Sujet Précédent Sujet Suivant

Dyrhuboa.dll

Fermé
yevgi Messages postés 78 Date d'inscription jeudi 21 février 2008 Statut Membre Dernière intervention 5 août 2009 - 1 mars 2008 à 20:20
yevgi Messages postés 78 Date d'inscription jeudi 21 février 2008 Statut Membre Dernière intervention 5 août 2009 - 12 mai 2008 à 12:43
Bonjour,
j'ai un probleme avec mon vista depuis quelques jours,
a chaque fois que je demare mon PC a l'entrée a Windows j'ai le message suivant qui s'affiche:
"erreur dans c:\users\yevgi\appdata\local\temp\dyrhuboa.dll
entrée manquente : run"
ceci a pour effet que a chaque ouverture d'une fenetre quelconque (poste de travail,raccourci a des fichier divers...)
windows quitte la fenetre et il y a une sorte d'actualisation d'explorer qui des fois m'oblige a aller dans le gestionnaire des taches de windows et lancer explorer.exe en tant que nouvelle application.
que faire afin de resoudre cce probleme?s'agit-il d'un virus?
merci d'avance

25 réponses

Précédent
  • 1
  • 2
Réponse 21 / 25
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
10 mai 2008 à 20:41
Salut

ok,

# Télécharger Vundofix.exe (par Atribune) sur votre Bureau : http://www.atribune.org/ccount/click.php?id=4

* Double-cliquer sur VundoFix.exe afin de le lancer.
* Cliquer sur le bouton Scan for Vundo.
* Lorsque le scan est complété, cliquer sur le bouton Fix Vundo.
* Une invite de commande demandera si l’on souhaite supprimer les fichiers, cliquer sur YES
* Après avoir cliqué "YES", le Bureau disparaîtra un moment lors de la suppression des fichiers. * Une nouvelle invite de commande annoncera que le PC devra s'éteindre ("shutdown"). Cliquer sur OK , puis laisser le redémarrer.
* Le contenu du rapport est situé dans C:\vundofix.txt, poste le stp


++
0
yevgi Messages postés 78 Date d'inscription jeudi 21 février 2008 Statut Membre Dernière intervention 5 août 2009 6
10 mai 2008 à 23:06
est-ce qu'il faut que je le fasse en mode sans echec ou pas?
0
Réponse 22 / 25
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
11 mai 2008 à 14:00
salut

mode normal suffira !

++
0
Réponse 23 / 25
yevgi Messages postés 78 Date d'inscription jeudi 21 février 2008 Statut Membre Dernière intervention 5 août 2009 6
12 mai 2008 à 01:42
apres le scan il m'affiche qu'il n'a rien trouvé et donc je ne peut pas cliquer sur l'option Fix Vundo.
est-ce que ca vaut dire que mon PC est net? ^^
0
Réponse 24 / 25
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
12 mai 2008 à 11:19
Salut

c'est possible ! poste un nouveau combo stp

++
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 25
yevgi Messages postés 78 Date d'inscription jeudi 21 février 2008 Statut Membre Dernière intervention 5 août 2009 6
12 mai 2008 à 12:43
j'en ai eu deux rapport...
un qui s'appele "combofix log" et un deuxieme qui s'appele "Bug"
je te poste les deux...


ComboFix 08-05-11.1 - Yevgi 2008-05-12 12:31:53.2 - NTFSx86
Endroit: C:\Users\Yevgi\Desktop\Download\ComboFix.exe
* Création d'un nouveau point de restauration
* Resident AV is active

.

((((((((((((((((((((((((((((( Fichiers créés 2008-04-12 to 2008-05-12 ))))))))))))))))))))))))))))))))))))
.

2008-05-12 12:30 . 2008-05-12 12:31 <REP> d-------- C:\327882R2FWJFW
2008-05-12 01:22 . 2008-05-12 01:22 <REP> d-------- C:\VundoFix Backups
2008-05-09 16:03 . 2008-05-09 16:03 <REP> d-------- C:\Program Files\Common Files\INCA Shared
2008-05-09 16:03 . 2003-07-21 05:17 5,174 --a------ C:\Windows\System32\nppt9x.vxd
2008-05-09 16:03 . 2005-01-04 20:43 4,682 --a------ C:\Windows\System32\npptNT2.sys
2008-05-08 02:00 . 2008-05-08 02:00 2,027,008 --a------ C:\Windows\System32\win32k.sys
2008-05-08 02:00 . 2008-05-08 02:00 296,448 --a------ C:\Windows\System32\gdi32.dll
2008-05-08 02:00 . 2008-05-08 02:00 83,968 --a------ C:\Windows\System32\dnsrslvr.dll
2008-05-08 02:00 . 2008-05-08 02:00 24,576 --a------ C:\Windows\System32\dnscacheugc.exe
2008-05-07 22:30 . 2008-05-07 22:30 <REP> d-------- C:\Users\Yevgi\AppData\Roaming\Malwarebytes
2008-05-07 22:30 . 2008-05-07 22:30 <REP> d-------- C:\Users\All Users\Malwarebytes
2008-05-07 22:30 . 2008-05-07 22:30 <REP> d-------- C:\ProgramData\Malwarebytes
2008-05-07 22:30 . 2008-05-07 22:30 <REP> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-05-07 22:30 . 2008-05-05 20:46 27,048 --a------ C:\Windows\System32\drivers\mbamcatchme.sys
2008-05-07 22:30 . 2008-05-05 20:46 15,864 --a------ C:\Windows\System32\drivers\mbam.sys
2008-05-07 21:49 . 2008-05-07 21:49 <REP> d-------- C:\Windows\T2I
2008-05-01 19:35 . 2008-05-01 19:37 <REP> d-------- C:\Misc
2008-04-25 23:16 . 2008-04-25 23:16 <REP> dr------- C:\My films
2008-04-25 21:36 . 2008-04-25 21:36 <REP> d-------- C:\Bienvenue Chez Les Chtis.TRACKERSURFER .french.screener.avi
2008-04-25 18:04 . 2008-04-27 21:50 49 --a------ C:\Windows\NeroDigital.ini
2008-04-24 18:07 . 2008-04-24 18:11 69,632 --a------ C:\Windows\ScUnin.exe
2008-04-24 18:07 . 2008-04-24 18:11 28,428 --a------ C:\Windows\scunin.dat
2008-04-24 18:07 . 2008-04-24 18:11 967 --a------ C:\Windows\ScUnin.pif
2008-04-23 18:45 . 2008-04-23 18:45 228,707,814 --a------ C:\Windows\MEMORY.DMP
2008-04-23 18:42 . 2008-04-23 18:42 120,320 --a------ C:\Windows\System32\drivers\SSHDRV65.sys
2008-04-22 23:21 . 2008-04-22 23:21 <REP> d--hs---- C:\Windows\ftpcache
2008-04-21 16:19 . 2008-04-22 23:13 <REP> d-------- C:\Nouveau dossier
2008-04-17 15:36 . 2008-04-17 15:36 <REP> d-------- C:\Users\Yevgi\AppData\Roaming\Nero
2008-04-17 15:31 . 2008-04-17 15:31 <REP> d-------- C:\Users\All Users\Nero
2008-04-17 15:31 . 2008-04-17 15:31 <REP> d-------- C:\ProgramData\Nero
2008-04-17 15:31 . 2008-04-17 15:31 <REP> d-------- C:\Program Files\Nero
2008-04-17 15:31 . 2008-04-17 15:34 <REP> d-------- C:\Program Files\Common Files\Nero
2008-04-12 13:11 . 2008-04-12 13:11 315 --a------ C:\Windows\doom3.ini

