jozz972
-
Compteur de contenus
7 -
Inscription
-
Dernière visite
jozz972's Achievements
Junior Member (3/12)
0
Réputation sur la communauté
-
re salut voici le rapport RSIT Logfile of random's system information tool 1.06 (written by random/random) Run by Manuella at 2009-04-08 23:16:26 Microsoft Windows XP Professionnel Service Pack 3 System drive C: has 21 GB (63%) free of 33 GB Total RAM: 479 MB (34% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:16:41, on 08/04/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\windows\System32\smss.exe C:\windows\system32\csrss.exe C:\windows\system32\winlogon.exe C:\windows\system32\services.exe C:\windows\system32\lsass.exe C:\windows\system32\svchost.exe C:\windows\system32\svchost.exe C:\windows\System32\svchost.exe C:\windows\system32\svchost.exe C:\windows\System32\svchost.exe C:\windows\Explorer.EXE C:\windows\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\windows\system32\spoolsv.exe C:\Program Files\VIAudioi\SBADeck\ADeck.exe C:\windows\AGRSMMSG.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe C:\Program Files\Winamp\Winampa.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\SuperCopier2\SuperCopier2.exe C:\windows\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe C:\WINDOWS\System32\cisvc.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\windows\System32\svchost.exe C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\windows\System32\alg.exe C:\windows\system32\wuauclt.exe C:\Program Files\Microsoft Office\Office10\WINWORD.EXE C:\windows\system32\cidaemon.exe C:\windows\system32\wuauclt.exe C:\windows\system32\msiexec.exe J:\RSIT.exe C:\WINDOWS\System32\wbem\wmiprvse.exe C:\hijakthis\Manuella.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - Default URLSearchHook is missing O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O4 - HKLM\..\Run: [AudioDeck] C:\Program Files\VIAudioi\SBADeck\ADeck.exe 1 O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [NeroCheck] C:\windows\system32\NeroCheck.exe O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe" O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Pando] "C:\Program Files\Pando Networks\Pando\pando.exe" /Automation O4 - HKCU\..\Run: [superCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\windows\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1238243032843 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1238242957859 O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab O18 - Filter hijack: deflate - (no CLSID) - (no file) O18 - Filter hijack: gzip - (no CLSID) - (no file) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O24 - Desktop Component 0: (no name) - http://astrocenter.wanadoo.fr/wanadoo/css/center.css O24 - Desktop Component 1: (no name) - file:///C:/DOCUME~1/Manuella/LOCALS~1/APPLIC~1/IM/Runtime/EMOTIC~1/12E9EC~1.GIF O24 - Desktop Component 2: (no name) - file:///C:/DOCUME~1/Manuella/LOCALS~1/APPLIC~1/IM/Runtime/Image/627F12~1/KISSIN~1.GIF O24 - Desktop Component 3: (no name) - file:///C:/DOCUME~1/Manuella/LOCALS~1/APPLIC~1/IM/Runtime/Image/F1B62D~1/LIPS_K~1.GIF -- End of file - 8026 bytes ======Scheduled tasks folder====== C:\windows\tasks\AppleSoftwareUpdate.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}] Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-31 35840] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-31 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}] EpsonToolBandKicker Class - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2004-02-10 339968] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "AudioDeck"=C:\Program Files\VIAudioi\SBADeck\ADeck.exe [2004-09-30 7957504] "AGRSMMSG"=C:\windows\AGRSMMSG.exe [2004-06-29 88363] "Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744] "Adobe Photo Downloader"=C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe [2005-06-23 57344] "NeroCheck"=C:\windows\system32\NeroCheck.exe [2001-07-09 155648] "WinampAgent"=C:\Program Files\Winamp\Winampa.exe [2003-04-01 12288] "avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2007-09-06 79224] "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-31 148888] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe [] "MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-13 1695232] "Pando"=C:\Program Files\Pando Networks\Pando\pando.exe /Automation [] "SuperCopier2.exe"=C:\Program Files\SuperCopier2\SuperCopier2.exe [2006-07-07 1052672] "ctfmon.exe"=C:\windows\system32\ctfmon.exe [2008-04-13 15360] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe [2006-09-15 155896] C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\windows\system32\WgaLogon.dll [2009-03-10 265088] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\windows\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa] "notification packages"= scecli scecli scecli scecli [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "ConsentPromptBehaviorAdmin"=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Documents and Settings\Manuella\Local Settings\Temp\ImInstaller\IncrediMail\incredimail_install[1].exe"="C:\Documents and Settings\Manuella\Local Settings\Temp\ImInstaller\IncrediMail\incredimail_install[1].exe:*:Enabled:IncrediMail Installer" "C:\Program Files\IncrediMail\bin\IncMail.exe"="C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail" "C:\Program Files\IncrediMail\bin\IMApp.exe"="C:\Program Files\IncrediMail\bin\IMApp.exe:*:Enabled:IncrediMail" "C:\Program Files\IncrediMail\bin\ImpCnt.exe"="C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail" "C:\Program Files\IncrediMail\bin\ImLc.exe"="C:\Program Files\IncrediMail\bin\ImLc.exe:*:Enabled:IncrediMail" "C:\Program Files\IncrediMail\bin\IncrediMail_Install.exe"="C:\Program Files\IncrediMail\bin\IncrediMail_Install.exe:*:Enabled:IncrediMail Installer" "C:\Documents and Settings\Manuella\Local Settings\Temp\ImInstaller\IncrediMail\IncrediMail_Install.exe"="C:\Documents and Settings\Manuella\Local Settings\Temp\ImInstaller\IncrediMail\IncrediMail_Install.exe:*:Enabled:IncrediMail Installer" "C:\Program Files\Securitoo\Av_Fw\backweb\8520111\Program\fspex.exe"="C:\Program Files\Securitoo\Av_Fw\backweb\8520111\Program\fspex.exe:*:Enabled:Securitoo Antivirus Firewall" "C:\Documents and Settings\Manuella\Application Data\U3\0000185A49607D5A\0DE4F643-C398-46ec-9339-2362F2311932\Exec\skype.exe"="C:\Documents and Settings\Manuella\Application Data\U3\0000185A49607D5A\0DE4F643-C398-46ec-9339-2362F2311932\Exec\skype.exe:*:Enabled:Skype" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e57c0596-cb21-11db-bd0b-0011095f35ad}] shell\AutoRun\command - J:\LaunchU3.exe -a ======List of files/folders created in the last 1 months====== 2009-04-08 22:01:57 ----A---- C:\TB.txt 2009-04-08 22:01:22 ----D---- C:\ToolBar SD 2009-04-08 16:33:29 ----HDC---- C:\windows\$NtUninstallKB951978$ 2009-04-08 16:33:10 ----HDC---- C:\windows\$NtUninstallKB954459$ 2009-04-08 14:03:50 ----D---- C:\rsit 2009-04-08 12:07:40 ----D---- C:\Documents and Settings\Manuella\Application Data\Malwarebytes 2009-04-08 12:07:31 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2009-04-08 12:07:30 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2009-04-08 11:51:21 ----A---- C:\cleannavi.txt 2009-04-07 10:28:48 ----A---- C:\fixnavi.txt 2009-04-07 10:27:06 ----D---- C:\Program Files\Navilog1 2009-04-05 07:11:01 ----HDC---- C:\windows\$NtUninstallKB961118$ 2009-04-04 22:58:10 ----D---- C:\windows\Prefetch 2009-04-04 22:10:30 ----HDC---- C:\windows\$NtUninstallKB967715$ 2009-04-04 22:08:51 ----HDC---- C:\windows\$NtUninstallKB960714$ 2009-04-04 22:08:03 ----HDC---- C:\windows\$NtUninstallKB960225$ 2009-04-04 22:07:12 ----HDC---- C:\windows\$NtUninstallKB958690$ 2009-04-04 22:06:18 ----HDC---- C:\windows\$NtUninstallKB958687$ 2009-04-04 22:05:25 ----HDC---- C:\windows\$NtUninstallKB958644$ 2009-04-04 22:04:34 ----HDC---- C:\windows\$NtUninstallKB958215$ 2009-04-04 22:03:49 ----HDC---- C:\windows\$NtUninstallKB957097$ 2009-04-04 22:02:52 ----HDC---- C:\windows\$NtUninstallKB956841$ 2009-04-04 22:01:59 ----HDC---- C:\windows\$NtUninstallKB956803$ 2009-04-04 22:01:06 ----HDC---- C:\windows\$NtUninstallKB956802$ 2009-04-04 21:57:48 ----HDC---- C:\windows\$NtUninstallKB955069$ 2009-04-04 21:56:39 ----HDC---- C:\windows\$NtUninstallKB954600$ 2009-04-04 21:55:51 ----HDC---- C:\windows\$NtUninstallKB952954$ 2009-04-04 21:55:35 ----HDC---- C:\windows\$NtUninstallKB952287$ 2009-04-04 21:55:18 ----HDC---- C:\windows\$NtUninstallKB951748$ 2009-04-04 21:55:00 ----HDC---- C:\windows\$NtUninstallKB951698$ 2009-04-04 21:54:46 ----HDC---- C:\windows\$NtUninstallKB951376-v2$ 2009-04-04 21:54:37 ----HDC---- C:\windows\$NtUninstallKB951066$ 2009-04-04 21:54:29 ----HDC---- C:\windows\$NtUninstallKB950974$ 2009-04-04 21:54:22 ----HDC---- C:\windows\$NtUninstallKB950762$ 2009-04-04 21:54:10 ----HDC---- C:\windows\$NtUninstallKB946648$ 2009-04-04 21:53:55 ----HDC---- C:\windows\$NtUninstallKB938464-v2$ 2009-04-04 21:25:33 ----HDC---- C:\windows\$NtServicePackUninstall$ 2009-03-31 21:52:01 ----D---- C:\hijakthis 2009-03-31 09:57:51 ----D---- C:\windows\Sun 2009-03-31 09:56:34 ----A---- C:\windows\system32\javaws.exe 2009-03-31 09:56:34 ----A---- C:\windows\system32\deploytk.dll 2009-03-31 09:56:33 ----A---- C:\windows\system32\javaw.exe 2009-03-31 09:56:33 ----A---- C:\windows\system32\java.exe 2009-03-31 09:56:04 ----D---- C:\Program Files\Java 2009-03-31 09:51:43 ----D---- C:\Documents and Settings\Manuella\Application Data\Sun 2009-03-31 09:26:39 ----D---- C:\Program Files\ToniArts 2009-03-29 19:58:40 ----D---- C:\windows\l2schemas 2009-03-29 19:58:39 ----D---- C:\windows\system32\fr 2009-03-29 19:38:27 ----A---- C:\windows\system32\msxml6r.dll 2009-03-29 19:38:25 ----A---- C:\windows\system32\xpob2res.dll 2009-03-29 19:38:25 ----A---- C:\windows\system32\photometadatahandler.dll 2009-03-29 19:38:25 ----A---- C:\windows\system32\mstscax.dll 2009-03-29 19:38:25 ----A---- C:\windows\system32\mstsc.exe 2009-03-29 19:38:24 ----A---- C:\windows\system32\xpsp1res.dll 2009-03-29 19:38:23 ----A---- C:\windows\system32\xpsp3res.dll 2009-03-29 19:38:23 ----A---- C:\windows\system32\xpsp2res.dll 2009-03-29 19:38:23 ----A---- C:\windows\system32\windowscodecs.dll 2009-03-29 19:38:23 ----A---- C:\windows\system32\verclsid.exe 2009-03-29 19:38:23 ----A---- C:\windows\system32\tzchange.exe 2009-03-29 19:38:22 ----A---- C:\windows\system32\xmllite.dll 2009-03-29 19:38:22 ----A---- C:\windows\system32\wmphoto.dll 2009-03-29 19:38:22 ----A---- C:\windows\system32\windowscodecsext.dll 2009-03-29 19:38:16 ----A---- C:\windows\system32\comsdupd.exe 2009-03-29 19:38:11 ----A---- C:\windows\system32\spiisupd.exe 2009-03-29 19:38:09 ----A---- C:\windows\system32\asr_pfu.exe 2009-03-29 19:38:04 ----A---- C:\windows\system32\secedit.exe 2009-03-29 19:38:03 ----A---- C:\windows\system32\dxdiagn.dll 2009-03-29 19:38:02 ----A---- C:\windows\system32\slcoinst.dll 2009-03-29 19:38:02 ----A---- C:\windows\system32\p2pgasvc.dll 2009-03-29 19:38:02 ----A---- C:\windows\system32\kbdukx.dll 2009-03-29 19:37:58 ----A---- C:\windows\system32\ir41_qc.dll 2009-03-29 19:37:58 ----A---- C:\windows\system32\encdec.dll 2009-03-29 19:37:57 ----A---- C:\windows\system32\slserv.exe 2009-03-29 19:37:55 ----A---- C:\windows\system32\dsprpres.dll 2009-03-29 19:37:54 ----A---- C:\windows\system32\ati2cqag.dll 2009-03-29 19:37:53 ----A---- C:\windows\system32\pnrpnsp.dll 2009-03-29 19:37:49 ----A---- C:\windows\system32\wscntfy.exe 2009-03-29 19:37:48 ----A---- C:\windows\system32\nv4_disp.dll 2009-03-29 19:37:47 ----A---- C:\windows\system32\w3ssl.dll 2009-03-29 19:37:45 ----A---- C:\windows\system32\p2psvc.dll 2009-03-29 19:37:44 ----A---- C:\windows\system32\bitsprx2.dll 2009-03-29 19:37:43 ----A---- C:\windows\system32\kbdsmsno.dll 2009-03-29 19:37:39 ----A---- C:\windows\system32\kbdfi1.dll 2009-03-29 19:37:39 ----A---- C:\windows\system32\ati2dvaa.dll 2009-03-29 19:37:38 ----A---- C:\windows\system32\spupdwxp.exe 2009-03-29 19:37:37 ----A---- C:\windows\system32\slgen.dll 2009-03-29 19:37:37 ----A---- C:\windows\system32\ir41_qcx.dll 2009-03-29 19:37:36 ----A---- C:\windows\system32\sbe.dll 2009-03-29 19:37:36 ----A---- C:\windows\system32\p2pgraph.dll 2009-03-29 19:37:36 ----A---- C:\windows\system32\ir50_qcx.dll 2009-03-29 19:37:33 ----A---- C:\windows\system32\kbdmlt47.dll 2009-03-29 19:37:32 ----A---- C:\windows\system32\sbeio.dll 2009-03-29 19:37:26 ----A---- C:\windows\system32\slrundll.exe 2009-03-29 19:37:26 ----A---- C:\windows\slrundll.exe 2009-03-29 19:37:25 ----A---- C:\windows\system32\wshbth.dll 2009-03-29 19:37:24 ----A---- C:\windows\system32\s3gnb.dll 2009-03-29 19:37:23 ----A---- C:\windows\system32\msdadiag.dll 2009-03-29 19:37:23 ----A---- C:\windows\system32\ir50_32.dll 2009-03-29 19:37:23 ----A---- C:\windows\system32\httpapi.dll 2009-03-29 19:37:21 ----A---- C:\windows\system32\hccoin.dll 2009-03-29 19:37:17 ----A---- C:\windows\system32\smbinst.exe 2009-03-29 19:37:15 ----A---- C:\windows\system32\fwcfg.dll 2009-03-29 19:37:15 ----A---- C:\windows\system32\ati2dvag.dll 2009-03-29 19:37:13 ----A---- C:\windows\system32\d3d9.dll 2009-03-29 19:37:08 ----A---- C:\windows\system32\mtxparhd.dll 2009-03-29 19:37:08 ----A---- C:\windows\system32\mssap.dll 2009-03-29 19:37:07 ----A---- C:\windows\system32\ati3d1ag.dll 2009-03-29 19:37:05 ----A---- C:\windows\system32\p2pnetsh.dll 2009-03-29 19:37:05 ----A---- C:\windows\system32\kbdinmal.dll 2009-03-29 19:37:04 ----A---- C:\windows\system32\twext.dll 2009-03-29 19:37:03 ----A---- C:\windows\system32\winbrand.dll 2009-03-29 19:37:03 ----A---- C:\windows\system32\spnpinst.exe 2009-03-29 19:37:02 ----A---- C:\windows\system32\xmlprovi.dll 2009-03-29 19:37:02 ----A---- C:\windows\system32\kbdinbe1.dll 2009-03-29 19:37:01 ----A---- C:\windows\system32\xmlprov.dll 2009-03-29 19:36:56 ----A---- C:\windows\system32\cmsetacl.dll 2009-03-29 19:36:47 ----A---- C:\windows\system32\btpanui.dll 2009-03-29 19:36:46 ----A---- C:\windows\system32\fsquirt.exe 2009-03-29 19:36:44 ----A---- C:\windows\system32\slextspk.dll 2009-03-29 19:36:41 ----A---- C:\windows\system32\bthci.dll 2009-03-29 19:36:40 ----A---- C:\windows\system32\powercfg.exe 2009-03-29 19:36:40 ----A---- C:\windows\system32\ati3duag.dll 2009-03-29 19:36:38 ----A---- C:\windows\system32\winhttp.dll 2009-03-29 19:36:38 ----A---- C:\windows\system32\kbdsmsfi.dll 2009-03-29 19:36:38 ----A---- C:\windows\system32\bthserv.dll 2009-03-29 19:36:37 ----A---- C:\windows\system32\bitsprx3.dll 2009-03-29 19:36:35 ----A---- C:\windows\system32\winshfhc.dll 2009-03-29 19:36:31 ----A---- C:\windows\system32\faxpatch.exe 2009-03-29 19:36:27 ----A---- C:\windows\system32\wscsvc.dll 2009-03-29 19:36:24 ----A---- C:\windows\system32\mdmxsdk.dll 2009-03-29 19:36:24 ----A---- C:\windows\system32\kbdmlt48.dll 2009-03-29 19:36:24 ----A---- C:\windows\system32\encapi.dll 2009-03-29 19:36:23 ----A---- C:\windows\system32\p2p.dll 2009-03-29 19:36:23 ----A---- C:\windows\system32\ir50_qc.dll 