Demande d'aide Virus:Win32/Gael.D

Section d'analyse de rapports et de désinfection : malwares en tous genre et autres indésirables. Demandes de nettoyage uniquement. Prise en charge restreinte : équipe spécialisée.

Modérateur: Modérateurs

Règles du forum :arrow: Les désinfections sont prises en charge par un groupe spécifique, tout le monde ne peut pas intervenir pour désinfecter les machines (règles).
:arrow: Les procédures sont sur-mesure, ne faites pas la même chose chez vous (explications).
:arrow: Un topic par machine, chacun crée le sien. ;)

Demande d'aide Virus:Win32/Gael.D

Messagepar toftrem » 29 Mai 2012 09:21

Bonjour à tous

Avant tout merci d'avance à celui qui m'aidera à régler mon pb.

Me voici devant un pb difficile à régler.

Depuis Octobre 2011 j'ai ce virus qui me vérole mes fichiers EXE sur ce poste de façon aléatoire. :twisted:

Je possède une version pro "officiellement achetée" d'AVAST PRO.

Cette version me trouve ce virus et nettoie les EXE. Le pb est que du coup, le fichier EXE est inutilisable. Re :evil:

J'ai essayé de faire des test avec toutes sortes d'utils de style Malwarebytes Anti-Malware, ComboFix.exe, HiJackThis.exe mais sans trop comprendre ce que je faisais.....

Je me suis ensuite dit que AVAST déconnait et me suis laissé le choix de le désinstaller pour essayer Microsoft security essential à la place.(Après avoir joint le support technique AVAST et échangé des e-mails pendant 1 mois sans qu'ils me trouvent la solution....)

Pas de souci pendant qqes temps puis je viens de m'apercevoir que tous les fichiers EXE ont été "réparés" de ce virus le 15 Mai 2012.. Donc inutilisables... :twisted:

Avant de retrouver tous mes EXE corrompus, je souhaite donc éradiquer ce Virus:Win32/Gael.D et autres infections sur ce pc.

Pour la bonne compréhension de la machine, elle fait partie d'un groupe d'ordinateurs (8 au total) elle tourne sous WINXP SP3, c'est une sorte de serveur qui est sur le réseau local et partage des fichiers avec les autres ordis via le groupe de travail nommé "BE". Ce poste héberge un serveur FTP. La connexion adsl est assurée par une box "routeur" freebox.

Que dois je faire? reinstaller AVAST?

Merci pour votre aide

Toftrem
toftrem
 
Messages: 14
Inscription: 07 Sep 2005 21:12

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar toftrem » 29 Mai 2012 09:22

elle heberge aussi un serveur de mail "hmailserveur"
toftrem
 
Messages: 14
Inscription: 07 Sep 2005 21:12

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar nardino » 29 Mai 2012 09:52

Bonjour,
Envoie un rapport Combofix.
Image Combofix

Image IMPORTANT
Enregistre ComboFix.exe sur le Bureau
Désactive les applications antivirus et anti-malware résidentes, en général via un clic droit sur l'icône de la Zone de notification, sinon elles risquent d'interférer avec l'outil.
Image Fais un double clic sur l'icône Imageet suis les invites.
Sous XP accepte l'installation de la console de récupération.

Image Surtout ne lance aucune application pendant le scan et après le redémarrage parfois nécessaire et provoqué par l'outil.
Lorsque l'outil aura terminé, il affichera un rapport.
Attends l'affichage du rapport.(Il sera enregistré sous C:\Combofix.txt)
Image Copie le contenu dans ta prochaine réponse.

Image Avertissement aux lecteurs.
Combofix n'est pas un outil anodin ni sans risques pour le système d'exploitation.
Il est conseillé de l'utiliser sous le contrôle d'un assistant.

Image ZHPDiag de Nicolas Coolman sur ton bureau.

Image Clique sur le fichier ZHPDiag2.exe pour installer l'outil et suis la routine.
Coche Installer une icône sur le bureau quand cela te sera proposé.

Image Lance ZHPDiag en cliquant sur l'icône ZHPDiag affichée sur le bureau
Image
Image Dans l'interface, fais les trois opérations comme dans l'image ci-dessous :
1 : Clique sur l'icône Tournevis
2 : Clique sur le bouton radio Tous
3 : Clique sur L'icône Loupe pour lancer le scan

Image

Laisse faire le scan jusqu'à ce que la barre de progression en bas soit à 100%. Ce message aura disparu.

Image

Image Tu refermes ZHPDiag en cliquant sur la croix rouge en haut à droite.
Un fichier ZHPDiag.txt sera enregistré sur le bureau.
Image
Image Tu l'héberges sur Cjoint en cochant 4 jours dans la ligne Et pour quelle durée ?
Tu me communiques le lien obtenu dans ta réponse.
Explications pour Cjoint

@+
Image
Avatar de l’utilisateur
nardino
Super Libellulien
Super Libellulien
 
Messages: 1103
Inscription: 03 Avr 2009 22:02

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar toftrem » 29 Mai 2012 10:49

Merci pour la réactivité.....