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-12 07:34 --------- d-----w C:\Program Files\WinTV
2008-05-07 23:58 826,368 ----a-w C:\Windows\System32\wininet.dll
2008-05-07 23:58 56,320 ----a-w C:\Windows\System32\iesetup.dll
2008-05-07 23:58 52,736 ----a-w C:\Windows\AppPatch\iebrshim.dll
2008-05-07 23:58 26,624 ----a-w C:\Windows\System32\ieUnatt.exe
2008-05-07 21:37 --------- d-----w C:\Program Files\McAfee
2008-04-27 19:13 43,520 ----a-w C:\Windows\System32\CmdLineExt03.dll
2008-04-23 16:54 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-04-16 17:34 --------- d-----w C:\Program Files\Privé
2008-04-10 18:49 98,304 ----a-w C:\Windows\system32CmdLineExt.dll
2008-04-08 19:58 21,840 ----atw C:\Windows\System32\SIntfNT.dll
2008-04-08 19:58 17,212 ----atw C:\Windows\System32\SIntf32.dll
2008-04-08 19:58 12,067 ----atw C:\Windows\System32\SIntf16.dll
2008-04-08 19:54 94,208 ----a-w C:\Windows\DIIUnin.exe
2008-04-08 19:54 2,829 ----a-w C:\Windows\DIIUnin.pif
2008-04-06 18:49 107,888 ----a-w C:\Windows\System32\CmdLineExt.dll
2008-03-26 17:40 418,480 ----a-w C:\Windows\System32\wrap_oal.dll
2008-03-26 17:40 115,432 ----a-w C:\Windows\System32\OpenAL32.dll
2008-03-22 14:13 --------- d-----w C:\Program Files\Ubisoft
2008-03-22 10:52 --------- d-----w C:\Users\Yevgi\AppData\Roaming\Ubisoft
2008-03-22 10:52 --------- d-----w C:\ProgramData\Ubisoft
2008-03-17 20:25 --------- d-----w C:\Users\Yevgi\AppData\Roaming\Microsoft Games
2008-03-16 21:36 --------- d-----w C:\Program Files\GSC World Publishing
2008-03-15 18:26 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-02-27 02:08 194,560 ----a-w C:\Windows\System32\WebClnt.dll
2008-02-27 02:06 24,064 ----a-w C:\Windows\System32\netcfg.exe
2008-02-27 02:06 22,016 ----a-w C:\Windows\System32\netiougc.exe
2008-02-27 02:06 167,424 ----a-w C:\Windows\System32\tcpipcfg.dll
2008-02-27 02:05 9,728 ----a-w C:\Windows\System32\LAPRXY.DLL
2008-02-27 02:05 223,232 ----a-w C:\Windows\System32\WMASF.DLL
2008-02-27 02:05 2,048 ----a-w C:\Windows\System32\asferror.dll
2008-02-27 02:05 11,776 ----a-w C:\Windows\System32\sbunattend.exe
2008-02-27 02:05 1,327,104 ----a-w C:\Windows\System32\quartz.dll
2008-02-27 02:04 3,504,824 ----a-w C:\Windows\System32\ntkrnlpa.exe
2008-02-27 02:04 3,470,520 ----a-w C:\Windows\System32\ntoskrnl.exe
2008-02-27 02:03 2,048 ----a-w C:\Windows\System32\tzres.dll
2008-02-26 20:43 66,872 ----a-w C:\Windows\System32\PnkBstrA.exe
2008-02-26 20:43 22,328 ----a-w C:\Users\Yevgi\AppData\Roaming\PnkBstrK.sys
2008-02-26 20:43 103,736 ----a-w C:\Windows\System32\PnkBstrB.exe
2008-02-26 18:32 53,080 ----a-w C:\Windows\System32\wuauclt.exe
2008-02-26 18:32 43,352 ----a-w C:\Windows\System32\wups2.dll
2008-02-26 18:32 1,712,984 ----a-w C:\Windows\System32\wuaueng.dll
2008-02-26 18:32 1,524,224 ----a-w C:\Windows\System32\wucltux.dll
2008-02-26 18:31 80,896 ----a-w C:\Windows\System32\wudriver.dll
2008-02-26 18:31 549,720 ----a-w C:\Windows\System32\wuapi.dll
2008-02-26 18:31 33,624 ----a-w C:\Windows\System32\wups.dll
2008-02-26 18:31 31,232 ----a-w C:\Windows\System32\wuapp.exe
2008-02-26 18:31 163,000 ----a-w C:\Windows\System32\wuwebv.dll
2008-01-16 13:26 174 --sha-w C:\Program Files\desktop.ini
.