2009-03-29 19:36:23 ----A---- C:\windows\system32\ativtmxx.dll 2009-03-29 19:36:21 ----A---- C:\windows\system32\kbdno1.dll 2009-03-29 19:36:21 ----A---- C:\windows\system32\auditusr.exe 2009-03-29 19:36:20 ----A---- C:\windows\system32\hsfcisp2.dll 2009-03-29 19:36:19 ----A---- C:\windows\system32\ativvaxx.dll 2009-03-29 19:36:17 ----A---- C:\windows\system32\strmfilt.dll 2009-03-29 19:36:17 ----A---- C:\windows\system32\blastcln.exe 2009-03-29 19:36:11 ----A---- C:\windows\system32\wuauserv.dll 2009-03-29 19:36:10 ----A---- C:\windows\system32\kbdmaori.dll 2009-03-29 19:36:10 ----A---- C:\windows\system32\kbdinben.dll 2009-03-29 19:36:05 ----A---- C:\windows\system32\sdhcinst.dll 2009-03-29 19:36:01 ----A---- C:\windows\system32\qmgr.dll 2009-03-29 19:36:00 ----A---- C:\windows\system32\pidgen.dll 2009-03-29 19:36:00 ----A---- C:\windows\system32\dpcdll.dll 2009-03-29 19:35:57 ----A---- C:\windows\system32\msftedit.dll 2009-03-29 19:35:57 ----A---- C:\windows\system32\fltlib.dll 2009-03-29 19:35:56 ----A---- C:\windows\system32\ieencode.dll 2009-03-29 19:35:54 ----A---- C:\windows\system32\fltmc.exe 2009-03-29 19:35:50 ----A---- C:\windows\system32\fdeploy.dll 2009-03-29 19:35:50 ----A---- C:\windows\system32\eventtriggers.exe 2009-03-29 19:35:50 ----A---- C:\windows\system32\eventcreate.exe 2009-03-29 19:35:50 ----A---- C:\windows\system32\efsadu.dll 2009-03-29 19:35:50 ----A---- C:\windows\system32\driverquery.exe 2009-03-29 19:35:50 ----A---- C:\windows\system32\cipher.exe 2009-03-29 19:35:50 ----A---- C:\windows\system32\asr_fmt.exe 2009-03-29 19:35:50 ----A---- C:\windows\system32\appmgr.dll 2009-03-29 19:35:50 ----A---- C:\windows\system32\appmgmts.dll 2009-03-29 19:35:49 ----A---- C:\windows\system32\mqlogmgr.dll 2009-03-29 19:35:49 ----A---- C:\windows\system32\mqbkup.exe 2009-03-29 19:35:49 ----A---- C:\windows\system32\logman.exe 2009-03-29 19:35:49 ----A---- C:\windows\system32\gptext.dll 2009-03-29 19:35:49 ----A---- C:\windows\system32\gpresult.exe 2009-03-29 19:35:49 ----A---- C:\windows\system32\gpedit.dll 2009-03-29 19:35:48 ----A---- C:\windows\system32\mqsvc.exe 2009-03-29 19:35:48 ----A---- C:\windows\system32\mqsnap.dll 2009-03-29 19:35:48 ----A---- C:\windows\system32\mqrtdep.dll 2009-03-29 19:35:48 ----A---- C:\windows\system32\mqoa.dll 2009-03-29 19:35:47 ----A---- C:\windows\system32\openfiles.exe 2009-03-29 19:35:47 ----A---- C:\windows\system32\ntbackup.exe 2009-03-29 19:35:47 ----A---- C:\windows\system32\mqtrig.dll 2009-03-29 19:35:47 ----A---- C:\windows\system32\mqtgsvc.exe 2009-03-29 19:35:46 ----A---- C:\windows\system32\tlntsvr.exe 2009-03-29 19:35:46 ----A---- C:\windows\system32\tlntsess.exe 2009-03-29 19:35:46 ----A---- C:\windows\system32\tlntadmn.exe 2009-03-29 19:35:46 ----A---- C:\windows\system32\systeminfo.exe 2009-03-29 19:35:46 ----A---- C:\windows\system32\schtasks.exe 2009-03-29 19:35:46 ----A---- C:\windows\system32\rsnotify.exe 2009-03-29 19:35:46 ----A---- C:\windows\system32\proxycfg.exe 2009-03-29 19:35:45 ----A---- C:\windows\system32\wsecedit.dll 2009-03-29 19:35:45 ----A---- C:\windows\system32\tracerpt.exe 2009-03-29 19:35:45 ----A---- C:\windows\system32\tlntsvrp.dll 2009-03-29 19:35:44 ----A---- C:\windows\system32\bootcfg.exe 2009-03-29 19:35:44 ----A---- C:\windows\system32\adsnw.dll 2009-03-29 19:35:43 ----A---- C:\windows\system32\mqdscli.dll 2009-03-29 19:35:43 ----A---- C:\windows\system32\mqad.dll 2009-03-29 19:35:43 ----A---- C:\windows\system32\getmac.exe 2009-03-29 19:35:43 ----A---- C:\windows\system32\fde.dll 2009-03-29 19:35:42 ----A---- C:\windows\system32\mqqm.dll 2009-03-29 19:35:42 ----A---- C:\windows\system32\mqise.dll 2009-03-29 19:35:41 ----A---- C:\windows\system32\taskkill.exe 2009-03-29 19:35:41 ----A---- C:\windows\system32\nwwks.dll 2009-03-29 19:35:41 ----A---- C:\windows\system32\nwapi32.dll 2009-03-29 19:35:41 ----A---- C:\windows\system32\mqutil.dll 2009-03-29 19:35:41 ----A---- C:\windows\system32\mqupgrd.dll 2009-03-29 19:35:41 ----A---- C:\windows\system32\mqsec.dll 2009-03-29 19:35:41 ----A---- C:\windows\system32\mqrt.dll 2009-03-29 19:35:40 ----A---- C:\windows\system32\tasklist.exe 2009-03-29 19:34:28 ----A---- C:\windows\twain_32.dll 2009-03-29 19:34:28 ----A---- C:\windows\regedit.exe 2009-03-29 19:34:28 ----A---- C:\windows\hh.exe 2009-03-29 19:34:28 ----A---- C:\windows\explorer.exe 2009-03-29 19:34:27 ----A---- C:\windows\winhlp32.exe 2009-03-29 19:34:25 ----A---- C:\windows\system32\adsldpc.dll 2009-03-29 19:34:25 ----A---- C:\windows\system32\adsldp.dll 2009-03-29 19:34:25 ----A---- C:\windows\system32\actxprxy.dll 2009-03-29 19:34:25 ----A---- C:\windows\system32\actmovie.exe 2009-03-29 19:34:25 ----A---- C:\windows\system32\activeds.dll 2009-03-29 19:34:25 ----A---- C:\windows\system32\aclui.dll 2009-03-29 19:34:25 ----A---- C:\windows\system32\accwiz.exe 2009-03-29 19:34:25 ----A---- C:\windows\system32\6to4svc.dll 2009-03-29 19:34:24 ----A---- C:\windows\system32\apphelp.dll 2009-03-29 19:34:24 ----A---- C:\windows\system32\amstream.dll 2009-03-29 19:34:24 ----A---- C:\windows\system32\alrsvc.dll 2009-03-29 19:34:24 ----A---- C:\windows\system32\alg.exe 2009-03-29 19:34:24 ----A---- C:\windows\system32\ahui.exe 2009-03-29 19:34:24 ----A---- C:\windows\system32\adsnt.dll 2009-03-29 19:34:24 ----A---- C:\windows\system32\adsmsext.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\batt.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\batmeter.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\basesrv.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\avifil32.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\autolfn.exe 2009-03-29 19:34:23 ----A---- C:\windows\system32\autofmt.exe 2009-03-29 19:34:23 ----A---- C:\windows\system32\authz.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\audiosrv.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\attrib.exe 2009-03-29 19:34:23 ----A---- C:\windows\system32\atmlib.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\atmfd.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\atmadm.exe 2009-03-29 19:34:23 ----A---- C:\windows\system32\atl.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\at.exe 2009-03-29 19:34:23 ----A---- C:\windows\system32\asycfilt.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\catsrvps.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\catsrv.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\capesnpn.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\camocx.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\cabview.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\cabinet.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\browsewm.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\browseui.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\browser.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\browselc.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\bidispl.dll 2009-03-29 19:34:21 ----A---- C:\windows\system32\cfgmgr32.dll 2009-03-29 19:34:21 ----A---- C:\windows\system32\cfgbkend.dll 2009-03-29 19:34:21 ----A---- C:\windows\system32\certmgr.dll 2009-03-29 19:34:21 ----A---- C:\windows\system32\certcli.dll 2009-03-29 19:34:21 ----A---- C:\windows\system32\cdosys.dll 2009-03-29 19:34:21 ----A---- C:\windows\system32\cdfview.dll 2009-03-29 19:34:21 ----A---- C:\windows\system32\catsrvut.dll 2009-03-29 19:34:20 ----A---- C:\windows\system32\cmcfg32.dll 2009-03-29 19:34:20 ----A---- C:\windows\system32\clusapi.dll 2009-03-29 19:34:20 ----A---- C:\windows\system32\clipsrv.exe 2009-03-29 19:34:20 ----A---- C:\windows\system32\clipbrd.exe 2009-03-29 19:34:20 ----A---- C:\windows\system32\cliconfg.exe 2009-03-29 19:34:20 ----A---- C:\windows\system32\cliconfg.dll 2009-03-29 19:34:20 ----A---- C:\windows\system32\cleanmgr.exe 2009-03-29 19:34:20 ----A---- C:\windows\system32\clbcatq.dll 2009-03-29 19:34:20 ----A---- C:\windows\system32\clbcatex.dll 2009-03-29 19:34:20 ----A---- C:\windows\system32\cisvc.exe 2009-03-29 19:34:20 ----A---- C:\windows\system32\ciodm.dll 2009-03-29 19:34:20 ----A---- C:\windows\system32\cic.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\comrepl.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\compstui.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\compatui.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\comaddin.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\colbact.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\cnbjmon.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\cmutil.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\cmstp.exe 2009-03-29 19:34:19 ----A---- C:\windows\system32\cmprops.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\cmmon32.exe 2009-03-29 19:34:19 ----A---- C:\windows\system32\cmdl32.exe 2009-03-29 19:34:19 ----A---- C:\windows\system32\cmdial32.dll 2009-03-29 19:34:18 ----A---- C:\windows\system32\corpol.dll 2009-03-29 19:34:18 ----A---- C:\windows\system32\conime.exe 2009-03-29 19:34:18 ----A---- C:\windows\system32\confmsp.dll 2009-03-29 19:34:18 ----A---- C:\windows\system32\comuid.dll 2009-03-29 19:34:18 ----A---- C:\windows\system32\comsvcs.dll 2009-03-29 19:34:18 ----A---- C:\windows\system32\comsnap.dll 2009-03-29 19:34:18 ----A---- C:\windows\system32\comres.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\cscript.exe 2009-03-29 19:34:17 ----A---- C:\windows\system32\cscdll.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\cryptui.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\cryptsvc.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\cryptnet.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\cryptext.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\cryptdll.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\cryptdlg.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\crypt32.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\credui.dll 2009-03-29 19:34:16 ----A---- C:\windows\system32\danim.dll 2009-03-29 19:34:16 ----A---- C:\windows\system32\d3dim700.dll 2009-03-29 19:34:16 ----A---- C:\windows\system32\d3d8thk.dll 2009-03-29 19:34:16 ----A---- C:\windows\system32\d3d8.dll 2009-03-29 19:34:16 ----A---- C:\windows\system32\ctfmon.exe 2009-03-29 19:34:16 ----A---- C:\windows\system32\csrss.exe 2009-03-29 19:34:16 ----A---- C:\windows\system32\cscui.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\ddeshare.exe 2009-03-29 19:34:15 ----A---- C:\windows\system32\dcomcnfg.exe 2009-03-29 19:34:15 ----A---- C:\windows\system32\dciman32.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\dbnmpntw.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\dbnetlib.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\dbmsrpcn.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\dbghelp.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\davclnt.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\datime.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\dataclen.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\digest.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\diantz.exe 2009-03-29 19:34:14 ----A---- C:\windows\system32\dhcpmon.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\dgnet.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\dfsshlex.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\dfrgui.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\dfrgsnap.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\dfrgntfs.exe 2009-03-29 19:34:14 ----A---- C:\windows\system32\dfrgfat.exe 2009-03-29 19:34:14 ----A---- C:\windows\system32\devmgr.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\devenum.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\defrag.exe 2009-03-29 19:34:14 ----A---- C:\windows\system32\ddrawex.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\ddraw.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\dmdskmgr.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\dmdlgs.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\dmcompos.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\dmband.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\dmadmin.exe 2009-03-29 19:34:13 ----A---- C:\windows\system32\dllhost.exe 2009-03-29 19:34:13 ----A---- C:\windows\system32\dispex.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\diskpart.exe 2009-03-29 19:34:13 ----A---- C:\windows\system32\diskcopy.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\dinput8.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\dinput.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dpnaddr.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dpmodemx.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dplayx.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dplaysvr.exe 2009-03-29 19:34:12 ----A---- C:\windows\system32\docprop2.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dnsrslvr.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dnsapi.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmutil.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmusic.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmsynth.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmstyle.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmserver.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmscript.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmremote.exe 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmloader.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmime.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dskquota.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dsdmoprp.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dsdmo.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\ds32gt.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\drprov.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpwsockx.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpvvox.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpvsetup.exe 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpvoice.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpvacm.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpnsvr.exe 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpnlobby.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpnhupnp.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpnhpast.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpnet.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dumprep.exe 2009-03-29 19:34:10 ----A---- C:\windows\system32\dswave.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dsuiext.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dssenh.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dssec.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dsquery.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dsprop.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dsound3d.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dsound.