> Worm.Fujack.h : No action taken. C:\Program Files\Trend Micro\HijackThis\HijackThis.exe -> Worm.Fujack.h : No action taken. C:\Program Files\ZTE ZXDSL 852\Disk1\DSLTest.exe -> Worm.Fujack.h : No action taken. C:\Program Files\ZTE ZXDSL 852\Disk1\stmtrace.exe -> Worm.Fujack.h : No action taken. C:\Program Files\ZTE ZXDSL 852\Disk1\usbenum.exe -> Worm.Fujack.h : No action taken. C:\Program Files\neostrada tp\File2Reg.exe -> Worm.Fujack.h : No action taken. C:\Program Files\neostrada tp\SafeInstall\neostrada.exe -> Worm.Fujack.h : No action taken. C:\Program Files\neostrada tp\UNWISE.EXE -> Worm.Fujack.h : No action taken. C:\Program Files\neostrada tp\Uninstall.exe -> Worm.Fujack.h : No action taken. C:\Program Files\neostrada tp\inst\flashplayer7_winax.exe -> Worm.Fujack.h : No action taken. C:\SDFix\backups\backups.zip/backups/nvscv32.exe -> Worm.Fujack.h : No action taken. C:\System Volume Information_restore{ED76F639-504D-4FD4-9631-2B915F704D16}\RP3\A0003247.exe -> Worm.Fujack.h : No action taken. C:\System Volume Information_restore{ED76F639-504D-4FD4-9631-2B915F704D16}\RP5\A0005566.exe -> Worm.Fujack.h : No action taken. C:\System Volume Information_restore{ED76F639-504D-4FD4-9631-2B915F704D16}\RP5\A0005572.exe -> Worm.Fujack.h : No action taken. C:\System Volume Information_restore{ED76F639-504D-4FD4-9631-2B915F704D16}\RP6\A0005944.exe -> Worm.Fujack.h : No action taken. C:\qoobox\Hiv-backup\ERDNT.EXE -> Worm.Fujack.h : No action taken. ::Report end

Gutek · 6 Grudzień 2007 19:39

Prawoklik na Mój Komputer>>Przywracanie systemu>> wyłącz przywracanie systemu na wszystkich dyskach.

aska00704 · 7 Grudzień 2007 10:28

Wylaczylam. To co mu bylo? Ten wirus? To juz go nie ma? Niby troche lepiej chodzi ale to jeszcze nie to…

Gutek · 7 Grudzień 2007 16:46

Optymalizacja XP: http://forum.dobreprogramy.pl/viewtopic.php?t=76580

Czyszczenie rejestru:

RegCleaner - http://www.dobreprogramy.pl/index.php?dz=2&t=29&id=177

możesz rejestr przelecieć albo

jv16 PowerTools - http://www.dobreprogramy.pl/index.php?dz=2&t=29&id=509

Opis RegCleaner - http://www.agavk.p9.pl/strony/progra_regcleaner.php

Zobacz - Obsługa jv16 PowerTools

aska00704 · 12 Grudzień 2007 15:56

Ok. Zrobilam to wszystko. Ale szczerze mowiac to malo co dalo… nie wiem o co w tym wszystkim chodzi. Jak podlaczam usb do kompa to mi wyskakuje zebym wlozyla dysk… internet mi muli bez przerwy. Czy to moze byc wina neostrady? Juz nie wiem co mam robic.

bez_pseudonimu · 12 Grudzień 2007 16:22

antywirus coś wykrywa? jakiego masz antywirusa?