------- Sigcheck -------

.
((((((((((((((((((((((((((((( snapshot@2008-03-25_23.49.23.94 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-01-16 21:14:58 2,560 ----a-w C:\Windows\AppPatch\AcRes.dll
- 2008-03-16 21:28:14 53,248 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
+ 2008-04-17 17:59:11 53,248 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
- 2008-03-16 21:28:15 12,800 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
+ 2008-04-17 17:59:12 12,800 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
- 2008-03-16 21:28:15 473,600 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2008-04-17 17:59:12 473,600 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
- 2008-03-16 21:28:02 2,676,224 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-12 10:45:24 2,676,224 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2008-03-16 21:28:04 2,846,720 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-12 10:45:25 2,846,720 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2008-03-16 21:28:06 563,712 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-12 10:45:26 563,712 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2008-03-16 21:28:07 567,296 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-12 10:45:27 567,296 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2008-03-16 21:28:08 576,000 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-12 10:45:28 576,000 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2008-03-16 21:28:09 577,024 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-17 17:59:13 577,024 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2008-03-16 21:28:10 577,536 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-12 10:45:29 577,536 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2008-03-16 21:28:11 577,536 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-12 10:45:30 577,536 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2008-03-16 21:28:12 578,560 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-12 10:45:30 578,560 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2008-03-16 21:28:16 578,560 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-12 10:45:33 578,560 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2008-03-16 21:28:17 145,920 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
+ 2008-04-17 17:59:13 145,920 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
- 2008-03-16 21:28:18 159,232 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
+ 2008-04-17 17:59:14 159,232 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
- 2008-03-16 21:28:19 364,544 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
+ 2008-04-17 17:59:14 364,544 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
- 2008-03-16 21:28:20 178,176 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
+ 2008-04-17 17:59:15 178,176 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
- 2008-03-16 21:28:14 223,232 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
+ 2008-04-17 17:59:11 223,232 ----a-w C:\Windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
+ 2008-04-17 13:34:47 34,088 ----a-w C:\Windows\assembly\GAC_MSIL\DiscWriter\2.0.2.0__477a69ee60b50063\DiscWriter.dll
+ 2008-04-17 13:34:45 5,632 ----a-w C:\Windows\assembly\GAC_MSIL\Interop.NeroBurnAdvrCntrl2Lib\1.0.0.0__477a69ee60b50063\Interop.NeroBurnAdvrCntrl2Lib.dll
+ 2008-04-17 13:34:45 172,032 ----a-w C:\Windows\assembly\GAC_MSIL\Interop.NEROLib\1.4.0.0__477a69ee60b50063\Interop.NEROLib.dll
+ 2008-04-17 13:34:45 24,576 ----a-w C:\Windows\assembly\GAC_MSIL\Interop.NeroMCEWrapper\1.0.0.0__477a69ee60b50063\Interop.NeroMCEWrapper.dll
+ 2008-04-17 13:34:46 28,672 ----a-w C:\Windows\assembly\GAC_MSIL\Interop.NeroVisionAPI\1.3.0.0__477a69ee60b50063\Interop.NeroVisionAPI.dll
+ 2008-04-17 13:34:46 533,800 ----a-w C:\Windows\assembly\GAC_MSIL\NeroBurnSettingsMCML\2.0.2.0__477a69ee60b50063\NeroBurnSettingsMCML.dll
- 2008-03-25 22:45:47 67,584 --s-a-w C:\Windows\bootstat.dat
+ 2008-05-12 07:33:18 67,584 --s-a-w C:\Windows\bootstat.dat
+ 2008-04-23 14:05:51 32,388 ----a-w C:\Windows\DIIUnin.dat
+ 2007-09-28 02:41:28 381,960 ----a-w C:\Windows\Downloaded Program Files\GAME_UNO1.dll
+ 2007-02-22 21:41:12 304,544 ----a-w C:\Windows\Downloaded Program Files\MessengerStatsPAClient.dll
+ 2007-02-28 12:21:04 130,472 ----a-w C:\Windows\Downloaded Program Files\MineSweeper.dll
- 2000-08-31 07:00:00 163,328 ----a-w C:\Windows\erdnt\Hiv-backup\ERDNT.EXE
+ 2005-10-20 18:02:28 163,328 ----a-w C:\Windows\erdnt\Hiv-backup\ERDNT.EXE
+ 2000-08-31 06:00:00 73,728 ----a-w C:\Windows\fdsv.exe
+ 2000-08-31 06:00:00 80,412 ----a-w C:\Windows\grep.exe
+ 2006-11-02 12:35:47 2,048 ----a-w C:\Windows\Help\Tablet PC\PTRes.dll
+ 2006-11-02 12:35:43 2,048 ----a-w C:\Windows\Help\Tablet PC\TTRes.dll
+ 2008-04-17 13:35:12 25,214 ----a-r C:\Windows\Installer\{8AEA4BE2-2B52-41C0-BB7D-9F2D17AF1036}\ARPPRODUCTICON.exe
- 2008-02-27 02:08:49 593,920 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2008-05-08 00:01:20 593,920 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\accicons.exe
- 2008-02-27 02:08:49 12,288 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2008-05-08 00:01:20 12,288 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\cagicon.exe
- 2008-02-27 02:08:49 86,016 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\inficon.exe
+ 2008-05-08 00:01:20 86,016 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\inficon.exe
- 2008-02-27 02:08:49 135,168 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2008-05-08 00:01:19 135,168 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2008-02-27 02:08:49 11,264 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2008-05-08 00:01:20 11,264 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\mspicons.exe
- 2008-02-27 02:08:49 27,136 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2008-05-08 00:01:20 27,136 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\oisicon.exe
- 2008-02-27 02:08:49 4,096 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2008-05-08 00:01:20 4,096 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\opwicon.exe
- 2008-02-27 02:08:49 794,624 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\outicon.exe
+ 2008-05-08 00:01:20 794,624 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2008-02-27 02:08:49 249,856 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\pptico.exe
+ 2008-05-08 00:01:20 249,856 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\pptico.exe
- 2008-02-27 02:08:49 61,440 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\pubs.exe
+ 2008-05-08 00:01:20 61,440 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\pubs.exe
- 2008-02-27 02:08:49 23,040 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\unbndico.exe
+ 2008-05-08 00:01:20 23,040 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\unbndico.exe
- 2008-02-27 02:08:48 286,720 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2008-05-08 00:01:19 286,720 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\wordicon.exe
- 2008-02-27 02:08:48 409,600 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2008-05-08 00:01:19 409,600 ----a-r C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2008-03-26 17:52:51 179,616 ----a-r C:\Windows\Installer\{EE4BA4C3-6DE4-404C-9B69-A84709BED752}\ARPPRODUCTICON.exe
+ 2008-03-26 17:52:51 179,616 ----a-r C:\Windows\Installer\{EE4BA4C3-6DE4-404C-9B69-A84709BED752}\NewShortcut11_08A88EE2ECBE48C4AFFA558596B463CC.exe
+ 2008-03-26 17:52:51 179,616 ----a-r C:\Windows\Installer\{EE4BA4C3-6DE4-404C-9B69-A84709BED752}\NewShortcut12_8D61B8C251CD4E6EA7EF461C48344843.exe
