Aller au contenu

grem

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    44

  • Inscription

  • Dernière visite

grem's Achievements

Member

Member (4/12)

0

Réputation sur la communauté

  1. grem
    Super !!!! Merci à toi pour ton aide. Vous faites un super boulot. Grem
  2. grem
    J'ai fait tout comme tu m'as dit firefox et a jour avec les extensions java est à jour aussi et voila le rapport : Rapport de ZHPFix 1.12.3338 par Nicolas Coolman, Update du 12/07/2011 Fichier d'export Registre : Run by Saskia at 14/07/2011 06:17:54 Windows XP Professional Service Pack 3 (Build 2600) Web site : ZHPFix Fix de rapport ========== Logiciel(s) ========== SUPPRIME O63 - Logiciel: FindyKill - (.El Desaparecido.) ========== Processus mémoire ========== SUPPRIME Memory Process: C:\Documents and Settings\Saskia\Desktop\delfix.exe SUPPRIME Memory Process: C:\Documents and Settings\Saskia\Desktop\MestReC.exe SUPPRIME Memory Process: C:\Documents and Settings\Saskia\Desktop\SoftonicFR_JDownloader_09579.exe ========== Clé(s) du Registre ========== SUPPRIME Partiel Software Key: {1EF93620-4B15-4DB4-B0EA-889E2F187081} ========== Dossier(s) ========== SUPPRIME Folder: C:\FindyKill SUPPRIME Temporaires Windows: : 7 SUPPRIME Flash Cookies: 20 ========== Fichier(s) ========== SUPPRIME c:\findykill.txt SUPPRIME Temporaires Windows: : 15 SUPPRIME Flash Cookies: 8 ========== Récapitulatif ========== 3 : Processus mémoire 1 : Clé(s) du Registre 3 : Dossier(s) 3 : Fichier(s) 1 : Logiciel(s) ========== Chemin du fichier rapport ========== C:\Program Files\ZHPDiag\ZHPFixReport.txt End of the scan in 00mn 10s
  3. grem
    Encore merci hop la ! Rapport de ZHPDiag v1.27.2406 par Nicolas Coolman, Update du 12/07/2011 Run by Saskia at 14/07/2011 01:59:06 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v8.0.6001.18702 MFIE: Mozilla Firefox v (Defaut) GCIE: Google Chrome v12.0.742.112 ---\\ System Information Windows XP Professional Service Pack 3 (Build 2600) ~ Processor: x86 Family 6 Model 13 Stepping 8, GenuineIntel ~ Operating System: 32 Bits ~ Boot mode: ~ Normal (Normal boot) Total RAM: 1022 MB (52% free) ~ System Restore: Activé (Enable) System drive C: has 22 GB (28%) free of 75 GB ---\\ Logged in mode ~ Computer Name: JÉRÉMY ~ User Name: Saskia ~ All Users Names: SUPPORT_388945a0, Saskia, HelpAssistant, Guest, ASPNET, Administrator, ~ Unselected Option: None ~ Logged in as Administrator ---\\ Environnement Variables ~ %AppData%=C:\Documents and Settings\Saskia\Application Data\ ~ %Desktop%=C:\Documents and Settings\Saskia\Desktop\ ~ %Favorites%=C:\Documents and Settings\Saskia\Favorites\ ~ %LocalAppData%=C:\Documents and Settings\Saskia\Local Settings\Application Data\ ~ %StartMenu%=C:\Documents and Settings\Saskia\Start Menu\ ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 22 Go of 75 Go) D:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK ---\\ Recherche particulière de fichiers génériques [MD5.2BB75B7F548D82A099125D0C5971DE7D] - (.Microsoft Corporation - Windows Explorer.) (.14/07/2011 - 12:38:24.) -- C:\WINDOWS\Explorer.exe [1033728] [MD5.037B1E7798960E0420003D05BB577EE6] - (....) (.14/07/2011 - 13:00:00.) -- C:\WINDOWS\system32\rundll32.exe [33280] [MD5.CC951C2212A200475A587A440E0AA804] - (.Microsoft Corporation - Internet Extensions for Win32.) (.14/07/2011 - 17:11:12.) -- C:\WINDOWS\system32\wininet.dll [916480] [MD5.D1BAC55BC35A0CA735AEA19F609F2B22] - (.Microsoft Corporation - Windows NT Logon Application.) (.14/07/2011 - 14:33:54.) -- C:\WINDOWS\system32\Winlogon.exe [507904] [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.14/07/2011 - 23:10:32.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512] [MD5.A0857C97770034FD2AF17DC4014B5ABD] - (.Microsoft Corporation - NT File System Driver.) (.14/07/2011 - 14:45:52.) -- C:\WINDOWS\system32\drivers\ntfs.sys [576384] ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 2/23 ~ Mes musiques (My Musics) : 36/2636 ~ Mes Favoris (My Favorites) : 2/11 ~ Mes Documents (My Documents) : 170/9878 ~ Mon Bureau (My Desktop) : 9/1501 ~ Menu demarrer (Programs) : 4/30 ---\\ Processus lancés [MD5.127E07D34B44438442A0E81AE7F093C0] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [425984] [MD5.5AE75738B957C2064566007487D973B6] - (.Intel Corporation - EvtEng Module.) -- C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [86016] [MD5.215DEEE103618F102263C8ECF4B8413E] - (.Intel Corporation - Event Monitor - Supports driver extensions.) -- C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [360521] [MD5.A5BCBAF0477C4869B67E0195AEA4A9CD] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [136360] [MD5.2F73148CFD930B641D860710931FE8C7] - (.Intel Corporation - ZeroCfgSvc MFC Application.) -- C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe [389120] [MD5.1CF3866E09FFE13CF280D4DDFA9F7DCF] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [269480] [MD5.018857EAD9A077A56AEDFC0E5EF7A24A] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664] [MD5.CDE000884FD7BAF0C1FDFE029B0891DE] - (.Avira GmbH - AntiVir shadow copy service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76968] [MD5.F832F1505AD8B83474BD9A5B1B985E01] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [345376] [MD5.05D21AD56EA309597864393D3D4A14F7] - (.WIDCOMM, Inc. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [163840] [MD5.1834C96FB1F9280BCF6DDFA6DE8338BF] - (.Sun Microsystems, Inc. - Java Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376] [MD5.F57524C6764E96FC29AC64394282EB36] - (.Intel Corporation - Ownership protocol service.) -- C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe [98304] [MD5.A7EEBA958CFCCADBD4F47C3CDB51C714] - (.Intel Corporation - RegSrvc Module.) -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [139264] [MD5.037B1E7798960E0420003D05BB577EE6] - (...) -- C:\WINDOWS\system32\rundll32.exe [33280] [MD5.3665BA88B993554DB062FF96542D85FF] - (.Synaptics, Inc. - TouchPad Driver Helper Application.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [98394] [MD5.55582F239914C8EFCCF89BD632639542] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [688218] [MD5.00EE4D43383C6162744C18626FEA96F9] - (.INPROCOMM - Wireless LAN Configuration Utility.) -- C:\Program Files\acer\Wireless\Utility\WlanUtil.exe [417792] [MD5.0E237B85A4FF082CAECFBF4804A29F3C] - (.Intel Corporation - Intel Framework MFC Application.) -- C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [385024] [MD5.1AFE29C82ED39A48FEC9E747B356C87C] - (.Intel Corporation - Ease Of Use Wizard Application.) -- C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe [356352] [MD5.F7364F9AF03F4F01856804C28B459FEB] - (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064] [MD5.9D5E8B45BD348DF0882C69EED0E83111] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [281768] [MD5.BAD6BEA0DE1F69C82BDB74378CE0C20A] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288] [MD5.2DFCB2393528446AEB9FB861A8FC39AB] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160] [MD5.3E930C641079443D4DE036167A69CAA2] - (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe [1695232] [MD5.70B6D0C45256B688B7DBC10E922FB402] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [26192168] [MD5.97CF3EC1582005C2D354B708F0960B63] - (.WIDCOMM, Inc. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [565309] [MD5.0CA8C2E721617AA2F923A8151C96FB33] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [820008] [MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53472] [MD5.0A9BA6AF531AFE7FA5E4FB973852D863] - (.Microsoft Corporation - COM Surrogate.) -- C:\WINDOWS\system32\dllhost.exe [5120] [MD5.00365B3515C30F66CDB938F6729F3D0C] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [656896] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Documents and Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\prefs.js M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll P2 - FPN:Firefox Plugin Navigator . (.CambridgeSoft Corp. - ChemDraw Pro Plugin 8.0.) -- C:\Program Files\Mozilla Firefox\Plugins\npcdp32.dll P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.1".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll P2 - FPN:Firefox Plugin Navigator . (.Pas de propriétaire - SciFinder Application Plugin for Mozilla.) -- C:\Program Files\Mozilla Firefox\Plugins\npSfAppM.dll P2 - FPN:Firefox Plugin Navigator . (.CNN - NPTURNMED.) -- C:\Program Files\Mozilla Firefox\Plugins\NPTURNMED.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Documents and Settings\Saskia\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences G0 - GCSP: Preference [user Data\Default][HomePage] Google ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Microsoft Corporation R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.19072 (longhorn_ie8_gdr.110420-1700)) -- C:\WINDOWS\system32\ieframe.dll ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: SciFinder Scholar Bar - {4e16a8fb-0521-46d1-aa2c-d0fc7abf6af9} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] bthprops.cpl O4 - HKLM\..\Run: [KTPWare] . (.ELANTECH Devices Corp. - KTP Ware TSR Enhancements.) -- C:\Program Files\Elantech\ktp.exe O4 - HKLM\..\Run: [synTPLpr] . (.Synaptics, Inc. - TouchPad Driver Helper Application.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [acerWireless] . (.INPROCOMM - Wireless LAN Configuration Utility.) -- C:\Program Files\acer\Wireless\Utility\WlanUtil.exe O4 - HKLM\..\Run: [intelWireless] . (.Intel Corporation - Intel Framework MFC Application.) -- C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe O4 - HKLM\..\Run: [EOUApp] . (.Intel Corporation - Ease Of Use Wizard Application.) -- C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe O4 - HKLM\..\Run: [ATIPTA] . (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe O4 - HKLM\..\Run: [switchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe O4 - HKLM\..\Run: [tvncontrol] . (.GlavSoft LLC. - TightVNC Server for Windows.) -- C:\Program Files\TightVNC\tvnserver.exe O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe O4 - HKCU\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe After Effects CS3.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe After Effects CS3\Support Files\AfterFX.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Bridge CS3.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Adobe\Adobe Bridge CS3\Bridge.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Device Central CS3.lnk . (.Adobe Systems.) -- C:\Program Files\Adobe\Adobe Device Central CS3\DeviceCentral.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe ExtendScript Toolkit 2.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Utilities\ExtendScript Toolkit 2\ExtendScript Toolkit 2.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop CS3.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Photoshop CS3\Photoshop.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop Lightroom 2.4.lnk . (.Adobe Systems.) -- C:\Program Files\Adobe\Adobe Photoshop Lightroom 2.4\lightroom.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Premiere Pro CS3.lnk . (...) -- C:\Program Files\Adobe\Adobe Premiere Pro CS3\Adobe Premiere Pro.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 6.0.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1033-7B44-000000000001}\SC_Reader_PM.ico (.not file.) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Stock Photos CS3.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe Stock Photos CS3\Adobe Stock Photos CS3.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\AppleSoftwareUpdateIco.exe (.not file.) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\PC Inspector smart recovery.lnk . (.Convar Deutschland GmbH.) -- C:\Program Files\Convar\SmartRecovery\SMR.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Yahoo! Mail.lnk . (...) -- C:\WINDOWS\system32\RUNDLL32.EXE O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\eBay Sidebar pour Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\JDownloader.lnk . (.AppWork UG (haftungsbeschränkt).) -- C:\Program Files\JDownloader\JDownloader.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Microsoft Office Word 2007.lnk . (...) -- C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Pixia 4.3a FR.lnk . (...) -- C:\Program Files\Pixia 4.3a FR\pixia.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Shortcut to EndNote.lnk . (.Thomson ResearchSoft.) -- C:\Program Files\EndNote 9\EndNote.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Shortcut to ZHPFix.lnk . (.Nicolas Coolman.) -- C:\Program Files\ZHPDiag\ZHPFix.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\TeXnicCenter.lnk . (.TeXnicCenter.org (www.TeXnicCenter.org).) -- C:\Program Files\TeXnicCenter\TEXCNTR.EXE O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\XnView.lnk . (.XnView, http://www.xnview.com.) -- C:\Program Files\XnView\xnview.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\Office12\EXCEL.exe O8 - Extra context menu item: Send To &Bluetooth . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico O9 - Extra button: Skype add-on for Internet Explorer - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (...) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Client Service for NetWare Provider and Authentication Package DLL.) -- C:\WINDOWS\system32\nwprovau.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{19A8B5E0-A772-4CEA-B80A-AF76F33DB28D}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CS1\Services\Tcpip\..\{19A8B5E0-A772-4CEA-B80A-AF76F33DB28D}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CS2\Services\Tcpip\..\{19A8B5E0-A772-4CEA-B80A-AF76F33DB28D}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2 ---\\ Protocole additionnel et piratage de protocole (O18) O18 - Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Handler: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} . (.WIDCOMM, Inc. - BTXPPanel Module.) -- C:\WINDOWS\system32\btxppanel.dll ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\Windows\System32\Ati2evxx.dll O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Offline Network Agent.) -- C:\Windows\System32\cscdll.dll O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll O20 - Winlogon Notify: IntelWireless . (.Intel Corporation - LogonNotify DLL.) -- C:\Program Files\Intel\Wireless\Bin\LgNotify.dll O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - Secondary Logon Service Notification DLL.) -- C:\Windows\System32\sclgntfy.dll O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\WlNotify.dll O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Systray shell service object.) -- C:\WINDOWS\system32\stobject.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Bluetooth Service (btwdins) . (.WIDCOMM, Inc. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: EvtEng (EvtEng) . (.Intel Corporation - EvtEng Module.) - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: Service Google Update (gupdate1cb095d934d6ec8) (gupdate1cb095d934d6ec8) . (.Google Inc. - Google Installer.) - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: OwnershipProtocol (OwnershipProtocol) . (.Intel Corporation - Ownership protocol service.) - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe O23 - Service: RegSrvc (RegSrvc) . (.Intel Corporation - RegSrvc Module.) - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) . (.Intel Corporation - Event Monitor - Supports driver extensions.) - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: TightVNC Server (tvnserver) . (.GlavSoft LLC. - TightVNC Server for Windows.) - C:\Program Files\TightVNC\tvnserver.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Desktop Component 0: My Current Home Page - file:About:Home O24 - Default MHTML Editor: Last - .(...) - (.not file.) ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [MD5.187E0D2AB859AD03393DDD731076BE81] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\WINDOWS\System32\DRIVERS\avipbb.sys O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\System32\DRIVERS\cdrom.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - i8042 Port Driver.) - C:\WINDOWS\System32\DRIVERS\i8042prt.sys O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\System32\DRIVERS\imapi.sys O41 - Driver: (intelppm) . (.Microsoft Corporation - Processor Device Driver.) - C:\WINDOWS\System32\DRIVERS\intelppm.sys O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\System32\DRIVERS\ipsec.sys O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Keyboard Class Driver.) - C:\WINDOWS\System32\DRIVERS\kbdclass.sys O41 - Driver: (kbdhid) . (.Microsoft Corporation - HID Mouse Filter Driver.) - C:\WINDOWS\System32\DRIVERS\kbdhid.sys O41 - Driver: (Mouclass) . (.Microsoft Corporation - Mouse Class Driver.) - C:\WINDOWS\System32\DRIVERS\mouclass.sys O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\System32\DRIVERS\mrxsmb.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\System32\DRIVERS\netbios.sys O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\System32\DRIVERS\netbt.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\System32\DRIVERS\rasacd.sys O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys O41 - Driver: (redbook) . (.Microsoft Corporation - Redbook Audio Filter Driver.) - C:\WINDOWS\System32\DRIVERS\redbook.sys O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\WINDOWS\System32\DRIVERS\ssmdrv.sys O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\System32\DRIVERS\tcpip.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys ---\\ Logiciels installés (O42) O42 - Logiciel: ATI - Utilitaire de désinstallation du logiciel - (.Pas de propriétaire.) [HKLM] -- All ATI Software O42 - Logiciel: ATI Control Panel - (.Pas de propriétaire.) [HKLM] -- {0BEDBD4E-2D34-47B5-9973-57E62B29307C} O42 - Logiciel: ATI Display Driver - (.Pas de propriétaire.) [HKLM] -- ATI Display Driver O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723} O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7} O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Photoshop CS5 - (.Adobe Systems Incorporated.) [HKLM] -- {15FEDA5F-141C-4127-8D7E-B962D1742728} O42 - Logiciel: Adobe Reader 9.4.1 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001} O42 - Logiciel: Akamai NetSession Interface - (.Pas de propriétaire.) [HKLM] -- Akamai O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {308B6AEA-DE50-4666-996D-0FA461719D6B} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1} O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {2A981294-F14C-4F0F-9627-D793270922F8} O42 - Logiciel: Broadcom 440x 10/100 Integrated Controller - (.Broadcom.) [HKLM] -- InstallShield_{52504CE6-E909-4113-B232-4AFEC6543A61} O42 - Logiciel: Broadcom Gigabit Integrated Controller - (.Nom de votre société.) [HKLM] -- {B7F54262-AB66-44B3-88BF-9FC69941B643} O42 - Logiciel: ChemOffice Ultra 2004 - (.CambridgeSoft Corporation.) [HKLM] -- {5A33744D-33F5-451A-9CB0-2FE49EE3809C} O42 - Logiciel: Conexant AC-Link Audio - (.Pas de propriétaire.) [HKLM] -- Conexant PCI Audio O42 - Logiciel: EndNote 9 Volume License Edition - (.Thomson ResearchSoft.) [HKLM] -- {53C020C2-8C1A-11D9-8BDE-F66BAD1E3F3A} O42 - Logiciel: FreeCompressor - (.Secure Digital Services.) [HKLM] -- {1EF93620-4B15-4DB4-B0EA-889E2F187081} O42 - Logiciel: GPL Ghostscript 8.61 - (.Pas de propriétaire.) [HKLM] -- GPL Ghostscript 8.61 O42 - Logiciel: GPL Ghostscript Fonts - (.Pas de propriétaire.) [HKLM] -- GPL Ghostscript Fonts O42 - Logiciel: GSview 4.9 - (.Pas de propriétaire.) [HKLM] -- GSview 4.9 O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM] -- {A9F6CFB0-806D-11E0-8EA1-B8AC6F97B88E} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595 O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484 O42 - Logiciel: Hotfix for Windows XP (KB2158563) - (.Microsoft Corporation.) [HKLM] -- KB2158563 O42 - Logiciel: Hotfix for Windows XP (KB2443685) - (.Microsoft Corporation.) [HKLM] -- KB2443685 O42 - Logiciel: Hotfix for Windows XP (KB942766-v6) - (.Microsoft Corporation.) [HKLM] -- KB942766-v6 O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5 O42 - Logiciel: Hotfix for Windows XP (KB961118) - (.Microsoft Corporation.) [HKLM] -- KB961118 O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5 O42 - Logiciel: Hotfix for Windows XP (KB981793) - (.Microsoft Corporation.) [HKLM] -- KB981793 O42 - Logiciel: ISI ResearchSoft - Export Helper - (.Pas de propriétaire.) [HKLM] -- ISI ResearchSoft - Export Helper O42 - Logiciel: Intel® PROSet/Wireless Software - (.Intel Corporation.) [HKLM] -- ProInst O42 - Logiciel: JDownloader - (.AppWork UG (haftungsbeschränkt).) [HKLM] -- JDownloader O42 - Logiciel: Java 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF} O42 - Logiciel: KTP Ware PS/2-WDM 5.0.1.8 - (.Pas de propriétaire.) [HKLM] -- Elantech O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver O42 - Logiciel: MSN - (.Pas de propriétaire.) [HKLM] -- MSNINST O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- MSXML 4.0 SP2 (KB941833) O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- {C523D256-313D-4866-B36A-F3DE528246EF} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.0.1200 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: MiKTeX 2.8 - (.MiKTeX.org.) [HKLM] -- MiKTeX 2.8 O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033) O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447 O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906 O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1 O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- Microsoft Silverlight O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F} O42 - Logiciel: Microsoft_VC80_ATL_x86 - (.Adobe.) [HKLM] -- {0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25} O42 - Logiciel: Microsoft_VC80_CRT_x86 - (.Adobe.) [HKLM] -- {92D58719-BBC1-4CC3-A08B-56C9E884CC2C} O42 - Logiciel: Microsoft_VC80_MFCLOC_x86 - (.Adobe.) [HKLM] -- {D92BBB52-82FF-42ED-8A3C-4E062F944AB7} O42 - Logiciel: Microsoft_VC80_MFC_x86 - (.Adobe.) [HKLM] -- {D1A19B02-817E-4296-A45B-07853FD74D57} O42 - Logiciel: Microsoft_VC90_ATL_x86 - (.Adobe.) [HKLM] -- {033E378E-6AD3-4AD5-BDEB-CBD69B31046C} O42 - Logiciel: Microsoft_VC90_CRT_x86 - (.Adobe.) [HKLM] -- {08D2E121-7F6A-43EB-97FD-629B44903403} O42 - Logiciel: Microsoft_VC90_MFC_x86 - (.Adobe.) [HKLM] -- {635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A} O42 - Logiciel: Mozilla Firefox (3.6.18) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.18) O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM] -- {4EE2EF4B-25D3-4D44-8384-A2B96F811F55} O42 - Logiciel: OriginPro 8G - (.OriginLab Corporation.) [HKLM] -- {A912021A-FEDD-4DA3-8DB4-245EBDA84778} O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392} O42 - Logiciel: Pixia 4.3a FR - (.Pas de propriétaire.) [HKCU] -- Pixia 4.3a FR O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {E7004147-2CCA-431C-AA05-2AB166B9785D} O42 - Logiciel: SciFinder Scholar 2007 - (.Pas de propriétaire.) [HKLM] -- {12377A05-0062-47F9-9CB9-AAAF8C22D645} O42 - Logiciel: SciFinder Scholar Toolbar - (.Pas de propriétaire.) [HKLM] -- {455F9ACD-4967-446B-9174-8C87EA895F2A} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5C497F0B-2061-4CC9-A61C-6B45B867354D} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD769337-C8AC-46DB-A7DC-643E50089263} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{536FB502-775F-4494-BACE-C02CC90B7A5B} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2509488) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{AD0DE453-0804-4495-9C91-33D0F9AA5463} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473 O42 - Logiciel: Security Update for Microsoft Office 2007 System (KB2541012) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD907315-705A-4475-A1A0-2A1245803E4D} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5A4E43D5-858F-49BD-BA72-8F30E1793060} O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2541007) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{A0173254-F442-4D04-9154-43FA157B83D0} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB2510061) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5D930261-AA5B-48D1-931F-425C9D767490} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1} O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062} O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3A4CDE54-2403-483D-8D9A-15E3264410DF} O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2183461) - (.Microsoft Corporation.) [HKLM] -- KB2183461-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2360131) - (.Microsoft Corporation.) [HKLM] -- KB2360131-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2482017) - (.Microsoft Corporation.) [HKLM] -- KB2482017-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2510531) - (.Microsoft Corporation.) [HKLM] -- KB2510531-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2530548) - (.Microsoft Corporation.) [HKLM] -- KB2530548-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2544521) - (.Microsoft Corporation.) [HKLM] -- KB2544521-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB971961) - (.Microsoft Corporation.) [HKLM] -- KB971961-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB981332) - (.Microsoft Corporation.) [HKLM] -- KB981332-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB982381) - (.Microsoft Corporation.) [HKLM] -- KB982381-IE8 O42 - Logiciel: Security Update for Windows Media Player (KB2378111) - (.Microsoft Corporation.) [HKLM] -- KB2378111_WM9 O42 - Logiciel: Security Update for Windows Media Player (KB952069) - (.Microsoft Corporation.) [HKLM] -- KB952069_WM9 O42 - Logiciel: Security Update for Windows Media Player (KB954155) - (.Microsoft Corporation.) [HKLM] -- KB954155_WM9 O42 - Logiciel: Security Update for Windows Media Player (KB968816) - (.Microsoft Corporation.) [HKLM] -- KB968816_WM9 O42 - Logiciel: Security Update for Windows Media Player (KB973540) - (.Microsoft Corporation.) [HKLM] -- KB973540_WM9 O42 - Logiciel: Security Update for Windows Media Player (KB975558) - (.Microsoft Corporation.) [HKLM] -- KB975558_WM8 O42 - Logiciel: Security Update for Windows Media Player (KB978695) - (.Microsoft Corporation.) [HKLM] -- KB978695_WM9 O42 - Logiciel: Security Update for Windows Media Player 11 (KB954154) - (.Microsoft Corporation.) [HKLM] -- KB954154_WM11 O42 - Logiciel: Security Update for Windows XP (KB2079403) - (.Microsoft Corporation.) [HKLM] -- KB2079403 O42 - Logiciel: Security Update for Windows XP (KB2115168) - (.Microsoft Corporation.) [HKLM] -- KB2115168 O42 - Logiciel: Security Update for Windows XP (KB2121546) - (.Microsoft Corporation.) [HKLM] -- KB2121546 O42 - Logiciel: Security Update for Windows XP (KB2160329) - (.Microsoft Corporation.) [HKLM] -- KB2160329 O42 - Logiciel: Security Update for Windows XP (KB2229593) - (.Microsoft Corporation.) [HKLM] -- KB2229593 O42 - Logiciel: Security Update for Windows XP (KB2259922) - (.Microsoft Corporation.) [HKLM] -- KB2259922 O42 - Logiciel: Security Update for Windows XP (KB2279986) - (.Microsoft Corporation.) [HKLM] -- KB2279986 O42 - Logiciel: Security Update for Windows XP (KB2286198) - (.Microsoft Corporation.) [HKLM] -- KB2286198 O42 - Logiciel: Security Update for Windows XP (KB2296011) - (.Microsoft Corporation.) [HKLM] -- KB2296011 O42 - Logiciel: Security Update for Windows XP (KB2296199) - (.Microsoft Corporation.) [HKLM] -- KB2296199 O42 - Logiciel: Security Update for Windows XP (KB2347290) - (.Microsoft Corporation.) [HKLM] -- KB2347290 O42 - Logiciel: Security Update for Windows XP (KB2360937) - (.Microsoft Corporation.) [HKLM] -- KB2360937 O42 - Logiciel: Security Update for Windows XP (KB2387149) - (.Microsoft Corporation.) [HKLM] -- KB2387149 O42 - Logiciel: Security Update for Windows XP (KB2393802) - (.Microsoft Corporation.) [HKLM] -- KB2393802 O42 - Logiciel: Security Update for Windows XP (KB2412687) - (.Microsoft Corporation.) [HKLM] -- KB2412687 O42 - Logiciel: Security Update for Windows XP (KB2419632) - (.Microsoft Corporation.) [HKLM] -- KB2419632 O42 - Logiciel: Security Update for Windows XP (KB2423089) - (.Microsoft Corporation.) [HKLM] -- KB2423089 O42 - Logiciel: Security Update for Windows XP (KB2436673) - (.Microsoft Corporation.) [HKLM] -- KB2436673 O42 - Logiciel: Security Update for Windows XP (KB2440591) - (.Microsoft Corporation.) [HKLM] -- KB2440591 O42 - Logiciel: Security Update for Windows XP (KB2443105) - (.Microsoft Corporation.) [HKLM] -- KB2443105 O42 - Logiciel: Security Update for Windows XP (KB2476490) - (.Microsoft Corporation.) [HKLM] -- KB2476490 O42 - Logiciel: Security Update for Windows XP (KB2476687) - (.Microsoft Corporation.) [HKLM] -- KB2476687 O42 - Logiciel: Security Update for Windows XP (KB2478960) - (.Microsoft Corporation.) [HKLM] -- KB2478960 O42 - Logiciel: Security Update for Windows XP (KB2478971) - (.Microsoft Corporation.) [HKLM] -- KB2478971 O42 - Logiciel: Security Update for Windows XP (KB2479628) - (.Microsoft Corporation.) [HKLM] -- KB2479628 O42 - Logiciel: Security Update for Windows XP (KB2479943) - (.Microsoft Corporation.) [HKLM] -- KB2479943 O42 - Logiciel: Security Update for Windows XP (KB2481109) - (.Microsoft Corporation.) [HKLM] -- KB2481109 O42 - Logiciel: Security Update for Windows XP (KB2483185) - (.Microsoft Corporation.) [HKLM] -- KB2483185 O42 - Logiciel: Security Update for Windows XP (KB2485376) - (.Microsoft Corporation.) [HKLM] -- KB2485376 O42 - Logiciel: Security Update for Windows XP (KB2485663) - (.Microsoft Corporation.) [HKLM] -- KB2485663 O42 - Logiciel: Security Update for Windows XP (KB2503665) - (.Microsoft Corporation.) [HKLM] -- KB2503665 O42 - Logiciel: Security Update for Windows XP (KB2506212) - (.Microsoft Corporation.) [HKLM] -- KB2506212 O42 - Logiciel: Security Update for Windows XP (KB2506223) - (.Microsoft Corporation.) [HKLM] -- KB2506223 O42 - Logiciel: Security Update for Windows XP (KB2507618) - (.Microsoft Corporation.) [HKLM] -- KB2507618 O42 - Logiciel: Security Update for Windows XP (KB2508272) - (.Microsoft Corporation.) [HKLM] -- KB2508272 O42 - Logiciel: Security Update for Windows XP (KB2508429) - (.Microsoft Corporation.) [HKLM] -- KB2508429 O42 - Logiciel: Security Update for Windows XP (KB2509553) - (.Microsoft Corporation.) [HKLM] -- KB2509553 O42 - Logiciel: Security Update for Windows XP (KB2524375) - (.Microsoft Corporation.) [HKLM] -- KB2524375 O42 - Logiciel: Security Update for Windows XP (KB2535512) - (.Microsoft Corporation.) [HKLM] -- KB2535512 O42 - Logiciel: Security Update for Windows XP (KB2536276) - (.Microsoft Corporation.) [HKLM] -- KB2536276 O42 - Logiciel: Security Update for Windows XP (KB2544893) - (.Microsoft Corporation.) [HKLM] -- KB2544893 O42 - Logiciel: Security Update for Windows XP (KB923561) - (.Microsoft Corporation.) [HKLM] -- KB923561 O42 - Logiciel: Security Update for Windows XP (KB952004) - (.Microsoft Corporation.) [HKLM] -- KB952004 O42 - Logiciel: Security Update for Windows XP (KB954459) - (.Microsoft Corporation.) [HKLM] -- KB954459 O42 - Logiciel: Security Update for Windows XP (KB955069) - (.Microsoft Corporation.) [HKLM] -- KB955069 O42 - Logiciel: Security Update for Windows XP (KB956572) - (.Microsoft Corporation.) [HKLM] -- KB956572 O42 - Logiciel: Security Update for Windows XP (KB956744) - (.Microsoft Corporation.) [HKLM] -- KB956744 O42 - Logiciel: Security Update for Windows XP (KB956802) - (.Microsoft Corporation.) [HKLM] -- KB956802 O42 - Logiciel: Security Update for Windows XP (KB956803) - (.Microsoft Corporation.) [HKLM] -- KB956803 O42 - Logiciel: Security Update for Windows XP (KB956844) - (.Microsoft Corporation.) [HKLM] -- KB956844 O42 - Logiciel: Security Update for Windows XP (KB958644) - (.Microsoft Corporation.) [HKLM] -- KB958644 O42 - Logiciel: Security Update for Windows XP (KB958869) - (.Microsoft Corporation.) [HKLM] -- KB958869 O42 - Logiciel: Security Update for Windows XP (KB959426) - (.Microsoft Corporation.) [HKLM] -- KB959426 O42 - Logiciel: Security Update for Windows XP (KB960225) - (.Microsoft Corporation.) [HKLM] -- KB960225 O42 - Logiciel: Security Update for Windows XP (KB960803) - (.Microsoft Corporation.) [HKLM] -- KB960803 O42 - Logiciel: Security Update for Windows XP (KB960859) - (.Microsoft Corporation.) [HKLM] -- KB960859 O42 - Logiciel: Security Update for Windows XP (KB961501) - (.Microsoft Corporation.) [HKLM] -- KB961501 O42 - Logiciel: Security Update for Windows XP (KB969059) - (.Microsoft Corporation.) [HKLM] -- KB969059 O42 - Logiciel: Security Update for Windows XP (KB969947) - (.Microsoft Corporation.) [HKLM] -- KB969947 O42 - Logiciel: Security Update for Windows XP (KB970238) - (.Microsoft Corporation.) [HKLM] -- KB970238 O42 - Logiciel: Security Update for Windows XP (KB970430) - (.Microsoft Corporation.) [HKLM] -- KB970430 O42 - Logiciel: Security Update for Windows XP (KB971468) - (.Microsoft Corporation.) [HKLM] -- KB971468 O42 - Logiciel: Security Update for Windows XP (KB971657) - (.Microsoft Corporation.) [HKLM] -- KB971657 O42 - Logiciel: Security Update for Windows XP (KB971961) - (.Microsoft Corporation.) [HKLM] -- KB971961 O42 - Logiciel: Security Update for Windows XP (KB972270) - (.Microsoft Corporation.) [HKLM] -- KB972270 O42 - Logiciel: Security Update for Windows XP (KB973507) - (.Microsoft Corporation.) [HKLM] -- KB973507 O42 - Logiciel: Security Update for Windows XP (KB973869) - (.Microsoft Corporation.) [HKLM] -- KB973869 O42 - Logiciel: Security Update for Windows XP (KB973904) - (.Microsoft Corporation.) [HKLM] -- KB973904 O42 - Logiciel: Security Update for Windows XP (KB974112) - (.Microsoft Corporation.) [HKLM] -- KB974112 O42 - Logiciel: Security Update for Windows XP (KB974318) - (.Microsoft Corporation.) [HKLM] -- KB974318 O42 - Logiciel: Security Update for Windows XP (KB974392) - (.Microsoft Corporation.) [HKLM] -- KB974392 O42 - Logiciel: Security Update for Windows XP (KB974571) - (.Microsoft Corporation.) [HKLM] -- KB974571 O42 - Logiciel: Security Update for Windows XP (KB975025) - (.Microsoft Corporation.) [HKLM] -- KB975025 O42 - Logiciel: Security Update for Windows XP (KB975467) - (.Microsoft Corporation.) [HKLM] -- KB975467 O42 - Logiciel: Security Update for Windows XP (KB975560) - (.Microsoft Corporation.) [HKLM] -- KB975560 O42 - Logiciel: Security Update for Windows XP (KB975561) - (.Microsoft Corporation.) [HKLM] -- KB975561 O42 - Logiciel: Security Update for Windows XP (KB975562) - (.Microsoft Corporation.) [HKLM] -- KB975562 O42 - Logiciel: Security Update for Windows XP (KB975713) - (.Microsoft Corporation.) [HKLM] -- KB975713 O42 - Logiciel: Security Update for Windows XP (KB977816) - (.Microsoft Corporation.) [HKLM] -- KB977816 O42 - Logiciel: Security Update for Windows XP (KB977914) - (.Microsoft Corporation.) [HKLM] -- KB977914 O42 - Logiciel: Security Update for Windows XP (KB978037) - (.Microsoft Corporation.) [HKLM] -- KB978037 O42 - Logiciel: Security Update for Windows XP (KB978262) - (.Microsoft Corporation.) [HKLM] -- KB978262 O42 - Logiciel: Security Update for Windows XP (KB978338) - (.Microsoft Corporation.) [HKLM] -- KB978338 O42 - Logiciel: Security Update for Windows XP (KB978542) - (.Microsoft Corporation.) [HKLM] -- KB978542 O42 - Logiciel: Security Update for Windows XP (KB978601) - (.Microsoft Corporation.) [HKLM] -- KB978601 O42 - Logiciel: Security Update for Windows XP (KB978706) - (.Microsoft Corporation.) [HKLM] -- KB978706 O42 - Logiciel: Security Update for Windows XP (KB979309) - (.Microsoft Corporation.) [HKLM] -- KB979309 O42 - Logiciel: Security Update for Windows XP (KB979482) - (.Microsoft Corporation.) [HKLM] -- KB979482 O42 - Logiciel: Security Update for Windows XP (KB979559) - (.Microsoft Corporation.) [HKLM] -- KB979559 O42 - Logiciel: Security Update for Windows XP (KB979683) - (.Microsoft Corporation.) [HKLM] -- KB979683 O42 - Logiciel: Security Update for Windows XP (KB979687) - (.Microsoft Corporation.) [HKLM] -- KB979687 O42 - Logiciel: Security Update for Windows XP (KB980195) - (.Microsoft Corporation.) [HKLM] -- KB980195 O42 - Logiciel: Security Update for Windows XP (KB980218) - (.Microsoft Corporation.) [HKLM] -- KB980218 O42 - Logiciel: Security Update for Windows XP (KB980232) - (.Microsoft Corporation.) [HKLM] -- KB980232 O42 - Logiciel: Security Update for Windows XP (KB980436) - (.Microsoft Corporation.) [HKLM] -- KB980436 O42 - Logiciel: Security Update for Windows XP (KB981322) - (.Microsoft Corporation.) [HKLM] -- KB981322 O42 - Logiciel: Security Update for Windows XP (KB981349) - (.Microsoft Corporation.) [HKLM] -- KB981349 O42 - Logiciel: Security Update for Windows XP (KB981852) - (.Microsoft Corporation.) [HKLM] -- KB981852 O42 - Logiciel: Security Update for Windows XP (KB981957) - (.Microsoft Corporation.) [HKLM] -- KB981957 O42 - Logiciel: Security Update for Windows XP (KB981997) - (.Microsoft Corporation.) [HKLM] -- KB981997 O42 - Logiciel: Security Update for Windows XP (KB982132) - (.Microsoft Corporation.) [HKLM] -- KB982132 O42 - Logiciel: Security Update for Windows XP (KB982214) - (.Microsoft Corporation.) [HKLM] -- KB982214 O42 - Logiciel: Security Update for Windows XP (KB982665) - (.Microsoft Corporation.) [HKLM] -- KB982665 O42 - Logiciel: Security Update for Windows XP (KB982802) - (.Microsoft Corporation.) [HKLM] -- KB982802 O42 - Logiciel: Skype Toolbars - (.Skype Technologies S.A..) [HKLM] -- {981029E0-7FC9-4CF3-AB39-6F133621921A} O42 - Logiciel: Skype™ 4.2 - (.Skype Technologies S.A..) [HKLM] -- {D103C4BA-F905-437A-8049-DB24763BBE36} O42 - Logiciel: SoftV92 Data Fax Modem with SmartCP - (.Pas de propriétaire.) [HKLM] -- CNXT_MODEM_PCI_VEN_8086&DEV_266D&SUBSYS_00661025 O42 - Logiciel: Synaptics Pointing Device Driver - (.Pas de propriétaire.) [HKLM] -- SynTPDeinstKey O42 - Logiciel: TeXnicCenter Version 1 Beta 7.01 (Greengrass) - (.TeXnicCenter.org.) [HKLM] -- TeXnicCenter_is1 O42 - Logiciel: Texas Instruments PCIxx21/x515 drivers. - (.Texas Instruments Inc..) [HKLM] -- InstallShield_{E7A744FD-E1B8-4FF6-ADC1-EA4C32181457} O42 - Logiciel: TightVNC 2.0.3 - (.GlavSoft LLC..) [HKLM] -- TightVNC O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707 O42 - Logiciel: Update for Microsoft Office 2007 System (KB2539530) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4} O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2509470) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1365864D-4C58-489D-9982-844D75691CCC} O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2536413) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{95DF5260-331D-4FFD-A2D5-C64164751945} O42 - Logiciel: Update for Windows Internet Explorer 7 (KB980182) - (.Microsoft Corporation.) [HKLM] -- KB980182-IE7 O42 - Logiciel: Update for Windows Internet Explorer 8 (KB976662) - (.Microsoft Corporation.) [HKLM] -- KB976662-IE8 O42 - Logiciel: Update for Windows Internet Explorer 8 (KB980182) - (.Microsoft Corporation.) [HKLM] -- KB980182-IE8 O42 - Logiciel: Update for Windows Internet Explorer 8 (KB982632) - (.Microsoft Corporation.) [HKLM] -- KB982632-IE8 O42 - Logiciel: Update for Windows XP (KB2141007) - (.Microsoft Corporation.) [HKLM] -- KB2141007 O42 - Logiciel: Update for Windows XP (KB2345886) - (.Microsoft Corporation.) [HKLM] -- KB2345886 O42 - Logiciel: Update for Windows XP (KB2467659) - (.Microsoft Corporation.) [HKLM] -- KB2467659 O42 - Logiciel: Update for Windows XP (KB2541763) - (.Microsoft Corporation.) [HKLM] -- KB2541763 O42 - Logiciel: Update for Windows XP (KB955759) - (.Microsoft Corporation.) [HKLM] -- KB955759 O42 - Logiciel: Update for Windows XP (KB961503) - (.Microsoft Corporation.) [HKLM] -- KB961503 O42 - Logiciel: Update for Windows XP (KB968389) - (.Microsoft Corporation.) [HKLM] -- KB968389 O42 - Logiciel: Update for Windows XP (KB971029) - (.Microsoft Corporation.) [HKLM] -- KB971029 O42 - Logiciel: Update for Windows XP (KB971737) - (.Microsoft Corporation.) [HKLM] -- KB971737 O42 - Logiciel: Update for Windows XP (KB973687) - (.Microsoft Corporation.) [HKLM] -- KB973687 O42 - Logiciel: Update for Windows XP (KB973815) - (.Microsoft Corporation.) [HKLM] -- KB973815 O42 - Logiciel: WIDCOMM Bluetooth Software - (. .) [HKLM] -- {90535871-81B9-4D99-8A13-A7EE97F2D7FE} O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 O42 - Logiciel: Windows Rights Management Client Backwards Compatibility SP2 - (.Microsoft.) [HKLM] -- Windows Rights Management Client Backwards O42 - Logiciel: Windows Rights Management Client Backwards Compatibility SP2 - (.Microsoft.) [HKLM] -- {EC905264-BCFE-423B-9C42-C3A106266790} O42 - Logiciel: Windows Rights Management Client with Service Pack 2 - (.Microsoft.) [HKLM] -- Windows Rights Management Client O42 - Logiciel: Windows Rights Management Client with Service Pack 2 - (.Microsoft.) [HKLM] -- {BDCF27CA-BFC4-4F49-8D24-A925C9505AB8} O42 - Logiciel: XnView 1.97.6 - (.Gougelet Pierre-e.) [HKLM] -- XnView_is1 O42 - Logiciel: acer Wireless LAN - (.Pas de propriétaire.) [HKLM] -- {4820DD99-52D1-42BB-927E-B6B6DF231AF5} O42 - Logiciel: foobar2000 v1.1.1 - (.Peter Pawlowski.) [HKLM] -- foobar2000 O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {FAE36873-1941-4076-A9A5-48812B5EA0B7} O42 - Logiciel: mCore - (.Intel Corporation.) [HKLM] -- {6DE14BE4-6F04-4935-8ABD-A0A19FE2E55A} O42 - Logiciel: mDrWiFi - (.Intel Corporation.) [HKLM] -- {F6090A17-0967-4A8A-B3C3-422A1B514D49} O42 - Logiciel: mDriver - (.Intel.) [HKLM] -- {28DA872A-0848-48CF-B749-19A198157A2A} O42 - Logiciel: mEoU.msi - (.Intel Corporation.) [HKLM] -- {B502B428-3386-40A9-98DB-079AAB72E64F} O42 - Logiciel: mHelp - (.Intel.) [HKLM] -- {8C6BB412-D3A8-4AAE-A01B-35B681789D68} O42 - Logiciel: mIWA - (.Intel Corporation.) [HKLM] -- {3E9D596A-61D4-4239-BD19-2DB984D2A16F} O42 - Logiciel: mIWCA - (.Intel Corporation.) [HKLM] -- {6FFFE74E-3FBD-4E2E-97F9-5E9A2A077626} O42 - Logiciel: mLogView - (.Intel Corporation.) [HKLM] -- {0E2B0B41-7E08-4F9F-B21F-41C4133F43B7} O42 - Logiciel: mMHouse - (.Intel Corporation.) [HKLM] -- {F0BFC7EF-9CF8-44EE-91B0-158884CD87C5} O42 - Logiciel: mPfMgr - (.Intel Corporation.) [HKLM] -- {8B928BA1-EDEC-4227-A2DA-DD83026C36F5} O42 - Logiciel: mPfWiz - (.Intel Corporation.) [HKLM] -- {90B0D222-8C21-4B35-9262-53B042F18AF9} O42 - Logiciel: mProSafe - (.Intel.) [HKLM] -- {23FB368F-1399-4EAC-817C-4B83ECBE3D83} O42 - Logiciel: mWlsSafe - (.Intel.) [HKLM] -- {FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4} O42 - Logiciel: mXML - (.Intel Corporation.) [HKLM] -- {9CC89556-3578-48DD-8408-04E66EBEF401} O42 - Logiciel: mZConfig - (.Intel Corporation.) [HKLM] -- {94658027-9F16-4509-BBD7-A59FE57C3023} ---\\ HKCU & HKLM Software Keys [HKCU\Software\Adobe] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Avira] [HKCU\Software\CambridgeSoft] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\GPL Ghostscript] [HKCU\Software\Google] [HKCU\Software\ISI ResearchSoft] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MestRe] [HKCU\Software\MiKTeX.org] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\ORL] [HKCU\Software\OpenOffice.org] [HKCU\Software\OriginLab] [HKCU\Software\Policies] [HKCU\Software\Skype] [HKCU\Software\Softonic] [HKCU\Software\Synaptics] [HKCU\Software\Sysinternals] [HKCU\Software\TUG] [HKCU\Software\TightVNC] [HKCU\Software\ToolsCenter] [HKCU\Software\Widcomm] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\foobar2000] [HKCU\Software\i-FunBox.com] [HKLM\Software\ATI Technologies Inc.] [HKLM\Software\ATI Technologies] [HKLM\Software\Adobe] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Avira] [HKLM\Software\Broadcom] [HKLM\Software\BrowserChoice] [HKLM\Software\C07ft5Y] [HKLM\Software\CXT] [HKLM\Software\CambridgeSoft] [HKLM\Software\Chemical Abstract Services] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Conexant] [HKLM\Software\GEAR Software] [HKLM\Software\GPL Ghostscript] [HKLM\Software\Gemplus] [HKLM\Software\Ghostgum] [HKLM\Software\Google] [HKLM\Software\INTEL] [HKLM\Software\InstallShield] [HKLM\Software\InstalledOptions] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\MDC] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\MiKTeX.org] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\ODBC] [HKLM\Software\OpenOffice.org] [HKLM\Software\OriginLab Corporation] [HKLM\Software\Policies] [HKLM\Software\Program Groups] [HKLM\Software\RegisteredApplications] [HKLM\Software\Schlumberger] [HKLM\Software\Secure] [HKLM\Software\Skype] [HKLM\Software\Sun Microsystems] [HKLM\Software\Synaptics] [HKLM\Software\ToolsCenter] [HKLM\Software\TrendMicro] [HKLM\Software\UIU] [HKLM\Software\Widcomm] [HKLM\Software\WinRAR] [HKLM\Software\Windows 3.1 Migration Status] [HKLM\Software\Windows] [HKLM\Software\Wise Solutions] [HKLM\Software\X-AVCSD] [HKLM\Software\XnView] [HKLM\Software\acer] [HKLM\Software\mozilla.org] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 18/06/2010 - 14:25:06 - [1180464] ----D- C:\Program Files\Accelrys O43 - CFD: 27/07/2008 - 04:21:06 - [186161] ----D- C:\Program Files\Accords O43 - CFD: 01/06/2010 - 21:23:54 - [1010743] ----D- C:\Program Files\acer O43 - CFD: 30/03/2005 - 23:57:08 - [376040] ----D- C:\Program Files\Acer Inc O43 - CFD: 11/06/2010 - 14:24:44 - [2530211528] ----D- C:\Program Files\Adobe O43 - CFD: 24/07/2008 - 20:22:40 - [224016] ----D- C:\Program Files\ALO Power Audio Converter O43 - CFD: 04/12/2010 - 18:28:50 - [2306366] ----D- C:\Program Files\Apple Software Update O43 - CFD: 13/12/2008 - 16:46:22 - [158116417] ----D- C:\Program Files\Arcade O43 - CFD: 01/06/2010 - 22:13:58 - [16571708] ----D- C:\Program Files\ATI Technologies O43 - CFD: 16/06/2008 - 22:21:50 - [694727678] ----D- C:\Program Files\Autodesk O43 - CFD: 02/06/2010 - 11:08:50 - [360448] ----D- C:\Program Files\AUTORUN O43 - CFD: 01/06/2009 - 17:06:52 - [178882397] ----D- C:\Program Files\Avira O43 - CFD: 20/05/2008 - 23:31:12 - [2655233] ----D- C:\Program Files\AviSynth 2.5 O43 - CFD: 04/12/2010 - 18:27:40 - [623412] ----D- C:\Program Files\Bonjour O43 - CFD: 01/06/2010 - 21:16:08 - [608109] ----D- C:\Program Files\Broadcom O43 - CFD: 12/06/2008 - 19:59:00 - [2571] ----D- C:\Program Files\BulletProof FTP Server v2.3 O43 - CFD: 02/06/2010 - 13:06:14 - [79089849] ----D- C:\Program Files\CambridgeSoft O43 - CFD: 10/06/2009 - 20:31:08 - [367166097] ----D- C:\Program Files\Canon O43 - CFD: 17/05/2008 - 17:56:02 - [1326810] ----D- C:\Program Files\CCleaner O43 - CFD: 02/06/2010 - 11:08:50 - [626000] ----D- C:\Program Files\CCTL O43 - CFD: 04/12/2010 - 18:27:00 - [760245820] ----D- C:\Program Files\Common Files O43 - CFD: 30/03/2005 - 23:35:36 - [0] ----D- C:\Program Files\ComPlus Applications O43 - CFD: 01/06/2010 - 21:47:36 - [536576] ----D- C:\Program Files\CONEXANT O43 - CFD: 03/12/2009 - 00:14:42 - [1232740] ----D- C:\Program Files\Convar O43 - CFD: 31/03/2005 - 00:01:06 - [106063286] ----D- C:\Program Files\CyberLink O43 - CFD: 22/05/2008 - 20:38:02 - [5514190] ----D- C:\Program Files\DAEMON Tools Lite O43 - CFD: 02/06/2010 - 00:00:06 - [0] ----D- C:\Program Files\DAEMON Tools Pro O43 - CFD: 11/12/2008 - 22:23:24 - [1316232] ----D- C:\Program Files\DIFX O43 - CFD: 11/01/2009 - 18:10:22 - [782996] ----D- C:\Program Files\EGoGameS O43 - CFD: 01/06/2010 - 21:16:40 - [2071841] ----D- C:\Program Files\Elantech O43 - CFD: 02/06/2010 - 11:30:26 - [66806902] ----D- C:\Program Files\ENDNOTE O43 - CFD: 12/08/2010 - 15:06:10 - [61455413] ----D- C:\Program Files\EndNote 9 O43 - CFD: 16/02/2009 - 23:55:48 - [1094876] ----D- C:\Program Files\eXchange POP3 6.0 O43 - CFD: 02/06/2010 - 11:08:46 - [14577066] ----D- C:\Program Files\EXTRAS O43 - CFD: 28/05/2009 - 23:16:44 - [1513065379] ----D- C:\Program Files\Fichiers communs O43 - CFD: 13/06/2008 - 08:13:46 - [11921038] ----D- C:\Program Files\FileZilla FTP Client O43 - CFD: 05/12/2010 - 23:13:48 - [7917593] ----D- C:\Program Files\foobar2000 O43 - CFD: 30/11/2008 - 14:24:56 - [5581957] ----D- C:\Program Files\Free iPod Video Converter O43 - CFD: 02/06/2010 - 13:26:34 - [3566016] ----D- C:\Program Files\Ghostgum O43 - CFD: 02/06/2010 - 14:25:18 - [82663544] ----D- C:\Program Files\ghostscript-8.71 O43 - CFD: 11/06/2010 - 15:20:14 - [328432409] ----D- C:\Program Files\Google O43 - CFD: 02/06/2010 - 14:39:12 - [31907692] ----D- C:\Program Files\gs O43 - CFD: 21/11/2008 - 00:02:22 - [20571346] ----D- C:\Program Files\Guitar Pro 5 O43 - CFD: 29/06/2009 - 20:23:08 - [4640312] ----D- C:\Program Files\HHD Software O43 - CFD: 14/04/2009 - 20:37:38 - [126003219] ----D- C:\Program Files\HomePlayer O43 - CFD: 09/01/2009 - 08:42:40 - [7002465] ----D- C:\Program Files\iGnuteel O43 - CFD: 02/06/2010 - 10:10:54 - [62418143] --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD: 30/03/2005 - 23:45:34 - [20388681] ----D- C:\Program Files\Intel O43 - CFD: 16/06/2011 - 01:57:22 - [6093456] ----D- C:\Program Files\Internet Explorer O43 - CFD: 09/09/2009 - 22:14:30 - [1856115] ----D- C:\Program Files\iPod O43 - CFD: 04/12/2010 - 18:40:58 - [146530583] ----D- C:\Program Files\iTunes O43 - CFD: 04/04/2009 - 10:04:16 - [410496923] ----D- C:\Program Files\Java O43 - CFD: 04/12/2010 - 19:04:40 - [55363353] ----D- C:\Program Files\JDownloader O43 - CFD: 01/06/2010 - 22:33:42 - [16254752] ----D- C:\Program Files\JRE O43 - CFD: 15/05/2008 - 22:39:44 - [1141069] ----D- C:\Program Files\Launch Manager O43 - CFD: 27/09/2008 - 14:33:36 - [16501848] ----D- C:\Program Files\Logitech O43 - CFD: 13/07/2011 - 00:31:16 - [7981388] ----D- C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD: 17/05/2008 - 12:57:40 - [33830499] ----D- C:\Program Files\Memeo O43 - CFD: 01/06/2010 - 20:18:42 - [2140717] ----D- C:\Program Files\Messenger O43 - CFD: 27/08/2008 - 23:09:04 - [12715564] ----D- C:\Program Files\Messenger Plus! Live O43 - CFD: 20/12/2008 - 14:39:26 - [706627] ----D- C:\Program Files\Microsoft O43 - CFD: 30/03/2005 - 23:38:22 - [0] ----D- C:\Program Files\microsoft frontpage O43 - CFD: 27/05/2008 - 21:01:38 - [1067850181] ----D- C:\Program Files\Microsoft Office O43 - CFD: 20/12/2008 - 14:39:16 - [1562204] ----D- C:\Program Files\Microsoft Office Outlook Connector O43 - CFD: 17/06/2011 - 12:47:30 - [39437763] ----D- C:\Program Files\Microsoft Silverlight O43 - CFD: 20/12/2008 - 14:36:44 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD: 27/05/2008 - 21:01:14 - [14904] ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD: 27/05/2008 - 20:57:16 - [2578288] ----D- C:\Program Files\Microsoft Visual Studio 8 O43 - CFD: 06/06/2010 - 17:01:36 - [3726168] ----D- C:\Program Files\Microsoft Works O43 - CFD: 27/05/2008 - 20:59:54 - [8152064] ----D- C:\Program Files\Microsoft.NET O43 - CFD: 24/07/2008 - 20:12:32 - [307200] ----D- C:\Program Files\MIKSOFT O43 - CFD: 02/06/2010 - 12:48:32 - [315266947] ----D- C:\Program Files\MiKTeX 2.8 O43 - CFD: 13/08/2010 - 23:46:24 - [11072357] ----D- C:\Program Files\Movie Maker O43 - CFD: 16/06/2004 - 01:30:36 - [41093360] ----D- C:\Program Files\Mozilla Firefox O43 - CFD: 25/06/2008 - 07:19:30 - [307423] ----D- C:\Program Files\mp3DirectCut O43 - CFD: 24/08/2009 - 23:09:08 - [26521] ----D- C:\Program Files\MSBuild O43 - CFD: 02/06/2010 - 11:08:50 - [27348712] ----D- C:\Program Files\MSI O43 - CFD: 01/06/2010 - 20:52:10 - [26550732] ----D- C:\Program Files\MSN O43 - CFD: 30/03/2005 - 23:34:42 - [8742663] ----D- C:\Program Files\MSN Gaming Zone O43 - CFD: 16/05/2008 - 21:38:40 - [0] ----D- C:\Program Files\MSXML 4.0 O43 - CFD: 16/05/2008 - 21:08:26 - [2940967212] ----D- C:\Program Files\NetDrive O43 - CFD: 01/06/2010 - 20:24:34 - [3258723] ----D- C:\Program Files\NetMeeting O43 - CFD: 31/03/2005 - 00:06:26 - [60246470] ----D- C:\Program Files\NewTech Infosystems O43 - CFD: 03/07/2008 - 07:58:00 - [1284380] ----D- C:\Program Files\No-IP O43 - CFD: 11/12/2008 - 22:23:44 - [58240787] ----D- C:\Program Files\Nokia O43 - CFD: 02/06/2010 - 11:29:36 - [0] ----D- C:\Program Files\Nouveau dossier O43 - CFD: 10/01/2009 - 12:06:58 - [17732485] ----D- C:\Program Files\NutsAboutNets O43 - CFD: 30/03/2005 - 23:34:54 - [4525] ----D- C:\Program Files\Online Services O43 - CFD: 01/06/2010 - 22:33:36 - [536323283] ----D- C:\Program Files\OpenOffice.org 3 O43 - CFD: 02/06/2010 - 10:10:22 - [327339511] ----D- C:\Program Files\OriginLab O43 - CFD: 01/01/2011 - 15:41:40 - [4322949] ----D- C:\Program Files\Outlook Express O43 - CFD: 13/08/2008 - 18:57:18 - [7101074] ----D- C:\Program Files\PanoramaStudio O43 - CFD: 11/12/2008 - 22:23:10 - [11169565] ----D- C:\Program Files\PC Connectivity Solution O43 - CFD: 23/07/2009 - 21:58:08 - [21529044] ----D- C:\Program Files\PDFCreator O43 - CFD: 28/07/2009 - 22:40:00 - [4074023] ----D- C:\Program Files\Photomatix O43 - CFD: 28/07/2009 - 22:50:58 - [8658827] ----D- C:\Program Files\PhotomatixPro3 O43 - CFD: 18/08/2008 - 17:10:48 - [36249376] ----D- C:\Program Files\Picasa2 O43 - CFD: 10/06/2010 - 17:45:12 - [17113807] ----D- C:\Program Files\Pixia 4.3a FR O43 - CFD: 22/05/2008 - 20:40:50 - [2349211] ----D- C:\Program Files\PowerISO O43 - CFD: 28/05/2009 - 23:18:58 - [14467279] ----D- C:\Program Files\PPMate O43 - CFD: 04/12/2010 - 18:32:20 - [76337719] ----D- C:\Program Files\QuickTime O43 - CFD: 30/11/2008 - 13:59:44 - [28429672] ----D- C:\Program Files\Red Kawa O43 - CFD: 24/08/2009 - 23:08:52 - [36400897] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 17/05/2008 - 18:06:02 - [1146670] ----D- C:\Program Files\RegCleaner O43 - CFD: 16/05/2008 - 20:27:20 - [11615273] ----D- C:\Program Files\RocketDock O43 - CFD: 29/08/2009 - 09:44:28 - [71647682] ----D- C:\Program Files\Safari O43 - CFD: 30/03/2005 - 23:36:34 - [933] ----D- C:\Program Files\Services en ligne O43 - CFD: 27/05/2009 - 20:39:14 - [27801384] ----D- C:\Program Files\Simplify Media O43 - CFD: 17/05/2009 - 19:09:10 - [349393] ----D- C:\Program Files\Skyhook Wireless O43 - CFD: 11/06/2010 - 13:59:34 - [38378187] R---D- C:\Program Files\Skype O43 - CFD: 04/09/2009 - 13:04:16 - [24694112] ----D- C:\Program Files\Sun O43 - CFD: 30/03/2005 - 23:54:54 - [26685929] ----D- C:\Program Files\Synaptics O43 - CFD: 02/06/2010 - 10:36:50 - [14447903] ----D- C:\Program Files\TeXnicCenter O43 - CFD: 16/06/2004 - 00:13:36 - [1462434] ----D- C:\Program Files\TightVNC O43 - CFD: 13/07/2011 - 04:58:50 - [786155] ----D- C:\Program Files\Trend Micro O43 - CFD: 07/06/2009 - 00:11:04 - [12832995] ----D- C:\Program Files\TVUPlayer O43 - CFD: 30/03/2005 - 23:44:12 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 19/05/2008 - 20:32:26 - [33338768] ----D- C:\Program Files\VideoLAN O43 - CFD: 17/05/2008 - 12:54:24 - [326648218] ----D- C:\Program Files\Western Digital O43 - CFD: 16/05/2008 - 07:40:14 - [858084] ----D- C:\Program Files\Western Digital Technologies O43 - CFD: 01/06/2010 - 21:09:00 - [3587127] ----D- C:\Program Files\WIDCOMM O43 - CFD: 17/05/2009 - 13:10:16 - [138650897] ----D- C:\Program Files\Windows Live O43 - CFD: 20/12/2008 - 14:34:10 - [245112] ----D- C:\Program Files\Windows Live SkyDrive O43 - CFD: 01/06/2010 - 20:25:44 - [3595692] ----D- C:\Program Files\Windows Media Connect 2 O43 - CFD: 01/06/2010 - 20:25:36 - [8246039] ----D- C:\Program Files\Windows Media Player O43 - CFD: 01/06/2010 - 20:16:20 - [4701439] ----D- C:\Program Files\Windows NT O43 - CFD: 30/03/2005 - 23:36:40 - [0] --H-D- C:\Program Files\WindowsUpdate O43 - CFD: 15/05/2008 - 22:37:12 - [176128] ----D- C:\Program Files\WinPCap O43 - CFD: 01/06/2010 - 23:03:32 - [4823177] ----D- C:\Program Files\WinRAR O43 - CFD: 06/10/2008 - 20:30:40 - [16773066] ----D- C:\Program Files\WinZip O43 - CFD: 28/06/2008 - 01:52:34 - [102430] ----D- C:\Program Files\WMV9_VCM O43 - CFD: 30/03/2005 - 23:38:22 - [0] ----D- C:\Program Files\xerox O43 - CFD: 11/06/2010 - 14:14:36 - [37484016] ----D- C:\Program Files\XnView O43 - CFD: 20/08/2008 - 19:35:22 - [27668963] ----D- C:\Program Files\Yahoo! O43 - CFD: 14/07/2011 - 01:59:52 - [3929439] ----D- C:\Program Files\ZHPDiag O43 - CFD: 17/10/2010 - 20:09:32 - [324413147] ----D- C:\Program Files\Common Files\Adobe O43 - CFD: 11/06/2010 - 14:19:40 - [32159844] ----D- C:\Program Files\Common Files\Adobe AIR O43 - CFD: 13/07/2011 - 20:46:36 - [13795202] ----D- C:\Program Files\Common Files\Akamai O43 - CFD: 04/12/2010 - 18:37:48 - [94762864] ----D- C:\Program Files\Common Files\Apple O43 - CFD: 02/06/2010 - 00:07:30 - [92976] ----D- C:\Program Files\Common Files\DESIGNER O43 - CFD: 01/06/2010 - 21:16:28 - [7376978] ----D- C:\Program Files\Common Files\InstallShield O43 - CFD: 16/06/2011 - 02:07:54 - [215561645] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 01/06/2010 - 20:24:12 - [284160] ----D- C:\Program Files\Common Files\MSSoap O43 - CFD: 01/06/2010 - 21:58:32 - [0] ----D- C:\Program Files\Common Files\ODBC O43 - CFD: 12/06/2010 - 10:33:22 - [611970] ----D- C:\Program Files\Common Files\Risxtd O43 - CFD: 01/06/2010 - 20:24:32 - [8106] ----D- C:\Program Files\Common Files\Services O43 - CFD: 11/06/2010 - 13:59:16 - [2135336] ----D- C:\Program Files\Common Files\Skype O43 - CFD: 01/06/2010 - 21:58:26 - [3787229] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 06/06/2010 - 16:58:18 - [41439659] ----D- C:\Program Files\Common Files\System O43 - CFD: 02/06/2010 - 11:30:52 - [23816704] ----D- C:\Program Files\Common Files\Wise Installation Wizard O43 - CFD: 07/09/2010 - 14:38:06 - [5372166] ----D- C:\Documents and Settings\Saskia\Application Data\Adobe O43 - CFD: 05/12/2010 - 22:52:18 - [721083] ----D- C:\Documents and Settings\Saskia\Application Data\Apple Computer O43 - CFD: 01/10/2010 - 11:16:32 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Avira O43 - CFD: 01/06/2010 - 23:52:02 - [1277] ----D- C:\Documents and Settings\Saskia\Application Data\DAEMON Tools Pro O43 - CFD: 12/06/2010 - 11:30:18 - [233896] ----D- C:\Documents and Settings\Saskia\Application Data\EndNote O43 - CFD: 16/06/2004 - 01:15:16 - [863291] ----D- C:\Documents and Settings\Saskia\Application Data\foobar2000 O43 - CFD: 19/06/2011 - 23:26:24 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Google O43 - CFD: 10/06/2010 - 17:23:42 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Help O43 - CFD: 01/06/2010 - 20:39:26 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Identities O43 - CFD: 02/06/2010 - 10:08:34 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\InstallShield O43 - CFD: 01/06/2010 - 21:45:40 - [1062] ----D- C:\Documents and Settings\Saskia\Application Data\Intel O43 - CFD: 01/06/2010 - 23:27:46 - [1283] ----D- C:\Documents and Settings\Saskia\Application Data\Macromedia O43 - CFD: 16/06/2004 - 00:21:28 - [11468] ----D- C:\Documents and Settings\Saskia\Application Data\Malwarebytes O43 - CFD: 18/11/2010 - 01:28:38 - [3271525] -S--D- C:\Documents and Settings\Saskia\Application Data\Microsoft O43 - CFD: 02/06/2010 - 13:57:14 - [9580027] ----D- C:\Documents and Settings\Saskia\Application Data\MiKTeX O43 - CFD: 01/06/2010 - 22:10:22 - [13860858] ----D- C:\Documents and Settings\Saskia\Application Data\Mozilla O43 - CFD: 01/06/2010 - 22:47:38 - [8926380] ----D- C:\Documents and Settings\Saskia\Application Data\OpenOffice.org O43 - CFD: 10/06/2010 - 17:40:08 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Pixia O43 - CFD: 13/07/2011 - 20:48:12 - [2314946] ----D- C:\Documents and Settings\Saskia\Application Data\Skype O43 - CFD: 11/06/2010 - 16:05:14 - [242640] ----D- C:\Documents and Settings\Saskia\Application Data\skypePM O43 - CFD: 01/06/2010 - 22:31:00 - [25098714] ----D- C:\Documents and Settings\Saskia\Application Data\Sun O43 - CFD: 16/06/2004 - 00:18:32 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\TightVNC O43 - CFD: 04/12/2010 - 19:44:54 - [9480] ----D- C:\Documents and Settings\Saskia\Application Data\WindSolutions O43 - CFD: 01/06/2010 - 23:34:18 - [12] ----D- C:\Documents and Settings\Saskia\Application Data\WinRAR O43 - CFD: 27/12/2010 - 22:38:24 - [662687] ----D- C:\Documents and Settings\Saskia\Application Data\XnView O43 - CFD: 17/10/2010 - 20:08:38 - [14372616] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Adobe O43 - CFD: 04/12/2010 - 18:29:00 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Apple O43 - CFD: 04/12/2010 - 18:42:02 - [3237120] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Apple Computer O43 - CFD: 25/06/2010 - 10:56:56 - [5120] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\ApplicationHistory O43 - CFD: 19/06/2011 - 23:26:24 - [134746638] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Google O43 - CFD: 10/06/2010 - 17:23:42 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Help O43 - CFD: 30/09/2010 - 11:14:52 - [6116220] -S--D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Microsoft O43 - CFD: 02/06/2010 - 00:00:28 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Microsoft Help O43 - CFD: 02/06/2010 - 13:14:42 - [11878215] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\MiKTeX O43 - CFD: 01/06/2010 - 22:10:22 - [41673460] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Mozilla O43 - CFD: 19/06/2011 - 23:25:28 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Temp O43 - CFD: 01/06/2010 - 20:29:08 - [15040] R---D- C:\WINDOWS\system32\Config\systemprofile\Start Menu\Programs\Accessories O43 - CFD: 01/06/2010 - 21:55:12 - [84] R---D- C:\WINDOWS\system32\Config\systemprofile\Start Menu\Programs\Startup ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.10EF1200FEFFFFFF57494E444F577E31] - 13/07/2011 - 19:49:56 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1844742] O44 - LFC:[MD5.10EF1200FEFFFFFF000000002CF21200] - 13/07/2011 - 19:46:54 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159] O44 - LFC:[MD5.10EF1200FEFFFFFF000000002CF21200] - 13/07/2011 - 19:46:46 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/07/2011 - 19:46:13 ---A- . (...) -- C:\WINDOWS\0.log [0] O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 13/07/2011 - 19:46:00 