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dskquoui.dll 2009-03-29 19:34:09 ----A---- C:\windows\system32\dxdiag.exe 2009-03-29 19:34:09 ----A---- C:\windows\system32\dx8vb.dll 2009-03-29 19:34:09 ----A---- C:\windows\system32\dx7vb.dll 2009-03-29 19:34:09 ----A---- C:\windows\system32\dwwin.exe 2009-03-29 19:34:09 ----A---- C:\windows\system32\dvdupgrd.exe 2009-03-29 19:34:09 ----A---- C:\windows\system32\duser.dll 2009-03-29 19:34:08 ----A---- C:\windows\system32\eventlog.dll 2009-03-29 19:34:08 ----A---- C:\windows\system32\eudcedit.exe 2009-03-29 19:34:08 ----A---- C:\windows\system32\esent.dll 2009-03-29 19:34:08 ----A---- C:\windows\system32\es.dll 2009-03-29 19:34:08 ----A---- C:\windows\system32\ersvc.dll 2009-03-29 19:34:08 ----A---- C:\windows\system32\els.dll 2009-03-29 19:34:08 ----A---- C:\windows\system32\dxmasf.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\gdi32.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\framebuf.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\forcedos.exe 2009-03-29 19:34:07 ----A---- C:\windows\system32\fontview.exe 2009-03-29 19:34:07 ----A---- C:\windows\system32\fontsub.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\fontext.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\fldrclnr.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\findstr.exe 2009-03-29 19:34:07 ----A---- C:\windows\system32\filemgmt.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\feclient.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\faultrep.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\exts.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\extrac32.exe 2009-03-29 19:34:07 ----A---- C:\windows\system32\expsrv.dll 2009-03-29 19:34:06 ----A---- C:\windows\system32\hlink.dll 2009-03-29 19:34:06 ----A---- C:\windows\system32\hidserv.dll 2009-03-29 19:34:06 ----A---- C:\windows\system32\hid.dll 2009-03-29 19:34:06 ----A---- C:\windows\system32\hhsetup.dll 2009-03-29 19:34:06 ----A---- C:\windows\system32\help.exe 2009-03-29 19:34:06 ----A---- C:\windows\system32\h323msp.dll 2009-03-29 19:34:06 ----A---- C:\windows\system32\grpconv.exe 2009-03-29 19:34:06 ----A---- C:\windows\system32\gpkrsrc.dll 2009-03-29 19:34:06 ----A---- C:\windows\system32\glu32.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\icwphbk.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\icwdial.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\icmp.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\icm32.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\iccvid.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\icaapi.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\iasrad.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\hypertrm.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\htui.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\hotplug.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\hnetwiz.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\hnetcfg.dll 2009-03-29 19:34:04 ----A---- C:\windows\system32\imeshare.dll 2009-03-29 19:34:04 ----A---- C:\windows\system32\imapi.exe 2009-03-29 19:34:04 ----A---- C:\windows\system32\ils.dll 2009-03-29 19:34:04 ----A---- C:\windows\system32\igmpagnt.dll 2009-03-29 19:34:04 ----A---- C:\windows\system32\ifmon.dll 2009-03-29 19:34:04 ----A---- C:\windows\system32\iexpress.exe 2009-03-29 19:34:04 ----A---- C:\windows\system32\idq.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\ipconfig.exe 2009-03-29 19:34:03 ----A---- C:\windows\system32\input.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\initpki.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\inetres.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\inetppui.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\inetpp.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\inetmib1.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\inetcomm.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\inetcfg.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\imm32.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\imjp81k.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\ipv6mon.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\ipv6.exe 2009-03-29 19:34:02 ----A---- C:\windows\system32\ipsmsnap.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\ipsecsvc.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\ipsecsnp.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\iprtrmgr.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\ippromon.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\ipnathlp.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\ipmontr.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\iphlpapi.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\jscript.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\jgpl400.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\jgdw400.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\iyuv_32.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\ixsso.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\itss.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\itircl.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\isrdbg32.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\isign32.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\ipxwan.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\ipxroute.exe 2009-03-29 19:34:00 ----A---- C:\windows\system32\ksuser.dll 2009-03-29 19:34:00 ----A---- C:\windows\system32\keymgr.dll 2009-03-29 19:34:00 ----A---- C:\windows\system32\kerberos.dll 2009-03-29 19:34:00 ----A---- C:\windows\system32\kd1394.dll 2009-03-29 19:34:00 ----A---- C:\windows\system32\kbdnec.dll 2009-03-29 19:34:00 ----A---- C:\windows\system32\kbd106.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\makecab.exe 2009-03-29 19:33:59 ----A---- C:\windows\system32\magnify.exe 2009-03-29 19:33:59 ----A---- C:\windows\system32\lsass.exe 2009-03-29 19:33:59 ----A---- C:\windows\system32\lprhelp.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\lpk.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\logonui.exe 2009-03-29 19:33:59 ----A---- C:\windows\system32\localui.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\localsec.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\loadperf.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\lmrt.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\linkinfo.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\licwmi.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\licdll.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\midimap.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mfcsubs.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mfc42.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mfc40u.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mf3216.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mdminst.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mciwave.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mciseq.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mciqtz32.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mciavi32.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mcastmib.dll 2009-03-29 19:33:57 ----A---- C:\windows\system32\mmfutil.dll 2009-03-29 19:33:57 ----A---- C:\windows\system32\mmcshext.dll 2009-03-29 19:33:57 ----A---- C:\windows\system32\mmcndmgr.dll 2009-03-29 19:33:57 ----A---- C:\windows\system32\mmcbase.dll 2009-03-29 19:33:57 ----A---- C:\windows\system32\mmc.exe 2009-03-29 19:33:57 ----A---- C:\windows\system32\mlang.dll 2009-03-29 19:33:57 ----A---- C:\windows\system32\mimefilt.dll 2009-03-29 19:33:57 ----A---- C:\windows\system32\miglibnt.dll 2009-03-29 19:33:56 ----A---- C:\windows\system32\mprdim.dll 2009-03-29 19:33:56 ----A---- C:\windows\system32\mprapi.dll 2009-03-29 19:33:56 ----A---- C:\windows\system32\mpr.dll 2009-03-29 19:33:56 ----A---- C:\windows\system32\mplay32.exe 2009-03-29 19:33:56 ----A---- C:\windows\system32\moricons.dll 2009-03-29 19:33:56 ----A---- C:\windows\system32\more.com 2009-03-29 19:33:56 ----A---- C:\windows\system32\modemui.dll 2009-03-29 19:33:56 ----A---- C:\windows\system32\mobsync.exe 2009-03-29 19:33:56 ----A---- C:\windows\system32\mobsync.dll 2009-03-29 19:33:56 ----A---- C:\windows\system32\mnmsrvc.exe 2009-03-29 19:33:56 ----A---- C:\windows\system32\mnmdd.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msdart.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msctfp.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msctf.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\mscpxl32.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\mscpx32r.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msconf.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\mscms.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msasn1.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msapsspc.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msafd.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msacm32.dll 2009-03-29 19:33:54 ----A---- C:\windows\system32\msdxmlc.dll 2009-03-29 19:33:54 ----A---- C:\windows\system32\msdtcuiu.dll 2009-03-29 19:33:54 ----A---- C:\windows\system32\msdtctm.dll 2009-03-29 19:33:54 ----A---- C:\windows\system32\msdtcprx.dll 2009-03-29 19:33:54 ----A---- C:\windows\system32\msdtclog.dll 2009-03-29 19:33:54 ----A---- C:\windows\system32\msdtc.exe 2009-03-29 19:33:54 ----A---- C:\windows\system32\msdmo.dll 2009-03-29 19:33:53 ----A---- C:\windows\system32\msi.dll 2009-03-29 19:33:53 ----A---- C:\windows\system32\msgina.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msoeacct.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msnsspc.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\mslbui.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msisip.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msimtf.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msimsg.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msimg32.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msihnd.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msiexec.exe 2009-03-29 19:33:52 ----A---- C:\windows\system32\msieftp.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msidle.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msident.dll 2009-03-29 19:33:51 ----A---- C:\windows\system32\mstinit.exe 2009-03-29 19:33:51 ----A---- C:\windows\system32\mstask.dll 2009-03-29 19:33:51 ----A---- C:\windows\system32\msrle32.dll 2009-03-29 19:33:51 ----A---- C:\windows\system32\msprivs.dll 2009-03-29 19:33:51 ----A---- C:\windows\system32\mspatcha.dll 2009-03-29 19:33:51 ----A---- C:\windows\system32\mspaint.exe 2009-03-29 19:33:51 ----A---- C:\windows\system32\msorcl32.dll 2009-03-29 19:33:51 ----A---- C:\windows\system32\msorc32r.dll 2009-03-29 19:33:51 ----A---- C:\windows\system32\msoert2.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\msvfw32.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\msvcrt40.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\msvcrt.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\msvcp60.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\msvcirt.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\msvbvm60.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\msutb.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\mstlsapi.dll 2009-03-29 19:33:49 ----A---- C:\windows\system32\msyuv.dll 2009-03-29 19:33:49 ----A---- C:\windows\system32\msxml2.dll 2009-03-29 19:33:49 ----A---- C:\windows\system32\msxml.dll 2009-03-29 19:33:49 ----A---- C:\windows\system32\mswsock.dll 2009-03-29 19:33:49 ----A---- C:\windows\system32\mswebdvd.dll 2009-03-29 19:33:49 ----A---- C:\windows\system32\msw3prt.dll 2009-03-29 19:33:49 ----A---- C:\windows\system32\msvidctl.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\netapi32.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\net1.exe 2009-03-29 19:33:48 ----A---- C:\windows\system32\net.exe 2009-03-29 19:33:48 ----A---- C:\windows\system32\nddenb32.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\nddeapir.exe 2009-03-29 19:33:48 ----A---- C:\windows\system32\nddeapi.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\ncobjapi.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\narrator.exe 2009-03-29 19:33:48 ----A---- C:\windows\system32\mydocs.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\mtxoci.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\mtxlegih.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\mtxex.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\mtxdm.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\mtxclu.dll 2009-03-29 19:33:47 ----A---- C:\windows\system32\netsh.exe 2009-03-29 19:33:47 ----A---- C:\windows\system32\netsetup.exe 2009-03-29 19:33:47 ----A---- C:\windows\system32\netrap.dll 2009-03-29 19:33:47 ----A---- C:\windows\system32\netplwiz.dll 2009-03-29 19:33:47 ----A---- C:\windows\system32\netman.dll 2009-03-29 19:33:47 ----A---- C:\windows\system32\netlogon.dll 2009-03-29 19:33:47 ----A---- C:\windows\system32\netid.dll 2009-03-29 19:33:47 ----A---- C:\windows\system32\netdde.exe 2009-03-29 19:33:47 ----A---- C:\windows\system32\netcfgx.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\ntmsdba.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\ntmsapi.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\ntmarta.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\ntlanman.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\ntdsapi.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\npptools.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\notepad.exe 2009-03-29 19:33:46 ----A---- C:\windows\system32\nmmkcert.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\nlhtml.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\newdev.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\netui1.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\netui0.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\netstat.exe 2009-03-29 19:33:46 ----A---- C:\windows\system32\netshell.dll 2009-03-29 19:33:46 ----A---- C:\windows\notepad.exe 2009-03-29 19:33:45 ----A---- C:\windows\system32\odbcad32.exe 2009-03-29 19:33:45 ----A---- C:\windows\system32\odbc32gt.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\odbc32.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\ocmanage.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\objsel.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\oakley.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\ntvdmd.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\ntshrui.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\ntmssvc.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\ntmsmgr.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\oddbse32.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbctrac.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbcp32r.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbcjt32.