+ 2008-03-26 17:52:52 179,616 ----a-r C:\Windows\Installer\{EE4BA4C3-6DE4-404C-9B69-A84709BED752}\NewShortcut14_8F4F4A04589443218CAB3B06C53353FE.exe
+ 2008-03-26 17:52:52 25,214 ----a-r C:\Windows\Installer\{EE4BA4C3-6DE4-404C-9B69-A84709BED752}\NewShortcut15_06F73E3BB720421C9D5A85A8EE7AB173.exe
- 1998-10-29 15:45:06 306,688 ----a-w C:\Windows\IsUninst.exe
+ 1998-10-29 14:45:06 306,688 ----a-w C:\Windows\IsUninst.exe
+ 2006-11-02 12:36:03 2,560 ----a-w C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelEvents.dll
+ 2006-11-02 12:36:02 2,560 ----a-w C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll
+ 2006-11-02 08:12:29 2,048 ----a-w C:\Windows\MSAgent\AgtUI.dll
- 2000-08-31 07:00:00 28,160 ----a-w C:\Windows\Nircmd.exe
+ 2000-08-31 06:00:00 28,160 ----a-w C:\Windows\Nircmd.exe
+ 2000-08-31 06:00:00 98,816 ----a-w C:\Windows\sed.exe
+ 2008-05-12 07:33:19 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2008-05-12 07:33:19 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2008-03-25 17:09:55 262,144 ----a-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\usrclass.dat
+ 2008-05-12 07:35:12 262,144 ----a-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\usrclass.dat
- 2008-03-25 22:46:20 262,144 --sha-w C:\Windows\ServiceProfiles\LocalService\ntuser.dat
+ 2008-05-12 07:35:13 262,144 --sha-w C:\Windows\ServiceProfiles\LocalService\ntuser.dat
+ 2008-05-12 07:35:13 262,144 ---ha-w C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG1
- 2008-03-25 17:09:55 262,144 ----a-w C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\usrclass.dat
+ 2008-05-12 10:31:25 262,144 ----a-w C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\usrclass.dat
- 2008-03-25 22:46:20 262,144 --sha-w C:\Windows\ServiceProfiles\NetworkService\ntuser.dat
+ 2008-05-12 10:34:51 262,144 --sha-w C:\Windows\ServiceProfiles\NetworkService\ntuser.dat
+ 2008-05-12 10:34:51 262,144 ---ha-w C:\Windows\ServiceProfiles\NetworkService\ntuser.dat.LOG1
+ 2000-08-31 06:00:00 161,792 ----a-w C:\Windows\swreg.exe
+ 2000-08-31 06:00:00 136,704 ----a-w C:\Windows\swsc.exe
+ 2000-08-31 06:00:00 212,480 ----a-w C:\Windows\swxcacls.exe
+ 2006-11-02 07:10:15 2,000 ----a-w C:\Windows\system\keyboard.drv
+ 2006-11-02 07:10:18 2,032 ----a-w C:\Windows\system\mouse.drv
+ 2006-11-02 07:10:16 1,744 ----a-w C:\Windows\system\sound.drv
+ 2006-11-02 07:10:17 2,176 ----a-w C:\Windows\system\vga.drv
+ 2006-11-02 07:11:39 2,048 ----a-w C:\Windows\System32\acprgwiz.dll
- 2008-02-27 02:02:17 124,928 ----a-w C:\Windows\System32\advpack.dll
+ 2008-05-07 23:58:44 124,928 ----a-w C:\Windows\System32\advpack.dll
+ 2006-11-02 06:56:11 2,560 ----a-w C:\Windows\System32\bootstr.dll
+ 2006-11-02 07:38:48 2,048 ----a-w C:\Windows\System32\bridgeres.dll
- 2008-03-25 22:46:00 16,384 --sha-w C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2008-05-12 07:34:06 16,384 --sha-w C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2008-03-25 22:46:00 32,768 --sha-w C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2008-05-12 07:34:06 32,768 --sha-w C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2008-03-25 17:09:54 262,144 ----a-w C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\usrclass.dat
+ 2008-05-07 16:11:02 262,144 ----a-w C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\usrclass.dat
- 2008-03-25 22:46:00 32,768 --sha-w C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2008-05-12 07:34:06 32,768 --sha-w C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2008-03-25 22:41:06 262,144 ----a-w C:\Windows\System32\config\systemprofile\ntuser.dat
+ 2008-05-12 10:31:48 262,144 ----a-w C:\Windows\System32\config\systemprofile\ntuser.dat
+ 2008-05-12 10:31:48 262,144 ---ha-w C:\Windows\System32\config\systemprofile\ntuser.dat.LOG1
+ 2006-11-02 12:36:25 2,048 ----a-w C:\Windows\System32\dfsrres.dll
- 2006-11-02 09:46:04 162,816 ----a-w C:\Windows\System32\dnsapi.dll
+ 2008-05-08 00:00:05 162,816 ----a-w C:\Windows\System32\dnsapi.dll
+ 2006-11-02 08:27:54 2,048 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnca001.inf_92fbd03f\I386\CNBPGR02.DLL
+ 2006-11-02 09:41:10 2,560 ----a-w C:\Windows\System32\DriverStore\FileRepository\prndc001.inf_79bb12be\I386\DICONRES.DLL
+ 2006-09-18 21:40:29 1,960 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnep001.inf_f0a9a372\I386\EPNDDE11.DAT
+ 2006-09-18 21:40:29 1,778 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnep001.inf_f0a9a372\I386\EPNDDE12.DAT
+ 2006-09-18 21:40:29 1,960 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnep001.inf_f0a9a372\I386\EPNDDE16.DAT
+ 2006-09-18 21:40:29 1,992 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnep001.inf_f0a9a372\I386\EPNDDE2J.DAT
+ 2006-09-18 21:40:29 1,948 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnep001.inf_f0a9a372\I386\EPNDDE2K.DAT
+ 2006-09-18 21:40:29 2,128 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnep001.inf_f0a9a372\I386\EPNDDE2M.DAT
+ 2006-09-18 21:40:29 2,398 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnep001.inf_f0a9a372\I386\EPNDDE3N.DAT
+ 2006-09-18 21:40:29 1,976 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnep001.inf_f0a9a372\I386\EPNDDE3O.DAT
+ 2006-09-18 21:40:29 1,764 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnep001.inf_f0a9a372\I386\EPNDDE3P.DAT
+ 2006-09-18 21:40:29 2,398 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnep001.inf_f0a9a372\I386\EPNDDE3Q.DAT
+ 2006-09-18 21:40:29 2,618 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnep001.inf_f0a9a372\I386\EPNDDE3T.DAT
+ 2006-09-18 21:40:29 2,188 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnep001.inf_f0a9a372\I386\EPNDDE3V.DAT
+ 2006-09-18 21:40:29 2,984 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnep001.inf_f0a9a372\I386\EPNDDE4A.DAT
+ 2006-09-18 21:40:29 2,632 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnep001.inf_f0a9a372\I386\EPNDDE4D.DAT
+ 2006-09-18 21:40:30 2,496 ----a-w C:\Windows\System32\DriverStore\FileRepository\prnep001.inf_f0a9a372\I386\EPNDDE4S.DAT
- 2008-02-27 02:02:14 347,136 ----a-w C:\Windows\System32\dxtmsft.dll
+ 2008-05-07 23:58:43 347,136 ----a-w C:\Windows\System32\dxtmsft.dll
- 2008-02-27 02:02:15 214,528 ----a-w C:\Windows\System32\dxtrans.dll
+ 2008-05-07 23:58:43 214,528 ----a-w C:\Windows\System32\dxtrans.dll
- 2008-01-24 12:34:46 417,320 ----a-w C:\Windows\System32\FNTCACHE.DAT
+ 2008-05-08 08:33:49 417,320 ----a-w C:\Windows\System32\FNTCACHE.DAT
- 2008-02-27 02:02:13 63,488 ----a-w C:\Windows\System32\icardie.dll
+ 2008-05-07 23:58:38 63,488 ----a-w C:\Windows\System32\icardie.dll
- 2008-02-27 02:02:10 70,656 ----a-w C:\Windows\System32\ie4uinit.exe
+ 2008-05-07 23:58:35 70,656 ----a-w C:\Windows\System32\ie4uinit.exe
- 2008-02-27 02:02:16 383,488 ----a-w C:\Windows\System32\ieapfltr.dll
+ 2008-05-07 23:58:44 383,488 ----a-w C:\Windows\System32\ieapfltr.dll
- 2008-02-27 02:02:22 6,066,176 ----a-w C:\Windows\System32\ieframe.dll
+ 2008-05-07 23:58:42 6,066,176 ----a-w C:\Windows\System32\ieframe.dll
- 2008-02-27 02:02:10 44,544 ----a-w C:\Windows\System32\iernonce.dll
+ 2008-05-07 23:58:35 44,544 ----a-w C:\Windows\System32\iernonce.dll
- 2008-02-27 02:02:22 180,736 ----a-w C:\Windows\System32\ieui.dll
+ 2008-05-07 23:58:42 180,736 ----a-w C:\Windows\System32\ieui.dll
+ 2006-03-17 10:45:52 1,757,184 ----a-w C:\Windows\System32\imagX7.dll
+ 2006-03-17 10:45:54 497,296 ----a-w C:\Windows\System32\imagXpr7.dll
+ 2006-03-17 10:45:54 258,048 ----a-w C:\Windows\System32\imagXR7.dll
+ 2006-03-17 10:45:54 802,816 ----a-w C:\Windows\System32\imagXRA7.dll
+ 2006-11-02 09:39:39 2,048 ----a-w C:\Windows\System32\iologmsg.dll
- 2008-02-27 02:02:17 27,648 ----a-w C:\Windows\System32\jsproxy.dll