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048] O44 - LFC:[MD5.10EF1200FEFFFFFF000000002CF21200] - 13/07/2011 - 04:47:57 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [32474] O44 - LFC:[MD5.56BDA6D0894D93648782604AF9A48C45] - 13/07/2011 - 03:58:54 ---A- . (...) -- C:\DelFixSuppr.txt [1967] O44 - LFC:[MD5.ED64610D1D9CAB7E6A298E613C894509] - 13/07/2011 - 03:58:18 ---A- . (...) -- C:\DelFixSearch.txt [1921] O44 - LFC:[MD5.89C28B188065BEBA3ADC4F2EE4BD7F96] - 12/07/2011 - 23:31:29 ---A- . (...) -- C:\WINDOWS\System32\wpa.dbl [2228] O44 - LFC:[MD5.9769D57A4F47231B7E48836721B5C7B7] - 11/07/2011 - 03:16:01 -SHA- . (...) -- C:\Thumbs.db [5632] O44 - LFC:[MD5.4172931C25B1276D04EF6592662C1C5D] - 11/07/2011 - 03:15:57 -SHA- . (...) -- C:\WINDOWS\Thumbs.db [7680] O44 - LFC:[MD5.9674DC5A0696CAC9C1889AB7583F76EB] - 18/06/2011 - 20:55:29 ---A- . (...) -- C:\WINDOWS\System32\PerfStringBackup.INI [506194] O44 - LFC:[MD5.66105A9E46C0EADD21D513B4E5652E28] - 18/06/2011 - 20:55:29 ---A- . (...) -- C:\WINDOWS\System32\perfc009.dat [72566] O44 - LFC:[MD5.5177A6DF33077EFF91DEE2968D5BA16A] - 18/06/2011 - 20:55:29 ---A- . (...) -- C:\WINDOWS\System32\perfh009.dat [444690] O44 - LFC:[MD5.5FEDEF54757B34FB611B9EC8FB399364] - 17/06/2011 - 11:51:13 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\WINDOWS\System32\drivers\avipbb.sys [137656] O44 - LFC:[MD5.196DB70C7C937D4737067A1C3CDABD4B] - 17/06/2011 - 11:48:08 ---A- . (...) -- C:\WINDOWS\System32\FNTCACHE.DAT [3589016] O44 - LFC:[MD5.EDB29DE9FD538805F98F375CF961FDE3] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\KB2479943.log [147040] O44 - LFC:[MD5.5B4513A8E9D30FC08A2DFE9A6E38CEE4] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\comsetup.log [310665] O44 - LFC:[MD5.964180D6A9640C16F370F77AD61B303D] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\iis6.log [991087] O44 - LFC:[MD5.B0312C13616C571CC01EB04F3D1842E7] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\imsins.log [1374] O44 - LFC:[MD5.9A2181BDD780C9936DB39B1180C279CF] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [188099] O44 - LFC:[MD5.49627FFCDBC1FD8E090FEC13781C0994] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\ocmsn.log [49449] O44 - LFC:[MD5.FE0283229F3082EAA733CCA9B47DAB88] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\tabletoc.log [45414] O44 - LFC:[MD5.1536344A2F7D4D65EDFC9D7A6233AA82] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\tsoc.log [411409] O44 - LFC:[MD5.4020D8692472F78E216351CDC03E97FB] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [889521] O44 - LFC:[MD5.CE83D0AE0A754481E4C0343242964CEF] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\MedCtrOC.log [61837] O44 - LFC:[MD5.D72585AB8B78D6D55CFF5CA735B435F3] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\msgsocm.log [44749] O44 - LFC:[MD5.722C0F720670B119C2FA636A1E629139] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\msmqinst.log [276116] O44 - LFC:[MD5.2AC9741E4BC796AE9E7EF29CE1D279EE] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\netfxocm.log [156576] O44 - LFC:[MD5.60E33B79E3A1CCF00E2EA1FFC2CABB03] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\ocgen.log [470102] O44 - LFC:[MD5.ABB4CAAD906E82B3B39FDDE42792879F] - 16/06/2011 - 01:07:41 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1374] O44 - LFC:[MD5.0179F4F5A329F5CA48EEB7447988920B] - 16/06/2011 - 01:07:40 ---A- . (...) -- C:\WINDOWS\KB2481109.log [148659] O44 - LFC:[MD5.E35DBF8BA0E7FD0DD83176354F482CEE] - 16/06/2011 - 01:07:27 ---A- . (...) -- C:\WINDOWS\KB2485663.log [148751] O44 - LFC:[MD5.44A3AD116C241DFDF75F18BF431C1911] - 16/06/2011 - 01:05:56 ---A- . (...) -- C:\WINDOWS\KB2476490.log [37889] O44 - LFC:[MD5.C2D638933ABD42AFAC66086DD2EC4C31] - 16/06/2011 - 01:05:49 ---A- . (...) -- C:\WINDOWS\KB2506223.log [51510] O44 - LFC:[MD5.6F2EA7AF7649ECEE5AC8F9C151F1575F] - 16/06/2011 - 01:05:36 ---A- . (...) -- C:\WINDOWS\KB2503665.log [50956] O44 - LFC:[MD5.B40C6FA76AA4AFC025FC384584ECD362] - 16/06/2011 - 01:05:29 ---A- . (...) -- C:\WINDOWS\KB2524375.log [37023] O44 - LFC:[MD5.533FD1A96FD23380387407C39C3D83D9] - 16/06/2011 - 01:04:10 ---A- . (...) -- C:\WINDOWS\KB2535512.log [50788] O44 - LFC:[MD5.6752D17B8A027145F0D69810C2CE9366] - 16/06/2011 - 01:03:18 ---A- . (...) -- C:\WINDOWS\KB2412687.log [34828] O44 - LFC:[MD5.A1E9003ED212B3F5C2A195E8014DD811] - 16/06/2011 - 00:58:43 ---A- . (...) -- C:\WINDOWS\KB2508272.log [36938] O44 - LFC:[MD5.C8655A8A7CA98AB89B202000C63F7183] - 16/06/2011 - 00:58:35 ---A- . (...) -- C:\WINDOWS\KB2536276.log [50872] O44 - LFC:[MD5.E3DC64DB1DD46ED4A01D8397B45E4960] - 16/06/2011 - 00:57:52 ---A- . (...) -- C:\WINDOWS\KB2507618.log [51126] O44 - LFC:[MD5.C30FBF8CF4F1E62283CD81B207CD268D] - 16/06/2011 - 00:57:50 ---A- . (...) -- C:\WINDOWS\updspapi.log [86058] O44 - LFC:[MD5.DE32E1AF20FF35F18E2F1AF07DA52BE7] - 16/06/2011 - 00:57:42 ---A- . (...) -- C:\WINDOWS\KB2530548-IE8.log [45358] O44 - LFC:[MD5.206FC9206A5FBD6913F3A21457E80B82] - 16/06/2011 - 00:56:39 ---A- . (...) -- C:\WINDOWS\KB2508429.log [37484] O44 - LFC:[MD5.8C7D8E7A2C14DB818582C007C9273D63] - 16/06/2011 - 00:56:26 ---A- . (...) -- C:\WINDOWS\KB971029.log [36865] O44 - LFC:[MD5.C7885A05B4E604C8B12F1112AC38D023] - 16/06/2011 - 00:56:05 ---A- . (...) -- C:\WINDOWS\KB2506212.log [36519] O44 - LFC:[MD5.B8D7AC4DAE614CFB6BBA8AC3080CC5CF] - 16/06/2011 - 00:51:09 ---A- . (...) -- C:\WINDOWS\KB2544893.log [48404] O44 - LFC:[MD5.14DD40869D1A95EDD1C26B53AC049DF1] - 16/06/2011 - 00:51:01 ---A- . (...) -- C:\WINDOWS\KB2509553.log [49177] O44 - LFC:[MD5.340F0B78397C89477E1043D8F20B4E8B] - 16/06/2011 - 00:50:52 ---A- . (...) -- C:\WINDOWS\KB2510531-IE8.log [34404] O44 - LFC:[MD5.CD129EB387DE0459ECD4541AC4D12554] - 16/06/2011 - 00:50:44 ---A- . (...) -- C:\WINDOWS\KB2541763.log [85634] O44 - LFC:[MD5.ED6AAC568B33934B6FB8037F245D2921] - 16/06/2011 - 00:50:36 ---A- . (...) -- C:\WINDOWS\KB2544521-IE8.log [34138] O44 - LFC:[MD5.D142D1AC4D8A18115056E4A68899D7FC] - 16/06/2011 - 00:01:56 ---A- . (...) -- C:\WINDOWS\KB2478971.log [46454] O44 - LFC:[MD5.59180168C3D1ED59A76CC2BA776EAF52] - 16/06/2011 - 00:01:46 ---A- . (...) -- C:\WINDOWS\KB2485376.log [45769] O44 - LFC:[MD5.5E9474AF7E5E71E9AC5F31A803DDCE21] - 16/06/2011 - 00:01:38 ---A- . (...) -- C:\WINDOWS\KB2479628.log [45204] O44 - LFC:[MD5.7A78F5C74DEE74B2F84AA6E24B35A0BA] - 16/06/2011 - 00:01:30 ---A- . (...) -- C:\WINDOWS\KB2483185.log [45283] O44 - LFC:[MD5.766FCDC53D82285648E18DD5404CA8C0] - 15/06/2011 - 23:43:58 ---A- . (...) -- C:\WINDOWS\KB2482017-IE8.log [35420] O44 - LFC:[MD5.71251062F604D380F3F6CAF73BBE14E4] - 15/06/2011 - 23:42:02 ---A- . (...) -- C:\WINDOWS\KB2476687.log [27635] O44 - LFC:[MD5.B61D785B61B2D64CA57A55B9C4774DC6] - 15/06/2011 - 23:41:42 ---A- . (...) -- C:\WINDOWS\KB2419632.log [40570] O44 - LFC:[MD5.84921B2AAFA1A1509CC6784680ECF9A7] - 15/06/2011 - 23:37:47 ---A- . (...) -- C:\WINDOWS\KB2478960.log [33593] ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.A6F5148A75D6308A51C51FFBE7EEE703] - 13/07/2011 - 04:02:05 ---A- - C:\WINDOWS\Prefetch\AVNOTIFY.EXE-05ED5FD8.pf O45 - LFCP:[MD5.AD28876FD748EC43E90AA30BDA6615D0] - 13/07/2011 - 04:03:23 ---A- - C:\WINDOWS\Prefetch\UPDATE.EXE-2577D203.pf O45 - LFCP:[MD5.C65DCCED4ADDE914AED98A7C98CD3E15] - 13/07/2011 - 19:48:13 ---A- - C:\WINDOWS\Prefetch\IMAPI.EXE-0BF740A4.pf O45 - LFCP:[MD5.7677C9CC8ADD59F180AC6E47E9DB09C8] - 13/07/2011 - 19:48:13 ---A- - C:\WINDOWS\Prefetch\NTOSBOOT-B00DFAAD.pf O45 - LFCP:[MD5.5AB5CFE89769E90A1A0021635ED62B7C] - 13/07/2011 - 19:48:19 ---A- - C:\WINDOWS\Prefetch\WMIPRVSE.EXE-28F301A9.pf O45 - LFCP:[MD5.FE218424EEB4C60446EA3AE1A88B0CC6] - 13/07/2011 - 19:48:23 ---A- - C:\WINDOWS\Prefetch\IPODSERVICE.EXE-3192DE38.pf O45 - LFCP:[MD5.CE9E2C72E5C3A14D431757177893F70C] - 13/07/2011 - 19:48:28 ---A- - C:\WINDOWS\Prefetch\ALG.EXE-0F138680.pf O45 - LFCP:[MD5.CF17C7AD55971E5BC4839E211FE2B4D6] - 13/07/2011 - 19:48:48 ---A- - C:\WINDOWS\Prefetch\WUAUCLT.EXE-399A8E72.pf O45 - LFCP:[MD5.95863916D3D61D458888468F3FED18EB] - 13/07/2011 - 19:50:23 ---A- - C:\WINDOWS\Prefetch\AVCENTER.EXE-1A970FA0.pf O45 - LFCP:[MD5.E023F533BCFC50F6B048698E8E7C4DB2] - 13/07/2011 - 19:50:35 ---A- - C:\WINDOWS\Prefetch\AVSCAN.EXE-07FC469C.pf O45 - LFCP:[MD5.920A2EA88E8DB45FC4E82D24D8696DE1] - 13/07/2011 - 19:50:57 ---A- - C:\WINDOWS\Prefetch\DLLHOST.EXE-5353C76C.pf O45 - LFCP:[MD5.5D32D051DC6D98F38408A2B9B6BD12C2] - 13/07/2011 - 19:50:57 ---A- - C:\WINDOWS\Prefetch\MSDTC.EXE-0E6E4AF7.pf O45 - LFCP:[MD5.8518E9743F0DE66F4E717F763B545D77] - 13/07/2011 - 20:58:05 ---A- - C:\WINDOWS\Prefetch\GEPLUGIN.EXE-039CFE10.pf O45 - LFCP:[MD5.54A43289E23CAD9DF4A910C320D35CB9] - 13/07/2011 - 21:09:05 ---A- - C:\WINDOWS\Prefetch\ACRORD32.EXE-3A1F13AE.pf O45 - LFCP:[MD5.70DDCB84185686741363516A48805B3A] - 13/07/2011 - 21:09:19 ---A- - C:\WINDOWS\Prefetch\ADOBEARM.EXE-2D1B11BF.pf O45 - LFCP:[MD5.3F445BCADA3E3A7F96ACC519E29D693E] - 13/07/2011 - 21:23:27 ---A- - C:\WINDOWS\Prefetch\LOGON.SCR-151EFAEA.pf O45 - LFCP:[MD5.35BA0278A73D127DE824433BFB166090] - 13/07/2011 - 21:37:13 ---A- - C:\WINDOWS\Prefetch\Layout.ini O45 - LFCP:[MD5.71D2EDD379AA5AA85CC11178BD83C638] - 13/07/2011 - 21:37:24 ---A- - C:\WINDOWS\Prefetch\DEFRAG.EXE-273F131E.pf O45 - LFCP:[MD5.C91FDD41594B059C6BB0C654E87326F8] - 13/07/2011 - 21:37:28 ---A- - C:\WINDOWS\Prefetch\DFRGNTFS.EXE-269967DF.pf O45 - LFCP:[MD5.4F38AB0286194CE00906F240B478DBD2] - 13/07/2011 - 21:46:10 ---A- - C:\WINDOWS\Prefetch\GUARDGUI.EXE-00ECD849.pf O45 - LFCP:[MD5.B0E3B3279DFBF12F5827F43252891832] - 13/07/2011 - 22:30:24 ---A- - C:\WINDOWS\Prefetch\DLLHOST.EXE-41F93445.pf O45 - LFCP:[MD5.0CDB50A944B42E8DB3FB9DE436BFFF10] - 13/07/2011 - 22:30:32 ---A- - C:\WINDOWS\Prefetch\VSSVC.EXE-0F74375A.pf O45 - LFCP:[MD5.38D211FCEC32ECB3CCF929F93CB9115F] - 13/07/2011 - 22:32:59 ---A- - C:\WINDOWS\Prefetch\RSMSINK.EXE-032F2BAB.pf O45 - LFCP:[MD5.6BFE50CE22EB5AF528297515FA29B48B] - 14/07/2011 - 00:27:58 ---A- - C:\WINDOWS\Prefetch\NOTEPAD.EXE-336351A9.pf O45 - LFCP:[MD5.ACA6B21DDCFCC6DC5A1BBC39A12E39D4] - 14/07/2011 - 00:44:02 ---A- - C:\WINDOWS\Prefetch\GOOGLEUPDATE.EXE-1E123D86.pf O45 - LFCP:[MD5.0358C0D9BBA691DC9426164FD99FD5C3] - 14/07/2011 - 00:55:44 ---A- - C:\WINDOWS\Prefetch\EXPLORER.EXE-082F38A9.pf O45 - LFCP:[MD5.B00FF1B5073FC027FAA47725248A73CD] - 14/07/2011 - 00:56:02 ---A- - C:\WINDOWS\Prefetch\VERCLSID.EXE-3667BD89.pf O45 - LFCP:[MD5.32D01AD5F2C747872B574C4ACAF53426] - 14/07/2011 - 00:56:16 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG2.EXE-0A3988F8.pf O45 - LFCP:[MD5.6CC937FF073935DF46F6A484C22D488C] - 14/07/2011 - 00:56:17 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG2.TMP-28734809.pf O45 - LFCP:[MD5.21CE2803BDF74A03380BE2DC341020F7] - 14/07/2011 - 00:57:09 ---A- - C:\WINDOWS\Prefetch\AVWSC.EXE-0283F9DD.pf O45 - LFCP:[MD5.C27452F9D89E0D5F8CEDA30E417821FA] - 14/07/2011 - 00:57:37 ---A- - C:\WINDOWS\Prefetch\ZHPFIX.EXE-3A07CBCA.pf O45 - LFCP:[MD5.66F5372A417DE703DD8BE20CF116C872] - 14/07/2011 - 00:57:54 ---A- - C:\WINDOWS\Prefetch\FIREFOX.EXE-28641590.pf O45 - LFCP:[MD5.BBAAAC6088D89C3F62D0F66DFDBABE08] - 14/07/2011 - 00:57:56 ---A- - C:\WINDOWS\Prefetch\JQSNOTIFY.EXE-24AE4A36.pf O45 - LFCP:[MD5.FA12F7943A3DF04CE21B6127A816E637] - 14/07/2011 - 00:58:14 ---A- - C:\WINDOWS\Prefetch\WSCNTFY.EXE-1B24F5EB.pf O45 - LFCP:[MD5.02F543408A6F7BA9981C63CAB23108A3] - 14/07/2011 - 00:58:29 ---A- - C:\WINDOWS\Prefetch\PLUGIN-CONTAINER.EXE-15EDC9DD.pf O45 - LFCP:[MD5.DF89C603F38C2F706B4823A79729D5F9] - 14/07/2011 - 00:59:02 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG.EXE-021B7932.pf O45 - LFCP:[MD5.967D4BCC6F1ECEDDC990646BE1ADD3AC] - 14/07/2011 - 00:59:51 ---A- - C:\WINDOWS\Prefetch\CMD.EXE-087B4001.pf O45 - LFCP:[MD5.4C2A95B04EE764FC5C981DAB633EAEB6] - 14/07/2011 - 00:59:51 ---A- - C:\WINDOWS\Prefetch\SCHTASKS.EXE-0CBF6A11.pf ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Microsoft® Remote Desktop Help Session Manager.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Phone\Skype.exe" [Enabled] .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Plugin Manager\skypePM.exe" [Enabled] .(.Skype Technologies - Skype Extras Manager.) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe O47 - AAKE:Key Export SP - "C:\Program Files\Java\jre6\bin\javaw.exe" [Enabled] .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\javaw.exe O47 - AAKE:Key Export SP - "C:\Program Files\Bonjour\mDNSResponder.exe" [Enabled] .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O47 - AAKE:Key Export SP - "C:\Program Files\iTunes\iTunes.exe" [Enabled] .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe O47 - AAKE:Key Export SP - "C:\Program Files\Google\Google Earth\plugin\geplugin.exe" [Enabled] .(.Google - Google Earth.) -- C:\Program Files\Google\Google Earth\plugin\geplugin.exe O47 - AAKE:Key Export SP - "C:\Program Files\TightVNC\tvnserver.exe" [Enabled] .(.GlavSoft LLC. - TightVNC Server for Windows.) -- C:\Program Files\TightVNC\tvnserver.exe O47 - AAKE:Key Export SP - "C:\Program Files\TightVNC\vncviewer.exe" [Enabled] .(.TightVNC Group - vncviewer.) -- C:\Program Files\TightVNC\vncviewer.exe O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Microsoft® Remote Desktop Help Session Manager.) -- C:\WINDOWS\system32\sessmgr.exe ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager I/O Driver.) -- C:\WINDOWS\System32\Drivers\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\System32\Drivers\sermouse.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - System Restore Filesystem Filter Driver.) -- C:\WINDOWS\System32\Drivers\sr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager I/O Driver.) -- C:\WINDOWS\System32\Drivers\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\System32\Drivers\ip6fw.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\System32\Drivers\rdpcdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\System32\Drivers\rdpdd.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\System32\Drivers\rdpwd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\System32\Drivers\sermouse.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - System Restore Filesystem Filter Driver.) -- C:\WINDOWS\System32\Drivers\sr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdpipe.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdtcp.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\System32\Drivers\vgasave.sys (.not file.) ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - DSP Group TrueSpeech Audio Codec for MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (...) -- (.not file.) O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - DPA Client for 32 bit platforms.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Digest SSPI Authentication Package.) -- C:\WINDOWS\system32\digest.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - DPA Client for 32 bit platforms.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Digest SSPI Authentication Package.) -- C:\WINDOWS\system32\digest.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145 O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.F498FD605C08404B20A48954C722FF74] - 14/07/2011 - 20:45:05 ---A- . (.Meetinghouse Data Communications - IEEE 802.1X Protocol Driver.) -- C:\WINDOWS\system32\drivers\AegisP.sys [17119] O58 - SDL:[MD5.375EAC7DA270DA658501EE766F960201] - 14/07/2011 - 15:06:42 ---A- . (.ATI Technologies Inc. - ATI Radeon WindowsNT Miniport Driver.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys [874496] O58 - SDL:[MD5.5B44C214F9CD9F590BE9125347610380] - 14/07/2011 - 14:28:03 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\drivers\avgntdd.sys [45416] O58 - SDL:[MD5.47B879406246FFDCED59E18D331A0E7D] - 14/07/2011 - 01:26:13 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys [61960] O58 - SDL:[MD5.87451AA7CC6B6A590EBCEA05E755075A] - 14/07/2011 - 14:28:03 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\drivers\avgntmgr.sys [22360] O58 - SDL:[MD5.5FEDEF54757B34FB611B9EC8FB399364] - 14/07/2011 - 11:51:13 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\WINDOWS\system32\drivers\avipbb.sys [137656] O58 - SDL:[MD5.48BF91CFFBCDD12A710207F2A08FEC4D] - 14/07/2011 - 15:38:32 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS5.1 Driver..) -- C:\WINDOWS\system32\drivers\b57xp32.sys [132352] O58 - SDL:[MD5.3292260A6AE8F328C7EF698B6EBD56E2] - 14/07/2011 - 11:15:08 ---A- . (.Broadcom Corporation - USB Driver for Bluetooth Adapter.) -- C:\WINDOWS\system32\drivers\bcbthub.sys [148794] O58 - SDL:[MD5.0A5D4300A8EA29F67ABBBABB58DD5456] - 14/07/2011 - 14:04:04 ---A- . (.WIDCOMM, Inc. - Bluetooth Audio Device.) -- C:\WINDOWS\system32\drivers\btaudio.sys [16896] O58 - SDL:[MD5.7249EF21D6F70D971BDA3ED0AF16D340] - 14/07/2011 - 13:57:46 ---A- . (.WIDCOMM, Inc. - Bluetooth Protocol Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btkrnl.sys [1240938] O58 - SDL:[MD5.6D9D146B116B0C3F09A9AB9F6F805093] - 14/07/2011 - 13:50:32 ---A- . (.WIDCOMM, Inc. - Bluetooth BTPORT Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btport.sys [30235] O58 - SDL:[MD5.3E98D2550A6222CD6D278425FBB21C3E] - 14/07/2011 - 14:02:06 ---A- . (.WIDCOMM, Inc. - Bluetooth Serial Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btserial.sys [23239] O58 - SDL:[MD5.48B9AD7437FF5BFB8F13CAB03179FE72] - 14/07/2011 - 14:01:46 ---A- . (.WIDCOMM, Inc. - Bluetooth Serial Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btslbcsp.sys [222844] O58 - SDL:[MD5.F5418F5B86BF9610AF445F7884087F9E] - 14/07/2011 - 13:50:46 ---A- . (.WIDCOMM, Inc. - Bluetooth LAN Access Server Driver.) -- C:\WINDOWS\system32\drivers\btwdndis.sys [147864] O58 - SDL:[MD5.BAA90D983F77759FC70C65A1CE3D3566] - 14/07/2011 - 13:29:00 ---A- . (.Conexant Systems Inc. - Conexant WDM AC97 Audio Driver.) -- C:\WINDOWS\system32\drivers\camcaud.sys [34048] O58 - SDL:[MD5.90D9C324DF48BB8E3024E79F5C181784] - 14/07/2011 - 13:31:00 ---A- . (.Conexant Systems Inc. - Conexant AmcHal Driver.) -- C:\WINDOWS\system32\drivers\camchal.sys [276480] O58 - SDL:[MD5.B562592B7F5759C99E179CA467ECFB4C] - 14/07/2011 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C 1.2 WDM Main Driver.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528] O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 14/07/2011 - 13:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776] O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 14/07/2011 - 13:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys [26600] O58 - SDL:[MD5.573C7D0A32852B48F3058CFD8026F511] - 14/07/2011 - 13:00:00 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\drivers\hdaudbus.sys [144384] O58 - SDL:[MD5.FAC3B0A7EC158C4582D23EDA4C5A56E9] - 14/07/2011 - 14:00:00 ---A- . (.Conexant Systems, Inc. - HSFHWICH WDM driver.) -- C:\WINDOWS\system32\drivers\HSFHWICH.sys [200064] O58 - SDL:[MD5.2E84A40836B2A8DC523CB530C7262AC3] - 14/07/2011 - 13:58:00 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys [684800] O58 - SDL:[MD5.E5ADD2AFECBF514F5CCA730EDFDFB49E] - 14/07/2011 - 13:58:00 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\system32\drivers\HSF_DP.sys [1041536] O58 - SDL:[MD5.EADCBD84F788D887E73D8C7691B2C508] - 14/07/2011 - 16:23:42 ---A- . (.Inprocomm, Inc. - NT 5 (NDIS 5.1/5.0) x86 Driver.) -- C:\WINDOWS\system32\drivers\i2220ntx.sys [140288] O58 - SDL:[MD5.872D090CA5C306F62D1982BCE6302376] - 14/07/2011 - 07:44:04 ---A- . (.Intel Corporation - Intel Wireless Connection Agent.) -- C:\WINDOWS\system32\drivers\iwca.sys [234496] O58 - SDL:[MD5.78D93059DE425C9A248E1850ED80F822] - 14/07/2011 - 18:04:44 ---A- . (.ELANTECH Devices Corp. - KTP Ware Filter Driver.) -- C:\WINDOWS\system32\drivers\Ktp.sys [27392] O58 - SDL:[MD5.3D2C13377763EEAC0CA6FB46F57217ED] - 14/07/2011 - 08:11:20 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys [22712] O58 - SDL:[MD5.B309912717C29FC67E1BA4730A82B6DD] - 14/07/2011 - 08:11:30 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys [39984] O58 - SDL:[MD5.3C318B9CD391371BED62126581EE9961] - 14/07/2011 - 10:04:00 ---A- . (.Conexant - Diagnostic Interface DRIVER.) -- C:\WINDOWS\system32\drivers\mdmxsdk.sys [13059] O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 14/07/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032] O58 - SDL:[MD5.2ADC0CA9945C65284B3D19BC18765974] - 14/07/2011 - 01:24:38 ---A- . (.National Semiconductor Corporation - NSC Fast Infrared Driver..) -- C:\WINDOWS\system32\drivers\nscirda.sys [28672] O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 14/07/2011 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792] O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 14/07/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032] O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 14/07/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032] O58 - SDL:[MD5.85A26A3BB748DFD3170CDBF45B0DD7FD] - 14/07/2011 - 10:20:04 ---A- . (.Intel Corporation - Intel WLAN Packet Driver.) -- C:\WINDOWS\system32\drivers\s24trans.sys [11354] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 14/07/2011 - 13:00:00 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.10EF1200FEFFFFFF00000000C0F11200] - 01/06/2010 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [685816] O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 14/07/2011 - 14:28:02 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\drivers\ssmdrv.sys [28520] O58 - SDL:[MD5.EB363DDFBE8B6D51003CCAB29D93D744] - 14/07/2011 - 13:33:46 ---A- . (.Synaptics, Inc. - Synaptics Touchpad Driver.) -- C:\WINDOWS\system32\drivers\SynTP.sys [185824] O58 - SDL:[MD5.467FF7FB078DCEC24C3F4DB602190E3D] - 14/07/2011 - 12:40:00 ---A- . (.Texas Instruments - tifm21.sys.) -- C:\WINDOWS\system32\drivers\tifm21.sys [146304] O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 14/07/2011 - 13:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376] O58 - SDL:[MD5.5C2BDC152BBAB34F36473DEAF7713F22] - 14/07/2011 - 15:44:52 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\system32\drivers\usbaapl.sys [41984] O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 14/07/2011 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112] O58 - SDL:[MD5.C89DA341FCC883A3D79DC11727484FC2] - 14/07/2011 - 17:48:10 ---A- . (.Intel® Corporation - Intel® Wireless LAN Driver.) -- C:\WINDOWS\system32\drivers\w29n51.sys [3222784] O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 14/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9029] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 14/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097] O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 14/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4768] O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 14/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 14/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537] O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 14/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27866] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 14/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 14/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 14/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 14/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146] O58 - SDL:[MD5.4FE09F868CE65B334B42862C372C69CC] - 14/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [33840] O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 14/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560] O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 14/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648] O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 14/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424] O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 14/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560] O58 - SDL:[MD5.2F9806B52CB3748B1E49222744B28E3C] - 14/07/2011 - 11:52:22 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) -- C:\WINDOWS\system32\PCANDIS5.SYS [17134] ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC:Last File Created 13/07/2011 - 00:58:52 -SHA- C:\Documents And Settings\Saskia\Cookies\index.dat [147456] O61 - LFC:Last File Created 13/07/2011 - 00:58:52 -SHA- C:\Documents And Settings\Saskia\Local Settings\History\History.IE5\index.dat [720896] O61 - LFC:Last File Created 13/07/2011 - 01:21:24 -SH-- C:\Documents And Settings\Saskia\Local Settings\Temporary Internet Files\desktop.ini [67] O61 - LFC:Last File Created 13/07/2011 - 01:22:56 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2011-07-13 (02-22-56).txt [1045] O61 - LFC:Last File Created 13/07/2011 - 02:08:26 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2011-07-13 (03-08-26).txt [1063] O61 - LFC:Last File Created 13/07/2011 - 02:18:25 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\E6024EAC88E6B6165D49FE3C95ADD735 [558] O61 - LFC:Last File Created 13/07/2011 - 02:18:25 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\E6024EAC88E6B6165D49FE3C95ADD735 [144] O61 - LFC:Last File Created 13/07/2011 - 02:19:17 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\8DFDF057024880D7A081AFBF6D26B92F [533] O61 - LFC:Last File Created 13/07/2011 - 02:19:17 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\8DFDF057024880D7A081AFBF6D26B92F [100] O61 - LFC:Last File Created 13/07/2011 - 02:19:19 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\62B5AF9BE9ADC1085C3C56EC07A82BF6 [19536] O61 - LFC:Last File Created 13/07/2011 - 02:19:19 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\62B5AF9BE9ADC1085C3C56EC07A82BF6 [124] O61 - LFC:Last File Created 13/07/2011 - 02:32:59 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2011-07-11-03-31-42.log [16832] O61 - LFC:Last File Created 13/07/2011 - 02:32:59 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\REPORTS\1205b635.avl [1628] O61 - LFC:Last File Created 13/07/2011 - 02:44:25 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Apple Computer\QuickTime\downloads\06\12\6ce29bc7-3bae8eba-c102c4e8-382f132b.qtch [1393] O61 - LFC:Last File Created 13/07/2011 - 02:44:27 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Apple Computer\QuickTime\QuickTime.qtp [9407] O61 - LFC:Last File Created 13/07/2011 - 02:48:49 -SHA- C:\Documents And Settings\Saskia\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat [32768] O61 - LFC:Last File Created 13/07/2011 - 02:48:51 ---A- C:\Documents And Settings\Saskia\Cookies\[email protected][1].txt [269] O61 - LFC:Last File Created 13/07/2011 - 02:48:51 ---A- C:\Documents And Settings\Saskia\Cookies\saskia@msn[2].txt [650] O61 - LFC:Last File Created 13/07/2011 - 02:48:51 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Microsoft\Internet Explorer\Recovery\Last Active\RecoveryStore.{EC61CF60-BF33-11D8-9A94-0012F02CDB69}.dat [4608] O61 - LFC:Last File Created 13/07/2011 - 02:48:51 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Microsoft\Internet Explorer\Recovery\Last Active\{E9836E6A-AB5F-11E0-9A95-0012F02CDB69}.dat [4608] O61 - LFC:Last File Created 13/07/2011 - 02:57:08 -SH-- C:\Documents And Settings\LocalService.NT AUTHORITY\Local Settings\Temporary Internet Files\desktop.ini [67] O61 - LFC:Last File Created 13/07/2011 - 03:04:47 -SHA- C:\Documents And Settings\Saskia\Local Settings\History\History.IE5\MSHist012011070420110711\index.dat [32768] O61 - LFC:Last File Created 13/07/2011 - 03:04:47 -SHA- C:\Documents And Settings\Saskia\Local Settings\History\History.IE5\MSHist012011071120110712\index.dat [32768] O61 - LFC:Last File Created 13/07/2011 - 03:04:47 -SHA- C:\Documents And Settings\Saskia\Local Settings\History\History.IE5\MSHist012011071220110713\index.dat [32768] O61 - LFC:Last File Created 13/07/2011 - 03:07:45 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\link.txt [115] O61 - LFC:Last File Created 13/07/2011 - 03:07:45 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe [9435312] O61 - LFC:Last File Created 13/07/2011 - 03:07:45 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\news.txt [78] O61 - LFC:Last File Created 13/07/2011 - 03:07:59 ---A- C:\Documents And Settings\All Users.WINDOWS\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes' Anti-Malware Help.lnk [800] O61 - LFC:Last File Created 13/07/2011 - 03:07:59 ---A- C:\Documents And Settings\All Users.WINDOWS\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes' Anti-Malware.lnk [800] O61 - LFC:Last File Created 13/07/2011 - 03:07:59 ---A- C:\Documents And Settings\All Users.WINDOWS\Start Menu\Programs\Malwarebytes' Anti-Malware\Uninstall Malwarebytes' Anti-Malware.lnk [824] O61 - LFC:Last File Created 13/07/2011 - 03:08:36 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\config.conf [2399] O61 - LFC:Last File Created 13/07/2011 - 03:08:36 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\custom.conf [5] O61 - LFC:Last File Created 13/07/2011 - 03:08:36 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\news.conf [248] O61 - LFC:Last File Created 13/07/2011 - 03:08:48 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\build.conf [261] O61 - LFC:Last File Created 13/07/2011 - 03:08:48 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\rules.ref [6983235] O61 - LFC:Last File Created 13/07/2011 - 03:31:02 ---A- C:\Documents And Settings\Saskia\Recent\IMG_0075.lnk [848] O61 - LFC:Last File Created 13/07/2011 - 03:31:04 ---A- C:\Documents And Settings\Saskia\Recent\scoot.lnk [641] O61 - LFC:Last File Created 13/07/2011 - 03:31:15 ---A- C:\Documents And Settings\Saskia\Application Data\Microsoft\Office\OIS12.pip [432] O61 - LFC:Last File Created 13/07/2011 - 03:33:21 ---A- C:\Documents And Settings\Saskia\Recent\IMG_0152.lnk [1071] O61 - LFC:Last File Created 13/07/2011 - 03:33:22 ---A- C:\Documents And Settings\Saskia\Recent\X8.lnk [826] O61 - LFC:Last File Created 13/07/2011 - 03:33:44 ---A- C:\Documents And Settings\Saskia\Application Data\Microsoft\OIS\Toolbars.dat [723] O61 - LFC:Last File Created 13/07/2011 - 03:33:44 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Microsoft\OIS\OIScatalog.cag [614] O61 - LFC:Last File Created 13/07/2011 - 03:34:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [26624] O61 - LFC:Last File Created 13/07/2011 - 03:47:04 ---A- C:\Documents And Settings\Saskia\Recent\Lob des lernens.lnk [586] O61 - LFC:Last File Created 13/07/2011 - 03:48:12 ---A- C:\Documents And Settings\Saskia\Application Data\Microsoft\Office\Recent\Lob des lernens.LNK [517] O61 - LFC:Last File Created 13/07/2011 - 03:48:12 ---A- C:\Documents And Settings\Saskia\Application Data\Microsoft\Office\Recent\My Documents.LNK [362] O61 - LFC:Last File Created 13/07/2011 - 03:48:12 ---A- C:\Documents And Settings\Saskia\Recent\Lob des lernens (2).lnk [591] O61 - LFC:Last File Created 13/07/2011 - 03:48:13 --H-- C:\Documents And Settings\Saskia\Application Data\Microsoft\Office\Recent\index.dat [1597] O61 - LFC:Last File Created 13/07/2011 - 03:48:22 ---A- C:\Documents And Settings\Saskia\Application Data\Microsoft\Office\Word12.pip [1828] O61 - LFC:Last File Created 13/07/2011 - 03:51:51 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\OfflineCache\index.sqlite [10240] O61 - LFC:Last File Created 13/07/2011 - 04:02:50 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2011-07-13-05-01-59.log [36414] O61 - LFC:Last File Created 13/07/2011 - 04:02:50 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\REPORTS\c799ec8e.avl [2488] O61 - LFC:Last File Created 13/07/2011 - 04:03:22 -SHA- C:\Documents And Settings\LocalService.NT AUTHORITY\Cookies\index.dat [32768] O61 - LFC:Last File Created 13/07/2011 - 04:03:22 -SHA- C:\Documents And Settings\LocalService.NT AUTHORITY\Local Settings\History\History.IE5\index.dat [32768] O61 - LFC:Last File Created 13/07/2011 - 04:03:23 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\IDX\master.idx [56] O61 - LFC:Last File Created 13/07/2011 - 04:03:24 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2011-07-13-05-03-22.log [3856] O61 - LFC:Last File Created 13/07/2011 - 04:03:24 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\REPORTS\ca299dce.avl [1540] O61 - LFC:Last File Created 13/07/2011 - 04:17:26 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\bookmarkbackups\bookmarks-2011-07-11.json [5290] O61 - LFC:Last File Created 13/07/2011 - 04:18:01 ---A- C:\Documents And Settings\Saskia\Application Data\Macromedia\Flash Player\#SharedObjects\MCK47U77\mail.google.com\wakeup.sol [37] O61 - LFC:Last File Created 13/07/2011 - 04:18:01 ---A- C:\Documents And Settings\Saskia\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#mail.google.com\settings.sol [85] O61 - LFC:Last File Created 13/07/2011 - 04:47:02 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\REPORTS\1662b971.avl [1732] O61 - LFC:Last File Created 13/07/2011 - 04:47:03 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\AVSCAN-20110713-050405-64671C1F.LOG [24472] O61 - LFC:Last File Created 13/07/2011 - 04:47:50 -SH-- C:\Documents And Settings\Saskia\ntuser.ini [178] O61 - LFC:Last File Created 13/07/2011 - 19:46:07 -SHA- C:\Documents And Settings\NetworkService.NT AUTHORITY\Local Settings\desktop.ini [62] O61 - LFC:Last File Created 13/07/2011 - 19:46:11 -SHA- C:\Documents And Settings\LocalService.NT AUTHORITY\Local Settings\desktop.ini [62] O61 - LFC:Last File Created 13/07/2011 - 19:46:21 -SHA- C:\Documents And Settings\Saskia\Local Settings\desktop.ini [62] O61 - LFC:Last File Created 13/07/2011 - 19:46:38 -SHA- C:\Documents And Settings\Saskia\Local Settings\History\History.IE5\MSHist012011071320110714\index.dat [32768] O61 - LFC:Last File Created 13/07/2011 - 19:47:14 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Adobe\AAMUpdater\1.0\aamu.log [43561] O61 - LFC:Last File Created 13/07/2011 - 19:47:30 ---A- C:\Documents And Settings\Saskia\Application Data\Adobe\CS5ServiceManager\logs\CS5ServiceManager_native.log [3] O61 - LFC:Last File Created 13/07/2011 - 19:48:10 ---A- C:\Documents And Settings\Saskia\Application Data\Skype\shared_dynco\dc.db [1183744] O61 - LFC:Last File Created 13/07/2011 - 19:48:10 ---A- C:\Documents And Settings\Saskia\Application Data\Skype\shared_dynco\dc.db-journal [472472] O61 - LFC:Last File Created 13/07/2011 - 19:48:11 ---A- C:\Documents And Settings\Saskia\Application Data\Skype\shared.xml [43806] O61 - LFC:Last File Created 13/07/2011 - 19:48:18 ---A- C:\Documents And Settings\Saskia\Application Data\Macromedia\Flash Player\#SharedObjects\MCK47U77\skype.com\#ui\preferences.sol [215] O61 - LFC:Last File Created 13/07/2011 - 19:48:46 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\AdobeARM.log [909] O61 - LFC:Last File Created 13/07/2011 - 19:49:52 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Microsoft\Network\Downloader\qmgr0.dat [4232] O61 - LFC:Last File Created 13/07/2011 - 19:49:52 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Microsoft\Network\Downloader\qmgr1.dat [6316] O61 - LFC:Last File Created 13/07/2011 - 19:53:52 -SHA- C:\Documents And Settings\Saskia\IETldCache\index.dat [262144] O61 - LFC:Last File Created 13/07/2011 - 20:09:31 ---A- C:\Documents And Settings\Saskia\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.dailymotion.com\settings.sol [89] O61 - LFC:Last File Created 13/07/2011 - 20:11:08 ---A- C:\Documents And Settings\Saskia\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#s.ytimg.com\settings.sol [81] O61 - LFC:Last File Created 13/07/2011 - 20:13:17 R--A- C:\Documents And Settings\Saskia\Local Settings\Temp\Une journée avec le 17 55 web.pdf [368941] O61 - LFC:Last File Created 13/07/2011 - 20:58:05 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\geColladaModelCacheLock [0] O61 - LFC:Last File Created 13/07/2011 - 20:58:05 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\geIconCacheLock [0] O61 - LFC:Last File Created 13/07/2011 - 20:58:09 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\icons\kh.google.com_icons_city_capital_star.png [1404] O61 - LFC:Last File Created 13/07/2011 - 20:58:10 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\icons\kh.google.com_icons_city_major.png [393] O61 - LFC:Last File Created 13/07/2011 - 20:58:10 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\icons\kh.google.com_icons_rect_yellow.png [748] O61 - LFC:Last File Created 13/07/2011 - 20:58:10 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\icons\kh.google.com_icons_rect_yellow_5.png [681] O61 - LFC:Last File Created 13/07/2011 - 20:58:35 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\icons\kh.google.com_icons_rect_red.png [739] O61 - LFC:Last File Created 13/07/2011 - 20:58:35 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\icons\kh.google.com_icons_rect_red_5.png [664] O61 - LFC:Last File Created 13/07/2011 - 20:58:38 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\icons\kh.google.com_icons_oct_green.png [1846] O61 - LFC:Last File Created 13/07/2011 - 20:58:38 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\icons\kh.google.com_icons_rect_blue.png [685] O61 - LFC:Last File Created 13/07/2011 - 20:58:38 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\icons\kh.google.com_icons_rect_blue_5.png [622] O61 - LFC:Last File Created 13/07/2011 - 20:58:38 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\icons\kh.google.com_icons_rect_blue_6.png [340] O61 - LFC:Last File Created 13/07/2011 - 20:58:38 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\icons\kh.google.com_icons_rect_green.png [789] O61 - LFC:Last File Created 13/07/2011 - 20:58:42 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\icons\kh.google.com_icons_rect_green_5.png [378] O61 - LFC:Last File Created 13/07/2011 - 20:59:12 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\icons\kh.google.com_icons_rect_yellow_6.png [331] O61 - LFC:Last File Created 13/07/2011 - 21:06:28 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\dbCache1.dat [134252032] O61 - LFC:Last File Created 13/07/2011 - 21:06:28 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\dbCache1.dat.index [79712] O61 - LFC:Last File Created 13/07/2011 - 21:06:28 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Google\GoogleEarth\dbroot_cache [60519] O61 - LFC:Last File Created 13/07/2011 - 21:07:55 ---A- C:\Documents And Settings\Saskia\Application Data\Adobe\Acrobat\9.0\SharedDataEvents [3072] O61 - LFC:Last File Created 13/07/2011 - 21:08:41 ---A- C:\Documents And Settings\Saskia\Recent\Conforama_Open140711.lnk [562] O61 - LFC:Last File Created 13/07/2011 - 21:09:18 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\ArmUI.ini [148526] O61 - LFC:Last File Created 13/07/2011 - 21:09:19 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\AdobeARM_NotLocked.log [740] O61 - LFC:Last File Created 13/07/2011 - 21:36:26 ---A- C:\Documents And Settings\Saskia\Cookies\[email protected][3].txt [360] O61 - LFC:Last File Created 13/07/2011 - 21:37:08 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2011-07-12-22-35-29.log [37408] O61 - LFC:Last File Created 13/07/2011 - 21:37:08 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\REPORTS\88436965.avl [2500] O61 - LFC:Last File Created 13/07/2011 - 21:37:54 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2011-07-12 (22-37-54).txt [1229] O61 - LFC:Last File Created 13/07/2011 - 21:40:19 ---A- C:\Documents And Settings\Saskia\Recent\ZHPDiag (2).lnk [512] O61 - LFC:Last File Created 13/07/2011 - 21:40:19 ---A- C:\Documents And Settings\Saskia\Recent\ZHPFixReport.lnk [697] O61 - LFC:Last File Created 13/07/2011 - 23:28:45 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\bookmarkbackups\bookmarks-2011-07-13.json [5290] O61 - LFC:Last File Created 13/07/2011 - 23:50:01 -SHA- C:\Documents And Settings\NetworkService.NT AUTHORITY\Cookies\index.dat [16384] O61 - LFC:Last File Created 13/07/2011 - 23:50:01 -SHA- C:\Documents And Settings\NetworkService.NT AUTHORITY\Local Settings\History\History.IE5\index.dat [16384] O61 - LFC:Last File Created 14/07/2011 - 00:27:13 ---A- C:\Documents And Settings\Saskia\Application Data\Intel\Wireless\Settings\Settings.ini [522] O61 - LFC:Last File Created 14/07/2011 - 00:27:19 ---A- C:\Documents And Settings\Saskia\Application Data\Intel\Wireless\WLANProfiles\Profiles.enc [270] O61 - LFC:Last File Created 14/07/2011 - 00:27:19 ---A- C:\Documents And Settings\Saskia\Application Data\Intel\Wireless\WLANProfiles\Profiles.enc.bak [270] O61 - LFC:Last File Created 14/07/2011 - 00:27:30 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\sched.log [124050] O61 - LFC:Last File Created 14/07/2011 - 00:27:40 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\INFECTED\44e58e93.qua [250274] O61 - LFC:Last File Created 14/07/2011 - 00:27:40 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\REPORTS\2535c6ed.avl [1782] O61 - LFC:Last File Created 14/07/2011 - 00:27:44 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\AVSCAN-20110713-205034-3F40086B.LOG [25320] O61 - LFC:Last File Created 14/07/2011 - 00:29:31 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\JOBS\updjob.avj [1530] O61 - LFC:Last File Created 14/07/2011 - 00:31:00 ---A- C:\Documents And Settings\Saskia\Application Data\Macromedia\Flash Player\#SharedObjects\MCK47U77\cdn.springboard.gorillanation.com\mediaplayer\master\mediaplayer.swf\springboard_analytics.sol [63] O61 - LFC:Last File Created 14/07/2011 - 00:31:00 ---A- C:\Documents And Settings\Saskia\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#cdn.springboard.gorillanation.com\settings.sol [103] O61 - LFC:Last File Created 14/07/2011 - 00:31:00 ---A- C:\Documents And Settings\Saskia\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol [549] O61 - LFC:Last File Created 14/07/2011 - 00:37:43 ---A- C:\Documents And Settings\Saskia\Application Data\Macromedia\Flash Player\#SharedObjects\MCK47U77\cdn.springboard.gorillanation.com\mediaplayer\master\mediaplayer.swf\undefined.sol [61] O61 - LFC:Last File Created 14/07/2011 - 00:49:45 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\formhistory.sqlite [32768] O61 - LFC:Last File Created 14/07/2011 - 00:53:48 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\plugtmp\plugin-display [8741] O61 - LFC:Last File Created 14/07/2011 - 00:55:38 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\downloads.sqlite [180224] O61 - LFC:Last File Created 14/07/2011 - 00:57:16 ---A- C:\Documents And Settings\All Users.WINDOWS\Start Menu\Programs\ZHP\ZHPDiag.lnk [489] O61 - LFC:Last File Created 14/07/2011 - 00:57:58 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\pluginreg.dat [12473] O61 - LFC:Last File Created 14/07/2011 - 00:58:03 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\avguard.log [650372] O61 - LFC:Last File Created 14/07/2011 - 00:58:04 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\urlclassifierkey3.txt [154] O61 - LFC:Last File Created 14/07/2011 - 00:58:06 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\EVENTDB\avevtdb.dbe [24576] O61 - LFC:Last File Created 14/07/2011 - 00:58:06 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\eBay Inc\ebay-companion.sqlite [20480] O61 - LFC:Last File Created 14/07/2011 - 00:58:07 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\0652F256d01 [119303] O61 - LFC:Last File Created 14/07/2011 - 00:58:07 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\DB9CAF24d01 [37200] O61 - LFC:Last File Created 14/07/2011 - 00:58:07 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\F3782808d01 [40164] O61 - LFC:Last File Created 14/07/2011 - 00:58:08 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\CA48276Dd01 [30680] O61 - LFC:Last File Created 14/07/2011 - 00:58:11 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2A5B56D1d01 [38196] O61 - LFC:Last File Created 14/07/2011 - 00:58:19 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\AB4BB57Bd01 [44617] O61 - LFC:Last File Created 14/07/2011 - 00:58:21 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\436C4FD8d01 [31744] O61 - LFC:Last File Created 14/07/2011 - 00:58:29 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\XPC.mfl [2283856] O61 - LFC:Last File Created 14/07/2011 - 00:58:58 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\XUL.mfl [1291538] O61 - LFC:Last File Created 14/07/2011 - 00:59:00 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\prefs.js [6316] O61 - LFC:Last File Created 14/07/2011 - 00:59:01 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\bookmarkbackups\bookmarks-2011-07-14.json [5290] O61 - LFC:Last File Created 14/07/2011 - 00:59:01 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\cert8.db [196608] O61 - LFC:Last File Created 14/07/2011 - 00:59:01 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\key3.db [16384] O61 - LFC:Last File Created 14/07/2011 - 00:59:01 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\places.sqlite [10309632] O61 - LFC:Last File Created 14/07/2011 - 00:59:01 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\places.sqlite-journal [0] O61 - LFC:Last File Created 14/07/2011 - 00:59:01 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_001_ [170477] O61 - LFC:Last File Created 14/07/2011 - 00:59:01 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_002_ [70930] O61 - LFC:Last File Created 14/07/2011 - 00:59:01 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_003_ [85074] O61 - LFC:Last File Created 14/07/2011 - 00:59:01 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\urlclassifier3.sqlite [37285888] O61 - LFC:Last File Created 14/07/2011 - 00:59:02 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\cookies.sqlite [557056] O61 - LFC:Last File Created 14/07/2011 - 00:59:02 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\localstore.rdf [7758] O61 - LFC:Last File Created 14/07/2011 - 00:59:02 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_MAP_ [8468] O61 - LFC:Last File Created 14/07/2011 - 22:03:09 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\blocklist.xml [10573] O61 - LFC:Last File Created 14/07/2011 - 22:03:13 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\extensions.rdf [10704] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 O63 - Logiciel: FindyKill - (.El Desaparecido.) ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\WINDOWS\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - Bing ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.2D1F44FE1C9667037A9EFFC2A169AA9A] [sPRF][13/07/2011] (...) -- C:\Documents and Settings\Saskia\Desktop\delfix.exe [375020] [MD5.139CA7EE65280F3AE220520E8DD5F75E] [sPRF][09/11/2005] (.MESTRELAB - MestReC Application.) -- C:\Documents and Settings\Saskia\Desktop\MestReC.exe [5902336] [MD5.2E0B5C7437AB198A1AA2810BAA4E682B] [sPRF][04/12/2010] (...) -- C:\Documents and Settings\Saskia\Desktop\SoftonicFR_JDownloader_09579.exe [30456832] [MD5.E39A78D2C0DB2A60C5622AA686EABA82] [sPRF][14/07/2011] (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Saskia\Desktop\ZHPDiag2.exe [2538576] ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 14/07/2011 136360 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe SR - | Auto 14/07/2011 269480 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe SR - | Auto 14/07/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 14/07/2011 425984 | (Ati HotKey Poller) . (.ATI Technologies Inc..) - C:\WINDOWS\system32\Ati2evxx.exe SR - | Auto 14/07/2011 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SR - | Auto 14/07/2011 163840 | (btwdins) . (.WIDCOMM, Inc..) - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe SS - | Demand 14/07/2011 224768 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe SR - | Auto 14/07/2011 86016 | (EvtEng) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe SS - | Auto 14/07/2011 133104 | (gupdate1cb095d934d6ec8) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SR - | Demand 14/07/2011 820008 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SR - | Auto 14/07/2011 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe SR - | Auto 14/07/2011 98304 | (OwnershipProtocol) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe SR - | Auto 14/07/2011 139264 | (RegSrvc) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe SR - | Auto 14/07/2011 360521 | (S24EventMonitor) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe SS - | Demand 14/07/2011 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe SS - | Auto 14/07/2011 826896 | (tvnserver) . (.GlavSoft LLC..) - C:\Program Files\TightVNC\tvnserver.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by Saskia at 14/07/2011 02:13:22 device: opened successfully user: MBR read successfully Disk trace: called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys sptd.sys >>UNKNOWN [0x869858AC]<< C:\WINDOWS\system32\drivers\sptd.sys 1 ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\Harddisk0\DR0[0x8693DAB8] 3 CLASSPNP[0xF7546FD7] -> ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\00000084[0x869CEF18] 5 ACPI[0xF72BB620] -> ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\Ide\IdeDeviceP0T0L0-4[0x868F4D98] kernel: MBR read successfully user & kernel MBR OK ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Saskia at 14/07/2011 02:13:24 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ---\\ Liste des émulateurs de CD/DVD (Hook du MBR) O58 - SDL:[MD5.10EF1200FEFFFFFF00000000C0F11200] - 01/06/2010 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [685816] End of the scan (1491 lines in 14mn 17s)(0)
  4. grem
    Delfix avant : # DelFix v8.1 - Rapport créé le 13/07/2011 à 04:58 # Mis à jour le 20/06/11 à 19h par Xplode # Système d'exploitation : Microsoft Windows XP (32 bits) [Version 5.1.2600] Service Pack 3 # Nom d'utilisateur : Saskia - JÉRÉMY (Administrateur) # Exécuté depuis : C:\Documents and Settings\Saskia\Desktop\delfix.exe # Option [Recherche] ~~~~~~ Dossier(s) ~~~~~~ Présent : C:\_OTM Présent : C:\RSIT Présent : C:\ToolBar SD Présent : C:\Program Files\Ad-Remover Présent : C:\Program Files\trend micro\Hijackthis Présent : C:\Program Files\ZHPDiag Présent : C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\ZHP ~~~~~~ Fichier(s) ~~~~~~ Présent : C:\Ad-Report-CLEAN[1].txt Présent : C:\PhysicalDisk0_MBR.bin Présent : C:\rapport.txt Présent : C:\TB.txt Présent : C:\TCleaner.txt Présent : C:\UsbFix.txt Présent : C:\ZHPExportRegistry-11-07-2011-03-52-49.txt Présent : C:\Documents and Settings\Saskia\Desktop\AD-R.lnk Présent : C:\Documents and Settings\Saskia\Desktop\TFC.exe Présent : C:\Documents and Settings\Saskia\Desktop\ZHPDiag.txt Présent : C:\Documents and Settings\Saskia\Desktop\ZHPDiag2.exe Présent : C:\Documents and Settings\Saskia\Desktop\ZHPFixReport.txt ~~~~~~ Registre ~~~~~~ Clé Présente : HKCU\SOFTWARE\Ad-Remover Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\ZHP Clé Présente : HKLM\Software\OldTimer Tools Clé Présente : HKLM\Software\TrendMicro\Hijackthis Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ad-Remover Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Hijackthis Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1 Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\HijackThis.exe ~~~~~~ Autre ~~~~~~ ########## EOF - "C:\DelFixSearch.txt" - [1967 octets] ########## delfix apres : # DelFix v8.1 - Rapport créé le 13/07/2011 à 04:58 # Mis à jour le 20/06/11 à 19h par Xplode # Système d'exploitation : Microsoft Windows XP (32 bits) [Version 5.1.2600] Service Pack 3 # Nom d'utilisateur : Saskia - JÉRÉMY (Administrateur) # Exécuté depuis : C:\Documents and Settings\Saskia\Desktop\delfix.exe # Option [suppression] ~~~~~~ Dossier(s) ~~~~~~ Supprimé : C:\_OTM Supprimé : C:\RSIT Supprimé : C:\ToolBar SD Supprimé : C:\Program Files\Ad-Remover Supprimé : C:\Program Files\trend micro\Hijackthis Supprimé : C:\Program Files\ZHPDiag Supprimé : C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\ZHP ~~~~~~ Fichier(s) ~~~~~~ Supprimé : C:\Ad-Report-CLEAN[1].txt Supprimé : C:\PhysicalDisk0_MBR.bin Supprimé : C:\rapport.txt Supprimé : C:\TB.txt Supprimé : C:\TCleaner.txt Supprimé : C:\UsbFix.txt Supprimé : C:\ZHPExportRegistry-11-07-2011-03-52-49.txt Supprimé : C:\Documents and Settings\Saskia\Desktop\AD-R.lnk Supprimé : C:\Documents and Settings\Saskia\Desktop\TFC.exe Supprimé : C:\Documents and Settings\Saskia\Desktop\ZHPDiag.txt Supprimé : C:\Documents and Settings\Saskia\Desktop\ZHPDiag2.exe Supprimé : C:\Documents and Settings\Saskia\Desktop\ZHPFixReport.txt ~~~~~~ Registre ~~~~~~ Clé Supprimée : HKCU\SOFTWARE\Ad-Remover Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\ZHP Clé Supprimée : HKLM\Software\OldTimer Tools Clé Supprimée : HKLM\Software\TrendMicro\Hijackthis Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ad-Remover Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Hijackthis Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1 Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\HijackThis.exe ~~~~~~ Autre ~~~~~~ -> Prefetch vidé ########## EOF - "C:\DelFixSuppr.txt" - [2014 octets] ########## Par contre j'ai oublié de copier le rapport ZHPFIX avant d'executer delfix... donc tout a disparu (<----boulet) Voici le rapport Avira : Avira AntiVir Personal Date de création du fichier de rapport : mercredi 13 juillet 2011 20:50 La recherche porte sur 2929320 souches de virus. Le programme fonctionne en version intégrale illimitée. Les services en ligne sont disponibles. Détenteur de la licence : Avira AntiVir Personal - FREE Antivirus Numéro de série : 0000149996-ADJIE-0000001 Plateforme : Windows XP Version de Windows : (Service Pack 3) [5.1.2600] Mode Boot : Démarré normalement Identifiant : SYSTEM Nom de l'ordinateur : JÉRÉMY Informations de version : BUILD.DAT : 10.0.0.135 31823 Bytes 18/04/2011 14:35:00 AVSCAN.EXE : 10.0.4.2 442024 Bytes 17/06/2011 10:51:13 AVSCAN.DLL : 10.0.3.0 56168 Bytes 17/08/2010 11:39:10 LUKE.DLL : 10.0.3.2 104296 Bytes 19/06/2004 00:26:11 LUKERES.DLL : 10.0.0.0 13672 Bytes 17/08/2010 11:39:11 VBASE000.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 08:05:36 VBASE001.VDF : 7.11.0.0 13342208 Bytes 14/12/2010 00:25:41 VBASE002.VDF : 7.11.3.0 1950720 Bytes 09/02/2011 19:54:09 VBASE003.VDF : 7.11.5.225 1980416 Bytes 07/04/2011 10:51:08 VBASE004.VDF : 7.11.8.178 2354176 Bytes 31/05/2011 10:51:08 VBASE005.VDF : 7.11.10.251 1788416 Bytes 07/07/2011 02:29:03 VBASE006.VDF : 7.11.10.252 2048 Bytes 07/07/2011 02:29:03 VBASE007.VDF : 7.11.10.253 2048 Bytes 07/07/2011 02:29:03 VBASE008.VDF : 7.11.10.254 2048 Bytes 07/07/2011 02:29:03 VBASE009.VDF : 7.11.10.255 2048 Bytes 07/07/2011 02:29:03 VBASE010.VDF : 7.11.11.0 2048 Bytes 07/07/2011 02:29:03 VBASE011.VDF : 7.11.11.1 2048 Bytes 07/07/2011 02:29:03 VBASE012.VDF : 7.11.11.2 2048 Bytes 07/07/2011 02:29:03 VBASE013.VDF : 7.11.11.75 688128 Bytes 12/07/2011 20:36:02 VBASE014.VDF : 7.11.11.104 978944 Bytes 13/07/2011 03:02:07 VBASE015.VDF : 7.11.11.105 2048 Bytes 13/07/2011 03:02:07 VBASE016.VDF : 7.11.11.106 2048 Bytes 13/07/2011 03:02:07 VBASE017.VDF : 7.11.11.107 2048 Bytes 13/07/2011 03:02:07 VBASE018.VDF : 7.11.11.108 2048 Bytes 13/07/2011 03:02:07 VBASE019.VDF : 7.11.11.109 2048 Bytes 13/07/2011 03:02:07 VBASE020.VDF : 7.11.11.110 2048 Bytes 13/07/2011 03:02:07 VBASE021.VDF : 7.11.11.111 2048 Bytes 13/07/2011 03:02:08 VBASE022.VDF : 7.11.11.112 2048 Bytes 13/07/2011 03:02:08 VBASE023.VDF : 7.11.11.113 2048 Bytes 13/07/2011 03:02:08 VBASE024.VDF : 7.11.11.114 2048 Bytes 13/07/2011 03:02:08 VBASE025.VDF : 7.11.11.115 2048 Bytes 13/07/2011 03:02:08 VBASE026.VDF : 7.11.11.116 2048 Bytes 13/07/2011 03:02:08 VBASE027.VDF : 7.11.11.117 2048 Bytes 13/07/2011 03:02:08 VBASE028.VDF : 7.11.11.118 2048 Bytes 13/07/2011 03:02:08 VBASE029.VDF : 7.11.11.119 2048 Bytes 13/07/2011 03:02:08 VBASE030.VDF : 7.11.11.120 2048 Bytes 13/07/2011 03:02:08 VBASE031.VDF : 7.11.11.125 11776 Bytes 13/07/2011 03:02:08 Version du moteur : 8.2.6.6 AEVDF.DLL : 8.1.2.1 106868 Bytes 17/08/2010 11:38:53 AESCRIPT.DLL : 8.1.3.69 1614203 Bytes 17/06/2011 10:51:12 AESCN.DLL : 8.1.7.2 127349 Bytes 24/11/2010 18:42:09 AESBX.DLL : 8.2.1.34 323957 Bytes 17/06/2011 10:51:12 AERDL.DLL : 8.1.9.12 639348 Bytes 17/06/2011 10:51:11 AEPACK.DLL : 8.2.6.10 557430 Bytes 10/07/2011 02:29:08 AEOFFICE.DLL : 8.1.2.9 196985 Bytes 10/07/2011 02:29:07 AEHEUR.DLL : 8.1.2.138 3596663 Bytes 10/07/2011 02:29:06 AEHELP.DLL : 8.1.17.3 246134 Bytes 10/07/2011 02:29:04 AEGEN.DLL : 8.1.5.6 401780 Bytes 17/06/2011 10:51:09 AEEMU.DLL : 8.1.3.0 393589 Bytes 24/11/2010 18:42:05 AECORE.DLL : 8.1.21.1 196983 Bytes 17/06/2011 10:51:09 AEBB.DLL : 8.1.1.0 53618 Bytes 17/08/2010 11:38:45 AVWINLL.DLL : 10.0.0.0 19304 Bytes 17/08/2010 11:38:56 AVPREF.DLL : 10.0.0.0 44904 Bytes 17/08/2010 11:38:55 AVREP.DLL : 10.0.0.10 174120 Bytes 17/06/2011 10:51:13 AVREG.DLL : 10.0.3.2 53096 Bytes 17/08/2010 11:38:56 AVSCPLR.DLL : 10.0.4.2 84840 Bytes 17/06/2011 10:51:13 AVARKT.DLL : 10.0.22.6 231784 Bytes 19/06/2004 00:26:07 AVEVTLOG.DLL : 10.0.0.8 203112 Bytes 17/08/2010 11:38:55 SQLITE3.DLL : 3.6.19.0 355688 Bytes 17/06/2010 13:28:02 AVSMTP.DLL : 10.0.0.17 63848 Bytes 17/08/2010 11:38:56 NETNT.DLL : 10.0.0.0 11624 Bytes 17/06/2010 13:28:01 RCIMAGE.DLL : 10.0.0.26 2550120 Bytes 10/02/2010 23:23:03 RCTEXT.DLL : 10.0.58.0 99688 Bytes 17/08/2010 11:39:11 Configuration pour la recherche actuelle : Nom de la tâche...............................: Contrôle intégral du système Fichier de configuration......................: c:\program files\avira\antivir desktop\sysscan.avp Documentation.................................: bas Action principale.............................: interactif Action secondaire.............................: ignorer Recherche sur les secteurs d'amorçage maître..: marche Recherche sur les secteurs d'amorçage.........: marche Secteurs d'amorçage...........................: C:, Recherche dans les programmes actifs..........: marche Programmes en cours étendus...................: marche Recherche en cours sur l'enregistrement.......: marche Recherche de Rootkits.........................: marche Contrôle d'intégrité de fichiers système......: arrêt Fichier mode de recherche.....................: Tous les fichiers Recherche sur les archives....................: marche Limiter la profondeur de récursivité..........: 20 Archive Smart Extensions......................: marche Heuristique de macrovirus.....................: marche Heuristique fichier...........................: moyen Début de la recherche : mercredi 13 juillet 2011 20:50 La recherche d'objets cachés commence. c:\program files\synaptics\syntp\syntplpr.exe c:\program files\synaptics\syntp\syntplpr.exe [REMARQUE] Le processus n'est pas visible. La recherche sur les processus démarrés commence : Processus de recherche 'rsmsink.exe' - '29' module(s) sont contrôlés Processus de recherche 'plugin-container.exe' - '64' module(s) sont contrôlés Processus de recherche 'firefox.exe' - '92' module(s) sont contrôlés Processus de recherche 'msdtc.exe' - '40' module(s) sont contrôlés Processus de recherche 'dllhost.exe' - '63' module(s) sont contrôlés Processus de recherche 'dllhost.exe' - '45' module(s) sont contrôlés Processus de recherche 'vssvc.exe' - '48' module(s) sont contrôlés Processus de recherche 'avscan.exe' - '67' module(s) sont contrôlés Processus de recherche 'avcenter.exe' - '63' module(s) sont contrôlés Processus de recherche 'wuauclt.exe' - '37' module(s) sont contrôlés Processus de recherche 'alg.exe' - '33' module(s) sont contrôlés Processus de recherche 'iPodService.exe' - '30' module(s) sont contrôlés Processus de recherche 'BTTray.exe' - '40' module(s) sont contrôlés Processus de recherche 'Skype.exe' - '85' module(s) sont contrôlés Processus de recherche 'msmsgs.exe' - '43' module(s) sont contrôlés Processus de recherche 'ctfmon.exe' - '26' module(s) sont contrôlés Processus de recherche 'tvnserver.exe' - '27' module(s) sont contrôlés Processus de recherche 'iTunesHelper.exe' - '70' module(s) sont contrôlés Processus de recherche 'AdobeARM.exe' - '41' module(s) sont contrôlés Processus de recherche 'wmiprvse.exe' - '41' module(s) sont contrôlés Processus de recherche 'avgnt.exe' - '51' module(s) sont contrôlés Processus de recherche 'atiptaxx.exe' - '34' module(s) sont contrôlés Processus de recherche 'EOUWiz.exe' - '47' module(s) sont contrôlés Processus de recherche 'ifrmewrk.exe' - '50' module(s) sont contrôlés Processus de recherche 'WlanUtil.exe' - '42' module(s) sont contrôlés Processus de recherche 'SynTPEnh.exe' - '27' module(s) sont contrôlés Processus de recherche 'SynTPLpr.exe' - '20' module(s) sont contrôlés Processus de recherche 'rundll32.exe' - '34' module(s) sont contrôlés Processus de recherche 'tvnserver.exe' - '33' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '38' module(s) sont contrôlés Processus de recherche 'RegSrvc.exe' - '21' module(s) sont contrôlés Processus de recherche 'OProtSvc.exe' - '30' module(s) sont contrôlés Processus de recherche 'jqs.exe' - '33' module(s) sont contrôlés Processus de recherche 'btwdins.exe' - '17' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '34' module(s) sont contrôlés Processus de recherche 'mDNSResponder.exe' - '33' module(s) sont contrôlés Processus de recherche 'Explorer.EXE' - '94' module(s) sont contrôlés Processus de recherche 'Ati2evxx.exe' - '15' module(s) sont contrôlés Processus de recherche 'avshadow.exe' - '26' module(s) sont contrôlés Processus de recherche 'AppleMobileDeviceService.exe' - '45' module(s) sont contrôlés Processus de recherche 'avguard.exe' - '57' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '66' module(s) sont contrôlés Processus de recherche 'ZcfgSvc.exe' - '50' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '34' module(s) sont contrôlés Processus de recherche 'sched.exe' - '45' module(s) sont contrôlés Processus de recherche 'spoolsv.exe' - '64' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '38' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '32' module(s) sont contrôlés Processus de recherche 'S24EvMon.exe' - '38' module(s) sont contrôlés Processus de recherche 'EvtEng.exe' - '55' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '183' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '43' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '51' module(s) sont contrôlés Processus de recherche 'Ati2evxx.exe' - '14' module(s) sont contrôlés Processus de recherche 'lsass.exe' - '59' module(s) sont contrôlés Processus de recherche 'services.exe' - '27' module(s) sont contrôlés Processus de recherche 'winlogon.exe' - '68' module(s) sont contrôlés Processus de recherche 'csrss.exe' - '12' module(s) sont contrôlés Processus de recherche 'smss.exe' - '2' module(s) sont contrôlés La recherche sur les secteurs d'amorçage maître commence : Secteur d'amorçage maître HD0 [iNFO] Aucun virus trouvé ! La recherche sur les secteurs d'amorçage commence : Secteur d'amorçage 'C:\' [iNFO] Aucun virus trouvé ! La recherche sur les renvois aux fichiers exécutables (registre) commence : Le registre a été contrôlé ( '1682' fichiers). La recherche sur les fichiers sélectionnés commence : Recherche débutant dans 'C:\' <ACER> C:\System Volume Information\_restore{5D1E069D-5E7A-4E11-942F-D57861EF6567}\RP153\A0028275.exe [RESULTAT] Contient le cheval de Troie TR/Agent.100864 Début de la désinfection : C:\System Volume Information\_restore{5D1E069D-5E7A-4E11-942F-D57861EF6567}\RP153\A0028275.exe [RESULTAT] Contient le cheval de Troie TR/Agent.100864 [REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '44e58e93.qua' ! Fin de la recherche : jeudi 14 juillet 2011 01:27 Temps nécessaire: 2:43:46 Heure(s) La recherche a été effectuée intégralement 19112 Les répertoires ont été contrôlés 719445 Des fichiers ont été contrôlés 1 Des virus ou programmes indésirables ont été trouvés 0 Des fichiers ont été classés comme suspects 0 Des fichiers ont été supprimés 0 Des virus ou programmes indésirables ont été réparés 1 Les fichiers ont été déplacés dans la quarantaine 0 Les fichiers ont été renommés 0 Impossible de scanner des fichiers 719444 Fichiers non infectés 10133 Les archives ont été contrôlées 0 Avertissements 2 Consignes 518711 Des objets ont été contrôlés lors du Rootkitscan 1 Des objets cachés ont été trouvés