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbcji32.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbcint.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbccu32.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbccr32.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbccp32.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbcconf.exe 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbcconf.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbcbcp.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\osk.exe 2009-03-29 19:33:43 ----A---- C:\windows\system32\opengl32.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\olepro32.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\oleprn.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\oledlg.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\olecli32.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\ole32.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\offfilt.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\odtext32.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\odpdx32.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\odfox32.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\odexl32.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\ping.exe 2009-03-29 19:33:42 ----A---- C:\windows\system32\pid.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\photowiz.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\perfproc.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\perfos.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\perfnet.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\perfmon.exe 2009-03-29 19:33:42 ----A---- C:\windows\system32\perfdisk.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\pdh.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\pautoenr.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\packager.exe 2009-03-29 19:33:42 ----A---- C:\windows\system32\osuninst.dll 2009-03-29 19:33:41 ----A---- C:\windows\system32\psisdecd.dll 2009-03-29 19:33:41 ----A---- C:\windows\system32\psbase.dll 2009-03-29 19:33:41 ----A---- C:\windows\system32\psapi.dll 2009-03-29 19:33:41 ----A---- C:\windows\system32\proquota.exe 2009-03-29 19:33:41 ----A---- C:\windows\system32\progman.exe 2009-03-29 19:33:41 ----A---- C:\windows\system32\profmap.dll 2009-03-29 19:33:41 ----A---- C:\windows\system32\powrprof.dll 2009-03-29 19:33:41 ----A---- C:\windows\system32\polstore.dll 2009-03-29 19:33:41 ----A---- C:\windows\system32\pjlmon.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\qprocess.exe 2009-03-29 19:33:40 ----A---- C:\windows\system32\qmgrprxy.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\qedwipes.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\qedit.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\qdvd.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\qdv.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\qcap.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\pstorsvc.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\pstorec.dll 2009-03-29 19:33:39 ----A---- C:\windows\system32\rasphone.exe 2009-03-29 19:33:39 ----A---- C:\windows\system32\rasmans.dll 2009-03-29 19:33:39 ----A---- C:\windows\system32\raschap.dll 2009-03-29 19:33:39 ----A---- C:\windows\system32\rasadhlp.dll 2009-03-29 19:33:39 ----A---- C:\windows\system32\racpldlg.dll 2009-03-29 19:33:39 ----A---- C:\windows\system32\query.dll 2009-03-29 19:33:39 ----A---- C:\windows\system32\quartz.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\regsvc.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\regapi.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\reg.exe 2009-03-29 19:33:38 ----A---- C:\windows\system32\rdshost.exe 2009-03-29 19:33:38 ----A---- C:\windows\system32\rdsaddin.exe 2009-03-29 19:33:38 ----A---- C:\windows\system32\rdpwsx.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\rdpsnd.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\rdpdd.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\rdpclip.exe 2009-03-29 19:33:38 ----A---- C:\windows\system32\rdchost.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\rcp.exe 2009-03-29 19:33:38 ----A---- C:\windows\system32\rcimlby.exe 2009-03-29 19:33:38 ----A---- C:\windows\system32\rcbdyctl.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\rastls.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\rassapi.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\rasppp.dll 2009-03-29 19:33:37 ----A---- C:\windows\system32\rpcss.dll 2009-03-29 19:33:37 ----A---- C:\windows\system32\rpcrt4.dll 2009-03-29 19:33:37 ----A---- C:\windows\system32\riched20.dll 2009-03-29 19:33:37 ----A---- C:\windows\system32\rexec.exe 2009-03-29 19:33:37 ----A---- C:\windows\system32\resutils.dll 2009-03-29 19:33:37 ----A---- C:\windows\system32\remotepg.dll 2009-03-29 19:33:37 ----A---- C:\windows\system32\regwizc.dll 2009-03-29 19:33:37 ----A---- C:\windows\system32\regsvr32.exe 2009-03-29 19:33:36 ----A---- C:\windows\system32\scesrv.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\scecli.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\sccsccp.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\scarddlg.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\safrslv.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\safrdm.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\safrcdlg.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\runonce.exe 2009-03-29 19:33:36 ----A---- C:\windows\system32\rundll32.exe 2009-03-29 19:33:36 ----A---- C:\windows\system32\rtutils.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\rtipxmib.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\rtcshare.exe 2009-03-29 19:33:36 ----A---- C:\windows\system32\rsvpsp.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\rsmps.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\rsh.exe 2009-03-29 19:33:36 ----A---- C:\windows\system32\rsaenh.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\sfc.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\setup.exe 2009-03-29 19:33:35 ----A---- C:\windows\system32\sethc.exe 2009-03-29 19:33:35 ----A---- C:\windows\system32\servdeps.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\sensapi.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\sens.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\sendmail.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\sendcmsg.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\security.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\secur32.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\seclogon.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\sdbinst.exe 2009-03-29 19:33:35 ----A---- C:\windows\system32\scrrun.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\scrobj.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\sclgntfy.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\schedsvc.dll 2009-03-29 19:33:34 ----A---- C:\windows\system32\shdocvw.dll 2009-03-29 19:33:34 ----A---- C:\windows\system32\shdoclc.dll 2009-03-29 19:33:34 ----A---- C:\windows\system32\sfcfiles.dll 2009-03-29 19:33:34 ----A---- C:\windows\system32\sfc_os.dll 2009-03-29 19:33:32 ----A---- C:\windows\system32\shmgrate.exe 2009-03-29 19:33:32 ----A---- C:\windows\system32\shmedia.dll 2009-03-29 19:33:32 ----A---- C:\windows\system32\shlwapi.dll 2009-03-29 19:33:32 ----A---- C:\windows\system32\shimgvw.dll 2009-03-29 19:33:32 ----A---- C:\windows\system32\shimeng.dll 2009-03-29 19:33:32 ----A---- C:\windows\system32\shgina.dll 2009-03-29 19:33:32 ----A---- C:\windows\system32\shfolder.dll 2009-03-29 19:33:32 ----A---- C:\windows\system32\shell32.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\snmpapi.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\sndrec32.exe 2009-03-29 19:33:31 ----A---- C:\windows\system32\smlogsvc.exe 2009-03-29 19:33:31 ----A---- C:\windows\system32\smlogcfg.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\slbiop.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\slayerxp.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\skeys.exe 2009-03-29 19:33:31 ----A---- C:\windows\system32\sigverif.exe 2009-03-29 19:33:31 ----A---- C:\windows\system32\sigtab.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\shutdown.exe 2009-03-29 19:33:31 ----A---- C:\windows\system32\shsvcs.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\shscrap.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\shrpubw.exe 2009-03-29 19:33:30 ----A---- C:\windows\system32\srsvc.dll 2009-03-29 19:33:30 ----A---- C:\windows\system32\srrstr.dll 2009-03-29 19:33:30 ----A---- C:\windows\system32\srclient.dll 2009-03-29 19:33:30 ----A---- C:\windows\system32\sqlunirl.dll 2009-03-29 19:33:30 ----A---- C:\windows\system32\sqlsrv32.dll 2009-03-29 19:33:30 ----A---- C:\windows\system32\spoolsv.exe 2009-03-29 19:33:30 ----A---- C:\windows\system32\spoolss.dll 2009-03-29 19:33:30 ----A---- C:\windows\system32\spider.exe 2009-03-29 19:33:30 ----A---- C:\windows\system32\sort.exe 2009-03-29 19:33:30 ----A---- C:\windows\system32\snmpsnap.dll 2009-03-29 19:33:29 ----A---- C:\windows\system32\ssdpsrv.dll 2009-03-29 19:33:29 ----A---- C:\windows\system32\ssdpapi.dll 2009-03-29 19:33:28 ----A---- C:\windows\system32\storprop.dll 2009-03-29 19:33:28 ----A---- C:\windows\system32\stobject.dll 2009-03-29 19:33:28 ----A---- C:\windows\system32\stimon.exe 2009-03-29 19:33:28 ----A---- C:\windows\system32\sti_ci.dll 2009-03-29 19:33:28 ----A---- C:\windows\system32\sti.dll 2009-03-29 19:33:28 ----A---- C:\windows\system32\stclient.dll 2009-03-29 19:33:27 ----A---- C:\windows\system32\t2embed.dll 2009-03-29 19:33:27 ----A---- C:\windows\system32\sysocmgr.exe 2009-03-29 19:33:27 ----A---- C:\windows\system32\syncui.dll 2009-03-29 19:33:27 ----A---- C:\windows\system32\synceng.dll 2009-03-29 19:33:27 ----A---- C:\windows\system32\sxs.dll 2009-03-29 19:33:27 ----A---- C:\windows\system32\svchost.exe 2009-03-29 19:33:26 ----A---- C:\windows\system32\themeui.dll 2009-03-29 19:33:26 ----A---- C:\windows\system32\termsrv.dll 2009-03-29 19:33:26 ----A---- C:\windows\system32\termmgr.dll 2009-03-29 19:33:26 ----A---- C:\windows\system32\telnet.exe 2009-03-29 19:33:26 ----A---- C:\windows\system32\tcpmon.dll 2009-03-29 19:33:26 ----A---- C:\windows\system32\tcpmib.dll 2009-03-29 19:33:26 ----A---- C:\windows\system32\taskmgr.exe 2009-03-29 19:33:26 ----A---- C:\windows\system32\tapisrv.dll 2009-03-29 19:33:26 ----A---- C:\windows\system32\tapi32.dll 2009-03-29 19:33:26 ----A---- C:\windows\system32\tapi3.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\umpnpmgr.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\umandlg.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\udhisapi.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\txflog.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\tsddd.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\tscfgwmi.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\trkwks.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\tree.com 2009-03-29 19:33:25 ----A---- C:\windows\system32\tracert.exe 2009-03-29 19:33:25 ----A---- C:\windows\system32\tourstart.exe 2009-03-29 19:33:24 ----A---- C:\windows\system32\user32.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\usbui.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\usbmon.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\ups.exe 2009-03-29 19:33:24 ----A---- C:\windows\system32\upnpui.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\upnphost.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\upnpcont.exe 2009-03-29 19:33:24 ----A---- C:\windows\system32\upnp.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\uniplat.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\unimdmat.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\uniime.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\verifier.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\vdmredir.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\vdmdbg.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\vbscript.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\vbajet32.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\uxtheme.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\utilman.exe 2009-03-29 19:33:23 ----A---- C:\windows\system32\usp10.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\userenv.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\webvw.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\webclnt.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\wdigest.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\wavemsp.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\w32time.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\vssvc.exe 2009-03-29 19:33:22 ----A---- C:\windows\system32\vssapi.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\vfwwdm32.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\version.dll 2009-03-29 19:33:21 ----A---- C:\windows\system32\wiavideo.dll 2009-03-29 19:33:21 ----A---- C:\windows\system32\wiashext.dll 2009-03-29 19:33:21 ----A---- C:\windows\system32\wiaservc.dll 2009-03-29 19:33:21 ----A---- C:\windows\system32\wiascr.dll 2009-03-29 19:33:21 ----A---- C:\windows\system32\wiadss.dll 2009-03-29 19:33:21 ----A---- C:\windows\system32\wiadefui.dll 2009-03-29 19:33:21 ----A---- C:\windows\system32\wiaacmgr.exe 2009-03-29 19:33:21 ----A---- C:\windows\system32\wextract.exe 2009-03-29 19:33:20 ----A---- C:\windows\system32\wintrust.dll 2009-03-29 19:33:20 ----A---- C:\windows\system32\winsta.dll 2009-03-29 19:33:20 ----A---- C:\windows\system32\winsrv.dll 2009-03-29 19:33:20 ----A---- C:\windows\system32\winscard.dll 2009-03-29 19:33:20 ----A---- C:\windows\system32\winrnr.dll 2009-03-29 19:33:20 ----A---- C:\windows\system32\winntbbu.dll 2009-03-29 19:33:20 ----A---- C:\windows\system32\winmm.dll 2009-03-29 19:33:20 ----A---- C:\windows\system32\winlogon.exe 2009-03-29 19:33:20 ----A---- C:\windows\system32\winipsec.dll 2009-03-29 19:33:19 ----A---- C:\windows\system32\wow32.dll 2009-03-29 19:33:19 ----A---- C:\windows\system32\wmstream.dll 2009-03-29 19:33:19 ----A---- C:\windows\system32\wmsdmoe.dll 2009-03-29 19:33:19 ----A---- C:\windows\system32\wmi.dll 2009-03-29 19:33:19 ----A---- C:\windows\system32\wlnotify.dll 2009-03-29 19:33:19 ----A---- C:\windows\system32\wldap32.dll 2009-03-29 19:33:19 ----A---- C:\windows\system32\winver.exe 2009-03-29 19:33:18 ----A---- C:\windows\system32\wtsapi32.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wstdecod.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wsock32.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wsnmp32.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wshtcpip.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wshrm.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wship6.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wshext.