+ 2008-05-07 23:58:43 27,648 ----a-w C:\Windows\System32\jsproxy.dll
+ 2006-11-02 07:10:15 2,000 ----a-w C:\Windows\System32\keyboard.drv
+ 2003-09-05 12:47:26 3,342,336 ----a-w C:\Windows\System32\Lionheart.exe
+ 2006-11-02 07:38:59 2,048 ----a-w C:\Windows\System32\lltdres.dll
+ 2006-11-02 12:35:51 2,048 ----a-w C:\Windows\System32\mferror.dll
- 2008-02-27 02:02:17 64,512 ----a-w C:\Windows\System32\migration\WininetPlugin.dll
+ 2008-05-07 23:58:44 64,512 ----a-w C:\Windows\System32\migration\WininetPlugin.dll
+ 2006-11-02 07:10:18 2,032 ----a-w C:\Windows\System32\mouse.drv
- 2008-02-04 14:09:48 18,214,008 ----a-w C:\Windows\System32\mrt.exe
+ 2008-04-05 20:56:22 19,836,024 ----a-w C:\Windows\System32\mrt.exe
- 2008-02-27 02:02:19 3,592,192 ----a-w C:\Windows\System32\mshtml.dll
+ 2008-05-07 23:58:40 3,591,680 ----a-w C:\Windows\System32\mshtml.dll
- 2008-02-27 02:02:20 478,208 ----a-w C:\Windows\System32\mshtmled.dll
+ 2008-05-07 23:58:40 478,208 ----a-w C:\Windows\System32\mshtmled.dll
+ 2006-11-02 07:15:56 2,560 ----a-w C:\Windows\System32\msimsg.dll
+ 2006-11-02 07:18:28 2,048 ----a-w C:\Windows\System32\msprivs.dll
- 2008-02-27 02:02:14 671,232 ----a-w C:\Windows\System32\mstime.dll
+ 2008-05-07 23:58:38 671,232 ----a-w C:\Windows\System32\mstime.dll
+ 2008-01-16 21:12:37 2,048 ----a-w C:\Windows\System32\msxml3r.dll
+ 2008-01-16 21:18:17 2,048 ----a-w C:\Windows\System32\msxml6r.dll
+ 2007-08-04 08:10:34 95,600 ----a-w C:\Windows\System32\NeroCo.dll
+ 2006-11-02 09:41:16 2,048 ----a-w C:\Windows\System32\neth.dll
+ 2006-11-02 09:41:17 2,048 ----a-w C:\Windows\System32\netmsg.dll
+ 2006-09-19 11:41:49 2,456 ----a-w C:\Windows\System32\networklist\icons\StockIcons\bench_24.bin
+ 2006-09-19 11:41:49 2,456 ----a-w C:\Windows\System32\networklist\icons\StockIcons\house_24.bin
+ 2006-09-19 11:41:49 2,456 ----a-w C:\Windows\System32\networklist\icons\StockIcons\office_24.bin
+ 2006-11-02 08:33:06 2,560 ----a-w C:\Windows\System32\normaliz.dll
+ 2006-11-02 07:08:53 2,048 ----a-w C:\Windows\System32\oleaccrc.dll
- 2008-03-25 22:36:49 103,726 ----a-w C:\Windows\System32\perfc009.dat
+ 2008-05-07 19:39:41 104,570 ----a-w C:\Windows\System32\perfc009.dat
- 2008-03-25 22:36:49 117,366 ----a-w C:\Windows\System32\perfc00C.dat
+ 2008-05-07 19:39:41 118,244 ----a-w C:\Windows\System32\perfc00C.dat
- 2008-03-25 22:36:49 609,944 ----a-w C:\Windows\System32\perfh009.dat
+ 2008-05-07 19:39:41 612,848 ----a-w C:\Windows\System32\perfh009.dat
- 2008-03-25 22:36:49 690,594 ----a-w C:\Windows\System32\perfh00C.dat
+ 2008-05-07 19:39:41 693,350 ----a-w C:\Windows\System32\perfh00C.dat
- 2008-02-27 02:02:17 44,544 ----a-w C:\Windows\System32\pngfilt.dll
+ 2008-05-07 23:58:35 44,544 ----a-w C:\Windows\System32\pngfilt.dll
+ 2006-11-02 07:10:00 2,842 ----a-w C:\Windows\System32\redir.exe
+ 2006-11-02 09:43:00 2,560 ----a-w C:\Windows\System32\rnr20.dll
+ 2006-11-02 12:34:48 2,048 ----a-w C:\Windows\System32\SampleRes.dll
- 2008-03-24 22:58:10 6,291,456 ----a-w C:\Windows\System32\SMI\Store\Machine\schema.dat
+ 2008-05-08 17:39:53 6,291,456 ----a-w C:\Windows\System32\SMI\Store\Machine\schema.dat
+ 2006-11-02 07:10:16 1,744 ----a-w C:\Windows\System32\sound.drv
+ 2006-03-17 13:49:46 368,640 ----a-w C:\Windows\System32\TwnLib4.dll
- 2008-02-27 02:02:16 1,159,680 ----a-w C:\Windows\System32\urlmon.dll
+ 2008-05-07 23:58:36 1,159,680 ----a-w C:\Windows\System32\urlmon.dll
+ 2006-11-02 07:10:17 2,176 ----a-w C:\Windows\System32\vga.drv
+ 2008-01-22 14:39:44 2,272 ----a-w C:\Windows\System32\w95inf16.dll
+ 2006-11-02 07:15:27 2,048 ----a-w C:\Windows\System32\wbem\WmiApRes.dll
- 2008-03-24 20:18:35 7,338 ----a-w C:\Windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-31434581-3181455718-583861208-1001_UserData.bin
+ 2008-05-12 07:35:37 9,088 ----a-w C:\Windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-31434581-3181455718-583861208-1001_UserData.bin
- 2008-03-24 20:18:34 64,772 ----a-w C:\Windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2008-05-12 07:35:36 71,298 ----a-w C:\Windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2008-04-08 13:52:03 4,096 ----a-w C:\Windows\System32\WDI\ERCQueuedResolutions.dat
- 2008-03-25 15:40:34 43,668 ----a-w C:\Windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2008-05-12 07:35:32 47,324 ----a-w C:\Windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2006-11-02 07:10:22 2,864 ----a-w C:\Windows\System32\WINSOCK.DLL
+ 2006-11-02 07:10:18 2,112 ----a-w C:\Windows\System32\WINSPOOL.EXE
+ 2006-11-02 12:35:54 2,048 ----a-w C:\Windows\System32\wmerror.dll
+ 2006-11-02 07:10:27 2,864 ----a-w C:\Windows\System32\WOWDEB.EXE
+ 2005-11-19 14:12:46 439,296 ----a-w C:\Windows\T2I\desktop.exe
+ 2006-02-27 00:04:59 568,832 ----a-w C:\Windows\T2I\Finisher.exe
+ 2006-04-25 00:29:21 68,096 ----a-w C:\Windows\T2I\Links208.exe
+ 2006-02-27 00:05:13 566,784 ----a-w C:\Windows\T2I\Runner.exe
+ 1996-11-05 14:13:22 299,008 ----a-w C:\Windows\uninst.exe
+ 2007-03-20 19:22:04 972,336 ----a-w C:\Windows\UNNeroBackItUp.exe
+ 2007-08-03 10:52:28 972,072 ----a-w C:\Windows\UNNeroMediaHome.exe
+ 2007-02-28 14:41:02 972,336 ----a-w C:\Windows\UNNeroShowTime.exe
+ 2007-03-21 19:02:12 972,336 ----a-w C:\Windows\UNNeroVision.exe
+ 2007-08-04 08:40:20 972,072 ----a-w C:\Windows\UNRecode.exe
+ 2000-08-31 06:00:00 49,152 ----a-w C:\Windows\VFind.exe
+ 2006-11-02 07:11:38 2,560 ----a-w C:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c1_31bf3856ad364e35_6.0.6000.16386_none_09eb762df5615af9\AcRes.dll
+ 2008-01-16 21:14:58 2,560 ----a-w C:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c1_31bf3856ad364e35_6.0.6000.16485_none_09ea77c9f5623ec9\AcRes.dll
+ 2008-01-16 21:14:58 2,560 ----a-w C:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c1_31bf3856ad364e35_6.0.6000.20597_none_0a6b453d0e862d32\AcRes.dll
+ 2006-11-02 07:11:39 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-a..on-experience-tools_31bf3856ad364e35_6.0.6000.16386_none_92936507ab8702dd\acprgwiz.dll
+ 2008-05-07 23:58:44 124,928 ----a-w C:\Windows\winsxs\x86_microsoft-windows-advpack_31bf3856ad364e35_6.0.6000.16643_none_a9bce801f5c7b8c8\advpack.dll
+ 2008-05-07 23:58:44 124,928 ----a-w C:\Windows\winsxs\x86_microsoft-windows-advpack_31bf3856ad364e35_6.0.6000.20777_none_aa2a16310efa11c1\advpack.dll
+ 2006-11-02 08:12:29 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-agent0409_31bf3856ad364e35_6.0.6000.16386_none_cba6dc9d9ccc4898\AgtUI.dll
+ 2006-11-02 06:56:11 2,560 ----a-w C:\Windows\winsxs\x86_microsoft-windows-b..environment-strings_31bf3856ad364e35_6.0.6000.16386_none_f64b4db1100349a8\bootstr.dll
+ 2006-11-02 09:41:17 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-basic-misc-tools_31bf3856ad364e35_6.0.6000.16386_none_1525f574c2807ea3\netmsg.dll
+ 2006-11-02 12:36:25 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-dfsr-core-clientonly_31bf3856ad364e35_6.0.6000.16386_none_b442caae9d1904a7\dfsrres.dll
+ 2008-05-08 00:00:05 162,816 ----a-w C:\Windows\winsxs\x86_microsoft-windows-dns-client_31bf3856ad364e35_6.0.6000.16615_none_dff66fbd85366d1e\dnsapi.dll
+ 2008-05-08 00:00:05 24,576 ----a-w C:\Windows\winsxs\x86_microsoft-windows-dns-client_31bf3856ad364e35_6.0.6000.16615_none_dff66fbd85366d1e\dnscacheugc.exe
+ 2008-05-08 00:00:05 83,968 ----a-w C:\Windows\winsxs\x86_microsoft-windows-dns-client_31bf3856ad364e35_6.0.6000.16615_none_dff66fbd85366d1e\dnsrslvr.dll
+ 2008-05-08 00:00:05 162,816 ----a-w C:\Windows\winsxs\x86_microsoft-windows-dns-client_31bf3856ad364e35_6.0.6000.20740_none_e05a9b529e70e208\dnsapi.dll
+ 2008-05-08 00:00:05 24,576 ----a-w C:\Windows\winsxs\x86_microsoft-windows-dns-client_31bf3856ad364e35_6.0.6000.20740_none_e05a9b529e70e208\dnscacheugc.exe