  5. grem
    Oui merci, ca à l'air d'aller mieux. Je ne sais pas s'il reste des choses à nettoyer. En tout cas, il faut effectivement que j'arrête de faire n'importe quoi avec mon pc Rapport de ZHPDiag v1.27.2405 par Nicolas Coolman, Update du 08/07/2011 Run by Saskia at 13/07/2011 03:09:32 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v8.0.6001.18702 MFIE: Mozilla Firefox v (Defaut) GCIE: Google Chrome v12.0.742.112 ---\\ System Information Windows XP Professional Service Pack 3 (Build 2600) Processor: x86 Family 6 Model 13 Stepping 8, GenuineIntel Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 1022 MB (39% free) System Restore: Activé (Enable) System drive C: has 21 GB (28%) free of 75 GB ---\\ Logged in mode Computer Name: JÉRÉMY User Name: Saskia All Users Names: SUPPORT_388945a0, Saskia, HelpAssistant, Guest, ASPNET, Administrator, Unselected Option: None Logged in as Administrator ---\\ Environnement Variables ~ %AppData%=C:\Documents and Settings\Saskia\Application Data\ ~ %Desktop%=C:\Documents and Settings\Saskia\Desktop\ ~ %Favorites%=C:\Documents and Settings\Saskia\Favorites\ ~ %LocalAppData%=C:\Documents and Settings\Saskia\Local Settings\Application Data\ ~ %StartMenu%=C:\Documents and Settings\Saskia\Start Menu\ ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 21 Go of 75 Go) D:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK ---\\ Recherche particulière de fichiers génériques [MD5.2BB75B7F548D82A099125D0C5971DE7D] - (.Microsoft Corporation - Windows Explorer.) (.13/07/2011 - 12:38:24.) -- C:\WINDOWS\Explorer.exe [1033728] [MD5.CC951C2212A200475A587A440E0AA804] - (.Microsoft Corporation - Internet Extensions for Win32.) (.13/07/2011 - 17:11:12.) -- C:\WINDOWS\system32\wininet.dll [916480] [MD5.D1BAC55BC35A0CA735AEA19F609F2B22] - (.Microsoft Corporation - Windows NT Logon Application.) (.13/07/2011 - 14:33:54.) -- C:\WINDOWS\system32\Winlogon.exe [507904] [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/07/2011 - 23:10:32.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512] [MD5.A0857C97770034FD2AF17DC4014B5ABD] - (.Microsoft Corporation - NT File System Driver.) (.13/07/2011 - 14:45:52.) -- C:\WINDOWS\system32\drivers\ntfs.sys [576384] ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 2/23 ~ Mes musiques (My Musics) : 36/2636 ~ Mes Favoris (My Favorites) : 2/11 ~ Mes Documents (My Documents) : 170/9878 ~ Mon Bureau (My Desktop) : 9/1503 ~ Menu demarrer (Programs) : 4/30 ---\\ Processus lancés [MD5.127E07D34B44438442A0E81AE7F093C0] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [425984] [MD5.5AE75738B957C2064566007487D973B6] - (.Intel Corporation - EvtEng Module.) -- C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [86016] [MD5.215DEEE103618F102263C8ECF4B8413E] - (.Intel Corporation - Event Monitor - Supports driver extensions.) -- C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [360521] [MD5.A5BCBAF0477C4869B67E0195AEA4A9CD] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [136360] [MD5.1CF3866E09FFE13CF280D4DDFA9F7DCF] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [269480] [MD5.018857EAD9A077A56AEDFC0E5EF7A24A] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664] [MD5.2F73148CFD930B641D860710931FE8C7] - (.Intel Corporation - ZeroCfgSvc MFC Application.) -- C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe [389120] [MD5.CDE000884FD7BAF0C1FDFE029B0891DE] - (.Avira GmbH - AntiVir shadow copy service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76968] [MD5.F832F1505AD8B83474BD9A5B1B985E01] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [345376] [MD5.05D21AD56EA309597864393D3D4A14F7] - (.WIDCOMM, Inc. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [163840] [MD5.1834C96FB1F9280BCF6DDFA6DE8338BF] - (.Sun Microsystems, Inc. - Java Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376] [MD5.F57524C6764E96FC29AC64394282EB36] - (.Intel Corporation - Ownership protocol service.) -- C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe [98304] [MD5.A7EEBA958CFCCADBD4F47C3CDB51C714] - (.Intel Corporation - RegSrvc Module.) -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [139264] [MD5.037B1E7798960E0420003D05BB577EE6] - (...) -- C:\WINDOWS\system32\rundll32.exe [33280] [MD5.3665BA88B993554DB062FF96542D85FF] - (.Synaptics, Inc. - TouchPad Driver Helper Application.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [98394] [MD5.55582F239914C8EFCCF89BD632639542] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [688218] [MD5.00EE4D43383C6162744C18626FEA96F9] - (.INPROCOMM - Wireless LAN Configuration Utility.) -- C:\Program Files\acer\Wireless\Utility\WlanUtil.exe [417792] [MD5.0E237B85A4FF082CAECFBF4804A29F3C] - (.Intel Corporation - Intel Framework MFC Application.) -- C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [385024] [MD5.1AFE29C82ED39A48FEC9E747B356C87C] - (.Intel Corporation - Ease Of Use Wizard Application.) -- C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe [356352] [MD5.F7364F9AF03F4F01856804C28B459FEB] - (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064] [MD5.9D5E8B45BD348DF0882C69EED0E83111] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [281768] [MD5.BAD6BEA0DE1F69C82BDB74378CE0C20A] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288] [MD5.2DFCB2393528446AEB9FB861A8FC39AB] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160] [MD5.3E930C641079443D4DE036167A69CAA2] - (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe [1695232] [MD5.70B6D0C45256B688B7DBC10E922FB402] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [26192168] [MD5.97CF3EC1582005C2D354B708F0960B63] - (.WIDCOMM, Inc. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [565309] [MD5.0CA8C2E721617AA2F923A8151C96FB33] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [820008] [MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53472] [MD5.5FE2221EC55549B52427BF37E9173E47] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [656384] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Documents and Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\prefs.js M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll P2 - FPN:Firefox Plugin Navigator . (.CambridgeSoft Corp. - ChemDraw Pro Plugin 8.0.) -- C:\Program Files\Mozilla Firefox\Plugins\npcdp32.dll P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.1".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll P2 - FPN:Firefox Plugin Navigator . (.Pas de propriétaire - SciFinder Application Plugin for Mozilla.) -- C:\Program Files\Mozilla Firefox\Plugins\npSfAppM.dll P2 - FPN:Firefox Plugin Navigator . (.CNN - NPTURNMED.) -- C:\Program Files\Mozilla Firefox\Plugins\NPTURNMED.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Documents and Settings\Saskia\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences G0 - GCSP: Preference [user Data\Default][HomePage] Google ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Microsoft Corporation R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.19072 (longhorn_ie8_gdr.110420-1700)) -- C:\WINDOWS\system32\ieframe.dll ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: SciFinder Scholar Bar - {4e16a8fb-0521-46d1-aa2c-d0fc7abf6af9} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] bthprops.cpl O4 - HKLM\..\Run: [KTPWare] . (.ELANTECH Devices Corp. - KTP Ware TSR Enhancements.) -- C:\Program Files\Elantech\ktp.exe O4 - HKLM\..\Run: [synTPLpr] . (.Synaptics, Inc. - TouchPad Driver Helper Application.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [acerWireless] . (.INPROCOMM - Wireless LAN Configuration Utility.) -- C:\Program Files\acer\Wireless\Utility\WlanUtil.exe O4 - HKLM\..\Run: [intelWireless] . (.Intel Corporation - Intel Framework MFC Application.) -- C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe O4 - HKLM\..\Run: [EOUApp] . (.Intel Corporation - Ease Of Use Wizard Application.) -- C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe O4 - HKLM\..\Run: [ATIPTA] . (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe O4 - HKLM\..\Run: [switchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe O4 - HKLM\..\Run: [tvncontrol] . (.GlavSoft LLC. - TightVNC Server for Windows.) -- C:\Program Files\TightVNC\tvnserver.exe O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe O4 - HKCU\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe After Effects CS3.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe After Effects CS3\Support Files\AfterFX.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Bridge CS3.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Adobe\Adobe Bridge CS3\Bridge.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Device Central CS3.lnk . (.Adobe Systems.) -- C:\Program Files\Adobe\Adobe Device Central CS3\DeviceCentral.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe ExtendScript Toolkit 2.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Utilities\ExtendScript Toolkit 2\ExtendScript Toolkit 2.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop CS3.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Photoshop CS3\Photoshop.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop Lightroom 2.4.lnk . (.Adobe Systems.) -- C:\Program Files\Adobe\Adobe Photoshop Lightroom 2.4\lightroom.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Premiere Pro CS3.lnk . (...) -- C:\Program Files\Adobe\Adobe Premiere Pro CS3\Adobe Premiere Pro.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 6.0.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1033-7B44-000000000001}\SC_Reader_PM.ico (.not file.) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Stock Photos CS3.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe Stock Photos CS3\Adobe Stock Photos CS3.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\AppleSoftwareUpdateIco.exe (.not file.) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\PC Inspector smart recovery.lnk . (.Convar Deutschland GmbH.) -- C:\Program Files\Convar\SmartRecovery\SMR.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Yahoo! Mail.lnk . (...) -- C:\WINDOWS\system32\RUNDLL32.EXE O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\AD-R.lnk . (...) -- C:\Program Files\Ad-Remover\main.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\ChemDraw Ultra 8.0.lnk . (...) -- C:\Program Files\CambridgeSoft\ChemOffice2004\ChemDraw\ChemDraw.exe (.not file.) O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\eBay Sidebar pour Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\JDownloader.lnk . (.AppWork UG (haftungsbeschränkt).) -- C:\Program Files\JDownloader\JDownloader.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Microsoft Office Word 2007.lnk . (...) -- C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Pixia 4.3a FR.lnk . (...) -- C:\Program Files\Pixia 4.3a FR\pixia.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Shortcut to EndNote.lnk . (.Thomson ResearchSoft.) -- C:\Program Files\EndNote 9\EndNote.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Shortcut to ZHPFix.lnk . (.Nicolas Coolman.) -- C:\Program Files\ZHPDiag\ZHPFix.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\TeXnicCenter.lnk . (.TeXnicCenter.org (www.TeXnicCenter.org).) -- C:\Program Files\TeXnicCenter\TEXCNTR.EXE O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\XnView.lnk . (.XnView, http://www.xnview.com.) -- C:\Program Files\XnView\xnview.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\Office12\EXCEL.exe O8 - Extra context menu item: Send To &Bluetooth . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico O9 - Extra button: Skype add-on for Internet Explorer - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (...) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Client Service for NetWare Provider and Authentication Package DLL.) -- C:\WINDOWS\system32\nwprovau.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{19A8B5E0-A772-4CEA-B80A-AF76F33DB28D}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CS1\Services\Tcpip\..\{19A8B5E0-A772-4CEA-B80A-AF76F33DB28D}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CS2\Services\Tcpip\..\{19A8B5E0-A772-4CEA-B80A-AF76F33DB28D}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2 ---\\ Protocole additionnel et piratage de protocole (O18) O18 - Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Handler: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} . (.WIDCOMM, Inc. - BTXPPanel Module.) -- C:\WINDOWS\system32\btxppanel.dll ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\Windows\System32\Ati2evxx.dll O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Offline Network Agent.) -- C:\Windows\System32\cscdll.dll O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll O20 - Winlogon Notify: IntelWireless . (.Intel Corporation - LogonNotify DLL.) -- C:\Program Files\Intel\Wireless\Bin\LgNotify.dll O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - Secondary Logon Service Notification DLL.) -- C:\Windows\System32\sclgntfy.dll O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\WlNotify.dll O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Systray shell service object.) -- C:\WINDOWS\system32\stobject.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Bluetooth Service (btwdins) . (.WIDCOMM, Inc. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: EvtEng (EvtEng) . (.Intel Corporation - EvtEng Module.) - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: Service Google Update (gupdate1cb095d934d6ec8) (gupdate1cb095d934d6ec8) . (.Google Inc. - Google Installer.) - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: OwnershipProtocol (OwnershipProtocol) . (.Intel Corporation - Ownership protocol service.) - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe O23 - Service: RegSrvc (RegSrvc) . (.Intel Corporation - RegSrvc Module.) - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) . (.Intel Corporation - Event Monitor - Supports driver extensions.) - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: TightVNC Server (tvnserver) . (.GlavSoft LLC. - TightVNC Server for Windows.) - C:\Program Files\TightVNC\tvnserver.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Desktop Component 0: My Current Home Page - file:About:Home O24 - Default MHTML Editor: Last - .(...) - (.not file.) ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [MD5.187E0D2AB859AD03393DDD731076BE81] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\WINDOWS\System32\DRIVERS\avipbb.sys O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\System32\DRIVERS\cdrom.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - i8042 Port Driver.) - C:\WINDOWS\System32\DRIVERS\i8042prt.sys O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\System32\DRIVERS\imapi.sys O41 - Driver: (intelppm) . (.Microsoft Corporation - Processor Device Driver.) - C:\WINDOWS\System32\DRIVERS\intelppm.sys O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\System32\DRIVERS\ipsec.sys O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Keyboard Class Driver.) - C:\WINDOWS\System32\DRIVERS\kbdclass.sys O41 - Driver: (kbdhid) . (.Microsoft Corporation - HID Mouse Filter Driver.) - C:\WINDOWS\System32\DRIVERS\kbdhid.sys O41 - Driver: (Mouclass) . (.Microsoft Corporation - Mouse Class Driver.) - C:\WINDOWS\System32\DRIVERS\mouclass.sys O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\System32\DRIVERS\mrxsmb.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\System32\DRIVERS\netbios.sys O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\System32\DRIVERS\netbt.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\System32\DRIVERS\rasacd.sys O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys O41 - Driver: (redbook) . (.Microsoft Corporation - Redbook Audio Filter Driver.) - C:\WINDOWS\System32\DRIVERS\redbook.sys O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\WINDOWS\System32\DRIVERS\ssmdrv.sys O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\System32\DRIVERS\tcpip.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys ---\\ Logiciels installés (O42) O42 - Logiciel: ATI - Utilitaire de désinstallation du logiciel - (.Pas de propriétaire.) [HKLM] -- All ATI Software O42 - Logiciel: ATI Control Panel - (.Pas de propriétaire.) [HKLM] -- {0BEDBD4E-2D34-47B5-9973-57E62B29307C} O42 - Logiciel: ATI Display Driver - (.Pas de propriétaire.) [HKLM] -- ATI Display Driver O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723} O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7} O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Photoshop CS5 - (.Adobe Systems Incorporated.) [HKLM] -- {15FEDA5F-141C-4127-8D7E-B962D1742728} O42 - Logiciel: Adobe Reader 9.4.1 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001} O42 - Logiciel: Akamai NetSession Interface - (.Pas de propriétaire.) [HKLM] -- Akamai O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {308B6AEA-DE50-4666-996D-0FA461719D6B} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1} O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {2A981294-F14C-4F0F-9627-D793270922F8} O42 - Logiciel: Broadcom 440x 10/100 Integrated Controller - (.Broadcom.) [HKLM] -- InstallShield_{52504CE6-E909-4113-B232-4AFEC6543A61} O42 - Logiciel: Broadcom Gigabit Integrated Controller - (.Nom de votre société.) [HKLM] -- {B7F54262-AB66-44B3-88BF-9FC69941B643} O42 - Logiciel: ChemOffice Ultra 2004 - (.CambridgeSoft Corporation.) [HKLM] -- {5A33744D-33F5-451A-9CB0-2FE49EE3809C} O42 - Logiciel: Conexant AC-Link Audio - (.Pas de propriétaire.) [HKLM] -- Conexant PCI Audio O42 - Logiciel: EndNote 9 Volume License Edition - (.Thomson ResearchSoft.) [HKLM] -- {53C020C2-8C1A-11D9-8BDE-F66BAD1E3F3A} O42 - Logiciel: FreeCompressor - (.Secure Digital Services.) [HKLM] -- {1EF93620-4B15-4DB4-B0EA-889E2F187081} O42 - Logiciel: GPL Ghostscript 8.61 - (.Pas de propriétaire.) [HKLM] -- GPL Ghostscript 8.61 O42 - Logiciel: GPL Ghostscript Fonts - (.Pas de propriétaire.) [HKLM] -- GPL Ghostscript Fonts O42 - Logiciel: GSview 4.9 - (.Pas de propriétaire.) [HKLM] -- GSview 4.9 O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM] -- {A9F6CFB0-806D-11E0-8EA1-B8AC6F97B88E} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595 O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484 O42 - Logiciel: Hotfix for Windows XP (KB2158563) - (.Microsoft Corporation.) [HKLM] -- KB2158563 O42 - Logiciel: Hotfix for Windows XP (KB2443685) - (.Microsoft Corporation.) [HKLM] -- KB2443685 O42 - Logiciel: Hotfix for Windows XP (KB942766-v6) - (.Microsoft Corporation.) [HKLM] -- KB942766-v6 O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5 O42 - Logiciel: Hotfix for Windows XP (KB961118) - (.Microsoft Corporation.) [HKLM] -- KB961118 O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5 O42 - Logiciel: Hotfix for Windows XP (KB981793) - (.Microsoft Corporation.) [HKLM] -- KB981793 O42 - Logiciel: ISI ResearchSoft - Export Helper - (.Pas de propriétaire.) [HKLM] -- ISI ResearchSoft - Export Helper O42 - Logiciel: Intel® PROSet/Wireless Software - (.Intel Corporation.) [HKLM] -- ProInst O42 - Logiciel: JDownloader - (.AppWork UG (haftungsbeschränkt).) [HKLM] -- JDownloader O42 - Logiciel: Java 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF} O42 - Logiciel: KTP Ware PS/2-WDM 5.0.1.8 - (.Pas de propriétaire.) [HKLM] -- Elantech O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver O42 - Logiciel: MSN - (.Pas de propriétaire.) [HKLM] -- MSNINST O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- MSXML 4.0 SP2 (KB941833) O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- {C523D256-313D-4866-B36A-F3DE528246EF} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.0.1200 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: MiKTeX 2.8 - (.MiKTeX.org.) [HKLM] -- MiKTeX 2.8 O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033) O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447 O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906 O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1 O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- Microsoft Silverlight O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F} O42 - Logiciel: Microsoft_VC80_ATL_x86 - (.Adobe.) [HKLM] -- {0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25} O42 - Logiciel: Microsoft_VC80_CRT_x86 - (.Adobe.) [HKLM] -- {92D58719-BBC1-4CC3-A08B-56C9E884CC2C} O42 - Logiciel: Microsoft_VC80_MFCLOC_x86 - (.Adobe.) [HKLM] -- {D92BBB52-82FF-42ED-8A3C-4E062F944AB7} O42 - Logiciel: Microsoft_VC80_MFC_x86 - (.Adobe.) [HKLM] -- {D1A19B02-817E-4296-A45B-07853FD74D57} O42 - Logiciel: Microsoft_VC90_ATL_x86 - (.Adobe.) [HKLM] -- {033E378E-6AD3-4AD5-BDEB-CBD69B31046C} O42 - Logiciel: Microsoft_VC90_CRT_x86 - (.Adobe.) [HKLM] -- {08D2E121-7F6A-43EB-97FD-629B44903403} O42 - Logiciel: Microsoft_VC90_MFC_x86 - (.Adobe.) [HKLM] -- {635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A} O42 - Logiciel: Mozilla Firefox (3.6.18) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.18) O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM] -- {4EE2EF4B-25D3-4D44-8384-A2B96F811F55} O42 - Logiciel: OriginPro 8G - (.OriginLab Corporation.) [HKLM] -- {A912021A-FEDD-4DA3-8DB4-245EBDA84778} O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392} O42 - Logiciel: Pixia 4.3a FR - (.Pas de propriétaire.) [HKCU] -- Pixia 4.3a FR O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {E7004147-2CCA-431C-AA05-2AB166B9785D} O42 - Logiciel: SciFinder Scholar 2007 - (.Pas de propriétaire.) [HKLM] -- {12377A05-0062-47F9-9CB9-AAAF8C22D645} O42 - Logiciel: SciFinder Scholar Toolbar - (.Pas de propriétaire.) [HKLM] -- {455F9ACD-4967-446B-9174-8C87EA895F2A} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5C497F0B-2061-4CC9-A61C-6B45B867354D} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD769337-C8AC-46DB-A7DC-643E50089263} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{536FB502-775F-4494-BACE-C02CC90B7A5B} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2509488) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{AD0DE453-0804-4495-9C91-33D0F9AA5463} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473 O42 - Logiciel: Security Update for Microsoft Office 2007 System (KB2541012) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD907315-705A-4475-A1A0-2A1245803E4D} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5A4E43D5-858F-49BD-BA72-8F30E1793060} O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2541007) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{A0173254-F442-4D04-9154-43FA157B83D0} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB2510061) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5D930261-AA5B-48D1-931F-425C9D767490} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1} O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062} O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3A4CDE54-2403-483D-8D9A-15E3264410DF} O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2183461) - (.Microsoft Corporation.) [HKLM] -- KB2183461-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2360131) - (.Microsoft Corporation.) [HKLM] -- KB2360131-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2482017) - (.Microsoft Corporation.) [HKLM] -- KB2482017-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2510531) - (.Microsoft Corporation.) [HKLM] -- KB2510531-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2530548) - (.Microsoft Corporation.) [HKLM] -- KB2530548-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2544521) - (.Microsoft Corporation.) [HKLM] -- KB2544521-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB971961) - (.Microsoft Corporation.) [HKLM] -- KB971961-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB981332) - (.Microsoft Corporation.) [HKLM] -- KB981332-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB982381) - (.Microsoft Corporation.) [HKLM] -- KB982381-IE8 O42 - Logiciel: Security Update for Windows Media Player (KB2378111) - (.Microsoft Corporation.) [HKLM] -- KB2378111_WM9 O42 - Logiciel: Security Update for Windows Media Player (KB952069) - (.Microsoft Corporation.) [HKLM] -- KB952069_WM9 O42 - Logiciel: Security Update for Windows Media Player (KB954155) - (.Microsoft Corporation.) [HKLM] -- KB954155_WM9 O42 - Logiciel: Security Update for Windows Media Player (KB968816) - (.Microsoft Corporation.) [HKLM] -- KB968816_WM9 O42 - Logiciel: Security Update for Windows Media Player (KB973540) - (.Microsoft Corporation.) [HKLM] -- KB973540_WM9 O42 - Logiciel: Security Update for Windows Media Player (KB975558) - (.Microsoft Corporation.) [HKLM] -- KB975558_WM8 O42 - Logiciel: Security Update for Windows Media Player (KB978695) - (.Microsoft Corporation.) [HKLM] -- KB978695_WM9 O42 - Logiciel: Security Update for Windows Media Player 11 (KB954154) - (.Microsoft Corporation.) [HKLM] -- KB954154_WM11 O42 - Logiciel: Security Update for Windows XP (KB2079403) - (.Microsoft Corporation.) [HKLM] -- KB2079403 O42 - Logiciel: Security Update for Windows XP (KB2115168) - (.Microsoft Corporation.) [HKLM] -- KB2115168 O42 - Logiciel: Security Update for Windows XP (KB2121546) - (.Microsoft Corporation.) [HKLM] -- KB2121546 O42 - Logiciel: Security Update for Windows XP (KB2160329) - (.Microsoft Corporation.) [HKLM] -- KB2160329 O42 - Logiciel: Security Update for Windows XP (KB2229593) - (.Microsoft Corporation.) [HKLM] -- KB2229593 O42 - Logiciel: Security Update for Windows XP (KB2259922) - (.Microsoft Corporation.) [HKLM] -- KB2259922 O42 - Logiciel: Security Update for Windows XP (KB2279986) - (.Microsoft Corporation.) [HKLM] -- KB2279986 O42 - Logiciel: Security Update for Windows XP (KB2286198) - (.Microsoft Corporation.) [HKLM] -- KB2286198 O42 - Logiciel: Security Update for Windows XP (KB2296011) - (.Microsoft Corporation.) [HKLM] -- KB2296011 O42 - Logiciel: Security Update for Windows XP (KB2296199) - (.Microsoft Corporation.) [HKLM] -- KB2296199 O42 - Logiciel: Security Update for Windows XP (KB2347290) - (.Microsoft Corporation.) [HKLM] -- KB2347290 O42 - Logiciel: Security Update for Windows XP (KB2360937) - (.Microsoft Corporation.) [HKLM] -- KB2360937 O42 - Logiciel: Security Update for Windows XP (KB2387149) - (.Microsoft Corporation.) [HKLM] -- KB2387149 O42 - Logiciel: Security Update for Windows XP (KB2393802) - (.Microsoft Corporation.) [HKLM] -- KB2393802 O42 - Logiciel: Security Update for Windows XP (KB2412687) - (.Microsoft Corporation.) [HKLM] -- KB2412687 O42 - Logiciel: Security Update for Windows XP (KB2419632) - (.Microsoft Corporation.) [HKLM] -- KB2419632 O42 - Logiciel: Security Update for Windows XP (KB2423089) - (.Microsoft Corporation.) [HKLM] -- KB2423089 O42 - Logiciel: Security Update for Windows XP (KB2436673) - (.Microsoft Corporation.) [HKLM] -- KB2436673 O42 - Logiciel: Security Update for Windows XP (KB2440591) - (.Microsoft Corporation.) [HKLM] -- KB2440591 O42 - Logiciel: Security Update for Windows XP (KB2443105) - (.Microsoft Corporation.) [HKLM] -- KB2443105 O42 - Logiciel: Security Update for Windows XP (KB2476490) - (.Microsoft Corporation.) [HKLM] -- KB2476490 O42 - Logiciel: Security Update for Windows XP (KB2476687) - (.Microsoft Corporation.) [HKLM] -- KB2476687 O42 - Logiciel: Security Update for Windows XP (KB2478960) - (.Microsoft Corporation.) [HKLM] -- KB2478960 O42 - Logiciel: Security Update for Windows XP (KB2478971) - (.Microsoft Corporation.) [HKLM] -- KB2478971 O42 - Logiciel: Security Update for Windows XP (KB2479628) - (.Microsoft Corporation.) [HKLM] -- KB2479628 O42 - Logiciel: Security Update for Windows XP (KB2479943) - (.Microsoft Corporation.) [HKLM] -- KB2479943 O42 - Logiciel: Security Update for Windows XP (KB2481109) - (.Microsoft Corporation.) [HKLM] -- KB2481109 O42 - Logiciel: Security Update for Windows XP (KB2483185) - (.Microsoft Corporation.) [HKLM] -- KB2483185 O42 - Logiciel: Security Update for Windows XP (KB2485376) - (.Microsoft Corporation.) [HKLM] -- KB2485376 O42 - Logiciel: Security Update for Windows XP (KB2485663) - (.Microsoft Corporation.) [HKLM] -- KB2485663 O42 - Logiciel: Security Update for Windows XP (KB2503665) - (.Microsoft Corporation.) [HKLM] -- KB2503665 O42 - Logiciel: Security Update for Windows XP (KB2506212) - (.Microsoft Corporation.) [HKLM] -- KB2506212 O42 - Logiciel: Security Update for Windows XP (KB2506223) - (.Microsoft Corporation.) [HKLM] -- KB2506223 O42 - Logiciel: Security Update for Windows XP (KB2507618) - (.Microsoft Corporation.) [HKLM] -- KB2507618 O42 - Logiciel: Security Update for Windows XP (KB2508272) - (.Microsoft Corporation.) [HKLM] -- KB2508272 O42 - Logiciel: Security Update for Windows XP (KB2508429) - (.Microsoft Corporation.) [HKLM] -- KB2508429 O42 - Logiciel: Security Update for Windows XP (KB2509553) - (.Microsoft Corporation.) [HKLM] -- KB2509553 O42 - Logiciel: Security Update for Windows XP (KB2524375) - (.Microsoft Corporation.) [HKLM] -- KB2524375 O42 - Logiciel: Security Update for Windows XP (KB2535512) - (.Microsoft Corporation.) [HKLM] -- KB2535512 O42 - Logiciel: Security Update for Windows XP (KB2536276) - (.Microsoft Corporation.) [HKLM] -- KB2536276 O42 - Logiciel: Security Update for Windows XP (KB2544893) - (.Microsoft Corporation.) [HKLM] -- KB2544893 O42 - Logiciel: Security Update for Windows XP (KB923561) - (.Microsoft Corporation.) [HKLM] -- KB923561 O42 - Logiciel: Security Update for Windows XP (KB952004) - (.Microsoft Corporation.) [HKLM] -- KB952004 O42 - Logiciel: Security Update for Windows XP (KB954459) - (.Microsoft Corporation.) [HKLM] -- KB954459 O42 - Logiciel: Security Update for Windows XP (KB955069) - (.Microsoft Corporation.) [HKLM] -- KB955069 O42 - Logiciel: Security Update for Windows XP (KB956572) - (.Microsoft Corporation.) [HKLM] -- KB956572 O42 - Logiciel: Security Update for Windows XP (KB956744) - (.Microsoft Corporation.) [HKLM] -- KB956744 O42 - Logiciel: Security Update for Windows XP (KB956802) - (.Microsoft Corporation.) [HKLM] -- KB956802 O42 - Logiciel: Security Update for Windows XP (KB956803) - (.Microsoft Corporation.) [HKLM] -- KB956803 O42 - Logiciel: Security Update for Windows XP (KB956844) - (.Microsoft Corporation.) [HKLM] -- KB956844 O42 - Logiciel: Security Update for Windows XP (KB958644) - (.Microsoft Corporation.) [HKLM] -- KB958644 O42 - Logiciel: Security Update for Windows XP (KB958869) - (.Microsoft Corporation.) [HKLM] -- KB958869 O42 - Logiciel: Security Update for Windows XP (KB959426) - (.Microsoft Corporation.) [HKLM] -- KB959426 O42 - Logiciel: Security Update for Windows XP (KB960225) - (.Microsoft Corporation.) [HKLM] -- KB960225 O42 - Logiciel: Security Update for Windows XP (KB960803) - (.Microsoft Corporation.) [HKLM] -- KB960803 O42 - Logiciel: Security Update for Windows XP (KB960859) - (.Microsoft Corporation.) [HKLM] -- KB960859 O42 - Logiciel: Security Update for Windows XP (KB961501) - (.Microsoft Corporation.) [HKLM] -- KB961501 O42 - Logiciel: Security Update for Windows XP (KB969059) - (.Microsoft Corporation.) [HKLM] -- KB969059 O42 - Logiciel: Security Update for Windows XP (KB969947) - (.Microsoft Corporation.) [HKLM] -- KB969947 O42 - Logiciel: Security Update for Windows XP (KB970238) - (.Microsoft Corporation.) [HKLM] -- KB970238 O42 - Logiciel: Security Update for Windows XP (KB970430) - (.Microsoft Corporation.) [HKLM] -- KB970430 O42 - Logiciel: Security Update for Windows XP (KB971468) - (.Microsoft Corporation.) [HKLM] -- KB971468 O42 - Logiciel: Security Update for Windows XP (KB971657) - (.Microsoft Corporation.) [HKLM] -- KB971657 O42 - Logiciel: Security Update for Windows XP (KB971961) - (.Microsoft Corporation.) [HKLM] -- KB971961 O42 - Logiciel: Security Update for Windows XP (KB972270) - (.Microsoft Corporation.) [HKLM] -- KB972270 O42 - Logiciel: Security Update for Windows XP (KB973507) - (.Microsoft Corporation.) [HKLM] -- KB973507 O42 - Logiciel: Security Update for Windows XP (KB973869) - (.Microsoft Corporation.) [HKLM] -- KB973869 O42 - Logiciel: Security Update for Windows XP (KB973904) - (.Microsoft Corporation.) [HKLM] -- KB973904 O42 - Logiciel: Security Update for Windows XP (KB974112) - (.Microsoft Corporation.) [HKLM] -- KB974112 O42 - Logiciel: Security Update for Windows XP (KB974318) - (.Microsoft Corporation.) [HKLM] -- KB974318 O42 - Logiciel: Security Update for Windows XP (KB974392) - (.Microsoft Corporation.) [HKLM] -- KB974392 O42 - Logiciel: Security Update for Windows XP (KB974571) - (.Microsoft Corporation.) [HKLM] -- KB974571 O42 - Logiciel: Security Update for Windows XP (KB975025) - (.Microsoft Corporation.) [HKLM] -- KB975025 O42 - Logiciel: Security Update for Windows XP (KB975467) - (.Microsoft Corporation.) [HKLM] -- KB975467 O42 - Logiciel: Security Update for Windows XP (KB975560) - (.Microsoft Corporation.) [HKLM] -- KB975560 O42 - Logiciel: Security Update for Windows XP (KB975561) - (.Microsoft Corporation.) [HKLM] -- KB975561 O42 - Logiciel: Security Update for Windows XP (KB975562) - (.Microsoft Corporation.) [HKLM] -- KB975562 O42 - Logiciel: Security Update for Windows XP (KB975713) - (.Microsoft Corporation.) [HKLM] -- KB975713 O42 - Logiciel: Security Update for Windows XP (KB977816) - (.Microsoft Corporation.) [HKLM] -- KB977816 O42 - Logiciel: Security Update for Windows XP (KB977914) - (.Microsoft Corporation.) [HKLM] -- KB977914 O42 - Logiciel: Security Update for Windows XP (KB978037) - (.Microsoft Corporation.) [HKLM] -- KB978037 O42 - Logiciel: Security Update for Windows XP (KB978262) - (.Microsoft Corporation.) [HKLM] -- KB978262 O42 - Logiciel: Security Update for Windows XP (KB978338) - (.Microsoft Corporation.) [HKLM] -- KB978338 O42 - Logiciel: Security Update for Windows XP (KB978542) - (.Microsoft Corporation.) [HKLM] -- KB978542 O42 - Logiciel: Security Update for Windows XP (KB978601) - (.Microsoft Corporation.) [HKLM] -- KB978601 O42 - Logiciel: Security Update for Windows XP (KB978706) - (.Microsoft Corporation.) [HKLM] -- KB978706 O42 - Logiciel: Security Update for Windows XP (KB979309) - (.Microsoft Corporation.) [HKLM] -- KB979309 O42 - Logiciel: Security Update for Windows XP (KB979482) - (.Microsoft Corporation.) [HKLM] -- KB979482 O42 - Logiciel: Security Update for Windows XP (KB979559) - (.Microsoft Corporation.) [HKLM] -- KB979559 O42 - Logiciel: Security Update for Windows XP (KB979683) - (.Microsoft Corporation.) [HKLM] -- KB979683 O42 - Logiciel: Security Update for Windows XP (KB979687) - (.Microsoft Corporation.) [HKLM] -- KB979687 O42 - Logiciel: Security Update for Windows XP (KB980195) - (.Microsoft Corporation.) [HKLM] -- KB980195 O42 - Logiciel: Security Update for Windows XP (KB980218) - (.Microsoft Corporation.) [HKLM] -- KB980218 O42 - Logiciel: Security Update for Windows XP (KB980232) - (.Microsoft Corporation.) [HKLM] -- KB980232 O42 - Logiciel: Security Update for Windows XP (KB980436) - (.Microsoft Corporation.) [HKLM] -- KB980436 O42 - Logiciel: Security Update for Windows XP (KB981322) - (.Microsoft Corporation.) [HKLM] -- KB981322 O42 - Logiciel: Security Update for Windows XP (KB981349) - (.Microsoft Corporation.) [HKLM] -- KB981349 O42 - Logiciel: Security Update for Windows XP (KB981852) - (.Microsoft Corporation.) [HKLM] -- KB981852 O42 - Logiciel: Security Update for Windows XP (KB981957) - (.Microsoft Corporation.) [HKLM] -- KB981957 O42 - Logiciel: Security Update for Windows XP (KB981997) - (.Microsoft Corporation.) [HKLM] -- KB981997 O42 - Logiciel: Security Update for Windows XP (KB982132) - (.Microsoft Corporation.) [HKLM] -- KB982132 O42 - Logiciel: Security Update for Windows XP (KB982214) - (.Microsoft Corporation.) [HKLM] -- KB982214 O42 - Logiciel: Security Update for Windows XP (KB982665) - (.Microsoft Corporation.) [HKLM] -- KB982665 O42 - Logiciel: Security Update for Windows XP (KB982802) - (.Microsoft Corporation.) [HKLM] -- KB982802 O42 - Logiciel: Skype Toolbars - (.Skype Technologies S.A..) [HKLM] -- {981029E0-7FC9-4CF3-AB39-6F133621921A} O42 - Logiciel: Skype™ 4.2 - (.Skype Technologies S.A..) [HKLM] -- {D103C4BA-F905-437A-8049-DB24763BBE36} O42 - Logiciel: SoftV92 Data Fax Modem with SmartCP - (.Pas de propriétaire.) [HKLM] -- CNXT_MODEM_PCI_VEN_8086&DEV_266D&SUBSYS_00661025 O42 - Logiciel: Synaptics Pointing Device Driver - (.Pas de propriétaire.) [HKLM] -- SynTPDeinstKey O42 - Logiciel: TeXnicCenter Version 1 Beta 7.01 (Greengrass) - (.TeXnicCenter.org.) [HKLM] -- TeXnicCenter_is1 O42 - Logiciel: Texas Instruments PCIxx21/x515 drivers. - (.Texas Instruments Inc..) [HKLM] -- InstallShield_{E7A744FD-E1B8-4FF6-ADC1-EA4C32181457} O42 - Logiciel: TightVNC 2.0.3 - (.GlavSoft LLC..) [HKLM] -- TightVNC O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707 O42 - Logiciel: Update for Microsoft Office 2007 System (KB2539530) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4} O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2509470) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1365864D-4C58-489D-9982-844D75691CCC} O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2536413) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{95DF5260-331D-4FFD-A2D5-C64164751945} O42 - Logiciel: Update for Windows Internet Explorer 7 (KB980182) - (.Microsoft Corporation.) [HKLM] -- KB980182-IE7 O42 - Logiciel: Update for Windows Internet Explorer 8 (KB976662) - (.Microsoft Corporation.) [HKLM] -- KB976662-IE8 O42 - Logiciel: Update for Windows Internet Explorer 8 (KB980182) - (.Microsoft Corporation.) [HKLM] -- KB980182-IE8 O42 - Logiciel: Update for Windows Internet Explorer 8 (KB982632) - (.Microsoft Corporation.) [HKLM] -- KB982632-IE8 O42 - Logiciel: Update for Windows XP (KB2141007) - (.Microsoft Corporation.) [HKLM] -- KB2141007 O42 - Logiciel: Update for Windows XP (KB2345886) - (.Microsoft Corporation.) [HKLM] -- KB2345886 O42 - Logiciel: Update for Windows XP (KB2467659) - (.Microsoft Corporation.) [HKLM] -- KB2467659 O42 - Logiciel: Update for Windows XP (KB2541763) - (.Microsoft Corporation.) [HKLM] -- KB2541763 O42 - Logiciel: Update for Windows XP (KB955759) - (.Microsoft Corporation.) [HKLM] -- KB955759 O42 - Logiciel: Update for Windows XP (KB961503) - (.Microsoft Corporation.) [HKLM] -- KB961503 O42 - Logiciel: Update for Windows XP (KB968389) - (.Microsoft Corporation.) [HKLM] -- KB968389 O42 - Logiciel: Update for Windows XP (KB971029) - (.Microsoft Corporation.) [HKLM] -- KB971029 O42 - Logiciel: Update for Windows XP (KB971737) - (.Microsoft Corporation.) [HKLM] -- KB971737 O42 - Logiciel: Update for Windows XP (KB973687) - (.Microsoft Corporation.) [HKLM] -- KB973687 O42 - Logiciel: Update for Windows XP (KB973815) - (.Microsoft Corporation.) [HKLM] -- KB973815 O42 - Logiciel: WIDCOMM Bluetooth Software - (. .) [HKLM] -- {90535871-81B9-4D99-8A13-A7EE97F2D7FE} O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 O42 - Logiciel: Windows Rights Management Client Backwards Compatibility SP2 - (.Microsoft.) [HKLM] -- Windows Rights Management Client Backwards O42 - Logiciel: Windows Rights Management Client Backwards Compatibility SP2 - (.Microsoft.) [HKLM] -- {EC905264-BCFE-423B-9C42-C3A106266790} O42 - Logiciel: Windows Rights Management Client with Service Pack 2 - (.Microsoft.) [HKLM] -- Windows Rights Management Client O42 - Logiciel: Windows Rights Management Client with Service Pack 2 - (.Microsoft.) [HKLM] -- {BDCF27CA-BFC4-4F49-8D24-A925C9505AB8} O42 - Logiciel: XnView 1.97.6 - (.Gougelet Pierre-e.) [HKLM] -- XnView_is1 O42 - Logiciel: acer Wireless LAN - (.Pas de propriétaire.) [HKLM] -- {4820DD99-52D1-42BB-927E-B6B6DF231AF5} O42 - Logiciel: foobar2000 v1.1.1 - (.Peter Pawlowski.) [HKLM] -- foobar2000 O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {FAE36873-1941-4076-A9A5-48812B5EA0B7} O42 - Logiciel: mCore - (.Intel Corporation.) [HKLM] -- {6DE14BE4-6F04-4935-8ABD-A0A19FE2E55A} O42 - Logiciel: mDrWiFi - (.Intel Corporation.) [HKLM] -- {F6090A17-0967-4A8A-B3C3-422A1B514D49} O42 - Logiciel: mDriver - (.Intel.) [HKLM] -- {28DA872A-0848-48CF-B749-19A198157A2A} O42 - Logiciel: mEoU.msi - (.Intel Corporation.) [HKLM] -- {B502B428-3386-40A9-98DB-079AAB72E64F} O42 - Logiciel: mHelp - (.Intel.) [HKLM] -- {8C6BB412-D3A8-4AAE-A01B-35B681789D68} O42 - Logiciel: mIWA - (.Intel Corporation.) [HKLM] -- {3E9D596A-61D4-4239-BD19-2DB984D2A16F} O42 - Logiciel: mIWCA - (.Intel Corporation.) [HKLM] -- {6FFFE74E-3FBD-4E2E-97F9-5E9A2A077626} O42 - Logiciel: mLogView - (.Intel Corporation.) [HKLM] -- {0E2B0B41-7E08-4F9F-B21F-41C4133F43B7} O42 - Logiciel: mMHouse - (.Intel Corporation.) [HKLM] -- {F0BFC7EF-9CF8-44EE-91B0-158884CD87C5} O42 - Logiciel: mPfMgr - (.Intel Corporation.) [HKLM] -- {8B928BA1-EDEC-4227-A2DA-DD83026C36F5} O42 - Logiciel: mPfWiz - (.Intel Corporation.) [HKLM] -- {90B0D222-8C21-4B35-9262-53B042F18AF9} O42 - Logiciel: mProSafe - (.Intel.) [HKLM] -- {23FB368F-1399-4EAC-817C-4B83ECBE3D83} O42 - Logiciel: mWlsSafe - (.Intel.) [HKLM] -- {FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4} O42 - Logiciel: mXML - (.Intel Corporation.) [HKLM] -- {9CC89556-3578-48DD-8408-04E66EBEF401} O42 - Logiciel: mZConfig - (.Intel Corporation.) [HKLM] -- {94658027-9F16-4509-BBD7-A59FE57C3023} ---\\ HKCU & HKLM Software Keys [HKCU\Software\Ad-Remover] [HKCU\Software\Adobe] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Avira] [HKCU\Software\CambridgeSoft] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\GPL Ghostscript] [HKCU\Software\Google] [HKCU\Software\ISI ResearchSoft] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MestRe] [HKCU\Software\MiKTeX.org] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\ORL] [HKCU\Software\OpenOffice.org] [HKCU\Software\OriginLab] [HKCU\Software\Policies] [HKCU\Software\Skype] [HKCU\Software\Softonic] [HKCU\Software\Synaptics] [HKCU\Software\Sysinternals] [HKCU\Software\TUG] [HKCU\Software\TightVNC] [HKCU\Software\ToolsCenter] [HKCU\Software\Widcomm] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\foobar2000] [HKCU\Software\i-FunBox.com] [HKLM\Software\ATI Technologies Inc.] [HKLM\Software\ATI Technologies] [HKLM\Software\Adobe] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Avira] [HKLM\Software\Broadcom] [HKLM\Software\BrowserChoice] [HKLM\Software\C07ft5Y] [HKLM\Software\CXT] [HKLM\Software\CambridgeSoft] [HKLM\Software\Chemical Abstract Services] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Conexant] [HKLM\Software\GEAR Software] [HKLM\Software\GPL Ghostscript] [HKLM\Software\Gemplus] [HKLM\Software\Ghostgum] [HKLM\Software\Google] [HKLM\Software\INTEL] [HKLM\Software\InstallShield] [HKLM\Software\InstalledOptions] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\MDC] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\MiKTeX.org] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\ODBC] [HKLM\Software\OldTimer Tools] [HKLM\Software\OpenOffice.org] [HKLM\Software\OriginLab Corporation] [HKLM\Software\Policies] [HKLM\Software\Program Groups] [HKLM\Software\RegisteredApplications] [HKLM\Software\Schlumberger] [HKLM\Software\Secure] [HKLM\Software\Skype] [HKLM\Software\Sun Microsystems] [HKLM\Software\Synaptics] [HKLM\Software\ToolsCenter] [HKLM\Software\TrendMicro] [HKLM\Software\UIU] [HKLM\Software\Widcomm] [HKLM\Software\WinRAR] [HKLM\Software\Windows 3.1 Migration Status] [HKLM\Software\Windows] [HKLM\Software\Wise Solutions] [HKLM\Software\X-AVCSD] [HKLM\Software\XnView] [HKLM\Software\acer] [HKLM\Software\mozilla.org] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 18/06/2010 - 14:25:06 - [1180464] ----D- C:\Program Files\Accelrys O43 - CFD: 27/07/2008 - 04:21:06 - [186161] ----D- C:\Program Files\Accords O43 - CFD: 01/06/2010 - 21:23:54 - [1010743] ----D- C:\Program Files\acer O43 - CFD: 30/03/2005 - 23:57:08 - [376040] ----D- C:\Program Files\Acer Inc O43 - CFD: 16/06/2004 - 01:24:08 - [69877786] ----D- C:\Program Files\Ad-Remover O43 - CFD: 11/06/2010 - 14:24:44 - [2530211528] ----D- C:\Program Files\Adobe O43 - CFD: 24/07/2008 - 20:22:40 - [224016] ----D- C:\Program Files\ALO Power Audio Converter O43 - CFD: 04/12/2010 - 18:28:50 - [2306366] ----D- C:\Program Files\Apple Software Update O43 - CFD: 13/12/2008 - 16:46:22 - [158116417] ----D- C:\Program Files\Arcade O43 - CFD: 01/06/2010 - 22:13:58 - [16571708] ----D- C:\Program Files\ATI Technologies O43 - CFD: 16/06/2008 - 22:21:50 - [694727678] ----D- C:\Program Files\Autodesk O43 - CFD: 02/06/2010 - 11:08:50 - [360448] ----D- C:\Program Files\AUTORUN O43 - CFD: 01/06/2009 - 17:06:52 - [177011549] ----D- C:\Program Files\Avira O43 - CFD: 20/05/2008 - 23:31:12 - [2655233] ----D- C:\Program Files\AviSynth 2.5 O43 - CFD: 16/02/2009 - 21:04:46 - [12390020] ----D- C:\Program Files\Azureus O43 - CFD: 04/12/2010 - 18:27:40 - [623412] ----D- C:\Program Files\Bonjour O43 - CFD: 01/06/2010 - 21:16:08 - [608109] ----D- C:\Program Files\Broadcom O43 - CFD: 12/06/2008 - 19:59:00 - [2571] ----D- C:\Program Files\BulletProof FTP Server v2.3 O43 - CFD: 02/06/2010 - 13:06:14 - [79089849] ----D- C:\Program Files\CambridgeSoft O43 - CFD: 10/06/2009 - 20:31:08 - [367166097] ----D- C:\Program Files\Canon O43 - CFD: 17/05/2008 - 17:56:02 - [1326810] ----D- C:\Program Files\CCleaner O43 - CFD: 02/06/2010 - 11:08:50 - [626000] ----D- C:\Program Files\CCTL O43 - CFD: 04/12/2010 - 18:27:00 - [760235026] ----D- C:\Program Files\Common Files O43 - CFD: 30/03/2005 - 23:35:36 - [0] ----D- C:\Program Files\ComPlus Applications O43 - CFD: 01/06/2010 - 21:47:36 - [536576] ----D- C:\Program Files\CONEXANT O43 - CFD: 03/12/2009 - 00:14:42 - [1232740] ----D- C:\Program Files\Convar O43 - CFD: 31/03/2005 - 00:01:06 - [106063286] ----D- C:\Program Files\CyberLink O43 - CFD: 22/05/2008 - 20:38:02 - [5514190] ----D- C:\Program Files\DAEMON Tools Lite O43 - CFD: 02/06/2010 - 00:00:06 - [0] ----D- C:\Program Files\DAEMON Tools Pro O43 - CFD: 11/12/2008 - 22:23:24 - [1316232] ----D- C:\Program Files\DIFX O43 - CFD: 11/01/2009 - 18:10:22 - [782996] ----D- C:\Program Files\EGoGameS O43 - CFD: 01/06/2010 - 21:16:40 - [2071841] ----D- C:\Program Files\Elantech O43 - CFD: 03/09/2009 - 08:40:26 - [124506908] ----D- C:\Program Files\eMule O43 - CFD: 02/06/2010 - 11:30:26 - [66806902] ----D- C:\Program Files\ENDNOTE O43 - CFD: 12/08/2010 - 15:06:10 - [61455413] ----D- C:\Program Files\EndNote 9 O43 - CFD: 16/02/2009 - 23:55:48 - [1094876] ----D- C:\Program Files\eXchange POP3 6.0 O43 - CFD: 02/06/2010 - 11:08:46 - [14577066] ----D- C:\Program Files\EXTRAS O43 - CFD: 28/05/2009 - 23:16:44 - [1513065379] ----D- C:\Program Files\Fichiers communs O43 - CFD: 13/06/2008 - 08:13:46 - [11921038] ----D- C:\Program Files\FileZilla FTP Client O43 - CFD: 05/12/2010 - 23:13:48 - [7917593] ----D- C:\Program Files\foobar2000 O43 - CFD: 30/11/2008 - 14:24:56 - [5581957] ----D- C:\Program Files\Free iPod Video Converter O43 - CFD: 02/06/2010 - 13:26:34 - [3566016] ----D- C:\Program Files\Ghostgum O43 - CFD: 02/06/2010 - 14:25:18 - [82663544] ----D- C:\Program Files\ghostscript-8.71 O43 - CFD: 11/06/2010 - 15:20:14 - [328432409] ----D- C:\Program Files\Google O43 - CFD: 02/06/2010 - 14:39:12 - [31907692] ----D- C:\Program Files\gs O43 - CFD: 21/11/2008 - 00:02:22 - [20571346] ----D- C:\Program Files\Guitar Pro 5 O43 - CFD: 29/06/2009 - 20:23:08 - [4640312] ----D- C:\Program Files\HHD Software O43 - CFD: 14/04/2009 - 20:37:38 - [126003219] ----D- C:\Program Files\HomePlayer O43 - CFD: 09/01/2009 - 08:42:40 - [7002465] ----D- C:\Program Files\iGnuteel O43 - CFD: 02/06/2010 - 10:10:54 - [62418143] --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD: 30/03/2005 - 23:45:34 - [20388681] ----D- C:\Program Files\Intel O43 - CFD: 16/06/2011 - 01:57:22 - [6093456] ----D- C:\Program Files\Internet Explorer O43 - CFD: 09/09/2009 - 22:14:30 - [1856115] ----D- C:\Program Files\iPod O43 - CFD: 04/12/2010 - 18:40:58 - [146530583] ----D- C:\Program Files\iTunes O43 - CFD: 04/04/2009 - 10:04:16 - [410496923] ----D- C:\Program Files\Java O43 - CFD: 04/12/2010 - 19:04:40 - [55363353] ----D- C:\Program Files\JDownloader O43 - CFD: 01/06/2010 - 22:33:42 - [16254752] ----D- C:\Program Files\JRE O43 - CFD: 15/05/2008 - 22:39:44 - [1141069] ----D- C:\Program Files\Launch Manager O43 - CFD: 27/09/2008 - 14:33:36 - [16501848] ----D- C:\Program Files\Logitech O43 - CFD: 13/07/2011 - 00:31:16 - [7981388] ----D- C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD: 17/05/2008 - 12:57:40 - [33830499] ----D- C:\Program Files\Memeo O43 - CFD: 01/06/2010 - 20:18:42 - [2140717] ----D- C:\Program Files\Messenger O43 - CFD: 27/08/2008 - 23:09:04 - [12715564] ----D- C:\Program Files\Messenger Plus! Live O43 - CFD: 20/12/2008 - 14:39:26 - [706627] ----D- C:\Program Files\Microsoft O43 - CFD: 30/03/2005 - 23:38:22 - [0] ----D- C:\Program Files\microsoft frontpage O43 - CFD: 27/05/2008 - 21:01:38 - [1067850181] ----D- C:\Program Files\Microsoft Office O43 - CFD: 20/12/2008 - 14:39:16 - [1562204] ----D- C:\Program Files\Microsoft Office Outlook Connector O43 - CFD: 17/06/2011 - 12:47:30 - [39437763] ----D- C:\Program Files\Microsoft Silverlight O43 - CFD: 20/12/2008 - 14:36:44 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD: 27/05/2008 - 21:01:14 - [14904] ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD: 27/05/2008 - 20:57:16 - [2578288] ----D- C:\Program Files\Microsoft Visual Studio 8 O43 - CFD: 06/06/2010 - 17:01:36 - [3726168] ----D- C:\Program Files\Microsoft Works O43 - CFD: 27/05/2008 - 20:59:54 - [8152064] ----D- C:\Program Files\Microsoft.NET O43 - CFD: 24/07/2008 - 20:12:32 - [307200] ----D- C:\Program Files\MIKSOFT O43 - CFD: 02/06/2010 - 12:48:32 - [315266947] ----D- C:\Program Files\MiKTeX 2.8 O43 - CFD: 13/08/2010 - 23:46:24 - [11072357] ----D- C:\Program Files\Movie Maker O43 - CFD: 16/06/2004 - 01:30:36 - [41093360] ----D- C:\Program Files\Mozilla Firefox O43 - CFD: 25/06/2008 - 07:19:30 - [307423] ----D- C:\Program Files\mp3DirectCut O43 - CFD: 24/08/2009 - 23:09:08 - [26521] ----D- C:\Program Files\MSBuild O43 - CFD: 02/06/2010 - 11:08:50 - [27348712] ----D- C:\Program Files\MSI O43 - CFD: 01/06/2010 - 20:52:10 - [26550732] ----D- C:\Program Files\MSN O43 - CFD: 30/03/2005 - 23:34:42 - [8742663] ----D- C:\Program Files\MSN Gaming Zone O43 - CFD: 16/05/2008 - 21:38:40 - [0] ----D- C:\Program Files\MSXML 4.0 O43 - CFD: 16/05/2008 - 21:08:26 - [2940967212] ----D- C:\Program Files\NetDrive O43 - CFD: 01/06/2010 - 20:24:34 - [3258723] ----D- C:\Program Files\NetMeeting O43 - CFD: 31/03/2005 - 00:06:26 - [60246470] ----D- C:\Program Files\NewTech Infosystems O43 - CFD: 03/07/2008 - 07:58:00 - [1284380] ----D- C:\Program Files\No-IP O43 - CFD: 11/12/2008 - 22:23:44 - [58240787] ----D- C:\Program Files\Nokia O43 - CFD: 02/06/2010 - 11:29:36 - [0] ----D- C:\Program Files\Nouveau dossier O43 - CFD: 10/01/2009 - 12:06:58 - [17732485] ----D- C:\Program Files\NutsAboutNets O43 - CFD: 30/03/2005 - 23:34:54 - [4525] ----D- C:\Program Files\Online Services O43 - CFD: 01/06/2010 - 22:33:36 - [536323283] ----D- C:\Program Files\OpenOffice.org 3 O43 - CFD: 02/06/2010 - 10:10:22 - [327339511] ----D- C:\Program Files\OriginLab O43 - CFD: 01/01/2011 - 15:41:40 - [4322949] ----D- C:\Program Files\Outlook Express O43 - CFD: 13/08/2008 - 18:57:18 - [7101074] ----D- C:\Program Files\PanoramaStudio O43 - CFD: 11/12/2008 - 22:23:10 - [11169565] ----D- C:\Program Files\PC Connectivity Solution O43 - CFD: 23/07/2009 - 21:58:08 - [21529044] ----D- C:\Program Files\PDFCreator O43 - CFD: 28/07/2009 - 22:40:00 - [4074023] ----D- C:\Program Files\Photomatix O43 - CFD: 28/07/2009 - 22:50:58 - [8658827] ----D- C:\Program Files\PhotomatixPro3 O43 - CFD: 18/08/2008 - 17:10:48 - [36249376] ----D- C:\Program Files\Picasa2 O43 - CFD: 10/06/2010 - 17:45:12 - [17113807] ----D- C:\Program Files\Pixia 4.3a FR O43 - CFD: 22/05/2008 - 20:40:50 - [2349211] ----D- C:\Program Files\PowerISO O43 - CFD: 28/05/2009 - 23:18:58 - [14467279] ----D- C:\Program Files\PPMate O43 - CFD: 04/12/2010 - 18:32:20 - [76337719] ----D- C:\Program Files\QuickTime O43 - CFD: 30/11/2008 - 13:59:44 - [28429672] ----D- C:\Program Files\Red Kawa O43 - CFD: 24/08/2009 - 23:08:52 - [36400897] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 17/05/2008 - 18:06:02 - [1146670] ----D- C:\Program Files\RegCleaner O43 - CFD: 16/05/2008 - 20:27:20 - [11615273] ----D- C:\Program Files\RocketDock O43 - CFD: 29/08/2009 - 09:44:28 - [71647682] ----D- C:\Program Files\Safari O43 - CFD: 30/03/2005 - 23:36:34 - [933] ----D- C:\Program Files\Services en ligne O43 - CFD: 27/05/2009 - 20:39:14 - [27801384] ----D- C:\Program Files\Simplify Media O43 - CFD: 17/05/2009 - 19:09:10 - [349393] ----D- C:\Program Files\Skyhook Wireless O43 - CFD: 11/06/2010 - 13:59:34 - [38378187] R---D- C:\Program Files\Skype O43 - CFD: 04/09/2009 - 13:04:16 - [24694112] ----D- C:\Program Files\Sun O43 - CFD: 30/03/2005 - 23:54:54 - [26685929] ----D- C:\Program Files\Synaptics O43 - CFD: 02/06/2010 - 10:36:50 - [14447903] ----D- C:\Program Files\TeXnicCenter O43 - CFD: 16/06/2004 - 00:13:36 - [1462434] ----D- C:\Program Files\TightVNC O43 - CFD: 16/06/2004 - 05:56:26 - [1587785] ----D- C:\Program Files\Trend Micro O43 - CFD: 28/05/2009 - 23:28:50 - [5635313] ----D- C:\Program Files\TVAnts O43 - CFD: 07/06/2009 - 00:11:04 - [12832995] ----D- C:\Program Files\TVUPlayer O43 - CFD: 30/03/2005 - 23:44:12 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 19/05/2008 - 20:32:26 - [33338768] ----D- C:\Program Files\VideoLAN O43 - CFD: 17/05/2008 - 12:54:24 - [326648218] ----D- C:\Program Files\Western Digital O43 - CFD: 16/05/2008 - 07:40:14 - [858084] ----D- C:\Program Files\Western Digital Technologies O43 - CFD: 01/06/2010 - 21:09:00 - [3587127] ----D- C:\Program Files\WIDCOMM O43 - CFD: 17/05/2009 - 13:10:16 - [138650897] ----D- C:\Program Files\Windows Live O43 - CFD: 20/12/2008 - 14:34:10 - [245112] ----D- C:\Program Files\Windows Live SkyDrive O43 - CFD: 01/06/2010 - 20:25:44 - [3595692] ----D- C:\Program Files\Windows Media Connect 2 O43 - CFD: 01/06/2010 - 20:25:36 - [8246039] ----D- C:\Program Files\Windows Media Player O43 - CFD: 01/06/2010 - 20:16:20 - [4701439] ----D- C:\Program Files\Windows NT O43 - CFD: 30/03/2005 - 23:36:40 - [0] --H-D- C:\Program Files\WindowsUpdate O43 - CFD: 15/05/2008 - 22:37:12 - [176128] ----D- C:\Program Files\WinPCap O43 - CFD: 01/06/2010 - 23:03:32 - [4823177] ----D- C:\Program Files\WinRAR O43 - CFD: 06/10/2008 - 20:30:40 - [16773066] ----D- C:\Program Files\WinZip O43 - CFD: 28/06/2008 - 01:52:34 - [102430] ----D- C:\Program Files\WMV9_VCM O43 - CFD: 30/03/2005 - 23:38:22 - [0] ----D- C:\Program Files\xerox O43 - CFD: 11/06/2010 - 14:14:36 - [37484016] ----D- C:\Program Files\XnView O43 - CFD: 20/08/2008 - 19:35:22 - [27668963] ----D- C:\Program Files\Yahoo! O43 - CFD: 13/07/2011 - 03:10:06 - [15737218] ----D- C:\Program Files\ZHPDiag O43 - CFD: 17/10/2010 - 20:09:32 - [324413147] ----D- C:\Program Files\Common Files\Adobe O43 - CFD: 11/06/2010 - 14:19:40 - [32159844] ----D- C:\Program Files\Common Files\Adobe AIR O43 - CFD: 13/07/2011 - 02:20:18 - [13784408] ----D- C:\Program Files\Common Files\Akamai O43 - CFD: 04/12/2010 - 18:37:48 - [94762864] ----D- C:\Program Files\Common Files\Apple O43 - CFD: 02/06/2010 - 00:07:30 - [92976] ----D- C:\Program Files\Common Files\DESIGNER O43 - CFD: 01/06/2010 - 21:16:28 - [7376978] ----D- C:\Program Files\Common Files\InstallShield O43 - CFD: 16/06/2011 - 02:07:54 - [215561645] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 01/06/2010 - 20:24:12 - [284160] ----D- C:\Program Files\Common Files\MSSoap O43 - CFD: 01/06/2010 - 21:58:32 - [0] ----D- C:\Program Files\Common Files\ODBC O43 - CFD: 12/06/2010 - 10:33:22 - [611970] ----D- C:\Program Files\Common Files\Risxtd O43 - CFD: 01/06/2010 - 20:24:32 - [8106] ----D- C:\Program Files\Common Files\Services O43 - CFD: 11/06/2010 - 13:59:16 - [2135336] ----D- C:\Program Files\Common Files\Skype O43 - CFD: 01/06/2010 - 21:58:26 - [3787229] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 06/06/2010 - 16:58:18 - [41439659] ----D- C:\Program Files\Common Files\System O43 - CFD: 02/06/2010 - 11:30:52 - [23816704] ----D- C:\Program Files\Common Files\Wise Installation Wizard O43 - CFD: 07/09/2010 - 14:38:06 - [5372166] ----D- C:\Documents and Settings\Saskia\Application Data\Adobe O43 - CFD: 05/12/2010 - 22:52:18 - [721083] ----D- C:\Documents and Settings\Saskia\Application Data\Apple Computer O43 - CFD: 01/10/2010 - 11:16:32 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Avira O43 - CFD: 01/06/2010 - 23:52:02 - [1277] ----D- C:\Documents and Settings\Saskia\Application Data\DAEMON Tools Pro O43 - CFD: 12/06/2010 - 11:30:18 - [233896] ----D- C:\Documents and Settings\Saskia\Application Data\EndNote O43 - CFD: 16/06/2004 - 01:15:16 - [863291] ----D- C:\Documents and Settings\Saskia\Application Data\foobar2000 O43 - CFD: 19/06/2011 - 23:26:24 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Google O43 - CFD: 10/06/2010 - 17:23:42 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Help O43 - CFD: 01/06/2010 - 20:39:26 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Identities O43 - CFD: 02/06/2010 - 10:08:34 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\InstallShield O43 - CFD: 01/06/2010 - 21:45:40 - [1062] ----D- C:\Documents and Settings\Saskia\Application Data\Intel O43 - CFD: 01/06/2010 - 23:27:46 - [456] ----D- C:\Documents and Settings\Saskia\Application Data\Macromedia O43 - CFD: 16/06/2004 - 00:21:28 - [3819495] ----D- C:\Documents and Settings\Saskia\Application Data\Malwarebytes O43 - CFD: 18/11/2010 - 01:28:38 - [3251232] -S--D- C:\Documents and Settings\Saskia\Application Data\Microsoft O43 - CFD: 02/06/2010 - 13:57:14 - [9580027] ----D- C:\Documents and Settings\Saskia\Application Data\MiKTeX O43 - CFD: 01/06/2010 - 22:10:22 - [13866152] ----D- C:\Documents and Settings\Saskia\Application Data\Mozilla O43 - CFD: 01/06/2010 - 22:47:38 - [8926380] ----D- C:\Documents and Settings\Saskia\Application Data\OpenOffice.org O43 - CFD: 10/06/2010 - 17:40:08 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Pixia O43 - CFD: 11/07/2011 - 04:05:36 - [2314946] ----D- C:\Documents and Settings\Saskia\Application Data\Skype O43 - CFD: 11/06/2010 - 16:05:14 - [242640] ----D- C:\Documents and Settings\Saskia\Application Data\skypePM O43 - CFD: 01/06/2010 - 22:31:00 - [25098714] ----D- C:\Documents and Settings\Saskia\Application Data\Sun O43 - CFD: 16/06/2004 - 00:18:32 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\TightVNC O43 - CFD: 04/12/2010 - 19:44:54 - [9480] ----D- C:\Documents and Settings\Saskia\Application Data\WindSolutions O43 - CFD: 01/06/2010 - 23:34:18 - [12] ----D- C:\Documents and Settings\Saskia\Application Data\WinRAR O43 - CFD: 27/12/2010 - 22:38:24 - [662687] ----D- C:\Documents and Settings\Saskia\Application Data\XnView O43 - CFD: 17/10/2010 - 20:08:38 - [14371336] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Adobe O43 - CFD: 04/12/2010 - 18:29:00 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Apple O43 - CFD: 04/12/2010 - 18:42:02 - [3235703] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Apple Computer O43 - CFD: 25/06/2010 - 10:56:56 - [5120] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\ApplicationHistory O43 - CFD: 19/06/2011 - 23:26:24 - [134674586] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Google O43 - CFD: 10/06/2010 - 17:23:42 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Help O43 - CFD: 30/09/2010 - 11:14:52 - [6116220] -S--D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Microsoft O43 - CFD: 02/06/2010 - 00:00:28 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Microsoft