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wshcon.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wscript.exe 2009-03-29 19:33:18 ----A---- C:\windows\system32\ws2help.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\ws2_32.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wpnpinst.exe 2009-03-29 19:33:18 ----A---- C:\windows\system32\wpabaln.exe 2009-03-29 19:33:17 ----A---- C:\windows\system32\zipfldr.dll 2009-03-29 19:33:17 ----A---- C:\windows\system32\xolehlp.dll 2009-03-29 19:33:17 ----A---- C:\windows\system32\xcopy.exe 2009-03-29 19:33:17 ----A---- C:\windows\system32\xactsrv.dll 2009-03-29 19:33:17 ----A---- C:\windows\system32\wzcsvc.dll 2009-03-29 19:33:17 ----A---- C:\windows\system32\wzcsapi.dll 2009-03-29 19:33:17 ----A---- C:\windows\system32\wzcdlg.dll 2009-03-29 19:33:15 ----A---- C:\windows\system32\comdlg32.dll 2009-03-29 19:33:15 ----A---- C:\windows\system32\comctl32.dll 2009-03-29 19:33:15 ----A---- C:\windows\system32\cmd.exe 2009-03-29 19:33:15 ----A---- C:\windows\system32\cacls.exe 2009-03-29 19:33:15 ----A---- C:\windows\system32\autoconv.exe 2009-03-29 19:33:15 ----A---- C:\windows\system32\autochk.exe 2009-03-29 19:33:15 ----A---- C:\windows\system32\advapi32.dll 2009-03-29 19:33:14 ----A---- C:\windows\system32\localspl.dll 2009-03-29 19:33:14 ----A---- C:\windows\system32\lmhsvc.dll 2009-03-29 19:33:14 ----A---- C:\windows\system32\kernel32.dll 2009-03-29 19:33:14 ----A---- C:\windows\system32\imagehlp.dll 2009-03-29 19:33:14 ----A---- C:\windows\system32\ftp.exe 2009-03-29 19:33:14 ----A---- C:\windows\system32\format.com 2009-03-29 19:33:14 ----A---- C:\windows\system32\dhcpcsvc.dll 2009-03-29 19:33:14 ----A---- C:\windows\system32\csrsrv.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\ntprint.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\ntlsapi.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\ntdll.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\nslookup.exe 2009-03-29 19:33:13 ----A---- C:\windows\system32\msv1_0.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\msgsvc.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\mgmtapi.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\lsasrv.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\locator.exe 2009-03-29 19:33:12 ----A---- C:\windows\system32\rasauto.dll 2009-03-29 19:33:12 ----A---- C:\windows\system32\rasapi32.dll 2009-03-29 19:33:12 ----A---- C:\windows\system32\printui.dll 2009-03-29 19:33:12 ----A---- C:\windows\system32\perfctrs.dll 2009-03-29 19:33:12 ----A---- C:\windows\system32\olecnv32.dll 2009-03-29 19:33:12 ----A---- C:\windows\system32\oleaut32.dll 2009-03-29 19:33:12 ----A---- C:\windows\system32\nwprovau.dll 2009-03-29 19:33:12 ----A---- C:\windows\system32\ntvdm.exe 2009-03-29 19:33:11 ----A---- C:\windows\system32\schannel.dll 2009-03-29 19:33:11 ----A---- C:\windows\system32\scardsvr.exe 2009-03-29 19:33:11 ----A---- C:\windows\system32\savedump.exe 2009-03-29 19:33:11 ----A---- C:\windows\system32\samsrv.dll 2009-03-29 19:33:11 ----A---- C:\windows\system32\samlib.dll 2009-03-29 19:33:11 ----A---- C:\windows\system32\rshx32.dll 2009-03-29 19:33:11 ----A---- C:\windows\system32\rastapi.dll 2009-03-29 19:33:11 ----A---- C:\windows\system32\rasman.dll 2009-03-29 19:33:11 ----A---- C:\windows\system32\rasdlg.dll 2009-03-29 19:33:10 ----A---- C:\windows\system32\syssetup.dll 2009-03-29 19:33:10 ----A---- C:\windows\system32\srvsvc.dll 2009-03-29 19:33:10 ----A---- C:\windows\system32\smss.exe 2009-03-29 19:33:10 ----A---- C:\windows\system32\setupapi.dll 2009-03-29 19:33:10 ----A---- C:\windows\system32\sessmgr.exe 2009-03-29 19:33:10 ----A---- C:\windows\system32\services.exe 2009-03-29 19:33:09 ----A---- C:\windows\system32\wkssvc.dll 2009-03-29 19:33:09 ----A---- C:\windows\system32\win32spl.dll 2009-03-29 19:33:09 ----A---- C:\windows\system32\userinit.exe 2009-03-29 19:33:09 ----A---- C:\windows\system32\untfs.dll 2009-03-29 19:33:09 ----A---- C:\windows\system32\ulib.dll 2009-03-29 19:33:09 ----A---- C:\windows\system32\tcpmonui.dll 2009-03-29 19:33:00 ----A---- C:\windows\system32\ntkrnlpa.exe 2009-03-29 19:33:00 ----A---- C:\windows\system32\HAL.DLL 2009-03-29 19:32:59 ----A---- C:\windows\system32\ntoskrnl.exe 2009-03-29 18:10:23 ----HDC---- C:\windows\$NtUninstallXPSEPSCLP$ 2009-03-29 17:47:21 ----D---- C:\d70f59010c1c22b2bc99e1709048eacd 2009-03-29 17:33:39 ----HDC---- C:\windows\$NtUninstallKB950749$ 2009-03-29 17:30:24 ----D---- C:\windows\ie7updates 2009-03-29 17:20:36 ----D---- C:\windows\network diagnostic 2009-03-29 17:20:31 ----HDC---- C:\windows\$NtUninstallKB914440$ 2009-03-29 17:11:44 ----HDC---- C:\windows\$NtUninstallKB945553$ 2009-03-29 17:11:34 ----HDC---- C:\windows\$NtUninstallKB943055$ 2009-03-29 17:11:25 ----HDC---- C:\windows\$NtUninstallKB946026$ 2009-03-29 17:11:14 ----HDC---- C:\windows\$NtUninstallKB943485$ 2009-03-29 17:11:01 ----HDC---- C:\windows\$NtUninstallKB937894$ 2009-03-29 17:10:50 ----HDC---- C:\windows\$NtUninstallKB944653$ 2009-03-29 17:10:39 ----HDC---- C:\windows\$NtUninstallKB933729$ 2009-03-29 17:10:27 ----HDC---- C:\windows\$NtUninstallKB938127$ 2009-03-29 17:10:17 ----HDC---- C:\windows\$NtUninstallKB938828$ 2009-03-29 17:10:08 ----HDC---- C:\windows\$NtUninstallKB935839$ 2009-03-29 17:09:29 ----HDC---- C:\windows\$NtUninstallKB929123$ 2009-03-28 17:00:30 ----HDC---- C:\windows\$NtUninstallKB951376-v2_0$ 2009-03-28 17:00:21 ----HDC---- C:\windows\$NtUninstallKB952954_0$ 2009-03-28 17:00:14 ----HDC---- C:\windows\$NtUninstallKB946648_0$ 2009-03-28 17:00:05 ----HDC---- C:\windows\$NtUninstallKB956803_0$ 2009-03-28 16:59:14 ----HDC---- C:\windows\$NtUninstallKB955839$ 2009-03-28 16:58:48 ----HDC---- C:\windows\$NtUninstallKB958215_0$ 2009-03-28 16:58:19 ----HDC---- C:\windows\$NtUninstallKB950974_0$ 2009-03-28 16:58:11 ----HDC---- C:\windows\$NtUninstallKB951698_0$ 2009-03-28 16:57:20 ----HDC---- C:\windows\$NtUninstallKB960225_0$ 2009-03-28 16:56:41 ----HDC---- C:\windows\$NtUninstallKB956841_0$ 2009-03-28 16:55:58 ----HDC---- C:\windows\$NtUninstallKB960714_0$ 2009-03-28 16:53:58 ----HDC---- C:\windows\$NtUninstallKB938464-v2_0$ 2009-03-28 16:53:45 ----HDC---- C:\windows\$NtUninstallKB925720$ 2009-03-28 16:52:28 ----HDC---- C:\windows\$NtUninstallKB952069_WM9$ 2009-03-28 16:49:32 ----HDC---- C:\windows\$NtUninstallKB941569$ 2009-03-28 16:48:47 ----HDC---- C:\windows\$NtUninstallKB950762_0$ 2009-03-28 16:48:39 ----HDC---- C:\windows\$NtUninstallKB957097_0$ 2009-03-28 16:48:32 ----HDC---- C:\windows\$NtUninstallKB960715$ 2009-03-28 16:48:25 ----HDC---- C:\windows\$NtUninstallKB958687_0$ 2009-03-28 16:48:17 ----HDC---- C:\windows\$NtUninstallKB952287_0$ 2009-03-28 16:45:55 ----HDC---- C:\windows\$NtUninstallKB967715_0$ 2009-03-28 16:45:36 ----HDC---- C:\windows\$NtUninstallKB929399$ 2009-03-28 16:44:17 ----HDC---- C:\windows\$NtUninstallKB950760$ 2009-03-28 16:43:43 ----HDC---- C:\windows\$NtUninstallKB951066_0$ 2009-03-28 16:43:26 ----HDC---- C:\windows\$NtUninstallKB958690_0$ 2009-03-28 16:42:47 ----HDC---- C:\windows\$NtUninstallKB951748_0$ 2009-03-28 16:40:58 ----HDC---- C:\windows\$NtUninstallKB954600_0$ 2009-03-28 16:40:50 ----HDC---- C:\windows\$NtUninstallKB958644_0$ 2009-03-28 16:40:41 ----HDC---- C:\windows\$NtUninstallKB955069_0$ 2009-03-28 16:40:19 ----HDC---- C:\windows\$NtUninstallKB956802_0$ 2009-03-28 16:39:31 ----HDC---- C:\windows\$NtUninstallKB944338-v2$ 2009-03-28 16:38:47 ----HDC---- C:\windows\$NtUninstallKB936782_WMP10$ 2009-03-28 12:06:40 ----N---- C:\windows\system32\wlanapi.dll 2009-03-28 12:06:25 ----N---- C:\windows\system32\tspkg.dll 2009-03-28 12:06:25 ----N---- C:\windows\system32\tsgqec.dll 2009-03-28 12:06:08 ----N---- C:\windows\system32\setupn.exe 2009-03-28 12:06:03 ----N---- C:\windows\system32\rhttpaa.dll 2009-03-28 12:06:01 ----N---- C:\windows\system32\rasqec.dll 2009-03-28 12:06:01 ----N---- C:\windows\system32\qutil.dll 2009-03-28 12:05:59 ----N---- C:\windows\system32\qcliprov.dll 2009-03-28 12:05:59 ----N---- C:\windows\system32\qagentrt.dll 2009-03-28 12:05:58 ----N---- C:\windows\system32\qagent.dll 2009-03-28 12:05:52 ----N---- C:\windows\system32\onex.dll 2009-03-28 12:05:40 ----N---- C:\windows\system32\napstat.exe 2009-03-28 12:05:40 ----N---- C:\windows\system32\napmontr.dll 2009-03-28 12:05:40 ----N---- C:\windows\system32\napipsec.dll 2009-03-28 12:05:35 ----N---- C:\windows\system32\msshavmsg.dll 2009-03-28 12:05:35 ----N---- C:\windows\system32\mssha.dll 2009-03-28 12:05:14 ----N---- C:\windows\system32\mmcperf.exe 2009-03-28 12:05:13 ----N---- C:\windows\system32\mmcfxcommon.dll 2009-03-28 12:05:13 ----N---- C:\windows\system32\mmcex.dll 2009-03-28 12:05:13 ----N---- C:\windows\system32\microsoft.managementconsole.dll 2009-03-28 12:04:56 ----N---- C:\windows\system32\l2gpstore.dll 2009-03-28 12:04:55 ----N---- C:\windows\system32\kmsvc.dll 2009-03-28 12:04:54 ----N---- C:\windows\system32\kbdpash.dll 2009-03-28 12:04:54 ----N---- C:\windows\system32\kbdnepr.dll 2009-03-28 12:04:54 ----N---- C:\windows\system32\kbdiultn.dll 2009-03-28 12:04:54 ----N---- C:\windows\system32\kbdbhc.dll 2009-03-28 12:04:49 ----N---- C:\windows\system32\smtpapi.dll 2009-03-28 12:04:48 ----N---- C:\windows\system32\rwnh.dll 2009-03-28 12:04:31 ----A---- C:\windows\003506_.tmp 2009-03-28 12:04:27 ----N---- C:\windows\system32\eapsvc.dll 2009-03-28 12:04:27 ----N---- C:\windows\system32\eapqec.dll 2009-03-28 12:04:27 ----N---- C:\windows\system32\eappprxy.dll 2009-03-28 12:04:26 ----N---- C:\windows\system32\eapphost.dll 2009-03-28 12:04:26 ----N---- C:\windows\system32\eappgnui.dll 2009-03-28 12:04:26 ----N---- C:\windows\system32\eappcfg.dll 2009-03-28 12:04:26 ----N---- C:\windows\system32\eapp3hst.dll 2009-03-28 12:04:26 ----N---- C:\windows\system32\eapolqec.dll 2009-03-28 12:04:21 ----N---- C:\windows\system32\dot3ui.dll 2009-03-28 12:04:21 ----N---- C:\windows\system32\dot3svc.dll 2009-03-28 12:04:21 ----N---- C:\windows\system32\dot3msm.dll 2009-03-28 12:04:21 ----N---- C:\windows\system32\dot3gpclnt.dll 2009-03-28 12:04:21 ----N---- C:\windows\system32\dot3dlg.dll 2009-03-28 12:04:21 ----N---- C:\windows\system32\dot3cfg.dll 2009-03-28 12:04:21 ----N---- C:\windows\system32\dot3api.dll 2009-03-28 12:04:19 ----N---- C:\windows\system32\dimsroam.dll 2009-03-28 12:04:19 ----N---- C:\windows\system32\dimsntfy.dll 2009-03-28 12:04:18 ----N---- C:\windows\system32\dhcpqec.dll 2009-03-28 12:04:14 ----N---- C:\windows\system32\credssp.dll 2009-03-28 12:04:04 ----N---- C:\windows\system32\bitsprx4.dll 2009-03-28 12:04:04 ----N---- C:\windows\system32\azroles.dll 2009-03-28 12:03:51 ----N---- C:\windows\system32\aaclient.dll 2009-03-28 08:57:08 ----SHDC---- C:\Program Files\Fichiers communs\WindowsLiveInstaller 2009-03-28 08:56:33 ----D---- C:\Program Files\Windows Live 2009-03-28 08:55:36 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller 2009-03-28 08:38:36 ----A---- C:\windows\system32\mucltui.dll.mui 2009-03-28 08:38:04 ----A---- C:\windows\system32\wucltui.dll.mui 2009-03-28 08:38:04 ----A---- C:\windows\system32\wuaueng.dll.mui 2009-03-28 08:38:04 ----A---- C:\windows\system32\wuapi.dll.mui 2009-03-27 12:10:25 ----A---- C:\windows\ntbtlog.txt 2009-03-26 22:21:56 ----A---- C:\windows\wininit.ini 2009-03-26 21:33:59 ----D---- C:\Program Files\Spybot - Search & Destroy 2009-03-26 21:33:59 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2009-03-26 21:11:43 ----D---- C:\logiciel 2009-03-26 18:24:46 ----D---- C:\windows\WBEM 2009-03-26 18:24:45 ----D---- C:\windows\system32\fr-fr 2009-03-26 18:22:16 ----HDC---- C:\windows\$NtServicePackUninstallIDNMitigationAPIs$ 2009-03-26 18:19:02 ----HDC---- C:\windows\$NtServicePackUninstallNLSDownlevelMapping$ 2009-03-26 18:17:34 ----HDC---- C:\windows\$NtUninstallKB915865$ 2009-03-26 16:35:50 ----A---- C:\windows\system32\aswBoot.exe 2009-03-26 16:35:44 ----D---- C:\Program Files\Alwil Software ======List of files/folders modified in the last 1 months====== 2009-04-08 23:14:00 ----SHD---- C:\windows\Installer 2009-04-08 23:12:54 ----AD---- C:\Program Files 2009-04-08 22:55:14 ----D---- C:\windows\Temp 2009-04-08 22:53:28 ----AD---- C:\WINDOWS 2009-04-08 22:52:25 ----A---- C:\windows\SchedLgU.Txt 2009-04-08 22:38:56 ----SD---- C:\windows\Downloaded Program Files 2009-04-08 19:38:37 ----RSHDC---- C:\windows\system32\dllcache 2009-04-08 19:38:36 ----D---- C:\windows\system32 2009-04-08 19:38:35 ----HD---- C:\windows\inf 2009-04-08 19:38:35 ----D---- C:\windows\Help 2009-04-08 19:38:35 ----D---- C:\Program Files\Internet Explorer 2009-04-08 19:36:58 ----D---- C:\windows\system32\CatRoot2 2009-04-08 16:45:22 ----D---- C:\windows\system32\CatRoot 2009-04-08 16:33:34 ----A---- C:\windows\imsins.BAK 2009-04-08 16:07:00 ----D---- C:\windows\Media 2009-04-08 15:58:39 ----HD---- C:\windows\$hf_mig$ 2009-04-08 14:07:12 ----D---- C:\windows\system32\drivers 2009-04-07 10:09:10 ----A---- C:\windows\winamp.ini 2009-04-05 08:46:08 ----D---- C:\windows\WinSxS 2009-04-04 23:15:47 ----A---- C:\windows\OEWABLog.txt 2009-04-04 23:15:00 ----A---- C:\windows\setuplog.txt 2009-04-04 23:00:34 ----A---- C:\windows\system32\PerfStringBackup.INI 2009-04-04 22:57:21 ----D---- C:\windows\system32\Setup 2009-04-04 22:57:21 ----D---- C:\windows\AppPatch 2009-04-04 22:57:21 ----D---- C:\Program Files\Messenger 2009-04-04 22:57:20 ----D---- C:\windows\system32\wbem 2009-04-04 22:57:19 ----RSD---- C:\windows\Fonts 2009-04-04 22:11:30 ----A---- C:\windows\iis6.BAK 2009-04-04 21:59:28 ----D---- C:\windows\security 2009-04-04 21:45:05 ----D---- C:\windows\ServicePackFiles 2009-04-04 21:45:03 ----D---- C:\windows\EHome 2009-04-04 21:44:58 ----D---- C:\windows\system32\inetsrv 2009-04-04 21:44:57 ----D---- C:\windows\ime 2009-04-04 21:44:13 ----D---- C:\windows\system32\usmt 2009-04-04 21:44:02 ----D---- C:\windows\system32\bits 2009-04-04 21:44:02 ----D---- C:\windows\peernet 2009-04-04 21:44:01 ----D---- C:\Program Files\Movie Maker 2009-04-04 21:37:49 ----D---- C:\windows\system32\Restore 2009-04-04 21:37:48 ----D---- C:\windows\system32\npp 2009-04-04 21:37:45 ----D---- C:\windows\msagent 2009-04-04 21:37:41 ----D---- C:\windows\srchasst 2009-04-04 21:37:35 ----D---- C:\Program Files\NetMeeting 2009-04-04 21:37:30 ----D---- C:\windows\system32\Com 2009-04-04 21:37:21 ----D---- C:\Program Files\Windows Media Player 2009-04-04 21:37:08 ----D---- C:\Program Files\Windows NT 2009-04-04 21:37:07 ----D---- C:\Program Files\Outlook Express 2009-04-04 21:36:56 ----D---- C:\Program Files\Fichiers communs\System 2009-04-04 21:36:31 ----D---- C:\windows\system32\oobe 2009-04-04 21:36:29 ----D---- C:\windows\system 2009-04-04 21:32:10 ----D---- C:\windows\system32\ReinstallBackups 2009-04-01 07:27:47 ----A---- C:\windows\win.ini 2009-04-01 07:27:47 ----A---- C:\windows\system.ini 2009-03-31 09:49:14 ----HD---- C:\Program Files\InstallShield Installation Information 2009-03-31 09:31:56 ----D---- C:\windows\Globalization 2009-03-31 09:31:54 ----D---- C:\windows\Minidump 2009-03-31 09:25:53 ----D---- C:\Program Files\Fichiers communs\InstallShield 2009-03-30 01:46:06 ----SD---- C:\windows\Tasks 2009-03-29 19:09:02 ----D---- C:\windows\Microsoft.NET 2009-03-29 19:08:57 ----RSD---- C:\windows\assembly 2009-03-29 18:09:05 ----D---- C:\windows\system32\XPSViewer 2009-03-29 17:49:21 ----D---- C:\windows\system32\en-us 2009-03-28 16:50:14 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared 2009-03-28 10:03:51 ----D---- C:\windows\Debug 2009-03-28 09:54:48 ----DC---- C:\windows\system32\DRVSTORE 2009-03-28 08:57:08 ----D---- C:\Program Files\Fichiers communs 2009-03-27 10:58:48 ----D---- C:\Program Files\psdriver 2009-03-27 10:52:52 ----D---- C:\Program Files\DNS 2009-03-26 17:53:36 ----D---- C:\windows\system32\config 2009-03-26 17:53:31 ----D---- C:\Program Files\PrintView 2009-03-26 16:22:07 ----D---- C:\Program Files\EPSON 2009-03-10 22:18:20 ----N---- C:\windows\system32\WgaTray.exe 2009-03-10 22:18:20 ----A---- C:\windows\system32\LegitCheckControl.dll 2009-03-10 22:18:00 ----A---- C:\windows\system32\WgaLogon.dll ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\windows\system32\drivers\Aavmker4.sys [2007-09-06 26624] R1 AmdK7;Pilote de processeur AMD K7; C:\windows\System32\DRIVERS\amdk7.sys [2008-04-13 41856] R1 aswTdi;avast! Network Shield Support; C:\windows\system32\drivers\aswTdi.sys [2007-09-06 42912] R1 prodrv06;StarForce Protection Environment Driver v6; C:\windows\System32\drivers\prodrv06.sys [2003-10-10 52128] R2 aswMon2;avast! Standard Shield Support; C:\windows\system32\drivers\aswMon2.sys [2007-09-06 94416] R2 hwpsgt;hwpsgt; C:\windows\System32\DRIVERS\hwpsgt.sys [2006-01-11 137344] R2 lemsgt;lemsgt; C:\windows\System32\DRIVERS\lemsgt.sys [2006-01-11 9472] R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\System32\DRIVERS\AGRSM.sys [2006-01-25 1149888] R3 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr.sys [2007-09-06 23152] R3 FET5X86V;VIA Rhine-Family Fast-Ethernet Adapter Driver Service; C:\windows\system32\DRIVERS\fetnd5bv.sys [2006-08-31 43008] R3 MODEMCSA;Périphérique de filtrage de flux Unimodem; C:\windows\system32\drivers\MODEMCSA.sys [2001-08-17 16128] R3 usbhub;Concentrateur USB2; C:\windows\System32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 usbstor;Pilote de stockage de masse USB; C:\windows\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\windows\System32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 viagfx;viagfx; C:\windows\System32\DRIVERS\vtmini.sys [2004-02-04 134144] R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\windows\system32\drivers\vinyl97.sys [2004-09-06 161536] S1 kbdhid;Pilote HID de clavier; C:\windows\system32\DRIVERS\kbdhid.sys [2008-04-13 14720] S3 aaudstum;aaudstum; \??\C:\DOCUME~1\Manuella\LOCALS~1\Temp\aaudstum.sys [] S3 catchme;catchme; \??\C:\DOCUME~1\Manuella\LOCALS~1\Temp\catchme.sys [] S3 CCDECODE;Décodeur sous-titre fermé; C:\windows\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\windows\System32\DRIVERS\fetnd5.sys [2001-08-17 27165] S3 HidUsb;Pilote de classe HID Microsoft; C:\windows\System32\DRIVERS\hidusb.sys [2008-04-13 10368] S3 mouhid;Pilote HID de souris; C:\windows\System32\DRIVERS\mouhid.sys [2001-08-23 12288] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\windows\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\windows\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; C:\windows\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\windows\system32\DRIVERS\pccsmcfd.sys [] S3 SLIP;Détrameur décalage BDA; C:\windows\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 SQTECH905C;DualCamera; C:\windows\System32\Drivers\Capt905c.sys [2005-06-17 33545] S3 streamip;BDA IPSink; C:\windows\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 usbccgp;Pilote parent générique USB Microsoft; C:\windows\System32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 usbprint;Classe d'imprimantes USB Microsoft; C:\windows\system32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 usbscan;Pilote de scanneur USB; C:\windows\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\windows\system32\DRIVERS\w810bus.sys [2006-02-20 58288] S3 w810mdfl;Sony Ericsson W810 USB WMC Modem Filter; C:\windows\system32\DRIVERS\w810mdfl.sys [2006-02-20 8336] S3 w810mdm;Sony Ericsson W810 USB WMC Modem Driver; C:\windows\system32\DRIVERS\w810mdm.sys [2006-02-20 94064] S3 w810mgmt;Sony Ericsson W810 USB WMC Device Management Drivers (WDM); C:\windows\system32\DRIVERS\w810mgmt.sys [2006-02-20 85408] S3 w810obex;Sony Ericsson W810 USB WMC OBEX Interface; C:\windows\system32\DRIVERS\w810obex.sys [2006-02-20 83344] S3 WpdUsb;WpdUsb; C:\windows\system32\DRIVERS\wpdusb.sys [2006-10-18 38528] S3 WSTCODEC;Codec Teletext standard; C:\windows\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\windows\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] S3 ZSMC301b;Philips SPC 200NC PC Camera; C:\windows\System32\Drivers\usbVM31b.sys [] S4 IntelIde;IntelIde; C:\windows\system32\drivers\IntelIde.sys [] S4 mchInjDrv;mchInjDrv; \??\C:\DOCUME~1\Manuella\LOCALS~1\Temp\mc22.tmp [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2007-09-06 16248] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2007-09-06 132472] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-31 152984] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\windows\system32\svchost.exe [2008-04-13 14336] R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2007-09-06 243064] R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2007-09-06 345464] S3 aspnet_state;Service d'état ASP.NET; C:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632] S3 idsvc;Windows CardSpace; C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328] S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF-----------------
-
salut voici le rapport toolbar-S&D -----------\\ ToolBar S&D 1.2.8 XP/Vista Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : AMD Athlon XP 2400+ ) BIOS : Phoenix - AwardBIOS v6.00PG USER : Manuella ( Administrator ) BOOT : Normal boot Antivirus : avast! antivirus 4.7.1043 [VPS 090408-0] 4.7.1043 (Activated) C:\ (Local Disk) - NTFS - Total:32 Go (Free:20 Go) D:\ (USB) E:\ (USB) F:\ (USB) G:\ (USB) H:\ (CD or DVD) I:\ (CD or DVD) J:\ (Local Disk) - FAT - Total:0 Go (Free:0 Go) "C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 ) Option : [1] ( 08/04/2009|22:02 ) -----------\\ Recherche de Fichiers / Dossiers ... -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "SearchAssistent"="http://www.the-exit.com/search" "SearchURL"="about:blank" "Default_Search_URL"="http://ie.search.msn.com" "Start Page"="http://www.google.fr/" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Local Page"="C:\\windows\\system32\\blank.htm" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome" "Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"'>http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home" --------------------\\ Recherche d'autres infections --------------------\\ Cracks & Keygens .. C:\DOCUME~1\Manuella\Bureau\Microsoft_Windows_2003_and_XP_Anti_Product_Activation_Crack_v1[1].6.2.zip C:\DOCUME~1\Manuella\Recent\Microsoft_Windows_2003_and_XP_Anti_Product_Activation_Crack_v1[1].6.2.lnk 1 - "C:\ToolBar SD\TB_1.txt" - 08/04/2009|22:03 - Option : [1] -----------\\ Fin du rapport a 22:03:06,43
-
mille excuses dix mille excuses voici le rapport du scanne navilog Clean Navipromo version 3.7.6 commencé le 08/04/2009 à 11:51:21,93 Outil exécuté depuis C:\Program Files\navilog1 Mise à jour le 14.03.2009 à 18h00 par IL-MAFIOSO Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : AMD Athlon XP 2400+ ) BIOS : Phoenix - AwardBIOS v6.00PG USER : Manuella ( Administrator ) BOOT : Normal boot Antivirus : avast! antivirus 4.7.1043 [VPS 090408-0] 4.7.1043 (Activated) C:\ (Local Disk) - NTFS - Total:32 Go (Free:17 Go) D:\ (USB) E:\ (USB) F:\ (USB) G:\ (USB) H:\ (CD or DVD) I:\ (CD or DVD) J:\ (Local Disk) - FAT - Total:0 Go (Free:0 Go) Mode suppression automatique avec prise en charge résultats Catchme et GNS Nettoyage exécuté au redémarrage de l'ordinateur *** fsbl1.txt non trouvé *** (Assurez-vous que Catchme n'avait rien trouvé lors de la recherche) *** Suppression avec sauvegardes résultats GenericNaviSearch *** * Suppression dans "C:\windows\System32" * * Suppression dans "C:\Documents and Settings\Manuella\locals~1\applic~1" * *** Suppression dossiers dans "C:\windows" *** *** Suppression dossiers dans "C:\Program Files" *** *** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" *** *** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1" *** *** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\Manuella\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\Manuella\locals~1\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\Manuella\menudm~1\progra~1" *** *** Suppression fichiers *** C:\windows\Downloaded Program Files\egaccess4.inf supprimé ! C:\windows\Downloaded Program Files\IaLdr32.inf supprimé ! C:\windows\pack.epk supprimé ! C:\windows\tmlpcert2007 supprimé ! *** Suppression fichiers temporaires *** Nettoyage contenu C:\windows\Temp effectué ! Nettoyage contenu C:\Documents and Settings\Manuella\locals~1\Temp effectué ! *** Traitement Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Suppression avec sauvegardes nouveaux fichiers Instant Access : 2)Recherche, création sauvegardes et suppression Heuristique : * Dans "C:\windows\system32" * orzkemayv_navtmp.dat trouvé ! Copie orzkemayv_navtmp.dat réalisée avec succès ! orzkemayv_navtmp.dat supprimé ! * Dans "C:\Documents and Settings\Manuella\locals~1\applic~1" * *** Sauvegarde du Registre vers dossier Safebackup *** sauvegarde du Registre réalisée avec succès ! *** Nettoyage Registre *** Nettoyage Registre Ok *** Certificats *** Certificat Egroup supprimé ! Certificat Electronic-Group absent ! Certificat Montorgueil absent ! Certificat OOO-Favorit absent ! Certificat Sunny-Day-Design-Ltdt absent ! *** Recherche autres dossiers et fichiers connus *** *** Nettoyage terminé le 08/04/2009 à 11:55:25,39 ***
-
Désolé tout le message n'est pa arrivé voici le reste des rapports RSIT log Logfile of random's system information tool 1.06 (written by random/random) Run by Manuella at 2009-04-08 14:16:04 Microsoft Windows XP Professionnel Service Pack 3 System drive C: has 18 GB (54%) free of 33 GB Total RAM: 479 MB (33% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:16:11, on 08/04/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\windows\System32\smss.exe C:\windows\system32\csrss.exe C:\windows\system32\winlogon.exe C:\windows\system32\services.exe C:\windows\system32\lsass.exe C:\windows\system32\svchost.exe C:\windows\system32\svchost.exe C:\windows\System32\svchost.exe C:\windows\system32\svchost.exe C:\windows\System32\svchost.exe C:\windows\System32\svchost.exe C:\windows\Explorer.EXE C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\windows\system32\spoolsv.exe C:\Program Files\VIAudioi\SBADeck\ADeck.exe C:\windows\AGRSMMSG.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe C:\Program Files\Winamp\Winampa.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\SuperCopier2\SuperCopier2.exe C:\windows\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe C:\WINDOWS\System32\cisvc.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe C:\windows\System32\svchost.exe C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\windows\System32\alg.exe C:\windows\system32\wuauclt.exe C:\Program Files\Microsoft Office\Office10\WINWORD.EXE C:\windows\system32\cidaemon.exe C:\WINDOWS\System32\wbem\wmiprvse.exe J:\RSIT.exe C:\hijakthis\Manuella.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - (no file) O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5CA6535C-3C7E-CE1F-BE3B-642E7C3C19B5} - (no file) O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\Dealio.dll (file missing) O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O4 - HKLM\..\Run: [AudioDeck] C:\Program Files\VIAudioi\SBADeck\ADeck.exe 1 O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [NeroCheck] C:\windows\system32\NeroCheck.exe O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe" O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Pando] "C:\Program Files\Pando Networks\Pando\pando.exe" /Automation O4 - HKCU\..\Run: [PaSystem] "C:\Program Files\pasystem\pasystem.exe" O4 - HKCU\..\Run: [superCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\windows\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [QUAD Windows service] C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Registry Cleaner.exe -h O4 - HKCU\..\Run: [QUAD Scheduler] C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Scheduler.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: >>> FREE PORN GALLERIES <<< - java script:{document.location='http://sexmaxx.com/freegalleries.htm';} O8 - Extra context menu item: Compare Prices with &Dealio - C:\Program Files\Dealio\res\DealioSearch.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1238243032843 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1238242957859 O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl.sun.com/webapps/download/AutoDL?BundleId=29223 O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {A1426AC5-8CE5-4A00-B71E-011D35709AC6} - http://advnt01.com/dialer/int_ver34.CAB O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} (Environnement d'exécution Java 1.4.0_03) - O18 - Filter hijack: deflate - (no CLSID) - (no file) O18 - Filter hijack: gzip - (no CLSID) - (no file) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O24 - Desktop Component 0: (no name) - http://spaces.msn.com/lumynella/blog/;<...><script src= O24 - Desktop Component 1: (no name) - http://astrocenter.wanadoo.fr/wanadoo/css/center.css O24 - Desktop Component 2: (no name) - file:///C:/DOCUME~1/Manuella/LOCALS~1/APPLIC~1/IM/Runtime/EMOTIC~1/12E9EC~1.GIF O24 - Desktop Component 3: (no name) - file:///C:/DOCUME~1/Manuella/LOCALS~1/APPLIC~1/IM/Runtime/Image/627F12~1/KISSIN~1.GIF O24 - Desktop Component 4: (no name) - file:///C:/DOCUME~1/Manuella/LOCALS~1/APPLIC~1/IM/Runtime/Image/F1B62D~1/LIPS_K~1.GIF -- End of file - 9247 bytes ======Scheduled tasks folder====== C:\windows\tasks\AppleSoftwareUpdate.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A}] SWEETIE Class [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}] Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA6535C-3C7E-CE1F-BE3B-642E7C3C19B5}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6A87B991-A31F-4130-AE72-6D0C294BF082}] DealioBHO Class - C:\Program Files\Dealio\Dealio.