Rapport combofix

ComboFix 12-05-28.05 - TOUS 29/05/2012 11:15:40.3.2 - x86
Microsoft Windows XP Professionnel 5.1.2600.3.1252.33.1036.18.2046.1448 [GMT 2:00]
Lancé depuis: c:\documents and settings\TOUS.FREDO\Bureau\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDF}
AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2012-04-28 au 2012-05-29 ))))))))))))))))))))))))))))))))))))
.
.
2012-05-29 08:09 . 2012-05-29 08:09 29904 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{A48D5DEB-802C-4A9E-AD1A-D20FD1578217}\MpKslc77ddd2a.sys
2012-05-29 08:09 . 2012-05-29 08:09 56200 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{A48D5DEB-802C-4A9E-AD1A-D20FD1578217}\offreg.dll
2012-05-29 03:41 . 2012-05-08 16:40 6737808 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{A48D5DEB-802C-4A9E-AD1A-D20FD1578217}\mpengine.dll
2012-05-27 12:06 . 2012-05-08 16:40 6737808 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-05-14 08:24 . 2012-05-14 08:59 419488 ----a-w- c:\windows\system32\FlashPlayerApp.exe
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-05-14 08:59 . 2011-07-12 06:06 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-04-11 13:51 . 2004-08-04 00:48 2028544 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-04-11 13:51 . 2004-08-19 13:03 1862400 ----a-w- c:\windows\system32\win32k.sys
2012-04-11 13:51 . 2004-08-19 13:03 2150400 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-20 18:44 . 2009-06-18 17:48 171064 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2012-02-29 14:10 . 2004-08-19 13:03 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-02-29 14:10 . 2004-08-19 13:03 148480 ----a-w- c:\windows\system32\imagehlp.dll
2007-07-26 06:25 . 2007-07-26 06:25 643129 ----a-w- c:\program files\unins000.exe
2012-03-13 04:38 . 2012-04-13 13:57 97208 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-01-03_10.09.58 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-05-29 03:31 . 2012-05-29 03:31 16384 c:\windows\temp\Perflib_Perfdata_6b4.dat
+ 2004-08-19 13:03 . 2012-02-28 18:49 37888 c:\windows\system32\url.dll
- 2004-08-19 13:03 . 2011-11-01 20:35 37888 c:\windows\system32\url.dll
+ 2012-01-13 13:57 . 2003-04-18 17:06 79872 c:\windows\system32\robocopy.exe
+ 2004-08-19 13:03 . 2012-05-10 06:10 97496 c:\windows\system32\perfc00C.dat
- 2004-08-19 13:03 . 2011-10-31 03:53 97496 c:\windows\system32\perfc00C.dat
+ 2004-08-19 13:03 . 2012-05-10 06:10 82710 c:\windows\system32\perfc009.dat
- 2004-08-19 13:03 . 2011-11-02 14:12 82710 c:\windows\system32\perfc009.dat
+ 2004-08-19 13:03 . 2011-11-20 06:12 61952 c:\windows\system32\packager.exe
+ 2004-08-19 13:03 . 2011-10-14 14:47 23040 c:\windows\system32\mciseq.dll
- 2004-08-19 13:03 . 2008-04-14 02:33 23040 c:\windows\system32\mciseq.dll
+ 2004-08-19 13:03 . 2012-02-28 18:49 81920 c:\windows\system32\ieencode.dll
- 2004-08-19 13:03 . 2011-11-01 20:35 81920 c:\windows\system32\ieencode.dll
+ 2012-01-03 10:28 . 2011-12-10 14:24 20464 c:\windows\system32\drivers\mbam.sys
+ 2012-02-24 08:33 . 2012-02-23 16:11 24408 c:\windows\system32\drivers\aswKbd.sys
- 2011-06-21 18:19 . 2011-11-01 20:35 37888 c:\windows\system32\dllcache\url.dll
+ 2011-06-21 18:19 . 2012-02-28 18:49 37888 c:\windows\system32\dllcache\url.dll
+ 2011-11-20 06:12 . 2011-11-20 06:12 61952 c:\windows\system32\dllcache\packager.exe
+ 2011-10-14 14:47 . 2011-10-14 14:47 23040 c:\windows\system32\dllcache\mciseq.dll
+ 2009-02-20 08:10 . 2012-02-28 18:49 81920 c:\windows\system32\dllcache\ieencode.dll
- 2009-02-20 08:10 . 2011-11-01 20:35 81920 c:\windows\system32\dllcache\ieencode.dll
+ 2011-12-25 02:49 . 2011-12-25 02:49 31504 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe
+ 2011-12-25 10:07 . 2011-12-25 10:07 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Security.dll
- 2011-07-08 12:00 . 2011-07-08 12:00 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Security.dll
+ 2011-12-24 21:55 . 2011-12-24 21:55 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
- 2011-07-07 10:04 . 2011-07-07 10:04 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
- 2011-07-07 10:04 . 2011-07-07 10:04 86016 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorie.dll
+ 2011-12-24 21:55 . 2011-12-24 21:55 86016 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorie.dll
- 2011-07-07 10:03 . 2011-07-07 10:03 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll
+ 2011-12-24 21:55 . 2011-12-24 21:55 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll
- 2011-07-07 11:09 . 2011-07-07 11:09 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe
+ 2011-12-24 22:49 . 2011-12-24 22:49 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe
- 2011-07-07 11:09 . 2011-07-07 11:09 24576 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_filter.dll
+ 2011-12-24 22:49 . 2011-12-24 22:49 24576 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_filter.dll
+ 2012-03-08 13:20 . 2012-03-08 13:20 49152 c:\windows\Installer\1e40052.msi
+ 2012-03-08 13:19 . 2012-03-08 13:19 28160 c:\windows\Installer\1e40008.msi
+ 2012-05-10 06:14 . 2012-05-10 06:14 34632 c:\windows\Installer\{90120000-0020-040C-0000-0000000FF1CE}\O12ConvIcon.exe
- 2011-12-16 10:46 . 2011-12-16 10:46 34632 c:\windows\Installer\{90120000-0020-040C-0000-0000000FF1CE}\O12ConvIcon.exe
+ 2012-01-03 08:45 . 2012-01-03 08:45 16832 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\ViewerPS.dll
+ 2012-01-03 21:51 . 2012-01-03 21:51 37296 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\reader_sl.exe
+ 2012-01-03 08:44 . 2012-01-03 08:44 79280 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\PDFPrevHndlr.dll
+ 2012-01-03 21:15 . 2012-01-03 21:15 99776 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\eula.exe
+ 2012-01-03 20:52 . 2012-01-03 20:52 27048 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\acrotextextractor.exe
+ 2012-01-03 07:19 . 2012-01-03 07:19 16824 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\AcroRd32Info.exe
+ 2012-01-03 07:16 . 2012-01-03 07:16 75200 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\acroiehelpershim.dll
+ 2012-01-03 07:16 . 2012-01-03 07:16 61888 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\AcroIEHelper.dll
+ 2009-02-26 09:43 . 2009-02-26 09:43 71520 c:\windows\Installer\$PatchCache$\Managed\000021090200C0400000000000F01FEC\12.0.6612\XL12CNVP.DLL
+ 2009-02-26 08:45 . 2009-02-26 08:45 20808 c:\windows\Installer\$PatchCache$\Managed\000021090200C0400000000000F01FEC\12.0.6612\WRD12EXE.EXE
+ 2009-02-26 04:06 . 2009-02-26 04:06 16712 c:\windows\Installer\$PatchCache$\Managed\000021090200C0400000000000F01FEC\12.0.6612\PXBPROXY.DLL
+ 2009-02-26 04:06 . 2009-02-26 04:06 68488 c:\windows\Installer\$PatchCache$\Managed\000021090200C0400000000000F01FEC\12.0.6612\PXBCOM.EXE
+ 2012-04-12 07:13 . 2012-04-12 07:13 90112 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_d63a8bbc\System.Drawing.Design.dll
+ 2012-01-11 08:06 . 2012-01-11 08:06 90112 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_6a86cfa3\System.Drawing.Design.dll
+ 2012-01-11 08:05 . 2012-01-11 08:05 61440 c:\windows\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_6e28cb09\CustomMarshalers.dll
+ 2012-05-10 06:25 . 2012-05-10 06:25 47616 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLiveWriter\ff0e98a47a1aaa29100976e9e2cc430a\WindowsLiveWriter.ni.exe
+ 2012-04-12 07:22 . 2012-04-12 07:22 47616 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLiveWriter\e7e97269e89997e751b00aacb1249a56\WindowsLiveWriter.ni.exe
+ 2012-05-10 06:26 . 2012-05-10 06:26 99840 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\5d4d60e3cb7f6b19d1dc6452e735a360\WindowsLive.Writer.Api.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 99840 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\2da63595792df88d3738ff12c3e42198\WindowsLive.Writer.Api.ni.dll
+ 2012-05-10 06:12 . 2012-05-10 06:12 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\f121ccced1aa14badb316d8d9be5154d\UIAutomationProvider.ni.dll
+ 2012-02-17 07:22 . 2012-02-17 07:22 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\dab766b18e6fe0a8f53a93c56be7b40e\System.Windows.Presentation.ni.dll
+ 2012-05-10 06:28 . 2012-05-10 06:28 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\316e223f2ab8c69cd6a5a06de21650ec\System.Windows.Presentation.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\7aac1fe67890463655aeeb3b8e4f2884\System.Web.DynamicData.Design.ni.dll
+ 2012-04-12 07:23 . 2012-04-12 07:23 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\36124bfc4baaa1c2063d699e77324080\System.Web.DynamicData.Design.ni.dll
+ 2012-02-17 07:21 . 2012-02-17 07:21 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\89dfd3999ad1d72c59243d7b4bf40d5a\System.ComponentModel.DataAnnotations.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\34c988dea48c291b4e648941207e83fb\System.ComponentModel.DataAnnotations.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\7bb7e51275fa19f8b4894c772bdb1e10\System.AddIn.Contract.ni.dll
+ 2012-05-10 06:13 . 2012-05-10 06:13 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\f0c4a4528f130ef2ff1ae63dd7b39075\PresentationFontCache.ni.exe
+ 2012-02-17 07:15 . 2012-02-17 07:15 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\3aa4296d4aa01fe0533de2c15f818d5f\PresentationFontCache.ni.exe
+ 2012-02-17 07:15 . 2012-02-17 07:15 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\820acb71782d9cd006800b3ac7e1ca53\PresentationCFFRasterizer.ni.dll
+ 2012-05-10 06:12 . 2012-05-10 06:12 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\53931181e5a5e194da82605613cda6af\PresentationCFFRasterizer.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\f2be3ad4cda6853d7959a84cec0414c5\Microsoft.Vsa.ni.dll
+ 2012-02-17 07:22 . 2012-02-17 07:22 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\d07f0222f62dbed7898a6e2e909d407a\Microsoft.Vsa.ni.dll
+ 2012-05-10 06:12 . 2012-05-10 06:12 15872 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualC\f00a18225430e7531135589688d650a1\Microsoft.VisualC.ni.dll
+ 2012-05-10 06:12 . 2012-05-10 06:12 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\8fab9cd28bbc860a34feec119512664d\Microsoft.Build.Framework.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\0eac132c7c36f1c100ae23c956b379e7\Microsoft.Build.Framework.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\d66bc03eb7eae89b4dde2d09eda1414f\dfsvc.ni.exe
+ 2012-05-10 06:13 . 2012-05-10 06:13 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\016444dfc5f7e3d11c776f2fbc7a4594\Accessibility.ni.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2012-01-11 08:05 . 2012-01-11 08:05 81920 c:\windows\assembly\GAC\System.Security\1.0.5000.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-10-13 05:48 . 2011-10-13 05:48 81920 c:\windows\assembly\GAC\System.Security\1.0.5000.0__b03f5f7f11d50a3a\System.Security.dll
+ 2012-04-12 07:09 . 2011-12-19 08:54 37888 c:\windows\$NtUninstallKB2675157$\url.dll
+ 2012-04-12 07:09 . 2011-12-19 08:54 81920 c:\windows\$NtUninstallKB2675157$\ieencode.dll
+ 2012-02-17 07:09 . 2011-11-01 20:35 37888 c:\windows\$NtUninstallKB2647516$\url.dll
+ 2012-02-17 07:09 . 2011-11-01 20:35 81920 c:\windows\$NtUninstallKB2647516$\ieencode.dll
+ 2012-01-12 07:00 . 2008-04-14 02:33 23040 c:\windows\$NtUninstallKB2598479$\mciseq.dll
+ 2012-01-12 07:00 . 2008-04-14 02:34 59904 c:\windows\$NtUninstallKB2584146$\packager.exe
+ 2012-04-12 07:09 . 2010-07-05 13:17 26488 c:\windows\$hf_mig$\KB2675157\update\spcustom.dll
+ 2012-04-12 07:09 . 2010-07-05 13:17 18296 c:\windows\$hf_mig$\KB2675157\spmsg.dll
+ 2012-02-28 18:48 . 2012-02-28 18:48 37888 c:\windows\$hf_mig$\KB2675157\SP3QFE\url.dll
+ 2012-02-28 18:48 . 2012-02-28 18:48 81920 c:\windows\$hf_mig$\KB2675157\SP3QFE\ieencode.dll
+ 2012-02-17 07:08 . 2010-07-05 13:17 26488 c:\windows\$hf_mig$\KB2661637\update\spcustom.dll
+ 2012-02-17 07:08 . 2010-07-05 13:17 18296 c:\windows\$hf_mig$\KB2661637\spmsg.dll
+ 2012-02-17 07:09 . 2010-07-05 13:17 26488 c:\windows\$hf_mig$\KB2660465\update\spcustom.dll
+ 2012-02-17 07:09 . 2010-07-05 13:17 18296 c:\windows\$hf_mig$\KB2660465\spmsg.dll
+ 2012-04-12 07:07 . 2010-07-05 13:17 26488 c:\windows\$hf_mig$\KB2653956\update\spcustom.dll
+ 2012-04-12 07:07 . 2010-07-05 13:17 18296 c:\windows\$hf_mig$\KB2653956\spmsg.dll
+ 2012-03-14 17:21 . 2010-07-05 13:17 26488 c:\windows\$hf_mig$\KB2647518\update\spcustom.dll
+ 2012-03-14 17:21 . 2010-07-05 13:17 18296 c:\windows\$hf_mig$\KB2647518\spmsg.dll
+ 2012-02-17 07:09 . 2010-07-05 13:17 26488 c:\windows\$hf_mig$\KB2647516\update\spcustom.dll
+ 2012-02-17 07:09 . 2010-07-05 13:17 18296 c:\windows\$hf_mig$\KB2647516\spmsg.dll
+ 2012-02-15 04:35 . 2011-12-19 08:52 37888 c:\windows\$hf_mig$\KB2647516\SP3QFE\url.dll
+ 2012-02-15 04:35 . 2011-12-19 08:52 81920 c:\windows\$hf_mig$\KB2647516\SP3QFE\ieencode.dll
+ 2012-01-12 07:02 . 2010-07-05 13:17 26488 c:\windows\$hf_mig$\KB2646524\update\spcustom.dll