Help O43 - CFD: 02/06/2010 - 13:14:42 - [11878215] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\MiKTeX O43 - CFD: 01/06/2010 - 22:10:22 - [17372074] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Mozilla O43 - CFD: 19/06/2011 - 23:25:28 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Temp O43 - CFD: 01/06/2010 - 20:29:08 - [15040] R---D- C:\WINDOWS\system32\Config\systemprofile\Start Menu\Programs\Accessories O43 - CFD: 01/06/2010 - 21:55:12 - [84] R---D- C:\WINDOWS\system32\Config\systemprofile\Start Menu\Programs\Startup ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.44EF1200FEFFFFFF57494E444F577E31] - 13/07/2011 - 01:24:00 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1803509] O44 - LFC:[MD5.44EF1200FEFFFFFF0000000038F21200] - 13/07/2011 - 01:20:24 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159] O44 - LFC:[MD5.44EF1200FEFFFFFF0000000038F21200] - 13/07/2011 - 01:20:23 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/07/2011 - 01:19:59 ---A- . (...) -- C:\WINDOWS\0.log [0] O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 13/07/2011 - 01:19:53 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048] O44 - LFC:[MD5.44EF1200FEFFFFFF0000000038F21200] - 13/07/2011 - 01:18:47 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [32474] O44 - LFC:[MD5.89C28B188065BEBA3ADC4F2EE4BD7F96] - 12/07/2011 - 23:31:29 ---A- . (...) -- C:\WINDOWS\System32\wpa.dbl [2228] O44 - LFC:[MD5.9769D57A4F47231B7E48836721B5C7B7] - 11/07/2011 - 03:16:01 -SHA- . (...) -- C:\Thumbs.db [5632] O44 - LFC:[MD5.4172931C25B1276D04EF6592662C1C5D] - 11/07/2011 - 03:15:57 -SHA- . (...) -- C:\WINDOWS\Thumbs.db [7680] O44 - LFC:[MD5.5B38A76C9B2D1EB6205C37929735EA1A] - 11/07/2011 - 02:52:49 ---A- . (...) -- C:\ZHPExportRegistry-11-07-2011-03-52-49.txt [27768] O44 - LFC:[MD5.3BF98DEA243B7D0C753C5BF96F5097F0] - 10/07/2011 - 04:11:43 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512] O44 - LFC:[MD5.9674DC5A0696CAC9C1889AB7583F76EB] - 18/06/2011 - 20:55:29 ---A- . (...) -- C:\WINDOWS\System32\PerfStringBackup.INI [506194] O44 - LFC:[MD5.66105A9E46C0EADD21D513B4E5652E28] - 18/06/2011 - 20:55:29 ---A- . (...) -- C:\WINDOWS\System32\perfc009.dat [72566] O44 - LFC:[MD5.5177A6DF33077EFF91DEE2968D5BA16A] - 18/06/2011 - 20:55:29 ---A- . (...) -- C:\WINDOWS\System32\perfh009.dat [444690] O44 - LFC:[MD5.5FEDEF54757B34FB611B9EC8FB399364] - 17/06/2011 - 11:51:13 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\WINDOWS\System32\drivers\avipbb.sys [137656] O44 - LFC:[MD5.196DB70C7C937D4737067A1C3CDABD4B] - 17/06/2011 - 11:48:08 ---A- . (...) -- C:\WINDOWS\System32\FNTCACHE.DAT [3589016] O44 - LFC:[MD5.EDB29DE9FD538805F98F375CF961FDE3] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\KB2479943.log [147040] O44 - LFC:[MD5.5B4513A8E9D30FC08A2DFE9A6E38CEE4] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\comsetup.log [310665] O44 - LFC:[MD5.964180D6A9640C16F370F77AD61B303D] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\iis6.log [991087] O44 - LFC:[MD5.B0312C13616C571CC01EB04F3D1842E7] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\imsins.log [1374] O44 - LFC:[MD5.9A2181BDD780C9936DB39B1180C279CF] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [188099] O44 - LFC:[MD5.49627FFCDBC1FD8E090FEC13781C0994] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\ocmsn.log [49449] O44 - LFC:[MD5.FE0283229F3082EAA733CCA9B47DAB88] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\tabletoc.log [45414] O44 - LFC:[MD5.1536344A2F7D4D65EDFC9D7A6233AA82] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\tsoc.log [411409] O44 - LFC:[MD5.4020D8692472F78E216351CDC03E97FB] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [889521] O44 - LFC:[MD5.CE83D0AE0A754481E4C0343242964CEF] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\MedCtrOC.log [61837] O44 - LFC:[MD5.D72585AB8B78D6D55CFF5CA735B435F3] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\msgsocm.log [44749] O44 - LFC:[MD5.722C0F720670B119C2FA636A1E629139] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\msmqinst.log [276116] O44 - LFC:[MD5.2AC9741E4BC796AE9E7EF29CE1D279EE] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\netfxocm.log [156576] O44 - LFC:[MD5.60E33B79E3A1CCF00E2EA1FFC2CABB03] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\ocgen.log [470102] O44 - LFC:[MD5.ABB4CAAD906E82B3B39FDDE42792879F] - 16/06/2011 - 01:07:41 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1374] O44 - LFC:[MD5.0179F4F5A329F5CA48EEB7447988920B] - 16/06/2011 - 01:07:40 ---A- . (...) -- C:\WINDOWS\KB2481109.log [148659] O44 - LFC:[MD5.E35DBF8BA0E7FD0DD83176354F482CEE] - 16/06/2011 - 01:07:27 ---A- . (...) -- C:\WINDOWS\KB2485663.log [148751] O44 - LFC:[MD5.44A3AD116C241DFDF75F18BF431C1911] - 16/06/2011 - 01:05:56 ---A- . (...) -- C:\WINDOWS\KB2476490.log [37889] O44 - LFC:[MD5.C2D638933ABD42AFAC66086DD2EC4C31] - 16/06/2011 - 01:05:49 ---A- . (...) -- C:\WINDOWS\KB2506223.log [51510] O44 - LFC:[MD5.6F2EA7AF7649ECEE5AC8F9C151F1575F] - 16/06/2011 - 01:05:36 ---A- . (...) -- C:\WINDOWS\KB2503665.log [50956] O44 - LFC:[MD5.B40C6FA76AA4AFC025FC384584ECD362] - 16/06/2011 - 01:05:29 ---A- . (...) -- C:\WINDOWS\KB2524375.log [37023] O44 - LFC:[MD5.533FD1A96FD23380387407C39C3D83D9] - 16/06/2011 - 01:04:10 ---A- . (...) -- C:\WINDOWS\KB2535512.log [50788] O44 - LFC:[MD5.6752D17B8A027145F0D69810C2CE9366] - 16/06/2011 - 01:03:18 ---A- . (...) -- C:\WINDOWS\KB2412687.log [34828] O44 - LFC:[MD5.A1E9003ED212B3F5C2A195E8014DD811] - 16/06/2011 - 00:58:43 ---A- . (...) -- C:\WINDOWS\KB2508272.log [36938] O44 - LFC:[MD5.C8655A8A7CA98AB89B202000C63F7183] - 16/06/2011 - 00:58:35 ---A- . (...) -- C:\WINDOWS\KB2536276.log [50872] O44 - LFC:[MD5.E3DC64DB1DD46ED4A01D8397B45E4960] - 16/06/2011 - 00:57:52 ---A- . (...) -- C:\WINDOWS\KB2507618.log [51126] O44 - LFC:[MD5.C30FBF8CF4F1E62283CD81B207CD268D] - 16/06/2011 - 00:57:50 ---A- . (...) -- C:\WINDOWS\updspapi.log [86058] O44 - LFC:[MD5.DE32E1AF20FF35F18E2F1AF07DA52BE7] - 16/06/2011 - 00:57:42 ---A- . (...) -- C:\WINDOWS\KB2530548-IE8.log [45358] O44 - LFC:[MD5.206FC9206A5FBD6913F3A21457E80B82] - 16/06/2011 - 00:56:39 ---A- . (...) -- C:\WINDOWS\KB2508429.log [37484] O44 - LFC:[MD5.8C7D8E7A2C14DB818582C007C9273D63] - 16/06/2011 - 00:56:26 ---A- . (...) -- C:\WINDOWS\KB971029.log [36865] O44 - LFC:[MD5.C7885A05B4E604C8B12F1112AC38D023] - 16/06/2011 - 00:56:05 ---A- . (...) -- C:\WINDOWS\KB2506212.log [36519] O44 - LFC:[MD5.B8D7AC4DAE614CFB6BBA8AC3080CC5CF] - 16/06/2011 - 00:51:09 ---A- . (...) -- C:\WINDOWS\KB2544893.log [48404] O44 - LFC:[MD5.14DD40869D1A95EDD1C26B53AC049DF1] - 16/06/2011 - 00:51:01 ---A- . (...) -- C:\WINDOWS\KB2509553.log [49177] O44 - LFC:[MD5.340F0B78397C89477E1043D8F20B4E8B] - 16/06/2011 - 00:50:52 ---A- . (...) -- C:\WINDOWS\KB2510531-IE8.log [34404] O44 - LFC:[MD5.CD129EB387DE0459ECD4541AC4D12554] - 16/06/2011 - 00:50:44 ---A- . (...) -- C:\WINDOWS\KB2541763.log [85634] O44 - LFC:[MD5.ED6AAC568B33934B6FB8037F245D2921] - 16/06/2011 - 00:50:36 ---A- . (...) -- C:\WINDOWS\KB2544521-IE8.log [34138] O44 - LFC:[MD5.D142D1AC4D8A18115056E4A68899D7FC] - 16/06/2011 - 00:01:56 ---A- . (...) -- C:\WINDOWS\KB2478971.log [46454] O44 - LFC:[MD5.59180168C3D1ED59A76CC2BA776EAF52] - 16/06/2011 - 00:01:46 ---A- . (...) -- C:\WINDOWS\KB2485376.log [45769] O44 - LFC:[MD5.5E9474AF7E5E71E9AC5F31A803DDCE21] - 16/06/2011 - 00:01:38 ---A- . (...) -- C:\WINDOWS\KB2479628.log [45204] O44 - LFC:[MD5.7A78F5C74DEE74B2F84AA6E24B35A0BA] - 16/06/2011 - 00:01:30 ---A- . (...) -- C:\WINDOWS\KB2483185.log [45283] O44 - LFC:[MD5.766FCDC53D82285648E18DD5404CA8C0] - 15/06/2011 - 23:43:58 ---A- . (...) -- C:\WINDOWS\KB2482017-IE8.log [35420] O44 - LFC:[MD5.71251062F604D380F3F6CAF73BBE14E4] - 15/06/2011 - 23:42:02 ---A- . (...) -- C:\WINDOWS\KB2476687.log [27635] O44 - LFC:[MD5.B61D785B61B2D64CA57A55B9C4774DC6] - 15/06/2011 - 23:41:42 ---A- . (...) -- C:\WINDOWS\KB2419632.log [40570] O44 - LFC:[MD5.84921B2AAFA1A1509CC6784680ECF9A7] - 15/06/2011 - 23:37:47 ---A- . (...) -- C:\WINDOWS\KB2478960.log [33593] ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.900A257EB1A660876161BAFDB866B3EC] - 11/07/2011 - 01:00:11 ---A- - C:\WINDOWS\Prefetch\AAM UPDATES NOTIFIER.EXE-0280E8C4.pf O45 - LFCP:[MD5.AD79935D33BD5D0BB9EDF9AA27FB3832] - 11/07/2011 - 02:39:49 ---A- - C:\WINDOWS\Prefetch\FLASHUTIL10L_PLUGIN.EXE-00D2972A.pf O45 - LFCP:[MD5.03B28497F79C8D4818B3FE0BA89FE920] - 11/07/2011 - 02:48:45 ---A- - C:\WINDOWS\Prefetch\ZHPFIX.EXE-3A07CBCA.pf O45 - LFCP:[MD5.B277B1E3F18E8FC8281DFE3CD26DA19D] - 11/07/2011 - 02:48:52 ---A- - C:\WINDOWS\Prefetch\IEXPLORE.EXE-27122324.pf O45 - LFCP:[MD5.96B6B3A178ABF3FB312D135A64F5183C] - 11/07/2011 - 02:50:11 ---A- - C:\WINDOWS\Prefetch\NTVDM.EXE-1A10A423.pf O45 - LFCP:[MD5.6BD2E6EF2910C61A55F01E369E3A1749] - 11/07/2011 - 02:50:46 ---A- - C:\WINDOWS\Prefetch\00137F93._MP-39016F2E.pf O45 - LFCP:[MD5.B6AC0E30B15DB8668E8AE42466BCD6A2] - 11/07/2011 - 02:52:35 ---A- - C:\WINDOWS\Prefetch\REG.EXE-0D2A95F7.pf O45 - LFCP:[MD5.8E4CDDABDA8A324675CB5CD3E7D0256F] - 11/07/2011 - 02:52:37 ---A- - C:\WINDOWS\Prefetch\SUBINACL.EXE-17974576.pf O45 - LFCP:[MD5.7169944AC8FEC5C66F6A7413B7039819] - 11/07/2011 - 03:00:53 ---A- - C:\WINDOWS\Prefetch\TASKMGR.EXE-20256C55.pf O45 - LFCP:[MD5.5E9109574F5A5E75AF509CC2F1B4A60B] - 11/07/2011 - 03:07:53 ---A- - C:\WINDOWS\Prefetch\MBAM-SETUP.TMP-36DF9CA5.pf O45 - LFCP:[MD5.109CA09CEBD3A41499F01BD797011BA4] - 11/07/2011 - 03:07:59 ---A- - C:\WINDOWS\Prefetch\REGSVR32.EXE-25EEFE2F.pf O45 - LFCP:[MD5.817CDCE30963C7F1CA9EEE9B7232D172] - 11/07/2011 - 03:08:01 ---A- - C:\WINDOWS\Prefetch\MBAM-SETUP.EXE-0007F028.pf O45 - LFCP:[MD5.527D47A6678B5F76E532D4AC860034E0] - 11/07/2011 - 03:33:33 ---A- - C:\WINDOWS\Prefetch\OIS.EXE-337DD4BD.pf O45 - LFCP:[MD5.680B639755F89DF431197F881C505C11] - 11/07/2011 - 03:36:15 ---A- - C:\WINDOWS\Prefetch\ACRORD32INFO.EXE-242CE4AA.pf O45 - LFCP:[MD5.C57CFD58F84636D522879A5A42A6F70C] - 11/07/2011 - 03:36:41 ---A- - C:\WINDOWS\Prefetch\WINRAR.EXE-39C6DAD9.pf O45 - LFCP:[MD5.421590B5AA71F451D787F1B158D77A64] - 11/07/2011 - 03:42:17 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-13CC3015.pf O45 - LFCP:[MD5.49F0488007199F53A72429ED93FE2EFA] - 11/07/2011 - 03:42:21 ---A- - C:\WINDOWS\Prefetch\MSHTA.EXE-331DF029.pf O45 - LFCP:[MD5.4D6D0905B67435963590D8FB1E018F8C] - 11/07/2011 - 03:46:41 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG2.TMP-047DE94E.pf O45 - LFCP:[MD5.032E37F722AEC39B9D9FB86BB3609B9E] - 11/07/2011 - 03:47:16 ---A- - C:\WINDOWS\Prefetch\OFFLB.EXE-3449130C.pf O45 - LFCP:[MD5.77B7B4CA8939A47CE8BF64A8C28451FD] - 11/07/2011 - 03:47:36 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG2.TMP-1FC0B62B.pf O45 - LFCP:[MD5.3D30EEAEE0410DC787DE97062901C2BA] - 11/07/2011 - 03:48:04 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG2.TMP-1E734CFA.pf O45 - LFCP:[MD5.B22F04E262E25AFDD8AC6629B6CFCFCA] - 11/07/2011 - 03:48:06 ---A- - C:\WINDOWS\Prefetch\WINWORD.EXE-07381162.pf O45 - LFCP:[MD5.D623AE76FEBEEE277C9424ABC7FE565D] - 11/07/2011 - 03:58:58 ---A- - C:\WINDOWS\Prefetch\LADS.EXE-06335087.pf O45 - LFCP:[MD5.F03FEA90A9F8B2A1CEC2BBEF4005C449] - 11/07/2011 - 03:58:59 ---A- - C:\WINDOWS\Prefetch\SETACL.EXE-33B348AC.pf O45 - LFCP:[MD5.E21B61142C311128CBA56C59B154659B] - 11/07/2011 - 04:04:26 ---A- - C:\WINDOWS\Prefetch\SIGCHECK.EXE-306CABDB.pf O45 - LFCP:[MD5.95419CE797AB7B93CDAA525FBCD5DD9B] - 11/07/2011 - 04:11:40 ---A- - C:\WINDOWS\Prefetch\NSLOOKUP.EXE-160B1221.pf O45 - LFCP:[MD5.0C316EF85A589E996C70E87DBF608F53] - 11/07/2011 - 04:11:42 ---A- - C:\WINDOWS\Prefetch\MBR.EXE-313604BE.pf O45 - LFCP:[MD5.095D460F4D785CE3768BA3EE998C12BB] - 11/07/2011 - 04:11:43 ---A- - C:\WINDOWS\Prefetch\MBRCHECK.EXE-2B10ECF1.pf O45 - LFCP:[MD5.A73E641F686672E13C56EB41B5D7ED29] - 11/07/2011 - 20:43:13 ---A- - C:\WINDOWS\Prefetch\MSIPATCHREGFIX-X86.EXE-2ADB4CCC.pf O45 - LFCP:[MD5.2EB1F7652E70D5F966A96E6BC97713B1] - 11/07/2011 - 20:45:15 ---A- - C:\WINDOWS\Prefetch\NDP20SP2-KB2518864-X86.EXE-2AE02B85.pf O45 - LFCP:[MD5.B4E20360FC5BDFE120144758C4B72160] - 11/07/2011 - 20:45:38 ---A- - C:\WINDOWS\Prefetch\HOTFIXINSTALLER.EXE-1DF4066B.pf O45 - LFCP:[MD5.F74015190336BD4311EBF0430CE03142] - 11/07/2011 - 20:52:30 ---A- - C:\WINDOWS\Prefetch\REGTLIBV12.EXE-0E2FA54B.pf O45 - LFCP:[MD5.050FEF23EBF81604B0B76AE49DB61D3E] - 11/07/2011 - 20:55:22 ---A- - C:\WINDOWS\Prefetch\MOFCOMP.EXE-01718E95.pf O45 - LFCP:[MD5.6CE540CABF936D3F6A6CF0DB72314875] - 11/07/2011 - 20:55:23 ---A- - C:\WINDOWS\Prefetch\ASPNET_REGIIS.EXE-009D6E80.pf O45 - LFCP:[MD5.C6022F65189197E8A954DF280157FD9B] - 11/07/2011 - 20:56:17 ---A- - C:\WINDOWS\Prefetch\REGSVCS.EXE-11A17120.pf O45 - LFCP:[MD5.E9E980EC9532C090C3276A584AE26DA4] - 11/07/2011 - 20:56:28 ---A- - C:\WINDOWS\Prefetch\WMIADAP.EXE-2DF425B2.pf O45 - LFCP:[MD5.C0D9425230DB5BA6BFB69383A104F93D] - 11/07/2011 - 20:57:06 ---A- - C:\WINDOWS\Prefetch\NGEN.EXE-38021CCC.pf O45 - LFCP:[MD5.A5E8C035A1C76A862A13A001CD365169] - 11/07/2011 - 20:57:18 ---A- - C:\WINDOWS\Prefetch\LODCTR.EXE-1009C3B4.pf O45 - LFCP:[MD5.7F97F107E3FCE01CD9C6B893DCF429D6] - 11/07/2011 - 21:54:43 ---A- - C:\WINDOWS\Prefetch\MSCORSVW.EXE-1BF30400.pf O45 - LFCP:[MD5.60EC6A4797B203B34E07E6B11AB62655] - 11/07/2011 - 22:03:03 ---A- - C:\WINDOWS\Prefetch\ALG.EXE-0F138680.pf O45 - LFCP:[MD5.C62F55BBFC26CEAF04B919C9CB4FA15A] - 11/07/2011 - 22:05:44 ---A- - C:\WINDOWS\Prefetch\FREECOMPRESSOR_AIR.EXE-15D5DF45.pf O45 - LFCP:[MD5.FAD718D6CF64FFE3E16867A17C382CC0] - 11/07/2011 - 22:25:08 ---A- - C:\WINDOWS\Prefetch\GOOGLEUPDATE.EXE-0BCD17F2.pf O45 - LFCP:[MD5.A24F924E0646747FF1B151D06038BB31] - 11/07/2011 - 22:25:38 ---A- - C:\WINDOWS\Prefetch\GOOGLEEARTH-WIN-PLUGIN-6.0.3.-37F74A8C.pf O45 - LFCP:[MD5.36E1941BEF469D362276F3A2B60D6E15] - 11/07/2011 - 22:25:47 ---A- - C:\WINDOWS\Prefetch\GOOGLEEARTH.EXE-288B935F.pf O45 - LFCP:[MD5.AD42D182FE766E714B368F5C53B352E7] - 11/07/2011 - 22:25:51 ---A- - C:\WINDOWS\Prefetch\MSIEXEC.EXE-2F8A8CAE.pf O45 - LFCP:[MD5.5B975308700B74F70DB1039A338E681F] - 11/07/2011 - 22:26:27 ---A- - C:\WINDOWS\Prefetch\GEPLUGIN.EXE-039CFE10.pf O45 - LFCP:[MD5.A21548EEE9664B5B2E5EF33731319F08] - 11/07/2011 - 22:26:30 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-31B60B19.pf O45 - LFCP:[MD5.ABDB2234641FCBF7C06933FE76F7AB13] - 11/07/2011 - 23:21:03 ---A- - C:\WINDOWS\Prefetch\CALC.EXE-02CD573A.pf O45 - LFCP:[MD5.1AD71DB56CE0EE5198D79FBC6DFD7F75] - 11/07/2011 - 23:23:40 ---A- - C:\WINDOWS\Prefetch\ACRORD32.EXE-3A1F13AE.pf O45 - LFCP:[MD5.0E6FC624E7F546925582E8B5CB01E8E0] - 12/07/2011 - 21:35:39 ---A- - C:\WINDOWS\Prefetch\UPDATE.EXE-2577D203.pf O45 - LFCP:[MD5.66CFB848E71A3A921DBFEBA8A4DF1BE6] - 12/07/2011 - 21:36:00 ---A- - C:\WINDOWS\Prefetch\AVNOTIFY.EXE-05ED5FD8.pf O45 - LFCP:[MD5.F92C17C382B3C25A822D00FC571CDE6E] - 12/07/2011 - 21:37:52 ---A- - C:\WINDOWS\Prefetch\REGEDIT.EXE-1B606482.pf O45 - LFCP:[MD5.AE1C78BF324D138E56A3CD625153B763] - 13/07/2011 - 00:14:41 ---A- - C:\WINDOWS\Prefetch\GUARDGUI.EXE-00ECD849.pf O45 - LFCP:[MD5.73D412C48E01EB7C41E3147B886FC034] - 13/07/2011 - 01:14:31 ---A- - C:\WINDOWS\Prefetch\MPNOTIFY.EXE-3631A846.pf O45 - LFCP:[MD5.8D08398B28B1CCA1E1B737CBEFBF205F] - 13/07/2011 - 01:14:44 ---A- - C:\WINDOWS\Prefetch\ZCFGSVC.EXE-1A56EA85.pf O45 - LFCP:[MD5.4985C4BC4CD511DBC4027DC3DD853F24] - 13/07/2011 - 01:14:55 ---A- - C:\WINDOWS\Prefetch\GOOGLECRASHHANDLER.EXE-34C2B2F4.pf O45 - LFCP:[MD5.B59D72112C8D61BDCD9EE6627F0EB980] - 13/07/2011 - 01:14:57 ---A- - C:\WINDOWS\Prefetch\ATI2EVXX.EXE-19D16EB9.pf O45 - LFCP:[MD5.DA04A5A5FDA50FCE417826B47FA2D795] - 13/07/2011 - 01:14:57 ---A- - C:\WINDOWS\Prefetch\USERINIT.EXE-30B18140.pf O45 - LFCP:[MD5.46C2A325A30772EE68E456869F948943] - 13/07/2011 - 01:15:05 ---A- - C:\WINDOWS\Prefetch\MBAMGUI.EXE-1286D63B.pf O45 - LFCP:[MD5.36710C1F1D45E466B7720C57273AC4BE] - 13/07/2011 - 01:15:07 ---A- - C:\WINDOWS\Prefetch\EXPLORER.EXE-082F38A9.pf O45 - LFCP:[MD5.F33FD4221DE6A51B7912D7AB2E5CABCE] - 13/07/2011 - 01:15:08 ---A- - C:\WINDOWS\Prefetch\VERCLSID.EXE-3667BD89.pf O45 - LFCP:[MD5.C5245EC5F19111F50A86AE33C0505C47] - 13/07/2011 - 01:15:14 ---A- - C:\WINDOWS\Prefetch\KTP.EXE-2DF24F3E.pf O45 - LFCP:[MD5.6B4E990E73CA9AAFDB768344BFB33057] - 13/07/2011 - 01:15:20 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-1218E1AC.pf O45 - LFCP:[MD5.25B497138C9DF796A540F47DA4DB6E9D] - 13/07/2011 - 01:15:21 ---A- - C:\WINDOWS\Prefetch\IMAPI.EXE-0BF740A4.pf O45 - LFCP:[MD5.BFE0228B7C0FBD4B24847C8C7A89FB83] - 13/07/2011 - 01:15:27 ---A- - C:\WINDOWS\Prefetch\SYNTPENH.EXE-315D3ABC.pf O45 - LFCP:[MD5.37ED2BF2D83ED09EAA7D2C20B4882E0C] - 13/07/2011 - 01:15:29 ---A- - C:\WINDOWS\Prefetch\WLANUTIL.EXE-0FAE01EF.pf O45 - LFCP:[MD5.63BCD485265F8BA72AE6801A5AE8C415] - 13/07/2011 - 01:15:30 ---A- - C:\WINDOWS\Prefetch\IFRMEWRK.EXE-0618C85D.pf O45 - LFCP:[MD5.FCA065D31460DC97FBB1776E96DCA9F7] - 13/07/2011 - 01:15:32 ---A- - C:\WINDOWS\Prefetch\EOUWIZ.EXE-18024749.pf O45 - LFCP:[MD5.4E1380E295D81B2C31A03871C38C5860] - 13/07/2011 - 01:15:52 ---A- - C:\WINDOWS\Prefetch\CTFMON.EXE-0E17969B.pf O45 - LFCP:[MD5.CBDF20A7ABC8B1FEBB79594E27944F43] - 13/07/2011 - 01:18:32 ---A- - C:\WINDOWS\Prefetch\TFC.EXE-288F926C.pf O45 - LFCP:[MD5.5AD87AF7A847D9B7386E88342D52EFEA] - 13/07/2011 - 01:21:44 ---A- - C:\WINDOWS\Prefetch\AVGNT.EXE-200FEF40.pf O45 - LFCP:[MD5.5F2903F7641F905BA2783311C237D09E] - 13/07/2011 - 01:21:44 ---A- - C:\WINDOWS\Prefetch\NTOSBOOT-B00DFAAD.pf O45 - LFCP:[MD5.55B772AE3BDF798E6ABBD6CEA844213F] - 13/07/2011 - 01:21:44 ---A- - C:\WINDOWS\Prefetch\QTTASK.EXE-342507FB.pf O45 - LFCP:[MD5.CD4416634E2FBFD960B017990AEB1B0B] - 13/07/2011 - 01:21:44 ---A- - C:\WINDOWS\Prefetch\SYNTPLPR.EXE-28BB9F3B.pf O45 - LFCP:[MD5.A097447E3F4BD235449DAE02A84F1011] - 13/07/2011 - 01:21:44 ---A- - C:\WINDOWS\Prefetch\UPDATERSTARTUPUTILITY.EXE-21B7807D.pf O45 - LFCP:[MD5.3CB1D7F2AA16E38D42188C0A9A42524B] - 13/07/2011 - 01:21:45 ---A- - C:\WINDOWS\Prefetch\ATIPRBXX.EXE-28AA41C0.pf O45 - LFCP:[MD5.140A87B21702C81402080FAB695046FC] - 13/07/2011 - 01:21:45 ---A- - C:\WINDOWS\Prefetch\CS5SERVICEMANAGER.EXE-30673ED1.pf O45 - LFCP:[MD5.5EB62380DC2D46861CBAADFCDC3B3B42] - 13/07/2011 - 01:21:45 ---A- - C:\WINDOWS\Prefetch\READER_SL.EXE-2B4EA1CB.pf O45 - LFCP:[MD5.2B1F72D2203A73AEF9A00044BD24BE47] - 13/07/2011 - 01:21:45 ---A- - C:\WINDOWS\Prefetch\SWITCHBOARD.EXE-00FB7B94.pf O45 - LFCP:[MD5.3CB83456178937A96731FA3989533862] - 13/07/2011 - 01:21:47 ---A- - C:\WINDOWS\Prefetch\ADOBEARM.EXE-2D1B11BF.pf O45 - LFCP:[MD5.FA04751585F4EA78CBA915198ADB4231] - 13/07/2011 - 01:21:47 ---A- - C:\WINDOWS\Prefetch\ATIPTAXX.EXE-18FE8D8B.pf O45 - LFCP:[MD5.9C540F6B88F9C14DE56F17926C610AE7] - 13/07/2011 - 01:21:53 ---A- - C:\WINDOWS\Prefetch\BTTRAY.EXE-02B509CD.pf O45 - LFCP:[MD5.2FEE651C7564CD8C11C464289B2838C0] - 13/07/2011 - 01:21:53 ---A- - C:\WINDOWS\Prefetch\ITUNESHELPER.EXE-15823303.pf O45 - LFCP:[MD5.C7F7DE35CA325EFA1CD6DF6EE9015B16] - 13/07/2011 - 01:21:53 ---A- - C:\WINDOWS\Prefetch\MSMSGS.EXE-2B6052DE.pf O45 - LFCP:[MD5.48551DA02E906940F851F02F031B9D6D] - 13/07/2011 - 01:21:53 ---A- - C:\WINDOWS\Prefetch\SKYPE.EXE-30AE1A60.pf O45 - LFCP:[MD5.92E839F0C60003C0D7BEFDB762663F89] - 13/07/2011 - 01:21:53 ---A- - C:\WINDOWS\Prefetch\TVNSERVER.EXE-034BE7E0.pf O45 - LFCP:[MD5.40885F80C136DF8A9F8A8ED5AE5C7685] - 13/07/2011 - 01:21:53 ---A- - C:\WINDOWS\Prefetch\WMIPRVSE.EXE-28F301A9.pf O45 - LFCP:[MD5.339F6D0E3C973785D9F34180E61A6AF7] - 13/07/2011 - 01:21:53 ---A- - C:\WINDOWS\Prefetch\WSCNTFY.EXE-1B24F5EB.pf O45 - LFCP:[MD5.B441BCC824ABAC6B2AC659756AABD6EC] - 13/07/2011 - 01:21:55 ---A- - C:\WINDOWS\Prefetch\IPODSERVICE.EXE-3192DE38.pf O45 - LFCP:[MD5.BB87D3EFC8523BC06935D49FFE77E4AB] - 13/07/2011 - 01:21:55 ---A- - C:\WINDOWS\Prefetch\MBAM.EXE-0BEE0439.pf O45 - LFCP:[MD5.A053CBA7B47E3A684E1D43BB7D9CBD85] - 13/07/2011 - 01:22:07 ---A- - C:\WINDOWS\Prefetch\WUAUCLT.EXE-399A8E72.pf O45 - LFCP:[MD5.7B09C9F9295D64FF524C2E0EFB603E60] - 13/07/2011 - 01:41:24 ---A- - C:\WINDOWS\Prefetch\PLUGIN-CONTAINER.EXE-15EDC9DD.pf O45 - LFCP:[MD5.8933B019D237686F15BA2FA3359E66CC] - 13/07/2011 - 01:44:02 ---A- - C:\WINDOWS\Prefetch\GOOGLEUPDATE.EXE-1E123D86.pf O45 - LFCP:[MD5.38E5E2CF712F630BF8625DF656D417C9] - 13/07/2011 - 02:06:47 ---A- - C:\WINDOWS\Prefetch\LOGON.SCR-151EFAEA.pf O45 - LFCP:[MD5.46E80A27FB03E8776C47C91F97DC9BBD] - 13/07/2011 - 02:08:29 ---A- - C:\WINDOWS\Prefetch\NOTEPAD.EXE-336351A9.pf O45 - LFCP:[MD5.B69237B03AAA06126C93BC0415D1CCC9] - 13/07/2011 - 02:08:53 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG2.EXE-0A3988F8.pf O45 - LFCP:[MD5.5AB1515F4AC74C8BC8B831BA1D5CCCAF] - 13/07/2011 - 02:08:53 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG2.TMP-05A102D2.pf O45 - LFCP:[MD5.B4539B4B1A8539021DD752B1FDF741B6] - 13/07/2011 - 02:09:13 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG.EXE-021B7932.pf O45 - LFCP:[MD5.1CE538F3BB5A1AF995C6365CE4A6BB11] - 13/07/2011 - 02:10:05 ---A- - C:\WINDOWS\Prefetch\CMD.EXE-087B4001.pf O45 - LFCP:[MD5.93E4C11F79AF8A50B9421290D6643FBF] - 13/07/2011 - 02:10:05 ---A- - C:\WINDOWS\Prefetch\SCHTASKS.EXE-0CBF6A11.pf O45 - LFCP:[MD5.2DB8E3961CEF0C264E559829DA7DB04D] - 13/07/2011 - 02:10:27 ---A- - C:\WINDOWS\Prefetch\FIREFOX.EXE-28641590.pf O45 - LFCP:[MD5.4426F470143251663C91DB350934A130] - 13/07/2011 - 02:10:30 ---A- - C:\WINDOWS\Prefetch\JQSNOTIFY.EXE-24AE4A36.pf O45 - LFCP:[MD5.3C010DE1CCFCD4A7B5E50645DE2F5B5E] - 13/07/2011 - 02:11:36 ---A- - C:\WINDOWS\Prefetch\AVWSC.EXE-0283F9DD.pf O45 - LFCP:[MD5.CE97407CD78ABC46035431E987605211] - 13/07/2011 - 23:30:08 ---A- - C:\WINDOWS\Prefetch\APPLEMOBILEDEVICESERVICE.EXE-1C6F3579.pf O45 - LFCP:[MD5.C76C30653BF3DD3F5EECC7CA79910BA3] - 13/07/2011 - 23:30:08 ---A- - C:\WINDOWS\Prefetch\BTWDINS.EXE-32832220.pf O45 - LFCP:[MD5.42C5BECBF6C662810A81011294F46A08] - 13/07/2011 - 23:46:14 ---A- - C:\WINDOWS\Prefetch\Layout.ini O45 - LFCP:[MD5.C4E240BC2047F1A81BBFBB1F21D85FBD] - 13/07/2011 - 23:46:25 ---A- - C:\WINDOWS\Prefetch\DEFRAG.EXE-273F131E.pf O45 - LFCP:[MD5.A2D292126D494CF47DFF785B3DE1F61C] - 13/07/2011 - 23:46:26 ---A- - C:\WINDOWS\Prefetch\DFRGNTFS.EXE-269967DF.pf O45 - LFCP:[MD5.8A83943B46CB8F2FE2D0BF7C08B58E30] - 13/07/2011 - 23:50:10 ---A- - C:\WINDOWS\Prefetch\HELPSVC.EXE-2878DDA2.pf ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Microsoft® Remote Desktop Help Session Manager.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Phone\Skype.exe" [Enabled] .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Plugin Manager\skypePM.exe" [Enabled] .(.Skype Technologies - Skype Extras Manager.) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe O47 - AAKE:Key Export SP - "C:\Program Files\Java\jre6\bin\javaw.exe" [Enabled] .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\javaw.exe O47 - AAKE:Key Export SP - "C:\Program Files\Bonjour\mDNSResponder.exe" [Enabled] .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O47 - AAKE:Key Export SP - "C:\Program Files\iTunes\iTunes.exe" [Enabled] .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe O47 - AAKE:Key Export SP - "C:\Program Files\Google\Google Earth\plugin\geplugin.exe" [Enabled] .(.Google - Google Earth.) -- C:\Program Files\Google\Google Earth\plugin\geplugin.exe O47 - AAKE:Key Export SP - "C:\Program Files\TightVNC\tvnserver.exe" [Enabled] .(.GlavSoft LLC. - TightVNC Server for Windows.) -- C:\Program Files\TightVNC\tvnserver.exe O47 - AAKE:Key Export SP - "C:\Program Files\TightVNC\vncviewer.exe" [Enabled] .(.TightVNC Group - vncviewer.) -- C:\Program Files\TightVNC\vncviewer.exe O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Microsoft® Remote Desktop Help Session Manager.) -- C:\WINDOWS\system32\sessmgr.exe ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager I/O Driver.) -- C:\WINDOWS\System32\Drivers\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\System32\Drivers\sermouse.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - System Restore Filesystem Filter Driver.) -- C:\WINDOWS\System32\Drivers\sr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager I/O Driver.) -- C:\WINDOWS\System32\Drivers\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\System32\Drivers\ip6fw.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\System32\Drivers\rdpcdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\System32\Drivers\rdpdd.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\System32\Drivers\rdpwd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\System32\Drivers\sermouse.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - System Restore Filesystem Filter Driver.) -- C:\WINDOWS\System32\Drivers\sr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdpipe.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdtcp.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\System32\Drivers\vgasave.sys (.not file.) ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - DSP Group TrueSpeech Audio Codec for MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (...) -- (.not file.) O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - DPA Client for 32 bit platforms.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Digest SSPI Authentication Package.) -- C:\WINDOWS\system32\digest.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - DPA Client for 32 bit platforms.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Digest SSPI Authentication Package.) -- C:\WINDOWS\system32\digest.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145 O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.F498FD605C08404B20A48954C722FF74] - 13/07/2011 - 20:45:05 ---A- . (.Meetinghouse Data Communications - IEEE 802.1X Protocol Driver.) -- C:\WINDOWS\system32\drivers\AegisP.sys [17119] O58 - SDL:[MD5.375EAC7DA270DA658501EE766F960201] - 13/07/2011 - 15:06:42 ---A- . (.ATI Technologies Inc. - ATI Radeon WindowsNT Miniport Driver.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys [874496] O58 - SDL:[MD5.5B44C214F9CD9F590BE9125347610380] - 13/07/2011 - 14:28:03 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\drivers\avgntdd.sys [45416] O58 - SDL:[MD5.47B879406246FFDCED59E18D331A0E7D] - 13/07/2011 - 01:26:13 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys [61960] O58 - SDL:[MD5.87451AA7CC6B6A590EBCEA05E755075A] - 13/07/2011 - 14:28:03 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\drivers\avgntmgr.sys [22360] O58 - SDL:[MD5.5FEDEF54757B34FB611B9EC8FB399364] - 13/07/2011 - 11:51:13 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\WINDOWS\system32\drivers\avipbb.sys [137656] O58 - SDL:[MD5.48BF91CFFBCDD12A710207F2A08FEC4D] - 13/07/2011 - 15:38:32 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS5.1 Driver..) -- C:\WINDOWS\system32\drivers\b57xp32.sys [132352] O58 - SDL:[MD5.3292260A6AE8F328C7EF698B6EBD56E2] - 13/07/2011 - 11:15:08 ---A- . (.Broadcom Corporation - USB Driver for Bluetooth Adapter.) -- C:\WINDOWS\system32\drivers\bcbthub.sys [148794] O58 - SDL:[MD5.0A5D4300A8EA29F67ABBBABB58DD5456] - 13/07/2011 - 14:04:04 ---A- . (.WIDCOMM, Inc. - Bluetooth Audio Device.) -- C:\WINDOWS\system32\drivers\btaudio.sys [16896] O58 - SDL:[MD5.7249EF21D6F70D971BDA3ED0AF16D340] - 13/07/2011 - 13:57:46 ---A- . (.WIDCOMM, Inc. - Bluetooth Protocol Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btkrnl.sys [1240938] O58 - SDL:[MD5.6D9D146B116B0C3F09A9AB9F6F805093] - 13/07/2011 - 13:50:32 ---A- . (.WIDCOMM, Inc. - Bluetooth BTPORT Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btport.sys [30235] O58 - SDL:[MD5.3E98D2550A6222CD6D278425FBB21C3E] - 13/07/2011 - 14:02:06 ---A- . (.WIDCOMM, Inc. - Bluetooth Serial Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btserial.sys [23239] O58 - SDL:[MD5.48B9AD7437FF5BFB8F13CAB03179FE72] - 13/07/2011 - 14:01:46 ---A- . (.WIDCOMM, Inc. - Bluetooth Serial Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btslbcsp.sys [222844] O58 - SDL:[MD5.F5418F5B86BF9610AF445F7884087F9E] - 13/07/2011 - 13:50:46 ---A- . (.WIDCOMM, Inc. - Bluetooth LAN Access Server Driver.) -- C:\WINDOWS\system32\drivers\btwdndis.sys [147864] O58 - SDL:[MD5.BAA90D983F77759FC70C65A1CE3D3566] - 13/07/2011 - 13:29:00 ---A- . (.Conexant Systems Inc. - Conexant WDM AC97 Audio Driver.) -- C:\WINDOWS\system32\drivers\camcaud.sys [34048] O58 - SDL:[MD5.90D9C324DF48BB8E3024E79F5C181784] - 13/07/2011 - 13:31:00 ---A- . (.Conexant Systems Inc. - Conexant AmcHal Driver.) -- C:\WINDOWS\system32\drivers\camchal.sys [276480] O58 - SDL:[MD5.B562592B7F5759C99E179CA467ECFB4C] - 13/07/2011 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C 1.2 WDM Main Driver.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528] O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 13/07/2011 - 13:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776] O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 13/07/2011 - 13:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys [26600] O58 - SDL:[MD5.573C7D0A32852B48F3058CFD8026F511] - 13/07/2011 - 13:00:00 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\drivers\hdaudbus.sys [144384] O58 - SDL:[MD5.FAC3B0A7EC158C4582D23EDA4C5A56E9] - 13/07/2011 - 14:00:00 ---A- . (.Conexant Systems, Inc. - HSFHWICH WDM driver.) -- C:\WINDOWS\system32\drivers\HSFHWICH.sys [200064] O58 - SDL:[MD5.2E84A40836B2A8DC523CB530C7262AC3] - 13/07/2011 - 13:58:00 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys [684800] O58 - SDL:[MD5.E5ADD2AFECBF514F5CCA730EDFDFB49E] - 13/07/2011 - 13:58:00 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\system32\drivers\HSF_DP.sys [1041536] O58 - SDL:[MD5.EADCBD84F788D887E73D8C7691B2C508] - 13/07/2011 - 16:23:42 ---A- . (.Inprocomm, Inc. - NT 5 (NDIS 5.1/5.0) x86 Driver.) -- C:\WINDOWS\system32\drivers\i2220ntx.sys [140288] O58 - SDL:[MD5.872D090CA5C306F62D1982BCE6302376] - 13/07/2011 - 07:44:04 ---A- . (.Intel Corporation - Intel Wireless Connection Agent.) -- C:\WINDOWS\system32\drivers\iwca.sys [234496] O58 - SDL:[MD5.78D93059DE425C9A248E1850ED80F822] - 13/07/2011 - 18:04:44 ---A- . (.ELANTECH Devices Corp. - KTP Ware Filter Driver.) -- C:\WINDOWS\system32\drivers\Ktp.sys [27392] O58 - SDL:[MD5.3D2C13377763EEAC0CA6FB46F57217ED] - 13/07/2011 - 08:11:20 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys [22712] O58 - SDL:[MD5.B309912717C29FC67E1BA4730A82B6DD] - 13/07/2011 - 08:11:30 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys [39984] O58 - SDL:[MD5.3C318B9CD391371BED62126581EE9961] - 13/07/2011 - 10:04:00 ---A- . (.Conexant - Diagnostic Interface DRIVER.) -- C:\WINDOWS\system32\drivers\mdmxsdk.sys [13059] O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 13/07/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032] O58 - SDL:[MD5.2ADC0CA9945C65284B3D19BC18765974] - 13/07/2011 - 01:24:38 ---A- . (.National Semiconductor Corporation - NSC Fast Infrared Driver..) -- C:\WINDOWS\system32\drivers\nscirda.sys [28672] O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 13/07/2011 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792] O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 13/07/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032] O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 13/07/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032] O58 - SDL:[MD5.85A26A3BB748DFD3170CDBF45B0DD7FD] - 13/07/2011 - 10:20:04 ---A- . (.Intel Corporation - Intel WLAN Packet Driver.) -- C:\WINDOWS\system32\drivers\s24trans.sys [11354] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/07/2011 - 13:00:00 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.44EF1200FEFFFFFF00000000CCF11200] - 01/06/2010 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [685816] O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 13/07/2011 - 14:28:02 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\drivers\ssmdrv.sys [28520] O58 - SDL:[MD5.EB363DDFBE8B6D51003CCAB29D93D744] - 13/07/2011 - 13:33:46 ---A- . (.Synaptics, Inc. - Synaptics Touchpad Driver.) -- C:\WINDOWS\system32\drivers\SynTP.sys [185824] O58 - SDL:[MD5.467FF7FB078DCEC24C3F4DB602190E3D] - 13/07/2011 - 12:40:00 ---A- . (.Texas Instruments - tifm21.sys.) -- C:\WINDOWS\system32\drivers\tifm21.sys [146304] O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 13/07/2011 - 13:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376] O58 - SDL:[MD5.5C2BDC152BBAB34F36473DEAF7713F22] - 13/07/2011 - 15:44:52 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\system32\drivers\usbaapl.sys [41984] O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 13/07/2011 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112] O58 - SDL:[MD5.C89DA341FCC883A3D79DC11727484FC2] - 13/07/2011 - 17:48:10 ---A- . (.Intel® Corporation - Intel® Wireless LAN Driver.) -- C:\WINDOWS\system32\drivers\w29n51.sys [3222784] O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9029] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 13/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097] O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 13/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4768] O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 13/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 13/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537] O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 13/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27866] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 13/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 13/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 13/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 13/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146] O58 - SDL:[MD5.4FE09F868CE65B334B42862C372C69CC] - 13/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [33840] O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 13/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560] O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 13/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648] O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 13/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424] O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 13/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560] O58 - SDL:[MD5.2F9806B52CB3748B1E49222744B28E3C] - 13/07/2011 - 11:52:22 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) -- C:\WINDOWS\system32\PCANDIS5.SYS [17134] ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC:Last File Created 13/07/2011 - 01:18:43 -SH-- C:\Documents And Settings\Saskia\ntuser.ini [178] O61 - LFC:Last File Created 13/07/2011 - 01:19:56 -SHA- C:\Documents And Settings\NetworkService.NT AUTHORITY\Local Settings\desktop.ini [62] O61 - LFC:Last File Created 13/07/2011 - 01:19:59 -SHA- C:\Documents And Settings\LocalService.NT AUTHORITY\Local Settings\desktop.ini [62] O61 - LFC:Last File Created 13/07/2011 - 01:20:03 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\sched.log [119206] O61 - LFC:Last File Created 13/07/2011 - 01:20:15 -SHA- C:\Documents And Settings\Saskia\Local Settings\desktop.ini [62] O61 - LFC:Last File Created 13/07/2011 - 01:20:22 ---A- C:\Documents And Settings\Saskia\Application Data\Intel\Wireless\Settings\Settings.ini [522] O61 - LFC:Last File Created 13/07/2011 - 01:21:03 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Adobe\AAMUpdater\1.0\aamu.log [42281] O61 - LFC:Last File Created 13/07/2011 - 01:21:05 ---A- C:\Documents And Settings\Saskia\Application Data\Intel\Wireless\WLANProfiles\Profiles.enc [270] O61 - LFC:Last File Created 13/07/2011 - 01:21:05 ---A- C:\Documents And Settings\Saskia\Application Data\Intel\Wireless\WLANProfiles\Profiles.enc.bak [270] O61 - LFC:Last File Created 13/07/2011 - 01:21:07 ---A- C:\Documents And Settings\Saskia\Application Data\Adobe\CS5ServiceManager\logs\CS5ServiceManager_native.log [3] O61 - LFC:Last File Created 13/07/2011 - 01:21:07 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\ArmUI.ini [148526] O61 - LFC:Last File Created 13/07/2011 - 01:21:24 -SH-- C:\Documents And Settings\Saskia\Local Settings\Temporary Internet Files\desktop.ini [67] O61 - LFC:Last File Created 13/07/2011 - 01:21:27 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\avguard.log [637000] O61 - LFC:Last File Created 13/07/2011 - 01:21:30 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\EVENTDB\avevtdb.dbe [20480] O61 - LFC:Last File Created 13/07/2011 - 01:21:38 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Microsoft\Network\Downloader\qmgr0.dat [5499] O61 - LFC:Last File Created 13/07/2011 - 01:21:39 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Microsoft\Network\Downloader\qmgr1.dat [4232] O61 - LFC:Last File Created 13/07/2011 - 01:21:42 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\AdobeARM.log [909] O61 - LFC:Last File Created 13/07/2011 - 01:22:03 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\JOBS\updjob.avj [1530] O61 - LFC:Last File Created 13/07/2011 - 01:22:28 ---A- C:\Documents And Settings\Saskia\Application Data\Skype\shared_dynco\dc.db [1183744] O61 - LFC:Last File Created 13/07/2011 - 01:22:28 ---A- C:\Documents And Settings\Saskia\Application Data\Skype\shared_dynco\dc.db-journal [472472] O61 - LFC:Last File Created 13/07/2011 - 01:22:56 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2011-07-13 (02-22-56).txt [1045] O61 - LFC:Last File Created 13/07/2011 - 01:40:33 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\XUL.mfl [1136490] O61 - LFC:Last File Created 13/07/2011 - 01:40:45 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\0652F256d01 [70932] O61 - LFC:Last File Created 13/07/2011 - 01:40:47 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\F3782808d01 [40164] O61 - LFC:Last File Created 13/07/2011 - 01:40:49 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\CA48276Dd01 [30680] O61 - LFC:Last File Created 13/07/2011 - 01:40:49 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\DB9CAF24d01 [37200] O61 - LFC:Last File Created 13/07/2011 - 01:40:58 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2A5B56D1d01 [38196] O61 - LFC:Last File Created 13/07/2011 - 01:41:15 ---A- C:\Documents And Settings\Saskia\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol [456] O61 - LFC:Last File Created 13/07/2011 - 01:41:15 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\DE58D529d01 [40173] O61 - LFC:Last File Created 13/07/2011 - 01:41:16 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\B9BCBC9Bd01 [48500] O61 - LFC:Last File Created 13/07/2011 - 01:41:17 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\00FFE48Bd01 [31710] O61 - LFC:Last File Created 13/07/2011 - 01:53:46 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\1292151Ed01 [42565] O61 - LFC:Last File Created 13/07/2011 - 01:53:48 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\18825B63d01 [27207] O61 - LFC:Last File Created 13/07/2011 - 01:53:48 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\1BA6BA42d01 [31032] O61 - LFC:Last File Created 13/07/2011 - 01:54:40 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\90B395C1d01 [24186] O61 - LFC:Last File Created 13/07/2011 - 01:56:52 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\downloads.sqlite [180224] O61 - LFC:Last File Created 13/07/2011 - 02:07:50 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\formhistory.sqlite [32768] O61 - LFC:Last File Created 13/07/2011 - 02:07:51 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\81741779d01 [32646] O61 - LFC:Last File Created 13/07/2011 - 02:07:52 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2A7A82E7d01 [76441] O61 - LFC:Last File Created 13/07/2011 - 02:07:52 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\FBF0CE4Fd01 [29569] O61 - LFC:Last File Created 13/07/2011 - 02:08:26 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2011-07-13 (03-08-26).txt [1063] O61 - LFC:Last File Created 13/07/2011 - 02:09:04 -SHA- C:\Documents And Settings\Saskia\Cookies\index.dat [147456] O61 - LFC:Last File Created 13/07/2011 - 02:09:04 -SHA- C:\Documents And Settings\Saskia\Local Settings\History\History.IE5\index.dat [720896] O61 - LFC:Last File Created 13/07/2011 - 02:09:29 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\places.sqlite [10309632] O61 - LFC:Last File Created 13/07/2011 - 02:09:30 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\places.sqlite-journal [0] O61 - LFC:Last File Created 13/07/2011 - 02:09:30 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_002_ [691326] O61 - LFC:Last File Created 13/07/2011 - 02:09:30 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_003_ [346543] O61 - LFC:Last File Created 13/07/2011 - 02:10:35 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\pluginreg.dat [12473] O61 - LFC:Last File Created 13/07/2011 - 02:10:41 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\eBay Inc\ebay-companion.sqlite [20480] O61 - LFC:Last File Created 13/07/2011 - 02:10:41 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\urlclassifierkey3.txt [154] O61 - LFC:Last File Created 13/07/2011 - 02:10:43 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\prefs.js [6316] O61 - LFC:Last File Created 13/07/2011 - 02:10:49 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\cert8.db [196608] O61 - LFC:Last File Created 13/07/2011 - 02:10:49 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\cookies.sqlite [557056] O61 - LFC:Last File Created 13/07/2011 - 02:10:49 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\key3.db [16384] O61 - LFC:Last File Created 13/07/2011 - 02:10:49 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\localstore.rdf [7762] O61 - LFC:Last File Created 13/07/2011 - 02:10:49 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_001_ [202429] O61 - LFC:Last File Created 13/07/2011 - 02:10:49 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_MAP_ [16660] O61 - LFC:Last File Created 13/07/2011 - 02:10:49 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\urlclassifier3.sqlite [12247040] O61 - LFC:Last File Created 13/07/2011 - 02:10:52 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\XPC.mfl [2005300] O61 - LFC:Last File Created 13/07/2011 - 02:32:59 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2011-07-11-03-31-42.log [16832] O61 - LFC:Last File Created 13/07/2011 - 02:32:59 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\REPORTS\1205b635.avl [1628] O61 - LFC:Last File Created 13/07/2011 - 02:48:49 -SHA- C:\Documents And Settings\Saskia\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat [32768] O61 - LFC:Last File Created 13/07/2011 - 02:48:51 ---A- C:\Documents And Settings\Saskia\Cookies\[email protected][1].txt [269] O61 - LFC:Last File Created 13/07/2011 - 02:48:51 ---A- C:\Documents And Settings\Saskia\Cookies\saskia@msn[2].txt [650] O61 - LFC:Last File Created 13/07/2011 - 02:48:51 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Microsoft\Internet Explorer\Recovery\Last Active\RecoveryStore.{EC61CF60-BF33-11D8-9A94-0012F02CDB69}.dat [4608] O61 - LFC:Last File Created 13/07/2011 - 02:48:51 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Microsoft\Internet Explorer\Recovery\Last Active\{E9836E6A-AB5F-11E0-9A95-0012F02CDB69}.dat [4608] O61 - LFC:Last File Created 13/07/2011 - 03:04:47 -SHA- C:\Documents And Settings\Saskia\Local Settings\History\History.IE5\MSHist012011070420110711\index.dat [32768] O61 - LFC:Last File Created 13/07/2011 - 03:04:47 -SHA- C:\Documents And Settings\Saskia\Local Settings\History\History.IE5\MSHist012011071120110712\index.dat [32768] O61 - LFC:Last File Created 13/07/2011 - 03:04:47 -SHA- C:\Documents And Settings\Saskia\Local Settings\History\History.IE5\MSHist012011071220110713\index.dat [32768] O61 - LFC:Last File Created 13/07/2011 - 03:05:34 ---A- C:\Documents And Settings\Saskia\Application Data\Skype\shared.xml [43806] O61 - LFC:Last File Created 13/07/2011 - 03:07:45 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\link.txt [115] O61 - LFC:Last File Created 13/07/2011 - 03:07:45 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe [9435312] O61 - LFC:Last File Created 13/07/2011 - 03:07:45 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\news.txt [78] O61 - LFC:Last File Created 13/07/2011 - 03:07:59 ---A- C:\Documents And Settings\All Users.WINDOWS\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes' Anti-Malware Help.lnk [800] O61 - LFC:Last File Created 13/07/2011 - 03:07:59 ---A- C:\Documents And Settings\All Users.WINDOWS\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes' Anti-Malware.lnk [800] O61 - LFC:Last File Created 13/07/2011 - 03:07:59 ---A- C:\Documents And Settings\All Users.WINDOWS\Start Menu\Programs\Malwarebytes' Anti-Malware\Uninstall Malwarebytes' Anti-Malware.lnk [824] O61 - LFC:Last File Created 13/07/2011 - 03:08:36 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\config.conf [2399] O61 - LFC:Last File Created 13/07/2011 - 03:08:36 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\custom.conf [5] O61 - LFC:Last File Created 13/07/2011 - 03:08:36 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\news.conf [248] O61 - LFC:Last File Created 13/07/2011 - 03:08:48 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\build.conf [261] O61 - LFC:Last File Created 13/07/2011 - 03:08:48 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\rules.ref [6983235] O61 - LFC:Last File Created 13/07/2011 - 03:31:02 ---A- C:\Documents And Settings\Saskia\Recent\IMG_0075.lnk [848] O61 - LFC:Last File Created 13/07/2011 - 03:31:04 ---A- C:\Documents And Settings\Saskia\Recent\scoot.lnk [641] O61 - LFC:Last File Created 13/07/2011 - 03:31:15 ---A- C:\Documents And Settings\Saskia\Application Data\Microsoft\Office\OIS12.pip [432] O61 - LFC:Last File Created 13/07/2011 - 03:32:58 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2011-07-10-04-28-19.log [52592] O61 - LFC:Last File Created 13/07/2011 - 03:32:58 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\REPORTS\c241e054.avl [3070] O61 - LFC:Last File Created 13/07/2011 - 03:33:21 ---A- C:\Documents And Settings\Saskia\Recent\IMG_0152.lnk [1071] O61 - LFC:Last File Created 13/07/2011 - 03:33:22 ---A- C:\Documents And Settings\Saskia\Recent\X8.lnk [826] O61 - LFC:Last File Created 13/07/2011 - 03:33:44 ---A- C:\Documents And Settings\Saskia\Application Data\Microsoft\OIS\Toolbars.dat [723] O61 - LFC:Last File Created 13/07/2011 - 03:33:44 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Microsoft\OIS\OIScatalog.cag [614] O61 - LFC:Last File Created 13/07/2011 - 03:34:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [26624] O61 - LFC:Last File Created 13/07/2011 - 03:47:04 ---A- C:\Documents And Settings\Saskia\Recent\Lob des lernens.lnk [586] O61 - LFC:Last File Created 13/07/2011 - 03:48:12 ---A- C:\Documents And Settings\Saskia\Application Data\Microsoft\Office\Recent\Lob des lernens.LNK [517] O61 - LFC:Last File Created 13/07/2011 - 03:48:12 ---A- C:\Documents And Settings\Saskia\Application Data\Microsoft\Office\Recent\My Documents.LNK [362] O61 - LFC:Last File Created 13/07/2011 - 03:48:12 ---A- C:\Documents And Settings\Saskia\Recent\Lob des lernens (2).lnk [591] O61 - LFC:Last File Created 13/07/2011 - 03:48:13 --H-- C:\Documents And Settings\Saskia\Application Data\Microsoft\Office\Recent\index.dat [1597] O61 - LFC:Last File Created 13/07/2011 - 03:48:22 ---A- C:\Documents And Settings\Saskia\Application Data\Microsoft\Office\Word12.pip [1828] O61 - LFC:Last File Created 13/07/2011 - 03:49:14 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.21452 [91] O61 - LFC:Last File Created 13/07/2011 - 03:49:14 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.21452 [48] O61 - LFC:Last File Created 13/07/2011 - 03:49:15 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2011-07-10 (04-49-15).txt [1125] O61 - LFC:Last File Created 13/07/2011 - 03:51:05 ---A- C:\Documents And Settings\All Users.WINDOWS\Start Menu\Programs\ZHP\ZHPDiag.lnk [682] O61 - LFC:Last File Created 13/07/2011 - 03:59:16 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\696F3DE637E6DE85B458996D49D759AD [781] O61 - LFC:Last File Created 13/07/2011 - 03:59:16 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\B8CC409ACDBF2A2FE04C56F2875B1FD6 [561] O61 - LFC:Last File Created 13/07/2011 - 03:59:16 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\696F3DE637E6DE85B458996D49D759AD [156] O61 - LFC:Last File Created 13/07/2011 - 03:59:16 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\B8CC409ACDBF2A2FE04C56F2875B1FD6 [134] O61 - LFC:Last File Created 13/07/2011 - 03:59:19 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\904590238400AD963F77FAAAADC9BAB5 [571] O61 - LFC:Last File Created 13/07/2011 - 03:59:19 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\904590238400AD963F77FAAAADC9BAB5 [136] O61 - LFC:Last File Created 13/07/2011 - 03:59:21 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\1B749B72855CB97BF2F58675617C9BF9 [576] O61 - LFC:Last File Created 13/07/2011 - 03:59:21 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\1B749B72855CB97BF2F58675617C9BF9 [162] O61 - LFC:Last File Created 13/07/2011 - 03:59:46 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\A44F4E7CB3133FF765C39A53AD8FCFDD [558] O61 - LFC:Last File Created 13/07/2011 - 03:59:46 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\A44F4E7CB3133FF765C39A53AD8FCFDD [146] O61 - LFC:Last File Created 13/07/2011 - 03:59:47 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\7B2238AACCEDC3F1FFE8E7EB5F575EC9 [552] O61 - LFC:Last File Created 13/07/2011 - 03:59:47 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\7B2238AACCEDC3F1FFE8E7EB5F575EC9 [132] O61 - LFC:Last File Created 13/07/2011 - 03:59:51 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\3C83474D61E624A4F9844DF935AFE217 [569] O61 - LFC:Last File Created 13/07/2011 - 03:59:51 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\3C83474D61E624A4F9844DF935AFE217 [142] O61 - LFC:Last File Created 13/07/2011 - 03:59:59 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\C554DCF706A5AAB8B360FAD227EAB9C7 [1310] O61 - LFC:Last File Created 13/07/2011 - 03:59:59 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\E8974A4669383843486E5AFDB09650F5 [2249] O61 - LFC:Last File Created 13/07/2011 - 03:59:59 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\C554DCF706A5AAB8B360FAD227EAB9C7 [100] O61 - LFC:Last File Created 13/07/2011 - 03:59:59 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\E8974A4669383843486E5AFDB09650F5 [124] O61 - LFC:Last File Created 13/07/2011 - 04:00:09 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\A8FABA189DB7D25FBA7CAC806625FD30 [96054] O61 - LFC:Last File Created 13/07/2011 - 04:00:09 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\A8FABA189DB7D25FBA7CAC806625FD30 [124] O61 - LFC:Last File Created 13/07/2011 - 04:00:34 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\570FB14ABC805C46708F32F92F10C3B4 [573] O61 - LFC:Last File Created 13/07/2011 - 04:00:34 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\570FB14ABC805C46708F32F92F10C3B4 [174] O61 - LFC:Last File Created 13/07/2011 - 04:03:37 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\E6024EAC88E6B6165D49FE3C95ADD735 [558] O61 - LFC:Last File Created 13/07/2011 - 04:03:37 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\E6024EAC88E6B6165D49FE3C95ADD735 [144] O61 - LFC:Last File Created 13/07/2011 - 04:04:30 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\2BF68F4714092295550497DD56F57004 [18] O61 - LFC:Last File Created 13/07/2011 - 04:04:30 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015 [45039] O61 - LFC:Last File Created 13/07/2011 - 04:04:30 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\2BF68F4714092295550497DD56F57004 [216] O61 - LFC:Last File Created 13/07/2011 - 04:04:30 -S-A- C:\Documents And Settings\Saskia\Application Data\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015 [216] O61 - LFC:Last File Created 13/07/2011 - 04:13:26 ---A- C:\Documents And Settings\Saskia\Recent\ZHPDiag.lnk [670] O61 - LFC:Last File Created 13/07/2011 - 04:16:13 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\bookmarkbackups\bookmarks-2011-07-10.json [5290] O61 - LFC:Last File Created 13/07/2011 - 04:17:26 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\bookmarkbackups\bookmarks-2011-07-11.json [5290] O61 - LFC:Last File Created 13/07/2011 - 21:35:34 -SHA- C:\Documents And Settings\LocalService.NT AUTHORITY\Cookies\index.dat [32768] O61 - LFC:Last File Created 13/07/2011 - 21:35:34 -SHA- C:\Documents And Settings\LocalService.NT AUTHORITY\Local Settings\History\History.IE5\index.dat [32768] O61 - LFC:Last File Created 13/07/2011 - 21:35:48 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\IDX\master.idx [56] O61 - LFC:Last File Created 13/07/2011 - 21:36:26 ---A- C:\Documents And Settings\Saskia\Cookies\[email protected][3].txt [360] O61 - LFC:Last File Created 13/07/2011 - 21:37:08 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2011-07-12-22-35-29.log [37408] O61 - LFC:Last File Created 13/07/2011 - 21:37:08 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\REPORTS\88436965.avl [2500] O61 - LFC:Last File Created 13/07/2011 - 21:37:52 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.60694 [71] O61 - LFC:Last File Created 13/07/2011 - 21:37:52 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.28478 [142] O61 - LFC:Last File Created 13/07/2011 - 21:37:52 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.60694 [249856] O61 - LFC:Last File Created 13/07/2011 - 21:37:52 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.28478 [149] O61 - LFC:Last File Created 13/07/2011 - 21:37:54 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2011-07-12 (22-37-54).txt [1229] O61 - LFC:Last File Created 13/07/2011 - 21:40:19 ---A- C:\Documents And Settings\Saskia\Recent\ZHPDiag (2).lnk [512] O61 - LFC:Last File Created 13/07/2011 - 21:40:19 ---A- C:\Documents And Settings\Saskia\Recent\ZHPFixReport.lnk [697] O61 - LFC:Last File Created 13/07/2011 - 21:45:42 ---A- C:\Documents And Settings\Saskia\Application Data\Adobe\Acrobat\9.0\SharedDataEvents [3072] O61 - LFC:Last File Created 13/07/2011 - 21:48:02 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\blocklist.xml [10573] O61 - LFC:Last File Created 13/07/2011 - 21:48:02 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\extensions.rdf [10704] O61 - LFC:Last File Created 13/07/2011 - 23:28:45 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\bookmarkbackups\bookmarks-2011-07-13.json [5290] O61 - LFC:Last File Created 13/07/2011 - 23:50:01 -SHA- C:\Documents And Settings\NetworkService.NT AUTHORITY\Cookies\index.dat [16384] O61 - LFC:Last File Created 13/07/2011 - 23:50:01 -SHA- C:\Documents And Settings\NetworkService.NT AUTHORITY\Local Settings\History\History.IE5\index.dat [16384] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM] -- Ad-Remover O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 O63 - Logiciel: FindyKill - (.El Desaparecido.) O63 - Logiciel: RSIT - (.random/random.) O63 - Logiciel: Toolbar SD - (.IDN Team.) O63 - Logiciel: ToolsCleaner - (.A.Rothstein & dj QUIOU.) ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\WINDOWS\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - Bing ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.139CA7EE65280F3AE220520E8DD5F75E] [sPRF][09/11/2005] (.MESTRELAB - MestReC Application.) -- C:\Documents and Settings\Saskia\Desktop\MestReC.exe [5902336] [MD5.2E0B5C7437AB198A1AA2810BAA4E682B] [sPRF][04/12/2010] (...) -- C:\Documents and Settings\Saskia\Desktop\SoftonicFR_JDownloader_09579.exe [30456832] [MD5.5B5D56738C261634C281C7BA1CA1A2DF] [sPRF][12/07/2011] (.OldTimer Tools - Pas de description.) -- C:\Documents and Settings\Saskia\Desktop\TFC.exe [446464] [MD5.9B0EEDE0731D10F482E72BAC24A059CD] [sPRF][10/07/2011] (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Saskia\Desktop\ZHPDiag2.exe [2538818] ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 13/07/2011 136360 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe SR - | Auto 13/07/2011 269480 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe SR - | Auto 13/07/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 13/07/2011 425984 | (Ati HotKey Poller) . (.ATI Technologies Inc..) - C:\WINDOWS\system32\Ati2evxx.exe SR - | Auto 13/07/2011 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SR - | Auto 13/07/2011 163840 | (btwdins) . (.WIDCOMM, Inc..) - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe SS - | Demand 13/07/2011 224768 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe SR - | Auto 13/07/2011 86016 | (EvtEng) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe SS - | Auto 13/07/2011 133104 | (gupdate1cb095d934d6ec8) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SR - | Demand 13/07/2011 820008 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SR - | Auto 13/07/2011 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe SR - | Auto 13/07/2011 98304 | (OwnershipProtocol) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe SR - | Auto 13/07/2011 139264 | (RegSrvc) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe SR - | Auto 13/07/2011 360521 | (S24EventMonitor) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe SS - | Demand 13/07/2011 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe SS - | Auto 13/07/2011 826896 | (tvnserver) . (.GlavSoft LLC..) - C:\Program Files\TightVNC\tvnserver.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by Saskia at 13/07/2011 03:23:40 device: opened successfully user: MBR read successfully Disk trace: called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys sptd.sys >>UNKNOWN [0x869858AC]<< C:\WINDOWS\system32\drivers\sptd.sys 1 ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\Harddisk0\DR0[0x8693F208] 3 CLASSPNP[0xF7546FD7] -> ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\00000085[0x869E0030] 5 ACPI[0xF72BB620] -> ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\Ide\IdeDeviceP0T0L0-4[0x868FF940] kernel: MBR read successfully user & kernel MBR OK ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Saskia at 13/07/2011 03:23:42 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ---\\ Liste des émulateurs de CD/DVD (Hook du MBR) O58 - SDL:[MD5.44EF1200FEFFFFFF00000000CCF11200] - 01/06/2010 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [685816] End of the scan (1568 lines in 14mn 09s)(0)
  6. grem
    Merci pour ton aide. Voici les rapports : Rapport de ZHPFix 1.12.3337 par Nicolas Coolman, Update du 08/07/2011 Fichier d'export Registre : Run by Saskia at 11/07/2011 03:52:49 Windows XP Professional Service Pack 3 (Build 2600) Web site : ZHPFix Fix de rapport ========== Logiciel(s) ========== ABSENT Uninstall Process: c:\documents and settings\saskia\application data\advantage\advuninst.exes a trusted download. are you sure you want to uninstall advantage support for daemon tools? ABSENT Uninstall Process: c:\program files\accelrys\accord50\accordsk\rtdeinstall\setup.exe ========== Clé(s) du Registre ========== SUPPRIME [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\advantage_DAEM] SUPPRIME [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AccelrysAccordSDK51RT] SUPPRIME Partiel Software Key: {1EF93620-4B15-4DB4-B0EA-889E2F187081} SUPPRIME Key: HKCU\Software\JP595IR86O SUPPRIME Key: HKCU\Software\NtWqIVLZEWZU SUPPRIME Key: HKCU\Software\OW1T3CYG7T SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\ForceRenive SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} SUPPRIME Key: HKLM\Software\Classes\Installer\Features\5B4758C25396ECF468E04F8E063287FF ========== Valeur(s) du Registre ========== SUPPRIME RunValue: NtWqIVLZEWZU ABSENT RunValue: NtWqIVLZEWZU SUPPRIME AAKE KeyValue: C:\Program Files\CambridgeSoft\ChemOffice2004\Chem3D\Chem3D.exe SUPPRIME AAKE KeyValue: C:\Program Files\CambridgeSoft\ChemOffice2004\ChemDraw\ChemDraw.exe ========== Elément(s) de donnée du Registre ========== REMPLACE Value AntiVirusOverride : Good (0) - Bad (1) ========== Dossier(s) ========== SUPPRIME Folder*: C:\Documents and Settings\Saskia\Local Settings\Application Data\freecompressor Air SUPPRIME Temporaires Windows: : 56 SUPPRIME Flash Cookies: 131 ========== Fichier(s) ========== ABSENT File: c:\docume~1\saskia\locals~1\temp\jj2.exe SUPPRIME c:\documents and settings\saskia\desktop\arbeitsplatz.lnk SUPPRIME c:\documents and settings\saskia\desktop\originpro 8g.lnk SUPPRIME c:\program files\originlab\origin8\origin8.exe SUPPRIME c:\windows\tasks\adobeaamupdater-1.0-jÉrÉmy-saskia.job SUPPRIME c:\windows\tasks\{bbaeaeaf-1275-40e2-bd6c-bc8f88bd114a}.job SUPPRIME c:\program files\cambridgesoft\chemoffice2004\chem3d\chem3d.exe SUPPRIME c:\program files\cambridgesoft\chemoffice2004\chemdraw\chemdraw.exe SUPPRIME Temporaires Windows: : 333 SUPPRIME Flash Cookies: 70 ========== Tache planifiée ========== SUPPRIME Task: {BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A} ========== Récapitulatif ========== 10 : Clé(s) du Registre 4 : Valeur(s) du Registre 1 : Elément(s) de donnée du Registre 3 : Dossier(s) 10 : Fichier(s) 2 : Logiciel(s) 1 : Tache planifiée ========== Chemin du fichier rapport ========== C:\Program Files\ZHPDiag\ZHPFixReport.txt End of the scan in 02mn 50s et celui de MBAM : Malwarebytes' Anti-Malware 1.51.0.1200 www.malwarebytes.org Version de la base de données: 7076 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 12/07/2011 22:37:54 mbam-log-2011-07-12 (22-37-54).txt Type d'examen: Examen complet (C:\|) Elément(s) analysé(s): 376095 Temps écoulé: 2 heure(s), 2 minute(s), 41 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 1 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 1 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ (Hijack.Zones) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): c:\WINDOWS\Jlujoa.exe (Trojan.FakeAV) -> Quarantined and deleted successfully.