+ 2008-05-08 00:00:05 84,480 ----a-w C:\Windows\winsxs\x86_microsoft-windows-dns-client_31bf3856ad364e35_6.0.6000.20740_none_e05a9b529e70e208\dnsrslvr.dll
+ 2008-05-08 00:00:25 296,448 ----a-w C:\Windows\winsxs\x86_microsoft-windows-gdi32_31bf3856ad364e35_6.0.6000.16643_none_57702c844c48b643\gdi32.dll
+ 2008-05-08 00:00:25 296,448 ----a-w C:\Windows\winsxs\x86_microsoft-windows-gdi32_31bf3856ad364e35_6.0.6000.20777_none_57dd5ab3657b0f3c\gdi32.dll
+ 2008-05-08 00:00:25 295,936 ----a-w C:\Windows\winsxs\x86_microsoft-windows-gdi32_31bf3856ad364e35_6.0.6001.18023_none_596c0b02495f0f52\gdi32.dll
+ 2008-05-08 00:00:25 295,936 ----a-w C:\Windows\winsxs\x86_microsoft-windows-gdi32_31bf3856ad364e35_6.0.6001.22120_none_59f2a6ef627f6317\gdi32.dll
+ 2008-05-07 23:58:35 44,544 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..ablenetworkgraphics_31bf3856ad364e35_6.0.6000.16643_none_ebb7f1b116609ec7\pngfilt.dll
+ 2008-05-07 23:58:35 44,544 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..ablenetworkgraphics_31bf3856ad364e35_6.0.6000.20777_none_ec251fe02f92f7c0\pngfilt.dll
+ 2008-05-07 23:58:36 1,159,680 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.16643_none_b2d49a63d9c1162b\urlmon.dll
+ 2008-05-07 23:58:35 1,162,752 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.20777_none_b341c892f2f36f24\urlmon.dll
+ 2008-05-07 23:58:32 1,166,336 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18023_none_b4d078e1d6d76f3a\urlmon.dll
+ 2008-05-07 23:58:32 1,166,336 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.22120_none_b55714ceeff7c2ff\urlmon.dll
+ 2008-05-07 23:58:38 671,232 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..mlrenderingadvanced_31bf3856ad364e35_6.0.6000.16643_none_deb7292c7f69d59a\mstime.dll
+ 2008-05-07 23:58:38 671,232 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..mlrenderingadvanced_31bf3856ad364e35_6.0.6000.20777_none_df24575b989c2e93\mstime.dll
+ 2008-05-07 23:58:32 671,232 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..mlrenderingadvanced_31bf3856ad364e35_6.0.6001.18023_none_e0b307aa7c802ea9\mstime.dll
+ 2008-05-07 23:58:32 671,232 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..mlrenderingadvanced_31bf3856ad364e35_6.0.6001.22120_none_e139a39795a0826e\mstime.dll
+ 2006-11-02 06:58:59 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6000.16386_none_1310947a0ca7000f\tzres.dll
+ 2008-01-16 21:14:23 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6000.16520_none_134b76120c7bbaad\tzres.dll
+ 2008-02-27 02:03:59 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6000.16589_none_131399240ca44662\tzres.dll
+ 2008-01-16 21:14:23 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6000.20636_none_13d044ad259c0e72\tzres.dll
+ 2008-02-27 02:03:58 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6000.20712_none_13e1e543258f6e5b\tzres.dll
+ 2008-05-07 23:58:43 27,648 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.16643_none_ffda7605a4ca3cbe\jsproxy.dll
+ 2008-05-07 23:58:43 826,368 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.16643_none_ffda7605a4ca3cbe\wininet.dll
+ 2008-05-07 23:58:44 64,512 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.16643_none_ffda7605a4ca3cbe\WininetPlugin.dll
+ 2008-05-07 23:58:43 27,648 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.20777_none_0047a434bdfc95b7\jsproxy.dll
+ 2008-05-07 23:58:43 827,392 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.20777_none_0047a434bdfc95b7\wininet.dll
+ 2008-05-07 23:58:43 64,512 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.20777_none_0047a434bdfc95b7\WininetPlugin.dll
+ 2008-05-07 23:58:34 28,160 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.18023_none_01d65483a1e095cd\jsproxy.dll
+ 2008-05-07 23:58:34 826,880 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.18023_none_01d65483a1e095cd\wininet.dll
+ 2008-05-07 23:58:34 64,512 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.18023_none_01d65483a1e095cd\WininetPlugin.dll
+ 2008-05-07 23:58:34 28,160 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.22120_none_025cf070bb00e992\jsproxy.dll
+ 2008-05-07 23:58:34 826,880 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.22120_none_025cf070bb00e992\wininet.dll
+ 2008-05-07 23:58:34 64,512 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.22120_none_025cf070bb00e992\WininetPlugin.dll
+ 2008-05-07 23:58:44 2,455,488 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-antiphishfilter_31bf3856ad364e35_6.0.6000.16643_none_f98398df6eb5b711\ieapfltr.dat
+ 2008-05-07 23:58:44 383,488 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-antiphishfilter_31bf3856ad364e35_6.0.6000.16643_none_f98398df6eb5b711\ieapfltr.dll
+ 2008-05-07 23:58:44 2,455,488 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-antiphishfilter_31bf3856ad364e35_6.0.6000.20777_none_f9f0c70e87e8100a\ieapfltr.dat
+ 2008-05-07 23:58:44 383,488 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-antiphishfilter_31bf3856ad364e35_6.0.6000.20777_none_f9f0c70e87e8100a\ieapfltr.dll
+ 2008-05-07 23:58:43 347,136 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16643_none_95b7d197849b3d3f\dxtmsft.dll
+ 2008-05-07 23:58:43 214,528 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16643_none_95b7d197849b3d3f\dxtrans.dll
+ 2008-05-07 23:58:42 347,136 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20777_none_9624ffc69dcd9638\dxtmsft.dll
+ 2008-05-07 23:58:42 214,528 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20777_none_9624ffc69dcd9638\dxtrans.dll
+ 2008-05-07 23:58:40 478,208 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-htmlediting_31bf3856ad364e35_6.0.6000.16643_none_461a6bef465befcc\mshtmled.dll
+ 2008-05-07 23:58:40 478,208 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-htmlediting_31bf3856ad364e35_6.0.6000.20777_none_46879a1e5f8e48c5\mshtmled.dll
+ 2008-05-07 23:58:40 3,591,680 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.16643_none_113495242520a5f4\mshtml.dll
+ 2008-05-07 23:58:39 3,593,728 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.20777_none_11a1c3533e52feed\mshtml.dll
+ 2008-05-07 23:58:34 3,578,368 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18023_none_133073a22236ff03\mshtml.dll
+ 2008-05-07 23:58:33 3,578,368 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.22120_none_13b70f8f3b5752c8\mshtml.dll
+ 2008-05-07 23:58:38 63,488 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-infocard_31bf3856ad364e35_6.0.6000.16643_none_588d01ee673531fd\icardie.dll
+ 2008-05-07 23:58:38 63,488 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-infocard_31bf3856ad364e35_6.0.6000.20777_none_58fa301d80678af6\icardie.dll
+ 2008-05-07 23:58:36 26,624 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16643_none_2d5382911cf5aba1\ieUnatt.exe
+ 2008-05-07 23:58:36 625,664 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16643_none_2d5382911cf5aba1\iexplore.exe
+ 2008-05-07 23:58:36 26,624 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.20777_none_2dc0b0c03628049a\ieUnatt.exe
+ 2008-05-07 23:58:36 625,664 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.20777_none_2dc0b0c03628049a\iexplore.exe
+ 2008-05-07 23:58:35 70,656 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.16643_none_c3c237ac61707446\ie4uinit.exe
+ 2008-05-07 23:58:35 44,544 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.16643_none_c3c237ac61707446\iernonce.dll
+ 2008-05-07 23:58:35 56,320 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.16643_none_c3c237ac61707446\iesetup.dll
+ 2008-05-07 23:58:35 70,656 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.20777_none_c42f65db7aa2cd3f\ie4uinit.exe