+ 2012-01-12 07:02 . 2010-07-05 13:17 18296 c:\windows\$hf_mig$\KB2646524\spmsg.dll
+ 2012-03-14 17:23 . 2010-07-05 13:17 26488 c:\windows\$hf_mig$\KB2641653\update\spcustom.dll
+ 2012-03-14 17:23 . 2010-07-05 13:17 18296 c:\windows\$hf_mig$\KB2641653\spmsg.dll
+ 2012-01-12 07:02 . 2010-07-05 13:17 26488 c:\windows\$hf_mig$\KB2631813\update\spcustom.dll
+ 2012-01-12 07:02 . 2010-07-05 13:17 18296 c:\windows\$hf_mig$\KB2631813\spmsg.dll
+ 2012-03-14 17:21 . 2010-07-05 13:17 26488 c:\windows\$hf_mig$\KB2621440\update\spcustom.dll
+ 2012-03-14 17:21 . 2010-07-05 13:17 18296 c:\windows\$hf_mig$\KB2621440\spmsg.dll
+ 2012-01-12 07:00 . 2010-07-05 13:17 26488 c:\windows\$hf_mig$\KB2603381\update\spcustom.dll
+ 2012-01-12 07:00 . 2010-07-05 13:17 18296 c:\windows\$hf_mig$\KB2603381\spmsg.dll
+ 2012-01-12 07:00 . 2010-07-05 13:17 26488 c:\windows\$hf_mig$\KB2598479\update\spcustom.dll
+ 2012-01-12 07:00 . 2010-07-05 13:17 18296 c:\windows\$hf_mig$\KB2598479\spmsg.dll
+ 2011-10-14 14:46 . 2011-10-14 14:46 23040 c:\windows\$hf_mig$\KB2598479\SP3QFE\mciseq.dll
+ 2012-01-27 16:03 . 2010-07-05 13:17 26488 c:\windows\$hf_mig$\KB2585542\update\spcustom.dll
+ 2012-01-27 16:03 . 2010-07-05 13:17 18296 c:\windows\$hf_mig$\KB2585542\spmsg.dll
+ 2012-01-12 07:00 . 2010-07-05 13:17 26488 c:\windows\$hf_mig$\KB2584146\update\spcustom.dll
+ 2012-01-12 07:00 . 2010-07-05 13:17 18296 c:\windows\$hf_mig$\KB2584146\spmsg.dll
+ 2011-11-20 06:11 . 2011-11-20 06:11 61952 c:\windows\$hf_mig$\KB2584146\SP3QFE\packager.exe
+ 2012-05-10 06:10 . 2012-05-10 06:10 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2012-02-15 04:35 . 2012-01-11 19:06 3072 c:\windows\system32\iacenc.dll
+ 2012-02-15 04:35 . 2012-01-11 19:06 3072 c:\windows\system32\dllcache\iacenc.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2011-10-13 05:54 . 2011-10-13 05:54 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2012-02-15 04:35 . 2012-01-11 19:05 3072 c:\windows\$hf_mig$\KB2661637\SP3QFE\iacenc.dll
+ 2012-01-11 09:48 . 2011-11-03 18:18 4608 c:\windows\$hf_mig$\KB2603381\update\customaddreg.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2012-04-05 21:13 . 2012-04-05 21:13 299080 c:\windows\system32\XPSViewer\XPSViewer.exe
- 2004-08-19 13:03 . 2011-06-20 17:44 293888 c:\windows\system32\winsrv.dll
+ 2004-08-19 13:03 . 2011-11-25 21:57 293888 c:\windows\system32\winsrv.dll
+ 2004-08-19 13:03 . 2011-10-14 14:47 180736 c:\windows\system32\winmm.dll
- 2004-08-19 13:03 . 2008-04-14 02:33 180736 c:\windows\system32\winmm.dll
- 2004-08-19 13:03 . 2011-11-01 20:35 671232 c:\windows\system32\wininet.dll
+ 2004-08-19 13:03 . 2012-02-28 18:49 671232 c:\windows\system32\wininet.dll
- 2004-08-19 13:03 . 2009-08-25 09:18 354816 c:\windows\system32\winhttp.dll
+ 2004-08-19 13:03 . 2011-11-16 14:22 354816 c:\windows\system32\winhttp.dll
- 2004-08-19 13:03 . 2011-11-01 20:35 629248 c:\windows\system32\urlmon.dll
+ 2004-08-19 13:03 . 2012-02-28 18:49 629248 c:\windows\system32\urlmon.dll
+ 2004-08-19 13:03 . 2011-11-16 14:22 152064 c:\windows\system32\schannel.dll
+ 2004-08-19 13:03 . 2011-11-03 15:28 387072 c:\windows\system32\qdvd.dll
- 2004-08-19 13:03 . 2008-04-14 02:33 387072 c:\windows\system32\qdvd.dll
- 2004-08-19 13:03 . 2011-10-31 03:53 553732 c:\windows\system32\perfh00C.dat
+ 2004-08-19 13:03 . 2012-05-10 06:10 553732 c:\windows\system32\perfh00C.dat
- 2004-08-19 13:03 . 2011-11-02 14:12 482296 c:\windows\system32\perfh009.dat
+ 2004-08-19 13:03 . 2012-05-10 06:10 482296 c:\windows\system32\perfh009.dat
+ 2004-08-19 13:03 . 2012-02-28 18:49 532480 c:\windows\system32\mstime.dll
- 2004-08-19 13:03 . 2011-11-01 20:35 532480 c:\windows\system32\mstime.dll
- 2004-08-19 13:03 . 2011-11-01 20:35 449536 c:\windows\system32\mshtmled.dll
+ 2004-08-19 13:03 . 2012-02-28 18:49 449536 c:\windows\system32\mshtmled.dll
+ 2012-03-06 15:00 . 2012-01-31 12:44 237072 c:\windows\system32\MpSigStub.exe
+ 2012-05-14 08:23 . 2012-05-14 08:24 351904 c:\windows\system32\Macromed\Flash\FlashUtil32_11_2_202_235_Plugin.exe
+ 2012-05-14 08:59 . 2012-05-14 08:59 351904 c:\windows\system32\Macromed\Flash\FlashUtil32_11_2_202_235_ActiveX.exe
+ 2012-05-14 08:59 . 2012-05-14 08:59 424096 c:\windows\system32\Macromed\Flash\FlashUtil32_11_2_202_235_ActiveX.dll
+ 2012-05-14 08:24 . 2012-05-14 08:59 257696 c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
+ 2011-07-12 15:58 . 2012-05-29 09:18 217809 c:\windows\system32\inetsrv\MetaBase.bin
- 2004-08-19 13:03 . 2011-11-01 20:35 251904 c:\windows\system32\iepeers.dll
+ 2004-08-19 13:03 . 2012-02-28 18:49 251904 c:\windows\system32\iepeers.dll
- 2004-08-19 13:09 . 2011-12-16 10:58 336256 c:\windows\system32\FNTCACHE.DAT
+ 2004-08-19 13:09 . 2012-05-10 06:18 336256 c:\windows\system32\FNTCACHE.DAT
+ 2004-08-19 13:14 . 2012-01-09 16:20 139784 c:\windows\system32\drivers\rdpwd.sys
- 2009-12-24 07:00 . 2009-12-24 07:00 177664 c:\windows\system32\dllcache\wintrust.dll
+ 2009-12-24 07:00 . 2012-02-29 14:10 177664 c:\windows\system32\dllcache\wintrust.dll
+ 2010-06-18 17:45 . 2011-11-25 21:57 293888 c:\windows\system32\dllcache\winsrv.dll
- 2010-06-18 17:45 . 2011-06-20 17:44 293888 c:\windows\system32\dllcache\winsrv.dll
+ 2011-10-14 14:47 . 2011-10-14 14:47 180736 c:\windows\system32\dllcache\winmm.dll
- 2008-04-21 06:43 . 2011-11-01 20:35 671232 c:\windows\system32\dllcache\wininet.dll
+ 2008-04-21 06:43 . 2012-02-28 18:49 671232 c:\windows\system32\dllcache\wininet.dll
- 2009-04-15 05:51 . 2009-08-25 09:18 354816 c:\windows\system32\dllcache\winhttp.dll
+ 2009-04-15 05:51 . 2011-11-16 14:22 354816 c:\windows\system32\dllcache\winhttp.dll
+ 2008-08-20 05:10 . 2012-02-28 18:49 629248 c:\windows\system32\dllcache\urlmon.dll
- 2008-08-20 05:10 . 2011-11-01 20:35 629248 c:\windows\system32\dllcache\urlmon.dll
+ 2008-12-05 06:57 . 2011-11-16 14:22 152064 c:\windows\system32\dllcache\schannel.dll
+ 2011-08-10 05:55 . 2012-01-09 16:20 139784 c:\windows\system32\dllcache\rdpwd.sys
+ 2011-11-03 15:28 . 2011-11-03 15:28 387072 c:\windows\system32\dllcache\qdvd.dll
+ 2010-11-05 05:05 . 2012-02-28 18:49 532480 c:\windows\system32\dllcache\mstime.dll
- 2010-11-05 05:05 . 2011-11-01 20:35 532480 c:\windows\system32\dllcache\mstime.dll
+ 2010-09-09 14:17 . 2012-02-28 18:49 449536 c:\windows\system32\dllcache\mshtmled.dll
- 2010-09-09 14:17 . 2011-11-01 20:35 449536 c:\windows\system32\dllcache\mshtmled.dll
+ 2012-02-29 14:10 . 2012-02-29 14:10 148480 c:\windows\system32\dllcache\imagehlp.dll
- 2010-02-26 05:42 . 2011-11-01 20:35 251904 c:\windows\system32\dllcache\iepeers.dll
+ 2010-02-26 05:42 . 2012-02-28 18:49 251904 c:\windows\system32\dllcache\iepeers.dll
+ 2012-04-05 21:52 . 2012-04-05 21:52 131168 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationHostDLL.dll
+ 2011-12-25 02:49 . 2011-12-25 02:49 436496 c:\windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll
+ 2012-01-31 01:38 . 2012-01-31 01:38 630784 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.dll
+ 2011-12-25 01:50 . 2011-12-25 01:50 389888 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2011-12-25 01:50 . 2011-12-25 01:50 364816 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
+ 2011-12-25 01:50 . 2011-12-25 01:50 989968 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2012-01-27 15:35 . 2012-01-27 15:35 471040 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Drawing.dll
+ 2011-12-24 21:55 . 2011-12-24 21:55 102400 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorld.dll
- 2011-07-07 10:04 . 2011-07-07 10:04 102400 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorld.dll
+ 2011-12-24 21:53 . 2011-12-24 21:53 315392 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
- 2011-07-07 10:01 . 2011-07-07 10:01 315392 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
+ 2011-12-24 22:49 . 2011-12-24 22:49 258048 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
- 2011-07-07 11:09 . 2011-07-07 11:09 258048 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
+ 2012-02-02 21:56 . 2012-02-02 21:56 963584 c:\windows\Installer\c617c6.msp
+ 2011-12-25 04:40 . 2011-12-25 04:40 819200 c:\windows\Installer\c040a7.msp
+ 2011-12-22 14:50 . 2011-12-22 14:50 256000 c:\windows\Installer\8e3541.msp
+ 2012-05-09 06:04 . 2012-05-09 06:04 301056 c:\windows\Installer\8d0368.msi
+ 2012-04-19 06:01 . 2012-04-19 06:01 553472 c:\windows\Installer\8a2a86.msi
+ 2012-05-10 06:07 . 2012-05-10 06:07 217864 c:\windows\Installer\{90120000-00A4-040C-0000-0000000FF1CE}\misc.exe
- 2011-06-17 05:58 . 2011-06-17 05:58 217864 c:\windows\Installer\{90120000-00A4-040C-0000-0000000FF1CE}\misc.exe
+ 2012-05-09 06:05 . 2012-05-09 06:05 109563 c:\windows\Installer\{0F842B77-56EA-4AAF-8295-81A022350B5E}\SCEP.exe
+ 2012-05-09 06:05 . 2012-05-09 06:05 123352 c:\windows\Installer\{0F842B77-56EA-4AAF-8295-81A022350B5E}\MSE.exe
+ 2012-05-09 06:05 . 2012-05-09 06:05 109563 c:\windows\Installer\{0F842B77-56EA-4AAF-8295-81A022350B5E}\INTUNE.exe
+ 2012-05-09 06:05 . 2012-05-09 06:05 109563 c:\windows\Installer\{0F842B77-56EA-4AAF-8295-81A022350B5E}\FEP.exe
+ 2012-05-09 06:05 . 2012-05-09 06:05 109563 c:\windows\Installer\{0F842B77-56EA-4AAF-8295-81A022350B5E}\EPP.exe
+ 2012-01-03 07:23 . 2012-01-03 07:23 378264 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\pdfshell.dll
+ 2012-01-03 08:44 . 2012-01-03 08:44 116168 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\PDFPrevHndlrShim.exe
+ 2012-01-03 07:22 . 2012-01-03 07:22 103864 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\nppdf32.dll
+ 2012-01-03 08:43 . 2012-01-03 08:43 550360 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\AdobeCollabSync.exe
+ 2012-01-03 07:40 . 2012-01-03 07:40 120240 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\AcroRdIF.dll
+ 2012-01-03 21:50 . 2012-01-03 21:50 357808 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\AcroRd32.exe
+ 2012-01-03 07:16 . 2012-01-03 07:16 665008 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\AcroPDF.dll
+ 2012-01-03 08:38 . 2012-01-03 08:38 280024 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\acrobroker.exe
+ 2012-01-03 08:08 . 2012-01-03 08:08 251296 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\a3dutility.exe
+ 2010-03-30 22:16 . 2010-03-30 22:16 130408 c:\windows\Installer\$PatchCache$\Managed\0DC1503A46F231838AD88BCDDC8E8F7C\3.2.30729\PresentationHostDLL_X86.dll
+ 2009-02-26 08:45 . 2009-02-26 08:45 509256 c:\windows\Installer\$PatchCache$\Managed\000021090200C0400000000000F01FEC\12.0.6612\WRD12CVR.DLL
+ 2009-02-25 13:27 . 2009-02-25 13:27 843680 c:\windows\Installer\$PatchCache$\Managed\000021090200C0400000000000F01FEC\12.0.6612\OICE.EXE
+ 2009-02-26 08:07 . 2009-02-26 08:07 395624 c:\windows\Installer\$PatchCache$\Managed\000021090200C0400000000000F01FEC\12.0.6612\MOC.EXE
+ 2012-01-11 08:06 . 2012-01-11 08:06 835584 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_a7e9352d\System.Drawing.dll
+ 2012-04-12 07:14 . 2012-04-12 07:14 843776 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_5681c1fb\System.Drawing.dll
+ 2012-01-11 08:06 . 2012-01-11 08:06 192512 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_ba305af4\System.Drawing.Design.dll
+ 2012-04-12 07:14 . 2012-04-12 07:14 192512 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_12a361f3\System.Drawing.Design.dll
+ 2012-01-11 08:06 . 2012-01-11 08:06 118784 c:\windows\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_57e3d5d4\CustomMarshalers.dll
+ 2012-02-17 07:20 . 2012-02-17 07:20 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\edc5691acfb65ac37f49de2ec497083a\WsatConfig.ni.exe
+ 2012-05-10 06:26 . 2012-05-10 06:26 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\ac4fc3032c19946f9b2729468888206d\WsatConfig.ni.exe
+ 2012-04-12 07:22 . 2012-04-12 07:22 626688 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLiveLocal.Wr#\7cc277c2303127d2664aab33d592a4bd\WindowsLiveLocal.WriterPlugin.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 626688 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLiveLocal.Wr#\218b4362202a2f432bb3714221ff2aa4\WindowsLiveLocal.WriterPlugin.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 118784 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\fb438f62f426ff28b4a9949d699051b8\WindowsLive.Writer.Extensibility.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 843776 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\f4c879fd28c2db82e98a2dd65e60acec\WindowsLive.Writer.Controls.ni.dll