  7. grem
    Merci! Voici les rapports : Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Version de la base de données: 4770 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 10/07/2011 04:49:15 mbam-log-2011-07-10 (04-49-15).txt Type d'examen: Examen complet (C:\|) Elément(s) analysé(s): 341184 Temps écoulé: 3 heure(s), 0 minute(s), 35 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 1 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté) Rapport de ZHPDiag v1.27.2405 par Nicolas Coolman, Update du 08/07/2011 Run by Saskia at 10/07/2011 04:51:37 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v8.0.6001.18702 MFIE: Mozilla Firefox v (Defaut) GCIE: Google Chrome v12.0.742.112 ---\\ System Information Windows XP Professional Service Pack 3 (Build 2600) Processor: x86 Family 6 Model 13 Stepping 8, GenuineIntel Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 1022 MB (35% free) System Restore: Activé (Enable) System drive C: has 4 GB (5%) free of 75 GB ---\\ Logged in mode Computer Name: JÉRÉMY User Name: Saskia All Users Names: SUPPORT_388945a0, Saskia, HelpAssistant, Guest, ASPNET, Administrator, Unselected Option: None Logged in as Administrator ---\\ Environnement Variables ~ %AppData%=C:\Documents and Settings\Saskia\Application Data\ ~ %Desktop%=C:\Documents and Settings\Saskia\Desktop\ ~ %Favorites%=C:\Documents and Settings\Saskia\Favorites\ ~ %LocalAppData%=C:\Documents and Settings\Saskia\Local Settings\Application Data\ ~ %StartMenu%=C:\Documents and Settings\Saskia\Start Menu\ ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 4 Go of 75 Go) D:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: Modified [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK ---\\ Recherche particulière de fichiers génériques [MD5.2BB75B7F548D82A099125D0C5971DE7D] - (.Microsoft Corporation - Windows Explorer.) (.10/07/2011 - 12:38:24.) -- C:\WINDOWS\Explorer.exe [1033728] [MD5.CC951C2212A200475A587A440E0AA804] - (.Microsoft Corporation - Internet Extensions for Win32.) (.10/07/2011 - 17:11:12.) -- C:\WINDOWS\system32\wininet.dll [916480] [MD5.D1BAC55BC35A0CA735AEA19F609F2B22] - (.Microsoft Corporation - Windows NT Logon Application.) (.10/07/2011 - 14:33:54.) -- C:\WINDOWS\system32\Winlogon.exe [507904] [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.10/07/2011 - 23:10:32.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512] [MD5.A0857C97770034FD2AF17DC4014B5ABD] - (.Microsoft Corporation - NT File System Driver.) (.10/07/2011 - 14:45:52.) -- C:\WINDOWS\system32\drivers\ntfs.sys [576384] ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 2/23 ~ Mes musiques (My Musics) : 36/2636 ~ Mes Favoris (My Favorites) : 2/11 ~ Mes Documents (My Documents) : 170/9878 ~ Mon Bureau (My Desktop) : 9/1502 ~ Menu demarrer (Programs) : 4/30 ---\\ Processus lancés [MD5.127E07D34B44438442A0E81AE7F093C0] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [425984] [MD5.5AE75738B957C2064566007487D973B6] - (.Intel Corporation - EvtEng Module.) -- C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [86016] [MD5.215DEEE103618F102263C8ECF4B8413E] - (.Intel Corporation - Event Monitor - Supports driver extensions.) -- C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [360521] [MD5.A5BCBAF0477C4869B67E0195AEA4A9CD] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [136360] [MD5.2F73148CFD930B641D860710931FE8C7] - (.Intel Corporation - ZeroCfgSvc MFC Application.) -- C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe [389120] [MD5.1CF3866E09FFE13CF280D4DDFA9F7DCF] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [269480] [MD5.018857EAD9A077A56AEDFC0E5EF7A24A] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664] [MD5.CDE000884FD7BAF0C1FDFE029B0891DE] - (.Avira GmbH - AntiVir shadow copy service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76968] [MD5.F832F1505AD8B83474BD9A5B1B985E01] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [345376] [MD5.05D21AD56EA309597864393D3D4A14F7] - (.WIDCOMM, Inc. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [163840] [MD5.1834C96FB1F9280BCF6DDFA6DE8338BF] - (.Sun Microsystems, Inc. - Java Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376] [MD5.F57524C6764E96FC29AC64394282EB36] - (.Intel Corporation - Ownership protocol service.) -- C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe [98304] [MD5.A7EEBA958CFCCADBD4F47C3CDB51C714] - (.Intel Corporation - RegSrvc Module.) -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [139264] [MD5.0461FAEBB17A4A92EFFA2EB67BC52261] - (.GlavSoft LLC. - TightVNC Server for Windows.) -- C:\Program Files\TightVNC\tvnserver.exe [826896] [MD5.037B1E7798960E0420003D05BB577EE6] - (...) -- C:\WINDOWS\system32\rundll32.exe [33280] [MD5.3665BA88B993554DB062FF96542D85FF] - (.Synaptics, Inc. - TouchPad Driver Helper Application.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [98394] [MD5.55582F239914C8EFCCF89BD632639542] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [688218] [MD5.00EE4D43383C6162744C18626FEA96F9] - (.INPROCOMM - Wireless LAN Configuration Utility.) -- C:\Program Files\acer\Wireless\Utility\WlanUtil.exe [417792] [MD5.0E237B85A4FF082CAECFBF4804A29F3C] - (.Intel Corporation - Intel Framework MFC Application.) -- C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [385024] [MD5.1AFE29C82ED39A48FEC9E747B356C87C] - (.Intel Corporation - Ease Of Use Wizard Application.) -- C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe [356352] [MD5.F7364F9AF03F4F01856804C28B459FEB] - (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064] [MD5.9D5E8B45BD348DF0882C69EED0E83111] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [281768] [MD5.2DFCB2393528446AEB9FB861A8FC39AB] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160] [MD5.3E930C641079443D4DE036167A69CAA2] - (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe [1695232] [MD5.70B6D0C45256B688B7DBC10E922FB402] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [26192168] [MD5.97CF3EC1582005C2D354B708F0960B63] - (.WIDCOMM, Inc. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [565309] [MD5.0CA8C2E721617AA2F923A8151C96FB33] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [820008] [MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53472] [MD5.055713CD9E0C6AAC46AFBB3A5B95EF75] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [912344] [MD5.55B35599E4B8C20904CF6BE6F50A1F8D] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856] [MD5.5E28284F9B5F9097640D58A73D38AD4C] - (.Microsoft Corporation - Notepad.) -- C:\WINDOWS\system32\NOTEPAD.EXE [69120] [MD5.5FE2221EC55549B52427BF37E9173E47] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [656384] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Documents and Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\prefs.js M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [saskia] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll P2 - FPN:Firefox Plugin Navigator . (.CambridgeSoft Corp. - ChemDraw Pro Plugin 8.0.) -- C:\Program Files\Mozilla Firefox\Plugins\npcdp32.dll P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.1".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll P2 - FPN:Firefox Plugin Navigator . (.Pas de propriétaire - SciFinder Application Plugin for Mozilla.) -- C:\Program Files\Mozilla Firefox\Plugins\npSfAppM.dll P2 - FPN:Firefox Plugin Navigator . (.CNN - NPTURNMED.) -- C:\Program Files\Mozilla Firefox\Plugins\NPTURNMED.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Documents and Settings\Saskia\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences G0 - GCSP: Preference [user Data\Default][HomePage] Google ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Microsoft Corporation R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.19072 (longhorn_ie8_gdr.110420-1700)) -- C:\WINDOWS\system32\ieframe.dll ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: SciFinder Scholar Bar - {4e16a8fb-0521-46d1-aa2c-d0fc7abf6af9} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] bthprops.cpl O4 - HKLM\..\Run: [KTPWare] . (.ELANTECH Devices Corp. - KTP Ware TSR Enhancements.) -- C:\Program Files\Elantech\ktp.exe O4 - HKLM\..\Run: [synTPLpr] . (.Synaptics, Inc. - TouchPad Driver Helper Application.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [acerWireless] . (.INPROCOMM - Wireless LAN Configuration Utility.) -- C:\Program Files\acer\Wireless\Utility\WlanUtil.exe O4 - HKLM\..\Run: [intelWireless] . (.Intel Corporation - Intel Framework MFC Application.) -- C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe O4 - HKLM\..\Run: [EOUApp] . (.Intel Corporation - Ease Of Use Wizard Application.) -- C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe O4 - HKLM\..\Run: [ATIPTA] . (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe O4 - HKLM\..\Run: [switchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe O4 - HKLM\..\Run: [tvncontrol] . (.GlavSoft LLC. - TightVNC Server for Windows.) -- C:\Program Files\TightVNC\tvnserver.exe O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe O4 - HKCU\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe O4 - HKCU\..\Run: [NtWqIVLZEWZU] C:\DOCUME~1\Saskia\LOCALS~1\Temp\Jj2.exe (.not file.) O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] . (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_Plugin.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\Run: [NtWqIVLZEWZU] C:\DOCUME~1\Saskia\LOCALS~1\Temp\Jj2.exe (.not file.) O4 - HKUS\S-1-5-21-1343024091-57989841-1177238915-1003\..\RunOnce: [FlashPlayerUpdate] . (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_Plugin.exe ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe After Effects CS3.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe After Effects CS3\Support Files\AfterFX.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Bridge CS3.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Adobe\Adobe Bridge CS3\Bridge.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Device Central CS3.lnk . (.Adobe Systems.) -- C:\Program Files\Adobe\Adobe Device Central CS3\DeviceCentral.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe ExtendScript Toolkit 2.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Utilities\ExtendScript Toolkit 2\ExtendScript Toolkit 2.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop CS3.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Photoshop CS3\Photoshop.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop Lightroom 2.4.lnk . (.Adobe Systems.) -- C:\Program Files\Adobe\Adobe Photoshop Lightroom 2.4\lightroom.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Premiere Pro CS3.lnk . (...) -- C:\Program Files\Adobe\Adobe Premiere Pro CS3\Adobe Premiere Pro.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 6.0.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1033-7B44-000000000001}\SC_Reader_PM.ico (.not file.) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Stock Photos CS3.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe Stock Photos CS3\Adobe Stock Photos CS3.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\AppleSoftwareUpdateIco.exe (.not file.) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\PC Inspector smart recovery.lnk . (.Convar Deutschland GmbH.) -- C:\Program Files\Convar\SmartRecovery\SMR.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Yahoo! Mail.lnk . (...) -- C:\WINDOWS\system32\RUNDLL32.EXE O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\AD-R.lnk . (...) -- C:\Program Files\Ad-Remover\main.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Arbeitsplatz.lnk - Clé orpheline O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\ChemDraw Ultra 8.0.lnk . (.CambridgeSoft Corp..) -- C:\Program Files\CambridgeSoft\ChemOffice2004\ChemDraw\ChemDraw.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\eBay Sidebar pour Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\JDownloader.lnk . (.AppWork UG (haftungsbeschränkt).) -- C:\Program Files\JDownloader\JDownloader.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Microsoft Office Word 2007.lnk . (...) -- C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\OriginPro 8G.lnk . (.OriginLab Corporation.) -- C:\Program Files\OriginLab\Origin8\Origin8.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Pixia 4.3a FR.lnk . (...) -- C:\Program Files\Pixia 4.3a FR\pixia.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\Shortcut to EndNote.lnk . (.Thomson ResearchSoft.) -- C:\Program Files\EndNote 9\EndNote.exe O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\TeXnicCenter.lnk . (.TeXnicCenter.org (www.TeXnicCenter.org).) -- C:\Program Files\TeXnicCenter\TEXCNTR.EXE O4 - Global Startup: C:\Documents And Settings\Saskia\Desktop\XnView.lnk . (.XnView, http://www.xnview.com.) -- C:\Program Files\XnView\xnview.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\Office12\EXCEL.exe O8 - Extra context menu item: Send To &Bluetooth . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico O9 - Extra button: Skype add-on for Internet Explorer - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (...) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Client Service for NetWare Provider and Authentication Package DLL.) -- C:\WINDOWS\system32\nwprovau.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{19A8B5E0-A772-4CEA-B80A-AF76F33DB28D}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CS1\Services\Tcpip\..\{19A8B5E0-A772-4CEA-B80A-AF76F33DB28D}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CS2\Services\Tcpip\..\{19A8B5E0-A772-4CEA-B80A-AF76F33DB28D}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2 ---\\ Protocole additionnel et piratage de protocole (O18) O18 - Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Handler: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} . (.WIDCOMM, Inc. - BTXPPanel Module.) -- C:\WINDOWS\system32\btxppanel.dll ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\Windows\System32\Ati2evxx.dll O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Offline Network Agent.) -- C:\Windows\System32\cscdll.dll O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll O20 - Winlogon Notify: IntelWireless . (.Intel Corporation - LogonNotify DLL.) -- C:\Program Files\Intel\Wireless\Bin\LgNotify.dll O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - Secondary Logon Service Notification DLL.) -- C:\Windows\System32\sclgntfy.dll O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\WlNotify.dll O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - Common DLL to receive Winlogon notification.) -- C:\Windows\System32\wlnotify.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Systray shell service object.) -- C:\WINDOWS\system32\stobject.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\WINDOWS\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Bluetooth Service (btwdins) . (.WIDCOMM, Inc. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: EvtEng (EvtEng) . (.Intel Corporation - EvtEng Module.) - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: Service Google Update (gupdate1cb095d934d6ec8) (gupdate1cb095d934d6ec8) . (.Google Inc. - Google Installer.) - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: OwnershipProtocol (OwnershipProtocol) . (.Intel Corporation - Ownership protocol service.) - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe O23 - Service: RegSrvc (RegSrvc) . (.Intel Corporation - RegSrvc Module.) - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) . (.Intel Corporation - Event Monitor - Supports driver extensions.) - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: TightVNC Server (tvnserver) . (.GlavSoft LLC. - TightVNC Server for Windows.) - C:\Program Files\TightVNC\tvnserver.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Desktop Component 0: My Current Home Page - file:About:Home O24 - Default MHTML Editor: Last - .(...) - (.not file.) ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-JÉRÉMY-Saskia.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job [MD5.5447AF432CDA61159ADDE218C468FFD9] [APT] [AdobeAAMUpdater-1.0-JRMY-Saskia] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [MD5.187E0D2AB859AD03393DDD731076BE81] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [MD5.00000000000000000000000000000000] [APT] [{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}] (...) -- C:\DOCUME~1\Saskia\LOCALS~1\Temp\a.exe (.not file.) ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\WINDOWS\System32\DRIVERS\avipbb.sys O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\System32\DRIVERS\cdrom.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - i8042 Port Driver.) - C:\WINDOWS\System32\DRIVERS\i8042prt.sys O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\System32\DRIVERS\imapi.sys O41 - Driver: (intelppm) . (.Microsoft Corporation - Processor Device Driver.) - C:\WINDOWS\System32\DRIVERS\intelppm.sys O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\System32\DRIVERS\ipsec.sys O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Keyboard Class Driver.) - C:\WINDOWS\System32\DRIVERS\kbdclass.sys O41 - Driver: (kbdhid) . (.Microsoft Corporation - HID Mouse Filter Driver.) - C:\WINDOWS\System32\DRIVERS\kbdhid.sys O41 - Driver: (Mouclass) . (.Microsoft Corporation - Mouse Class Driver.) - C:\WINDOWS\System32\DRIVERS\mouclass.sys O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\System32\DRIVERS\mrxsmb.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\System32\DRIVERS\netbios.sys O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\System32\DRIVERS\netbt.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\System32\DRIVERS\rasacd.sys O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys O41 - Driver: (redbook) . (.Microsoft Corporation - Redbook Audio Filter Driver.) - C:\WINDOWS\System32\DRIVERS\redbook.sys O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\WINDOWS\System32\DRIVERS\ssmdrv.sys O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\System32\DRIVERS\tcpip.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys ---\\ Logiciels installés (O42) O42 - Logiciel: ATI - Utilitaire de désinstallation du logiciel - (.Pas de propriétaire.) [HKLM] -- All ATI Software O42 - Logiciel: ATI Control Panel - (.Pas de propriétaire.) [HKLM] -- {0BEDBD4E-2D34-47B5-9973-57E62B29307C} O42 - Logiciel: ATI Display Driver - (.Pas de propriétaire.) [HKLM] -- ATI Display Driver O42 - Logiciel: Accord SDK 5.1 Runtime - (.Pas de propriétaire.) [HKLM] -- AccelrysAccordSDK51RT O42 - Logiciel: AdVantage (Powering DAEMON Tools) - (.AdVantage.) [HKCU] -- advantage_DAEM O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723} O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7} O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Photoshop CS5 - (.Adobe Systems Incorporated.) [HKLM] -- {15FEDA5F-141C-4127-8D7E-B962D1742728} O42 - Logiciel: Adobe Reader 9.4.1 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001} O42 - Logiciel: Akamai NetSession Interface - (.Pas de propriétaire.) [HKLM] -- Akamai O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {308B6AEA-DE50-4666-996D-0FA461719D6B} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1} O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {2A981294-F14C-4F0F-9627-D793270922F8} O42 - Logiciel: Broadcom 440x 10/100 Integrated Controller - (.Broadcom.) [HKLM] -- InstallShield_{52504CE6-E909-4113-B232-4AFEC6543A61} O42 - Logiciel: Broadcom Gigabit Integrated Controller - (.Nom de votre société.) [HKLM] -- {B7F54262-AB66-44B3-88BF-9FC69941B643} O42 - Logiciel: ChemOffice Ultra 2004 - (.CambridgeSoft Corporation.) [HKLM] -- {5A33744D-33F5-451A-9CB0-2FE49EE3809C} O42 - Logiciel: Conexant AC-Link Audio - (.Pas de propriétaire.) [HKLM] -- Conexant PCI Audio O42 - Logiciel: EndNote 9 Volume License Edition - (.Thomson ResearchSoft.) [HKLM] -- {53C020C2-8C1A-11D9-8BDE-F66BAD1E3F3A} O42 - Logiciel: FreeCompressor - (.Secure Digital Services.) [HKLM] -- {1EF93620-4B15-4DB4-B0EA-889E2F187081} O42 - Logiciel: GPL Ghostscript 8.61 - (.Pas de propriétaire.) [HKLM] -- GPL Ghostscript 8.61 O42 - Logiciel: GPL Ghostscript Fonts - (.Pas de propriétaire.) [HKLM] -- GPL Ghostscript Fonts O42 - Logiciel: GSview 4.9 - (.Pas de propriétaire.) [HKLM] -- GSview 4.9 O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM] -- {A9F6CFB0-806D-11E0-8EA1-B8AC6F97B88E} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595 O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484 O42 - Logiciel: Hotfix for Windows XP (KB2158563) - (.Microsoft Corporation.) [HKLM] -- KB2158563 O42 - Logiciel: Hotfix for Windows XP (KB2443685) - (.Microsoft Corporation.) [HKLM] -- KB2443685 O42 - Logiciel: Hotfix for Windows XP (KB942766-v6) - (.Microsoft Corporation.) [HKLM] -- KB942766-v6 O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5 O42 - Logiciel: Hotfix for Windows XP (KB961118) - (.Microsoft Corporation.) [HKLM] -- KB961118 O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5 O42 - Logiciel: Hotfix for Windows XP (KB981793) - (.Microsoft Corporation.) [HKLM] -- KB981793 O42 - Logiciel: ISI ResearchSoft - Export Helper - (.Pas de propriétaire.) [HKLM] -- ISI ResearchSoft - Export Helper O42 - Logiciel: Intel® PROSet/Wireless Software - (.Intel Corporation.) [HKLM] -- ProInst O42 - Logiciel: JDownloader - (.AppWork UG (haftungsbeschränkt).) [HKLM] -- JDownloader O42 - Logiciel: Java 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF} O42 - Logiciel: KTP Ware PS/2-WDM 5.0.1.8 - (.Pas de propriétaire.) [HKLM] -- Elantech O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver O42 - Logiciel: MSN - (.Pas de propriétaire.) [HKLM] -- MSNINST O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- MSXML 4.0 SP2 (KB941833) O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- {C523D256-313D-4866-B36A-F3DE528246EF} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: MiKTeX 2.8 - (.MiKTeX.org.) [HKLM] -- MiKTeX 2.8 O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033) O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447 O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906 O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1 O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- Microsoft Silverlight O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F} O42 - Logiciel: Microsoft_VC80_ATL_x86 - (.Adobe.) [HKLM] -- {0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25} O42 - Logiciel: Microsoft_VC80_CRT_x86 - (.Adobe.) [HKLM] -- {92D58719-BBC1-4CC3-A08B-56C9E884CC2C} O42 - Logiciel: Microsoft_VC80_MFCLOC_x86 - (.Adobe.) [HKLM] -- {D92BBB52-82FF-42ED-8A3C-4E062F944AB7} O42 - Logiciel: Microsoft_VC80_MFC_x86 - (.Adobe.) [HKLM] -- {D1A19B02-817E-4296-A45B-07853FD74D57} O42 - Logiciel: Microsoft_VC90_ATL_x86 - (.Adobe.) [HKLM] -- {033E378E-6AD3-4AD5-BDEB-CBD69B31046C} O42 - Logiciel: Microsoft_VC90_CRT_x86 - (.Adobe.) [HKLM] -- {08D2E121-7F6A-43EB-97FD-629B44903403} O42 - Logiciel: Microsoft_VC90_MFC_x86 - (.Adobe.) [HKLM] -- {635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A} O42 - Logiciel: Mozilla Firefox (3.6.18) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.18) O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM] -- {4EE2EF4B-25D3-4D44-8384-A2B96F811F55} O42 - Logiciel: OriginPro 8G - (.OriginLab Corporation.) [HKLM] -- {A912021A-FEDD-4DA3-8DB4-245EBDA84778} O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392} O42 - Logiciel: Pixia 4.3a FR - (.Pas de propriétaire.) [HKCU] -- Pixia 4.3a FR O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {E7004147-2CCA-431C-AA05-2AB166B9785D} O42 - Logiciel: SciFinder Scholar 2007 - (.Pas de propriétaire.) [HKLM] -- {12377A05-0062-47F9-9CB9-AAAF8C22D645} O42 - Logiciel: SciFinder Scholar Toolbar - (.Pas de propriétaire.) [HKLM] -- {455F9ACD-4967-446B-9174-8C87EA895F2A} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5C497F0B-2061-4CC9-A61C-6B45B867354D} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD769337-C8AC-46DB-A7DC-643E50089263} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{536FB502-775F-4494-BACE-C02CC90B7A5B} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2509488) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{AD0DE453-0804-4495-9C91-33D0F9AA5463} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473 O42 - Logiciel: Security Update for Microsoft Office 2007 System (KB2541012) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD907315-705A-4475-A1A0-2A1245803E4D} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5A4E43D5-858F-49BD-BA72-8F30E1793060} O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2541007) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{A0173254-F442-4D04-9154-43FA157B83D0} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB2510061) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5D930261-AA5B-48D1-931F-425C9D767490} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1} O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062} O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3A4CDE54-2403-483D-8D9A-15E3264410DF} O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2183461) - (.Microsoft Corporation.) [HKLM] -- KB2183461-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2360131) - (.Microsoft Corporation.) [HKLM] -- KB2360131-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2482017) - (.Microsoft Corporation.) [HKLM] -- KB2482017-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2510531) - (.Microsoft Corporation.) [HKLM] -- KB2510531-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2530548) - (.Microsoft Corporation.) [HKLM] -- KB2530548-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2544521) - (.Microsoft Corporation.) [HKLM] -- KB2544521-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB971961) - (.Microsoft Corporation.) [HKLM] -- KB971961-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB981332) - (.Microsoft Corporation.) [HKLM] -- KB981332-IE8 O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB982381) - (.Microsoft Corporation.) [HKLM] -- KB982381-IE8 O42 - Logiciel: Security Update for Windows Media Player (KB2378111) - (.Microsoft Corporation.) [HKLM] -- KB2378111_WM9 O42 - Logiciel: Security Update for Windows Media Player (KB952069) - (.Microsoft Corporation.) [HKLM] -- KB952069_WM9 O42 - Logiciel: Security Update for Windows Media Player (KB954155) - (.Microsoft Corporation.) [HKLM] -- KB954155_WM9 O42 - Logiciel: Security Update for Windows Media Player (KB968816) - (.Microsoft Corporation.) [HKLM] -- KB968816_WM9 O42 - Logiciel: Security Update for Windows Media Player (KB973540) - (.Microsoft Corporation.) [HKLM] -- KB973540_WM9 O42 - Logiciel: Security Update for Windows Media Player (KB975558) - (.Microsoft Corporation.) [HKLM] -- KB975558_WM8 O42 - Logiciel: Security Update for Windows Media Player (KB978695) - (.Microsoft Corporation.) [HKLM] -- KB978695_WM9 O42 - Logiciel: Security Update for Windows Media Player 11 (KB954154) - (.Microsoft Corporation.) [HKLM] -- KB954154_WM11 O42 - Logiciel: Security Update for Windows XP (KB2079403) - (.Microsoft Corporation.) [HKLM] -- KB2079403 O42 - Logiciel: Security Update for Windows XP (KB2115168) - (.Microsoft Corporation.) [HKLM] -- KB2115168 O42 - Logiciel: Security Update for Windows XP (KB2121546) - (.Microsoft Corporation.) [HKLM] -- KB2121546 O42 - Logiciel: Security Update for Windows XP (KB2160329) - (.Microsoft Corporation.) [HKLM] -- KB2160329 O42 - Logiciel: Security Update for Windows XP (KB2229593) - (.Microsoft Corporation.) [HKLM] -- KB2229593 O42 - Logiciel: Security Update for Windows XP (KB2259922) - (.Microsoft Corporation.) [HKLM] -- KB2259922 O42 - Logiciel: Security Update for Windows XP (KB2279986) - (.Microsoft Corporation.) [HKLM] -- KB2279986 O42 - Logiciel: Security Update for Windows XP (KB2286198) - (.Microsoft Corporation.) [HKLM] -- KB2286198 O42 - Logiciel: Security Update for Windows XP (KB2296011) - (.Microsoft Corporation.) [HKLM] -- KB2296011 O42 - Logiciel: Security Update for Windows XP (KB2296199) - (.Microsoft Corporation.) [HKLM] -- KB2296199 O42 - Logiciel: Security Update for Windows XP (KB2347290) - (.Microsoft Corporation.) [HKLM] -- KB2347290 O42 - Logiciel: Security Update for Windows XP (KB2360937) - (.Microsoft Corporation.) [HKLM] -- KB2360937 O42 - Logiciel: Security Update for Windows XP (KB2387149) - (.Microsoft Corporation.) [HKLM] -- KB2387149 O42 - Logiciel: Security Update for Windows XP (KB2393802) - (.Microsoft Corporation.) [HKLM] -- KB2393802 O42 - Logiciel: Security Update for Windows XP (KB2412687) - (.Microsoft Corporation.) [HKLM] -- KB2412687 O42 - Logiciel: Security Update for Windows XP (KB2419632) - (.Microsoft Corporation.) [HKLM] -- KB2419632 O42 - Logiciel: Security Update for Windows XP (KB2423089) - (.Microsoft Corporation.) [HKLM] -- KB2423089 O42 - Logiciel: Security Update for Windows XP (KB2436673) - (.Microsoft Corporation.) [HKLM] -- KB2436673 O42 - Logiciel: Security Update for Windows XP (KB2440591) - (.Microsoft Corporation.) [HKLM] -- KB2440591 O42 - Logiciel: Security Update for Windows XP (KB2443105) - (.Microsoft Corporation.) [HKLM] -- KB2443105 O42 - Logiciel: Security Update for Windows XP (KB2476490) - (.Microsoft Corporation.) [HKLM] -- KB2476490 O42 - Logiciel: Security Update for Windows XP (KB2476687) - (.Microsoft Corporation.) [HKLM] -- KB2476687 O42 - Logiciel: Security Update for Windows XP (KB2478960) - (.Microsoft Corporation.) [HKLM] -- KB2478960 O42 - Logiciel: Security Update for Windows XP (KB2478971) - (.Microsoft Corporation.) [HKLM] -- KB2478971 O42 - Logiciel: Security Update for Windows XP (KB2479628) - (.Microsoft Corporation.) [HKLM] -- KB2479628 O42 - Logiciel: Security Update for Windows XP (KB2479943) - (.Microsoft Corporation.) [HKLM] -- KB2479943 O42 - Logiciel: Security Update for Windows XP (KB2481109) - (.Microsoft Corporation.) [HKLM] -- KB2481109 O42 - Logiciel: Security Update for Windows XP (KB2483185) - (.Microsoft Corporation.) [HKLM] -- KB2483185 O42 - Logiciel: Security Update for Windows XP (KB2485376) - (.Microsoft Corporation.) [HKLM] -- KB2485376 O42 - Logiciel: Security Update for Windows XP (KB2485663) - (.Microsoft Corporation.) [HKLM] -- KB2485663 O42 - Logiciel: Security Update for Windows XP (KB2503665) - (.Microsoft Corporation.) [HKLM] -- KB2503665 O42 - Logiciel: Security Update for Windows XP (KB2506212) - (.Microsoft Corporation.) [HKLM] -- KB2506212 O42 - Logiciel: Security Update for Windows XP (KB2506223) - (.Microsoft Corporation.) [HKLM] -- KB2506223 O42 - Logiciel: Security Update for Windows XP (KB2507618) - (.Microsoft Corporation.) [HKLM] -- KB2507618 O42 - Logiciel: Security Update for Windows XP (KB2508272) - (.Microsoft Corporation.) [HKLM] -- KB2508272 O42 - Logiciel: Security Update for Windows XP (KB2508429) - (.Microsoft Corporation.) [HKLM] -- KB2508429 O42 - Logiciel: Security Update for Windows XP (KB2509553) - (.Microsoft Corporation.) [HKLM] -- KB2509553 O42 - Logiciel: Security Update for Windows XP (KB2524375) - (.Microsoft Corporation.) [HKLM] -- KB2524375 O42 - Logiciel: Security Update for Windows XP (KB2535512) - (.Microsoft Corporation.) [HKLM] -- KB2535512 O42 - Logiciel: Security Update for Windows XP (KB2536276) - (.Microsoft Corporation.) [HKLM] -- KB2536276 O42 - Logiciel: Security Update for Windows XP (KB2544893) - (.Microsoft Corporation.) [HKLM] -- KB2544893 O42 - Logiciel: Security Update for Windows XP (KB923561) - (.Microsoft Corporation.) [HKLM] -- KB923561 O42 - Logiciel: Security Update for Windows XP (KB952004) - (.Microsoft Corporation.) [HKLM] -- KB952004 O42 - Logiciel: Security Update for Windows XP (KB954459) - (.Microsoft Corporation.) [HKLM] -- KB954459 O42 - Logiciel: Security Update for Windows XP (KB955069) - (.Microsoft Corporation.) [HKLM] -- KB955069 O42 - Logiciel: Security Update for Windows XP (KB956572) - (.Microsoft Corporation.) [HKLM] -- KB956572 O42 - Logiciel: Security Update for Windows XP (KB956744) - (.Microsoft Corporation.) [HKLM] -- KB956744 O42 - Logiciel: Security Update for Windows XP (KB956802) - (.Microsoft Corporation.) [HKLM] -- KB956802 O42 - Logiciel: Security Update for Windows XP (KB956803) - (.Microsoft Corporation.) [HKLM] -- KB956803 O42 - Logiciel: Security Update for Windows XP (KB956844) - (.Microsoft Corporation.) [HKLM] -- KB956844 O42 - Logiciel: Security Update for Windows XP (KB958644) - (.Microsoft Corporation.) [HKLM] -- KB958644 O42 - Logiciel: Security Update for Windows XP (KB958869) - (.Microsoft Corporation.) [HKLM] -- KB958869 O42 - Logiciel: Security Update for Windows XP (KB959426) - (.Microsoft Corporation.) [HKLM] -- KB959426 O42 - Logiciel: Security Update for Windows XP (KB960225) - (.Microsoft Corporation.) [HKLM] -- KB960225 O42 - Logiciel: Security Update for Windows XP (KB960803) - (.Microsoft Corporation.) [HKLM] -- KB960803 O42 - Logiciel: Security Update for Windows XP (KB960859) - (.Microsoft Corporation.) [HKLM] -- KB960859 O42 - Logiciel: Security Update for Windows XP (KB961501) - (.Microsoft Corporation.) [HKLM] -- KB961501 O42 - Logiciel: Security Update for Windows XP (KB969059) - (.Microsoft Corporation.) [HKLM] -- KB969059 O42 - Logiciel: Security Update for Windows XP (KB969947) - (.Microsoft Corporation.) [HKLM] -- KB969947 O42 - Logiciel: Security Update for Windows XP (KB970238) - (.Microsoft Corporation.) [HKLM] -- KB970238 O42 - Logiciel: Security Update for Windows XP (KB970430) - (.Microsoft Corporation.) [HKLM] -- KB970430 O42 - Logiciel: Security Update for Windows XP (KB971468) - (.Microsoft Corporation.) [HKLM] -- KB971468 O42 - Logiciel: Security Update for Windows XP (KB971657) - (.Microsoft Corporation.) [HKLM] -- KB971657 O42 - Logiciel: Security Update for Windows XP (KB971961) - (.Microsoft Corporation.) [HKLM] -- KB971961 O42 - Logiciel: Security Update for Windows XP (KB972270) - (.Microsoft Corporation.) [HKLM] -- KB972270 O42 - Logiciel: Security Update for Windows XP (KB973507) - (.Microsoft Corporation.) [HKLM] -- KB973507 O42 - Logiciel: Security Update for Windows XP (KB973869) - (.Microsoft Corporation.) [HKLM] -- KB973869 O42 - Logiciel: Security Update for Windows XP (KB973904) - (.Microsoft Corporation.) [HKLM] -- KB973904 O42 - Logiciel: Security Update for Windows XP (KB974112) - (.Microsoft Corporation.) [HKLM] -- KB974112 O42 - Logiciel: Security Update for Windows XP (KB974318) - (.Microsoft Corporation.) [HKLM] -- KB974318 O42 - Logiciel: Security Update for Windows XP (KB974392) - (.Microsoft Corporation.) [HKLM] -- KB974392 O42 - Logiciel: Security Update for Windows XP (KB974571) - (.Microsoft Corporation.) [HKLM] -- KB974571 O42 - Logiciel: Security Update for Windows XP (KB975025) - (.Microsoft Corporation.) [HKLM] -- KB975025 O42 - Logiciel: Security Update for Windows XP (KB975467) - (.Microsoft Corporation.) [HKLM] -- KB975467 O42 - Logiciel: Security Update for Windows XP (KB975560) - (.Microsoft Corporation.) [HKLM] -- KB975560 O42 - Logiciel: Security Update for Windows XP (KB975561) - (.Microsoft Corporation.) [HKLM] -- KB975561 O42 - Logiciel: Security Update for Windows XP (KB975562) - (.Microsoft Corporation.) [HKLM] -- KB975562 O42 - Logiciel: Security Update for Windows XP (KB975713) - (.Microsoft Corporation.) [HKLM] -- KB975713 O42 - Logiciel: Security Update for Windows XP (KB977816) - (.Microsoft Corporation.) [HKLM] -- KB977816 O42 - Logiciel: Security Update for Windows XP (KB977914) - (.Microsoft Corporation.) [HKLM] -- KB977914 O42 - Logiciel: Security Update for Windows XP (KB978037) - (.Microsoft Corporation.) [HKLM] -- KB978037 O42 - Logiciel: Security Update for Windows XP (KB978262) - (.Microsoft Corporation.) [HKLM] -- KB978262 O42 - Logiciel: Security Update for Windows XP (KB978338) - (.Microsoft Corporation.) [HKLM] -- KB978338 O42 - Logiciel: Security Update for Windows XP (KB978542) - (.Microsoft Corporation.) [HKLM] -- KB978542 O42 - Logiciel: Security Update for Windows XP (KB978601) - (.Microsoft Corporation.) [HKLM] -- KB978601 O42 - Logiciel: Security Update for Windows XP (KB978706) - (.Microsoft Corporation.) [HKLM] -- KB978706 O42 - Logiciel: Security Update for Windows XP (KB979309) - (.Microsoft Corporation.) [HKLM] -- KB979309 O42 - Logiciel: Security Update for Windows XP (KB979482) - (.Microsoft Corporation.) [HKLM] -- KB979482 O42 - Logiciel: Security Update for Windows XP (KB979559) - (.Microsoft Corporation.) [HKLM] -- KB979559 O42 - Logiciel: Security Update for Windows XP (KB979683) - (.Microsoft Corporation.) [HKLM] -- KB979683 O42 - Logiciel: Security Update for Windows XP (KB979687) - (.Microsoft Corporation.) [HKLM] -- KB979687 O42 - Logiciel: Security Update for Windows XP (KB980195) - (.Microsoft Corporation.) [HKLM] -- KB980195 O42 - Logiciel: Security Update for Windows XP (KB980218) - (.Microsoft Corporation.) [HKLM] -- KB980218 O42 - Logiciel: Security Update for Windows XP (KB980232) - (.Microsoft Corporation.) [HKLM] -- KB980232 O42 - Logiciel: Security Update for Windows XP (KB980436) - (.Microsoft Corporation.) [HKLM] -- KB980436 O42 - Logiciel: Security Update for Windows XP (KB981322) - (.Microsoft Corporation.) [HKLM] -- KB981322 O42 - Logiciel: Security Update for Windows XP (KB981349) - (.Microsoft Corporation.) [HKLM] -- KB981349 O42 - Logiciel: Security Update for Windows XP (KB981852) - (.Microsoft Corporation.) [HKLM] -- KB981852 O42 - Logiciel: Security Update for Windows XP (KB981957) - (.Microsoft Corporation.) [HKLM] -- KB981957 O42 - Logiciel: Security Update for Windows XP (KB981997) - (.Microsoft Corporation.) [HKLM] -- KB981997 O42 - Logiciel: Security Update for Windows XP (KB982132) - (.Microsoft Corporation.) [HKLM] -- KB982132 O42 - Logiciel: Security Update for Windows XP (KB982214) - (.Microsoft Corporation.) [HKLM] -- KB982214 O42 - Logiciel: Security Update for Windows XP (KB982665) - (.Microsoft Corporation.) [HKLM] -- KB982665 O42 - Logiciel: Security Update for Windows XP (KB982802) - (.Microsoft Corporation.) [HKLM] -- KB982802 O42 - Logiciel: Skype Toolbars - (.Skype Technologies S.A..) [HKLM] -- {981029E0-7FC9-4CF3-AB39-6F133621921A} O42 - Logiciel: Skype™ 4.2 - (.Skype Technologies S.A..) [HKLM] -- {D103C4BA-F905-437A-8049-DB24763BBE36} O42 - Logiciel: SoftV92 Data Fax Modem with SmartCP - (.Pas de propriétaire.) [HKLM] -- CNXT_MODEM_PCI_VEN_8086&DEV_266D&SUBSYS_00661025 O42 - Logiciel: Synaptics Pointing Device Driver - (.Pas de propriétaire.) [HKLM] -- SynTPDeinstKey O42 - Logiciel: TeXnicCenter Version 1 Beta 7.01 (Greengrass) - (.TeXnicCenter.org.) [HKLM] -- TeXnicCenter_is1 O42 - Logiciel: Texas Instruments PCIxx21/x515 drivers. - (.Texas Instruments Inc..) [HKLM] -- InstallShield_{E7A744FD-E1B8-4FF6-ADC1-EA4C32181457} O42 - Logiciel: TightVNC 2.0.3 - (.GlavSoft LLC..) [HKLM] -- TightVNC O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707 O42 - Logiciel: Update for Microsoft Office 2007 System (KB2539530) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4} O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2509470) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1365864D-4C58-489D-9982-844D75691CCC} O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2536413) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{95DF5260-331D-4FFD-A2D5-C64164751945} O42 - Logiciel: Update for Windows Internet Explorer 7 (KB980182) - (.Microsoft Corporation.) [HKLM] -- KB980182-IE7 O42 - Logiciel: Update for Windows Internet Explorer 8 (KB976662) - (.Microsoft Corporation.) [HKLM] -- KB976662-IE8 O42 - Logiciel: Update for Windows Internet Explorer 8 (KB980182) - (.Microsoft Corporation.) [HKLM] -- KB980182-IE8 O42 - Logiciel: Update for Windows Internet Explorer 8 (KB982632) - (.Microsoft Corporation.) [HKLM] -- KB982632-IE8 O42 - Logiciel: Update for Windows XP (KB2141007) - (.Microsoft Corporation.) [HKLM] -- KB2141007 O42 - Logiciel: Update for Windows XP (KB2345886) - (.Microsoft Corporation.) [HKLM] -- KB2345886 O42 - Logiciel: Update for Windows XP (KB2467659) - (.Microsoft Corporation.) [HKLM] -- KB2467659 O42 - Logiciel: Update for Windows XP (KB2541763) - (.Microsoft Corporation.) [HKLM] -- KB2541763 O42 - Logiciel: Update for Windows XP (KB955759) - (.Microsoft Corporation.) [HKLM] -- KB955759 O42 - Logiciel: Update for Windows XP (KB961503) - (.Microsoft Corporation.) [HKLM] -- KB961503 O42 - Logiciel: Update for Windows XP (KB968389) - (.Microsoft Corporation.) [HKLM] -- KB968389 O42 - Logiciel: Update for Windows XP (KB971029) - (.Microsoft Corporation.) [HKLM] -- KB971029 O42 - Logiciel: Update for Windows XP (KB971737) - (.Microsoft Corporation.) [HKLM] -- KB971737 O42 - Logiciel: Update for Windows XP (KB973687) - (.Microsoft Corporation.) [HKLM] -- KB973687 O42 - Logiciel: Update for Windows XP (KB973815) - (.Microsoft Corporation.) [HKLM] -- KB973815 O42 - Logiciel: WIDCOMM Bluetooth Software - (. .) [HKLM] -- {90535871-81B9-4D99-8A13-A7EE97F2D7FE} O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 O42 - Logiciel: Windows Rights Management Client Backwards Compatibility SP2 - (.Microsoft.) [HKLM] -- Windows Rights Management Client Backwards O42 - Logiciel: Windows Rights Management Client Backwards Compatibility SP2 - (.Microsoft.) [HKLM] -- {EC905264-BCFE-423B-9C42-C3A106266790} O42 - Logiciel: Windows Rights Management Client with Service Pack 2 - (.Microsoft.) [HKLM] -- Windows Rights Management Client O42 - Logiciel: Windows Rights Management Client with Service Pack 2 - (.Microsoft.) [HKLM] -- {BDCF27CA-BFC4-4F49-8D24-A925C9505AB8} O42 - Logiciel: XnView 1.97.6 - (.Gougelet Pierre-e.) [HKLM] -- XnView_is1 O42 - Logiciel: acer Wireless LAN - (.Pas de propriétaire.) [HKLM] -- {4820DD99-52D1-42BB-927E-B6B6DF231AF5} O42 - Logiciel: foobar2000 v1.1.1 - (.Peter Pawlowski.) [HKLM] -- foobar2000 O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {FAE36873-1941-4076-A9A5-48812B5EA0B7} O42 - Logiciel: mCore - (.Intel Corporation.) [HKLM] -- {6DE14BE4-6F04-4935-8ABD-A0A19FE2E55A} O42 - Logiciel: mDrWiFi - (.Intel Corporation.) [HKLM] -- {F6090A17-0967-4A8A-B3C3-422A1B514D49} O42 - Logiciel: mDriver - (.Intel.) [HKLM] -- {28DA872A-0848-48CF-B749-19A198157A2A} O42 - Logiciel: mEoU.msi - (.Intel Corporation.) [HKLM] -- {B502B428-3386-40A9-98DB-079AAB72E64F} O42 - Logiciel: mHelp - (.Intel.) [HKLM] -- {8C6BB412-D3A8-4AAE-A01B-35B681789D68} O42 - Logiciel: mIWA - (.Intel Corporation.) [HKLM] -- {3E9D596A-61D4-4239-BD19-2DB984D2A16F} O42 - Logiciel: mIWCA - (.Intel Corporation.) [HKLM] -- {6FFFE74E-3FBD-4E2E-97F9-5E9A2A077626} O42 - Logiciel: mLogView - (.Intel Corporation.) [HKLM] -- {0E2B0B41-7E08-4F9F-B21F-41C4133F43B7} O42 - Logiciel: mMHouse - (.Intel Corporation.) [HKLM] -- {F0BFC7EF-9CF8-44EE-91B0-158884CD87C5} O42 - Logiciel: mPfMgr - (.Intel Corporation.) [HKLM] -- {8B928BA1-EDEC-4227-A2DA-DD83026C36F5} O42 - Logiciel: mPfWiz - (.Intel Corporation.) [HKLM] -- {90B0D222-8C21-4B35-9262-53B042F18AF9} O42 - Logiciel: mProSafe - (.Intel.) [HKLM] -- {23FB368F-1399-4EAC-817C-4B83ECBE3D83} O42 - Logiciel: mWlsSafe - (.Intel.) [HKLM] -- {FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4} O42 - Logiciel: mXML - (.Intel Corporation.) [HKLM] -- {9CC89556-3578-48DD-8408-04E66EBEF401} O42 - Logiciel: mZConfig - (.Intel Corporation.) [HKLM] -- {94658027-9F16-4509-BBD7-A59FE57C3023} ---\\ HKCU & HKLM Software Keys [HKCU\Software\Ad-Remover] [HKCU\Software\Adobe] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Avira] [HKCU\Software\CambridgeSoft] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\GPL Ghostscript] [HKCU\Software\Google] [HKCU\Software\ISI ResearchSoft] [HKCU\Software\Intel] [HKCU\Software\JP595IR86O] [HKCU\Software\JavaSoft] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MestRe] [HKCU\Software\MiKTeX.org] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\Netscape] [HKCU\Software\NtWqIVLZEWZU] [HKCU\Software\ODBC] [HKCU\Software\ORL] [HKCU\Software\OW1T3CYG7T] [HKCU\Software\OpenOffice.org] [HKCU\Software\OriginLab] [HKCU\Software\Policies] [HKCU\Software\Skype] [HKCU\Software\Softonic] [HKCU\Software\Synaptics] [HKCU\Software\TUG] [HKCU\Software\TightVNC] [HKCU\Software\ToolsCenter] [HKCU\Software\Widcomm] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\foobar2000] [HKCU\Software\i-FunBox.com] [HKLM\Software\ATI Technologies Inc.] [HKLM\Software\ATI Technologies] [HKLM\Software\Accelrys] [HKLM\Software\Adobe] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Avira] [HKLM\Software\Broadcom] [HKLM\Software\BrowserChoice] [HKLM\Software\C07ft5Y] [HKLM\Software\CXT] [HKLM\Software\CambridgeSoft] [HKLM\Software\Chemical Abstract Services] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Conexant] [HKLM\Software\GEAR Software] [HKLM\Software\GPL Ghostscript] [HKLM\Software\Gemplus] [HKLM\Software\Ghostgum] [HKLM\Software\Google] [HKLM\Software\INTEL] [HKLM\Software\InstallShield] [HKLM\Software\InstalledOptions] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\MDC] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\MiKTeX.org] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\ODBC] [HKLM\Software\OldTimer Tools] [HKLM\Software\OpenOffice.org] [HKLM\Software\OriginLab Corporation] [HKLM\Software\Policies] [HKLM\Software\Program Groups] [HKLM\Software\RegisteredApplications] [HKLM\Software\Schlumberger] [HKLM\Software\Secure] [HKLM\Software\Skype] [HKLM\Software\Sun Microsystems] [HKLM\Software\Synaptics] [HKLM\Software\ToolsCenter] [HKLM\Software\TrendMicro] [HKLM\Software\UIU] [HKLM\Software\Widcomm] [HKLM\Software\WinRAR] [HKLM\Software\Windows 3.1 Migration Status] [HKLM\Software\Windows] [HKLM\Software\Wise Solutions] [HKLM\Software\X-AVCSD] [HKLM\Software\XnView] [HKLM\Software\acer] [HKLM\Software\mozilla.org] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 18/06/2010 - 14:25:06 - [4513226] ----D- C:\Program Files\Accelrys O43 - CFD: 27/07/2008 - 04:21:06 - [186161] ----D- C:\Program Files\Accords O43 - CFD: 01/06/2010 - 21:23:54 - [1010743] ----D- C:\Program Files\acer O43 - CFD: 30/03/2005 - 23:57:08 - [376040] ----D- C:\Program Files\Acer Inc O43 - CFD: 16/06/2004 - 01:24:08 - [69877786] ----D- C:\Program Files\Ad-Remover O43 - CFD: 11/06/2010 - 14:24:44 - [2530211528] ----D- C:\Program Files\Adobe O43 - CFD: 24/07/2008 - 20:22:40 - [224016] ----D- C:\Program Files\ALO Power Audio Converter O43 - CFD: 04/12/2010 - 18:28:50 - [2306366] ----D- C:\Program Files\Apple Software Update O43 - CFD: 13/12/2008 - 16:46:22 - [158116417] ----D- C:\Program Files\Arcade O43 - CFD: 01/06/2010 - 22:13:58 - [16571708] ----D- C:\Program Files\ATI Technologies O43 - CFD: 16/06/2008 - 22:21:50 - [694727678] ----D- C:\Program Files\Autodesk O43 - CFD: 02/06/2010 - 11:08:50 - [360448] ----D- C:\Program Files\AUTORUN O43 - CFD: 01/06/2009 - 17:06:52 - [180372791] ----D- C:\Program Files\Avira O43 - CFD: 20/05/2008 - 23:31:12 - [2655233] ----D- C:\Program Files\AviSynth 2.5 O43 - CFD: 16/02/2009 - 21:04:46 - [12390020] ----D- C:\Program Files\Azureus O43 - CFD: 04/12/2010 - 18:27:40 - [623412] ----D- C:\Program Files\Bonjour O43 - CFD: 01/06/2010 - 21:16:08 - [608109] ----D- C:\Program Files\Broadcom O43 - CFD: 12/06/2008 - 19:59:00 - [2571] ----D- C:\Program Files\BulletProof FTP Server v2.3 O43 - CFD: 02/06/2010 - 13:06:14 - [90192441] ----D- C:\Program Files\CambridgeSoft O43 - CFD: 10/06/2009 - 20:31:08 - [367166097] ----D- C:\Program Files\Canon O43 - CFD: 17/05/2008 - 17:56:02 - [1326810] ----D- C:\Program Files\CCleaner O43 - CFD: 02/06/2010 - 11:08:50 - [626000] ----D- C:\Program Files\CCTL O43 - CFD: 04/12/2010 - 18:27:00 - [760308511] ----D- C:\Program Files\Common Files O43 - CFD: 30/03/2005 - 23:35:36 - [0] ----D- C:\Program Files\ComPlus Applications O43 - CFD: 01/06/2010 - 21:47:36 - [536576] ----D- C:\Program Files\CONEXANT O43 - CFD: 03/12/2009 - 00:14:42 - [1232740] ----D- C:\Program Files\Convar O43 - CFD: 31/03/2005 - 00:01:06 - [106063286] ----D- C:\Program Files\CyberLink O43 - CFD: 22/05/2008 - 20:38:02 - [5514190] ----D- C:\Program Files\DAEMON Tools Lite O43 - CFD: 02/06/2010 - 00:00:06 - [0] ----D- C:\Program Files\DAEMON Tools Pro O43 - CFD: 11/12/2008 - 22:23:24 - [1316232] ----D- C:\Program Files\DIFX O43 - CFD: 11/01/2009 - 18:10:22 - [782996] ----D- C:\Program Files\EGoGameS O43 - CFD: 01/06/2010 - 21:16:40 - [2071841] ----D- C:\Program Files\Elantech O43 - CFD: 03/09/2009 - 08:40:26 - [2753322402] ----D- C:\Program Files\eMule O43 - CFD: 02/06/2010 - 11:30:26 - [66806902] ----D- C:\Program Files\ENDNOTE O43 - CFD: 12/08/2010 - 15:06:10 - [61455413] ----D- C:\Program Files\EndNote 9 O43 - CFD: 16/02/2009 - 23:55:48 - [1094876] ----D- C:\Program Files\eXchange POP3 6.0 O43 - CFD: 02/06/2010 - 11:08:46 - [14577066] ----D- C:\Program Files\EXTRAS O43 - CFD: 28/05/2009 - 23:16:44 - [1513065379] ----D- C:\Program Files\Fichiers communs O43 - CFD: 13/06/2008 - 08:13:46 - [11921038] ----D- C:\Program Files\FileZilla FTP Client O43 - CFD: 05/12/2010 - 23:13:48 - [7917593] ----D- C:\Program Files\foobar2000 O43 - CFD: 30/11/2008 - 14:24:56 - [5581957] ----D- C:\Program Files\Free iPod Video Converter O43 - CFD: 02/06/2010 - 13:26:34 - [3566016] ----D- C:\Program Files\Ghostgum O43 - CFD: 02/06/2010 - 14:25:18 - [82663544] ----D- C:\Program Files\ghostscript-8.71 O43 - CFD: 11/06/2010 - 15:20:14 - [328432409] ----D- C:\Program Files\Google O43 - CFD: 02/06/2010 - 14:39:12 - [31907692] ----D- C:\Program Files\gs O43 - CFD: 21/11/2008 - 00:02:22 - [20571346] ----D- C:\Program Files\Guitar Pro 5 O43 - CFD: 29/06/2009 - 20:23:08 - [4640312] ----D- C:\Program Files\HHD Software O43 - CFD: 14/04/2009 - 20:37:38 - [126003219] ----D- C:\Program Files\HomePlayer O43 - CFD: 09/01/2009 - 08:42:40 - [7002465] ----D- C:\Program Files\iGnuteel O43 - CFD: 02/06/2010 - 10:10:54 - [62418143] --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD: 30/03/2005 - 23:45:34 - [20388681] ----D- C:\Program Files\Intel O43 - CFD: 16/06/2011 - 01:57:22 - [6093456] ----D- C:\Program Files\Internet Explorer O43 - CFD: 09/09/2009 - 22:14:30 - [1856115] ----D- C:\Program Files\iPod O43 - CFD: 04/12/2010 - 18:40:58 - [146530583] ----D- C:\Program Files\iTunes O43 - CFD: 04/04/2009 - 10:04:16 - [410496923] ----D- C:\Program Files\Java O43 - CFD: 04/12/2010 - 19:04:40 - [55363353] ----D- C:\Program Files\JDownloader O43 - CFD: 01/06/2010 - 22:33:42 - [16254752] ----D- C:\Program Files\JRE O43 - CFD: 15/05/2008 - 22:39:44 - [1141069] ----D- C:\Program Files\Launch Manager O43 - CFD: 27/09/2008 - 14:33:36 - [16501848] ----D- C:\Program Files\Logitech O43 - CFD: 16/06/2004 - 00:21:00 - [4378312] ----D- C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD: 17/05/2008 - 12:57:40 - [33830499] ----D- C:\Program Files\Memeo O43 - CFD: 01/06/2010 - 20:18:42 - [2140717] ----D- C:\Program Files\Messenger O43 - CFD: 27/08/2008 - 23:09:04 - [12715564] ----D- C:\Program Files\Messenger Plus! Live O43 - CFD: 20/12/2008 - 14:39:26 - [706627] ----D- C:\Program Files\Microsoft O43 - CFD: 30/03/2005 - 23:38:22 - [0] ----D- C:\Program Files\microsoft frontpage O43 - CFD: 27/05/2008 - 21:01:38 - [1067850181] ----D- C:\Program Files\Microsoft Office O43 - CFD: 20/12/2008 - 14:39:16 - [1562204] ----D- C:\Program Files\Microsoft Office Outlook Connector O43 - CFD: 17/06/2011 - 12:47:30 - [39437763] ----D- C:\Program Files\Microsoft Silverlight O43 - CFD: 20/12/2008 - 14:36:44 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD: 27/05/2008 - 21:01:14 - [14904] ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD: 27/05/2008 - 20:57:16 - [2578288] ----D- C:\Program Files\Microsoft Visual Studio 8 O43 - CFD: 06/06/2010 - 17:01:36 - [3726168] ----D- C:\Program Files\Microsoft Works O43 - CFD: 27/05/2008 - 20:59:54 - [8152064] ----D- C:\Program Files\Microsoft.NET O43 - CFD: 24/07/2008 - 20:12:32 - [307200] ----D- C:\Program Files\MIKSOFT O43 - CFD: 02/06/2010 - 12:48:32 - [315266947] ----D- C:\Program Files\MiKTeX 2.8 O43 - CFD: 13/08/2010 - 23:46:24 - [11072357] ----D- C:\Program Files\Movie Maker O43 - CFD: 16/06/2004 - 01:30:36 - [41093360] ----D- C:\Program Files\Mozilla Firefox O43 - CFD: 25/06/2008 - 07:19:30 - [307423] ----D- C:\Program Files\mp3DirectCut O43 - CFD: 24/08/2009 - 23:09:08 - [26521] ----D- C:\Program Files\MSBuild O43 - CFD: 02/06/2010 - 11:08:50 - [27348712] ----D- C:\Program Files\MSI O43 - CFD: 01/06/2010 - 20:52:10 - [26550732] ----D- C:\Program Files\MSN O43 - CFD: 30/03/2005 - 23:34:42 - [8742663] ----D- C:\Program Files\MSN Gaming Zone O43 - CFD: 16/05/2008 - 21:38:40 - [0] ----D- C:\Program Files\MSXML 4.0 O43 - CFD: 16/05/2008 - 21:08:26 - [2940967212] ----D- C:\Program Files\NetDrive O43 - CFD: 01/06/2010 - 20:24:34 - [3258723] ----D- C:\Program Files\NetMeeting O43 - CFD: 31/03/2005 - 00:06:26 - [60246470] ----D- C:\Program Files\NewTech Infosystems O43 - CFD: 03/07/2008 - 07:58:00 - [1284380] ----D- C:\Program Files\No-IP O43 - CFD: 11/12/2008 - 22:23:44 - [58240787] ----D- C:\Program Files\Nokia O43 - CFD: 02/06/2010 - 11:29:36 - [0] ----D- C:\Program Files\Nouveau dossier O43 - CFD: 10/01/2009 - 12:06:58 - [17732485] ----D- C:\Program Files\NutsAboutNets O43 - CFD: 30/03/2005 - 23:34:54 - [4525] ----D- C:\Program Files\Online Services O43 - CFD: 01/06/2010 - 22:33:36 - [536323283] ----D- C:\Program Files\OpenOffice.org 3 O43 - CFD: 02/06/2010 - 10:10:22 - [327745015] ----D- C:\Program Files\OriginLab O43 - CFD: 01/01/2011 - 15:41:40 - [4322949] ----D- C:\Program Files\Outlook Express O43 - CFD: 13/08/2008 - 18:57:18 - [7101074] ----D- C:\Program Files\PanoramaStudio O43 - CFD: 11/12/2008 - 22:23:10 - [11169565] ----D- C:\Program Files\PC Connectivity Solution O43 - CFD: 23/07/2009 - 21:58:08 - [21529044] ----D- C:\Program Files\PDFCreator O43 - CFD: 28/07/2009 - 22:40:00 - [4074023] ----D- C:\Program Files\Photomatix O43 - CFD: 28/07/2009 - 22:50:58 - [8658827] ----D- C:\Program Files\PhotomatixPro3 O43 - CFD: 18/08/2008 - 17:10:48 - [36249376] ----D- C:\Program Files\Picasa2 O43 - CFD: 10/06/2010 - 17:45:12 - [17113807] ----D- C:\Program Files\Pixia 4.3a FR O43 - CFD: 22/05/2008 - 20:40:50 - [2349211] ----D- C:\Program Files\PowerISO O43 - CFD: 28/05/2009 - 23:18:58 - [14467279] ----D- C:\Program Files\PPMate O43 - CFD: 04/12/2010 - 18:32:20 - [76337719] ----D- C:\Program Files\QuickTime O43 - CFD: 30/11/2008 - 13:59:44 - [28429672] ----D- C:\Program Files\Red Kawa O43 - CFD: 24/08/2009 - 23:08:52 - [36400897] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 17/05/2008 - 18:06:02 - [1146670] ----D- C:\Program Files\RegCleaner O43 - CFD: 16/05/2008 - 20:27:20 - [11615273] ----D- C:\Program Files\RocketDock O43 - CFD: 29/08/2009 - 09:44:28 - [71647682] ----D- C:\Program Files\Safari O43 - CFD: 30/03/2005 - 23:36:34 - [933] ----D- C:\Program Files\Services en ligne O43 - CFD: 27/05/2009 - 20:39:14 - [27801384] ----D- C:\Program Files\Simplify Media O43 - CFD: 17/05/2009 - 19:09:10 - [349393] ----D- C:\Program Files\Skyhook Wireless O43 - CFD: 11/06/2010 - 13:59:34 - [38378187] R---D- C:\Program Files\Skype O43 - CFD: 04/09/2009 - 13:04:16 - [24694112] ----D- C:\Program Files\Sun O43 - CFD: 30/03/2005 - 23:54:54 - [26685929] ----D- C:\Program Files\Synaptics O43 - CFD: 02/06/2010 - 10:36:50 - [14447903] ----D- C:\Program Files\TeXnicCenter O43 - CFD: 16/06/2004 - 00:13:36 - [1462434] ----D- C:\Program Files\TightVNC O43 - CFD: 16/06/2004 - 05:56:26 - [1587785] ----D- C:\Program Files\Trend Micro O43 - CFD: 28/05/2009 - 23:28:50 - [5635313] ----D- C:\Program Files\TVAnts O43 - CFD: 07/06/2009 - 00:11:04 - [12832995] ----D- C:\Program Files\TVUPlayer O43 - CFD: 30/03/2005 - 23:44:12 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 19/05/2008 - 20:32:26 - [33338768] ----D- C:\Program Files\VideoLAN O43 - CFD: 17/05/2008 - 12:54:24 - [326648218] ----D- C:\Program Files\Western Digital O43 - CFD: 16/05/2008 - 07:40:14 - [858084] ----D- C:\Program Files\Western Digital Technologies O43 - CFD: 01/06/2010 - 21:09:00 - [3587127] ----D- C:\Program Files\WIDCOMM O43 - CFD: 17/05/2009 - 13:10:16 - [138650897] ----D- C:\Program Files\Windows Live O43 - CFD: 20/12/2008 - 14:34:10 - [245112] ----D- C:\Program Files\Windows Live SkyDrive O43 - CFD: 01/06/2010 - 20:25:44 - [3595692] ----D- C:\Program Files\Windows Media Connect 2 O43 - CFD: 01/06/2010 - 20:25:36 - [8246039] ----D- C:\Program Files\Windows Media Player O43 - CFD: 01/06/2010 - 20:16:20 - [4701439] ----D- C:\Program Files\Windows NT O43 - CFD: 30/03/2005 - 23:36:40 - [0] --H-D- C:\Program Files\WindowsUpdate O43 - CFD: 15/05/2008 - 22:37:12 - [176128] ----D- C:\Program Files\WinPCap O43 - CFD: 01/06/2010 - 23:03:32 - [4823177] ----D- C:\Program Files\WinRAR O43 - CFD: 06/10/2008 - 20:30:40 - [16773066] ----D- C:\Program Files\WinZip O43 - CFD: 28/06/2008 - 01:52:34 - [102430] ----D- C:\Program Files\WMV9_VCM O43 - CFD: 30/03/2005 - 23:38:22 - [0] ----D- C:\Program Files\xerox O43 - CFD: 11/06/2010 - 14:14:36 - [37484016] ----D- C:\Program Files\XnView O43 - CFD: 20/08/2008 - 19:35:22 - [27668963] ----D- C:\Program Files\Yahoo! O43 - CFD: 10/07/2011 - 04:52:32 - [3927853] ----D- C:\Program Files\ZHPDiag O43 - CFD: 17/10/2010 - 20:09:32 - [324413147] ----D- C:\Program Files\Common Files\Adobe O43 - CFD: 11/06/2010 - 14:19:40 - [32159844] ----D- C:\Program Files\Common Files\Adobe AIR O43 - CFD: 16/06/2004 - 01:28:20 - [13857893] ----D- C:\Program Files\Common Files\Akamai O43 - CFD: 04/12/2010 - 18:37:48 - [94762864] ----D- C:\Program Files\Common Files\Apple O43 - CFD: 02/06/2010 - 00:07:30 - [92976] ----D- C:\Program Files\Common Files\DESIGNER O43 - CFD: 01/06/2010 - 21:16:28 - [7376978] ----D- C:\Program Files\Common Files\InstallShield O43 - CFD: 16/06/2011 - 02:07:54 - [215561645] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 01/06/2010 - 20:24:12 - [284160] ----D- C:\Program Files\Common Files\MSSoap O43 - CFD: 01/06/2010 - 21:58:32 - [0] ----D- C:\Program Files\Common Files\ODBC O43 - CFD: 12/06/2010 - 10:33:22 - [611970] ----D- C:\Program Files\Common Files\Risxtd O43 - CFD: 01/06/2010 - 20:24:32 - [8106] ----D- C:\Program Files\Common Files\Services O43 - CFD: 11/06/2010 - 13:59:16 - [2135336] ----D- C:\Program Files\Common Files\Skype O43 - CFD: 01/06/2010 - 21:58:26 - [3787229] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 06/06/2010 - 16:58:18 - [41439659] ----D- C:\Program Files\Common Files\System O43 - CFD: 02/06/2010 - 11:30:52 - [23816704] ----D- C:\Program Files\Common Files\Wise Installation Wizard O43 - CFD: 07/09/2010 - 14:38:06 - [5372166] ----D- C:\Documents and Settings\Saskia\Application Data\Adobe O43 - CFD: 05/12/2010 - 22:52:18 - [721083] ----D- C:\Documents and Settings\Saskia\Application Data\Apple Computer O43 - CFD: 