+ 2008-05-07 23:58:35 44,544 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.20777_none_c42f65db7aa2cd3f\iernonce.dll
+ 2008-05-07 23:58:35 56,320 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.20777_none_c42f65db7aa2cd3f\iesetup.dll
+ 2008-05-07 23:58:44 52,736 ----a-w C:\Windows\winsxs\x86_microsoft-windows-iebrshim_31bf3856ad364e35_6.0.6000.16643_none_29e74e1c682049a3\iebrshim.dll
+ 2008-05-07 23:58:44 52,736 ----a-w C:\Windows\winsxs\x86_microsoft-windows-iebrshim_31bf3856ad364e35_6.0.6000.20777_none_2a547c4b8152a29c\iebrshim.dll
+ 2008-05-07 23:58:42 6,066,176 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16643_none_6293ef27b1163421\ieframe.dll
+ 2008-05-07 23:58:42 180,736 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16643_none_6293ef27b1163421\ieui.dll
+ 2008-05-07 23:58:40 6,067,712 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.20777_none_63011d56ca488d1a\ieframe.dll
+ 2008-05-07 23:58:41 180,736 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.20777_none_63011d56ca488d1a\ieui.dll
+ 2008-05-07 23:58:38 263,168 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieinstal_31bf3856ad364e35_6.0.6000.16643_none_e68d5ba694998859\ieinstal.exe
+ 2008-05-07 23:58:38 263,168 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieinstal_31bf3856ad364e35_6.0.6000.20777_none_e6fa89d5adcbe152\ieinstal.exe
+ 2008-05-07 23:58:34 301,568 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieuser_31bf3856ad364e35_6.0.6000.16643_none_0b3590c2d714480b\ieuser.exe
+ 2008-05-07 23:58:34 301,568 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieuser_31bf3856ad364e35_6.0.6000.20777_none_0ba2bef1f046a104\ieuser.exe
+ 2006-11-02 12:36:24 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-iis-legacysnapin_31bf3856ad364e35_6.0.6000.16386_none_7eea120bb51aecf6\iismui.dll
+ 2006-11-02 07:15:56 2,560 ----a-w C:\Windows\winsxs\x86_microsoft-windows-installer-engine_31bf3856ad364e35_6.0.6000.16386_none_0143bc2fb699ae2d\msimsg.dll
+ 2006-11-02 08:33:06 2,560 ----a-w C:\Windows\winsxs\x86_microsoft-windows-international-core_31bf3856ad364e35_6.0.6000.16386_none_e773a28cdcd5ef62\normaliz.dll
+ 2006-11-02 09:39:39 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-iologgingdll_31bf3856ad364e35_6.0.6000.16386_none_b4a74430ff7bd85d\iologmsg.dll
+ 2006-11-02 07:18:28 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-lsa-msprivs_31bf3856ad364e35_6.0.6000.16386_none_09e22f167e7ac9b3\msprivs.dll
+ 2006-11-02 12:35:51 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.16386_none_9a286d400fd699af\mferror.dll
+ 2006-11-02 12:35:57 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-wmasf_31bf3856ad364e35_6.0.6000.16386_none_a57f2ea4437cfc78\asferror.dll
+ 2008-02-27 02:05:40 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-wmasf_31bf3856ad364e35_6.0.6000.16585_none_a57e3226437ddd6f\asferror.dll
+ 2008-02-27 02:05:40 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-wmasf_31bf3856ad364e35_6.0.6000.20708_none_a66151155c57e6dd\asferror.dll
+ 2006-11-02 12:35:54 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-wmerror_31bf3856ad364e35_6.0.6000.16386_none_351e30f1ba0b5cbe\wmerror.dll
+ 2006-11-02 09:41:09 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16386_none_86377e9e99eb1168\msxml3r.dll
+ 2008-01-16 21:12:37 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16500_none_8688000e99af9424\msxml3r.dll
+ 2008-01-16 21:12:37 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.20613_none_8709cdcbb2d29be4\msxml3r.dll
+ 2006-11-02 09:41:09 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6000.16386_none_86373a4699eb5e4b\msxml6r.dll
+ 2008-01-16 21:18:17 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6000.16472_none_863e0af099e6da25\msxml6r.dll
+ 2008-01-16 21:18:17 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6000.20582_none_86bcd7cfb30c95e0\msxml6r.dll
+ 2006-11-02 09:41:16 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-net-command-line-tool_31bf3856ad364e35_6.0.6000.16386_none_4ffb8f84758bff07\neth.dll
+ 2006-09-19 11:41:49 2,456 ----a-w C:\Windows\winsxs\x86_microsoft-windows-netshell_31bf3856ad364e35_6.0.6000.16386_none_d34ca8d7111fb859\bench_24.bin
+ 2006-09-19 11:41:49 2,456 ----a-w C:\Windows\winsxs\x86_microsoft-windows-netshell_31bf3856ad364e35_6.0.6000.16386_none_d34ca8d7111fb859\house_24.bin
+ 2006-09-19 11:41:49 2,456 ----a-w C:\Windows\winsxs\x86_microsoft-windows-netshell_31bf3856ad364e35_6.0.6000.16386_none_d34ca8d7111fb859\office_24.bin
+ 2006-11-02 07:38:48 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-networkbridge_31bf3856ad364e35_6.0.6000.16386_none_05b32edf092a8853\bridgeres.dll
+ 2006-11-02 07:38:59 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-networktopology_31bf3856ad364e35_6.0.6000.16386_none_cf1f3538fd925a7b\lltdres.dll
+ 2006-11-02 07:10:15 2,000 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ntvdm-system_31bf3856ad364e35_6.0.6000.16386_none_1e1753ed2313c813\keyboard.drv
+ 2006-11-02 07:10:18 2,032 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ntvdm-system_31bf3856ad364e35_6.0.6000.16386_none_1e1753ed2313c813\mouse.drv
+ 2006-11-02 07:10:16 1,744 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ntvdm-system_31bf3856ad364e35_6.0.6000.16386_none_1e1753ed2313c813\sound.drv
+ 2006-11-02 07:10:17 2,176 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ntvdm-system_31bf3856ad364e35_6.0.6000.16386_none_1e1753ed2313c813\vga.drv
+ 2006-11-02 07:10:15 2,000 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6000.16386_none_fbd6b71e75a2c6c8\keyboard.drv
+ 2006-11-02 07:10:18 2,032 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6000.16386_none_fbd6b71e75a2c6c8\mouse.drv
+ 2006-11-02 07:10:00 2,842 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6000.16386_none_fbd6b71e75a2c6c8\redir.exe
+ 2006-11-02 07:10:16 1,744 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6000.16386_none_fbd6b71e75a2c6c8\sound.drv
+ 2006-11-02 07:10:17 2,176 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6000.16386_none_fbd6b71e75a2c6c8\vga.drv
+ 2006-11-02 07:10:22 2,864 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6000.16386_none_fbd6b71e75a2c6c8\WINSOCK.DLL
+ 2006-11-02 07:10:18 2,112 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6000.16386_none_fbd6b71e75a2c6c8\WINSPOOL.EXE
+ 2006-11-02 07:10:27 2,864 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6000.16386_none_fbd6b71e75a2c6c8\WOWDEB.EXE
+ 2006-11-02 07:08:53 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-oleaccrc_31bf3856ad364e35_6.0.6000.16386_none_76f32d528a780cf2\oleaccrc.dll
+ 2006-11-02 12:34:48 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-photosamples_31bf3856ad364e35_6.0.6000.16386_none_95425ac284e42b43\SampleRes.dll
+ 2008-05-07 23:57:58 432,640 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6000.16649_none_0756e58cca3c3d46\CbsCore.dll
+ 2008-05-07 23:57:58 95,232 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6000.16649_none_0756e58cca3c3d46\DrUpdate.dll
+ 2008-05-07 23:57:58 99,840 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6000.16649_none_0756e58cca3c3d46\poqexec.exe
+ 2008-05-07 23:57:58 116,224 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6000.16649_none_0756e58cca3c3d46\smipi.dll
+ 2008-05-07 23:57:59 1,646,592 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6000.16649_none_0756e58cca3c3d46\wcp.dll
+ 2008-05-07 23:57:59 50,688 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6000.16649_none_0756e58cca3c3d46\wrpint.dll
+ 2008-05-08 17:38:56 1,744,384 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\apds.dll