+ 2012-02-17 07:20 . 2012-02-17 07:20 117760 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\da8015dc21fa2ef55902b438bbb0ec80\WindowsLive.Writer.Instrumentation.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 119296 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\ccc14b04d082666155d2c355ef1f6563\WindowsLive.Writer.FileDestinations.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\c954ba830b50bd4a6cf0ee094e2ea928\WindowsLive.Writer.Mshtml.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 428032 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\c627e81fcd97ecd7c70b7eedf7928713\WindowsLive.Writer.Localization.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 843776 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\bdeb63577afc142cf5b377b9e2565660\WindowsLive.Writer.Controls.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 152064 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\baacfa565b2f46f4501cd89b067a8a47\WindowsLive.Writer.HtmlParser.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 118784 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\b4c0d0908b6bdf882e5f8deb9404abe6\WindowsLive.Writer.Extensibility.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 334848 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\ab181ae110294c0c572059dea0a4332c\WindowsLive.Writer.Interop.Mshtml.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 108544 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\a8339c6108cde382c721c1585d4a6d9d\WindowsLive.Writer.Passport.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 119296 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\91abc2cfaf847465d40d6fdf73927374\WindowsLive.Writer.FileDestinations.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 319488 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\8cfcc19aafa227d46784bd096cb1d4e0\WindowsLive.Writer.Interop.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 594944 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\841842b15a178da4d03fc2be80b4d073\WindowsLive.Writer.HtmlEditor.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 174080 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\809bd32a5211d9cd4115fba88f370a74\WindowsLive.Writer.BrowserControl.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 428032 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\7fd56269accaaf9c79733f616de49cab\WindowsLive.Writer.Localization.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 851968 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\7b5e98e169fc34a17d4a1fb412461ce4\WindowsLive.Writer.BlogClient.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 322048 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\6e75989fed2ac3ab6f09923534c8b6ee\WindowsLive.Writer.SpellChecker.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 319488 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\6d9c4d236bacb711597c5aca6c04200e\WindowsLive.Writer.Interop.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 117760 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\678f35b523dbb63a4f247c1ffdf359cd\WindowsLive.Writer.Instrumentation.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 108544 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\313958002b6415baf438056e452f23c3\WindowsLive.Writer.Passport.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\3007d6df9256d53079cf1e3d815229b5\WindowsLive.Writer.Mshtml.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 313856 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\29e8f27943707613416f76a0357c8f41\WindowsLive.Writer.Interop.SHDocVw.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 174080 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\230141eb00db15e7818d1ce661a0b0b8\WindowsLive.Writer.BrowserControl.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 851968 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\228e3d0a57dc24f37a2b2259104749c1\WindowsLive.Writer.BlogClient.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 594944 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\1b316a40898d5a62af81ed70a3b708d0\WindowsLive.Writer.HtmlEditor.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 322048 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\130bc8fe5ff6eb69e4c7f0ba24fba59a\WindowsLive.Writer.SpellChecker.ni.dll
+ 2012-02-17 07:20 . 2012-02-17 07:20 152064 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\0814f03dae8a2563e705d2b013bbe262\WindowsLive.Writer.HtmlParser.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 145920 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Client\d74a2a15b12d1d7c33eb64df4879cf7e\WindowsLive.Client.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 145920 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Client\ceb928ad9bb99b975319a31489b1246e\WindowsLive.Client.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\6198de2c5b8f7d89404c2ba39d69ae56\WindowsFormsIntegration.ni.dll
+ 2012-04-12 07:18 . 2012-04-12 07:18 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\5be064066858620a8aa628fca459a888\WindowsFormsIntegration.ni.dll
+ 2012-05-10 06:12 . 2012-05-10 06:12 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\be27ab5913cec2b292a019c2a13ec701\UIAutomationTypes.ni.dll
+ 2012-02-17 07:17 . 2012-02-17 07:17 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\68f4157e570c77df653057c0583395bd\UIAutomationClient.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\04e5e2be34a70ee7f4c87550238095a0\UIAutomationClient.ni.dll
+ 2012-02-17 07:22 . 2012-02-17 07:22 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\c2a12bd4056b44f8005a7eb3af161e6a\System.Xml.Linq.ni.dll
+ 2012-05-10 06:28 . 2012-05-10 06:28 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\1c13b08593e99d6f5bef49ae7939c78b\System.Xml.Linq.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\8bffbaa5d5abe40674d0bc124dfe8622\System.Web.Routing.ni.dll
+ 2012-04-12 07:23 . 2012-04-12 07:23 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\1107b3a711bab40c83e2561ba2431d62\System.Web.Routing.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\6c7765c10516d375e9ddedad2dbab848\System.Web.RegularExpressions.ni.dll
+ 2012-02-17 07:16 . 2012-02-17 07:16 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\67877f896b2b0e42286e838fe307f3fd\System.Web.RegularExpressions.ni.dll
+ 2012-04-12 07:23 . 2012-04-12 07:23 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\d7c8c294920cfe79765215e242308d28\System.Web.Extensions.Design.ni.dll
+ 2012-05-10 06:28 . 2012-05-10 06:28 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\a7908debe80c209b599529685a159fa0\System.Web.Extensions.Design.ni.dll
+ 2012-04-12 07:23 . 2012-04-12 07:23 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\5176923a8264305118a299419e1c7bde\System.Web.Entity.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\44ecb9f7be54a2ba46e6102d343e2e7e\System.Web.Entity.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\fee8237aa2daa36e48aec379ee642422\System.Web.Entity.Design.ni.dll
+ 2012-04-12 07:23 . 2012-04-12 07:23 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\d746c0f0ed36226efb2e0115de42cdd6\System.Web.Entity.Design.ni.dll
+ 2012-04-12 07:23 . 2012-04-12 07:23 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\df5542604898c9ea3fda32c8619ae0e5\System.Web.DynamicData.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\40d90d2c1484164b786067320ce778f4\System.Web.DynamicData.ni.dll
+ 2012-04-12 07:23 . 2012-04-12 07:23 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\b9c8715157536097b489132574ad5c17\System.Web.Abstractions.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\6b4ce8cf2c3307b75ea7ebe77258bb26\System.Web.Abstractions.ni.dll
+ 2012-02-17 07:16 . 2012-02-17 07:16 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\f25d114cb629d1f512f98883c6535a75\System.Transactions.ni.dll
+ 2012-05-10 06:14 . 2012-05-10 06:14 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\41f6f6dd0c8427d4a8e6fd3915505a6b\System.Transactions.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8dc4a28c456f81ee7399da21bd9d55aa\System.ServiceProcess.ni.dll
+ 2012-04-12 07:17 . 2012-04-12 07:17 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\56e433394df8d44e43690a855e403555\System.ServiceProcess.ni.dll
+ 2012-02-17 07:15 . 2012-02-17 07:15 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\5fb9981f4147b537b53be9d58bf4e9b4\System.Security.ni.dll
+ 2012-05-10 06:12 . 2012-05-10 06:12 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\129b15861e200613ff78ae15581f9093\System.Security.ni.dll
+ 2012-05-10 06:13 . 2012-05-10 06:13 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\a644ec04e18202b60f9d828bc207972b\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2012-02-17 07:15 . 2012-02-17 07:15 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\1335dd98ce5ce22ad1f51cc274ca5a1d\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2012-02-17 07:16 . 2012-02-17 07:16 771584 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\c14e58265386feb509cc61bb5e8dd296\System.Runtime.Remoting.ni.dll
+ 2012-05-10 06:14 . 2012-05-10 06:14 771584 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\92d58f840f549f9bd880783d43db7e3c\System.Runtime.Remoting.ni.dll
+ 2012-02-17 07:22 . 2012-02-17 07:22 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\a4b2b1ee81acd843970d9a81b281f1c1\System.Net.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\4a9eb43005a041959ddc5c7e586ab746\System.Net.ni.dll
+ 2012-05-10 06:28 . 2012-05-10 06:28 593408 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Messaging\b69d60a684d0105a91e0c5f75df7e4e7\System.Messaging.ni.dll
+ 2012-04-12 07:23 . 2012-04-12 07:23 593408 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Messaging\55a9cbd5683fa954af88540e23949fff\System.Messaging.ni.dll
+ 2012-02-17 07:22 . 2012-02-17 07:22 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\a2a14380e8c9149d5b212d0100ef588a\System.Management.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\9080c8e8e7b6dfb502c1328673d636f8\System.Management.ni.dll
+ 2012-02-17 07:22 . 2012-02-17 07:22 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\e3436edde657a5111d39d5b2eecf9715\System.Management.Instrumentation.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\3182a049ba953010dec649cf290a9e90\System.Management.Instrumentation.ni.dll
+ 2012-02-17 07:19 . 2012-02-17 07:19 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\974ded7dd3bca225a1b90de778846c78\System.IO.Log.ni.dll
+ 2012-05-10 06:25 . 2012-05-10 06:25 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\8991f21d4b3676bf6f779110db8d4ac9\System.IO.Log.ni.dll
+ 2012-05-10 06:25 . 2012-05-10 06:25 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\cd9c60a35d4958e94d2e3dd2f778e2e9\System.IdentityModel.Selectors.ni.dll
+ 2012-02-17 07:19 . 2012-02-17 07:19 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\01eba24390736a59c39becd825b5756e\System.IdentityModel.Selectors.ni.dll
+ 2012-02-17 07:16 . 2012-02-17 07:16 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\c0d15fb6308587fef8744d568e64bcda\System.EnterpriseServices.Wrapper.dll
+ 2012-02-17 07:16 . 2012-02-17 07:16 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\c0d15fb6308587fef8744d568e64bcda\System.EnterpriseServices.ni.dll
+ 2012-05-10 06:14 . 2012-05-10 06:14 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\29bce0113d611084a9329349e33528ac\System.EnterpriseServices.Wrapper.dll
+ 2012-05-10 06:14 . 2012-05-10 06:14 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\29bce0113d611084a9329349e33528ac\System.EnterpriseServices.ni.dll
+ 2012-04-12 07:17 . 2012-04-12 07:17 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\cc2cd3bc46c9c2b30e47281e404a3230\System.Drawing.Design.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\88aa4f80c7e5ac25f06f8950e42a1678\System.Drawing.Design.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\ca484772955bc4db03b5dcb611c09423\System.DirectoryServices.Protocols.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\8ba5e68dddfd3279a8469d39eded48f3\System.DirectoryServices.AccountManagement.ni.dll
+ 2012-02-17 07:17 . 2012-02-17 07:17 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\78a370dc153011708dd9e4cb0e606bfc\System.DirectoryServices.Protocols.ni.dll
+ 2012-02-17 07:22 . 2012-02-17 07:22 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\6e644fc7464d9fe23fc9cd6001296f2f\System.DirectoryServices.AccountManagement.ni.dll
+ 2012-02-17 07:21 . 2012-02-17 07:21 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\bac39be66bb9f987c1948b766833f8e6\System.Data.Services.Client.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\a0109fce606a3110a5e7f9a4773f517e\System.Data.Services.Design.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\3a68d0441f509ffa6f8f0fb9cfcc5780\System.Data.Services.Client.ni.dll
+ 2012-02-17 07:22 . 2012-02-17 07:22 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\2b5ecd231320e57010043c408783d80b\System.Data.Services.Design.ni.dll
+ 2012-02-17 07:21 . 2012-02-17 07:21 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\4ac9ac2326720485aefd4d79d2024945\System.Data.Entity.Design.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 756736 c:\windows\assembly\NativeImages_v2.0.50727_32
toftrem
 