01/10/2010 - 11:16:32 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Avira O43 - CFD: 01/06/2010 - 23:52:02 - [1277] ----D- C:\Documents and Settings\Saskia\Application Data\DAEMON Tools Pro O43 - CFD: 12/06/2010 - 11:30:18 - [233896] ----D- C:\Documents and Settings\Saskia\Application Data\EndNote O43 - CFD: 16/06/2004 - 01:15:16 - [863291] ----D- C:\Documents and Settings\Saskia\Application Data\foobar2000 O43 - CFD: 19/06/2011 - 23:26:24 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Google O43 - CFD: 10/06/2010 - 17:23:42 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Help O43 - CFD: 01/06/2010 - 20:39:26 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Identities O43 - CFD: 02/06/2010 - 10:08:34 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\InstallShield O43 - CFD: 01/06/2010 - 21:45:40 - [1062] ----D- C:\Documents and Settings\Saskia\Application Data\Intel O43 - CFD: 01/06/2010 - 23:27:46 - [15434] ----D- C:\Documents and Settings\Saskia\Application Data\Macromedia O43 - CFD: 16/06/2004 - 00:21:28 - [3565940] ----D- C:\Documents and Settings\Saskia\Application Data\Malwarebytes O43 - CFD: 18/11/2010 - 01:28:38 - [3234108] -S--D- C:\Documents and Settings\Saskia\Application Data\Microsoft O43 - CFD: 02/06/2010 - 13:57:14 - [9580027] ----D- C:\Documents and Settings\Saskia\Application Data\MiKTeX O43 - CFD: 01/06/2010 - 22:10:22 - [15379713] ----D- C:\Documents and Settings\Saskia\Application Data\Mozilla O43 - CFD: 01/06/2010 - 22:47:38 - [8926380] ----D- C:\Documents and Settings\Saskia\Application Data\OpenOffice.org O43 - CFD: 10/06/2010 - 17:40:08 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\Pixia O43 - CFD: 16/06/2004 - 01:29:56 - [2314946] ----D- C:\Documents and Settings\Saskia\Application Data\Skype O43 - CFD: 11/06/2010 - 16:05:14 - [242640] ----D- C:\Documents and Settings\Saskia\Application Data\skypePM O43 - CFD: 01/06/2010 - 22:31:00 - [25098714] ----D- C:\Documents and Settings\Saskia\Application Data\Sun O43 - CFD: 16/06/2004 - 00:18:32 - [0] ----D- C:\Documents and Settings\Saskia\Application Data\TightVNC O43 - CFD: 04/12/2010 - 19:44:54 - [9480] ----D- C:\Documents and Settings\Saskia\Application Data\WindSolutions O43 - CFD: 01/06/2010 - 23:34:18 - [12] ----D- C:\Documents and Settings\Saskia\Application Data\WinRAR O43 - CFD: 27/12/2010 - 22:38:24 - [662687] ----D- C:\Documents and Settings\Saskia\Application Data\XnView O43 - CFD: 17/10/2010 - 20:08:38 - [14368776] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Adobe O43 - CFD: 04/12/2010 - 18:29:00 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Apple O43 - CFD: 04/12/2010 - 18:42:02 - [3235703] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Apple Computer O43 - CFD: 25/06/2010 - 10:56:56 - [5120] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\ApplicationHistory O43 - CFD: 30/08/2010 - 13:01:16 - [99692] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\freecompressor Air O43 - CFD: 19/06/2011 - 23:26:24 - [134674586] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Google O43 - CFD: 10/06/2010 - 17:23:42 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Help O43 - CFD: 30/09/2010 - 11:14:52 - [6118904] -S--D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Microsoft O43 - CFD: 02/06/2010 - 00:00:28 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Microsoft Help O43 - CFD: 02/06/2010 - 13:14:42 - [11878215] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\MiKTeX O43 - CFD: 01/06/2010 - 22:10:22 - [58653060] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Mozilla O43 - CFD: 19/06/2011 - 23:25:28 - [0] ----D- C:\Documents and Settings\Saskia\Local Settings\Application Data\Temp O43 - CFD: 01/06/2010 - 20:29:08 - [15040] R---D- C:\WINDOWS\system32\Config\systemprofile\Start Menu\Programs\Accessories O43 - CFD: 01/06/2010 - 21:55:12 - [84] R---D- C:\WINDOWS\system32\Config\systemprofile\Start Menu\Programs\Startup ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.44EF1200FEFFFFFF57494E444F577E31] - 10/07/2011 - 03:35:10 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1717550] O44 - LFC:[MD5.9674DC5A0696CAC9C1889AB7583F76EB] - 18/06/2011 - 20:55:29 ---A- . (...) -- C:\WINDOWS\System32\PerfStringBackup.INI [506194] O44 - LFC:[MD5.66105A9E46C0EADD21D513B4E5652E28] - 18/06/2011 - 20:55:29 ---A- . (...) -- C:\WINDOWS\System32\perfc009.dat [72566] O44 - LFC:[MD5.5177A6DF33077EFF91DEE2968D5BA16A] - 18/06/2011 - 20:55:29 ---A- . (...) -- C:\WINDOWS\System32\perfh009.dat [444690] O44 - LFC:[MD5.5FEDEF54757B34FB611B9EC8FB399364] - 17/06/2011 - 11:51:13 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\WINDOWS\System32\drivers\avipbb.sys [137656] O44 - LFC:[MD5.196DB70C7C937D4737067A1C3CDABD4B] - 17/06/2011 - 11:48:08 ---A- . (...) -- C:\WINDOWS\System32\FNTCACHE.DAT [3589016] O44 - LFC:[MD5.EDB29DE9FD538805F98F375CF961FDE3] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\KB2479943.log [147040] O44 - LFC:[MD5.5B4513A8E9D30FC08A2DFE9A6E38CEE4] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\comsetup.log [310665] O44 - LFC:[MD5.964180D6A9640C16F370F77AD61B303D] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\iis6.log [991087] O44 - LFC:[MD5.B0312C13616C571CC01EB04F3D1842E7] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\imsins.log [1374] O44 - LFC:[MD5.9A2181BDD780C9936DB39B1180C279CF] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [188099] O44 - LFC:[MD5.49627FFCDBC1FD8E090FEC13781C0994] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\ocmsn.log [49449] O44 - LFC:[MD5.FE0283229F3082EAA733CCA9B47DAB88] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\tabletoc.log [45414] O44 - LFC:[MD5.1536344A2F7D4D65EDFC9D7A6233AA82] - 16/06/2011 - 01:12:19 ---A- . (...) -- C:\WINDOWS\tsoc.log [411409] O44 - LFC:[MD5.4020D8692472F78E216351CDC03E97FB] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [889521] O44 - LFC:[MD5.CE83D0AE0A754481E4C0343242964CEF] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\MedCtrOC.log [61837] O44 - LFC:[MD5.D72585AB8B78D6D55CFF5CA735B435F3] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\msgsocm.log [44749] O44 - LFC:[MD5.722C0F720670B119C2FA636A1E629139] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\msmqinst.log [276116] O44 - LFC:[MD5.2AC9741E4BC796AE9E7EF29CE1D279EE] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\netfxocm.log [156576] O44 - LFC:[MD5.60E33B79E3A1CCF00E2EA1FFC2CABB03] - 16/06/2011 - 01:12:18 ---A- . (...) -- C:\WINDOWS\ocgen.log [470102] O44 - LFC:[MD5.ABB4CAAD906E82B3B39FDDE42792879F] - 16/06/2011 - 01:07:41 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1374] O44 - LFC:[MD5.0179F4F5A329F5CA48EEB7447988920B] - 16/06/2011 - 01:07:40 ---A- . (...) -- C:\WINDOWS\KB2481109.log [148659] O44 - LFC:[MD5.E35DBF8BA0E7FD0DD83176354F482CEE] - 16/06/2011 - 01:07:27 ---A- . (...) -- C:\WINDOWS\KB2485663.log [148751] O44 - LFC:[MD5.44A3AD116C241DFDF75F18BF431C1911] - 16/06/2011 - 01:05:56 ---A- . (...) -- C:\WINDOWS\KB2476490.log [37889] O44 - LFC:[MD5.C2D638933ABD42AFAC66086DD2EC4C31] - 16/06/2011 - 01:05:49 ---A- . (...) -- C:\WINDOWS\KB2506223.log [51510] O44 - LFC:[MD5.6F2EA7AF7649ECEE5AC8F9C151F1575F] - 16/06/2011 - 01:05:36 ---A- . (...) -- C:\WINDOWS\KB2503665.log [50956] O44 - LFC:[MD5.B40C6FA76AA4AFC025FC384584ECD362] - 16/06/2011 - 01:05:29 ---A- . (...) -- C:\WINDOWS\KB2524375.log [37023] O44 - LFC:[MD5.533FD1A96FD23380387407C39C3D83D9] - 16/06/2011 - 01:04:10 ---A- . (...) -- C:\WINDOWS\KB2535512.log [50788] O44 - LFC:[MD5.6752D17B8A027145F0D69810C2CE9366] - 16/06/2011 - 01:03:18 ---A- . (...) -- C:\WINDOWS\KB2412687.log [34828] O44 - LFC:[MD5.A1E9003ED212B3F5C2A195E8014DD811] - 16/06/2011 - 00:58:43 ---A- . (...) -- C:\WINDOWS\KB2508272.log [36938] O44 - LFC:[MD5.C8655A8A7CA98AB89B202000C63F7183] - 16/06/2011 - 00:58:35 ---A- . (...) -- C:\WINDOWS\KB2536276.log [50872] O44 - LFC:[MD5.E3DC64DB1DD46ED4A01D8397B45E4960] - 16/06/2011 - 00:57:52 ---A- . (...) -- C:\WINDOWS\KB2507618.log [51126] O44 - LFC:[MD5.C30FBF8CF4F1E62283CD81B207CD268D] - 16/06/2011 - 00:57:50 ---A- . (...) -- C:\WINDOWS\updspapi.log [86058] O44 - LFC:[MD5.DE32E1AF20FF35F18E2F1AF07DA52BE7] - 16/06/2011 - 00:57:42 ---A- . (...) -- C:\WINDOWS\KB2530548-IE8.log [45358] O44 - LFC:[MD5.206FC9206A5FBD6913F3A21457E80B82] - 16/06/2011 - 00:56:39 ---A- . (...) -- C:\WINDOWS\KB2508429.log [37484] O44 - LFC:[MD5.8C7D8E7A2C14DB818582C007C9273D63] - 16/06/2011 - 00:56:26 ---A- . (...) -- C:\WINDOWS\KB971029.log [36865] O44 - LFC:[MD5.C7885A05B4E604C8B12F1112AC38D023] - 16/06/2011 - 00:56:05 ---A- . (...) -- C:\WINDOWS\KB2506212.log [36519] O44 - LFC:[MD5.B8D7AC4DAE614CFB6BBA8AC3080CC5CF] - 16/06/2011 - 00:51:09 ---A- . (...) -- C:\WINDOWS\KB2544893.log [48404] O44 - LFC:[MD5.14DD40869D1A95EDD1C26B53AC049DF1] - 16/06/2011 - 00:51:01 ---A- . (...) -- C:\WINDOWS\KB2509553.log [49177] O44 - LFC:[MD5.340F0B78397C89477E1043D8F20B4E8B] - 16/06/2011 - 00:50:52 ---A- . (...) -- C:\WINDOWS\KB2510531-IE8.log [34404] O44 - LFC:[MD5.CD129EB387DE0459ECD4541AC4D12554] - 16/06/2011 - 00:50:44 ---A- . (...) -- C:\WINDOWS\KB2541763.log [85634] O44 - LFC:[MD5.ED6AAC568B33934B6FB8037F245D2921] - 16/06/2011 - 00:50:36 ---A- . (...) -- C:\WINDOWS\KB2544521-IE8.log [34138] O44 - LFC:[MD5.D142D1AC4D8A18115056E4A68899D7FC] - 16/06/2011 - 00:01:56 ---A- . (...) -- C:\WINDOWS\KB2478971.log [46454] O44 - LFC:[MD5.59180168C3D1ED59A76CC2BA776EAF52] - 16/06/2011 - 00:01:46 ---A- . (...) -- C:\WINDOWS\KB2485376.log [45769] O44 - LFC:[MD5.5E9474AF7E5E71E9AC5F31A803DDCE21] - 16/06/2011 - 00:01:38 ---A- . (...) -- C:\WINDOWS\KB2479628.log [45204] O44 - LFC:[MD5.7A78F5C74DEE74B2F84AA6E24B35A0BA] - 16/06/2011 - 00:01:30 ---A- . (...) -- C:\WINDOWS\KB2483185.log [45283] O44 - LFC:[MD5.766FCDC53D82285648E18DD5404CA8C0] - 15/06/2011 - 23:43:58 ---A- . (...) -- C:\WINDOWS\KB2482017-IE8.log [35420] O44 - LFC:[MD5.71251062F604D380F3F6CAF73BBE14E4] - 15/06/2011 - 23:42:02 ---A- . (...) -- C:\WINDOWS\KB2476687.log [27635] O44 - LFC:[MD5.B61D785B61B2D64CA57A55B9C4774DC6] - 15/06/2011 - 23:41:42 ---A- . (...) -- C:\WINDOWS\KB2419632.log [40570] O44 - LFC:[MD5.84921B2AAFA1A1509CC6784680ECF9A7] - 15/06/2011 - 23:37:47 ---A- . (...) -- C:\WINDOWS\KB2478960.log [33593] ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.914F149A76C4C72728303A6BA353E58B] - 10/07/2011 - 03:28:23 ---A- - C:\WINDOWS\Prefetch\WUAUCLT.EXE-399A8E72.pf O45 - LFCP:[MD5.E473C8F4C6B0377122E66ABBA43D12D2] - 10/07/2011 - 03:28:30 ---A- - C:\WINDOWS\Prefetch\UPDATE.EXE-2577D203.pf O45 - LFCP:[MD5.2CA68933C81287092F26996DD3B22E1D] - 10/07/2011 - 03:29:02 ---A- - C:\WINDOWS\Prefetch\AVNOTIFY.EXE-05ED5FD8.pf O45 - LFCP:[MD5.1E2EF225D021DB16F8AB74E53EA8EBC6] - 10/07/2011 - 03:31:35 ---A- - C:\WINDOWS\Prefetch\WMIPRVSE.EXE-28F301A9.pf O45 - LFCP:[MD5.F9F27176873203801B84B93149C38F17] - 10/07/2011 - 03:44:04 ---A- - C:\WINDOWS\Prefetch\GOOGLEUPDATE.EXE-1E123D86.pf O45 - LFCP:[MD5.5D0A650017F821814FBC7A905ED97CBF] - 10/07/2011 - 03:46:12 ---A- - C:\WINDOWS\Prefetch\EXPLORER.EXE-082F38A9.pf O45 - LFCP:[MD5.D944EA5860111DF8020DC5C6A4485A44] - 10/07/2011 - 03:46:25 ---A- - C:\WINDOWS\Prefetch\VERCLSID.EXE-3667BD89.pf O45 - LFCP:[MD5.4D6D0905B67435963590D8FB1E018F8C] - 10/07/2011 - 03:46:41 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG2.TMP-047DE94E.pf O45 - LFCP:[MD5.77B7B4CA8939A47CE8BF64A8C28451FD] - 10/07/2011 - 03:47:36 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG2.TMP-1FC0B62B.pf O45 - LFCP:[MD5.EB64C217FEBAC637418F4520E04A5A12] - 10/07/2011 - 03:48:04 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG2.EXE-0A3988F8.pf O45 - LFCP:[MD5.3D30EEAEE0410DC787DE97062901C2BA] - 10/07/2011 - 03:48:04 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG2.TMP-1E734CFA.pf O45 - LFCP:[MD5.781CE6A92BDB09B5FE8E5750A3483ABF] - 10/07/2011 - 03:48:23 ---A- - C:\WINDOWS\Prefetch\ZHPFIX.EXE-3A07CBCA.pf O45 - LFCP:[MD5.813ADEFF84FF2C3A3FDC0141C2A082CA] - 10/07/2011 - 03:48:24 ---A- - C:\WINDOWS\Prefetch\FIREFOX.EXE-28641590.pf O45 - LFCP:[MD5.3B7732D47B7E9A3BA06571DC8399F957] - 10/07/2011 - 03:48:25 ---A- - C:\WINDOWS\Prefetch\JQSNOTIFY.EXE-24AE4A36.pf O45 - LFCP:[MD5.E7619355E95A78CB83CEF677AA6DCE68] - 10/07/2011 - 03:48:49 ---A- - C:\WINDOWS\Prefetch\PLUGIN-CONTAINER.EXE-15EDC9DD.pf O45 - LFCP:[MD5.1193BBC0E005649E92CEDDB6CF585F1C] - 10/07/2011 - 03:49:14 ---A- - C:\WINDOWS\Prefetch\REGEDIT.EXE-1B606482.pf O45 - LFCP:[MD5.CC6F6BA9A6E001E0E22B6967AB9D3923] - 10/07/2011 - 03:49:26 ---A- - C:\WINDOWS\Prefetch\NOTEPAD.EXE-336351A9.pf O45 - LFCP:[MD5.5C2BFF68908521D3F8A656CB83A5CF1D] - 10/07/2011 - 03:51:15 ---A- - C:\WINDOWS\Prefetch\ZHPDIAG.EXE-021B7932.pf O45 - LFCP:[MD5.C33872B5DFCD5EFB9381B61CD23DB0B7] - 10/07/2011 - 03:52:32 ---A- - C:\WINDOWS\Prefetch\CMD.EXE-087B4001.pf O45 - LFCP:[MD5.6CF74D676658FF861BA6E4B605D9E4F9] - 10/07/2011 - 03:52:32 ---A- - C:\WINDOWS\Prefetch\SCHTASKS.EXE-0CBF6A11.pf O45 - LFCP:[MD5.E4235DFA05B7956EDF18A03FB7E088EC] - 10/07/2011 - 03:56:14 ---A- - C:\WINDOWS\Prefetch\GUARDGUI.EXE-00ECD849.pf O45 - LFCP:[MD5.7F05A0787B5DB4B6E4483C83A498B4F2] - 10/07/2011 - 03:56:35 ---A- - C:\WINDOWS\Prefetch\AVWSC.EXE-0283F9DD.pf O45 - LFCP:[MD5.900A257EB1A660876161BAFDB866B3EC] - 16/06/2004 - 01:00:11 ---A- - C:\WINDOWS\Prefetch\AAM UPDATES NOTIFIER.EXE-0280E8C4.pf O45 - LFCP:[MD5.708316DC3DDBCDBE5EAB52600EA030D7] - 16/06/2004 - 11:49:11 ---A- - C:\WINDOWS\Prefetch\CS5SERVICEMANAGER.EXE-30673ED1.pf O45 - LFCP:[MD5.6171BE432C3F18716DB2BF321F0F6B8F] - 16/06/2004 - 11:49:14 ---A- - C:\WINDOWS\Prefetch\READER_SL.EXE-2B4EA1CB.pf O45 - LFCP:[MD5.492E99F792B230EC7E7A2DB1A5C2AA9A] - 16/06/2004 - 11:54:04 ---A- - C:\WINDOWS\Prefetch\AVGNT.EXE-200FEF40.pf O45 - LFCP:[MD5.23AFA9B2AD5F2CAEAC53259522166D39] - 16/06/2004 - 16:05:35 ---A- - C:\WINDOWS\Prefetch\DEFRAG.EXE-273F131E.pf O45 - LFCP:[MD5.8FD49613C117CEFA616CA5A0B309D744] - 16/06/2004 - 16:05:36 ---A- - C:\WINDOWS\Prefetch\DFRGNTFS.EXE-269967DF.pf O45 - LFCP:[MD5.0B770D292153969B6BA736AB76ED9826] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\ATIPTAXX.EXE-18FE8D8B.pf O45 - LFCP:[MD5.D37E55B5CB705BCC1130D2BF7AB98756] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\CTFMON.EXE-0E17969B.pf O45 - LFCP:[MD5.2819E1D0EC5E1C9C046113AAC694BE2A] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\EOUWIZ.EXE-18024749.pf O45 - LFCP:[MD5.D0C80D798078AF53178A4E037A7DF468] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\IFRMEWRK.EXE-0618C85D.pf O45 - LFCP:[MD5.33BFA7A1B103ADCB0A56674B8C38AFA6] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\KTP.EXE-2DF24F3E.pf O45 - LFCP:[MD5.06850395AD29D73DD037DFB31513349F] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-1218E1AC.pf O45 - LFCP:[MD5.95EE42A31D4168611566770989DD15C1] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\SWITCHBOARD.EXE-00FB7B94.pf O45 - LFCP:[MD5.931E3F1D2895EA895F1C64EC631A0722] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\SYNTPENH.EXE-315D3ABC.pf O45 - LFCP:[MD5.F0EAE0E4096819748C2927E152BF76EC] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\SYNTPLPR.EXE-28BB9F3B.pf O45 - LFCP:[MD5.5B1AE5863C60DD058E05B688A546F3D2] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\UPDATERSTARTUPUTILITY.EXE-21B7807D.pf O45 - LFCP:[MD5.B42F772DFB7913BF2CE84D0369653A3E] - 16/06/2004 - 20:42:19 ---A- - C:\WINDOWS\Prefetch\WLANUTIL.EXE-0FAE01EF.pf O45 - LFCP:[MD5.10E20A4948E3B038BF9717B78DBB7C5F] - 16/06/2004 - 20:42:20 ---A- - C:\WINDOWS\Prefetch\ITUNESHELPER.EXE-15823303.pf O45 - LFCP:[MD5.D0FA3A24FB3310A3781718409884A901] - 16/06/2004 - 20:42:20 ---A- - C:\WINDOWS\Prefetch\MSMSGS.EXE-2B6052DE.pf O45 - LFCP:[MD5.A0766EDF7CD4DD6E86C7B647FEB3F5F3] - 16/06/2004 - 20:42:20 ---A- - C:\WINDOWS\Prefetch\SKYPE.EXE-30AE1A60.pf O45 - LFCP:[MD5.3BF5BA5A7B4D63CE430E11669615FD95] - 16/06/2004 - 20:42:21 ---A- - C:\WINDOWS\Prefetch\BTTRAY.EXE-02B509CD.pf O45 - LFCP:[MD5.A73E641F686672E13C56EB41B5D7ED29] - 16/06/2004 - 20:43:13 ---A- - C:\WINDOWS\Prefetch\MSIPATCHREGFIX-X86.EXE-2ADB4CCC.pf O45 - LFCP:[MD5.2EB1F7652E70D5F966A96E6BC97713B1] - 16/06/2004 - 20:45:15 ---A- - C:\WINDOWS\Prefetch\NDP20SP2-KB2518864-X86.EXE-2AE02B85.pf O45 - LFCP:[MD5.B4E20360FC5BDFE120144758C4B72160] - 16/06/2004 - 20:45:38 ---A- - C:\WINDOWS\Prefetch\HOTFIXINSTALLER.EXE-1DF4066B.pf O45 - LFCP:[MD5.F74015190336BD4311EBF0430CE03142] - 16/06/2004 - 20:52:30 ---A- - C:\WINDOWS\Prefetch\REGTLIBV12.EXE-0E2FA54B.pf O45 - LFCP:[MD5.050FEF23EBF81604B0B76AE49DB61D3E] - 16/06/2004 - 20:55:22 ---A- - C:\WINDOWS\Prefetch\MOFCOMP.EXE-01718E95.pf O45 - LFCP:[MD5.6CE540CABF936D3F6A6CF0DB72314875] - 16/06/2004 - 20:55:23 ---A- - C:\WINDOWS\Prefetch\ASPNET_REGIIS.EXE-009D6E80.pf O45 - LFCP:[MD5.C6022F65189197E8A954DF280157FD9B] - 16/06/2004 - 20:56:17 ---A- - C:\WINDOWS\Prefetch\REGSVCS.EXE-11A17120.pf O45 - LFCP:[MD5.E9E980EC9532C090C3276A584AE26DA4] - 16/06/2004 - 20:56:28 ---A- - C:\WINDOWS\Prefetch\WMIADAP.EXE-2DF425B2.pf O45 - LFCP:[MD5.C0D9425230DB5BA6BFB69383A104F93D] - 16/06/2004 - 20:57:06 ---A- - C:\WINDOWS\Prefetch\NGEN.EXE-38021CCC.pf O45 - LFCP:[MD5.A5E8C035A1C76A862A13A001CD365169] - 16/06/2004 - 20:57:18 ---A- - C:\WINDOWS\Prefetch\LODCTR.EXE-1009C3B4.pf O45 - LFCP:[MD5.7F97F107E3FCE01CD9C6B893DCF429D6] - 16/06/2004 - 21:54:43 ---A- - C:\WINDOWS\Prefetch\MSCORSVW.EXE-1BF30400.pf O45 - LFCP:[MD5.60EC6A4797B203B34E07E6B11AB62655] - 16/06/2004 - 22:03:03 ---A- - C:\WINDOWS\Prefetch\ALG.EXE-0F138680.pf O45 - LFCP:[MD5.A88162A5A19D02D3A12B25A0DBF36595] - 16/06/2004 - 22:03:03 ---A- - C:\WINDOWS\Prefetch\IMAPI.EXE-0BF740A4.pf O45 - LFCP:[MD5.9C7985AD5292D482680DD44CA5FD9993] - 16/06/2004 - 22:03:03 ---A- - C:\WINDOWS\Prefetch\IPODSERVICE.EXE-3192DE38.pf O45 - LFCP:[MD5.25A6FF9A1111753FC5197C32235D735D] - 16/06/2004 - 22:05:41 ---A- - C:\WINDOWS\Prefetch\OIS.EXE-337DD4BD.pf O45 - LFCP:[MD5.C62F55BBFC26CEAF04B919C9CB4FA15A] - 16/06/2004 - 22:05:44 ---A- - C:\WINDOWS\Prefetch\FREECOMPRESSOR_AIR.EXE-15D5DF45.pf O45 - LFCP:[MD5.FAD718D6CF64FFE3E16867A17C382CC0] - 16/06/2004 - 22:25:08 ---A- - C:\WINDOWS\Prefetch\GOOGLEUPDATE.EXE-0BCD17F2.pf O45 - LFCP:[MD5.0ACA4A15E668C0D86A0411064E07494F] - 16/06/2004 - 22:25:09 ---A- - C:\WINDOWS\Prefetch\GOOGLECRASHHANDLER.EXE-34C2B2F4.pf O45 - LFCP:[MD5.A24F924E0646747FF1B151D06038BB31] - 16/06/2004 - 22:25:38 ---A- - C:\WINDOWS\Prefetch\GOOGLEEARTH-WIN-PLUGIN-6.0.3.-37F74A8C.pf O45 - LFCP:[MD5.36E1941BEF469D362276F3A2B60D6E15] - 16/06/2004 - 22:25:47 ---A- - C:\WINDOWS\Prefetch\GOOGLEEARTH.EXE-288B935F.pf O45 - LFCP:[MD5.AD42D182FE766E714B368F5C53B352E7] - 16/06/2004 - 22:25:51 ---A- - C:\WINDOWS\Prefetch\MSIEXEC.EXE-2F8A8CAE.pf O45 - LFCP:[MD5.5B975308700B74F70DB1039A338E681F] - 16/06/2004 - 22:26:27 ---A- - C:\WINDOWS\Prefetch\GEPLUGIN.EXE-039CFE10.pf O45 - LFCP:[MD5.A21548EEE9664B5B2E5EF33731319F08] - 16/06/2004 - 22:26:30 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-31B60B19.pf O45 - LFCP:[MD5.C008E24AA357FE9AEDF780D0AEFC8E06] - 16/06/2004 - 22:45:22 ---A- - C:\WINDOWS\Prefetch\LOGON.SCR-151EFAEA.pf O45 - LFCP:[MD5.ABDB2234641FCBF7C06933FE76F7AB13] - 16/06/2004 - 23:21:03 ---A- - C:\WINDOWS\Prefetch\CALC.EXE-02CD573A.pf O45 - LFCP:[MD5.1AD71DB56CE0EE5198D79FBC6DFD7F75] - 16/06/2004 - 23:23:40 ---A- - C:\WINDOWS\Prefetch\ACRORD32.EXE-3A1F13AE.pf O45 - LFCP:[MD5.2B0DDDCC947E1A66D6FAB167579B608E] - 16/06/2004 - 23:23:54 ---A- - C:\WINDOWS\Prefetch\ADOBEARM.EXE-2D1B11BF.pf O45 - LFCP:[MD5.C77A224D1AC33A8DA3CE530FE7824F12] - 16/06/2004 - 23:24:04 ---A- - C:\WINDOWS\Prefetch\ACRORD32INFO.EXE-242CE4AA.pf ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Microsoft® Remote Desktop Help Session Manager.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe O47 - AAKE:Key Export SP - "C:\Program Files\CambridgeSoft\ChemOffice2004\Chem3D\Chem3D.exe" [Enabled] .(.CambridgeSoft Corp. - Chem3D Ultra.) -- C:\Program Files\CambridgeSoft\ChemOffice2004\Chem3D\Chem3D.exe O47 - AAKE:Key Export SP - "C:\Program Files\CambridgeSoft\ChemOffice2004\ChemDraw\ChemDraw.exe" [Enabled] .(.CambridgeSoft Corp. - ChemDraw Ultra 8.0.) -- C:\Program Files\CambridgeSoft\ChemOffice2004\ChemDraw\ChemDraw.exe O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Phone\Skype.exe" [Enabled] .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Plugin Manager\skypePM.exe" [Enabled] .(.Skype Technologies - Skype Extras Manager.) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe O47 - AAKE:Key Export SP - "C:\Program Files\Java\jre6\bin\javaw.exe" [Enabled] .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\javaw.exe O47 - AAKE:Key Export SP - "C:\Program Files\Bonjour\mDNSResponder.exe" [Enabled] .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O47 - AAKE:Key Export SP - "C:\Program Files\iTunes\iTunes.exe" [Enabled] .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe O47 - AAKE:Key Export SP - "C:\Program Files\Google\Google Earth\plugin\geplugin.exe" [Enabled] .(.Google - Google Earth.) -- C:\Program Files\Google\Google Earth\plugin\geplugin.exe O47 - AAKE:Key Export SP - "C:\Program Files\TightVNC\tvnserver.exe" [Enabled] .(.GlavSoft LLC. - TightVNC Server for Windows.) -- C:\Program Files\TightVNC\tvnserver.exe O47 - AAKE:Key Export SP - "C:\Program Files\TightVNC\vncviewer.exe" [Enabled] .(.TightVNC Group - vncviewer.) -- C:\Program Files\TightVNC\vncviewer.exe O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Microsoft® Remote Desktop Help Session Manager.) -- C:\WINDOWS\system32\sessmgr.exe ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager I/O Driver.) -- C:\WINDOWS\System32\Drivers\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\System32\Drivers\sermouse.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - System Restore Filesystem Filter Driver.) -- C:\WINDOWS\System32\Drivers\sr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - NT Disk Manager I/O Driver.) -- C:\WINDOWS\System32\Drivers\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\System32\Drivers\ip6fw.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\System32\Drivers\rdpcdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\System32\Drivers\rdpdd.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\System32\Drivers\rdpwd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\System32\Drivers\sermouse.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - System Restore Filesystem Filter Driver.) -- C:\WINDOWS\System32\Drivers\sr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdpipe.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdtcp.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\System32\Drivers\vgasave.sys (.not file.) ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - DSP Group TrueSpeech Audio Codec for MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (...) -- (.not file.) O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - DPA Client for 32 bit platforms.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Digest SSPI Authentication Package.) -- C:\WINDOWS\system32\digest.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - DPA Client for 32 bit platforms.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Digest SSPI Authentication Package.) -- C:\WINDOWS\system32\digest.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145 O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.F498FD605C08404B20A48954C722FF74] - 10/07/2011 - 20:45:05 ---A- . (.Meetinghouse Data Communications - IEEE 802.1X Protocol Driver.) -- C:\WINDOWS\system32\drivers\AegisP.sys [17119] O58 - SDL:[MD5.375EAC7DA270DA658501EE766F960201] - 10/07/2011 - 15:06:42 ---A- . (.ATI Technologies Inc. - ATI Radeon WindowsNT Miniport Driver.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys [874496] O58 - SDL:[MD5.5B44C214F9CD9F590BE9125347610380] - 10/07/2011 - 14:28:03 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\drivers\avgntdd.sys [45416] O58 - SDL:[MD5.47B879406246FFDCED59E18D331A0E7D] - 10/07/2011 - 01:26:13 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys [61960] O58 - SDL:[MD5.87451AA7CC6B6A590EBCEA05E755075A] - 10/07/2011 - 14:28:03 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\drivers\avgntmgr.sys [22360] O58 - SDL:[MD5.5FEDEF54757B34FB611B9EC8FB399364] - 10/07/2011 - 11:51:13 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\WINDOWS\system32\drivers\avipbb.sys [137656] O58 - SDL:[MD5.48BF91CFFBCDD12A710207F2A08FEC4D] - 10/07/2011 - 15:38:32 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS5.1 Driver..) -- C:\WINDOWS\system32\drivers\b57xp32.sys [132352] O58 - SDL:[MD5.3292260A6AE8F328C7EF698B6EBD56E2] - 10/07/2011 - 11:15:08 ---A- . (.Broadcom Corporation - USB Driver for Bluetooth Adapter.) -- C:\WINDOWS\system32\drivers\bcbthub.sys [148794] O58 - SDL:[MD5.0A5D4300A8EA29F67ABBBABB58DD5456] - 10/07/2011 - 14:04:04 ---A- . (.WIDCOMM, Inc. - Bluetooth Audio Device.) -- C:\WINDOWS\system32\drivers\btaudio.sys [16896] O58 - SDL:[MD5.7249EF21D6F70D971BDA3ED0AF16D340] - 10/07/2011 - 13:57:46 ---A- . (.WIDCOMM, Inc. - Bluetooth Protocol Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btkrnl.sys [1240938] O58 - SDL:[MD5.6D9D146B116B0C3F09A9AB9F6F805093] - 10/07/2011 - 13:50:32 ---A- . (.WIDCOMM, Inc. - Bluetooth BTPORT Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btport.sys [30235] O58 - SDL:[MD5.3E98D2550A6222CD6D278425FBB21C3E] - 10/07/2011 - 14:02:06 ---A- . (.WIDCOMM, Inc. - Bluetooth Serial Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btserial.sys [23239] O58 - SDL:[MD5.48B9AD7437FF5BFB8F13CAB03179FE72] - 10/07/2011 - 14:01:46 ---A- . (.WIDCOMM, Inc. - Bluetooth Serial Driver for Windows 2000.) -- C:\WINDOWS\system32\drivers\btslbcsp.sys [222844] O58 - SDL:[MD5.F5418F5B86BF9610AF445F7884087F9E] - 10/07/2011 - 13:50:46 ---A- . (.WIDCOMM, Inc. - Bluetooth LAN Access Server Driver.) -- C:\WINDOWS\system32\drivers\btwdndis.sys [147864] O58 - SDL:[MD5.BAA90D983F77759FC70C65A1CE3D3566] - 10/07/2011 - 13:29:00 ---A- . (.Conexant Systems Inc. - Conexant WDM AC97 Audio Driver.) -- C:\WINDOWS\system32\drivers\camcaud.sys [34048] O58 - SDL:[MD5.90D9C324DF48BB8E3024E79F5C181784] - 10/07/2011 - 13:31:00 ---A- . (.Conexant Systems Inc. - Conexant AmcHal Driver.) -- C:\WINDOWS\system32\drivers\camchal.sys [276480] O58 - SDL:[MD5.B562592B7F5759C99E179CA467ECFB4C] - 10/07/2011 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C 1.2 WDM Main Driver.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528] O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 10/07/2011 - 13:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776] O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 10/07/2011 - 13:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys [26600] O58 - SDL:[MD5.573C7D0A32852B48F3058CFD8026F511] - 10/07/2011 - 13:00:00 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\drivers\hdaudbus.sys [144384] O58 - SDL:[MD5.FAC3B0A7EC158C4582D23EDA4C5A56E9] - 10/07/2011 - 14:00:00 ---A- . (.Conexant Systems, Inc. - HSFHWICH WDM driver.) -- C:\WINDOWS\system32\drivers\HSFHWICH.sys [200064] O58 - SDL:[MD5.2E84A40836B2A8DC523CB530C7262AC3] - 10/07/2011 - 13:58:00 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys [684800] O58 - SDL:[MD5.E5ADD2AFECBF514F5CCA730EDFDFB49E] - 10/07/2011 - 13:58:00 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\system32\drivers\HSF_DP.sys [1041536] O58 - SDL:[MD5.EADCBD84F788D887E73D8C7691B2C508] - 10/07/2011 - 16:23:42 ---A- . (.Inprocomm, Inc. - NT 5 (NDIS 5.1/5.0) x86 Driver.) -- C:\WINDOWS\system32\drivers\i2220ntx.sys [140288] O58 - SDL:[MD5.872D090CA5C306F62D1982BCE6302376] - 10/07/2011 - 07:44:04 ---A- . (.Intel Corporation - Intel Wireless Connection Agent.) -- C:\WINDOWS\system32\drivers\iwca.sys [234496] O58 - SDL:[MD5.78D93059DE425C9A248E1850ED80F822] - 10/07/2011 - 18:04:44 ---A- . (.ELANTECH Devices Corp. - KTP Ware Filter Driver.) -- C:\WINDOWS\system32\drivers\Ktp.sys [27392] O58 - SDL:[MD5.67B48A903430C6D4FB58CBACA1866601] - 10/07/2011 - 14:39:26 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys [20952] O58 - SDL:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 10/07/2011 - 14:39:38 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys [38224] O58 - SDL:[MD5.3C318B9CD391371BED62126581EE9961] - 10/07/2011 - 10:04:00 ---A- . (.Conexant - Diagnostic Interface DRIVER.) -- C:\WINDOWS\system32\drivers\mdmxsdk.sys [13059] O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 10/07/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032] O58 - SDL:[MD5.2ADC0CA9945C65284B3D19BC18765974] - 10/07/2011 - 01:24:38 ---A- . (.National Semiconductor Corporation - NSC Fast Infrared Driver..) -- C:\WINDOWS\system32\drivers\nscirda.sys [28672] O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 10/07/2011 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792] O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 10/07/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032] O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 10/07/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032] O58 - SDL:[MD5.85A26A3BB748DFD3170CDBF45B0DD7FD] - 10/07/2011 - 10:20:04 ---A- . (.Intel Corporation - Intel WLAN Packet Driver.) -- C:\WINDOWS\system32\drivers\s24trans.sys [11354] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 10/07/2011 - 13:00:00 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.44EF1200FEFFFFFF00000000CCF11200] - 01/06/2010 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [685816] O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 10/07/2011 - 14:28:02 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\drivers\ssmdrv.sys [28520] O58 - SDL:[MD5.EB363DDFBE8B6D51003CCAB29D93D744] - 10/07/2011 - 13:33:46 ---A- . (.Synaptics, Inc. - Synaptics Touchpad Driver.) -- C:\WINDOWS\system32\drivers\SynTP.sys [185824] O58 - SDL:[MD5.467FF7FB078DCEC24C3F4DB602190E3D] - 10/07/2011 - 12:40:00 ---A- . (.Texas Instruments - tifm21.sys.) -- C:\WINDOWS\system32\drivers\tifm21.sys [146304] O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 10/07/2011 - 13:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376] O58 - SDL:[MD5.5C2BDC152BBAB34F36473DEAF7713F22] - 10/07/2011 - 15:44:52 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\system32\drivers\usbaapl.sys [41984] O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 10/07/2011 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112] O58 - SDL:[MD5.C89DA341FCC883A3D79DC11727484FC2] - 10/07/2011 - 17:48:10 ---A- . (.Intel® Corporation - Intel® Wireless LAN Driver.) -- C:\WINDOWS\system32\drivers\w29n51.sys [3222784] O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9029] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097] O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4768] O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537] O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27866] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146] O58 - SDL:[MD5.4FE09F868CE65B334B42862C372C69CC] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [33840] O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560] O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648] O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424] O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 10/07/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560] O58 - SDL:[MD5.2F9806B52CB3748B1E49222744B28E3C] - 10/07/2011 - 11:52:22 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) -- C:\WINDOWS\system32\PCANDIS5.SYS [17134] ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC:Last File Created 10/07/2011 - 03:28:23 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\sched.log [114796] O61 - LFC:Last File Created 10/07/2011 - 03:28:45 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\IDX\master.idx [56] O61 - LFC:Last File Created 10/07/2011 - 03:29:16 -SHA- C:\Documents And Settings\Saskia\Local Settings\History\History.IE5\MSHist012011071020110711\index.dat [32768] O61 - LFC:Last File Created 10/07/2011 - 03:29:38 ---A- C:\Documents And Settings\Saskia\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol [1612] O61 - LFC:Last File Created 10/07/2011 - 03:29:48 ---A- C:\Documents And Settings\Saskia\Cookies\[email protected][2].txt [359] O61 - LFC:Last File Created 10/07/2011 - 03:32:58 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2011-07-10-04-28-19.log [52592] O61 - LFC:Last File Created 10/07/2011 - 03:32:58 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\REPORTS\c241e054.avl [3070] O61 - LFC:Last File Created 10/07/2011 - 03:33:17 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\JOBS\updjob.avj [1530] O61 - LFC:Last File Created 10/07/2011 - 03:43:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\plugtmp-10\plugin-images%5Cbanner.swf [20563] O61 - LFC:Last File Created 10/07/2011 - 03:44:56 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\localstore.rdf [7762] O61 - LFC:Last File Created 10/07/2011 - 03:45:47 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\plugtmp-10\plugin-home.xml [694] O61 - LFC:Last File Created 10/07/2011 - 03:45:47 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\plugtmp-10\plugin-viewer.xml [812] O61 - LFC:Last File Created 10/07/2011 - 03:46:04 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\XUL.mfl [1456849] O61 - LFC:Last File Created 10/07/2011 - 03:46:07 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\downloads.sqlite [180224] O61 - LFC:Last File Created 10/07/2011 - 03:48:07 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\sessionstore.bak [684849] O61 - LFC:Last File Created 10/07/2011 - 03:48:14 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\cert8.db [196608] O61 - LFC:Last File Created 10/07/2011 - 03:48:14 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\cookies.sqlite [557056] O61 - LFC:Last File Created 10/07/2011 - 03:48:14 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\cookies.sqlite-journal [114032] O61 - LFC:Last File Created 10/07/2011 - 03:48:14 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\urlclassifier3.sqlite [48730112] O61 - LFC:Last File Created 10/07/2011 - 03:48:26 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\pluginreg.dat [12473] O61 - LFC:Last File Created 10/07/2011 - 03:48:31 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_001_ [635802] O61 - LFC:Last File Created 10/07/2011 - 03:48:31 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_002_ [577774] O61 - LFC:Last File Created 10/07/2011 - 03:48:31 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_003_ [1605697] O61 - LFC:Last File Created 10/07/2011 - 03:48:32 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\_CACHE_MAP_ [276] O61 - LFC:Last File Created 10/07/2011 - 03:48:33 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\urlclassifierkey3.txt [154] O61 - LFC:Last File Created 10/07/2011 - 03:48:35 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\eBay Inc\ebay-companion.sqlite [20480] O61 - LFC:Last File Created 10/07/2011 - 03:48:37 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\CA48276Dd01 [30680] O61 - LFC:Last File Created 10/07/2011 - 03:48:37 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\DB9CAF24d01 [37200] O61 - LFC:Last File Created 10/07/2011 - 03:48:37 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\F3782808d01 [40164] O61 - LFC:Last File Created 10/07/2011 - 03:48:39 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\3F27D0A7d01 [52279] O61 - LFC:Last File Created 10/07/2011 - 03:48:39 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\70AEDFF2d01 [39845] O61 - LFC:Last File Created 10/07/2011 - 03:48:39 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\E05FEAFFd01 [17017] O61 - LFC:Last File Created 10/07/2011 - 03:48:40 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\576A3B85d01 [48296] O61 - LFC:Last File Created 10/07/2011 - 03:48:40 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\C302A9C0d01 [76400] O61 - LFC:Last File Created 10/07/2011 - 03:48:41 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\39F3A2EAd01 [32275] O61 - LFC:Last File Created 10/07/2011 - 03:48:42 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\D231D771d01 [20250] O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2A5B56D1d01 [38187] O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\64EAE464d01 [26040] O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\793F322Ad01 [20546] O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\79A7D1E5d01 [80019] O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\8722EF69d01 [37591] O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\AB0F63EEd01 [53216] O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\C68BA509d01 [63662] O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\F25BC56Cd01 [83764] O61 - LFC:Last File Created 10/07/2011 - 03:49:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\F79C6591d01 [40587] O61 - LFC:Last File Created 10/07/2011 - 03:49:01 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\6BF740AEd01 [96712] O61 - LFC:Last File Created 10/07/2011 - 03:49:02 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\5582BF0Ed01 [165329] O61 - LFC:Last File Created 10/07/2011 - 03:49:02 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\595B7BB6d01 [39464] O61 - LFC:Last File Created 10/07/2011 - 03:49:02 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\A8CF65EEd01 [17080] O61 - LFC:Last File Created 10/07/2011 - 03:49:02 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\DE3EC532d01 [27039] O61 - LFC:Last File Created 10/07/2011 - 03:49:02 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\EE8A3DACd01 [24982] O61 - LFC:Last File Created 10/07/2011 - 03:49:03 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\968EB4F4d01 [27265] O61 - LFC:Last File Created 10/07/2011 - 03:49:04 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\0F78A4E6d01 [22188] O61 - LFC:Last File Created 10/07/2011 - 03:49:04 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\75DAE5C1d01 [22909] O61 - LFC:Last File Created 10/07/2011 - 03:49:04 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\E4E44315d01 [48407] O61 - LFC:Last File Created 10/07/2011 - 03:49:05 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\56E35EBDd01 [19494] O61 - LFC:Last File Created 10/07/2011 - 03:49:06 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\1AAE745Bd01 [28295] O61 - LFC:Last File Created 10/07/2011 - 03:49:06 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\7FE04013d01 [124388] O61 - LFC:Last File Created 10/07/2011 - 03:49:06 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\AE904A3Ed01 [35941] O61 - LFC:Last File Created 10/07/2011 - 03:49:07 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\00FFE48Bd01 [31710] O61 - LFC:Last File Created 10/07/2011 - 03:49:07 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\31E8BAD5d01 [20208] O61 - LFC:Last File Created 10/07/2011 - 03:49:07 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\646309D0d01 [26942] O61 - LFC:Last File Created 10/07/2011 - 03:49:07 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\D935EF5Fd01 [20396] O61 - LFC:Last File Created 10/07/2011 - 03:49:10 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\9D3BC6D4d01 [20783] O61 - LFC:Last File Created 10/07/2011 - 03:49:12 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2DE868D5d01 [31965] O61 - LFC:Last File Created 10/07/2011 - 03:49:12 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\964F5625d01 [16713] O61 - LFC:Last File Created 10/07/2011 - 03:49:13 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\518F0DC7d01 [80305] O61 - LFC:Last File Created 10/07/2011 - 03:49:13 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\E9E8F947d01 [62284] O61 - LFC:Last File Created 10/07/2011 - 03:49:13 ---A- C:\Documents And Settings\Saskia\Local Settings\Temp\plugtmp-11\plugin-images%5Cbanner.swf [20563] O61 - LFC:Last File Created 10/07/2011 - 03:49:14 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.21452 [91] O61 - LFC:Last File Created 10/07/2011 - 03:49:14 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.21452 [48] O61 - LFC:Last File Created 10/07/2011 - 03:49:14 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\260A3B04d01 [23164] O61 - LFC:Last File Created 10/07/2011 - 03:49:14 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\51F38612d01 [21396] O61 - LFC:Last File Created 10/07/2011 - 03:49:15 ---A- C:\Documents And Settings\Saskia\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2011-07-10 (04-49-15).txt [1125] O61 - LFC:Last File Created 10/07/2011 - 03:49:16 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\575DE18Ad01 [62062] O61 - LFC:Last File Created 10/07/2011 - 03:49:17 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\3DC27359d01 [19776] O61 - LFC:Last File Created 10/07/2011 - 03:49:20 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\F57DD351d01 [183664] O61 - LFC:Last File Created 10/07/2011 - 03:49:21 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\B57AED9Ed01 [104514] O61 - LFC:Last File Created 10/07/2011 - 03:49:21 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\E02B632Bd01 [35519] O61 - LFC:Last File Created 10/07/2011 - 03:49:22 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\467EDE04d01 [46064] O61 - LFC:Last File Created 10/07/2011 - 03:49:22 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\F5ECB04Cd01 [64763] O61 - LFC:Last File Created 10/07/2011 - 03:49:24 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\A3DF4976d01 [212339] O61 - LFC:Last File Created 10/07/2011 - 03:49:25 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\60586B8Dd01 [29922] O61 - LFC:Last File Created 10/07/2011 - 03:49:25 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\70674250d01 [23952] O61 - LFC:Last File Created 10/07/2011 - 03:49:26 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\31EDEEC4d01 [24409] O61 - LFC:Last File Created 10/07/2011 - 03:49:27 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2C316B05d01 [27382] O61 - LFC:Last File Created 10/07/2011 - 03:49:27 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\8A40931Cd01 [24588] O61 - LFC:Last File Created 10/07/2011 - 03:49:30 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\07E591BCd01 [72151] O61 - LFC:Last File Created 10/07/2011 - 03:49:30 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\A7C5CC61d01 [96115] O61 - LFC:Last File Created 10/07/2011 - 03:49:30 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\DEF21F7Bd01 [68904] O61 - LFC:Last File Created 10/07/2011 - 03:49:31 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\36C96C82d01 [17852] O61 - LFC:Last File Created 10/07/2011 - 03:49:32 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\571FA639d01 [30925] O61 - LFC:Last File Created 10/07/2011 - 03:49:34 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\D369AA40d01 [64694] O61 - LFC:Last File Created 10/07/2011 - 03:49:35 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\3244F103d01 [99121] O61 - LFC:Last File Created 10/07/2011 - 03:49:36 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\24321981d01 [18931] O61 - LFC:Last File Created 10/07/2011 - 03:49:36 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\5F782C27d01 [17646] O61 - LFC:Last File Created 10/07/2011 - 03:49:37 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2C9FC298d01 [48350] O61 - LFC:Last File Created 10/07/2011 - 03:49:38 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\054A17DAd01 [21355] O61 - LFC:Last File Created 10/07/2011 - 03:49:40 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\D0F8D449d01 [108508] O61 - LFC:Last File Created 10/07/2011 - 03:49:48 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\F31B8329d01 [24720] O61 - LFC:Last File Created 10/07/2011 - 03:49:50 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\72628EF4d01 [726351] O61 - LFC:Last File Created 10/07/2011 - 03:49:58 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\DD4851EDd01 [19892] O61 - LFC:Last File Created 10/07/2011 - 03:50:08 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\7121E75Bd01 [17933] O61 - LFC:Last File Created 10/07/2011 - 03:50:18 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\88D1A693d01 [17440] O61 - LFC:Last File Created 10/07/2011 - 03:50:28 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\07917480d01 [17358] O61 - LFC:Last File Created 10/07/2011 - 03:50:38 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\7114DB74d01 [16935] O61 - LFC:Last File Created 10/07/2011 - 03:50:48 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\8C24FC90d01 [23170] O61 - LFC:Last File Created 10/07/2011 - 03:50:58 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\6A23D110d01 [17904] O61 - LFC:Last File Created 10/07/2011 - 03:51:05 ---A- C:\Documents And Settings\All Users.WINDOWS\Start Menu\Programs\ZHP\ZHPDiag.lnk [682] O61 - LFC:Last File Created 10/07/2011 - 03:51:19 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\A770B924d01 [16770] O61 - LFC:Last File Created 10/07/2011 - 03:51:39 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\90192FF2d01 [16520] O61 - LFC:Last File Created 10/07/2011 - 03:51:49 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\E9048F56d01 [25069] O61 - LFC:Last File Created 10/07/2011 - 03:51:59 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\6BBD8719d01 [22473] O61 - LFC:Last File Created 10/07/2011 - 03:52:09 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\721CADEFd01 [17268] O61 - LFC:Last File Created 10/07/2011 - 03:52:15 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\AB6D9503d01 [19918] O61 - LFC:Last File Created 10/07/2011 - 03:52:19 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\D6044504d01 [24281] O61 - LFC:Last File Created 10/07/2011 - 03:52:29 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\FFAC7910d01 [19205] O61 - LFC:Last File Created 10/07/2011 - 03:52:33 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\0233417Ed01 [45459] O61 - LFC:Last File Created 10/07/2011 - 03:52:33 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\1FA6CB18d01 [30247] O61 - LFC:Last File Created 10/07/2011 - 03:52:34 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2A49FCD2d01 [125978] O61 - LFC:Last File Created 10/07/2011 - 03:52:34 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\537634BEd01 [47565] O61 - LFC:Last File Created 10/07/2011 - 03:52:34 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\DD85D0CAd01 [25916] O61 - LFC:Last File Created 10/07/2011 - 03:52:40 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\A0B50323d01 [20931] O61 - LFC:Last File Created 10/07/2011 - 03:52:50 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\B521464Fd01 [17927] O61 - LFC:Last File Created 10/07/2011 - 03:52:56 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\07B2739Fd01 [140975] O61 - LFC:Last File Created 10/07/2011 - 03:52:56 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\63FDBCAEd01 [54512] O61 - LFC:Last File Created 10/07/2011 - 03:52:57 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\375CC647d01 [22438] O61 - LFC:Last File Created 10/07/2011 - 03:52:57 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\61187911d01 [17444] O61 - LFC:Last File Created 10/07/2011 - 03:52:58 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\15BEAE6Dd01 [42173] O61 - LFC:Last File Created 10/07/2011 - 03:52:58 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\E0506A75d01 [56702] O61 - LFC:Last File Created 10/07/2011 - 03:52:59 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\32AB927Ad01 [46287] O61 - LFC:Last File Created 10/07/2011 - 03:52:59 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\66E49755d01 [43208] O61 - LFC:Last File Created 10/07/2011 - 03:52:59 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\CF4D7D8Cd01 [17180] O61 - LFC:Last File Created 10/07/2011 - 03:53:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\0688DB64d01 [19188] O61 - LFC:Last File Created 10/07/2011 - 03:53:00 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\0FDE814Fd01 [25522] O61 - LFC:Last File Created 10/07/2011 - 03:53:02 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\EE6C4FF2d01 [28061] O61 - LFC:Last File Created 10/07/2011 - 03:53:09 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\BC61EF96d01 [36107] O61 - LFC:Last File Created 10/07/2011 - 03:53:09 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\EB9FA416d01 [24434] O61 - LFC:Last File Created 10/07/2011 - 03:53:10 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2380A46Dd01 [23024] O61 - LFC:Last File Created 10/07/2011 - 03:53:13 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\89E36B54d01 [43950] O61 - LFC:Last File Created 10/07/2011 - 03:53:20 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\2959CDECd01 [16578] O61 - LFC:Last File Created 10/07/2011 - 03:53:27 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\formhistory.sqlite [32768] O61 - LFC:Last File Created 10/07/2011 - 03:53:32 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\0652F256d01 [25688] O61 - LFC:Last File Created 10/07/2011 - 03:53:32 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\89A4712Ed01 [21367] O61 - LFC:Last File Created 10/07/2011 - 03:53:36 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\ED816FF0d01 [18322] O61 - LFC:Last File Created 10/07/2011 - 03:53:37 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\Cache\1618402Ed01 [36959] O61 - LFC:Last File Created 10/07/2011 - 03:56:34 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\LOGFILES\avguard.log [614640] O61 - LFC:Last File Created 10/07/2011 - 03:56:35 ---A- C:\Documents And Settings\All Users.WINDOWS\Application Data\Avira\AntiVir Desktop\EVENTDB\avevtdb.dbe [15360] O61 - LFC:Last File Created 10/07/2011 - 03:58:24 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\blocklist.xml [10573] O61 - LFC:Last File Created 10/07/2011 - 03:58:25 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\extensions.rdf [10704] O61 - LFC:Last File Created 10/07/2011 - 03:58:33 ---A- C:\Documents And Settings\Saskia\Local Settings\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\XPC.mfl [186688] O61 - LFC:Last File Created 10/07/2011 - 03:58:40 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\places.sqlite [10309632] O61 - LFC:Last File Created 10/07/2011 - 03:58:40 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\places.sqlite-journal [0] O61 - LFC:Last File Created 10/07/2011 - 03:58:40 ---A- C:\Documents And Settings\Saskia\Application Data\Mozilla\Firefox\Profiles\dt3siihq.default\sessionstore.js [719882] O61 - LFC:Last File Created 16/06/2004 - 03:28:26 -SHA- C:\Documents And Settings\LocalService.NT AUTHORITY\Cookies\index.dat [32768] O61 - LFC:Last File Created 16/06/2004 - 03:28:26 -SHA- C:\Documents And Settings\LocalService.NT AUTHORITY\Local Settings\History\History.IE5\index.dat [32768] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM] -- Ad-Remover O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 O63 - Logiciel: FindyKill - (.El Desaparecido.) O63 - Logiciel: RSIT - (.random/random.) O63 - Logiciel: Toolbar SD - (.IDN Team.) O63 - Logiciel: ToolsCleaner - (.A.Rothstein & dj QUIOU.) ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\WINDOWS\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - Bing ---\\ Crack & Keygen Files (O82) C:\Documents and Settings\Jérémy\Recent\Photomatix Pro 3 + Keygen.rar.lnk C:\Documents and Settings\Jérémy\Recent\Photomatix Pro v3.4 Incl-Keygen.rar.lnk C:\Program Files\eMule\Incoming\Photomatix Pro 3 + Keygen.rar C:\Program Files\eMule\Incoming\Photomatix Pro v2.2.3 Winall Incl Keygen.rar C:\Program Files\eMule\Incoming\Photomatix Pro v3.4 Incl-Keygen.rar C:\Documents and Settings\Jérémy\Recent\Photomatix Pro 3 + Keygen.rar.lnk C:\Documents and Settings\Jérémy\Recent\Photomatix Pro v3.4 Incl-Keygen.rar.lnk C:\Program Files\eMule\Incoming\Photomatix Pro 3 + Keygen.rar C:\Program Files\eMule\Incoming\Photomatix Pro v2.2.3 Winall Incl Keygen.rar C:\Program Files\eMule\Incoming\Photomatix Pro v3.4 Incl-Keygen.rar ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.139CA7EE65280F3AE220520E8DD5F75E] [sPRF][09/11/2005] (.MESTRELAB - MestReC Application.) -- C:\Documents and Settings\Saskia\Desktop\MestReC.exe [5902336] [MD5.2E0B5C7437AB198A1AA2810BAA4E682B] [sPRF][04/12/2010] (...) -- C:\Documents and Settings\Saskia\Desktop\SoftonicFR_JDownloader_09579.exe [30456832] [MD5.9B0EEDE0731D10F482E72BAC24A059CD] [sPRF][10/07/2011] (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Saskia\Desktop\ZHPDiag2.exe [2538818] [MD5.8FE1A5DAC5D47C7A9D5A5501644B25B2] [sPRF][11/06/2010] (.Adobe Systems Incorporated - Adobe Extractor.) -- C:\Program Files\Photoshop_12_LS4.exe [1228400] ---\\ Scan Additionnel (O88) Database Version : 8502 - (08/07/2011) Clés trouvées (Keys found) : 5 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 0 Fichiers trouvés (Files found) : 0 [HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\ForceRenive] =>PUP.OfferBox [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] =>Hijacker.Agent [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] =>Hijacker.Agent [HKLM\Software\Classes\Installer\Features\5B4758C25396ECF468E04F8E063287FF] =>PUP.OfferBox [HKCU\Software\NtWqIVLZEWZU] =>Trojan.FakeAlert ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 10/07/2011 136360 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe SR - | Auto 10/07/2011 269480 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe SR - | Auto 10/07/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 10/07/2011 425984 | (Ati HotKey Poller) . (.ATI Technologies Inc..) - C:\WINDOWS\system32\Ati2evxx.exe SR - | Auto 10/07/2011 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SR - | Auto 10/07/2011 163840 | (btwdins) . (.WIDCOMM, Inc..) - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe SS - | Demand 10/07/2011 224768 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe SR - | Auto 10/07/2011 86016 | (EvtEng) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe SS - | Auto 10/07/2011 133104 | (gupdate1cb095d934d6ec8) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SR - | Demand 10/07/2011 820008 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SR - | Auto 10/07/2011 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe SR - | Auto 10/07/2011 98304 | (OwnershipProtocol) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe SR - | Auto 10/07/2011 139264 | (RegSrvc) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe SR - | Auto 10/07/2011 360521 | (S24EventMonitor) . (.Intel Corporation.) - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe SS - | Demand 10/07/2011 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe SR - | Auto 10/07/2011 826896 | (tvnserver) . (.GlavSoft LLC..) - C:\Program Files\TightVNC\tvnserver.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by Saskia at 10/07/2011 05:11:43 device: opened successfully user: MBR read successfully Disk trace: called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys sptd.sys >>UNKNOWN [0x869858AC]<< C:\WINDOWS\system32\drivers\sptd.sys 1 ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\Harddisk0\DR0[0x8693FAB8] 3 CLASSPNP[0xF7546FD7] -> ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\00000084[0x869CEF18] 5 ACPI[0xF72BB620] -> ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\Ide\IdeDeviceP0T0L0-4[0x868F4D98] kernel: MBR read successfully user & kernel MBR OK ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Saskia at 10/07/2011 05:11:45 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ---\\ Liste des émulateurs de CD/DVD (Hook du MBR) O42 - Logiciel: AdVantage (Powering DAEMON Tools) - (.AdVantage.) [HKCU] -- advantage_DAEM O58 - SDL:[MD5.44EF1200FEFFFFFF00000000CCF11200] - 01/06/2010 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [685816] End of the scan (1575 lines in 20mn 08s)(10)
  8. grem
    Bonjour, Mon PC est infecté et je n'arrive pas à éliminer les virus. Pourriez vous m'aider ? Merci Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 00:30:10, on 16/06/2004 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Avira\AntiVir Desktop\avshadow.exe C:\WINDOWS\system32\Ati2evxx.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\Program Files\Google\Update\GoogleUpdate.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\acer\Wireless\Utility\WlanUtil.exe C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\iTunes\iTunesHelper.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\FreeCompressor\spointer\freecompressor_air.exe C:\Program Files\TightVNC\tvnserver.exe C:\Program Files\TightVNC\tvnserver.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Documents and Settings\Saskia\My Documents\Téléchargements\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Fissa search R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Interest recogniser for Freecompressor (powered by Spointer) - {a83c3565-302c-4bf8-b000-6b6f1811d892} - C:\Program Files\FreeCompressor\spointer\extensions\freecompressor_air_ie.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: SciFinder Scholar Bar - {4e16a8fb-0521-46d1-aa2c-d0fc7abf6af9} - mscoree.dll (file missing) O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [KTPWare] C:\Program Files\Elantech\ktp.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [acerWireless] C:\Program Files\acer\Wireless\Utility\WlanUtil.exe O4 - HKLM\..\Run: [intelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless O4 - HKLM\..\Run: [EOUApp] C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [switchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [tvncontrol] "C:\Program Files\TightVNC\tvnserver.exe" -controlservice -slave O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [NtWqIVLZEWZU] C:\DOCUME~1\Saskia\LOCALS~1\Temp\Jj2.exe O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_Plugin.exe -update plugin O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: BTTray.lnk = ? O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O13 - Gopher Prefix: O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: Service Google Update (gupdate1cb095d934d6ec8) (gupdate1cb095d934d6ec8) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: OwnershipProtocol - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: TightVNC Server (tvnserver) - GlavSoft LLC. - C:\Program Files\TightVNC\tvnserver.exe -- End of file - 9666 bytes
  9. grem
    Salut, Merci de ton aide et encore désolé. J'ai compris, mais trop tard, pourquoi on m'avait demandé d'héberger les rapports... J'ai l'impression que mon pc n'est pas encore totalement libéré des méchants virus. Que dois-je faire chef ?