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-31 35840] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-31 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}] EpsonToolBandKicker Class - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2004-02-10 339968] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "AudioDeck"=C:\Program Files\VIAudioi\SBADeck\ADeck.exe [2004-09-30 7957504] "AGRSMMSG"=C:\windows\AGRSMMSG.exe [2004-06-29 88363] "Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744] "Adobe Photo Downloader"=C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe [2005-06-23 57344] "NeroCheck"=C:\windows\system32\NeroCheck.exe [2001-07-09 155648] "WinampAgent"=C:\Program Files\Winamp\Winampa.exe [2003-04-01 12288] "avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2007-09-06 79224] "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-31 148888] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe [] "MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-13 1695232] "Pando"=C:\Program Files\Pando Networks\Pando\pando.exe /Automation [] "PaSystem"=C:\Program Files\pasystem\pasystem.exe [] "SuperCopier2.exe"=C:\Program Files\SuperCopier2\SuperCopier2.exe [2006-07-07 1052672] "ctfmon.exe"=C:\windows\system32\ctfmon.exe [2008-04-13 15360] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe [2006-09-15 155896] "QUAD Windows service"=C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Registry Cleaner.exe -h [] "QUAD Scheduler"=C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Scheduler.exe [] C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\windows\system32\WgaLogon.dll [2009-03-10 265088] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\windows\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa] "notification packages"= scecli scecli scecli scecli [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "ConsentPromptBehaviorAdmin"=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Documents and Settings\Manuella\Local Settings\Temp\ImInstaller\IncrediMail\incredimail_install[1].exe"="C:\Documents and Settings\Manuella\Local Settings\Temp\ImInstaller\IncrediMail\incredimail_install[1].exe:*:Enabled:IncrediMail Installer" "C:\Program Files\IncrediMail\bin\IncMail.exe"="C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail" "C:\Program Files\IncrediMail\bin\IMApp.exe"="C:\Program Files\IncrediMail\bin\IMApp.exe:*:Enabled:IncrediMail" "C:\Program Files\IncrediMail\bin\ImpCnt.exe"="C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail" "C:\Program Files\IncrediMail\bin\ImLc.exe"="C:\Program Files\IncrediMail\bin\ImLc.exe:*:Enabled:IncrediMail" "C:\Program Files\IncrediMail\bin\IncrediMail_Install.exe"="C:\Program Files\IncrediMail\bin\IncrediMail_Install.exe:*:Enabled:IncrediMail Installer" "C:\Documents and Settings\Manuella\Local Settings\Temp\ImInstaller\IncrediMail\IncrediMail_Install.exe"="C:\Documents and Settings\Manuella\Local Settings\Temp\ImInstaller\IncrediMail\IncrediMail_Install.exe:*:Enabled:IncrediMail Installer" "C:\Program Files\Securitoo\Av_Fw\backweb\8520111\Program\fspex.exe"="C:\Program Files\Securitoo\Av_Fw\backweb\8520111\Program\fspex.exe:*:Enabled:Securitoo Antivirus Firewall" "C:\Documents and Settings\Manuella\Application Data\U3\0000185A49607D5A\0DE4F643-C398-46ec-9339-2362F2311932\Exec\skype.exe"="C:\Documents and Settings\Manuella\Application Data\U3\0000185A49607D5A\0DE4F643-C398-46ec-9339-2362F2311932\Exec\skype.exe:*:Enabled:Skype" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{09175176-d14c-11da-ba5f-0011095f35ad}] shell\AutoRun\command - RavMon.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{77a64fbe-62df-11db-bbb7-0011095f35ad}] shell\AutoRun\command - RavMon.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e57c0596-cb21-11db-bd0b-0011095f35ad}] shell\AutoRun\command - J:\LaunchU3.exe -a ======List of files/folders created in the last 1 months====== 2009-04-08 14:03:50 ----D---- C:\rsit 2009-04-08 12:07:40 ----D---- C:\Documents and Settings\Manuella\Application Data\Malwarebytes 2009-04-08 12:07:31 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2009-04-08 12:07:30 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2009-04-08 11:51:21 ----A---- C:\cleannavi.txt 2009-04-07 10:28:48 ----A---- C:\fixnavi.txt 2009-04-07 10:27:06 ----D---- C:\Program Files\Navilog1 2009-04-05 07:11:01 ----HDC---- C:\windows\$NtUninstallKB961118$ 2009-04-04 22:58:10 ----D---- C:\windows\Prefetch 2009-04-04 22:10:30 ----HDC---- C:\windows\$NtUninstallKB967715$ 2009-04-04 22:08:51 ----HDC---- C:\windows\$NtUninstallKB960714$ 2009-04-04 22:08:03 ----HDC---- C:\windows\$NtUninstallKB960225$ 2009-04-04 22:07:12 ----HDC---- C:\windows\$NtUninstallKB958690$ 2009-04-04 22:06:18 ----HDC---- C:\windows\$NtUninstallKB958687$ 2009-04-04 22:05:25 ----HDC---- C:\windows\$NtUninstallKB958644$ 2009-04-04 22:04:34 ----HDC---- C:\windows\$NtUninstallKB958215$ 2009-04-04 22:03:49 ----HDC---- C:\windows\$NtUninstallKB957097$ 2009-04-04 22:02:52 ----HDC---- C:\windows\$NtUninstallKB956841$ 2009-04-04 22:01:59 ----HDC---- C:\windows\$NtUninstallKB956803$ 2009-04-04 22:01:06 ----HDC---- C:\windows\$NtUninstallKB956802$ 2009-04-04 21:57:48 ----HDC---- C:\windows\$NtUninstallKB955069$ 2009-04-04 21:56:39 ----HDC---- C:\windows\$NtUninstallKB954600$ 2009-04-04 21:55:51 ----HDC---- C:\windows\$NtUninstallKB952954$ 2009-04-04 21:55:35 ----HDC---- C:\windows\$NtUninstallKB952287$ 2009-04-04 21:55:18 ----HDC---- C:\windows\$NtUninstallKB951748$ 2009-04-04 21:55:00 ----HDC---- C:\windows\$NtUninstallKB951698$ 2009-04-04 21:54:46 ----HDC---- C:\windows\$NtUninstallKB951376-v2$ 2009-04-04 21:54:37 ----HDC---- C:\windows\$NtUninstallKB951066$ 2009-04-04 21:54:29 ----HDC---- C:\windows\$NtUninstallKB950974$ 2009-04-04 21:54:22 ----HDC---- C:\windows\$NtUninstallKB950762$ 2009-04-04 21:54:10 ----HDC---- C:\windows\$NtUninstallKB946648$ 2009-04-04 21:53:55 ----HDC---- C:\windows\$NtUninstallKB938464-v2$ 2009-04-04 21:25:33 ----HDC---- C:\windows\$NtServicePackUninstall$ 2009-03-31 21:52:01 ----D---- C:\hijakthis 2009-03-31 09:57:51 ----D---- C:\windows\Sun 2009-03-31 09:56:34 ----A---- C:\windows\system32\javaws.exe 2009-03-31 09:56:34 ----A---- C:\windows\system32\deploytk.dll 2009-03-31 09:56:33 ----A---- C:\windows\system32\javaw.exe 2009-03-31 09:56:33 ----A---- C:\windows\system32\java.exe 2009-03-31 09:56:04 ----D---- C:\Program Files\Java 2009-03-31 09:51:43 ----D---- C:\Documents and Settings\Manuella\Application Data\Sun 2009-03-31 09:26:39 ----D---- C:\Program Files\ToniArts 2009-03-29 19:58:40 ----D---- C:\windows\l2schemas 2009-03-29 19:58:39 ----D---- C:\windows\system32\fr 2009-03-29 19:38:27 ----A---- C:\windows\system32\msxml6r.dll 2009-03-29 19:38:25 ----A---- C:\windows\system32\xpob2res.dll 2009-03-29 19:38:25 ----A---- C:\windows\system32\photometadatahandler.dll 2009-03-29 19:38:25 ----A---- C:\windows\system32\mstscax.dll 2009-03-29 19:38:25 ----A---- C:\windows\system32\mstsc.exe 2009-03-29 19:38:24 ----A---- C:\windows\system32\xpsp1res.dll 2009-03-29 19:38:23 ----A---- C:\windows\system32\xpsp3res.dll 2009-03-29 19:38:23 ----A---- C:\windows\system32\xpsp2res.dll 2009-03-29 19:38:23 ----A---- C:\windows\system32\windowscodecs.dll 2009-03-29 19:38:23 ----A---- C:\windows\system32\verclsid.exe 2009-03-29 19:38:23 ----A---- C:\windows\system32\tzchange.exe 2009-03-29 19:38:22 ----A---- C:\windows\system32\xmllite.dll 2009-03-29 19:38:22 ----A---- C:\windows\system32\wmphoto.dll 2009-03-29 19:38:22 ----A---- C:\windows\system32\windowscodecsext.dll 2009-03-29 19:38:16 ----A---- C:\windows\system32\comsdupd.exe 2009-03-29 19:38:11 ----A---- C:\windows\system32\spiisupd.exe 2009-03-29 19:38:09 ----A---- C:\windows\system32\asr_pfu.exe 2009-03-29 19:38:04 ----A---- C:\windows\system32\secedit.exe 2009-03-29 19:38:03 ----A---- C:\windows\system32\dxdiagn.dll 2009-03-29 19:38:02 ----A---- C:\windows\system32\slcoinst.dll 2009-03-29 19:38:02 ----A---- C:\windows\system32\p2pgasvc.dll 2009-03-29 19:38:02 ----A---- C:\windows\system32\kbdukx.dll 2009-03-29 19:37:58 ----A---- C:\windows\system32\ir41_qc.dll 2009-03-29 19:37:58 ----A---- C:\windows\system32\encdec.dll 2009-03-29 19:37:57 ----A---- C:\windows\system32\slserv.exe 2009-03-29 19:37:55 ----A---- C:\windows\system32\dsprpres.dll 2009-03-29 19:37:54 ----A---- C:\windows\system32\ati2cqag.dll 2009-03-29 19:37:53 ----A---- C:\windows\system32\pnrpnsp.dll 2009-03-29 19:37:49 ----A---- C:\windows\system32\wscntfy.exe 2009-03-29 19:37:48 ----A---- C:\windows\system32\nv4_disp.dll 2009-03-29 19:37:47 ----A---- C:\windows\system32\w3ssl.dll 2009-03-29 19:37:45 ----A---- C:\windows\system32\p2psvc.dll 2009-03-29 19:37:44 ----A---- C:\windows\system32\bitsprx2.dll 2009-03-29 19:37:43 ----A---- C:\windows\system32\kbdsmsno.dll 2009-03-29 19:37:39 ----A---- C:\windows\system32\kbdfi1.dll 2009-03-29 19:37:39 ----A---- C:\windows\system32\ati2dvaa.dll 2009-03-29 19:37:38 ----A---- C:\windows\system32\spupdwxp.exe 2009-03-29 19:37:37 ----A---- C:\windows\system32\slgen.dll 2009-03-29 19:37:37 ----A---- C:\windows\system32\ir41_qcx.dll 2009-03-29 19:37:36 ----A---- C:\windows\system32\sbe.dll 2009-03-29 19:37:36 ----A---- C:\windows\system32\p2pgraph.dll 2009-03-29 19:37:36 ----A---- C:\windows\system32\ir50_qcx.dll 2009-03-29 19:37:33 ----A---- C:\windows\system32\kbdmlt47.dll 2009-03-29 19:37:32 ----A---- C:\windows\system32\sbeio.dll 2009-03-29 19:37:26 ----A---- C:\windows\system32\slrundll.exe 2009-03-29 19:37:26 ----A---- C:\windows\slrundll.exe 2009-03-29 19:37:25 ----A---- C:\windows\system32\wshbth.dll 2009-03-29 19:37:24 ----A---- C:\windows\system32\s3gnb.dll 2009-03-29 19:37:23 ----A---- C:\windows\system32\msdadiag.dll 2009-03-29 19:37:23 ----A---- C:\windows\system32\ir50_32.dll 2009-03-29 19:37:23 ----A---- C:\windows\system32\httpapi.dll 2009-03-29 19:37:21 ----A---- C:\windows\system32\hccoin.dll 2009-03-29 19:37:17 ----A---- C:\windows\system32\smbinst.exe 2009-03-29 19:37:15 ----A---- C:\windows\system32\fwcfg.dll 2009-03-29 19:37:15 ----A---- C:\windows\system32\ati2dvag.dll 2009-03-29 19:37:13 ----A---- C:\windows\system32\d3d9.dll 2009-03-29 19:37:08 ----A---- C:\windows\system32\mtxparhd.dll 2009-03-29 19:37:08 ----A---- C:\windows\system32\mssap.dll 2009-03-29 19:37:07 ----A---- C:\windows\system32\ati3d1ag.dll 2009-03-29 19:37:05 ----A---- C:\windows\system32\p2pnetsh.dll 2009-03-29 19:37:05 ----A---- C:\windows\system32\kbdinmal.dll 2009-03-29 19:37:04 ----A---- C:\windows\system32\twext.dll 2009-03-29 19:37:03 ----A---- C:\windows\system32\winbrand.dll 2009-03-29 19:37:03 ----A---- C:\windows\system32\spnpinst.exe 2009-03-29 19:37:02 ----A---- C:\windows\system32\xmlprovi.dll 2009-03-29 19:37:02 ----A---- C:\windows\system32\kbdinbe1.dll 2009-03-29 19:37:01 ----A---- C:\windows\system32\xmlprov.dll 2009-03-29 19:36:56 ----A---- C:\windows\system32\cmsetacl.dll 2009-03-29 19:36:47 ----A---- C:\windows\system32\btpanui.dll 2009-03-29 19:36:46 ----A---- C:\windows\system32\fsquirt.exe 2009-03-29 19:36:44 ----A---- C:\windows\system32\slextspk.dll 2009-03-29 19:36:41 ----A---- C:\windows\system32\bthci.dll 2009-03-29 19:36:40 ----A---- C:\windows\system32\powercfg.exe 2009-03-29 19:36:40 ----A---- C:\windows\system32\ati3duag.dll 2009-03-29 19:36:38 ----A---- C:\windows\system32\winhttp.dll 2009-03-29 19:36:38 ----A---- C:\windows\system32\kbdsmsfi.dll 2009-03-29 19:36:38 ----A---- C:\windows\system32\bthserv.dll 2009-03-29 19:36:37 ----A---- C:\windows\system32\bitsprx3.dll 2009-03-29 19:36:35 ----A---- C:\windows\system32\winshfhc.dll 2009-03-29 19:36:31 ----A---- C:\windows\system32\faxpatch.exe 2009-03-29 19:36:27 ----A---- C:\windows\system32\wscsvc.dll 2009-03-29 19:36:24 ----A---- C:\windows\system32\mdmxsdk.dll 2009-03-29 19:36:24 ----A---- C:\windows\system32\kbdmlt48.dll 2009-03-29 19:36:24 ----A---- C:\windows\system32\encapi.dll 2009-03-29 19:36:23 ----A---- C:\windows\system32\p2p.dll 2009-03-29 19:36:23 ----A---- C:\windows\system32\ir50_qc.dll 2009-03-29 19:36:23 ----A---- C:\windows\system32\ativtmxx.dll 2009-03-29 19:36:21 ----A---- C:\windows\system32\kbdno1.dll 2009-03-29 19:36:21 ----A---- C:\windows\system32\auditusr.exe 2009-03-29 19:36:20 ----A---- C:\windows\system32\hsfcisp2.dll 2009-03-29 19:36:19 ----A---- C:\windows\system32\ativvaxx.dll 2009-03-29 19:36:17 ----A---- C:\windows\system32\strmfilt.dll 2009-03-29 19:36:17 ----A---- C:\windows\system32\blastcln.exe 2009-03-29 19:36:11 ----A---- C:\windows\system32\wuauserv.dll 2009-03-29 19:36:10 ----A---- C:\windows\system32\kbdmaori.dll 2009-03-29 19:36:10 ----A---- C:\windows\system32\kbdinben.dll 2009-03-29 19:36:05 ----A---- C:\windows\system32\sdhcinst.dll 2009-03-29 19:36:01 ----A---- C:\windows\system32\qmgr.dll 2009-03-29 19:36:00 ----A---- C:\windows\system32\pidgen.dll 2009-03-29 19:36:00 ----A---- C:\windows\system32\dpcdll.dll 2009-03-29 19:35:57 ----A---- C:\windows\system32\msftedit.dll 2009-03-29 19:35:57 ----A---- C:\windows\system32\fltlib.dll 2009-03-29 19:35:56 ----A---- C:\windows\system32\ieencode.dll 2009-03-29 19:35:54 ----A---- C:\windows\system32\fltmc.exe 2009-03-29 19:35:50 ----A---- C:\windows\system32\fdeploy.dll 2009-03-29 19:35:50 ----A---- C:\windows\system32\eventtriggers.exe 2009-03-29 19:35:50 ----A---- C:\windows\system32\eventcreate.exe 2009-03-29 19:35:50 ----A---- C:\windows\system32\efsadu.dll 2009-03-29 19:35:50 ----A---- C:\windows\system32\driverquery.exe 2009-03-29 19:35:50 ----A---- C:\windows\system32\cipher.exe 2009-03-29 19:35:50 ----A---- C:\windows\system32\asr_fmt.exe 2009-03-29 19:35:50 ----A---- C:\windows\system32\appmgr.dll 2009-03-29 19:35:50 ----A---- C:\windows\system32\appmgmts.dll 2009-03-29 19:35:49 ----A---- C:\windows\system32\mqlogmgr.dll 2009-03-29 19:35:49 ----A---- C:\windows\system32\mqbkup.exe 2009-03-29 19:35:49 ----A---- C:\windows\system32\logman.exe 2009-03-29 19:35:49 ----A---- C:\windows\system32\gptext.dll 2009-03-29 19:35:49 ----A---- C:\windows\system32\gpresult.exe 2009-03-29 19:35:49 ----A---- C:\windows\system32\gpedit.dll 2009-03-29 19:35:48 ----A---- C:\windows\system32\mqsvc.exe 2009-03-29 19:35:48 ----A---- C:\windows\system32\mqsnap.dll 2009-03-29 19:35:48 ----A---- C:\windows\system32\mqrtdep.dll 2009-03-29 19:35:48 ----A---- C:\windows\system32\mqoa.dll 2009-03-29 19:35:47 ----A---- C:\windows\system32\openfiles.exe 2009-03-29 19:35:47 ----A---- C:\windows\system32\ntbackup.exe 2009-03-29 19:35:47 ----A---- C:\windows\system32\mqtrig.dll 2009-03-29 19:35:47 ----A---- C:\windows\system32\mqtgsvc.exe 2009-03-29 19:35:46 ----A---- C:\windows\system32\tlntsvr.exe 2009-03-29 19:35:46 ----A---- C:\windows\system32\tlntsess.exe 2009-03-29 19:35:46 ----A---- C:\windows\system32\tlntadmn.exe 2009-03-29 19:35:46 ----A---- C:\windows\system32\systeminfo.exe 2009-03-29 19:35:46 ----A---- C:\windows\system32\schtasks.exe 2009-03-29 19:35:46 ----A---- C:\windows\system32\rsnotify.exe 2009-03-29 19:35:46 ----A---- C:\windows\system32\proxycfg.exe 2009-03-29 19:35:45 ----A---- C:\windows\system32\wsecedit.dll 2009-03-29 19:35:45 ----A---- C:\windows\system32\tracerpt.exe 2009-03-29 19:35:45 ----A---- C:\windows\system32\tlntsvrp.dll 2009-03-29 19:35:44 ----A---- C:\windows\system32\bootcfg.exe 2009-03-29 19:35:44 ----A---- C:\windows\system32\adsnw.dll 2009-03-29 19:35:43 ----A---- C:\windows\system32\mqdscli.dll 2009-03-29 19:35:43 ----A---- C:\windows\system32\mqad.dll 2009-03-29 19:35:43 ----A---- C:\windows\system32\getmac.exe 2009-03-29 19:35:43 ----A---- C:\windows\system32\fde.dll 2009-03-29 19:35:42 ----A---- C:\windows\system32\mqqm.dll 2009-03-29 19:35:42 ----A---- C:\windows\system32\mqise.dll 2009-03-29 19:35:41 ----A---- C:\windows\system32\taskkill.exe 2009-03-29 19:35:41 ----A---- C:\windows\system32\nwwks.dll 2009-03-29 19:35:41 ----A---- C:\windows\system32\nwapi32.dll 2009-03-29 19:35:41 ----A---- C:\windows\system32\mqutil.dll 2009-03-29 19:35:41 ----A---- C:\windows\system32\mqupgrd.dll 2009-03-29 19:35:41 ----A---- C:\windows\system32\mqsec.dll 2009-03-29 19:35:41 ----A---- C:\windows\system32\mqrt.dll 2009-03-29 19:35:40 ----A---- C:\windows\system32\tasklist.exe 2009-03-29 19:34:28 ----A---- C:\windows\twain_32.dll 2009-03-29 19:34:28 ----A---- C:\windows\regedit.exe 2009-03-29 19:34:28 ----A---- C:\windows\hh.exe 2009-03-29 19:34:28 ----A---- C:\windows\explorer.exe 2009-03-29 19:34:27 ----A---- C:\windows\winhlp32.exe 2009-03-29 19:34:25 ----A---- C:\windows\system32\adsldpc.dll 2009-03-29 19:34:25 ----A---- C:\windows\system32\adsldp.dll 2009-03-29 19:34:25 ----A---- C:\windows\system32\actxprxy.dll 2009-03-29 19:34:25 ----A---- C:\windows\system32\actmovie.exe 2009-03-29 19:34:25 ----A---- C:\windows\system32\activeds.dll 2009-03-29 19:34:25 ----A---- C:\windows\system32\aclui.dll 2009-03-29 19:34:25 ----A---- C:\windows\system32\accwiz.exe 2009-03-29 19:34:25 ----A---- C:\windows\system32\6to4svc.dll 2009-03-29 19:34:24 ----A---- C:\windows\system32\apphelp.dll 2009-03-29 19:34:24 ----A---- C:\windows\system32\amstream.dll 2009-03-29 19:34:24 ----A---- C:\windows\system32\alrsvc.dll 2009-03-29 19:34:24 ----A---- C:\windows\system32\alg.exe 2009-03-29 19:34:24 ----A---- C:\windows\system32\ahui.exe 2009-03-29 19:34:24 ----A---- C:\windows\system32\adsnt.dll 2009-03-29 19:34:24 ----A---- C:\windows\system32\adsmsext.