Messages: 14
Inscription: 07 Sep 2005 21:12

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar toftrem » 29 Mai 2012 10:50

suite

\System.Data.Entity.#\04440b3dd5d822da4973a525ee04b05d\System.Data.Entity.Design.ni.dll
+ 2012-02-17 07:21 . 2012-02-17 07:21 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\d504d550fd0a6994fcb1466ea7be92af\System.Data.DataSetExtensions.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\7bbb5d9e3b161b4d4b968e590442d3ae\System.Data.DataSetExtensions.ni.dll
+ 2012-02-17 07:14 . 2012-02-17 07:14 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\94a40f415bfa947e251888bbe88bb973\System.Configuration.ni.dll
+ 2012-05-10 06:11 . 2012-05-10 06:11 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\3d5b7368bde0f65aa15d9f46b498cc89\System.Configuration.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\bf7d6af03e1230ccad546a8659245ae9\System.Configuration.Install.ni.dll
+ 2012-02-17 07:17 . 2012-02-17 07:17 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\28637135c6939e74450bbbf110b12643\System.Configuration.Install.ni.dll
+ 2012-02-17 07:21 . 2012-02-17 07:21 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\958b5c0114d664ab5ba72575c301e2ea\System.AddIn.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 634368 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\931a2bece4668863db4f852401c828cf\System.AddIn.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 232448 c:\windows\assembly\NativeImages_v2.0.50727_32\sysglobl\e132b7190847dd66cbe65f6593c345a8\sysglobl.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\6762f1ee780fa9c0b4ef66b285c64844\SMSvcHost.ni.exe
+ 2012-02-17 07:20 . 2012-02-17 07:20 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\4dcff3b0e79fc27e31549bb2af00efb5\SMSvcHost.ni.exe
+ 2012-02-17 07:20 . 2012-02-17 07:20 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\bd3bfd5b6ef659dac4d6cccb34577d33\SMDiagnostics.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\660c4d6dd69ef22bc05587e1998cd135\SMDiagnostics.ni.dll
+ 2012-02-17 07:20 . 2012-02-17 07:20 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\edec83be646eb52204c991371751a428\ServiceModelReg.ni.exe
+ 2012-05-10 06:26 . 2012-05-10 06:26 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\47ed5bc9f42ea0054ce9acfde5e640b8\ServiceModelReg.ni.exe
+ 2012-05-10 06:15 . 2012-05-10 06:15 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a4706b850df9a3483f2fc439b6abe616\PresentationFramework.Royale.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\8b873631a0855fb6aa0ad25f1d9de7fe\PresentationFramework.Luna.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\7416fe825e6e49a87fa8ff60c8971813\PresentationFramework.Classic.ni.dll
+ 2012-02-17 07:17 . 2012-02-17 07:17 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\52015457bc28e7a9a563d9eab8ab0015\PresentationFramework.Royale.ni.dll
+ 2012-02-17 07:17 . 2012-02-17 07:17 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\46a680814559114706a33282e9df4b7a\PresentationFramework.Classic.ni.dll
+ 2012-02-17 07:17 . 2012-02-17 07:17 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\2713754549b1114c9152d33efe5f72c7\PresentationFramework.Aero.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\186c27fbd7b38b5551889274f6fa2ccd\PresentationFramework.Aero.ni.dll
+ 2012-02-17 07:17 . 2012-02-17 07:17 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\1552f18ca434c1dca6d082df476d089a\PresentationFramework.Luna.ni.dll
+ 2012-02-17 07:20 . 2012-02-17 07:20 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\7c51497b188c82e2ccbe6315549ce023\MSBuild.ni.exe
+ 2012-05-10 06:26 . 2012-05-10 06:26 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\5a121969a115d11b6256eb960c145686\MSBuild.ni.exe
+ 2012-02-17 07:20 . 2012-02-17 07:20 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\f0f6dd614d294295c5d8386cc4192034\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\97c613d3899b320a6765793bdf490272\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2012-02-17 07:15 . 2012-02-17 07:15 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\fd1338828beec8737fed8f50f4fcc567\Microsoft.Build.Utilities.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\dec22fb7d6b8929a41380e5359741a07\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2012-05-10 06:12 . 2012-05-10 06:12 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\1009b31c86a1b798fffa9e0127cec29c\Microsoft.Build.Utilities.ni.dll
+ 2012-02-17 07:21 . 2012-02-17 07:21 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\0d5f999c4b7e51151548c37c676c1b8e\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2012-02-17 07:20 . 2012-02-17 07:20 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\792168ce8fe03a3db43e12cf736cf91e\Microsoft.Build.Engine.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\21d88631ef629715d3eecdd08e62e0b8\Microsoft.Build.Engine.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\a0f38c6478cca8297fb160291346c1c9\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2012-02-17 07:20 . 2012-02-17 07:20 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\0a5277c34ddc1f55df1defb4231e814f\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\bb26dd100d656605c576881a1a823667\CustomMarshalers.ni.dll
+ 2012-02-17 07:20 . 2012-02-17 07:20 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\a8df37aadb089f1f34d3d2f103966fbc\ComSvcConfig.ni.exe
+ 2012-05-10 06:26 . 2012-05-10 06:26 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\9869c02d18825fdd32e64135a3e7246b\ComSvcConfig.ni.exe
+ 2012-05-10 06:24 . 2012-05-10 06:24 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\e414683ec4cff1cac0c77aaefd67144e\AspNetMMCExt.ni.dll
+ 2012-04-12 07:21 . 2012-04-12 07:21 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\8d6cd6a93f679608d52b6c874088b963\AspNetMMCExt.ni.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 630784 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices
\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2009-08-21 15:38 . 2009-08-21 15:38 163840 c:\windows\assembly\GAC_MSIL\System.AddIn\3.5.0.0__b77a5c561934e089\System.AddIn.dll
+ 2012-05-10 06:14 . 2012-05-10 06:14 163840 c:\windows\assembly\GAC_MSIL\System.AddIn\3.5.0.0__b77a5c561934e089\System.AddIn.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 110592 c:\windows\assembly\GAC_MSIL\sysglobl
\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2012-05-10 06:07 . 2012-05-10 06:07 532480 c:\windows\assembly\GAC_MSIL\ReachFramework\3.0.0.0__31bf3856ad364e35\ReachFramework.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2009-08-21 15:37 . 2009-08-21 15:37 368640 c:\windows\assembly\GAC_32\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
+ 2012-05-10 06:07 . 2012-05-10 06:07 368640 c:\windows\assembly\GAC_32\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2012-04-12 07:13 . 2012-04-12 07:13 471040 c:\windows\assembly\GAC\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2012-04-12 07:09 . 2011-12-19 08:54 671232 c:\windows\$NtUninstallKB2675157$\wininet.dll
+ 2012-04-12 07:09 . 2011-12-19 08:54 629248 c:\windows\$NtUninstallKB2675157$\urlmon.dll
+ 2012-04-12 07:09 . 2010-07-05 13:17 406392 c:\windows\$NtUninstallKB2675157$\spuninst\updspapi.dll
+ 2012-04-12 07:09 . 2010-07-05 13:17 234872 c:\windows\$NtUninstallKB2675157$\spuninst\spuninst.exe
+ 2012-04-12 07:09 . 2011-12-19 08:54 532480 c:\windows\$NtUninstallKB2675157$\mstime.dll
+ 2012-04-12 07:09 . 2011-12-19 08:54 449536 c:\windows\$NtUninstallKB2675157$\mshtmled.dll
+ 2012-04-12 07:09 . 2011-12-19 08:54 251904 c:\windows\$NtUninstallKB2675157$\iepeers.dll
+ 2012-02-17 07:08 . 2010-07-05 13:17 406392 c:\windows\$NtUninstallKB2661637$\spuninst\updspapi.dll
+ 2012-02-17 07:08 . 2010-07-05 13:17 234872 c:\windows\$NtUninstallKB2661637$\spuninst\spuninst.exe
+ 2012-02-17 07:09 . 2010-07-05 13:17 406392 c:\windows\$NtUninstallKB2660465$\spuninst\updspapi.dll
+ 2012-02-17 07:09 . 2010-07-05 13:17 234872 c:\windows\$NtUninstallKB2660465$\spuninst\spuninst.exe
+ 2012-04-12 07:07 . 2009-12-24 07:00 177664 c:\windows\$NtUninstallKB2653956$\wintrust.dll
+ 2012-04-12 07:07 . 2010-07-05 13:17 406392 c:\windows\$NtUninstallKB2653956$\spuninst\updspapi.dll
+ 2012-04-12 07:07 . 2010-07-05 13:17 234872 c:\windows\$NtUninstallKB2653956$\spuninst\spuninst.exe
+ 2012-04-12 07:07 . 2008-04-14 02:33 144384 c:\windows\$NtUninstallKB2653956$\imagehlp.dll
+ 2012-03-14 17:21 . 2010-07-05 13:18 406392 c:\windows\$NtUninstallKB2647518$\spuninst\updspapi.dll
+ 2012-03-14 17:21 . 2010-07-05 13:17 234872 c:\windows\$NtUninstallKB2647518$\spuninst\spuninst.exe
+ 2012-02-17 07:09 . 2011-11-01 20:35 671232 c:\windows\$NtUninstallKB2647516$\wininet.dll
+ 2012-02-17 07:09 . 2011-11-01 20:35 629248 c:\windows\$NtUninstallKB2647516$\urlmon.dll
+ 2012-02-17 07:09 . 2010-07-05 13:17 406392 c:\windows\$NtUninstallKB2647516$\spuninst\updspapi.dll
+ 2012-02-17 07:09 . 2010-07-05 13:17 234872 c:\windows\$NtUninstallKB2647516$\spuninst\spuninst.exe
+ 2012-02-17 07:09 . 2011-11-01 20:35 532480 c:\windows\$NtUninstallKB2647516$\mstime.dll
+ 2012-02-17 07:09 . 2011-11-01 20:35 449536 c:\windows\$NtUninstallKB2647516$\mshtmled.dll
+ 2012-02-17 07:09 . 2011-11-01 20:35 251904 c:\windows\$NtUninstallKB2647516$\iepeers.dll
+ 2012-01-12 07:02 . 2011-06-20 17:44 293888 c:\windows\$NtUninstallKB2646524$\winsrv.dll
+ 2012-01-12 07:02 . 2010-07-05 13:17 406392 c:\windows\$NtUninstallKB2646524$\spuninst\updspapi.dll
+ 2012-01-12 07:02 . 2010-07-05 13:17 234872 c:\windows\$NtUninstallKB2646524$\spuninst\spuninst.exe
+ 2012-03-14 17:23 . 2010-07-05 13:17 406392 c:\windows\$NtUninstallKB2641653$\spuninst\updspapi.dll
+ 2012-03-14 17:23 . 2010-07-05 13:17 234872 c:\windows\$NtUninstallKB2641653$\spuninst\spuninst.exe
+ 2012-01-12 07:02 . 2010-07-05 13:17 406392 c:\windows\$NtUninstallKB2631813$\spuninst\updspapi.dll
+ 2012-01-12 07:02 . 2010-07-05 13:17 234872 c:\windows\$NtUninstallKB2631813$\spuninst\spuninst.exe
+ 2012-01-12 07:02 . 2008-04-14 02:33 387072 c:\windows\$NtUninstallKB2631813$\qdvd.dll
+ 2012-03-14 17:21 . 2010-07-05 13:17 406392 c:\windows\$NtUninstallKB2621440$\spuninst\updspapi.dll
+ 2012-03-14 17:21 . 2010-07-05 13:17 234872 c:\windows\$NtUninstallKB2621440$\spuninst\spuninst.exe
+ 2012-03-14 17:21 . 2011-06-24 14:10 139656 c:\windows\$NtUninstallKB2621440$\rdpwd.sys
+ 2012-01-12 07:00 . 2010-07-05 13:17 406392 c:\windows\$NtUninstallKB2603381$\spuninst\updspapi.dll
+ 2012-01-12 07:00 . 2010-07-05 13:17 234872 c:\windows\$NtUninstallKB2603381$\spuninst\spuninst.exe
+ 2012-01-12 07:00 . 2008-04-14 02:33 180736 c:\windows\$NtUninstallKB2598479$\winmm.dll
+ 2012-01-12 07:00 . 2010-07-05 13:17 406392 c:\windows\$NtUninstallKB2598479$\spuninst\updspapi.dll
+ 2012-01-12 07:00 . 2010-07-05 13:17 234872 c:\windows\$NtUninstallKB2598479$\spuninst\spuninst.exe
+ 2012-01-27 16:03 . 2009-08-25 09:18 354816 c:\windows\$NtUninstallKB2585542$\winhttp.dll
+ 2012-01-27 16:03 . 2010-07-05 13:17 406392 c:\windows\$NtUninstallKB2585542$\spuninst\updspapi.dll
+ 2012-01-27 16:03 . 2010-07-05 13:17 234872 c:\windows\$NtUninstallKB2585542$\spuninst\spuninst.exe
+ 2012-01-27 16:03 . 2011-04-29 17:25 151552 c:\windows\$NtUninstallKB2585542$\schannel.dll
+ 2012-01-12 07:00 . 2010-07-05 13:17 406392 c:\windows\$NtUninstallKB2584146$\spuninst\updspapi.dll
+ 2012-01-12 07:00 . 2010-07-05 13:17 234872 c:\windows\$NtUninstallKB2584146$\spuninst\spuninst.exe
+ 2012-04-12 07:09 . 2010-07-05 13:17 406392 c:\windows\$hf_mig$\KB2675157\update\updspapi.dll
+ 2012-04-12 07:09 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2675157\update\update.exe
+ 2012-04-12 07:09 . 2010-07-05 13:17 234872 c:\windows\$hf_mig$\KB2675157\spuninst.exe
+ 2012-02-28 18:48 . 2012-02-28 18:48 672768 c:\windows\$hf_mig$\KB2675157\SP3QFE\wininet.dll
+ 2012-02-28 18:48 . 2012-02-28 18:48 629760 c:\windows\$hf_mig$\KB2675157\SP3QFE\urlmon.dll
+ 2012-02-28 18:48 . 2012-02-28 18:48 532480 c:\windows\$hf_mig$\KB2675157\SP3QFE\mstime.dll
+ 2012-02-28 18:48 . 2012-02-28 18:48 449536 c:\windows\$hf_mig$\KB2675157\SP3QFE\mshtmled.dll
+ 2012-02-28 18:48 . 2012-02-28 18:48 251904 c:\windows\$hf_mig$\KB2675157\SP3QFE\iepeers.dll
+ 2012-02-17 07:08 . 2010-07-05 13:17 406392 c:\windows\$hf_mig$\KB2661637\update\updspapi.dll
+ 2012-02-17 07:08 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2661637\update\update.exe
+ 2012-02-17 07:08 . 2010-07-05 13:17 234872 c:\windows\$hf_mig$\KB2661637\spuninst.exe
+ 2012-02-17 07:09 . 2010-07-05 13:17 406392 c:\windows\$hf_mig$\KB2660465\update\updspapi.dll
+ 2012-02-17 07:09 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2660465\update\update.exe
+ 2012-02-17 07:09 . 2010-07-05 13:17 234872 c:\windows\$hf_mig$\KB2660465\spuninst.exe
+ 2012-04-12 07:07 . 2010-07-05 13:17 406392 c:\windows\$hf_mig$\KB2653956\update\updspapi.dll
+ 2012-04-12 07:07 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2653956\update\update.exe
+ 2012-04-12 07:07 . 2010-07-05 13:17 234872 c:\windows\$hf_mig$\KB2653956\spuninst.exe
+ 2012-02-29 14:08 . 2012-02-29 14:08 178176 c:\windows\$hf_mig$\KB2653956\SP3QFE\wintrust.dll
+ 2012-02-29 14:08 . 2012-02-29 14:08 148480 c:\windows\$hf_mig$\KB2653956\SP3QFE\imagehlp.dll
+ 2012-03-14 17:21 . 2010-07-05 13:18 406392 c:\windows\$hf_mig$\KB2647518\update\updspapi.dll
+ 2012-03-14 17:21 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2647518\update\update.exe
+ 2012-03-14 17:21 . 2010-07-05 13:17 234872 c:\windows\$hf_mig$\KB2647518\spuninst.exe
+ 2012-02-17 07:09 . 2010-07-05 13:17 406392 c:\windows\$hf_mig$\KB2647516\update\updspapi.dll
+ 2012-02-17 07:09 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2647516\update\update.exe
+ 2012-02-17 07:09 . 2010-07-05 13:17 234872 c:\windows\$hf_mig$\KB2647516\spuninst.exe
+ 2012-02-15 04:35 . 2011-12-19 08:52 672768 c:\windows\$hf_mig$\KB2647516\SP3QFE\wininet.dll
+ 2012-02-15 04:35 . 2011-12-19 08:52 629760 c:\windows\$hf_mig$\KB2647516\SP3QFE\urlmon.dll
+ 2012-02-15 04:35 . 2011-12-19 08:52 532480 c:\windows\$hf_mig$\KB2647516\SP3QFE\mstime.dll
+ 2012-02-15 04:35 . 2011-12-19 08:52 449536 c:\windows\$hf_mig$\KB2647516\SP3QFE\mshtmled.dll
+ 2012-02-15 04:35 . 2011-12-19 08:52 251904 c:\windows\$hf_mig$\KB2647516\SP3QFE\iepeers.dll
+ 2012-01-12 07:02 . 2010-07-05 13:17 406392 c:\windows\$hf_mig$\KB2646524\update\updspapi.dll
+ 2012-01-12 07:02 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2646524\update\update.exe
+ 2012-01-12 07:02 . 2010-07-05 13:17 234872 c:\windows\$hf_mig$\KB2646524\spuninst.exe
+ 2011-11-25 21:56 . 2011-11-25 21:56 293888 c:\windows\$hf_mig$\KB2646524\SP3QFE\winsrv.dll
+ 2012-03-14 17:23 . 2010-07-05 13:17 406392 c:\windows\$hf_mig$\KB2641653\update\updspapi.dll
+ 2012-03-14 17:23 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2641653\update\update.exe
+ 2012-03-14 17:23 . 2010-07-05 13:17 234872 c:\windows\$hf_mig$\KB2641653\spuninst.exe
+ 2012-01-12 07:02 . 2010-07-05 13:17 406392 c:\windows\$hf_mig$\KB2631813\update\updspapi.dll
+ 2012-01-12 07:02 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2631813\update\update.exe
+ 2012-01-12 07:02 . 2010-07-05 13:17 234872 c:\windows\$hf_mig$\KB2631813\spuninst.exe
+ 2011-11-03 15:27 . 2011-11-03 15:27 387072 c:\windows\$hf_mig$\KB2631813\SP3QFE\qdvd.dll
+ 2012-03-14 17:21 . 2010-07-05 13:17 406392 c:\windows\$hf_mig$\KB2621440\update\updspapi.dll
+ 2012-03-14 17:21 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2621440\update\update.exe
+ 2012-03-14 17:21 . 2010-07-05 13:17 234872 c:\windows\$hf_mig$\KB2621440\spuninst.exe
+ 2012-03-14 04:34 . 2012-01-09 16:19 139784 c:\windows\$hf_mig$\KB2621440\SP3QFE\rdpwd.sys
+ 2012-01-12 07:00 . 2010-07-05 13:17 406392 c:\windows\$hf_mig$\KB2603381\update\updspapi.dll
+ 2012-01-12 07:00 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2603381\update\update.exe
+ 2012-01-12 07:00 . 2010-07-05 13:17 234872 c:\windows\$hf_mig$\KB2603381\spuninst.exe
+ 2012-01-12 07:00 . 2010-07-05 13:17 406392 c:\windows\$hf_mig$\KB2598479\update\updspapi.dll
+ 2012-01-12 07:00 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2598479\update\update.exe
+ 2012-01-12 07:00 . 2010-07-05 13:17 234872 c:\windows\$hf_mig$\KB2598479\spuninst.exe
+ 2011-10-14 14:46 . 2011-10-14 14:46 180736 c:\windows\$hf_mig$\KB2598479\SP3QFE\winmm.dll
+ 2012-01-27 16:04 . 2010-07-05 13:17 406392 c:\windows\$hf_mig$\KB2585542\update\updspapi.dll
+ 2012-01-27 16:04 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2585542\update\update.exe
+ 2012-01-27 16:03 . 2010-07-05 13:17 234872 c:\windows\$hf_mig$\KB2585542\spuninst.exe
+ 2011-11-16 14:20 . 2011-11-16 14:20 354816 c:\windows\$hf_mig$\KB2585542\SP3QFE\winhttp.dll
+ 2011-11-16 14:20 . 2011-11-16 14:20 152064 c:\windows\$hf_mig$\KB2585542\SP3QFE\schannel.dll
+ 2012-01-12 07:00 . 2010-07-05 13:17 406392 c:\windows\$hf_mig$\KB2584146\update\updspapi.dll
+ 2012-01-12 07:00 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2584146\update\update.exe
+ 2012-01-12 07:00 . 2010-07-05 13:17 234872 c:\windows\$hf_mig$\KB2584146\spuninst.exe
+ 2012-05-10 03:34 . 2012-02-09 15:43 1748992 c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll
+ 2012-03-07 07:07 . 2012-02-07 21:03 6552120 c:\windows\TempDCF47DC4-D91B-A94D-E775-28E0738292BA-Signatures\mpengine.dll
- 2004-08-19 13:03 . 2011-11-01 20:35 1510912 c:\windows\system32\shdocvw.dll
+ 2004-08-19 13:03 . 2012-02-28 18:49 1510912 c:\windows\system32\shdocvw.dll
+ 2004-08-19 13:03 . 2011-11-03 15:28 1298432 c:\windows\system32\quartz.dll
+ 2004-08-19 13:03 . 2012-02-28 18:49 3108864 c:\windows\system32\mshtml.dll
+ 2012-05-14 08:23 . 2012-05-14 08:23 8797856 c:\windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll
+ 2008-10-24 06:26 . 2012-04-11 13:51 1862400 c:\windows\system32\dllcache\win32k.sys
- 2008-08-20 05:10 . 2011-11-01 20:35 1510912 c:\windows\system32\dllcache\shdocvw.dll
+ 2008-08-20 05:10 . 2012-02-28 18:49 1510912 c:\windows\system32\dllcache\shdocvw.dll
+ 2008-05-07 05:11 . 2011-11-03 15:28 1298432 c:\windows\system32\dllcache\quartz.dll
+ 2008-10-24 06:26 . 2012-04-11 13:51 2194688 c:\windows\system32\dllcache\ntoskrnl.exe
+ 2008-10-24 06:26 . 2012-04-11 13:51 2028544 c:\windows\system32\dllcache\ntkrpamp.exe
+ 2008-10-24 06:26 . 2012-04-11 13:51 2071168 c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2008-10-24 06:26 . 2012-04-11 13:51 2150400 c:\windows\system32\dllcache\ntkrnlmp.exe
+ 2008-04-21 06:43 . 2012-02-28 18:49 3108864 c:\windows\system32\dllcache\mshtml.dll