  10. grem
    Voici le info.txt : Cijoint.fr - Service gratuit de dépôt de fichiers et le log.txt : Logfile of random's system information tool 1.08 (written by random/random) Run by Saskia at 2004-06-16 05:56:25 Microsoft Windows XP Professional Service Pack 3 System drive C: has 14 GB (19%) free of 76 GB Total RAM: 1022 MB (43% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 05:56:26, on 16/06/2004 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Avira\AntiVir Desktop\avshadow.exe C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\rundll32.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\acer\Wireless\Utility\WlanUtil.exe C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Skype\Toolbars\Shared\SkypeNames2.exe C:\Program Files\FreeCompressor\spointer\freecompressor_air.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Documents and Settings\Saskia\My Documents\Téléchargements\RSIT.exe C:\Program Files\trend micro\Saskia.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Fissa search R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Interest recogniser for Freecompressor (powered by Spointer) - {a83c3565-302c-4bf8-b000-6b6f1811d892} - C:\Program Files\FreeCompressor\spointer\extensions\freecompressor_air_ie.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: SciFinder Scholar Bar - {4e16a8fb-0521-46d1-aa2c-d0fc7abf6af9} - mscoree.dll (file missing) O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [KTPWare] C:\Program Files\Elantech\ktp.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [acerWireless] C:\Program Files\acer\Wireless\Utility\WlanUtil.exe O4 - HKLM\..\Run: [intelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless O4 - HKLM\..\Run: [EOUApp] C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [switchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: BTTray.lnk = ? O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O17 - HKLM\System\CCS\Services\Tcpip\..\{6094630B-118B-4BCE-A304-EBC6DE1A367A}: NameServer = 193.50.208.4,193.50.208.6 O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: Service Google Update (gupdate1cb095d934d6ec8) (gupdate1cb095d934d6ec8) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: OwnershipProtocol - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe -- End of file - 8938 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-JÉRÉMY-Saskia.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a83c3565-302c-4bf8-b000-6b6f1811d892}] Interest recogniser for Freecompressor (powered by Spointer) - C:\Program Files\FreeCompressor\spointer\extensions\freecompressor_air_ie.dll [2010-07-12 135840] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-01 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-06-01 79648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {4e16a8fb-0521-46d1-aa2c-d0fc7abf6af9} - SciFinder Scholar Bar - C:\WINDOWS\system32\mscoree.dll [2009-11-05 297808] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent [] "KTPWare"=C:\Program Files\Elantech\ktp.exe [2005-10-27 512000] "SynTPLpr"=C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [2004-10-07 98394] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2004-10-07 688218] "acerWireless"=C:\Program Files\acer\Wireless\Utility\WlanUtil.exe [2004-06-09 417792] ""= [] "IntelWireless"=C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [2004-10-15 385024] "EOUApp"=C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe [2004-10-15 356352] "ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2004-12-07 344064] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832] "AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208] "SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] "AdobeCS5ServiceManager"=C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992] "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2010-08-17 281768] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232] "Skype"=C:\Program Files\Skype\Phone\Skype.exe [2010-05-13 26192168] C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll [2004-12-07 94208] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\IntelWireless] C:\Program Files\Intel\Wireless\Bin\LgNotify.dll [2004-10-15 110592] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa] "authentication packages"=msv1_0 nwprovau [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook" "C:\Program Files\CambridgeSoft\ChemOffice2004\Chem3D\Chem3D.exe"="C:\Program Files\CambridgeSoft\ChemOffice2004\Chem3D\Chem3D.exe:*:Enabled:Chem3D Ultra" "C:\Program Files\CambridgeSoft\ChemOffice2004\ChemDraw\ChemDraw.exe"="C:\Program Files\CambridgeSoft\ChemOffice2004\ChemDraw\ChemDraw.exe:*:Enabled:ChemDraw Ultra 8.0" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" "C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" ======List of files/folders created in the last 1 months====== 2010-10-01 11:16:31 ----D---- C:\Documents and Settings\Saskia\Application Data\Avira 2010-10-01 09:55:23 ----A---- C:\WINDOWS\system32\drivers\ssmdrv.sys 2010-10-01 09:55:18 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys 2010-10-01 09:55:18 ----A---- C:\WINDOWS\system32\drivers\avgntmgr.sys 2010-10-01 09:55:18 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys 2010-10-01 09:55:18 ----A---- C:\WINDOWS\system32\drivers\avgntdd.sys 2010-10-01 09:55:02 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Avira 2010-10-01 09:26:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2158563$ 2010-09-22 09:38:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2259922$ 2010-09-22 09:37:53 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$ 2010-09-22 09:37:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$ 2010-09-22 09:37:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2121546$ 2010-09-22 09:36:53 ----HDC---- C:\WINDOWS\$NtUninstallKB982802$ 2010-09-22 09:35:20 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$ 2010-09-22 09:33:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2141007$ 2010-08-13 23:50:03 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$ 2010-08-13 23:49:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$ 2010-08-13 23:49:46 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$ 2010-08-13 23:49:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$ 2010-08-13 23:48:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2160329$ 2010-08-13 23:48:16 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$ 2010-08-13 23:46:19 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$ 2010-08-13 23:45:41 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$ 2010-08-04 09:35:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$ 2010-08-02 11:54:37 ----A---- C:\WINDOWS\system32\ptpusd.dll 2010-08-02 11:54:37 ----A---- C:\WINDOWS\system32\ptpusb.dll 2010-08-02 11:54:35 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys 2010-08-02 02:07:45 ----D---- C:\Documents and Settings\Saskia\Application Data\FissaSearch 2010-08-02 02:07:32 ----D---- C:\Program Files\FreeCompressor 2010-08-02 02:07:06 ----D---- C:\Documents and Settings\Saskia\Application Data\OfferBox 2010-06-18 14:28:51 ----D---- C:\WINDOWS\system32\URTTemp 2010-06-18 14:28:07 ----D---- C:\SFScholarToolbar 2010-06-18 14:25:04 ----N---- C:\WINDOWS\system32\CXF50E.DLL 2010-06-18 14:25:04 ----N---- C:\WINDOWS\system32\CXF50D.DLL 2010-06-18 14:25:04 ----N---- C:\WINDOWS\system32\CXF50C.DLL 2010-06-18 14:25:04 ----N---- C:\WINDOWS\system32\CXF50B.DLL 2010-06-18 14:25:04 ----N---- C:\WINDOWS\system32\CXF50A.DLL 2010-06-18 14:25:04 ----N---- C:\WINDOWS\system32\CC3250MT.DLL 2010-06-18 14:25:04 ----N---- C:\WINDOWS\system32\ACORDX50.DLL 2010-06-18 14:25:04 ----N---- C:\WINDOWS\system32\ACCORD50.DLL 2010-06-18 14:25:04 ----N---- C:\WINDOWS\system32\ACCDEX50.DLL 2010-06-18 14:25:04 ----N---- C:\WINDOWS\system32\ACCDEN50.DLL 2010-06-18 14:25:04 ----N---- C:\WINDOWS\system32\ACCDCO50.DLL 2010-06-18 14:25:04 ----D---- C:\Program Files\Accelrys 2010-06-18 14:25:04 ----A---- C:\WINDOWS\Accord50.Ini 2010-06-18 14:24:54 ----A---- C:\WINDOWS\IsUninst.exe 2010-06-18 14:24:12 ----A---- C:\WINDOWS\system32\Cxf0332c.dll 2010-06-18 14:24:12 ----A---- C:\WINDOWS\system32\Cxf0332b.dll 2010-06-18 14:24:12 ----A---- C:\WINDOWS\system32\Cxf0332a.dll 2010-06-18 14:24:12 ----A---- C:\WINDOWS\system32\Cw3245mt.dll 2010-06-18 14:24:12 ----A---- C:\WINDOWS\system32\Acordx35.dll 2010-06-18 14:24:12 ----A---- C:\WINDOWS\system32\Accord35.dll 2010-06-18 14:24:12 ----A---- C:\WINDOWS\system32\Accdod35.dll 2010-06-18 14:24:12 ----A---- C:\WINDOWS\system32\Accden35.dll 2010-06-18 14:24:12 ----A---- C:\WINDOWS\system32\Accdco35.dll 2010-06-18 14:23:58 ----A---- C:\WINDOWS\system32\SciFiSoft.dll 2010-06-18 14:23:52 ----D---- C:\SFSCHLR 2010-06-12 15:55:09 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys 2010-06-12 15:55:04 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys 2010-06-11 18:40:17 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$ 2010-06-11 18:37:16 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$ 2010-06-11 18:35:00 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$ 2010-06-11 18:33:18 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$ 2010-06-11 18:32:37 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$ 2010-06-11 16:47:27 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\regid.1986-12.com.adobe 2010-06-11 14:19:39 ----D---- C:\Program Files\Common Files\Adobe AIR 2010-06-11 14:15:23 ----D---- C:\Documents and Settings\Saskia\Application Data\XnView 2010-06-11 14:14:19 ----D---- C:\Program Files\XnView 2010-06-11 14:05:12 ----D---- C:\Documents and Settings\Saskia\Application Data\skypePM 2010-06-11 13:59:54 ----D---- C:\Documents and Settings\Saskia\Application Data\Skype 2010-06-11 13:59:14 ----D---- C:\Program Files\Common Files\Skype 2010-06-11 13:59:11 ----RD---- C:\Program Files\Skype 2010-06-11 13:59:03 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Skype 2010-06-11 09:51:42 ----A---- C:\Program Files\Photoshop_12_LS4.exe 2010-06-11 09:44:08 ----D---- C:\Program Files\Common Files\Akamai 2010-06-10 17:40:06 ----D---- C:\Documents and Settings\Saskia\Application Data\Pixia 2010-06-10 17:39:19 ----D---- C:\Program Files\Pixia 4.3a FR 2010-06-10 17:23:40 ----D---- C:\Documents and Settings\Saskia\Application Data\Help 2010-06-10 09:44:44 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$ 2010-06-06 17:07:48 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$ 2010-06-06 16:55:51 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$ 2010-06-06 15:39:06 ----A---- C:\WINDOWS\system32\drivers\splitter.sys 2010-06-06 15:39:03 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys 2010-06-06 15:39:01 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys 2010-06-06 15:38:59 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys 2010-06-06 15:38:56 ----A---- C:\WINDOWS\system32\drivers\aec.sys 2010-06-06 15:38:53 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys 2010-06-06 15:38:49 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys 2010-06-06 15:38:46 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys 2010-06-06 15:38:43 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys 2010-06-06 15:38:39 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys 2010-06-06 15:38:35 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2010-06-06 15:38:27 ----A---- C:\WINDOWS\system32\ksuser.dll 2010-06-06 15:38:26 ----A---- C:\WINDOWS\system32\drivers\portcls.sys 2010-06-06 15:38:24 ----A---- C:\WINDOWS\system32\drivers\drmk.sys 2010-06-05 18:34:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$ 2010-06-05 12:12:15 ----A---- C:\WINDOWS\system32\hidserv.dll 2010-06-05 12:12:09 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys 2010-06-05 12:11:54 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys 2010-06-02 14:55:40 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Adobe 2010-06-02 14:55:04 ----D---- C:\Program Files\Common Files\Adobe 2010-06-02 14:39:20 ----A---- C:\WINDOWS\gswin32.ini 2010-06-02 14:39:06 ----D---- C:\Program Files\gs 2010-06-02 14:24:38 ----D---- C:\Program Files\ghostscript-8.71 2010-06-02 13:57:12 ----D---- C:\Documents and Settings\Saskia\Application Data\MiKTeX 2010-06-02 13:26:30 ----D---- C:\Program Files\Ghostgum 2010-06-02 13:11:47 ----A---- C:\WINDOWS\Chem3D.INI 2010-06-02 13:06:12 ----D---- C:\Program Files\CambridgeSoft 2010-06-02 12:49:44 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\MiKTeX 2010-06-02 12:45:58 ----D---- C:\Program Files\MiKTeX 2.8 2010-06-02 11:33:19 ----D---- C:\Documents and Settings\Saskia\Application Data\EndNote 2010-06-02 11:32:13 ----D---- C:\Program Files\Common Files\Risxtd 2010-06-02 11:31:25 ----D---- C:\Program Files\EndNote 9 2010-06-02 11:30:51 ----D---- C:\Program Files\Common Files\Wise Installation Wizard 2010-06-02 11:30:04 ----D---- C:\Program Files\ENDNOTE 2010-06-02 11:29:34 ----D---- C:\Program Files\Nouveau dossier 2010-06-02 11:08:49 ----D---- C:\Program Files\CCTL 2010-06-02 11:08:49 ----D---- C:\Program Files\AUTORUN 2010-06-02 11:08:49 ----A---- C:\Program Files\ReadMe.TXT 2010-06-02 11:08:49 ----A---- C:\Program Files\Palm ReadMe.TXT 2010-06-02 11:08:49 ----A---- C:\Program Files\License Agreement.TXT 2010-06-02 11:08:45 ----D---- C:\Program Files\MSI 2010-06-02 11:08:43 ----D---- C:\Program Files\EXTRAS 2010-06-02 11:08:40 ----A---- C:\Program Files\SETUP.EXE 2010-06-02 10:36:48 ----A---- C:\WINDOWS\system32\msxml4a.dll 2010-06-02 10:36:46 ----D---- C:\Program Files\TeXnicCenter 2010-06-02 10:10:21 ----D---- C:\Program Files\OriginLab 2010-06-02 10:08:33 ----D---- C:\Documents and Settings\Saskia\Application Data\InstallShield 2010-06-02 09:35:46 ----A---- C:\WINDOWS\ModemLog_SoftV92 Data Fax Modem with SmartCP.txt 2010-06-02 00:07:28 ----D---- C:\Program Files\Common Files\DESIGNER 2010-06-01 23:59:51 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft Help 2010-06-01 23:54:04 ----D---- C:\Documents and Settings\Saskia\Application Data\advantage 2010-06-01 23:51:34 ----D---- C:\Documents and Settings\Saskia\Application Data\DAEMON Tools Pro 2010-06-01 23:51:26 ----D---- C:\Program Files\DAEMON Tools Pro 2010-06-01 23:43:54 ----A---- C:\WINDOWS\system32\drivers\sptd.sys 2010-06-01 23:34:17 ----D---- C:\Documents and Settings\Saskia\Application Data\WinRAR 2010-06-01 23:33:34 ----D---- C:\WINDOWS\system32\ar-sa 2010-06-01 23:33:31 ----D---- C:\WINDOWS\system32\pt-br 2010-06-01 23:33:31 ----D---- C:\WINDOWS\system32\bg-bg 2010-06-01 23:33:27 ----D---- C:\WINDOWS\system32\zh-cn 2010-06-01 23:33:24 ----D---- C:\WINDOWS\system32\zh-tw 2010-06-01 23:33:21 ----D---- C:\WINDOWS\system32\cs-cz 2010-06-01 23:33:17 ----D---- C:\WINDOWS\system32\da-dk 2010-06-01 23:33:13 ----D---- C:\WINDOWS\system32\el-gr 2010-06-01 23:33:10 ----D---- C:\WINDOWS\system32\es-es 2010-06-01 23:33:07 ----D---- C:\WINDOWS\system32\et-ee 2010-06-01 23:33:06 ----D---- C:\WINDOWS\system32\fi-fi 2010-06-01 23:33:00 ----D---- C:\WINDOWS\system32\de-de 2010-06-01 23:32:56 ----D---- C:\WINDOWS\system32\he-il 2010-06-01 23:32:53 ----D---- C:\WINDOWS\system32\hu-hu 2010-06-01 23:32:53 ----D---- C:\WINDOWS\system32\hr-hr 2010-06-01 23:32:50 ----D---- C:\WINDOWS\system32\it-it 2010-06-01 23:32:46 ----D---- C:\WINDOWS\system32\ja-jp 2010-06-01 23:32:43 ----D---- C:\WINDOWS\system32\ko-kr 2010-06-01 23:32:40 ----D---- C:\WINDOWS\system32\lt-lt 2010-06-01 23:32:39 ----D---- C:\WINDOWS\system32\nl-nl 2010-06-01 23:32:39 ----D---- C:\WINDOWS\system32\lv-lv 2010-06-01 23:32:36 ----D---- C:\WINDOWS\system32\nb-no 2010-06-01 23:32:33 ----D---- C:\WINDOWS\system32\pl-pl 2010-06-01 23:32:30 ----D---- C:\WINDOWS\system32\pt-pt 2010-06-01 23:32:27 ----D---- C:\WINDOWS\system32\ru-ru 2010-06-01 23:32:27 ----D---- C:\WINDOWS\system32\ro-ro 2010-06-01 23:32:24 ----D---- C:\WINDOWS\system32\sk-sk 2010-06-01 23:32:23 ----D---- C:\WINDOWS\system32\sl-si 2010-06-01 23:32:21 ----D---- C:\WINDOWS\system32\sv-se 2010-06-01 23:32:18 ----D---- C:\WINDOWS\system32\tr-tr 2010-06-01 23:32:18 ----D---- C:\WINDOWS\system32\th-th 2010-06-01 23:31:51 ----HDC---- C:\WINDOWS\$NtUninstallKB942766-v6$ 2010-06-01 23:27:45 ----D---- C:\Documents and Settings\Saskia\Application Data\Macromedia 2010-06-01 23:06:42 ----A---- C:\WINDOWS\system32\javaws.exe 2010-06-01 23:06:42 ----A---- C:\WINDOWS\system32\javaw.exe 2010-06-01 23:06:42 ----A---- C:\WINDOWS\system32\java.exe 2010-06-01 23:06:42 ----A---- C:\WINDOWS\system32\deployJava1.dll 2010-06-01 23:04:34 ----D---- C:\WINDOWS\system32\CatRoot_bak 2010-06-01 22:47:37 ----D---- C:\Documents and Settings\Saskia\Application Data\OpenOffice.org 2010-06-01 22:32:41 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Sun 2010-06-01 22:30:59 ----D---- C:\Documents and Settings\Saskia\Application Data\Sun 2010-06-01 22:29:32 ----D---- C:\Documents and Settings\Saskia\Application Data\Adobe 2010-06-01 22:24:15 ----RA---- C:\WINDOWS\system32\atiiiexx.dll 2010-06-01 22:13:18 ----D---- C:\ATI 2010-06-01 22:10:21 ----D---- C:\Documents and Settings\Saskia\Application Data\Mozilla 2010-06-01 22:09:18 ----A---- C:\WINDOWS\system32\h323log.txt 2010-06-01 22:07:55 ----A---- C:\WINDOWS\system32\drivers\audstub.sys 2010-06-01 22:06:59 ----A---- C:\WINDOWS\system32\drivers\redbook.sys 2010-06-01 22:06:52 ----A---- C:\WINDOWS\system32\wshirda.dll 2010-06-01 22:06:52 ----A---- C:\WINDOWS\system32\irmon.dll 2010-06-01 22:06:52 ----A---- C:\WINDOWS\system32\drivers\rasirda.sys 2010-06-01 22:06:51 ----A---- C:\WINDOWS\system32\irftp.exe 2010-06-01 22:06:51 ----A---- C:\WINDOWS\system32\drivers\irda.sys 2010-06-01 22:06:48 ----A---- C:\WINDOWS\system32\drivers\nscirda.sys 2010-06-01 22:06:20 ----A---- C:\WINDOWS\system32\drivers\enum1394.sys 2010-06-01 22:06:04 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Windows Genuine Advantage 2010-06-01 22:06:04 ----A---- C:\WINDOWS\system32\drivers\intelide.sys 2010-06-01 22:05:41 ----A---- C:\WINDOWS\system32\usbui.dll 2010-06-01 22:05:14 ----A---- C:\WINDOWS\system32\drivers\compbatt.sys 2010-06-01 22:05:12 ----A---- C:\WINDOWS\system32\drivers\CmBatt.sys 2010-06-01 22:05:12 ----A---- C:\WINDOWS\system32\drivers\battc.sys 2010-06-01 21:58:39 ----A---- C:\WINDOWS\imsins.BAK 2010-06-01 21:58:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-06-01 21:58:32 ----A---- C:\WINDOWS\ODBCINST.INI 2010-06-01 21:58:31 ----D---- C:\Program Files\Common Files\ODBC 2010-06-01 21:58:25 ----D---- C:\Program Files\Common Files\SpeechEngines 2010-06-01 21:58:25 ----D---- C:\Program Files\Common Files\Microsoft Shared 2010-06-01 21:58:25 ----D---- C:\Program Files\Common Files 2010-06-01 21:58:12 ----RA---- C:\WINDOWS\system32\kbdtuq.dll 2010-06-01 21:58:12 ----RA---- C:\WINDOWS\system32\kbdtuf.dll 2010-06-01 21:58:12 ----RA---- C:\WINDOWS\system32\kbdazel.dll 2010-06-01 21:58:10 ----RA---- C:\WINDOWS\system32\kbduzb.dll 2010-06-01 21:58:10 ----RA---- C:\WINDOWS\system32\kbdtat.dll 2010-06-01 21:58:10 ----RA---- C:\WINDOWS\system32\kbdmon.dll 2010-06-01 21:58:10 ----RA---- C:\WINDOWS\system32\kbdkyr.dll 2010-06-01 21:58:10 ----RA---- C:\WINDOWS\system32\kbdkaz.dll 2010-06-01 21:58:10 ----RA---- C:\WINDOWS\system32\kbdaze.dll 2010-06-01 21:58:09 ----RA---- C:\WINDOWS\system32\kbdycc.dll 2010-06-01 21:58:09 ----RA---- C:\WINDOWS\system32\kbdur.dll 2010-06-01 21:58:09 ----RA---- C:\WINDOWS\system32\kbdru1.dll 2010-06-01 21:58:09 ----RA---- C:\WINDOWS\system32\kbdru.dll 2010-06-01 21:58:09 ----RA---- C:\WINDOWS\system32\kbdbu.dll 2010-06-01 21:58:09 ----RA---- C:\WINDOWS\system32\kbdblr.dll 2010-06-01 21:58:00 ----RA---- C:\WINDOWS\system32\kbdhept.dll 2010-06-01 21:58:00 ----RA---- C:\WINDOWS\system32\kbdhela3.dll 2010-06-01 21:58:00 ----RA---- C:\WINDOWS\system32\kbdhela2.dll 2010-06-01 21:58:00 ----RA---- C:\WINDOWS\system32\kbdhe319.dll 2010-06-01 21:58:00 ----RA---- C:\WINDOWS\system32\kbdhe220.dll 2010-06-01 21:58:00 ----RA---- C:\WINDOWS\system32\kbdhe.dll 2010-06-01 21:58:00 ----RA---- C:\WINDOWS\system32\kbdgkl.dll 2010-06-01 21:57:58 ----RA---- C:\WINDOWS\system32\kbdlv1.dll 2010-06-01 21:57:58 ----RA---- C:\WINDOWS\system32\kbdlv.dll 2010-06-01 21:57:58 ----RA---- C:\WINDOWS\system32\kbdlt1.dll 2010-06-01 21:57:58 ----RA---- C:\WINDOWS\system32\kbdlt.dll 2010-06-01 21:57:58 ----RA---- C:\WINDOWS\system32\kbdest.dll 2010-06-01 21:57:42 ----RA---- C:\WINDOWS\system32\kbdycl.dll 2010-06-01 21:57:42 ----RA---- C:\WINDOWS\system32\kbdsl1.dll 2010-06-01 21:57:42 ----RA---- C:\WINDOWS\system32\kbdsl.dll 2010-06-01 21:57:42 ----RA---- C:\WINDOWS\system32\kbdro.dll 2010-06-01 21:57:42 ----RA---- C:\WINDOWS\system32\kbdpl1.dll 2010-06-01 21:57:42 ----RA---- C:\WINDOWS\system32\kbdpl.dll 2010-06-01 21:57:42 ----RA---- C:\WINDOWS\system32\kbdhu1.dll 2010-06-01 21:57:42 ----RA---- C:\WINDOWS\system32\kbdhu.dll 2010-06-01 21:57:42 ----RA---- C:\WINDOWS\system32\kbdcz2.dll 2010-06-01 21:57:42 ----RA---- C:\WINDOWS\system32\kbdcz1.dll 2010-06-01 21:57:42 ----RA---- C:\WINDOWS\system32\kbdcz.dll 2010-06-01 21:57:42 ----RA---- C:\WINDOWS\system32\kbdcr.dll 2010-06-01 21:57:42 ----RA---- C:\WINDOWS\system32\KBDAL.DLL 2010-06-01 21:57:38 ----A---- C:\WINDOWS\system32\spxcoins.dll 2010-06-01 21:57:38 ----A---- C:\WINDOWS\system32\irclass.dll 2010-06-01 21:57:38 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2010-06-01 21:57:38 ----A---- C:\WINDOWS\system32\dgsetup.dll 2010-06-01 21:57:38 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2010-06-01 21:55:26 ----A---- C:\WINDOWS\TASKMAN.EXE 2010-06-01 21:55:26 ----A---- C:\WINDOWS\system32\drivers\irenum.sys 2010-06-01 21:55:26 ----A---- C:\WINDOWS\system32\batt.dll 2010-06-01 21:55:25 ----A---- C:\WINDOWS\system32\storprop.dll 2010-06-01 21:55:25 ----A---- C:\WINDOWS\NOTEPAD.EXE 2010-06-01 21:55:10 ----ASH---- C:\Documents and Settings\All Users.WINDOWS\Application Data\desktop.ini 2010-06-01 21:54:43 ----SD---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft 2010-06-01 21:54:10 ----A---- C:\WINDOWS\setuplog.txt 2010-06-01 21:47:35 ----D---- C:\Program Files\CONEXANT 2010-06-01 21:46:39 ----D---- C:\WINDOWS\system32\scripting 2010-06-01 21:46:39 ----D---- C:\WINDOWS\system32\en 2010-06-01 21:46:39 ----D---- C:\WINDOWS\system32\DRM 2010-06-01 21:46:32 ----ASH---- C:\pagefile.sys 2010-06-01 21:45:05 ----A---- C:\WINDOWS\system32\drivers\AegisP.sys 2010-06-01 21:44:48 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Intel 2010-06-01 21:44:26 ----A---- C:\WINDOWS\system32\W29MLRES.DLL 2010-06-01 21:36:21 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$ 2010-06-01 21:35:59 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$ 2010-06-01 21:35:51 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$ 2010-06-01 21:35:37 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$ 2010-06-01 21:35:31 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$ 2010-06-01 21:35:15 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$ 2010-06-01 21:35:05 ----HDC---- C:\WINDOWS\$NtUninstallKB981349$ 2010-06-01 21:34:49 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$ 2010-06-01 21:34:24 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$ 2010-06-01 21:34:13 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$ 2010-06-01 21:33:59 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$ 2010-06-01 21:33:15 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$ 2010-06-01 21:32:42 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$ 2010-06-01 21:32:30 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$ 2010-06-01 21:32:17 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$ 2010-06-01 21:32:13 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$ 2010-06-01 21:32:06 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$ 2010-06-01 21:31:47 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$ 2010-06-01 21:31:26 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$ 2010-06-01 21:31:19 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$ 2010-06-01 21:31:08 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$ 2010-06-01 21:31:02 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$ 2010-06-01 21:30:02 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$ 2010-06-01 21:29:30 ----D---- C:\WINDOWS\ie7updates 2010-06-01 21:28:50 ----N---- C:\WINDOWS\system32\spmsg.dll 2010-06-01 21:23:53 ----A---- C:\WINDOWS\system32\W32N50.DLL 2010-06-01 21:23:53 ----A---- C:\WINDOWS\system32\PCANDIS5.SYS 2010-06-01 21:23:53 ----A---- C:\WINDOWS\system32\drivers\i2220ntx.sys 2010-06-01 21:23:46 ----N---- C:\WINDOWS\system32\browserchoice.exe 2010-06-01 21:22:29 ----D---- C:\Documents and Settings\Saskia\Application Data\Intel 2010-06-01 21:21:21 ----A---- C:\WINDOWS\system32\results.txt 2010-06-01 21:20:13 ----A---- C:\WINDOWS\system32\xpsp4res.dll 2010-06-01 21:16:32 ----D---- C:\Program Files\Elantech 2010-06-01 21:16:07 ----D---- C:\Program Files\Broadcom 2010-06-01 21:14:26 ----A---- C:\WINDOWS\system32\mdmxsdk.dll 2010-06-01 21:14:26 ----A---- C:\WINDOWS\system32\hsfci009.dll 2010-06-01 21:14:26 ----A---- C:\WINDOWS\system32\drivers\mdmxsdk.sys 2010-06-01 21:14:26 ----A---- C:\WINDOWS\system32\drivers\HSFHWICH.sys 2010-06-01 21:14:26 ----A---- C:\WINDOWS\system32\drivers\HSF_DP.sys 2010-06-01 21:14:26 ----A---- C:\WINDOWS\system32\drivers\HSF_CNXT.sys 2010-06-01 21:12:28 ----D---- C:\Program Files\Common Files\InstallShield 2010-06-01 21:09:59 ----A---- C:\WINDOWS\system32\drivers\bthpan.sys 2010-06-01 21:09:49 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys 2010-06-01 21:09:49 ----A---- C:\WINDOWS\system32\drivers\BthEnum.sys 2010-06-01 21:09:40 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS 2010-06-01 21:08:58 ----D---- C:\Program Files\WIDCOMM 2010-06-01 21:08:24 ----A---- C:\WINDOWS\Wininit.ini 2010-06-01 21:02:44 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS 2010-06-01 20:39:25 ----D---- C:\Documents and Settings\Saskia\Application Data\Identities 2010-06-01 20:39:03 ----ASH---- C:\Documents and Settings\Saskia\Application Data\desktop.ini 2010-06-01 20:39:02 ----SD---- C:\Documents and Settings\Saskia\Application Data\Microsoft 2010-06-01 20:37:40 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-06-01 20:28:54 ----A---- C:\WINDOWS\control.ini 2010-06-01 20:28:19 ----A---- C:\WINDOWS\system32\mapi32.dll 2010-06-01 20:28:19 ----A---- C:\WINDOWS\OEWABLog.txt 2010-06-01 20:26:29 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2010-06-01 20:26:22 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2010-06-01 20:24:57 ----A---- C:\WINDOWS\system32\atrace.dll 2010-06-01 20:24:47 ----A---- C:\WINDOWS\system32\desktop.ini 2010-06-01 20:24:47 ----A---- C:\WINDOWS\desktop.ini 2010-06-01 20:24:32 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2010-06-01 20:24:31 ----A---- C:\WINDOWS\system32\acctres.dll 2010-06-01 20:24:30 ----D---- C:\Program Files\Common Files\Services 2010-06-01 20:24:12 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2010-06-01 20:24:11 ----D---- C:\Program Files\Common Files\MSSoap 2010-06-01 20:23:28 ----A---- C:\WINDOWS\system32\wuweb.dll 2010-06-01 20:23:28 ----A---- C:\WINDOWS\system32\wucltui.dll 2010-06-01 20:23:28 ----A---- C:\WINDOWS\system32\wuauserv.dll 2010-06-01 20:23:28 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2010-06-01 20:23:27 ----A---- C:\WINDOWS\system32\wups.dll 2010-06-01 20:23:27 ----A---- C:\WINDOWS\system32\wuaueng.dll 2010-06-01 20:23:27 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2010-06-01 20:23:27 ----A---- C:\WINDOWS\system32\wuauclt.exe 2010-06-01 20:23:27 ----A---- C:\WINDOWS\system32\wuapi.dll 2010-06-01 20:23:26 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2010-06-01 20:23:26 ----A---- C:\WINDOWS\system32\qmgr.dll 2010-06-01 20:23:26 ----A---- C:\WINDOWS\system32\bitsprx4.dll 2010-06-01 20:23:26 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2010-06-01 20:23:26 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2010-06-01 20:21:33 ----A---- C:\WINDOWS\system32\safrslv.dll 2010-06-01 20:21:33 ----A---- C:\WINDOWS\system32\safrdm.dll 2010-06-01 20:21:33 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2010-06-01 20:21:33 ----A---- C:\WINDOWS\system32\racpldlg.dll 2010-06-01 20:21:28 ----A---- C:\WINDOWS\system32\fltMc.exe 2010-06-01 20:21:28 ----A---- C:\WINDOWS\system32\fltlib.dll 2010-06-01 20:21:28 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys 2010-06-01 20:21:27 ----A---- C:\WINDOWS\system32\srsvc.dll 2010-06-01 20:21:27 ----A---- C:\WINDOWS\system32\srrstr.dll 2010-06-01 20:21:27 ----A---- C:\WINDOWS\system32\srclient.dll 2010-06-01 20:21:27 ----A---- C:\WINDOWS\system32\drivers\sr.sys 2010-06-01 20:21:26 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2010-06-01 20:21:26 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2010-06-01 20:21:26 ----A---- C:\WINDOWS\system32\mnmdd.dll 2010-06-01 20:21:26 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2010-06-01 20:21:26 ----A---- C:\WINDOWS\system32\ils.dll 2010-06-01 20:21:25 ----A---- C:\WINDOWS\system32\msconf.dll 2010-06-01 20:21:21 ----A---- C:\WINDOWS\system32\msoert2.dll 2010-06-01 20:21:21 ----A---- C:\WINDOWS\system32\msoeacct.dll 2010-06-01 20:21:20 ----A---- C:\WINDOWS\system32\inetres.dll 2010-06-01 20:21:19 ----A---- C:\WINDOWS\system32\inetcomm.dll 2010-06-01 20:21:17 ----A---- C:\WINDOWS\system32\schedsvc.dll 2010-06-01 20:21:02 ----A---- C:\WINDOWS\system32\mstinit.exe 2010-06-01 20:21:02 ----A---- C:\WINDOWS\system32\mstask.dll 2010-06-01 20:21:02 ----A---- C:\WINDOWS\system32\icwphbk.dll 2010-06-01 20:21:02 ----A---- C:\WINDOWS\system32\icwdial.dll 2010-06-01 20:21:01 ----A---- C:\WINDOWS\system32\isign32.dll 2010-06-01 20:21:01 ----A---- C:\WINDOWS\system32\inetcfg.dll 2010-06-01 20:20:33 ----D---- C:\Program Files\Common Files\System 2010-06-01 20:19:16 ----A---- C:\WINDOWS\vbaddin.ini 2010-06-01 20:19:16 ----A---- C:\WINDOWS\vb.ini 2010-06-01 20:18:13 ----A---- C:\WINDOWS\system32\write.exe 2010-06-01 20:16:19 ----A---- C:\WINDOWS\system32\sndvol32.exe 2010-06-01 20:16:19 ----A---- C:\WINDOWS\system32\hticons.dll 2010-06-01 20:16:18 ----A---- C:\WINDOWS\system32\winchat.exe 2010-06-01 20:16:18 ----A---- C:\WINDOWS\system32\avwav.dll 2010-06-01 20:16:18 ----A---- C:\WINDOWS\system32\avtapi.dll 2010-06-01 20:16:18 ----A---- C:\WINDOWS\system32\avmeter.dll 2010-06-01 20:15:42 ----A---- C:\WINDOWS\system32\getuname.dll 2010-06-01 20:15:42 ----A---- C:\WINDOWS\system32\charmap.exe 2010-06-01 20:15:41 ----A---- C:\WINDOWS\system32\winmine.exe 2010-06-01 20:15:41 ----A---- C:\WINDOWS\system32\sol.exe 2010-06-01 20:15:41 ----A---- C:\WINDOWS\system32\mshearts.exe 2010-06-01 20:15:41 ----A---- C:\WINDOWS\system32\calc.exe 2010-06-01 20:15:40 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2010-06-01 20:15:40 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2010-06-01 20:15:40 ----A---- C:\WINDOWS\system32\tslabels.ini 2010-06-01 20:15:40 ----A---- C:\WINDOWS\system32\tskill.exe 2010-06-01 20:15:40 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2010-06-01 20:15:40 ----A---- C:\WINDOWS\system32\tscon.exe 2010-06-01 20:15:40 ----A---- C:\WINDOWS\system32\reset.exe 2010-06-01 20:15:40 ----A---- C:\WINDOWS\system32\freecell.exe 2010-06-01 20:15:39 ----A---- C:\WINDOWS\system32\shadow.exe 2010-06-01 20:15:39 ----A---- C:\WINDOWS\system32\rwinsta.exe 2010-06-01 20:15:39 ----A---- C:\WINDOWS\system32\regini.exe 2010-06-01 20:15:39 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2010-06-01 20:15:39 ----A---- C:\WINDOWS\system32\qwinsta.exe 2010-06-01 20:15:39 ----A---- C:\WINDOWS\system32\qappsrv.exe 2010-06-01 20:15:17 ----A---- C:\WINDOWS\system32\msg.exe 2010-06-01 20:15:17 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2010-06-01 20:15:17 ----A---- C:\WINDOWS\system32\logoff.exe 2010-06-01 20:15:17 ----A---- C:\WINDOWS\system32\cdmodem.dll 2010-06-01 20:14:35 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2010-06-01 20:13:50 ----A---- C:\WINDOWS\system32\sndrec32.exe 2010-06-01 20:13:50 ----A---- C:\WINDOWS\system32\accwiz.exe 2010-06-01 20:13:42 ----A---- C:\WINDOWS\system32\mplay32.exe 2010-06-01 20:13:42 ----A---- C:\WINDOWS\system32\hypertrm.dll 2010-06-01 20:13:41 ----A---- C:\WINDOWS\system32\spider.exe 2010-06-01 20:13:41 ----A---- C:\WINDOWS\system32\mspaint.exe 2010-06-01 20:13:41 ----A---- C:\WINDOWS\system32\clipbrd.exe 2010-06-01 20:13:40 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2010-06-01 20:13:40 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys 2010-06-01 20:13:40 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys 2010-06-01 20:13:40 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys 2010-06-01 20:13:39 ----A---- C:\WINDOWS\system32\tsgqec.dll 2010-06-01 20:13:39 ----A---- C:\WINDOWS\system32\rhttpaa.dll 2010-06-01 20:13:39 ----A---- C:\WINDOWS\system32\aaclient.dll 2010-06-01 20:13:38 ----A---- C:\WINDOWS\system32\remotepg.dll 2010-06-01 20:13:38 ----A---- C:\WINDOWS\system32\rdshost.exe 2010-06-01 20:13:38 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2010-06-01 20:13:38 ----A---- C:\WINDOWS\system32\mstscax.dll 2010-06-01 20:13:38 ----A---- C:\WINDOWS\system32\mstsc.exe 2010-06-01 20:13:37 ----A---- C:\WINDOWS\system32\termsrv.dll 2010-06-01 20:13:37 ----A---- C:\WINDOWS\system32\sessmgr.exe 2010-06-01 20:13:37 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2010-06-01 20:13:37 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2010-06-01 20:13:37 ----A---- C:\WINDOWS\system32\rdpclip.exe 2010-06-01 20:13:37 ----A---- C:\WINDOWS\system32\rdchost.dll 2010-06-01 20:13:37 ----A---- C:\WINDOWS\system32\qprocess.exe 2010-06-01 20:13:36 ----A---- C:\WINDOWS\system32\mtxoci.dll 2010-06-01 20:13:36 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2010-06-01 20:13:36 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2010-06-01 20:13:36 ----A---- C:\WINDOWS\system32\icaapi.dll 2010-06-01 20:13:36 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2010-06-01 20:13:35 ----A---- C:\WINDOWS\system32\xolehlp.dll 2010-06-01 20:13:35 ----A---- C:\WINDOWS\system32\msdtctm.dll 2010-06-01 20:13:35 ----A---- C:\WINDOWS\system32\msdtclog.dll 2010-06-01 20:13:35 ----A---- C:\WINDOWS\system32\msdtc.exe 2010-06-01 20:13:34 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2010-06-01 20:13:34 ----A---- C:\WINDOWS\system32\mtxex.dll 2010-06-01 20:13:34 ----A---- C:\WINDOWS\system32\mtxdm.dll 2010-06-01 20:13:34 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2010-06-01 20:13:34 ----A---- C:\WINDOWS\system32\colbact.dll 2010-06-01 20:13:33 ----A---- C:\WINDOWS\system32\comrepl.dll 2010-06-01 20:13:33 ----A---- C:\WINDOWS\system32\comaddin.dll 2010-06-01 20:13:26 ----A---- C:\WINDOWS\system32\stclient.dll 2010-06-01 20:13:26 ----A---- C:\WINDOWS\system32\clbcatex.dll 2010-06-01 20:13:26 ----A---- C:\WINDOWS\system32\catsrvps.dll 2010-06-01 20:13:25 ----A---- C:\WINDOWS\system32\comuid.dll 2010-06-01 20:13:25 ----A---- C:\WINDOWS\system32\comsvcs.dll 2010-06-01 20:13:25 ----A---- C:\WINDOWS\system32\catsrvut.dll 2010-06-01 20:13:25 ----A---- C:\WINDOWS\system32\catsrv.dll 2010-06-01 20:13:24 ----A---- C:\WINDOWS\system32\comsnap.dll 2010-06-01 20:13:24 ----A---- C:\WINDOWS\system32\clbcatq.dll 2010-06-01 20:13:09 ----A---- C:\WINDOWS\system32\servdeps.dll 2010-06-01 20:13:02 ----A---- C:\WINDOWS\system32\mmfutil.dll 2010-06-01 20:13:02 ----A---- C:\WINDOWS\system32\licwmi.dll 2010-06-01 20:13:02 ----A---- C:\WINDOWS\system32\cmprops.dll 2010-06-01 20:12:54 ----A---- C:\WINDOWS\system32\drivers\termdd.sys 2010-06-01 20:12:53 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys 2010-06-01 19:37:25 ----D---- C:\WINDOWS\setup.pss 2010-03-29 22:53:37 ----D---- C:\a4758cf92980bd8b5e2861ed41 2010-03-29 22:51:37 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$ 2010-03-29 22:51:28 ----HDC---- C:\WINDOWS\$NtUninstallKB969878_WM9L$ 2010-03-29 22:51:18 ----HDC---- C:\WINDOWS\$NtUninstallKB976098-v2$ 2010-03-29 22:51:04 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$ 2010-03-29 22:50:02 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$ 2010-03-29 22:46:12 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$ 2010-03-29 22:45:58 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$ 2010-03-29 22:45:46 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$ 2010-03-29 22:44:46 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$ 2010-03-29 22:42:15 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$ 2010-03-29 22:42:04 ----HDC---- C:\WINDOWS\$NtUninstallKB973525$ 2010-03-29 22:40:34 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$ 2010-03-29 22:40:23 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$ 2010-03-29 22:40:08 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$ 2010-03-05 10:13:40 ----A---- C:\WINDOWS\system32\msjava.dll 2009-12-03 00:14:40 ----D---- C:\Program Files\Convar 2009-11-05 22:17:22 ----A---- C:\WINDOWS\system32\mscoree.dll 2009-09-10 03:04:48 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$ 2009-09-10 03:04:37 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$ 2009-09-09 22:14:28 ----D---- C:\Program Files\iPod 2009-09-09 22:14:06 ----D---- C:\Program Files\iTunes 2009-09-09 22:10:42 ----D---- C:\Program Files\QuickTime 2009-09-09 22:09:37 ----SHD---- C:\Config.Msi 2009-09-04 13:05:13 ----D---- C:\Program Files\JRE 2009-09-04 13:04:31 ----D---- C:\Program Files\OpenOffice.org 3 2009-08-27 03:01:00 ----HDC---- C:\WINDOWS\$NtUninstallKB970653-v3$ 2009-08-26 03:01:35 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$ 2009-08-24 23:17:20 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$ 2009-08-24 23:17:11 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$ 2009-08-24 23:17:01 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$ 2009-08-24 23:16:42 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$ 2009-08-24 23:09:13 ----D---- C:\WINDOWS\system32\XPSViewer 2009-08-24 23:09:03 ----D---- C:\WINDOWS\system32\en-US 2009-08-24 23:08:51 ----D---- C:\Program Files\Reference Assemblies 2009-08-24 23:07:43 ----D---- C:\WINDOWS\SxsCaPendDel 2009-08-24 23:01:49 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$ 2009-08-24 23:00:37 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$ 2009-08-24 23:00:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$ 2009-08-24 22:59:19 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$ 2009-08-24 22:55:49 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$ 2009-08-17 23:33:52 ----A---- C:\WINDOWS\system32\FM20.DLL 2009-07-28 22:40:14 ----D---- C:\Program Files\PhotomatixPro3 2009-07-28 22:39:55 ----D---- C:\Program Files\Photomatix 2009-07-21 00:05:40 ----A---- C:\WINDOWS\system32\msxml4.dll 2009-07-15 23:23:02 ----HDC---- C:\WINDOWS\$NtUninstallKB973346$ 2009-07-15 23:22:55 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$ 2009-07-15 23:18:41 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$ 2009-07-08 07:54:18 ----ASH---- C:\hiberfil.sys 2009-07-08 07:49:06 ----A---- C:\TB.txt 2009-07-07 22:39:38 ----D---- C:\ToolBar SD 2009-07-06 23:10:01 ----RASHD---- C:\autorun.inf 2009-07-06 23:10:00 ----A---- C:\UsbFix.txt 2009-07-06 22:46:59 ----A---- C:\FindyKill.txt 2009-07-06 22:40:30 ----D---- C:\FindyKill 2009-07-06 20:52:54 ----D---- C:\rsit 2009-06-30 21:30:14 ----A---- C:\trace.txt 2009-06-29 20:23:06 ----D---- C:\Program Files\HHD Software 2009-06-12 03:09:11 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$ 2009-06-12 03:08:59 ----HDC---- C:\WINDOWS\$NtUninstallKB969898$ 2009-06-12 03:03:49 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$ 2009-06-12 03:03:30 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$ 2009-06-07 00:10:41 ----D---- C:\Program Files\TVUPlayer 2009-06-01 17:06:50 ----D---- C:\Program Files\Avira 2009-05-28 23:28:33 ----D---- C:\Program Files\TVAnts 2009-05-28 23:21:45 ----D---- C:\ppmaterecord 2009-05-28 23:16:33 ----D---- C:\Program Files\PPMate 2009-05-27 20:39:03 ----D---- C:\Program Files\Simplify Media 2009-05-25 08:10:42 ----D---- C:\WINDOWS\ie8updates 2009-05-25 08:05:47 ----D---- C:\WINDOWS\WBEM 2009-05-25 07:59:32 ----HDC---- C:\WINDOWS\ie8 2009-05-24 22:45:09 ----D---- C:\WINSSLog 2009-05-24 20:09:12 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2009-05-19 03:01:25 ----HDC---- C:\WINDOWS\$NtUninstallKB961503$ 2009-05-17 19:09:08 ----D---- C:\Program Files\Skyhook Wireless 2009-04-17 23:21:42 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$ 2009-04-17 23:21:35 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$ 2009-04-17 23:18:52 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$ 2009-04-17 23:18:25 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$ 2009-04-17 23:16:47 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$ 2009-04-17 23:16:34 ----HDC---- C:\WINDOWS\$NtUninstallKB963027$ 2009-04-17 23:16:12 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$ 2009-04-13 22:11:56 ----D---- C:\Program Files\pdfforge Toolbar 2009-04-13 22:05:50 ----D---- C:\Program Files\PDFCreator 2009-03-12 00:27:05 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$ 2009-03-12 00:27:00 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$ 2009-03-12 00:26:54 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$ 2009-03-12 00:26:04 ----HDC---- C:\WINDOWS\$NtUninstallKB959772_WM11$ 2009-03-08 14:22:46 ----N---- C:\WINDOWS\system32\ieframe.dll.mui 2009-03-08 14:22:30 ----N---- C:\WINDOWS\system32\msrating.dll.mui 2009-03-08 14:22:18 ----N---- C:\WINDOWS\system32\mshta.exe.mui 2009-03-08 14:21:06 ----N---- C:\WINDOWS\system32\ie4uinit.exe.mui 2009-03-08 14:20:54 ----N---- C:\WINDOWS\system32\iedkcs32.dll.mui 2009-02-25 04:01:08 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$ 2009-02-16 23:48:56 ----A---- C:\kmaindump.txt 2009-02-16 23:48:48 ----D---- C:\Program Files\eXchange POP3 6.0 2009-02-12 04:01:36 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$ 2009-01-16 22:15:40 ----D---- C:\WINDOWS\Samsung 2009-01-15 04:04:37 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$ 2009-01-11 18:10:20 ----D---- C:\Program Files\EGoGameS 2009-01-10 12:06:57 ----D---- C:\Program Files\NutsAboutNets 2009-01-09 08:42:35 ----D---- C:\Program Files\iGnuteel 2009-01-07 18:20:18 ----A---- C:\WINDOWS\system32\msdbg2.dll 2008-12-20 14:39:14 ----D---- C:\Program Files\Microsoft Office Outlook Connector 2008-12-20 14:36:42 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition 2008-12-20 14:34:50 ----D---- C:\Program Files\Microsoft 2008-12-20 14:34:08 ----D---- C:\Program Files\Windows Live SkyDrive 2008-12-19 04:01:14 ----HDC---- C:\WINDOWS\$NtUninstallKB960714$ 2008-12-11 22:30:06 ----HDC---- C:\WINDOWS\$NtUninstallWudf01005$ 2008-12-11 22:23:06 ----D---- C:\Program Files\PC Connectivity Solution 2008-12-11 22:22:51 ----D---- C:\Program Files\Nokia 2008-12-11 22:08:04 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$ 2008-12-11 22:07:40 ----HDC---- C:\WINDOWS\$NtUninstallKB958215$ 2008-12-11 22:03:08 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$ 2008-12-11 22:02:01 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$ 2008-12-11 22:01:43 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$ 2008-11-30 14:24:53 ----D---- C:\Program Files\Free iPod Video Converter 2008-11-30 13:59:11 ----D---- C:\OpenCandy 2008-11-21 00:02:14 ----D---- C:\Program Files\Guitar Pro 5 2008-11-13 04:02:25 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$ 2008-11-13 04:02:17 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$ 2008-11-13 04:01:59 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$ 2008-10-24 03:01:05 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$ 2008-10-16 03:06:10 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$ 2008-10-16 03:06:04 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$ 2008-10-16 03:05:57 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$ 2008-10-16 03:05:50 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$ 2008-10-16 03:05:38 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$ 2008-10-16 03:02:37 ----HDC---- C:\WINDOWS\$NtUninstallKB956390$ 2008-10-12 22:20:04 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$ 2008-10-12 15:31:38 ----D---- C:\WINDOWS\Prefetch 2008-10-12 15:26:03 ----HDC---- C:\WINDOWS\$NtUninstallKB953838$ 2008-10-12 15:25:54 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$ 2008-10-12 15:25:47 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$ 2008-10-12 15:25:38 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$ 2008-10-12 15:25:30 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$ 2008-10-12 15:25:24 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$ 2008-10-12 15:25:17 ----HDC---- C:\WINDOWS\$NtUninstallKB951376$ 2008-10-12 15:25:08 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$ 2008-10-12 15:25:02 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$ 2008-10-12 15:24:55 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$ 2008-10-12 15:24:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950759$ 2008-10-12 15:24:39 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$ 2008-10-12 15:24:32 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$ 2008-10-12 15:20:08 ----D---- C:\WINDOWS\system32\fr-fr 2008-10-12 15:20:07 ----D---- C:\WINDOWS\system32\fr 2008-10-12 15:20:07 ----D---- C:\WINDOWS\l2schemas 2008-10-12 15:20:06 ----D---- C:\WINDOWS\system32\bits 2008-10-12 15:16:19 ----D---- C:\WINDOWS\ServicePackFiles 2008-10-12 15:12:20 ----D---- C:\WINDOWS\network diagnostic 2008-10-12 15:05:49 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$ 2008-10-12 15:05:47 ----D---- C:\WINDOWS\EHome 2008-10-07 23:28:16 ----D---- C:\Program Files\HomePlayer 2008-10-06 20:24:42 ----D---- C:\Program Files\WinZip 2008-09-27 14:35:20 ----HDC---- C:\WINDOWS\$NtUninstallWdf01005$ 2008-09-27 14:33:35 ----D---- C:\Program Files\Logitech 2008-09-22 20:53:34 ----D---- C:\Program Files\Microsoft Silverlight 2008-09-11 23:50:29 ----HDC---- C:\WINDOWS\$NtUninstallKB938464_0$ 2008-09-11 23:49:47 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$ 2008-09-03 10:36:41 ----A---- C:\WINDOWS\system32\basecsp.dll 2008-08-27 23:09:00 ----D---- C:\Program Files\Messenger Plus! Live 2008-08-20 19:35:36 ----A---- C:\YServer.txt 2008-08-19 03:06:31 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$ 2008-08-19 03:06:25 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$ 2008-08-19 03:06:18 ----HDC---- C:\WINDOWS\$NtUninstallKB953839$ 2008-08-19 03:05:49 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$ 2008-08-19 03:03:18 ----HDC---- C:\WINDOWS\$NtUninstallKB951072-v2$ 2008-08-19 03:03:09 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$ 2008-08-19 03:03:02 ----HDC---- C:\WINDOWS\$NtUninstallKB951066_0$ 2008-08-19 03:02:36 ----HDC---- C:\WINDOWS\$NtUninstallKB953838_0$ 2008-08-16 14:09:23 ----A---- C:\WINDOWS\system32\wups2.dll 2008-08-16 14:09:23 ----A---- C:\WINDOWS\system32\cdm.dll 2008-08-16 14:09:22 ----A---- C:\WINDOWS\system32\wucltui.dll.mui 2008-08-16 14:09:19 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui 2008-08-16 14:09:17 ----A---- C:\WINDOWS\system32\wuapi.dll.mui 2008-08-13 18:16:11 ----D---- C:\Program Files\PanoramaStudio 2008-08-13 15:55:16 ----D---- C:\Program Files\Canon 2008-08-13 13:56:24 ----D---- C:\WCamInst 2008-08-11 21:10:32 ----A---- C:\WINDOWS\system32\LegitCheckControl.dll 2008-08-06 20:13:04 ----A---- C:\WINDOWS\system32\tapisrv.dll 2008-08-05 11:11:02 ----A---- C:\WINDOWS\system32\MRT.exe 2008-07-31 10:41:54 ----A---- C:\WINDOWS\system32\xactengine3_2.dll 2008-07-31 10:41:52 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll 2008-07-31 10:40:32 ----A---- C:\WINDOWS\system32\XAudio2_2.dll 2008-07-30 14:09:57 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys 2008-07-28 15:41:07 ----A---- C:\WINDOWS\system32\mswsock.dll 2008-07-28 15:41:07 ----A---- C:\WINDOWS\system32\dnsapi.dll 2008-07-28 13:53:36 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys 2008-07-28 13:44:47 ----A---- C:\WINDOWS\system32\drivers\afd.sys 2008-07-28 12:35:42 ----A---- C:\WINDOWS\system32\drivers\tcpip6.sys 2008-07-27 04:21:00 ----D---- C:\Program Files\Accords 2008-07-25 14:51:23 ----A---- C:\WINDOWS\system32\ole32.dll 2008-07-24 20:17:38 ----D---- C:\Program Files\ALO Power Audio Converter 2008-07-24 20:12:31 ----D---- C:\Program Files\MIKSOFT 2008-07-18 22:07:54 ----A---- C:\WINDOWS\system32\muweb.dll 2008-07-17 18:23:20 ----A---- C:\WINDOWS\system32\psbase.dll 2008-07-12 08:18:52 ----A---- C:\WINDOWS\system32\D3DX9_39.dll 2008-07-12 08:18:52 ----A---- C:\WINDOWS\system32\d3dx10_39.dll 2008-07-12 08:18:52 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll 2008-07-11 14:51:51 ----A---- C:\WINDOWS\system32\tzchange.exe 2008-07-11 10:55:41 ----A---- C:\WINDOWS\system32\windowscodecsext.dll 2008-07-11 10:55:41 ----A---- C:\WINDOWS\system32\windowscodecs.dll 2008-07-11 00:02:56 ----D---- C:\Program Files\Safari 2008-07-09 03:01:04 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$ 2008-07-07 22:23:18 ----A---- C:\WINDOWS\system32\es.dll 2008-07-04 20:31:34 ----A---- C:\WINDOWS\system32\w32time.dll 2008-07-04 05:18:16 ----A---- C:\WINDOWS\system32\pintool.exe 2008-07-04 05:18:16 ----A---- C:\WINDOWS\system32\axaltocm.dll 2008-07-04 05:18:15 ----A---- C:\WINDOWS\system32\ifxcardm.dll 2008-07-04 05:18:15 ----A---- C:\WINDOWS\system32\bcsprsrc.dll 2008-07-03 13:38:24 ----A---- C:\WINDOWS\explorer.exe 2008-07-03 08:07:40 ----D---- C:\TYPSoft FTP Server 2008-06-28 01:52:28 ----D---- C:\Program Files\WMV9_VCM 2008-06-25 19:19:00 ----A---- C:\WINDOWS\system32\wscript.exe 2008-06-25 19:19:00 ----A---- C:\WINDOWS\system32\vbscript.dll 2008-06-25 19:18:58 ----A---- C:\WINDOWS\system32\wshext.dll 2008-06-25 19:18:58 ----A---- C:\WINDOWS\system32\scrrun.dll 2008-06-25 19:18:58 ----A---- C:\WINDOWS\system32\scrobj.dll 2008-06-25 19:18:58 ----A---- C:\WINDOWS\system32\jscript.dll 2008-06-25 19:18:58 ----A---- C:\WINDOWS\system32\cscript.exe 2008-06-25 10:21:42 ----A---- C:\WINDOWS\system32\msrd2x40.dll 2008-06-25 07:19:07 ----D---- C:\Program Files\mp3DirectCut 2008-06-25 06:51:32 ----A---- C:\WINDOWS\system32\msjet40.dll 2008-06-25 06:51:28 ----A---- C:\WINDOWS\system32\msexcl40.dll 2008-06-24 18:53:10 ----A---- C:\WINDOWS\system32\mscms.dll 2008-06-24 18:37:19 ----A---- C:\WINDOWS\system32\MSCTF.dll 2008-06-23 18:01:51 ----A---- C:\WINDOWS\system32\wininet.dll 2008-06-23 18:01:51 ----A---- C:\WINDOWS\system32\webcheck.dll 2008-06-23 18:01:51 ----A---- C:\WINDOWS\system32\urlmon.dll 2008-06-23 18:01:50 ----N---- C:\WINDOWS\system32\occache.dll 2008-06-23 18:01:50 ----N---- C:\WINDOWS\system32\mstime.dll 2008-06-23 18:01:50 ----A---- C:\WINDOWS\system32\url.dll 2008-06-23 18:01:50 ----A---- C:\WINDOWS\system32\pngfilt.dll 2008-06-23 18:01:49 ----A---- C:\WINDOWS\system32\msrating.dll 2008-06-23 18:01:49 ----A---- C:\WINDOWS\system32\mshtmled.dll 2008-06-23 18:01:49 ----A---- C:\WINDOWS\system32\mshtml.dll 2008-06-23 18:01:46 ----N---- C:\WINDOWS\system32\jsproxy.dll 2008-06-23 18:01:46 ----A---- C:\WINDOWS\system32\msfeedsbs.dll 2008-06-23 18:01:46 ----A---- C:\WINDOWS\system32\msfeeds.dll 2008-06-23 18:01:44 ----A---- C:\WINDOWS\system32\iertutil.dll 2008-06-23 18:01:43 ----A---- C:\WINDOWS\system32\iernonce.dll 2008-06-23 18:01:43 ----A---- C:\WINDOWS\system32\ieframe.dll 2008-06-23 18:01:40 ----N---- C:\WINDOWS\system32\iedkcs32.dll 2008-06-23 18:01:40 ----A---- C:\WINDOWS\system32\ieapfltr.dll 2008-06-23 18:01:39 ----A---- C:\WINDOWS\system32\ieaksie.dll 2008-06-23 18:01:39 ----A---- C:\WINDOWS\system32\ieakeng.dll 2008-06-23 18:01:39 ----A---- C:\WINDOWS\system32\icardie.dll 2008-06-23 18:01:39 ----A---- C:\WINDOWS\system32\extmgr.dll 2008-06-23 18:01:39 ----A---- C:\WINDOWS\system32\dxtrans.dll 2008-06-23 18:01:38 ----A---- C:\WINDOWS\system32\dxtmsft.dll 2008-06-23 18:01:38 ----A---- C:\WINDOWS\system32\advpack.dll 2008-06-23 10:23:18 ----N---- C:\WINDOWS\system32\ie4uinit.exe 2008-06-23 10:23:18 ----A---- C:\WINDOWS\system32\ieudinit.exe 2008-06-22 16:14:40 ----A---- C:\WINDOWS\system32\qfecheck.exe 2008-06-21 07:23:53 ----A---- C:\WINDOWS\system32\ieakui.dll 2008-06-21 03:01:29 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$ 2008-06-19 14:05:28 ----A---- C:\WINDOWS\system32\drivers\ohci1394.sys 2008-06-17 21:04:34 ----A---- C:\WINDOWS\system32\shell32.dll 2008-06-16 22:15:00 ----D---- C:\Program Files\Autodesk 2008-06-16 19:20:33 ----D---- C:\Program Files\DIFX 2008-06-16 16:15:01 ----A---- C:\WINDOWS\system32\wzcdlg.dll 2008-06-13 13:27:44 ----A---- C:\WINDOWS\system32\drivers\bthport.sys 2008-06-13 13:03:52 ----A---- C:\WINDOWS\system32\osk.exe 2008-06-13 08:13:39 ----D---- C:\Program Files\FileZilla FTP Client 2008-06-12 19:55:50 ----D---- C:\Program Files\BulletProof FTP Server v2.3 2008-06-12 13:21:36 ----A---- C:\WINDOWS\system32\cic.dll 2008-06-12 09:51:35 ----A---- C:\WINDOWS\system32\mmcshext.dll 2008-06-12 09:51:35 ----A---- C:\WINDOWS\system32\mmcndmgr.dll 2008-06-12 09:51:35 ----A---- C:\WINDOWS\system32\mmcbase.dll 2008-06-11 10:58:05 ----HDC---- C:\WINDOWS\$NtUninstallKB951698_0$ 2008-06-11 10:57:59 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$ 2008-06-11 10:57:39 ----HDC---- C:\WINDOWS\$NtUninstallKB950759_0$ 2008-06-11 10:57:32 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$ 2008-06-11 10:57:24 ----HDC---- C:\WINDOWS\$NtUninstallKB951376_0$ 2008-06-10 10:31:56 ----A---- C:\WINDOWS\system32\mmcperf.exe 2008-06-05 15:53:44 ----A---- C:\WINDOWS\system32\D3DX9_38.dll 2008-06-05 15:53:42 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll 2008-06-05 15:53:41 ----A---- C:\WINDOWS\system32\XAudio2_1.dll 2008-06-05 15:53:41 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll 2008-06-05 15:53:41 ----A---- C:\WINDOWS\system32\xactengine3_1.dll 2008-06-05 15:53:41 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll 2008-06-05 15:53:40 ----A---- C:\WINDOWS\system32\d3dx10_38.dll 2008-06-05 15:50:59 ----A---- C:\WINDOWS\system32\kerberos.dll 2008-06-03 16:01:54 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll 2008-06-03 15:54:00 ----A---- C:\WINDOWS\system32\ulib.dll 2008-06-03 13:28:23 ----A---- C:\WINDOWS\system32\fc.exe 2008-05-31 12:30:52 ----HD---- C:\WINDOWS\PIF 2008-05-30 23:18:27 ----D---- C:\WINDOWS\NKCCDViewerSetting 2008-05-30 13:42:06 ----A---- C:\WINDOWS\system32\win32k.sys 2008-05-29 14:04:44 ----A---- C:\WINDOWS\system32\drivers\rspndr.sys 2008-05-29 14:04:42 ----A---- C:\WINDOWS\system32\rspndr.exe 2008-05-29 11:16:52 ----A---- C:\WINDOWS\system32\gpprefcl.dll 2008-05-28 09:13:34 ----A---- C:\WINDOWS\system32\photometadatahandler.dll 2008-05-27 21:02:18 ----D---- C:\Program Files\Microsoft Works 2008-05-27 21:01:58 ----D---- C:\Program Files\MSBuild 2008-05-27 21:01:13 ----D---- C:\Program Files\Microsoft Visual Studio 2008-05-27 20:59:52 ----D---- C:\Program Files\Microsoft.NET 2008-05-27 20:57:14 ----D---- C:\Program Files\Microsoft Visual Studio 8 2008-05-27 20:55:51 ----HD---- C:\WINDOWS\ShellNew 2008-05-27 20:54:51 ----D---- C:\Program Files\Microsoft Office 2008-05-27 20:53:59 ----RHD---- C:\MSOCache 2008-05-27 19:29:24 ----A---- C:\WINDOWS\system32\atmfd.dll 2008-05-26 19:27:44 ----A---- C:\WINDOWS\system32\win32spl.dll 2008-05-25 22:26:18 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$ 2008-05-25 22:26:01 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$ 2008-05-25 22:25:32 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP11$ 2008-05-24 19:43:21 ----HDC---- C:\WINDOWS\$NtUninstallKB926239$ 2008-05-24 19:42:38 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$ 2008-05-24 19:42:23 ----D---- C:\Program Files\Windows Media Connect 2 2008-05-24 19:42:09 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$ 2008-05-24 19:41:22 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$ 2008-05-24 19:40:55 ----D---- C:\WINDOWS\system32\LogFiles 2008-05-24 19:40:55 ----D---- C:\WINDOWS\system32\drivers\UMDF 2008-05-24 19:40:48 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$ 2008-05-24 16:24:10 ----D---- C:\Program Files\eMule 2008-05-22 22:23:24 ----D---- C:\WINDOWS\Sun 2008-05-22 20:40:49 ----D---- C:\Program Files\PowerISO 2008-05-22 20:37:59 ----D---- C:\Program Files\DAEMON Tools Lite 2008-05-20 23:31:08 ----D---- C:\Program Files\AviSynth 2.5 2008-05-20 23:31:03 ----D---- C:\Program Files\Red Kawa 2008-05-20 07:55:59 ----D---- C:\WINDOWS\pss 2008-05-20 07:52:36 ----A---- C:\TCleaner.txt 2008-05-19 20:32:25 ----D---- C:\Program Files\VideoLAN 2008-05-19 19:32:08 ----SHD---- C:\RECYCLER 2008-05-19 06:33:20 ----A---- C:\WINDOWS\system32\msisip.dll 2008-05-19 06:33:20 ----A---- C:\WINDOWS\system32\msihnd.dll 2008-05-19 06:33:20 ----A---- C:\WINDOWS\system32\msi.dll 2008-05-19 01:57:42 ----A---- C:\WINDOWS\system32\msiexec.exe 2008-05-18 22:07:28 ----D---- C:\WINDOWS\TEMP 2008-05-18 22:05:53 ----D---- C:\WINDOWS\erdnt 2008-05-18 12:23:18 ----D---- C:\Program Files\Sun 2008-05-17 18:45:46 ----D---- C:\WINDOWS\ERUNT 2008-05-17 18:43:03 ----A---- C:\rapport.txt 2008-05-17 18:15:40 ----D---- C:\Program Files\Trend Micro 2008-05-17 18:00:49 ----D---- C:\Program Files\RegCleaner 2008-05-17 17:54:08 ----D---- C:\Program Files\Yahoo! 2008-05-17 17:53:43 ----D---- C:\Program Files\CCleaner 2008-05-17 17:33:38 ----D---- C:\Temp 2008-05-17 16:38:22 ----HD---- C:\WINDOWS\$NtUninstallKB927891$ 2008-05-17 16:38:16 ----HD---- C:\WINDOWS\$NtUninstallKB918118$ 2008-05-17 16:38:10 ----HD---- C:\WINDOWS\$NtUninstallKB901190$ 2008-05-17 16:18:55 ----HD---- C:\$AVG8.VAULT$ 2008-05-17 14:29:11 ----D---- C:\Program Files\Java 2008-05-17 14:27:25 ----D---- C:\Program Files\Azureus 2008-05-17 14:11:13 ----D---- C:\Program Files\Bonjour 2008-05-17 14:10:26 ----D---- C:\Program Files\Apple Software Update 2008-05-17 13:49:54 ----SHD---- C:\WINDOWS\ftpcache 2008-05-17 13:04:17 ----D---- C:\Program Files\Picasa2 2008-05-17 13:03:48 ----DC---- C:\WINDOWS\system32\DRVSTORE 2008-05-17 13:03:25 ----D---- C:\Program Files\Google 2008-05-17 12:59:06 ----D---- C:\Program Files\Windows Live 2008-05-17 12:57:39 ----D---- C:\Program Files\Memeo 2008-05-17 12:54:22 ----D---- C:\Program Files\Western Digital 2008-05-17 12:53:43 ----RSD---- C:\WINDOWS\assembly 2008-05-17 12:53:12 ----D---- C:\WINDOWS\Microsoft.NET 2008-05-16 21:46:37 ----HD---- C:\WINDOWS\$NtUninstallKB899587$ 2008-05-16 21:46:32 ----HD---- C:\WINDOWS\$NtUninstallKB927779$ 2008-05-16 21:46:27 ----HD---- C:\WINDOWS\$NtUninstallKB927802$ 2008-05-16 21:46:19 ----HD---- C:\WINDOWS\$NtUninstallKB943460$ 2008-05-16 21:46:13 ----HD---- C:\WINDOWS\$NtUninstallKB922819$ 2008-05-16 21:46:09 ----HD---- C:\WINDOWS\$NtUninstallKB885835$ 2008-05-16 21:46:04 ----HD---- C:\WINDOWS\$NtUninstallKB885836$ 2008-05-16 21:46:00 ----HD---- C:\WINDOWS\$NtUninstallKB923414$ 2008-05-16 21:45:56 ----HD---- C:\WINDOWS\$NtUninstallKB948881$ 2008-05-16 21:45:47 ----HD---- C:\WINDOWS\$NtUninstallKB928255$ 2008-05-16 21:45:39 ----HD---- C:\WINDOWS\$NtUninstallKB931784$ 2008-05-16 21:45:32 ----HD---- C:\WINDOWS\$NtUninstallKB911927$ 2008-05-16 21:45:28 ----HD---- C:\WINDOWS\$NtUninstallKB901017$ 2008-05-16 21:45:23 ----HD---- C:\WINDOWS\$NtUninstallKB899591$ 2008-05-16 21:45:18 ----HD---- C:\WINDOWS\$NtUninstallKB933729$ 2008-05-16 21:45:13 ----HD---- C:\WINDOWS\$NtUninstallKB920685$ 2008-05-16 21:45:08 ----HD---- C:\WINDOWS\$NtUninstallKB893756$ 2008-05-16 21:45:04 ----HD---- C:\WINDOWS\$NtUninstallKB923980$ 2008-05-16 21:45:00 ----HD---- C:\WINDOWS\$NtUninstallKB911280$ 2008-05-16 21:44:55 ----HD---- C:\WINDOWS\$NtUninstallKB936021$ 2008-05-16 21:44:50 ----HD---- C:\WINDOWS\$NtUninstallKB911562$ 2008-05-16 21:44:45 ----HD---- C:\WINDOWS\$NtUninstallKB938828$ 2008-05-16 21:44:39 ----HD---- C:\WINDOWS\$NtUninstallKB924667$ 2008-05-16 21:44:34 ----HD---- C:\WINDOWS\$NtUninstallKB896423$ 2008-05-16 21:44:30 ----HD---- C:\WINDOWS\$NtUninstallKB900485$ 2008-05-16 21:44:24 ----HD---- C:\WINDOWS\$NtUninstallKB924270$ 2008-05-16 21:44:19 ----HD---- C:\WINDOWS\$NtUninstallKB931261$ 2008-05-16 21:44:13 ----HD---- C:\WINDOWS\$NtUninstallKB936782_WMP9$ 2008-05-16 21:43:59 ----HD---- C:\WINDOWS\$NtUninstallKB873339$ 2008-05-16 21:43:54 ----HD---- C:\WINDOWS\$NtUninstallKB924496$ 2008-05-16 21:43:50 ----HD---- C:\WINDOWS\$NtUninstallKB941644$ 2008-05-16 21:43:36 ----HD---- C:\WINDOWS\$NtUninstallKB947864$ 2008-05-16 21:43:26 ----HD---- C:\WINDOWS\$NtUninstallKB936357$ 2008-05-16 21:43:22 ----HD---- C:\WINDOWS\$NtUninstallKB941693$ 2008-05-16 21:43:17 ----HD---- C:\WINDOWS\$NtUninstallKB887472$ 2008-05-16 21:43:13 ----HD---- C:\WINDOWS\$NtUninstallKB946026$ 2008-05-16 21:43:09 ----HD---- C:\WINDOWS\$NtUninstallKB896358$ 2008-05-16 21:43:04 ----HD---- C:\WINDOWS\$NtUninstallKB925398_WMP64$ 2008-05-16 21:42:49 ----HD---- C:\WINDOWS\$NtUninstallKB910437$ 2008-05-16 21:42:44 ----HD---- C:\WINDOWS\$NtUninstallKB911564$ 2008-05-16 21:42:30 ----HD---- C:\WINDOWS\$NtUninstallKB925902$ 2008-05-16 21:42:23 ----HD---- C:\WINDOWS\$NtUninstallKB929123$ 2008-05-16 21:42:19 ----HD---- C:\WINDOWS\$NtUninstallKB920670$ 2008-05-16 21:42:15 ----HD---- C:\WINDOWS\$NtUninstallKB891781$ 2008-05-16 21:42:11 ----HD---- C:\WINDOWS\$NtUninstallKB918439$ 2008-05-16 21:42:00 ----HD---- C:\WINDOWS\$NtUninstallKB902400$ 2008-05-16 21:41:52 ----HD---- C:\WINDOWS\$NtUninstallKB890046$ 2008-05-16 21:41:48 ----HD---- C:\WINDOWS\$NtUninstallKB926436$ 2008-05-16 21:41:44 ----HD---- C:\WINDOWS\$NtUninstallKB920872$ 2008-05-16 21:41:39 ----HD---- C:\WINDOWS\$NtUninstallKB942763$ 2008-05-16 21:41:34 ----HD---- C:\WINDOWS\$NtUninstallKB930178$ 2008-05-16 21:41:30 ----HD---- C:\WINDOWS\$NtUninstallKB919007$ 2008-05-16 21:41:26 ----HD---- C:\WINDOWS\$NtUninstallKB914388$ 2008-05-16 21:41:21 ----HD---- C:\WINDOWS\$NtUninstallKB941569$ 2008-05-16 21:40:59 ----HD---- C:\WINDOWS\$NtUninstallKB905414$ 2008-05-16 21:40:55 ----HD---- C:\WINDOWS\$NtUninstallKB932168$ 2008-05-16 21:40:51 ----HD---- C:\WINDOWS\$NtUninstallKB901214$ 2008-05-16 21:40:46 ----HD---- C:\WINDOWS\$NtUninstallKB923191$ 2008-05-16 21:40:36 ----HD---- C:\WINDOWS\$NtUninstallKB922582$ 2008-05-16 21:40:22 ----HD---- C:\WINDOWS\$NtUninstallKB941202$ 2008-05-16 21:40:17 ----HD---- C:\WINDOWS\$NtUninstallKB926255$ 2008-05-16 21:40:13 ----HD---- C:\WINDOWS\$NtUninstallKB941568$ 2008-05-16 21:40:09 ----HD---- C:\WINDOWS\$NtUninstallKB888302$ 2008-05-16 21:40:05 ----HD---- C:\WINDOWS\$NtUninstallKB948590$ 2008-05-16 21:40:00 ----HD---- C:\WINDOWS\$NtUninstallKB900725$ 2008-05-16 21:39:53 ----HD---- C:\WINDOWS\$NtUninstallKB938127$ 2008-05-16 21:39:49 ----HD---- C:\WINDOWS\$NtUninstallKB944338$ 2008-05-16 21:39:44 ----HD---- C:\WINDOWS\$NtUninstallKB920213$ 2008-05-16 21:39:40 ----HD---- C:\WINDOWS\$NtUninstallKB935840$ 2008-05-16 21:39:35 ----HD---- C:\WINDOWS\$NtUninstallKB943485$ 2008-05-16 21:39:31 ----HD---- C:\WINDOWS\$NtUninstallKB945553$ 2008-05-16 21:39:27 ----HD---- C:\WINDOWS\$NtUninstallKB886185$ 2008-05-16 21:39:24 ----HD---- C:\WINDOWS\$NtUninstallKB916595$ 2008-05-16 21:39:20 ----HD---- C:\WINDOWS\$NtUninstallKB930916$ 2008-05-16 21:39:09 ----HD---- C:\WINDOWS\$NtUninstallKB950749$ 2008-05-16 21:38:57 ----HD---- C:\WINDOWS\$NtUninstallKB908531$ 2008-05-16 21:38:52 ----HD---- C:\WINDOWS\$NtUninstallKB905749$ 2008-05-16 21:38:46 ----HD---- C:\WINDOWS\$NtUninstallKB913580$ 2008-05-16 21:38:42 ----HD---- C:\WINDOWS\$NtUninstallKB896428$ 2008-05-16 21:38:39 ----D---- C:\Program Files\MSXML 4.0 2008-05-16 21:38:26 ----HD---- C:\WINDOWS\$NtUninstallKB935839$ 2008-05-16 21:38:22 ----HD---- C:\WINDOWS\$NtUninstallKB943055$ 2008-05-16 21:38:17 ----HD---- C:\WINDOWS\$NtUninstallKB894391$ 2008-05-16 21:38:12 ----HD---- C:\WINDOWS\$NtUninstallKB908519$ 2008-05-16 21:38:08 ----HD---- C:\WINDOWS\$NtUninstallKB920683$ 2008-05-16 21:38:05 ----HD---- C:\WINDOWS\$NtUninstallKB914389$ 2008-05-16 21:38:01 ----HD---- C:\WINDOWS\$NtUninstallKB944653$ 2008-05-16 21:37:54 ----HD---- C:\WINDOWS\$NtUninstallKB890859$ 2008-05-16 21:37:47 ----HD---- C:\WINDOWS\$NtUninstallKB928843$ 2008-05-16 21:32:56 ----D---- C:\WINDOWS\system32\NtmsData 2008-05-16 21:08:24 ----D---- C:\Program Files\NetDrive 2008-05-16 20:32:38 ----D---- C:\Program Files\No-IP 2008-05-16 20:27:19 ----D---- C:\Program Files\RocketDock 2008-05-16 20:08:31 ----D---- C:\Program Files\WinRAR 2008-05-16 19:51:40 ----HD---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$ 2008-05-16 19:51:15 ----D---- C:\WINDOWS\system32\PreInstall 2008-05-16 19:51:14 ----HD---- C:\WINDOWS\$NtUninstallKB898461$ 2008-05-16 19:51:14 ----HD---- C:\WINDOWS\$hf_mig$ 2008-05-16 07:59:34 ----D---- C:\Program Files\Mozilla Firefox 2008-05-16 07:55:43 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2008-05-16 07:40:13 ----D---- C:\Program Files\Western Digital Technologies 2008-05-15 22:42:09 ----D---- C:\WINDOWS\Downloaded Installations 2008-05-15 22:40:04 ----D---- C:\Program Files\acer 2008-05-15 22:39:43 ----D---- C:\Program Files\Launch Manager 2008-05-15 22:37:10 ----D---- C:\Program Files\WinPCap 2008-05-15 22:36:21 ----D---- C:\Acer 2008-05-15 22:35:34 ----D---- C:\Program Files\ATI Technologies 2008-05-15 17:39:22 ----A---- C:\WINDOWS\system32\localspl.dll 2008-05-15 17:28:14 ----A---- C:\WINDOWS\system32\setupapi.dll 2008-05-13 15:53:40 ----A---- C:\WINDOWS\system32\d3d9.dll 2008-05-08 15:58:18 ----A---- C:\WINDOWS\system32\drivers\RMCast.sys 2008-05-08 15:48:36 ----A---- C:\WINDOWS\system32\reg.exe 2008-05-08 08:32:25 ----A---- C:\WINDOWS\system32\mmcex.dll 2008-05-08 08:18:31 ----A---- C:\WINDOWS\system32\cscdll.dll 2008-05-07 13:12:10 ----A---- C:\WINDOWS\system32\drivers\disk.sys 2008-05-07 07:04:16 ----A---- C:\WINDOWS\system32\quartz.dll 2008-05-05 13:06:02 ----A---- C:\WINDOWS\system32\msv1_0.dll 2008-05-05 11:16:22 ----A---- C:\WINDOWS\system32\ntdll.dll 2008-05-03 14:04:23 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys 2008-05-03 13:57:06 ----A---- C:\WINDOWS\system32\w32tm.exe 2008-05-02 15:25:20 ----A---- C:\WINDOWS\system32\imapi2fs.dll 2008-05-02 15:25:20 ----A---- C:\WINDOWS\system32\imapi2.dll 2008-05-02 12:49:40 ----A---- C:\WINDOWS\system32\drivers\cdrom.sys 2008-04-28 16:07:46 ----A---- C:\WINDOWS\system32\ipnathlp.dll 2008-04-28 16:07:46 ----A---- C:\WINDOWS\system32\hnetcfg.dll 2008-04-28 16:05:24 ----A---- C:\WINDOWS\system32\wkssvc.dll 2008-04-28 13:58:36 ----A---- C:\WINDOWS\system32\drivers\mup.sys 2008-04-25 13:36:54 ----A---- C:\WINDOWS\system32\drivers\ndiswan.sys 2008-04-25 13:36:52 ----A---- C:\WINDOWS\system32\drivers\ndis.sys 2008-04-24 15:55:34 ----A---- C:\WINDOWS\system32\msgina.dll 2008-04-24 15:55:34 ----A---- C:\WINDOWS\system32\licdll.dll 2008-04-24 15:33:54 ----A---- C:\WINDOWS\system32\winlogon.exe 2008-04-24 13:11:32 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys 2008-04-24 09:06:32 ----A---- C:\WINDOWS\system32\WMNetmgr.dll 2008-04-23 17:44:00 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe 2008-04-23 17:40:33 ----A---- C:\WINDOWS\system32\crypt32.dll 2008-04-23 16:21:06 ----A---- C:\WINDOWS\system32\rastls.dll 2008-04-23 13:49:34 ----A---- C:\WINDOWS\system32\ntoskrnl.exe 2008-04-22 20:03:42 ----A---- C:\WINDOWS\system32\wzcsvc.dll 2008-04-22 19:00:18 ----A---- C:\WINDOWS\system32\winsrv.dll 2008-04-22 15:54:07 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys 2008-04-22 15:45:52 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys 2008-04-17 22:50:10 ----A---- C:\WINDOWS\system32\adsldp.dll 2008-04-17 06:50:12 ----A---- C:\WINDOWS\system32\ntdsapi.dll 2008-04-17 06:50:12 ----A---- C:\WINDOWS\system32\netlogon.dll 2008-04-17 06:50:12 ----A---- C:\WINDOWS\system32\lsasrv.dll 2008-04-17 06:50:10 ----A---- C:\WINDOWS\system32\gptext.dll 2008-04-17 06:50:10 ----A---- C:\WINDOWS\system32\dsuiext.dll 2008-04-17 06:50:10 ----A---- C:\WINDOWS\system32\adsmsext.dll 2008-04-17 01:43:24 ----A---- C:\WINDOWS\system32\msimsg.dll 2008-04-14 14:00:00 ----RASH---- C:\NTDETECT.COM 2008-04-14 14:00:00 ----R---- C:\WINDOWS\system32\rsop.msc 2008-04-14 14:00:00 ----R---- C:\WINDOWS\system32\perfmon.msc 2008-04-14 14:00:00 ----ASH---- C:\WINDOWS\fonts\desktop.ini 2008-04-14 14:00:00 ----A---- C:\WINDOWS\winhlp32.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\winhelp.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\win.ini 2008-04-14 14:00:00 ----A---- C:\WINDOWS\vmmreg32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\twunk_32.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\twunk_16.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\twain_32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\twain.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\zipfldr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\xpsp3res.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\xpsp2res.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\xpsp1res.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\xpob2res.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\xmlprovi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\xmlprov.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\xmllite.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\xenroll.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\xcopy.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\xactsrv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wupdmgr.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wtsapi32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wstdecod.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wsock32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wsnmp32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wshtcpip.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\WshRm.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wshnetbs.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wshisn.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wship6.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wshcon.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wshbth.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wshatm.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wsecedit.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wscsvc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wscntfy.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ws2help.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ws2_32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wpnpinst.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wpabaln.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wowexec.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wowdeb.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wow32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wmstream.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wmsdmoe.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wmpui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wmphoto.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wmpcore.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wmpcd.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wmiscmgr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wmiprop.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wmi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wmerrenu.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wlnotify.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wldap32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wlanapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winver.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wintrust.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winstrm.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winsta.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winspool.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winsock.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winshfhc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winscard.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winrnr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winntbbu.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winnls.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winmsd.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winmm.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winipsec.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winhttp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winhlp32.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winfax.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\winbrand.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\win87em.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\win.com 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wifeman.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wiavusd.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wiavideo.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wiashext.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wiaservc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wiascr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wiadss.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wiadefui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wiaacmgr.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wextract.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\webvw.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\webhits.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\webclnt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wdigest.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wavemsp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\watchdog.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\w3ssl.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\w32topl.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\vwipxspx.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\vwipxspx.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\vssvc.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\vssapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\vssadmin.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\vss_ps.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\vjoy.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\vga64k.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\vga256.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\vga.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\vfpodbc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\version.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\verifier.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\verifier.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\verclsid.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ver.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\vdmredir.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\vdmdbg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\vcdex.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\vbajet32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\uxtheme.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\utilman.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\utildll.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usp10.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\userinit.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\userenv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\user32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\user.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usbmon.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ureg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ups.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\upnpui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\upnphost.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\upnpcont.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\upnp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\untfs.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\unlodctr.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\uniplat.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\unimdmat.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\umpnpmgr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\umdmxfrm.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\umandlg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ufat.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\udhisapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\typeperf.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\typelib.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\txflog.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\twext.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tspkg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tsddd.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tsd32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tsappcmp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\trkwks.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tree.com 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\traffic.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tracert6.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tracert.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tracerpt.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tourstart.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\toolhelp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tlntsvrp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tlntsvr.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tlntsess.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tlntadmn.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\themeui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tftp.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\termmgr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\telnet.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tcpsvcs.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tcpmonui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tcpmon.ini 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tcpmon.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tcpmib.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tcmsetup.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\taskmgr.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\taskman.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tasklist.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\taskkill.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tapiui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tapiperf.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tapi32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tapi3.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\tapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\t2embed.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\systray.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\systeminfo.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\syssetup.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sysocmgr.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\syskey.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sysinv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sysedit.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\syncui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\synceng.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\syncapp.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sxs.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\swprv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\svcpack.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\svchost.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\subst.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\strmfilt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\strmdll.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\storage.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\stobject.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\stimon.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sti_ci.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sti.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ssdpsrv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ssdpapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\srvsvc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sqlwoa.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sqlwid.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sqlunirl.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sprestrt.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\spoolsv.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\spoolss.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\spnpinst.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\spiisupd.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sort.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\softpub.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\snmpsnap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\snmpapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\smss.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\smlogsvc.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\smlogcfg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\smbinst.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\slbrccsp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\slbiop.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\slbcsp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\slayerxp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\skeys.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\skdll.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sisbkup.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sigverif.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sigtab.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\shutdown.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\shsvcs.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\shscrap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\shrpubw.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\shmgrate.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\shmedia.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\shlwapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\shimgvw.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\shgina.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\shfolder.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\shellstyle.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\shell.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\shdocvw.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\shdoclc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\share.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sfmapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sfcfiles.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sfc_os.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sfc.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sfc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\setver.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\setupn.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\setupdll.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\setup.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sethc.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\serwvdrv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\services.msc 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\services.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\serialui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\senscfg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sensapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sens.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sendmail.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sendcmsg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\security.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\secur32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\secpol.msc 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\seclogon.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\secedit.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sdpblb.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sdhcinst.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sdbinst.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\scriptpw.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\scredir.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sclgntfy.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\schtasks.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\schannel.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\scesrv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\scecli.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sccsccp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sccbase.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\scardsvr.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\scardssp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\scarddlg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sc.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sbeio.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sbe.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\savedump.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\samsrv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\samlib.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\runonce.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rundll32.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\runas.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rtutils.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rtm.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rtipxmib.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rtcshare.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rsvpsp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rsvpperf.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rsvpmsg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rsvp.ini 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rsvp.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rsopprov.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rsnotify.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rsmui.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rsmsink.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rsmps.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rsm.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rshx32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rsh.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rsfsaps.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rsaenh.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rpcss.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rpcrt4.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rpcns4.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\routetab.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\routemon.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\route.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rnr20.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\riched32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\riched20.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rexec.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\resutils.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\replace.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rend.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\relog.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\regwizc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\regwiz.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\regsvr32.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\regsvc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\regedt32.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\regapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\redir.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\recover.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rdpdd.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rcp.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rcimlby.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rcbdyctl.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rastapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasser.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rassapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasrad.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasqec.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasppp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasphone.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasmxs.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasmontr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasmans.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasman.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasdlg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasdial.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasctrs.ini 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasctrs.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\raschap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasautou.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasauto.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasapi32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\rasadhlp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\qutil.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\query.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\qosname.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\qedwipes.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\qedit.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\qdvd.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\qdv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\qcliprov.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\qcap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\qagentrt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\qagent.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\pubprn.vbs 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\pstorsvc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\pstorec.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\psnppagn.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\pschdprf.ini 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\pschdprf.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\psapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\proxycfg.