+ 2008-05-08 17:38:58 222,208 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\apircl.dll
+ 2008-05-08 17:38:56 199,168 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\apss.dll
+ 2008-05-08 17:38:57 534,528 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\CbsCore.dll
+ 2008-05-08 17:38:57 22,016 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\CbsMsg.dll
+ 2008-05-08 17:38:57 119,808 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\cmiadapter.dll
+ 2008-05-08 17:38:58 271,360 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\cmitrust.dll
+ 2008-05-08 17:38:59 2,032,640 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\cmiv2.dll
+ 2008-05-08 17:38:58 238,592 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\CntrtextInstaller.dll
+ 2008-05-08 17:38:56 258,560 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\dpx.dll
+ 2008-05-08 17:38:59 99,840 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\DrUpdate.dll
+ 2008-05-08 17:38:59 246,784 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\drvstore.dll
+ 2008-05-08 17:38:57 263,168 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\esscli.dll
+ 2008-05-08 17:38:57 614,400 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\fastprox.dll
+ 2008-05-08 17:38:57 100,352 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\helpcins.dll
+ 2008-05-08 17:38:59 222,720 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\locdrv.dll
+ 2008-05-08 17:39:01 191,488 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\mofd.dll
+ 2008-05-08 17:38:58 102,400 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\mofinstall.dll
+ 2008-05-08 17:38:57 305,152 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\msdelta.dll
+ 2008-05-08 17:38:57 35,328 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\mspatcha.dll
+ 2008-05-08 17:38:59 146,432 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\OEMHelpIns.dll
+ 2008-05-08 17:38:59 130,560 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\PkgMgr.exe
+ 2008-05-08 17:38:57 118,272 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\poqexec.exe
+ 2008-05-08 17:39:01 264,704 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\repdrvfs.dll
+ 2008-05-08 17:38:56 126,464 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\rescinst.dll
+ 2008-05-08 17:38:58 704,512 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\smiengine.dll
+ 2008-05-08 17:38:57 139,264 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\SmiInstaller.dll
+ 2008-05-08 17:38:59 116,736 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\smipi.dll
+ 2008-05-08 17:39:00 357,888 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\wbemcomn.dll
+ 2008-05-08 17:39:00 742,912 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\wbemcore.dll
+ 2008-05-08 17:39:00 30,208 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\wbemprox.dll
+ 2008-05-08 17:39:00 1,832,448 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\wcp.dll
+ 2008-05-08 17:38:59 218,624 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\wdscore.dll
+ 2008-05-08 17:38:57 83,968 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\wmiutils.dll
+ 2008-05-08 17:39:00 51,712 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\wrpint.dll
+ 2008-05-08 17:39:00 183,296 ----a-w C:\Windows\winsxs\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64\xmllite.dll
+ 2006-11-02 07:39:56 1,536 ----a-w C:\Windows\winsxs\x86_microsoft-windows-t..acyinkingcomponents_31bf3856ad364e35_6.0.6000.16386_none_3fbb09cf8caa385d\penchs.dll
+ 2006-11-02 07:39:56 1,536 ----a-w C:\Windows\winsxs\x86_microsoft-windows-t..acyinkingcomponents_31bf3856ad364e35_6.0.6000.16386_none_3fbb09cf8caa385d\pencht.dll
+ 2006-11-02 07:39:56 1,536 ----a-w C:\Windows\winsxs\x86_microsoft-windows-t..acyinkingcomponents_31bf3856ad364e35_6.0.6000.16386_none_3fbb09cf8caa385d\penjpn.dll
+ 2006-11-02 07:39:56 1,536 ----a-w C:\Windows\winsxs\x86_microsoft-windows-t..acyinkingcomponents_31bf3856ad364e35_6.0.6000.16386_none_3fbb09cf8caa385d\penkor.dll
+ 2006-11-02 07:39:56 1,536 ----a-w C:\Windows\winsxs\x86_microsoft-windows-t..acyinkingcomponents_31bf3856ad364e35_6.0.6000.16386_none_3fbb09cf8caa385d\penusa.dll
+ 2006-11-02 07:39:56 1,536 ----a-w C:\Windows\winsxs\x86_microsoft-windows-t..acyinkingcomponents_31bf3856ad364e35_6.0.6000.16386_none_3fbb09cf8caa385d\pipres.dll
+ 2006-11-02 07:39:56 1,536 ----a-w C:\Windows\winsxs\x86_microsoft-windows-t..acyinkingcomponents_31bf3856ad364e35_6.0.6000.16386_none_3fbb09cf8caa385d\skchobj.dll
+ 2006-11-02 07:39:56 1,536 ----a-w C:\Windows\winsxs\x86_microsoft-windows-t..acyinkingcomponents_31bf3856ad364e35_6.0.6000.16386_none_3fbb09cf8caa385d\skchui.dll
+ 2006-11-02 12:35:47 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-t..nputpersonalization_31bf3856ad364e35_6.0.6000.16386_none_3d7550f9c9692474\IPSEventLogMsg.dll
+ 2006-11-02 12:35:47 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-tabletpc-pentraining_31bf3856ad364e35_6.0.6000.16386_none_dfb8647a7b1e856b\PTRes.dll
+ 2006-11-02 12:35:43 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-tabletpc-touchtraining_31bf3856ad364e35_6.0.6000.16386_none_c41ca1245ce8094b\TTRes.dll
+ 2008-05-08 00:00:40 2,027,008 ----a-w C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.16646_none_b6e7fd209d7b409d\win32k.sys
+ 2008-05-08 00:00:40 2,028,544 ----a-w C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.20782_none_b7425913b6bceacf\win32k.sys
+ 2008-05-08 00:00:40 2,032,128 ----a-w C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18027_none_b8e4dbe89a90b303\win32k.sys
+ 2008-05-08 00:00:40 2,032,128 ----a-w C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22125_none_b96c781fb3b0201f\win32k.sys
+ 2006-11-02 09:43:00 2,560 ----a-w C:\Windows\winsxs\x86_microsoft-windows-winsock-legacy_31bf3856ad364e35_6.0.6000.16386_none_e12e74ad149badfc\rnr20.dll
+ 2006-11-02 07:15:27 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-wmi-core_31bf3856ad364e35_6.0.6000.16386_none_b71d411922ad8f1f\WmiApRes.dll
+ 2006-11-02 12:35:25 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-wmi-snmp-provider_31bf3856ad364e35_6.0.6000.16386_none_a884bc8dc9d4ada2\smierrsm.dll
+ 2006-11-02 12:35:25 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-wmi-snmp-provider_31bf3856ad364e35_6.0.6000.16386_none_a884bc8dc9d4ada2\smierrsy.dll
+ 2006-11-02 12:35:25 2,048 ----a-w C:\Windows\winsxs\x86_microsoft-windows-wmi-snmp-provider_31bf3856ad364e35_6.0.6000.16386_none_a884bc8dc9d4ada2\smimsgif.dll
+ 2008-04-17 13:35:15 1,230,336 ----a-w C:\Windows\winsxs\x86_microsoft.msxml2_6bd6b9abf345378f_4.1.0.0_none_6c030d6fdc86522c\msxml4.dll
+ 2006-11-02 12:36:03 2,560 ----a-w C:\Windows\winsxs\x86_wcf-m_sm_evt_dll_vista_31bf3856ad364e35_6.0.6000.16386_none_76336ee89b768fbf\ServiceModelEvents.dll
+ 2006-11-02 12:36:02 2,560 ----a-w C:\Windows\winsxs\x86_wcf-m_sm_ins_rc_dll_31bf3856ad364e35_6.0.6000.16386_none_c6c5835b4cd99252\ServiceModelInstallRC.dll
+ 2000-08-31 06:00:00 68,096 ----a-w C:\Windows\zip.exe
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DellSupportCenter"="C:\Program Files\Dell Support Center\bin\sprtcmd.exe" [2007-11-15 11:23 202544]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe" [2007-08-03 12:51 202024]
"Speech Recognition"="C:\Windows\Speech\Common\sapisvr.exe" [2006-11-02 11:45 49664]
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 14:36 201728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2008-01-16 23:12 1006264]
"ECenter"="C:\Dell\E-Center\EULALauncher.exe" [2007-05-25 08:03 17920]
"SigmatelSysTrayApp"="C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe" [2007-09-12 10:40 405504]
"NvSvc"="C:\Windows\system
0