+ 2010-03-10 04:41 . 2012-02-28 18:49 1025536 c:\windows\system32\dllcache\browseui.dll
- 2010-03-10 04:41 . 2011-11-01 20:35 1025536 c:\windows\system32\dllcache\browseui.dll
+ 2004-08-19 13:03 . 2012-02-28 18:49 1025536 c:\windows\system32\browseui.dll
- 2004-08-19 13:03 . 2011-11-01 20:35 1025536 c:\windows\system32\browseui.dll
+ 2011-12-25 01:50 . 2011-12-25 01:50 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
- 2011-03-25 04:15 . 2011-03-25 04:15 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2011-12-25 02:50 . 2011-12-25 02:50 5246976 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
+ 2011-12-25 01:50 . 2011-12-25 01:50 3186688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2011-12-25 01:50 . 2011-12-25 01:50 5913360 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
- 2011-07-07 03:18 . 2011-07-07 03:18 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2011-12-25 01:50 . 2011-12-25 01:50 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2012-01-31 02:46 . 2012-01-31 02:46 6385664 c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\M2656370\M2656370Uninstall.msp
+ 2011-12-25 10:07 . 2011-12-25 10:07 2064384 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Windows.Forms.dll
+ 2011-12-25 10:06 . 2011-12-25 10:06 1269760 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.dll
+ 2011-12-25 10:06 . 2011-12-25 10:06 1232896 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.dll
- 2011-07-08 11:59 . 2011-07-08 11:59 1232896 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.dll
- 2011-07-07 10:02 . 2011-07-07 10:02 2514944 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
+ 2011-12-24 21:54 . 2011-12-24 21:54 2514944 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
+ 2011-12-24 21:53 . 2011-12-24 21:53 2527232 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll
- 2011-07-07 10:02 . 2011-07-07 10:02 2527232 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll
+ 2011-12-25 10:06 . 2011-12-25 10:06 2142208 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
- 2011-07-08 11:59 . 2011-07-08 11:59 2142208 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
+ 2012-03-23 12:59 . 2012-03-23 12:59 7899648 c:\windows\Installer\c617e1.msp
+ 2012-01-30 18:46 . 2012-01-30 18:46 7069184 c:\windows\Installer\c617d4.msp
+ 2011-12-26 08:59 . 2011-12-26 08:59 4368896 c:\windows\Installer\c0407c.msp
+ 2011-10-30 21:54 . 2011-10-30 21:54 2748416 c:\windows\Installer\91790a.msp
+ 2012-04-04 20:38 . 2012-04-04 20:38 2831360 c:\windows\Installer\8e355c.msp
+ 2012-04-04 20:38 . 2012-04-04 20:38 3620864 c:\windows\Installer\8e3515.msp
+ 2012-04-28 19:43 . 2012-04-28 19:43 8459264 c:\windows\Installer\8e34dd.msp
+ 2012-05-09 06:05 . 2012-05-09 06:05 1826304 c:\windows\Installer\8d03a9.msi
+ 2012-01-12 07:14 . 2012-01-12 07:14 3976192 c:\windows\Installer\4368e.msi
+ 2012-03-27 15:47 . 2012-03-27 15:47 4959232 c:\windows\Installer\15441c1.msp
+ 2012-01-03 07:18 . 2012-01-03 07:18 2405784 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\rt3d.dll
+ 2011-11-17 15:50 . 2011-11-17 15:50 6543872 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\authplay.dll
+ 2010-03-30 22:16 . 2010-03-30 22:16 1249280 c:\windows\Installer\$PatchCache$\Managed\0DC1503A46F231838AD88BCDDC8E8F7C\3.2.30729\WindowsBase_x86.dll
+ 2010-06-24 05:54 . 2010-06-24 05:54 1249280 c:\windows\Installer\$PatchCache$\Managed\0DC1503A46F231838AD88BCDDC8E8F7C\3.2.30729\WindowsBase_GAC_x86.dll
+ 2010-03-30 22:10 . 2010-03-30 22:10 5279744 c:\windows\Installer\$PatchCache$\Managed\0DC1503A46F231838AD88BCDDC8E8F7C\3.2.30729\PresentationFramework_x86.dll
+ 2010-06-24 05:54 . 2010-06-24 05:54 5279744 c:\windows\Installer\$PatchCache$\Managed\0DC1503A46F231838AD88BCDDC8E8F7C\3.2.30729\PresentationFramework_GAC_x86.dll
+ 2010-03-30 22:16 . 2010-03-30 22:16 4210688 c:\windows\Installer\$PatchCache$\Managed\0DC1503A46F231838AD88BCDDC8E8F7C\3.2.30729\PresentationCore_x86.dll
+ 2010-06-24 05:54 . 2010-06-24 05:54 4210688 c:\windows\Installer\$PatchCache$\Managed\0DC1503A46F231838AD88BCDDC8E8F7C\3.2.30729\PresentationCore_GAC_x86.dll
+ 2011-08-17 08:49 . 2011-08-17 08:49 4683624 c:\windows\Installer\$PatchCache$\Managed\000021090200C0400000000000F01FEC\12.0.6612\WRD12CNV.DLL
+ 2011-07-07 01:58 . 2011-07-07 01:58 1616240 c:\windows\Installer\$PatchCache$\Managed\000021090200C0400000000000F01FEC\12.0.6612\OGL.DLL
+ 2009-06-12 23:15 . 2009-06-12 23:15 1661792 c:\windows\Installer\$PatchCache$\Managed\000021090200C0400000000000F01FEC\12.0.6514\OGL.DLL
+ 2008-10-24 06:26 . 2012-04-11 13:51 2194688 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2008-10-24 06:26 . 2012-04-11 13:51 2028544 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2008-10-24 06:26 . 2012-04-11 13:51 2071168 c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2008-10-24 06:26 . 2012-04-11 13:51 2150400 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2012-01-11 08:05 . 2012-01-11 08:05 1966080 c:\windows\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_f2eb6676\System.dll
+ 2012-01-11 08:06 . 2012-01-11 08:06 4792320 c:\windows\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_652019d1\System.dll
+ 2012-01-11 08:06 . 2012-01-11 08:06 5513216 c:\windows\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_e91624e6\System.Xml.dll
+ 2012-01-11 08:06 . 2012-01-11 08:06 2088960 c:\windows\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_17f1010a\System.Xml.dll
+ 2012-04-12 07:14 . 2012-04-12 07:14 7917568 c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_d137d44e\System.Windows.Forms.dll
+ 2012-01-11 08:06 . 2012-01-11 08:06 7917568 c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_aa441fec\System.Windows.Forms.dll
+ 2012-01-11 08:06 . 2012-01-11 08:06 3035136 c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_72ed24fa\System.Windows.Forms.dll
+ 2012-04-12 07:14 . 2012-04-12 07:14 3035136 c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_4e11c62e\System.Windows.Forms.dll
+ 2012-04-12 07:14 . 2012-04-12 07:14 2248704 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_d3e5abb7\System.Drawing.dll
+ 2012-01-11 08:07 . 2012-01-11 08:07 2244608 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_739b2413\System.Drawing.dll
+ 2012-01-11 08:06 . 2012-01-11 08:06 1470464 c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_d84f54e6\System.Design.dll
+ 2012-04-12 07:14 . 2012-04-12 07:14 1470464 c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_931eb038\System.Design.dll
+ 2012-01-11 08:06 . 2012-01-11 08:06 3395584 c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_20f2c467\System.Design.dll
+ 2012-04-12 07:14 . 2012-04-12 07:14 3395584 c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_1c1b51af\System.Design.dll
+ 2012-01-11 08:06 . 2012-01-11 08:06 3391488 c:\windows\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_c71dea4f\mscorlib.dll
+ 2012-01-11 08:07 . 2012-01-11 08:07 8908800 c:\windows\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_2ba21869\mscorlib.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 6392832 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\ed14765fc0f1a92b9211a088455799fc\WindowsLive.Writer.PostEditor.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 6392832 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\d9964dddf3b1a2753e7fe48b148e8a3f\WindowsLive.Writer.PostEditor.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 2018816 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\d68b416b74115209487c56ee70eae127\WindowsLive.Writer.CoreServices.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 1105920 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\83417712ddccf2ede8b8701cb525fc23\WindowsLive.Writer.ApplicationFramework.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 1105920 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\724479ec2aae6cebefd965ac1bacdce6\WindowsLive.Writer.ApplicationFramework.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 2018816 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\5b93d79ffd230432a9448c110a76d6b6\WindowsLive.Writer.CoreServices.ni.dll
+ 2012-05-10 06:12 . 2012-05-10 06:12 3325440 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\6d8bef0d008389874e55c0308f0c18e5\WindowsBase.ni.dll
+ 2012-02-17 07:15 . 2012-02-17 07:15 3325440 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\174c2f776741812aed02c337bbcd1dae\WindowsBase.ni.dll
+ 2012-02-17 07:17 . 2012-02-17 07:17 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\94f5164ff4f664c5e4e7fb4c3af1abad\UIAutomationClientsideProviders.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\41a81b97625c113b591ed082c95276e2\UIAutomationClientsideProviders.ni.dll
+ 2012-05-10 06:11 . 2012-05-10 06:11 7953408 c:\windows\assembly\NativeImages_v2.0.50727_32\System\e4b5afc4da43b1c576f9322f9f2e1bfe\System.ni.dll
+ 2012-02-17 07:14 . 2012-02-17 07:14 7953408 c:\windows\assembly\NativeImages_v2.0.50727_32\System\9e3803cd2a11f056291862e306a8e2b2\System.ni.dll
+ 2012-02-17 07:14 . 2012-02-17 07:14 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\77e1279cbf4eecfb0284b63316fe43fe\System.Xml.ni.dll
+ 2012-05-10 06:12 . 2012-05-10 06:12 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\3bba1b8b0b5ef0be238b011cc7a0575e\System.Xml.ni.dll
+ 2012-04-12 07:23 . 2012-04-12 07:23 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\d31d2eb0a862d3c1d3561be5f1570c3e\System.WorkflowServices.ni.dll
+ 2012-05-10 06:28 . 2012-05-10 06:28 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\33fa6a2055bf857bff2e31020279b5e9\System.WorkflowServices.ni.dll
+ 2012-05-10 06:28 . 2012-05-10 06:28 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\5eccf6fef6bee8a2f93bc65ff33699bb\System.Workflow.Runtime.ni.dll
+ 2012-02-17 07:22 . 2012-02-17 07:22 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\248ea47105ff4af6ee75e6fdd5b450a1\System.Workflow.Runtime.ni.dll
+ 2012-05-10 06:28 . 2012-05-10 06:28 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\62bd2e1bf98b04ceca2102c8f54aab9d\System.Workflow.ComponentModel.ni.dll
+ 2012-04-12 07:23 . 2012-04-12 07:23 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\53c2336db392bfa5484850780048e37a\System.Workflow.ComponentModel.ni.dll
+ 2012-04-12 07:23 . 2012-04-12 07:23 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\f243723cda77dd647b250dd9c42c35e2\System.Workflow.Activities.ni.dll
+ 2012-05-10 06:28 . 2012-05-10 06:28 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\8215548b3d4aabbaa0557ab747700778\System.Workflow.Activities.ni.dll
+ 2012-02-17 07:16 . 2012-02-17 07:16 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\e9ba004858dcdb5958d86f26f043f85a\System.Web.Services.ni.dll
+ 2012-05-10 06:14 . 2012-05-10 06:14 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\3e11aea7d742b5eddbd0b6bd1012f7df\System.Web.Services.ni.dll
+ 2012-05-10 06:28 . 2012-05-10 06:28 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\ff995dde9cd34ff1e8ac7ab55fc92d32\System.Web.Mobile.ni.dll
+ 2012-04-12 07:23 . 2012-04-12 07:23 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\d1dacd5cb445b242b70bf7d606464293\System.Web.Mobile.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 2405888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\8899d1091e64a4d0b6ae69060197091a\System.Web.Extensions.ni.dll
+ 2012-04-12 07:23 . 2012-04-12 07:23 2405888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\6acbb8bb1a43fab0fdcf55bedd1fbcc3\System.Web.Extensions.ni.dll
+ 2012-02-17 07:17 . 2012-02-17 07:17 1917440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\e456140d5d6c43d7383bd36d3f9e12c6\System.Speech.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 1917440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\5efb50c91f3c5e49be2079f625d933b7\System.Speech.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\97d635f5c656ae43d94b55e67fc4ab50\System.ServiceModel.Web.ni.dll
+ 2012-02-17 07:22 . 2012-02-17 07:22 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\285dfbf2380436e187cb624bd1cd4683\System.ServiceModel.Web.ni.dll
+ 2012-02-17 07:19 . 2012-02-17 07:19 2345472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\f2532204217dc10f152afd077b09927c\System.Runtime.Serialization.ni.dll
+ 2012-05-10 06:25 . 2012-05-10 06:25 2345472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\505e12638acd6fdb22e1fd2d4c6fc232\System.Runtime.Serialization.ni.dll
+ 2012-04-12 07:15 . 2012-04-12 07:15 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\44d507a702c1623810e094adf751f687\System.Printing.ni.dll
+ 2012-05-10 06:13 . 2012-05-10 06:13 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\1d6707a5a9da16c1d1b88529837884d6\System.Printing.ni.dll
+ 2012-05-10 06:25 . 2012-05-10 06:25 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\e09496ddb2bf6f3b69707924f2e6b5ff\System.IdentityModel.ni.dll
+ 2012-02-17 07:19 . 2012-02-17 07:19 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\8ef05061cd205c4f2a8583d97f32a603\System.IdentityModel.ni.dll
+ 2012-04-12 07:13 . 2012-04-12 07:13 1591808 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\8d886cdc2ca5f0ff97cd1afe8773bb6e\System.Drawing.ni.dll
+ 2012-05-10 06:12 . 2012-05-10 06:12 1591808 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\8ca00132a08c69697adf1cda32ebd835\System.Drawing.ni.dll
+ 2012-05-10 06:13 . 2012-05-10 06:13 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\b55887436d2cfbe1fb32dd18d554185b\System.DirectoryServices.ni.dll
+ 2012-02-17 07:16 . 2012-02-17 07:16 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\77d0e93f024055d04c07cc2700b4c590\System.DirectoryServices.ni.dll
+ 2012-05-10 06:12 . 2012-05-10 06:12 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\832196527f0497078f085eaf9189265f\System.Deployment.ni.dll
+ 2012-04-12 07:13 . 2012-04-12 07:13 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\3d253a2235f7c03630003bc1fbaf34a3\System.Deployment.ni.dll
+ 2012-02-17 07:16 . 2012-02-17 07:16 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\ae888f8633fce3ff1de98e32bce0abbf\System.Data.ni.dll
+ 2012-05-10 06:14 . 2012-05-10 06:14 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\12c6fe8d4dd78f9bddf847d3b2821c03\System.Data.ni.dll
+ 2012-05-10 06:12 . 2012-05-10 06:12 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\982b508698278c6ffb3d143bbe1e8bb8\System.Data.SqlXml.ni.dll
+ 2012-02-17 07:15 . 2012-02-17 07:15 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\857300fa64d09c69125451fd8894f3da\System.Data.SqlXml.ni.dll
+ 2012-02-17 07:21 . 2012-02-17 07:21 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\e9d4a1fb13572c769ddd9b86e55baab4\System.Data.Services.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\2de7666b1cd0a1bc363726c9553dc39c\System.Data.Services.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 1115136 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.OracleC#\7afb1abdbb8ba32cf578ff8ea4e45d99\System.Data.OracleClient.ni.dll
+ 2012-02-17 07:16 . 2012-02-17 07:16 1115136 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.OracleC#\3f2e74586111fb32d5edc059f709fa94\System.Data.OracleClient.ni.dll
+ 2012-02-17 07:17 . 2012-02-17 07:17 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\c3d9c33f71d15a3e2e240092a244eba3\System.Data.Linq.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\44a5fc9e7c71b1fe1e2c79b03ecc3bc7\System.Data.Linq.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 9924096 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\772c94f595cd87b7fa187d592ef46fcf\System.Data.Entity.ni.dll
+ 2012-02-17 07:21 . 2012-02-17 07:21 9924096 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\424160369b301ccd1b6fd86265611955\System.Data.Entity.ni.dll
+ 2012-05-10 06:15 . 2012-05-10 06:15 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\38d07a5ac34b99d94fd14f42e779f625\System.Core.ni.dll
+ 2012-02-17 07:17 . 2012-02-17 07:17 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\0a6d6717e76be12295711ff02c7aa1d4\System.Core.ni.dll
+ 2012-04-12 07:14 . 2012-04-12 07:14 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\c73e109dbac6b099786cc68fe36e3d0b\ReachFramework.ni.dll
+ 2012-05-10 06:13 . 2012-05-10 06:13 2146304 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\2ecefd16184a78f19aaf0f02cc0a7e1f\ReachFramework.ni.dll
+ 2012-05-10 06:13 . 2012-05-10 06:13 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\51204805c71113e0db2103faa064b313\PresentationUI.ni.dll
+ 2012-04-12 07:14 . 2012-04-12 07:14 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\20d72aeac1109863b77532d37d3f4fa2\PresentationUI.ni.dll
+ 2012-05-10 06:11 . 2012-05-10 06:11 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\8c509044eea2ab22689ea43926b30108\PresentationBuildTasks.ni.dll
+ 2012-02-17 07:14 . 2012-02-17 07:14 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\59cd6ce5a254006179eee92952cd2272\PresentationBuildTasks.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\b49dd780ba8e3501b0adcf108b431e7b\Microsoft.VisualBasic.ni.dll
+ 2012-04-12 07:23 . 2012-04-12 07:23 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\3ec4a3f74cb80c9b9581d778e8645b2c\Microsoft.VisualBasic.ni.dll
+ 2012-02-17 07:20 . 2012-02-17 07:20 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\f7071f9a1c0523540f6aa7f11c302fb6\Microsoft.Transactions.Bridge.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\42145ebf75f77cabad442f0801a81c64\Microsoft.Transactions.Bridge.ni.dll
+ 2012-05-10 06:27 . 2012-05-10 06:27 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\cfe15312373b4668398404b5822bab7d\Microsoft.JScript.ni.dll
+ 2012-02-17 07:22 . 2012-02-17 07:22 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\806b1d127ed3e906db972751e87585c4\Microsoft.JScript.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\f3fcd65eca42d13b746cf3f5bd993ee0\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\876b7280cf4e81fd65b120f60d38a7d9\Microsoft.Build.Tasks.ni.dll
+ 2012-04-12 07:23 . 2012-04-12 07:23 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\64ba53308e90fa3837fe47977e2d37b6\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2012-05-10 06:26 . 2012-05-10 06:26 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\2091903cd9b359e96f05ac2d6d25ef4e\Microsoft.Build.Tasks.ni.dll
+ 2012-02-17 07:20 . 2012-02-17 07:20 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\d6edd4b4619a9052d3dfe50c3067d5e0\Microsoft.Build.Engine.ni.dll
toftrem
 