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\proquota.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\progman.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\profmap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\prodspec.ini 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\prnqctl.vbs 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\prnport.vbs 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\prnmngr.vbs 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\prnjobs.vbs 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\prndrvr.vbs 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\prncnfg.vbs 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\printui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\print.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\prflbmsg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\powrprof.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\powercfg.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\polstore.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\pnrpnsp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\pmspl.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\plustab.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ping6.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ping.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\pifmgr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\pidgen.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\photowiz.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\perfwci.ini 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\perfts.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\perfproc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\perfos.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\perfnw.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\perfnet.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\perfmon.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\perffilt.ini 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\perfdisk.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\perfctrs.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\perfci.ini 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\pentnt.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\pdh.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\pautoenr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\pathping.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\panmap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\pagefileconfig.vbs 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\packager.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\p2psvc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\p2pnetsh.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\p2pgraph.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\p2pgasvc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\p2p.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\osuninst.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\osuninst.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\opengl32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\openfiles.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\onex.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\olethk32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\olesvr32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\olesvr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\olepro32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\oleprn.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\oledlg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\olecnv32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\olecli32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\olecli.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\oleaut32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\oleaccrc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\oleacc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ole2nls.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ole2disp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ole2.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odtext32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odpdx32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odfox32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odexl32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\oddbse32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odbctrac.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odbcp32r.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odbcjt32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odbcji32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odbcint.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odbccu32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odbccr32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odbcconf.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odbcconf.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odbcad32.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odbc32gt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\odbc16gt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ocmanage.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\objsel.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\oakley.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\nwwks.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\nwscript.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\nwprovau.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\nwevent.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\nwcfg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\nwapi32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\nwapi16.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\nw16.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntvdmd.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntvdm.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntshrui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntsdexts.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntsd.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntprint.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntmssvc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntmsoprq.msc 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntmsmgr.msc 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntmsmgr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntmsevt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntmsdba.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntmsapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntmarta.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntlsapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntlanui2.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntlanui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntlanman.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntio804.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntio412.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntio411.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntio404.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntio.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntdsbcli.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntdos804.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntdos412.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntdos411.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntdos404.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntdos.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ntbackup.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\nslookup.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\npptools.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\notepad.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\nlsfunc.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\newdev.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netui2.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netui1.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netui0.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netstat.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netshell.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netsh.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netsetup.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netrap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netplwiz.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netmsg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netman.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netid.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\neth.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netevent.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netdde.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netcfgx.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netapi32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\netapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\net1.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\net.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\nddenb32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\nddeapir.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\nddeapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ncxpnt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ncobjapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\nbtstat.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\narrhook.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\narrator.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\napstat.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\napmontr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\napipsec.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mydocs.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mycomput.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mtxclu.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msxmlr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msxml6r.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msxml6.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msxml3r.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msxml3.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msxml2r.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msxml.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msxbde40.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mswstr10.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mswebdvd.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mswdat10.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msw3prt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msvideo.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msvidctl.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msvidc32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msvfw32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msvcrt40.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msvcrt20.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msvcrt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msvcp60.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msvcp50.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msvcirt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msvbvm60.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msvbvm50.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msutb.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mstlsapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mstext40.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msswchx.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msswch.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mssip32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mssign32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msshavmsg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mssha.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mssap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msrle32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msrepl40.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msrecr40.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msrd3x40.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msrclr40.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msratelc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msr2cenu.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msr2c.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msprivs.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msports.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mspbde40.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mspatcha.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msorcl32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msorc32r.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msobjs.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msnsspc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msltus40.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mslbui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msjtes40.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msjter40.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msjint40.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msjetoledb40.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\MSIMTF.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msimg32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msieftp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msidntld.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msidle.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msident.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msgsvc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msftedit.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msexch40.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msencode.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msdxmlc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msdmo.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msdart.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msdadiag.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\MSCTFP.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mscpxl32.dLL 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mscpx32r.dLL 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mscdexnt.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mscat32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msaudite.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msasn1.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msapsspc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msafd.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msacm32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msacm.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\msaatext.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mrinfo.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqutil.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqupgrd.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqtrig.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqtgsvc.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqsvc.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqsnap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqsec.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqrtdep.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqrt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqqm.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqperf.ini 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqperf.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqoa.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqlogmgr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqise.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqgentr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqdscli.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqcertui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqbkup.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mqad.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mprui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mprmsg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mprdim.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mprddm.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mprapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mpr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mpnotify.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mountvol.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\moricons.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\more.com 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\modex.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\modemui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mode.com 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mobsync.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mobsync.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mmutilse.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mmsystem.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mmdrv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mmcfxcommon.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mll_qic.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mll_mtf.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mll_hp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mlang.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\migpwd.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\miglibnt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\midimap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\microsoft.managementconsole.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mgmtapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mfcsubs.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mfc42u.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mfc42.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mfc40u.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mfc40.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mf3216.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mem.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mdminst.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mdhcp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mciwave.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mciseq.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mciqtz32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mciole32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mciole16.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mcicda.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mciavi32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mchgrcoi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mcdsrv32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mcd32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mcastmib.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mapistub.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\makecab.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\magnify.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mag_hook.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\lzexpand.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\lz32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\lusrmgr.msc 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\lsass.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\lprmonui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\lprhelp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\lpr.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\lpq.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\lpk.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\logonui.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\logman.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\login.cmd 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\loghours.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\lodctr.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\locator.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\localui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\localsec.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\loadperf.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\loadfix.com 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\lnkstub.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\lmrt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\lmhsvc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\linkinfo.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\lights.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\langwrbk.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\label.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\l2gpstore.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\krnl386.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kmsvc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\keymgr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\keyboard.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\key01.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kernel32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kdcom.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kd1394.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdusx.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdusr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdusl.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdus.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdukx.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbduk.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdsw.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdsp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdsmsno.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdsmsfi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdsg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdsf.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdpo.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdpash.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdno1.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdno.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdnepr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdnec.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdne.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdmlt48.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdmlt47.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdmaori.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdmac.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdla.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdiultn.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdit142.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdit.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdir.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdinmal.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdinben.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdinbe1.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdic.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdgr1.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdgr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdgae.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdfr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdfo.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdfi1.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdfi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdfc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdes.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbddv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdda.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdcan.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdca.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdbr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdbhc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdbene.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kbdbe.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\kb16.com 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\jobexec.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\jgsh400.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\jgsd400.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\jgpl400.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\jgmd400.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\jgdw400.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\jgaw400.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\jet500.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ixsso.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iuengine.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\itss.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\itircl.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ir50_qcx.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ir50_qc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ir50_32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ir41_qcx.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ir41_qc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ir32_32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ipxwan.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ipxsap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ipxrtmgr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ipxroute.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ipxrip.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ipxpromn.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ipxmontr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ipv6mon.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ipv6.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ipsmsnap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ipsecsvc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ipsecsnp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ipsec6.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iprtrmgr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iprtprio.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iprop.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ippromon.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ipmontr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iphlpapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ipconfig.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iologmsg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\input.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\initpki.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\infosoft.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\inetppui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\inetpp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\inetmib1.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\inetcplc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\imm32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\imeshare.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\imapi.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\imagehlp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iissuba.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\igmpagnt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ifsutil.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ifmon.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iexpress.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\idq.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\icmui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\icmp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\icm32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iccvid.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iassvcs.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iassdo.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iassam.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iasrecst.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iasrad.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iaspolcy.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iasnap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iashlpr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iasads.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\iasacct.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\htui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\httpapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\hotplug.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\hostname.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\hnetwiz.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\hnetmon.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\hlink.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\himem.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\hhsetup.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\help.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\hccoin.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\h323msp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\grpconv.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\graphics.com 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\graftabl.com 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\gpupdate.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\gpresult.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\gpkrsrc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\gpkcsp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\gpedit.msc 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\gpedit.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\glu32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\glmf32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\getmac.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\gdi32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\gdi.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\gcdef.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\fwcfg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ftsrch.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ftp.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\fsutil.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\fsusd.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\fsquirt.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\fsmgmt.msc 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\framebuf.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\format.com 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\forcedos.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\fontview.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\fontsub.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\fontext.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\fmifs.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\fldrclnr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\fixmapi.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\finger.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\findstr.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\find.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\filemgmt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\feclient.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\fdeploy.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\fde.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\faultrep.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\fastopen.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\exts.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\extrac32.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\expsrv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\expand.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\exe2bin.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eventvwr.msc 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eventvwr.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eventtriggers.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eventquery.vbs 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eventlog.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eventcreate.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eventcls.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eula.txt 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eudcedit.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\esentutl.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\esentprf.ini 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\esentprf.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\esent97.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\esent.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ersvc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\encdec.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\encapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\els.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\efsadu.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\edlin.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\edit.com 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eapsvc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eapqec.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eappprxy.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eapphost.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eappgnui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eappcfg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eapp3hst.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\eapolqec.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dxmasf.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dxdiagn.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dxdiag.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dx8vb.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dx7vb.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dwwin.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dvdupgrd.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\duser.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dumprep.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dswave.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dssenh.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dssec.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dsquery.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dsprpres.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dsprop.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dsound3d.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dsound.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dskquoui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dskquota.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dsdmoprp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dsdmo.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dsauth.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ds32gt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ds16gt.dLL 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drwtsn32.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drwatson.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drprov.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drmstor.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drmclien.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\ws2ifsl.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\wmilib.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\videoprt.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\vga.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\usbd.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\update.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\udfs.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\tdi.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\tape.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\srv.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\smclib.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\sfloppy.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\sffp_sd.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\sffp_mmc.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\sffdisk.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\serial.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\serenum.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\secdrv.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\scsiport.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\rootmdm.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\rndismp.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\rdpcdd.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\rawwan.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\raspti.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\raspptp.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\rasacd.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\ptilink.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\psched.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\pcmcia.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\pciidex.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\pciide.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\pci.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\parvdm.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\oprghdlr.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\nwrdr.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\nwlnkspx.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\nwlnknb.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\nwlnkipx.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\nwlnkfwd.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\nwlnkflt.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\null.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\npfs.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\nmnt.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\netbt.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\netbios.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\msgpc.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\msfs.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\mqac.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\mnmdd.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\mcd.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\kbdclass.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\isapnp.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\ipsec.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\ipnat.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\ipinip.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\ipfltdrv.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\ip6fw.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\imapi.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\i8042prt.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\http.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\gmreadme.txt 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\ftdisk.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\fs_rec.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\flpydisk.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\fips.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\fdc.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\dxgthk.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\dxg.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\dxapi.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\dmload.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\dmio.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\dmboot.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\diskdump.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\classpnp.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\cdfs.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\cbidf2k.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\bridge.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\beep.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\atmuni.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\atmlane.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\atmepvc.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\atmarpc.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\atapi.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\asyncmac.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\acpiec.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\acpi.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\drivers\1394bus.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\driverquery.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpwsockx.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpwsock.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpvvox.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpvsetup.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpvoice.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpvacm.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpserial.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpnwsock.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpnsvr.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpnmodem.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpnlobby.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpnhupnp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpnhpast.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpnet.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpnaddr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpmodemx.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dplayx.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dplaysvr.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dplay.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dpcdll.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dot3ui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dot3svc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dot3msm.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dot3gpclnt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dot3dlg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dot3cfg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dot3api.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dosx.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\doskey.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\docprop2.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\docprop.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dnsrslvr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmusic.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmsynth.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmstyle.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmserver.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmscript.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmremote.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmocx.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmloader.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmintf.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmime.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmdskres.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmdskmgr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmdlgs.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmconfig.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmcompos.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmband.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dmadmin.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dllhst3g.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dllhost.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dispex.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\diskperf.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\diskpart.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\diskmgmt.msc 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\diskcopy.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\diskcopy.com 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\diskcomp.com 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dinput8.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dinput.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dimsroam.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dimsntfy.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dimap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\digest.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\diantz.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\diactfrm.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dhcpsapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dhcpqec.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dhcpmon.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dgnet.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dfsshlex.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dfrgui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dfrgsnap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dfrgres.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dfrgntfs.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dfrgfat.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dfrg.msc 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\devmgr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\devmgmt.msc 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\devenum.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\deskperf.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\deskmon.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\deskadp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\defrag.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\debug.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ddrawex.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ddraw.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ddeshare.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ddeml.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dciman32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dbnmpntw.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dbnetlib.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dbmsrpcn.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dbghelp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dbgeng.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\davclnt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\datime.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dataclen.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\danim.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\d3dxof.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\d3drm.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\d3dramp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\d3dpmesh.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\d3dim700.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\d3dim.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\d3d8thk.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\d3d8.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ctl3dv2.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ctl3d32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ctfmon.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\csseqchk.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\csrss.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\csrsrv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cscui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cryptui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cryptsvc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cryptnet.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cryptext.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cryptdll.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cryptdlg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\crtdll.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\credui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\credssp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\country.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\convert.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\control.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\console.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\conime.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\confmsp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\comres.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\compstui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\compobj.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\compmgmt.msc 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\compatUI.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\compact.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\comp.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\commdlg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\command.com 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\comdlg32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\comctl32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\comcat.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cnvfat.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cnetcfg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cmutil.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cmstp.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cmsetACL.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cmpbk32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cmmon32.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cmdl32.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cmdial32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cmd.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cmcfg32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\clusapi.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\clipsrv.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cliconfg.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cliconfg.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cleanmgr.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\clb.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ckcnv.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cisvc.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cipher.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ciodm.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cidaemon.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ciadv.msc 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ciadmin.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\chkntfs.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\chkdsk.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\chcp.com 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cfgmgr32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\certmgr.msc 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\certmgr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\certcli.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cdosys.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cdfview.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ccfgnt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cards.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\capesnpn.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\camocx.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cacls.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cabview.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\cabinet.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\btpanui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\bthserv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\bthci.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\browsewm.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\browseui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\browselc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\bootvrfy.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\bootvid.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\bootok.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\bootcfg.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\blastcln.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\bidispl.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\batmeter.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\basesrv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\azroles.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\avifile.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\avifil32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\avicap32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\avicap.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\autolfn.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\autofmt.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\autodisc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\autoconv.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\autochk.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\authz.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\auditusr.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\audiosrv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\attrib.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\atmpvcno.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\atmlib.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\atmadm.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\atl.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\atkctrs.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\at.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\asycfilt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\asr_pfu.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\asr_ldm.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\asr_fmt.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\arp.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\appmgr.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\appmgmts.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\apphelp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\append.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\apcups.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ansi.sys 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\amstream.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\alrsvc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\alg.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\ahui.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\advapi32.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\adsnw.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\adsnt.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\adsnds.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\adsldpc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\adptif.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\actxprxy.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\actmovie.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\activeds.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\aclui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\acledit.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\aaaamon.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\6to4svc.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system.ini 2008-04-14 14:00:00 ----A---- C:\WINDOWS\regedit.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\msdfmap.ini 2008-04-14 14:00:00 ----A---- C:\WINDOWS\hh.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\_default.pif 2008-04-14 07:42:12 ----A---- C:\WINDOWS\system32\wzcsapi.dll 2008-04-14 07:42:04 ----A---- C:\WINDOWS\system32\pjlmon.dll 2008-04-14 07:42:04 ----A---- C:\WINDOWS\system32\pid.dll 2008-04-14 07:42:02 ----A---- C:\WINDOWS\system32\msyuv.dll 2008-04-14 07:41:56 ----A---- C:\WINDOWS\system32\iyuv_32.dll 2008-04-14 07:41:56 ----A---- C:\WINDOWS\system32\hid.dll 2008-04-14 07:41:54 ----A---- C:\WINDOWS\system32\dmutil.dll 2008-04-14 07:41:52 ----A---- C:\WINDOWS\system32\cnbjmon.dll 2008-04-14 02:46:38 ----A---- C:\WINDOWS\system32\drivers\ks.sys 2008-04-14 02:30:20 ----A---- C:\WINDOWS\system32\drivers\modem.sys 2008-04-14 02:26:02 ----A---- C:\WINDOWS\system32\drivers\tunmp.sys 2008-04-14 02:26:00 ----A---- C:\WINDOWS\system32\drivers\ndisuio.sys 2008-04-14 02:21:26 ----A---- C:\WINDOWS\system32\drivers\nic1394.sys 2008-04-14 02:21:26 ----A---- C:\WINDOWS\system32\drivers\arp1394.sys 2008-04-14 02:16:08 ----A---- C:\WINDOWS\system32\drivers\sonydcam.sys 2008-04-14 02:15:44 ----A---- C:\WINDOWS\system32\drivers\usbintel.sys 2008-04-14 02:15:42 ----A---- C:\WINDOWS\system32\drivers\usbcamd2.sys 2008-04-14 02:15:42 ----A---- C:\WINDOWS\system32\drivers\usbcamd.sys 2008-04-14 02:15:16 ----A---- C:\WINDOWS\system32\drivers\stream.sys 2008-04-14 02:10:12 ----A---- C:\WINDOWS\system32\drivers\parport.sys 2008-04-14 02:09:54 ----A---- C:\WINDOWS\system32\drivers\swenum.sys 2008-04-14 02:09:48 ----A---- C:\WINDOWS\system32\drivers\mouclass.sys 2008-04-14 02:06:48 ----A---- C:\WINDOWS\system32\drivers\mssmbios.sys 2008-04-14 02:06:42 ----A---- C:\WINDOWS\system32\drivers\mf.sys 2008-04-14 02:01:34 ----A---- C:\WINDOWS\system32\drivers\crusoe.sys 2008-04-14 02:01:34 ----A---- C:\WINDOWS\system32\drivers\amdk7.sys 2008-04-14 02:01:34 ----A---- C:\WINDOWS\system32\drivers\amdk6.sys 2008-04-14 02:01:32 ----A---- C:\WINDOWS\system32\drivers\processr.sys 2008-04-14 02:01:32 ----A---- C:\WINDOWS\system32\drivers\p3.sys 2008-04-03 12:45:46 ----A---- C:\WINDOWS\system32\browser.dll 2008-04-02 13:08:44 ----A---- C:\WINDOWS\system32\hal.dll 2008-03-28 17:11:34 ----A---- C:\WINDOWS\system32\odbccp32.dll 2008-03-28 17:11:34 ----A---- C:\WINDOWS\system32\odbc32.dll 2008-03-28 16:47:06 ----A---- C:\WINDOWS\system32\sqlsrv32.dll 2008-03-28 16:47:06 ----A---- C:\WINDOWS\system32\odbcbcp.dll 2008-03-11 16:42:24 ----A---- C:\WINDOWS\system32\wmp.dll 2008-03-07 20:02:08 ----A---- C:\WINDOWS\system32\offfilt.dll 2008-03-07 20:02:08 ----A---- C:\WINDOWS\system32\nlhtml.dll 2008-03-07 20:02:08 ----A---- C:\WINDOWS\system32\mimefilt.dll 2008-03-05 17:03:54 ----A---- C:\WINDOWS\system32\XAudio2_0.dll 2008-03-05 17:03:20 ----A---- C:\WINDOWS\system32\xactengine3_0.dll 2008-03-05 17:00:06 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll 2008-03-05 16:56:58 ----A---- C:\WINDOWS\system32\D3DX9_37.dll 2008-03-05 16:56:58 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll 2008-03-04 19:09:40 ----A---- C:\WINDOWS\system32\shimeng.dll 2008-02-27 19:02:34 ----A---- C:\WINDOWS\system32\drivers\usbport.sys 2008-02-20 00:54:00 ----A---- C:\WINDOWS\system32\WMVCore.dll 2008-02-06 00:07:36 ----A---- C:\WINDOWS\system32\d3dx10_37.dll 2007-11-30 13:18:19 ----A---- C:\WINDOWS\system32\mmc.exe 2007-11-17 00:54:16 ----A---- C:\WINDOWS\system32\portabledevicewmdrm.dll 2007-10-27 17:40:30 ----A---- C:\WINDOWS\system32\wmasf.dll 2007-10-22 03:39:54 ----A---- C:\WINDOWS\system32\xactengine2_10.dll 2007-10-22 03:37:16 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll 2007-10-12 15:14:00 ----A---- C:\WINDOWS\system32\d3dx9_36.dll 2007-10-12 15:14:00 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll 2007-10-02 09:56:34 ----A---- C:\WINDOWS\system32\d3dx10_36.dll 2007-08-24 18:07:24 ----A---- C:\WINDOWS\system32\msxml4r.dll 2007-08-22 17:24:27 ----N---- C:\WINDOWS\system32\iepeers.dll 2007-08-13 18:54:10 ----A---- C:\WINDOWS\system32\msls31.dll 2007-08-13 18:54:10 ----A---- C:\WINDOWS\system32\ieui.dll 2007-08-13 18:45:16 ----A---- C:\WINDOWS\system32\WinFXDocObj.exe 2007-08-13 18:44:18 ----A---- C:\WINDOWS\system32\licmgr10.dll 2007-08-13 18:39:20 ----A---- C:\WINDOWS\system32\admparse.dll 2007-08-13 18:39:12 ----A---- C:\WINDOWS\system32\iesetup.dll 2007-08-13 18:39:02 ----A---- C:\WINDOWS\system32\inseng.dll 2007-08-13 18:38:48 ----A---- C:\WINDOWS\system32\advpack.dll.mui 2007-08-13 18:36:40 ----A---- C:\WINDOWS\system32\msfeedssync.exe 2007-08-13 18:32:30 ----A---- C:\WINDOWS\system32\mshta.exe 2007-08-13 18:01:12 ----A---- C:\WINDOWS\system32\mshtmler.dll 2007-08-10 08:20:26 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2007-07-31 02:25:54 ----A---- C:\WINDOWS\system32\MicrosoftUpdateCatalogWebControl.dll 2007-07-31 01:19:10 ----A---- C:\WINDOWS\system32\mucltui.dll 2007-07-31 01:19:02 ----A---- C:\WINDOWS\system32\mucltui.dll.mui 2007-07-20 00:57:12 ----A---- C:\WINDOWS\system32\xactengine2_9.dll 2007-07-19 18:14:42 ----A---- C:\WINDOWS\system32\d3dx9_35.dll 2007-07-19 18:14:42 ----A---- C:\WINDOWS\system32\d3dx10_35.dll 2007-07-19 18:14:42 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll 2007-06-20 23:54:24 ----A---- C:\WINDOWS\system32\qasf.dll 2007-06-20 20:46:04 ----A---- C:\WINDOWS\system32\xactengine2_8.dll 2007-05-16 16:45:16 ----A---- C:\WINDOWS\system32\d3dx9_34.dll 2007-05-16 16:45:16 ----A---- C:\WINDOWS\system32\d3dx10_34.dll 2007-05-16 16:45:16 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll 2007-05-11 06:54:00 ----A---- C:\WINDOWS\system32\imgutil.dll 2007-04-18 15:03:48 ----A---- C:\WINDOWS\system32\wpdmtpus.dll 2007-04-04 18:55:00 ----A---- C:\WINDOWS\system32\xactengine2_7.dll 2007-04-04 18:53:42 ----A---- C:\WINDOWS\system32\xinput1_3.dll 2007-04-03 23:48:58 ----A---- C:\WINDOWS\system32\cewmdm.dll 2007-03-15 17:57:58 ----A---- C:\WINDOWS\system32\d3dx10_33.dll 2007-03-12 17:42:30 ----A---- C:\WINDOWS\system32\d3dx9_33.dll 2007-03-12 17:42:30 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll 2007-03-05 13:42:18 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll 2007-02-24 00:50:00 ----A---- C:\WINDOWS\system32\mspmsp.dll 2007-01-30 15:20:44 ----A---- C:\WINDOWS\system32\wmspdmoe.dll 2007-01-24 16:27:30 ----A---- C:\WINDOWS\system32\xactengine2_6.dll 2007-01-09 00:47:46 ----A---- C:\WINDOWS\system32\wmdrmsdk.dll 2007-01-09 00:47:46 ----A---- C:\WINDOWS\system32\wmdrmnet.dll 2007-01-09 00:47:38 ----A---- C:\WINDOWS\system32\drmv2clt.dll 2007-01-08 20:01:14 ----A---- C:\WINDOWS\system32\corpol.dll 2006-12-13 18:27:10 ----A---- C:\WINDOWS\system32\wmadmoe.dll 2006-12-08 13:02:00 ----A---- C:\WINDOWS\system32\xactengine2_5.dll 2006-12-04 17:21:50 ----A---- C:\WINDOWS\system32\msscp.dll 2006-11-29 14:06:18 ----A---- C:\WINDOWS\system32\d3dx9_32.dll 2006-11-06 12:35:46 ----A---- C:\WINDOWS\system32\RmActivate_isv.exe 2006-11-06 12:35:44 ----A---- C:\WINDOWS\system32\RmActivate.exe 2006-11-06 12:35:42 ----A---- C:\WINDOWS\system32\SecProc_isv.dll 2006-11-06 12:35:42 ----A---- C:\WINDOWS\system32\SecProc.dll 2006-11-06 12:35:38 ----A---- C:\WINDOWS\system32\RmActivate_ssp.exe 2006-11-06 12:35:36 ----A---- C:\WINDOWS\system32\RmActivate_ssp_isv.exe 2006-11-06 12:35:32 ----A---- C:\WINDOWS\system32\SecProc_ssp_isv.dll 2006-11-06 12:35:32 ----A---- C:\WINDOWS\system32\msdrm.dll 2006-11-06 12:35:30 ----A---- C:\WINDOWS\system32\SecProc_ssp.dll 2006-10-26 14:42:36 ----A---- C:\WINDOWS\system32\FM20FRA.DLL 2006-10-26 14:10:06 ----A---- C:\WINDOWS\system32\FM20ENU.DLL 2006-10-26 13:45:04 ----A---- C:\WINDOWS\system32\WISPTIS.EXE 2006-10-26 13:45:04 ----A---- C:\WINDOWS\system32\INKED.DLL 2006-10-18 22:58:00 ----A---- C:\WINDOWS\system32\wdfmgr.exe 2006-10-18 22:58:00 ----A---- C:\WINDOWS\system32\uwdf.exe 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wpdsp.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wpdshserviceobj.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wpdshextres.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wpdshext.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wpdmtp.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wpdconns.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wpd_ci.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wmvxencd.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wmvsencd.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wmvsdecd.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wmvencod.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wmvdmoe2.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wmvdmod.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wmvdecod.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wmvadve.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wmvadvd.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wmspdmod.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wmsdmoe2.dll 2006-10-18 22:47:22 ----A---- C:\WINDOWS\system32\wmsdmod.dll 2006-10-18 22:47:20 ----A---- C:\WINDOWS\system32\wmpsrcwp.dll 2006-10-18 22:47:20 ----A---- C:\WINDOWS\system32\wmpshell.dll 2006-10-18 22:47:20 ----A---- C:\WINDOWS\system32\wmpps.dll 2006-10-18 22:47:20 ----A---- C:\WINDOWS\system32\wmpmde.dll 2006-10-18 22:47:20 ----A---- C:\WINDOWS\system32\wmploc.dll 2006-10-18 22:47:20 ----A---- C:\WINDOWS\system32\wmpencen.dll 2006-10-18 22:47:20 ----A---- C:\WINDOWS\system32\wmpeffects.dll 2006-10-18 22:47:20 ----A---- C:\WINDOWS\system32\wmpdxm.dll 2006-10-18 22:47:20 ----A---- C:\WINDOWS\system32\wmpasf.dll 2006-10-18 22:47:20 ----A---- C:\WINDOWS\system32\wmidx.dll 2006-10-18 22:47:20 ----A---- C:\WINDOWS\system32\wmerror.dll 2006-10-18 22:47:18 ----A---- C:\WINDOWS\system32\wmdrmdev.dll 2006-10-18 22:47:18 ----A---- C:\WINDOWS\system32\wmdmps.dll 2006-10-18 22:47:18 ----A---- C:\WINDOWS\system32\wmdmlog.dll 2006-10-18 22:47:18 ----A---- C:\WINDOWS\system32\wmadmod.dll 2006-10-18 22:47:18 ----A---- C:\WINDOWS\system32\wdfapi.dll 2006-10-18 22:47:18 ----A---- C:\WINDOWS\system32\portabledevicewiacompat.dll 2006-10-18 22:47:18 ----A---- C:\WINDOWS\system32\portabledevicetypes.dll 2006-10-18 22:47:18 ----A---- C:\WINDOWS\system32\portabledeviceclassextension.dll 2006-10-18 22:47:18 ----A---- C:\WINDOWS\system32\portabledeviceapi.dll 2006-10-18 22:47:16 ----A---- C:\WINDOWS\system32\mswmdm.dll 2006-10-18 22:47:16 ----A---- C:\WINDOWS\system32\mspmsnsv.dll 2006-10-18 22:47:16 ----A---- C:\WINDOWS\system32\msnetobj.dll 2006-10-18 22:47:14 ----A---- C:\WINDOWS\system32\mpg4dmod.dll 2006-10-18 22:47:14 ----A---- C:\WINDOWS\system32\mpg4decd.dll 2006-10-18 22:47:14 ----A---- C:\WINDOWS\system32\mp4sdmod.dll 2006-10-18 22:47:14 ----A---- C:\WINDOWS\system32\mp4sdecd.dll 2006-10-18 22:47:14 ----A---- C:\WINDOWS\system32\mp43dmod.dll 2006-10-18 22:47:14 ----A---- C:\WINDOWS\system32\mp43decd.dll 2006-10-18 22:47:14 ----A---- C:\WINDOWS\system32\mfplat.dll 2006-10-18 22:47:14 ----A---- C:\WINDOWS\system32\laprxy.dll 2006-10-18 22:47:10 ----A---- C:\WINDOWS\system32\blackbox.dll 2006-10-18 22:47:08 ----A---- C:\WINDOWS\system32\audiodev.dll 2006-10-18 22:47:08 ----A---- C:\WINDOWS\system32\asferror.dll 2006-10-18 21:03:58 ----A---- C:\WINDOWS\system32\logagent.exe 2006-10-18 21:00:46 ----A---- C:\WINDOWS\system32\drmupgds.exe 2006-10-18 21:00:14 ----A---- C:\WINDOWS\system32\wpdshextautoplay.exe 2006-10-18 21:00:00 ----A---- C:\WINDOWS\system32\drivers\wpdusb.sys 2006-10-02 15:28:42 ----A---- C:\WINDOWS\system32\msdelta.dll 2006-09-28 20:13:26 ----A---- C:\WINDOWS\system32\wudfcoinstaller.dll 2006-09-28 19:00:34 ----A---- C:\WINDOWS\system32\drivers\wudfrd.sys 2006-09-28 18:56:38 ----A---- C:\WINDOWS\system32\wudfx.dll 2006-09-28 18:56:38 ----A---- C:\WINDOWS\system32\wudfhost.exe 2006-09-28 18:56:16 ----A---- C:\WINDOWS\system32\wudfplatform.dll 2006-09-28 18:56:14 ----A---- C:\WINDOWS\system32\wudfsvc.dll 2006-09-28 18:55:50 ----A---- C:\WINDOWS\system32\drivers\wudfpf.sys 2006-09-28 16:05:56 ----A---- C:\WINDOWS\system32\xactengine2_4.dll 2006-09-28 16:05:20 ----A---- C:\WINDOWS\system32\d3dx9_31.dll 2006-07-28 09:30:32 ----A---- C:\WINDOWS\system32\xactengine2_3.dll 2006-07-28 09:30:14 ----A---- C:\WINDOWS\system32\xinput1_2.dll 2006-07-24 10:50:40 ----A---- C:\WINDOWS\system32\VBAME.DLL 2006-07-24 10:50:40 ----A---- C:\WINDOWS\system32\SCP32.DLL 2006-06-29 08:05:44 ----A---- C:\WINDOWS\system32\normaliz.dll 2006-06-29 08:05:44 ----A---- C:\WINDOWS\system32\idndl.dll 2006-06-28 17:59:26 ----A---- C:\WINDOWS\system32\nlsdl.dll 2006-05-31 07:24:16 ----A---- C:\WINDOWS\system32\xactengine2_2.dll 2006-03-31 12:40:58 ----A---- C:\WINDOWS\system32\d3dx9_30.dll 2006-03-31 12:39:48 ----A---- C:\WINDOWS\system32\xactengine2_1.dll 2006-03-31 12:39:24 ----A---- C:\WINDOWS\system32\xinput1_1.dll 2006-02-03 09:43:16 ----A---- C:\WINDOWS\system32\d3dx9_29.dll 2006-02-03 09:42:06 ----A---- C:\WINDOWS\system32\xactengine2_0.dll 2006-02-03 09:41:26 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll 2005-12-05 19:09:18 ----A---- C:\WINDOWS\system32\d3dx9_28.dll 2005-12-05 19:07:30 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll 2005-08-03 19:04:44 ----A---- C:\WINDOWS\system32\drivers\Ktp.sys 2005-07-22 19:59:04 ----A---- C:\WINDOWS\system32\d3dx9_27.dll 2005-05-26 15:34:52 ----A---- C:\WINDOWS\system32\d3dx9_26.dll 2005-04-05 16:38:32 ----A---- C:\WINDOWS\system32\drivers\b57xp32.sys 2005-03-31 10:28:10 ----SHD---- C:\Recycled 2005-03-31 00:06:24 ----D---- C:\Program Files\NewTech Infosystems 2005-03-31 00:01:04 ----D---- C:\Program Files\CyberLink 2005-03-31 00:00:36 ----D---- C:\Program Files\Arcade 2005-03-30 23:59:23 ----D---- C:\Program Files\Adobe 2005-03-30 23:58:34 ----D---- C:\WINDOWS\Cache 2005-03-30 23:57:22 ----D---- C:\WINDOWS\tiinst 2005-03-30 23:57:07 ----D---- C:\Program Files\Acer Inc 2005-03-30 23:54:53 ----A---- C:\WINDOWS\system32\SynTPFcs.dll 2005-03-30 23:54:52 ----D---- C:\Program Files\Synaptics 2005-03-30 23:54:52 ----A---- C:\WINDOWS\system32\SynTPCo2.dll 2005-03-30 23:54:52 ----A---- C:\WINDOWS\system32\SynTPAPI.dll 2005-03-30 23:54:52 ----A---- C:\WINDOWS\system32\SynCtrl.dll 2005-03-30 23:54:52 ----A---- C:\WINDOWS\system32\SynCOM.dll 2005-03-30 23:54:52 ----A---- C:\WINDOWS\system32\drivers\SynTP.sys 2005-03-30 23:45:33 ----D---- C:\Program Files\Intel 2005-03-30 23:44:45 ----D---- C:\WINDOWS\system32\ReinstallBackups 2005-03-30 23:44:42 ----HD---- C:\Program Files\InstallShield Installation Information 2005-03-30 23:44:11 ----HD---- C:\Program Files\Uninstall Information 2005-03-30 23:42:47 ----D---- C:\WINDOWS\SoftwareDistribution 2005-03-30 23:42:46 ----SHD---- C:\System Volume Information 2005-03-30 23:42:45 ----SD---- C:\WINDOWS\system32\Microsoft 2005-03-30 23:38:21 ----D---- C:\WINDOWS\system32\xircom 2005-03-30 23:38:21 ----D---- C:\Program Files\xerox 2005-03-30 23:38:20 ----D---- C:\Program Files\microsoft frontpage 2005-03-30 23:38:09 ----RASH---- C:\MSDOS.SYS 2005-03-30 23:38:09 ----RASH---- C:\IO.SYS 2005-03-30 23:38:09 ----A---- C:\CONFIG.SYS 2005-03-30 23:38:09 ----A---- C:\AUTOEXEC.BAT 2005-03-30 23:36:51 ----SD---- C:\WINDOWS\Downloaded Program Files 2005-03-30 23:36:51 ----RD---- C:\WINDOWS\Offline Web Pages 2005-03-30 23:36:38 ----HD---- C:\Program Files\WindowsUpdate 2005-03-30 23:36:33 ----D---- C:\Program Files\Services en ligne 2005-03-30 23:36:21 ----D---- C:\WINDOWS\system32\DirectX 2005-03-30 23:36:11 ----SD---- C:\WINDOWS\Tasks 2005-03-30 23:36:08 ----D---- C:\WINDOWS\system32\Macromed 2005-03-30 23:36:08 ----D---- C:\WINDOWS\srchasst 2005-03-30 23:36:05 ----D---- C:\Program Files\Movie Maker 2005-03-30 23:36:02 ----D---- C:\WINDOWS\system32\Restore 2005-03-30 23:36:00 ----D---- C:\Program Files\NetMeeting 2005-03-30 23:35:59 ----D---- C:\Program Files\Outlook Express 2005-03-30 23:35:56 ----D---- C:\Program Files\Internet Explorer 2005-03-30 23:35:35 ----D---- C:\Program Files\ComPlus Applications 2005-03-30 23:35:27 ----D---- C:\WINDOWS\Registration 2005-03-30 23:34:52 ----D---- C:\Program Files\Online Services 2005-03-30 23:34:51 ----D---- C:\Program Files\Windows Media Player 2005-03-30 23:34:50 ----D---- C:\WINDOWS\system32\FxsTmp 2005-03-30 23:34:41 ----D---- C:\Program Files\Messenger 2005-03-30 23:34:40 ----D---- C:\Program Files\MSN Gaming Zone 2005-03-30 23:34:25 ----D---- C:\Program Files\Windows NT 2005-03-30 23:34:25 ----D---- C:\Program Files\MSN 2005-03-30 23:34:23 ----D---- C:\WINDOWS\system32\MsDtc 2005-03-30 23:34:23 ----D---- C:\WINDOWS\system32\Com 2005-03-30 23:29:45 ----SHD---- C:\WINDOWS\Installer 2005-03-30 23:29:42 ----RD---- C:\Program Files 2005-03-30 23:29:42 ----D---- C:\Program Files\Fichiers communs 2005-03-30 23:29:14 ----D---- C:\WINDOWS\system32\CatRoot2 2005-03-30 23:29:14 ----D---- C:\WINDOWS\system32\CatRoot 2005-03-30 23:28:53 ----D---- C:\Documents and Settings 2005-03-30 23:28:20 ----D---- C:\WINDOWS\Modem 2005-03-30 23:28:20 ----D---- C:\WINDOWS\LAN5788 2005-03-30 23:28:20 ----D---- C:\WINDOWS\LAN4401 2005-03-30 23:28:20 ----D---- C:\WINDOWS\AB5005G 2005-03-30 23:28:20 ----D---- C:\WINDOWS\802BG 2005-03-30 23:28:20 ----D---- C:\WINDOWS\802ABG 2005-03-30 23:28:19 ----D---- C:\WINDOWS\ATIV 2005-03-30 23:23:42 ----D---- C:\WINDOWS\WinSxS 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\usmt 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\mui 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\inetsrv 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\IME 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\icsxml 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\3com_dmi 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\3076 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\2052 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\1054 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\1042 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\1041 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\1037 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\1036 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\1033 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\1031 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\1028 2005-03-30 23:23:42 ----D---- C:\WINDOWS\system32\1025 2005-03-30 23:23:42 ----D---- C:\WINDOWS\Resources 2005-03-30 23:23:42 ----D---- C:\WINDOWS\Provisioning 2005-03-30 23:23:42 ----D---- C:\WINDOWS\PeerNet 2005-03-30 23:23:42 ----D---- C:\WINDOWS\pchealth 2005-03-30 23:23:42 ----D---- C:\WINDOWS\mui 2005-03-30 23:23:42 ----D---- C:\WINDOWS\msapps 2005-03-30 23:23:42 ----D---- C:\WINDOWS\ime 2005-03-30 23:23:42 ----D---- C:\WINDOWS\Debug 2005-03-30 23:23:42 ----D---- C:\WINDOWS\AppPatch 2005-03-30 23:23:42 ----AD---- C:\WINDOWS\system32\oobe 2005-03-30 23:23:41 ----RSHDC---- C:\WINDOWS\system32\dllcache 2005-03-30 23:23:41 ----RSD---- C:\WINDOWS\Fonts 2005-03-30 23:23:41 ----RD---- C:\WINDOWS\Web 2005-03-30 23:23:41 ----HD---- C:\WINDOWS\inf 2005-03-30 23:23:41 ----D---- C:\WINDOWS\twain_32 2005-03-30 23:23:41 ----D---- C:\WINDOWS\system32\wins 2005-03-30 23:23:41 ----D---- C:\WINDOWS\system32\wbem 2005-03-30 23:23:41 ----D---- C:\WINDOWS\system32\spool 2005-03-30 23:23:41 ----D---- C:\WINDOWS\system32\ShellExt 2005-03-30 23:23:41 ----D---- C:\WINDOWS\system32\Setup 2005-03-30 23:23:41 ----D---- C:\WINDOWS\system32\ras 2005-03-30 23:23:41 ----D---- C:\WINDOWS\system32\npp 2005-03-30 23:23:41 ----D---- C:\WINDOWS\system32\ias 2005-03-30 23:23:41 ----D---- C:\WINDOWS\system32\export 2005-03-30 23:23:41 ----D---- C:\WINDOWS\system32\drivers\etc 2005-03-30 23:23:41 ----D---- C:\WINDOWS\system32\drivers\disdn 2005-03-30 23:23:41 ----D---- C:\WINDOWS\system32\dhcp 2005-03-30 23:23:41 ----D---- C:\WINDOWS\system32\config 2005-03-30 23:23:41 ----D---- C:\WINDOWS\security 2005-03-30 23:23:41 ----D---- C:\WINDOWS\repair 2005-03-30 23:23:41 ----D---- C:\WINDOWS\msagent 2005-03-30 23:23:41 ----D---- C:\WINDOWS\Media 2005-03-30 23:23:41 ----D---- C:\WINDOWS\java 2005-03-30 23:23:41 ----D---- C:\WINDOWS\Help 2005-03-30 23:23:41 ----D---- C:\WINDOWS\Driver Cache 2005-03-30 23:23:41 ----D---- C:\WINDOWS\Cursors 2005-03-30 23:23:41 ----D---- C:\WINDOWS\Connection Wizard 2005-03-30 23:23:41 ----D---- C:\WINDOWS\Config 2005-03-30 23:23:41 ----D---- C:\WINDOWS\addins 2005-03-30 23:23:41 ----D---- C:\WINDOWS 2005-03-30 23:23:41 ----AD---- C:\WINDOWS\system32\drivers 2005-03-30 23:23:41 ----AD---- C:\WINDOWS\system32 2005-03-30 23:23:41 ----AD---- C:\WINDOWS\system 2005-03-30 23:22:39 ----SH---- C:\boot.ini 2005-03-30 23:20:46 ----AD---- C:\Sysinfo 2005-03-30 23:20:46 ----AD---- C:\Book 2005-03-18 18:19:58 ----A---- C:\WINDOWS\system32\d3dx9_25.dll 2005-02-05 20:45:26 ----A---- C:\WINDOWS\system32\d3dx9_24.dll 2004-12-07 18:12:18 ----A---- C:\WINDOWS\system32\ATIDEMGR.dll 2004-12-07 16:31:48 ----A---- C:\WINDOWS\system32\atioglxx.dll 2004-12-07 16:07:04 ----A---- C:\WINDOWS\system32\ati2dvag.dll 2004-12-07 16:06:42 ----A---- C:\WINDOWS\system32\drivers\ati2mtag.sys 2004-12-07 16:02:00 ----A---- C:\WINDOWS\system32\atipdlxx.dll 2004-12-07 16:01:34 ----A---- C:\WINDOWS\system32\Ati2mdxx.exe 2004-12-07 16:01:26 ----A---- C:\WINDOWS\system32\ati2edxx.dll 2004-12-07 16:01:10 ----A---- C:\WINDOWS\system32\ati2evxx.dll 2004-12-07 15:59:24 ----A---- C:\WINDOWS\system32\ati2evxx.exe 2004-12-07 15:58:54 ----A---- C:\WINDOWS\system32\ATIDDC.DLL 2004-12-07 15:45:24 ----A---- C:\WINDOWS\system32\ati3duag.dll 2004-12-07 15:39:46 ----A---- C:\WINDOWS\system32\ativvaxx.dll 2004-12-07 15:29:36 ----A---- C:\WINDOWS\system32\atitvo32.dll 2004-12-07 15:21:16 ----A---- C:\WINDOWS\system32\ati2cqag.dll 2004-10-29 18:48:10 ----A---- C:\WINDOWS\system32\drivers\w29n51.sys 2004-10-15 11:20:04 ----A---- C:\WINDOWS\system32\drivers\s24trans.sys 2004-10-15 10:20:42 ----A---- C:\WINDOWS\system32\w29NCPA.dll 2004-10-14 18:35:06 ----A---- C:\WINDOWS\system32\msxml2.dll 2004-09-13 13:40:00 ----A---- C:\WINDOWS\system32\drivers\tifm21.sys 2004-08-31 13:41:41 ----AD---- C:\dotnetfx 2004-08-31 13:41:31 ----AD---- C:\VALUEADD 2004-08-31 13:34:31 ----AD---- C:\i386 2004-08-12 08:44:10 ----N---- C:\WINDOWS\system32\iwca.dll 2004-08-12 08:44:04 ----A---- C:\WINDOWS\system32\drivers\iwca.sys 2004-07-14 23:34:06 ----A---- C:\WINDOWS\system32\mscorier.dll 2004-06-25 14:31:01 ----A---- C:\WINDOWS\system32\drivers\camchal.sys 2004-06-25 14:29:01 ----A---- C:\WINDOWS\system32\drivers\camcaud.sys 2004-06-25 14:29:00 ----A---- C:\WINDOWS\ciaunwdm.exe 2004-06-16 04:47:53 ----D---- C:\_OTM 2004-06-16 00:21:26 ----D---- C:\Documents and Settings\Saskia\Application Data\Malwarebytes 2004-06-16 00:20:54 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys 2004-06-16 00:20:43 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Malwarebytes 2004-06-16 00:20:43 ----A---- C:\WINDOWS\system32\drivers\mbam.sys 2004-05-25 15:40:24 ----A---- C:\WINDOWS\system32\btbip.dll 2004-05-25 15:34:44 ----A---- C:\WINDOWS\system32\BtWizard.dll 2004-05-25 15:32:58 ----A---- C:\WINDOWS\system32\BTNeighborhood.dll 2004-05-25 15:28:40 ----A---- C:\WINDOWS\system32\btsec.dll 2004-05-25 15:28:24 ----A---- C:\WINDOWS\system32\btcss.dll 2004-05-25 15:26:28 ----A---- C:\WINDOWS\system32\btsendto_ie.dll 2004-05-25 15:25:30 ----A---- C:\WINDOWS\system32\btsendto_wab.dll 2004-05-25 15:25:02 ----A---- C:\WINDOWS\system32\btsendto_office.dll 2004-05-25 15:22:54 ----A---- C:\WINDOWS\system32\btsendto_notes.dll 2004-05-25 15:20:06 ----A---- C:\WINDOWS\system32\btsendto.dll 2004-05-25 15:19:46 ----A---- C:\WINDOWS\system32\btosif_olx.dll 2004-05-25 15:19:04 ----A---- C:\WINDOWS\system32\btprn2k.dll 2004-05-25 15:18:20 ----A---- C:\WINDOWS\system32\bthcrpui.dll 2004-05-25 15:17:38 ----A---- C:\WINDOWS\system32\bthcrp.dll 2004-05-25 15:16:56 ----A---- C:\WINDOWS\system32\btwpimif.dll 2004-05-25 15:16:38 ----A---- C:\WINDOWS\system32\btosif_ol.dll 2004-05-25 15:16:02 ----A---- C:\WINDOWS\system32\btosif_notes.dll 2004-05-25 15:15:32 ----A---- C:\WINDOWS\system32\btosif.dll 2004-05-25 15:11:54 ----A---- C:\WINDOWS\system32\WidcommSdk.dll 2004-05-25 15:09:56 ----A---- C:\WINDOWS\system32\wbtapi.dll 2004-05-25 15:07:12 ----A---- C:\WINDOWS\system32\BtAudioHelper.dll 2004-05-25 15:07:04 ----A---- C:\WINDOWS\system32\BtXpShell.dll 2004-05-25 15:06:50 ----A---- C:\WINDOWS\system32\BTXPPanel.dll 2004-05-25 15:06:22 ----A---- C:\WINDOWS\system32\btbigbmp.dll 2004-05-25 15:04:04 ----A---- C:\WINDOWS\system32\drivers\btaudio.sys 2004-05-25 15:02:06 ----A---- C:\WINDOWS\system32\drivers\btserial.sys 2004-05-25 15:01:46 ----A---- C:\WINDOWS\system32\drivers\btslbcsp.sys 2004-05-25 14:59:06 ----A---- C:\WINDOWS\system32\btdev.dll 2004-05-25 14:58:42 ----A---- C:\WINDOWS\system32\bt2k_ins.dll 2004-05-25 14:58:22 ----A---- C:\WINDOWS\system32\btins.dll 2004-05-25 14:57:46 ----A---- C:\WINDOWS\system32\drivers\btkrnl.sys 2004-05-25 14:55:22 ----A---- C:\WINDOWS\system32\btrezxp.dll 2004-05-25 14:54:34 ----A---- C:\WINDOWS\system32\btrez.dll 2004-05-25 14:50:46 ----A---- C:\WINDOWS\system32\drivers\btwdndis.sys 2004-05-25 14:50:32 ----A---- C:\WINDOWS\system32\drivers\btport.sys 2004-05-24 17:57:32 ----A---- C:\WINDOWS\system32\BTNCopy.dll ======List of files/folders modified in the last 1 months====== 2009-11-27 18:07:35 ----A---- C:\WINDOWS\system32\tsbyuv.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wowfaxui.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\wowfax.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrvpa.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrvoica.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrv80a.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrv42a.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrsvpia.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrshuta.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrsdpia.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrrtosa.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrprbda.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrmlnka.exe 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrlbva.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrfaxa.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrdtea.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrdpa.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrcoina.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\usrcntra.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\streamci.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sprio800.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\sprio600.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\spnike.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\paqsp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\mdwmdmsp.dll 2008-04-14 14:00:00 ----A---- C:\WINDOWS\system32\dvdplay.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 BTKRNL;Bluetooth Protocol Stack; C:\WINDOWS\system32\drivers\btkrnl.sys [2004-05-25 1240938] R0 ohci1394;Texas Instruments OHCI Compliant IEEE 1394 Host Controller; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-06-19 61696] R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-06-01 685816] R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2010-08-17 126856] R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520] R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.1.6.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2010-06-01 17119] R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2010-08-17 60936] R2 BTSERIAL;Bluetooth Serial Driver; \??\C:\WINDOWS\system32\drivers\btserial.sys [] R2 BTSLBCSP;Bluetooth Port Client Driver; \??\C:\WINDOWS\system32\drivers\btslbcsp.sys [] R2 irda;IrDA Protocol; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-14 88192] R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2004-03-17 13059] R2 NwlnkIpx;NWLink IPX/SPX/NetBIOS Compatible Transport Protocol; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-14 88320] R2 NwlnkNb;NWLink NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2008-04-14 63232] R2 NwlnkSpx;NWLink SPX/SPXII Protocol; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2008-04-14 55936] R2 rspndr;Link-Layer Topology Discovery Responder; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2008-05-29 62848] R2 s24trans;WLAN Transport; C:\WINDOWS\system32\DRIVERS\s24trans.sys [2004-10-15 11354] R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-12-07 874496] R3 b57w2k;Broadcom NetLink Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2005-04-05 132352] R3 CAMCAUD;Conexant AMC Audio; C:\WINDOWS\system32\drivers\camcaud.sys [2004-06-25 34048] R3 CAMCHALA;CAMCHALA; C:\WINDOWS\system32\drivers\camchal.sys [2004-06-25 276480] R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368] R3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSF_DP.sys [2004-06-10 1041536] R3 HSFHWICH;HSFHWICH; C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys [2004-06-10 200064] R3 IWCA;Intel Wireless Connection Agent Miniport for Win XP; C:\WINDOWS\system32\DRIVERS\iwca.sys [2004-08-12 234496] R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160] R3 NSCIRDA;NSC Infrared Device Driver; C:\WINDOWS\system32\DRIVERS\nscirda.sys [2008-04-14 28672] R3 NWRDR;NetWare Rdr; C:\WINDOWS\system32\DRIVERS\nwrdr.sys [2008-04-14 163584] R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584] R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2004-10-08 185824] R3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2004-09-13 146304] R3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368] R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608] R3 w29n51;Pilote de carte de connexion réseau Intel® PRO/Wireless 2200BG pour Windows XP; C:\WINDOWS\system32\DRIVERS\w29n51.sys [2004-10-29 3222784] R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2004-06-10 684800] S1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592] S3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800] S3 BthEnum;Bluetooth Request Block Driver; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-14 17024] S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-14 101120] S3 BTHPORT;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-13 272128] S3 BTHUSB;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944] S3 Ktp;Elantech Touchpad; C:\WINDOWS\system32\DRIVERS\Ktp.sys [2005-08-03 27392] S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824] S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-14 59136] S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-22 32384] S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\WudfPf.sys [] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\wudfrd.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Akamai;Akamai NetSession Interface; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-08-17 135336] R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-08-17 267944] R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2004-12-07 425984] R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2004-05-25 163840] R2 EvtEng;EvtEng; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2004-10-15 86016] R2 Irmon;Infrared Monitor; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-06-01 153376] R2 NWCWorkstation;Client Service for NetWare; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R2 OwnershipProtocol;OwnershipProtocol; C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe [2004-10-15 98304] R2 RegSrvc;RegSrvc; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2004-10-15 139264] R2 S24EventMonitor;Spectrum24 Event Monitor; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [2004-10-15 360521] S2 gupdate1cb095d934d6ec8;Service Google Update (gupdate1cb095d934d6ec8); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-06-11 133104] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] -----------------EOF-----------------
  11. grem
    Je dirai que ca va... C'est clair que la différence est flagrante !!! Merci beaucoup !
  12. grem
    Voila ce que ca me donne : All processes killed ========== PROCESSES ========== ========== FILES ========== DllUnregisterServer procedure not found in c:\program files\relevantknowledge\rlls.dll c:\program files\relevantknowledge\rlls.dll NOT unregistered. c:\program files\relevantknowledge\rlls.dll moved successfully. ========== SERVICES/DRIVERS ========== ========== REGISTRY ========== Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\RelevantKnowledge\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\RelevantKnowledge\ not found. OTM by OldTimer - Version 3.0.0.6 log created on 09242009_135834 Files moved on Reboot... Registry entries deleted on Reboot... EDIT : J'ai désinstallé Avira
  13. grem
    Bonjour à tous, Je fais de nouveau appel a vous car je suis infecte par différents virus que avast à mis en quarantaine. Cela dis mon ordinateur rame toujours et je pense qu'il doit en rester quelques uns. Pouvez vous m'aider??? Merci beaucoup
  14. grem
    Hello, Merci beaucoup, firefox démarre beaucoup plus rapidement et ce mywebsearch a disparu.
  15. grem
    Bonjour, Désolé je n'avais pas fait attention que c'était MYwebsearch -----------\\ ToolBar S&D 1.2.8 XP/Vista Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : Intel® Pentium® M processor 1.73GHz ) BIOS : Phoenix NoteBIOS 4.0 Release 6.1 USER : Jérémy ( Administrator ) BOOT : Normal boot Antivirus : AntiVir Desktop 9.0.1.26 (Activated) C:\ (Local Disk) - NTFS - Total:74 Go (Free:33 Go) D:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go) E:\ (Local Disk) - NTFS - Total:465 Go (Free:280 Go) "C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 ) Option : [2] ( 08/07/2009| 7:59 ) -----------\\ Recherche de Fichiers / Dossiers ... -----------\\ Extensions (J‚r‚my) - {19503e42-ca3c-4c27-b1e2-9cdb2170ee34} => flashgot (J‚r‚my) - {62760FD6-B943-48C9-AB09-F99C6FE96088} => ebaycompanion (J‚r‚my) - {CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B} => cooliris -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://www.msn.com/"'>http://www.msn.com/" "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"'>http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" "Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"'>http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://www.msn.com/" --------------------\\ Recherche d'autres infections Aucune autre infection trouvée ! 1 - "C:\ToolBar SD\TB_1.txt" - 08/07/2009| 7:51 - Option : [1] 2 - "C:\ToolBar SD\TB_2.txt" - 08/07/2009| 8:01 - Option : [2] -----------\\ Fin du rapport a 8:01:11,40
×
×
  • Créer...