Messages: 14
Inscription: 07 Sep 2005 21:12

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar toftrem » 29 Mai 2012 10:51

+ 2012-05-10 06:26 . 2012-05-10 06:26 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\5aa63a1cb41e3a5e1e8ed17072e60ec3\Microsoft.Build.Engine.ni.dll
+ 2012-05-10 06:25 . 2012-05-10 06:25 4387328 c:\windows\assembly\NativeImages_v2.0.50727_32\AdWindows\99ba18190001fae7e4ba024afff98744\AdWindows.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 4387328 c:\windows\assembly\NativeImages_v2.0.50727_32\AdWindows\14113cabd0edf4219fd5a9eb31c47480\AdWindows.ni.dll
+ 2012-05-10 06:25 . 2012-05-10 06:25 2205696 c:\windows\assembly\NativeImages_v2.0.50727_32\AcWindows\b9fa698513e49839270e02e335a9b058\AcWindows.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 2205696 c:\windows\assembly\NativeImages_v2.0.50727_32\AcWindows\31fae0bf45edbd152eb8b75e1f911c34\AcWindows.ni.dll
+ 2012-05-10 06:25 . 2012-05-10 06:25 5275648 c:\windows\assembly\NativeImages_v2.0.50727_32\acmgd\71234f1f05094b0bab471207e7fab221\acmgd.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 5275648 c:\windows\assembly\NativeImages_v2.0.50727_32\acmgd\0c748debc32382a1840a6961e5e5a10b\acmgd.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 1470464 c:\windows\assembly\NativeImages_v2.0.50727_32\AcLayer\83ba54808124d83ef884756a0e903a7e\AcLayer.ni.dll
+ 2012-05-10 06:24 . 2012-05-10 06:24 1470464 c:\windows\assembly\NativeImages_v2.0.50727_32\AcLayer\4bdb9bc67e653ed5a214738d983e4941\AcLayer.ni.dll
+ 2012-04-12 07:21 . 2012-04-12 07:21 1610240 c:\windows\assembly\NativeImages_v2.0.50727_32\AcCui\ea530483fb3a14361a2d5db15b7768c5\AcCui.ni.dll
+ 2012-05-10 06:24 . 2012-05-10 06:24 1610240 c:\windows\assembly\NativeImages_v2.0.50727_32\AcCui\91c9cda439459c6fb76a72c7696d611a\AcCui.ni.dll
- 2010-06-24 05:54 . 2010-06-24 05:54 1249280 c:\windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
+ 2012-05-10 06:07 . 2012-05-10 06:07 1249280 c:\windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 3186688 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2012-01-11 08:06 . 2012-01-11 08:06 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
- 2010-10-07 05:56 . 2010-10-07 05:56 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
- 2011-10-13 05:53 . 2011-10-13 05:53 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2012-05-10 06:07 . 2012-05-10 06:07 5283840 c:\windows\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 5246976 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2011-10-13 05:54 . 2011-10-13 05:54 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2012-05-10 06:10 . 2012-05-10 06:10 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2012-05-10 06:07 . 2012-05-10 06:07 4214784 c:\windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
- 2010-10-07 05:55 . 2011-10-13 05:54 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2012-04-12 07:12 . 2012-05-10 06:10 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
- 2011-10-13 05:48 . 2011-10-13 05:48 1232896 c:\windows\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
+ 2012-01-11 08:05 . 2012-01-11 08:05 1232896 c:\windows\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
+ 2012-01-11 08:05 . 2012-01-11 08:05 2064384 c:\windows\assembly\GAC\System.Windows.Forms\1.0.5000.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2012-01-11 08:05 . 2012-01-11 08:05 1269760 c:\windows\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll
+ 2012-04-12 07:09 . 2011-12-19 08:54 1510912 c:\windows\$NtUninstallKB2675157$\shdocvw.dll
+ 2012-04-12 07:09 . 2011-12-19 08:54 3108352 c:\windows\$NtUninstallKB2675157$\mshtml.dll
+ 2012-04-12 07:09 . 2011-12-19 08:54 1025536 c:\windows\$NtUninstallKB2675157$\browseui.dll
+ 2012-02-17 07:09 . 2011-11-23 14:40 1859712 c:\windows\$NtUninstallKB2660465$\win32k.sys
+ 2012-02-17 07:09 . 2011-11-01 20:35 1510912 c:\windows\$NtUninstallKB2647516$\shdocvw.dll
+ 2012-02-17 07:09 . 2011-11-03 15:51 3108352 c:\windows\$NtUninstallKB2647516$\mshtml.dll
+ 2012-02-17 07:09 . 2011-11-01 20:35 1025536 c:\windows\$NtUninstallKB2647516$\browseui.dll
+ 2012-03-14 17:23 . 2012-01-12 17:20 1860096 c:\windows\$NtUninstallKB2641653$\win32k.sys
+ 2012-01-12 07:02 . 2010-02-05 18:26 1297920 c:\windows\$NtUninstallKB2631813$\quartz.dll
+ 2012-02-28 18:48 . 2012-02-28 18:48 1510912 c:\windows\$hf_mig$\KB2675157\SP3QFE\shdocvw.dll
+ 2012-02-28 18:48 . 2012-02-28 18:48 3109376 c:\windows\$hf_mig$\KB2675157\SP3QFE\mshtml.dll
+ 2012-02-28 18:48 . 2012-02-28 18:48 1025536 c:\windows\$hf_mig$\KB2675157\SP3QFE\browseui.dll
+ 2012-01-12 17:21 . 2012-01-12 17:21 1869184 c:\windows\$hf_mig$\KB2660465\SP3QFE\win32k.sys
+ 2012-02-15 04:35 . 2011-12-19 08:52 1510912 c:\windows\$hf_mig$\KB2647516\SP3QFE\shdocvw.dll
+ 2011-12-19 13:22 . 2011-12-19 13:22 3108864 c:\windows\$hf_mig$\KB2647516\SP3QFE\mshtml.dll
+ 2012-02-15 04:35 . 2011-12-19 08:52 1025536 c:\windows\$hf_mig$\KB2647516\SP3QFE\browseui.dll
+ 2012-03-14 04:34 . 2012-02-03 09:56 1869312 c:\windows\$hf_mig$\KB2641653\SP3QFE\win32k.sys
+ 2011-11-03 15:27 . 2011-11-03 15:27 1298432 c:\windows\$hf_mig$\KB2631813\SP3QFE\quartz.dll
+ 2005-12-26 07:25 . 2012-05-10 06:11 55656824 c:\windows\system32\MRT.exe
+ 2011-12-26 16:02 . 2011-12-26 16:02 12482048 c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\M2656353\M2656353Uninstall.msp
+ 2011-12-26 08:02 . 2011-12-26 08:02 19677184 c:\windows\Installer\c0409b.msp
+ 2012-04-06 00:12 . 2012-04-06 00:12 15709696 c:\windows\Installer\8e354e.msp
+ 2012-01-04 00:25 . 2012-01-04 00:25 17751552 c:\windows\Installer\8e3534.msp
+ 2012-04-06 01:13 . 2012-04-06 01:13 16527872 c:\windows\Installer\8e3507.msp
+ 2011-09-15 17:40 . 2011-09-15 17:40 38260736 c:\windows\Installer\8d5d1a.msp
+ 2012-01-03 21:15 . 2012-01-03 21:15 20559288 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA76301B7449A0500000010\9.5.0\AcroRd32.dll
+ 2012-04-12 07:14 . 2012-04-12 07:14 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d96906db18e87ffe2e08f6cda7e2be0f\System.Windows.Forms.ni.dll
+ 2012-05-10 06:13 . 2012-05-10 06:13 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\995fcf39ead2c2a53e084505c2c67d49\System.Windows.Forms.ni.dll
+ 2012-04-12 07:15 . 2012-04-12 07:15 11817472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\db1d2470de43ffcb6f562277208d56e5\System.Web.ni.dll
+ 2012-05-10 06:14 . 2012-05-10 06:14 11817472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\7861cd979ea5db3fb7d30ed94fb0edd2\System.Web.ni.dll
+ 2012-05-10 06:25 . 2012-05-10 06:25 17403904 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\bc254d2fa26664898ae21d45643bc194\System.ServiceModel.ni.dll
+ 2012-02-17 07:20 . 2012-02-17 07:20 17403904 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\1cdcd6d97627d345d5ff446e6ec88b97\System.ServiceModel.ni.dll
+ 2012-05-10 06:14 . 2012-05-10 06:15 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\a9256d2ad7e4be2bbb4e9b18c3997b84\System.Design.ni.dll
+ 2012-04-12 07:17 . 2012-04-12 07:17 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\561138d8d199861578c197c4d24e3934\System.Design.ni.dll
+ 2012-05-10 06:13 . 2012-05-10 06:13 14329856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\5b8ff47c1db373a2a4c638ca31988bd2\PresentationFramework.ni.dll
+ 2012-04-12 07:14 . 2012-04-12 07:14 14328320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\029d1d9e6495065aa4f38bcf2315ee8c\PresentationFramework.ni.dll
+ 2012-05-10 06:12 . 2012-05-10 06:12 12218368 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\4eb3cd1f1d5a83617524a9dfb96a657d\PresentationCore.ni.dll
+ 2012-04-12 07:13 . 2012-04-12 07:13 12215808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\0a059ecfca6e421629a8298b03a7814c\PresentationCore.ni.dll
+ 2012-05-10 06:11 . 2012-05-10 06:11 11492352 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\e337c89bc9f81b69d7237aa70e935900\mscorlib.ni.dll
+ 2012-04-12 07:22 . 2012-04-12 07:22 10113024 c:\windows\assembly\NativeImages_v2.0.50727_32\acdbmgd\67022b625e28c6f4e44df61704bd25cd\acdbmgd.ni.dll
+ 2012-05-10 06:24 . 2012-05-10 06:24 10113024 c:\windows\assembly\NativeImages_v2.0.50727_32\acdbmgd\47a258e07f18e8e5ab669d81cc847c83\acdbmgd.ni.dll
.
-- Instantané actualisé --
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ServUTrayIcon"="c:\program files\RhinoSoft.com\Serv-U\ServUTray.exe" [2007-10-01 102400]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SigmatelSysTrayApp"="stsystra.exe" [2005-03-23 339968]
"DMXLauncher"="c:\program files\Dell\Media Experience\DMXLauncher.exe" [2005-01-27 86016]
"ISUSScheduler"="c:\program files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2006-09-11 86960]
"pdfFactory Pro Dispatcher v3"="c:\windows\System32\spool\DRIVERS\W32X86\3\fppdis3a.exe" [2008-02-27 516096]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-08-29 61440]
"SunJavaUpdateSched"="c:\program files\Fichiers communs\Java\Java Update\jusched.exe" [2011-06-09 254696]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-03-27 37296]
"Adobe ARM"="c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712]
"UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2010-07-04 17408]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-26 931200]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\TOUS.FREDO\Menu Démarrer\Programmes\Démarrage\
Serv-U (2).lnk - c:\program files\RhinoSoft.com\Serv-U\ServUAdmin.exe [2011-11-2 2747904]
.
c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\
FTP Utility.lnk - c:\program files\KONICA MINOLTA\FTP Utility\KMFtp.exe [2004-10-27 102400]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\KONICA MINOLTA\\FTP Utility\\KMFtp.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\TeamViewer\\Version7\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version7\\TeamViewer_Service.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"135:TCP"= 135:TCP:Port DCOM (135)
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [26/12/2006 19:00 611064]
R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [24/02/2012 10:33 24408]
R1 MpKslc77ddd2a;MpKslc77ddd2a;c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{A48D5DEB-802C-4A9E-AD1A-D20FD1578217}\MpKslc77ddd2a.sys [29/05/2012 10:09 29904]
R2 hMailServer;hMailServer;c:\program files\hMailServer\Bin\hMailServer.exe RunAsService --> c:\program files\hMailServer\Bin\hMailServer.exe RunAsService [?]
R2 TeamViewer7;TeamViewer 7;c:\program files\TeamViewer\Version7\TeamViewer_Service.exe [19/03/2012 13:38 2666880]
S2 hMailServerMySQL;hMailServerMySQL;c:\program files\hMailServer\MySQL\Bin\mysqld-nt.exe [02/10/2011 09:29 3530752]
S2 SG_Service;SoftGuard Service;c:\program files\Fichiers communs\RbtProt\sgsrv.exe [21/11/2007 10:08 180224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [14/05/2012 10:24 257696]
.
--- Autres Services/Pilotes en mémoire ---
.
*NewlyCreated* - MPKSLC77DDD2A
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
Contenu du dossier 'Tâches planifiées'
.
2012-05-29 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-14 08:59]
.
2012-05-24 c:\windows\Tasks\BACKUP JEUDI.job
- D:\BACKUP JEUDI.BAT [2007-10-08 16:05]
.
2012-05-28 c:\windows\Tasks\BACKUP LUNDI.job
- D:\BACKUP LUNDI.BAT [2008-07-22 16:01]
.
2012-05-22 c:\windows\Tasks\BACKUP MARDI.job
- D:\BACKUP MARDI.BAT [2008-07-22 16:02]
.
2012-05-23 c:\windows\Tasks\BACKUP MERCREDI.job
- D:\BACKUP MERCREDI.BAT [2008-07-22 16:02]
.
2012-05-25 c:\windows\Tasks\BACKUP SOIR VENDREDI.job
- D:\BACKUP SOIR VENDREDI.BAT [2011-12-23 16:26]
.
2012-05-28 c:\windows\Tasks\BACKUP SOIR.job
- D:\BACKUP SOIR.BAT [2011-12-21 16:19]
.
2012-05-25 c:\windows\Tasks\BACKUP VENDREDI.job
- D:\BACKUP VENDREDI.BAT [2008-07-22 16:17]
.
2012-05-28 c:\windows\Tasks\envoi LOG FTP.job
- D:\envoi LOG FTP.BAT [2012-02-03 08:22]
.
2012-05-29 c:\windows\Tasks\Microsoft Antimalware Scheduled Scan.job
- c:\program files\Microsoft Security Client\MpCmdRun.exe [2012-03-26 15:03]
.
2012-05-28 c:\windows\Tasks\stop.job
- D:\stop.BAT [2009-04-06 06:09]
.
2012-05-28 c:\windows\Tasks\VIDAGE TEMP.job
- D:\VIDAGE TEMP.BAT [2008-07-24 13:28]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.fr/
mStart Page = hxxp://www.dell.fr/myway
uInternet Connection Wizard,ShellNext = hxxp://www.dell.fr/myway
IE: Convertir les liens sélectionnés en fichier Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
TCP: Interfaces\{43F91A67-E55E-41B1-A162-286E084E73AE}: NameServer = 212.27.40.240,212.27.40.241
DPF: {640373B0-6978-4FA5-A9FC-420ECBBC61C7} - file://c:\temp\PublicWeb PASSAGE 2-3 au 6 decembre 06\dll\zkitlib.dll
FF - ProfilePath - c:\documents and settings\TOUS.FREDO\Application Data\Mozilla\Firefox\Profiles\3jrp07hl.default\
FF - prefs.js: network.proxy.type - 0
.
.
------- Associations de fichier -------
.
.scr=AutoCADLTScriptFile
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-05-29 11:22
Windows 5.1.2600 Service Pack 3 NTFS
.
Recherche de processus cachés ...
.
Recherche d'éléments en démarrage automatique cachés ...
.
Recherche de fichiers cachés ...
.
Scan terminé avec succès
Fichiers cachés: 0
.
**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\Ø•€|ÿÿÿÿ•€|ù•9~*]
"C040110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
.
--------------------- DLLs chargées dans les processus actifs ---------------------
.
- - - - - - - > 'explorer.exe'(3488)
c:\windows\system32\AcSignIcon.dll
c:\program files\Fichiers communs\Autodesk Shared\AcSignCore16.dll
c:\windows\system32\msi.dll
c:\windows\system32\eappprxy.dll
c:\program files\Fichiers communs\Autodesk Shared\AcShellEx\AcShellExtension.dll
c:\program files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll
c:\program files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Heure de fin: 2012-05-29 11:24:16
ComboFix-quarantined-files.txt 2012-05-29 09:24
ComboFix2.txt 2012-01-03 10:11
.
Avant-CF: 17 067 769 856 octets libres
Après-CF: 17 384 456 192 octets libres
.
- - End Of File - - 5512575D77201F344B216290E8DD63ED

Rapport ZHPDiag:

http://cjoint.com/?3EDlSVCCqo0
toftrem
 
Messages: 14
Inscription: 07 Sep 2005 21:12

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar nardino » 29 Mai 2012 14:47

Bonjour,
Image AdwCleaner de Xplode sur ton bureau

Image Lance l'outil en cliquant sur adwcleaner.exe.
Sous Vista et Windows 7 par un clic droit sur l'icône et Exécuter en tant qu'administrateur dans le menu contextuel
Image Clique sur le bouton Suppression

Image

Image Poste le rapport qui s'ouvre en fin de nettoyage après avoir redémarré l'ordinateur.
Il sera enregistré sous C:\AdwCleaner[S1].txt

(Si tu as choisis Recherche le rapport sera C:\AdwCleaner[R1].txt
Chaque nouvelle utilisation de l'outil implémentera la numérotation des rapports [S2] [S3] [R2] [R3], etc.
R= Recherche, S=Suppression.
)
Lance ZHPFix par l'icône sur le bureau, avec élévation des privilèges pour Vista et Windows 7.
    Image
Elle a été créée lors de l'installation de ZHPDiag.
Image Copie le contenu de l'encadré ci-dessous dans le presse-papier.

Code: Tout sélectionner
 
[HKCU\Software\Club Dice Poker]     
[HKCU\Software\HKEY_LOCAL_MACHINE]   
[HKLM\Software\Club Dice Poker] 
[HKLM\Software\MetaStream]   
C:\Documents and Settings\TOUS.FREDO\Recent\Serv-U.FTP.Server.v6.4.0.5.Corporate.Edition.Cracked-MiNT.rar.lnk     
C:\Temp\Serv u Ftp server 6.4.0.6\Serv-U.FTP.Server.v6.4.0.5.Corporate.Edition.Cracked-MiNT.rar     
C:\Documents and Settings\TOUS.FREDO\Recent\Serv-U.FTP.Server.v6.4.0.5.Corporate.Edition.Cracked-MiNT.rar.lnk     
C:\Temp\Serv u Ftp server 6.4.0.6\Serv-U.FTP.Server.v6.4.0.5.Corporate.Edition.Cracked-MiNT.rar     
G:\AUTOCAD\autocad 2009\all-autocad-keygen-2009.zip     
G:\RCAD_ACIER\keygen ASD 2012\xf-a2012-32bits.exe     
G:\RCAD_ACIER\keygen ASD 2012\xf-a2012-64bits.exe     
G:\RCAD_ACIER\keygen ASD 2013\keygen ASD 2013.rar     
G:\RCAD_ACIER\keygen ASD 2013\xf-asd2013_x32.exe     
G:\RCAD_ACIER\keygen ASD 2013\xf-asd2013_x64.exe     
G:\ROBOT_MILLENIUM\RSAPRO 2010\XF-AUTODESK-2010-KeyGens.rar     
V:\AUTOCAD\autocad 2009\all-autocad-keygen-2009.zip     
V:\RCAD_ACIER\keygen ASD 2012\xf-a2012-32bits.exe     
V:\RCAD_ACIER\keygen ASD 2012\xf-a2012-64bits.exe     
V:\RCAD_ACIER\keygen ASD 2013\keygen ASD 2013.rar     
V:\RCAD_ACIER\keygen ASD 2013\xf-asd2013_x32.exe     
V:\RCAD_ACIER\keygen ASD 2013\xf-asd2013_x64.exe     
V:\ROBOT_MILLENIUM\RSAPRO 2010\XF-AUTODESK-2010-KeyGens.rar   
[HKLM\Software\MozillaPlugins\@viewpoint.com/VMP]   
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer]   
[HKLM\Software\Classes\axmetastream.metastreamctl]   
[HKLM\Software\Classes\axmetastream.metastreamctl.1]   
[HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary]   
[HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary.1]   
[HKLM\Software\Classes\setup.player]   
[HKLM\Software\Classes\setup.player.2k2]   
[HKLM\Software\Classes\TypeLib\{090ACFA1-1580-11D1-8AC0-00C0F00910F9}]   
[HKLM\Software\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}]   
[HKLM\Software\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}]   
[HKLM\Software\Classes\TypeLib\{B4E90801-B83C-11D0-8B40-00C0F00AE35A}]   
[HKLM\Software\MetaStream]   
[HKLM\Software\Viewpoint]   
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer]   
C:\Program Files\Viewpoint 
Emptytemp
EmptyFlash


Image Clique sur le bouton Presse-papier encadré en rouge sur l'image.
Les lignes contenues dans le presse-papier vont s'afficher.
Image Clique sur le bouton GO en bas à gauche.
Une fois le résultat affiché, clique sur la croix rouge pour refermer l'outil par la croix rouge en haut à doite.

Image

Image Poste le contenu du rapport ZHPFixReport.txt, enregistré sur le bureau.

Image

Tes navigateurs ne sont pas à jour.
Désinstalle toutes tes versions de Java.
*Java Runtime Environment
Image Ouvre cette page
En bas dans Java SE Update 32, clique sur JRE > Download à droite.
Coche Accept License Agreement dans la nouvelle page.
Clique sur Windows x86 Offline - 16.2 MB -Imagejre-6u32-windows-i586.exe
Installe le fichier téléchargé.
Lis les clauses en cours d'installation. (Il n'est pas nécessaire d'installer les programmes tiers proposés).
Désinstalle toutes les autres versions existantes sur ton pc dans Ajout/Suppression des programmes ou Programmes et fonctionnalités selon le système.
Si tu ne modifies pas les paramètres, les nouvelles versions te seront proposées au téléchargement automatiquement.
@+
Image
Avatar de l’utilisateur
nardino
Super Libellulien
Super Libellulien
 
Messages: 1103
Inscription: 03 Avr 2009 22:02

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar toftrem » 29 Mai 2012 16:40

merci

rapport Adwcleaner

# AdwCleaner v1.608 - Rapport créé le 29/05/2012 à 16:38:26
# Mis à jour le 27/05/2012 par Xplode
# Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
# Nom d'utilisateur : TOUS - SERVEUR
# Exécuté depuis : C:\Documents and Settings\TOUS.FREDO\Bureau\adwcleaner.exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\Documents and Settings\All Users\Application Data\Viewpoint
Dossier Supprimé : C:\Program Files\Viewpoint

***** [Registre] *****

Clé Supprimée : HKLM\SOFTWARE\MetaStream
Clé Supprimée : HKLM\SOFTWARE\Viewpoint
Clé Supprimée : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Clé Supprimée : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Clé Supprimée : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Clé Supprimée : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP

***** [Registre - GUID] *****

Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{E2E2DD38-D088-4134-82B7-F2BA38496583}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E2E2DD38-D088-4134-82B7-F2BA38496583}

***** [Navigateurs] *****

-\\ Internet Explorer v6.0.2900.5512

[OK] Le registre ne contient aucune entrée illégitime.

-\\ Mozilla Firefox v11.0 (fr)

*************************

AdwCleaner[S1].txt - [1916 octets] - [29/05/2012 16:38:26]

########## EOF - C:\AdwCleaner[S1].txt - [2044 octets] ##########
toftrem
 
Messages: 14
Inscription: 07 Sep 2005 21:12

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar toftrem » 29 Mai 2012 16:43

rapport ZHPfix

Rapport de ZHPFix 1.2.06 par Nicolas Coolman, Update du 17/05/2012
Fichier d'export Registre :
Run by TOUS at 29/05/2012 17:42:31
Windows XP Professional Service Pack 3 (Build 2600)
Web site : http://www.premiumorange.com/zeb-help-p ... hpfix.html
Web site : http://nicolascoolman.skyrock.com/

========== Processus mémoire ==========
SUPPRIME Memory Process: G:\RCAD_ACIER\keygen ASD 2012\xf-a2012-32bits.exe
SUPPRIME Memory Process: G:\RCAD_ACIER\keygen ASD 2012\xf-a2012-64bits.exe
SUPPRIME Memory Process: G:\RCAD_ACIER\keygen ASD 2013\xf-asd2013_x32.exe
SUPPRIME Memory Process: G:\RCAD_ACIER\keygen ASD 2013\xf-asd2013_x64.exe
SUPPRIME Memory Process: V:\RCAD_ACIER\keygen ASD 2012\xf-a2012-32bits.exe
SUPPRIME Memory Process: V:\RCAD_ACIER\keygen ASD 2012\xf-a2012-64bits.exe
SUPPRIME Memory Process: V:\RCAD_ACIER\keygen ASD 2013\xf-asd2013_x32.exe
SUPPRIME Memory Process: V:\RCAD_ACIER\keygen ASD 2013\xf-asd2013_x64.exe

========== Clé(s) du Registre ==========
SUPPRIME Key*: HKCU\Software\Club Dice Poker
SUPPRIME Key*: HKCU\Software\HKEY_LOCAL_MACHINE
SUPPRIME Key*: HKLM\Software\Club Dice Poker
ABSENT Key: HKLM\Software\MetaStream
ABSENT Key: HKLM\Software\MozillaPlugins\@viewpoint.com/VMP
SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
ABSENT Key: HKLM\Software\Classes\axmetastream.metastreamctl
ABSENT Key: HKLM\Software\Classes\axmetastream.metastreamctl.1
ABSENT Key: HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary
ABSENT Key: HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary.1
SUPPRIME Key*: HKLM\Software\Classes\setup.player
SUPPRIME Key*: HKLM\Software\Classes\setup.player.2k2
SUPPRIME Key*: HKLM\Software\Classes\TypeLib\{090ACFA1-1580-11D1-8AC0-00C0F00910F9}
ABSENT Key: HKLM\Software\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
ABSENT Key: HKLM\Software\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
SUPPRIME Key*: HKLM\Software\Classes\TypeLib\{B4E90801-B83C-11D0-8B40-00C0F00AE35A}
ABSENT Key: HKLM\Software\Viewpoint
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer

========== Dossier(s) ==========
SUPPRIME Temporaires Windows:
SUPPRIME Flash Cookies:

========== Fichier(s) ==========
SUPPRIME File: C:\Documents and Settings\TOUS.FREDO\Recent\Serv-U.FTP.Server.v6.4.0.5.Corporate.Edition.Cracked-MiNT.rar.lnk
SUPPRIME File: C:\Temp\Serv u Ftp server 6.4.0.6\Serv-U.FTP.Server.v6.4.0.5.Corporate.Edition.Cracked-MiNT.rar
SUPPRIME File***: c:\temp\serv u ftp server 6.4.0.6\serv-u.ftp.server.v6.4.0.5.corporate.edition.cracked-mint.rar
SUPPRIME File: G:\AUTOCAD\autocad 2009\all-autocad-keygen-2009.zip
SUPPRIME File***: g:\autocad\autocad 2009\all-autocad-keygen-2009.zip
SUPPRIME File***: g:\rcad_acier\keygen asd 2012\xf-a2012-32bits.exe
SUPPRIME File***: g:\rcad_acier\keygen asd 2012\xf-a2012-64bits.exe
SUPPRIME File: G:\RCAD_ACIER\keygen ASD 2013\keygen ASD 2013.rar
SUPPRIME File***: g:\rcad_acier\keygen asd 2013\keygen asd 2013.rar
SUPPRIME File: g:\rcad_acier\keygen asd 2013\xf-asd2013_x32.exe
SUPPRIME File: g:\rcad_acier\keygen asd 2013\xf-asd2013_x64.exe
SUPPRIME File: G:\ROBOT_MILLENIUM\RSAPRO 2010\XF-AUTODESK-2010-KeyGens.rar
SUPPRIME File***: g:\robot_millenium\rsapro 2010\xf-autodesk-2010-keygens.rar
SUPPRIME File: V:\AUTOCAD\autocad 2009\all-autocad-keygen-2009.zip
SUPPRIME File***: v:\autocad\autocad 2009\all-autocad-keygen-2009.zip
SUPPRIME File***: v:\rcad_acier\keygen asd 2012\xf-a2012-32bits.exe
SUPPRIME File***: v:\rcad_acier\keygen asd 2012\xf-a2012-64bits.exe
SUPPRIME File: V:\RCAD_ACIER\keygen ASD 2013\keygen ASD 2013.rar
SUPPRIME File***: v:\rcad_acier\keygen asd 2013\keygen asd 2013.rar
SUPPRIME File: v:\rcad_acier\keygen asd 2013\xf-asd2013_x32.exe
SUPPRIME File: v:\rcad_acier\keygen asd 2013\xf-asd2013_x64.exe
SUPPRIME File: V:\ROBOT_MILLENIUM\RSAPRO 2010\XF-AUTODESK-2010-KeyGens.rar
SUPPRIME File***: v:\robot_millenium\rsapro 2010\xf-autodesk-2010-keygens.rar
ABSENT Folder/File: c:\program files\viewpoint
SUPPRIME Temporaires Windows:
SUPPRIME Flash Cookies:


========== Récapitulatif ==========
8 : Processus mémoire
18 : Clé(s) du Registre
2 : Dossier(s)
26 : Fichier(s)


End of clean in 00mn 30s

========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 29/05/2012 17:42:32 [4389]
toftrem
 
Messages: 14
Inscription: 07 Sep 2005 21:12

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar nardino » 29 Mai 2012 18:19

Bonsoir,

Image Dr.Web CureIt!
Il n'est pas obligatoire de cocher la case "J'accepte de recevoir des informations...", clique sur le bouton Suivant
Image Sur la page suivante clique sur le bouton
Image

Lis le Contrat de licence et si tu l'acceptes coche la case et clique sur le bouton Continuer la procédure d'enregistrement
Image

Image Redémarre en mode sans échec.
Après la fermeture de la première fenêtre du BIOS, au tout début de la phase de démarrage du PC (boot), appuyer sur F8.
Une fenêtre de type DOS s'ouvre, sélectionner Mode sans échec à l'aide des flèches du clavier et cliquer sur Entrée (Enter)
Ne t'inquiète pas de l'aspect, Windows démarre avec le minimum nécessaire et peut prendre quelque minutes pour démarrer.
Il faut choisir la même session qu'en mode normal et non pas la session Administrateur qui n'apparaît que sous ce mode (Sous XP)


Image Lance le fichier téléchargé du genre r3947jb7.exe
Accepte le mode renforcé.
Clique sur NON sur la fenêtre suivante.
Image Clique sur Commencer le scan et sur Oui pour lancer l'analyse.Une barre de progression verte s'affiche en bas de le fenêtre.
Le scan rapide qui va se lancé peut prendre jusqu'à une heure selon ta configuration matérielle et le nombre de programmes installés.
Image En fin de scan, sélectionne Guérir et à defaut Quarantaine ou Supprimer.
Image Poste le rapport.
Comme il sera assez conséquent, héberge-le sur Cjoint comme indiqué sur ce tutoriel
@+
Image
Avatar de l’utilisateur
nardino
Super Libellulien
Super Libellulien
 
Messages: 1103
Inscription: 03 Avr 2009 22:02

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar toftrem » 30 Mai 2012 09:42

Salut

et merci

il a trouvé deux virus : irréparable donc j'ai mis déplacer en quarantaine

par contre il m'a demandé de redemarrer et la je ne trouve pas le rapport....

où le trouver?
toftrem
 
Messages: 14
Inscription: 07 Sep 2005 21:12

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar toftrem » 30 Mai 2012 14:33

bon j'ai enfin trouvé le log de Drweb cureit:

http://cjoint.com/?3EEpGEZ8xWX

merci de votre aide
toftrem
 
Messages: 14
Inscription: 07 Sep 2005 21:12

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar nardino » 30 Mai 2012 15:57

Bonjour,
Est-ce toi qui a installé le programme Rhinosoft ?
En as-tu l'utilité ?
@+
Image
Avatar de l’utilisateur
nardino
Super Libellulien
Super Libellulien
 
Messages: 1103
Inscription: 03 Avr 2009 22:02

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar toftrem » 30 Mai 2012 17:29

oui c'est un serveur FTP

mais je pense que l'exe a été infecté par ce virus non?
toftrem
 
Messages: 14
Inscription: 07 Sep 2005 21:12

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar toftrem » 31 Mai 2012 08:58

Bonjour

J'ai testé ces deux fichiers EXE sur un autre poste sur lequel j'ai un autre antivirus (TREND MICRO) et il ne me détecte aucune menace....

Que dois je faire?

Puis je considérer ma machine nettoyée au vu des divers rapport que j'ai posté?

puis je réinstaller AVAST PRO?

et restaurer les fichiers EXE que ce virus m'a vérolé?

Merci d'avance
toftrem
 
Messages: 14
Inscription: 07 Sep 2005 21:12

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar toftrem » 01 Juin 2012 07:21

Bonjour

pas ne news?

merci
toftrem
 
Messages: 14
Inscription: 07 Sep 2005 21:12

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar toftrem » 06 Juin 2012 14:03

Bonjour

merci pour cette aide

mon système à l'air maintenant clean

longue vie à ce forum

merci encore
toftrem
 
Messages: 14
Inscription: 07 Sep 2005 21:12

Re: Demande d'aide Virus:Win32/Gael.D

Messagepar toftrem » 13 Juin 2012 08:07

Bon j'ai parlé trop vite...

AVAST vient de me mettre un lot de fichiers .EXE contaminés par Win32:Tenga

grrrr

ce sont tous des fichiers que je copie depuis d'autres postes qui ont eux aussi AVAST ou TREND MICRO

je comprends pas tout (probablement des faux positifs....)
toftrem
 
Messages: 14
Inscription: 07 Sep 2005 21:12


Retourner vers Désinfections et demandes d'analyse

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 1 invité