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\batt.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\batmeter.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\basesrv.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\avifil32.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\autolfn.exe 2009-03-29 19:34:23 ----A---- C:\windows\system32\autofmt.exe 2009-03-29 19:34:23 ----A---- C:\windows\system32\authz.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\audiosrv.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\attrib.exe 2009-03-29 19:34:23 ----A---- C:\windows\system32\atmlib.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\atmfd.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\atmadm.exe 2009-03-29 19:34:23 ----A---- C:\windows\system32\atl.dll 2009-03-29 19:34:23 ----A---- C:\windows\system32\at.exe 2009-03-29 19:34:23 ----A---- C:\windows\system32\asycfilt.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\catsrvps.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\catsrv.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\capesnpn.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\camocx.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\cabview.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\cabinet.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\browsewm.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\browseui.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\browser.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\browselc.dll 2009-03-29 19:34:22 ----A---- C:\windows\system32\bidispl.dll 2009-03-29 19:34:21 ----A---- C:\windows\system32\cfgmgr32.dll 2009-03-29 19:34:21 ----A---- C:\windows\system32\cfgbkend.dll 2009-03-29 19:34:21 ----A---- C:\windows\system32\certmgr.dll 2009-03-29 19:34:21 ----A---- C:\windows\system32\certcli.dll 2009-03-29 19:34:21 ----A---- C:\windows\system32\cdosys.dll 2009-03-29 19:34:21 ----A---- C:\windows\system32\cdfview.dll 2009-03-29 19:34:21 ----A---- C:\windows\system32\catsrvut.dll 2009-03-29 19:34:20 ----A---- C:\windows\system32\cmcfg32.dll 2009-03-29 19:34:20 ----A---- C:\windows\system32\clusapi.dll 2009-03-29 19:34:20 ----A---- C:\windows\system32\clipsrv.exe 2009-03-29 19:34:20 ----A---- C:\windows\system32\clipbrd.exe 2009-03-29 19:34:20 ----A---- C:\windows\system32\cliconfg.exe 2009-03-29 19:34:20 ----A---- C:\windows\system32\cliconfg.dll 2009-03-29 19:34:20 ----A---- C:\windows\system32\cleanmgr.exe 2009-03-29 19:34:20 ----A---- C:\windows\system32\clbcatq.dll 2009-03-29 19:34:20 ----A---- C:\windows\system32\clbcatex.dll 2009-03-29 19:34:20 ----A---- C:\windows\system32\cisvc.exe 2009-03-29 19:34:20 ----A---- C:\windows\system32\ciodm.dll 2009-03-29 19:34:20 ----A---- C:\windows\system32\cic.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\comrepl.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\compstui.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\compatui.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\comaddin.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\colbact.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\cnbjmon.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\cmutil.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\cmstp.exe 2009-03-29 19:34:19 ----A---- C:\windows\system32\cmprops.dll 2009-03-29 19:34:19 ----A---- C:\windows\system32\cmmon32.exe 2009-03-29 19:34:19 ----A---- C:\windows\system32\cmdl32.exe 2009-03-29 19:34:19 ----A---- C:\windows\system32\cmdial32.dll 2009-03-29 19:34:18 ----A---- C:\windows\system32\corpol.dll 2009-03-29 19:34:18 ----A---- C:\windows\system32\conime.exe 2009-03-29 19:34:18 ----A---- C:\windows\system32\confmsp.dll 2009-03-29 19:34:18 ----A---- C:\windows\system32\comuid.dll 2009-03-29 19:34:18 ----A---- C:\windows\system32\comsvcs.dll 2009-03-29 19:34:18 ----A---- C:\windows\system32\comsnap.dll 2009-03-29 19:34:18 ----A---- C:\windows\system32\comres.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\cscript.exe 2009-03-29 19:34:17 ----A---- C:\windows\system32\cscdll.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\cryptui.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\cryptsvc.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\cryptnet.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\cryptext.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\cryptdll.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\cryptdlg.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\crypt32.dll 2009-03-29 19:34:17 ----A---- C:\windows\system32\credui.dll 2009-03-29 19:34:16 ----A---- C:\windows\system32\danim.dll 2009-03-29 19:34:16 ----A---- C:\windows\system32\d3dim700.dll 2009-03-29 19:34:16 ----A---- C:\windows\system32\d3d8thk.dll 2009-03-29 19:34:16 ----A---- C:\windows\system32\d3d8.dll 2009-03-29 19:34:16 ----A---- C:\windows\system32\ctfmon.exe 2009-03-29 19:34:16 ----A---- C:\windows\system32\csrss.exe 2009-03-29 19:34:16 ----A---- C:\windows\system32\cscui.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\ddeshare.exe 2009-03-29 19:34:15 ----A---- C:\windows\system32\dcomcnfg.exe 2009-03-29 19:34:15 ----A---- C:\windows\system32\dciman32.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\dbnmpntw.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\dbnetlib.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\dbmsrpcn.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\dbghelp.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\davclnt.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\datime.dll 2009-03-29 19:34:15 ----A---- C:\windows\system32\dataclen.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\digest.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\diantz.exe 2009-03-29 19:34:14 ----A---- C:\windows\system32\dhcpmon.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\dgnet.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\dfsshlex.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\dfrgui.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\dfrgsnap.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\dfrgntfs.exe 2009-03-29 19:34:14 ----A---- C:\windows\system32\dfrgfat.exe 2009-03-29 19:34:14 ----A---- C:\windows\system32\devmgr.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\devenum.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\defrag.exe 2009-03-29 19:34:14 ----A---- C:\windows\system32\ddrawex.dll 2009-03-29 19:34:14 ----A---- C:\windows\system32\ddraw.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\dmdskmgr.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\dmdlgs.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\dmcompos.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\dmband.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\dmadmin.exe 2009-03-29 19:34:13 ----A---- C:\windows\system32\dllhost.exe 2009-03-29 19:34:13 ----A---- C:\windows\system32\dispex.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\diskpart.exe 2009-03-29 19:34:13 ----A---- C:\windows\system32\diskcopy.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\dinput8.dll 2009-03-29 19:34:13 ----A---- C:\windows\system32\dinput.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dpnaddr.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dpmodemx.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dplayx.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dplaysvr.exe 2009-03-29 19:34:12 ----A---- C:\windows\system32\docprop2.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dnsrslvr.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dnsapi.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmutil.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmusic.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmsynth.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmstyle.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmserver.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmscript.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmremote.exe 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmloader.dll 2009-03-29 19:34:12 ----A---- C:\windows\system32\dmime.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dskquota.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dsdmoprp.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dsdmo.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\ds32gt.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\drprov.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpwsockx.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpvvox.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpvsetup.exe 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpvoice.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpvacm.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpnsvr.exe 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpnlobby.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpnhupnp.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpnhpast.dll 2009-03-29 19:34:11 ----A---- C:\windows\system32\dpnet.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dumprep.exe 2009-03-29 19:34:10 ----A---- C:\windows\system32\dswave.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dsuiext.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dssenh.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dssec.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dsquery.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dsprop.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dsound3d.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dsound.dll 2009-03-29 19:34:10 ----A---- C:\windows\system32\dskquoui.dll 2009-03-29 19:34:09 ----A---- C:\windows\system32\dxdiag.exe 2009-03-29 19:34:09 ----A---- C:\windows\system32\dx8vb.dll 2009-03-29 19:34:09 ----A---- C:\windows\system32\dx7vb.dll 2009-03-29 19:34:09 ----A---- C:\windows\system32\dwwin.exe 2009-03-29 19:34:09 ----A---- C:\windows\system32\dvdupgrd.exe 2009-03-29 19:34:09 ----A---- C:\windows\system32\duser.dll 2009-03-29 19:34:08 ----A---- C:\windows\system32\eventlog.dll 2009-03-29 19:34:08 ----A---- C:\windows\system32\eudcedit.exe 2009-03-29 19:34:08 ----A---- C:\windows\system32\esent.dll 2009-03-29 19:34:08 ----A---- C:\windows\system32\es.dll 2009-03-29 19:34:08 ----A---- C:\windows\system32\ersvc.dll 2009-03-29 19:34:08 ----A---- C:\windows\system32\els.dll 2009-03-29 19:34:08 ----A---- C:\windows\system32\dxmasf.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\gdi32.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\framebuf.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\forcedos.exe 2009-03-29 19:34:07 ----A---- C:\windows\system32\fontview.exe 2009-03-29 19:34:07 ----A---- C:\windows\system32\fontsub.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\fontext.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\fldrclnr.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\findstr.exe 2009-03-29 19:34:07 ----A---- C:\windows\system32\filemgmt.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\feclient.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\faultrep.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\exts.dll 2009-03-29 19:34:07 ----A---- C:\windows\system32\extrac32.exe 2009-03-29 19:34:07 ----A---- C:\windows\system32\expsrv.dll 2009-03-29 19:34:06 ----A---- C:\windows\system32\hlink.dll 2009-03-29 19:34:06 ----A---- C:\windows\system32\hidserv.dll 2009-03-29 19:34:06 ----A---- C:\windows\system32\hid.dll 2009-03-29 19:34:06 ----A---- C:\windows\system32\hhsetup.dll 2009-03-29 19:34:06 ----A---- C:\windows\system32\help.exe 2009-03-29 19:34:06 ----A---- C:\windows\system32\h323msp.dll 2009-03-29 19:34:06 ----A---- C:\windows\system32\grpconv.exe 2009-03-29 19:34:06 ----A---- C:\windows\system32\gpkrsrc.dll 2009-03-29 19:34:06 ----A---- C:\windows\system32\glu32.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\icwphbk.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\icwdial.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\icmp.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\icm32.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\iccvid.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\icaapi.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\iasrad.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\hypertrm.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\htui.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\hotplug.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\hnetwiz.dll 2009-03-29 19:34:05 ----A---- C:\windows\system32\hnetcfg.dll 2009-03-29 19:34:04 ----A---- C:\windows\system32\imeshare.dll 2009-03-29 19:34:04 ----A---- C:\windows\system32\imapi.exe 2009-03-29 19:34:04 ----A---- C:\windows\system32\ils.dll 2009-03-29 19:34:04 ----A---- C:\windows\system32\igmpagnt.dll 2009-03-29 19:34:04 ----A---- C:\windows\system32\ifmon.dll 2009-03-29 19:34:04 ----A---- C:\windows\system32\iexpress.exe 2009-03-29 19:34:04 ----A---- C:\windows\system32\idq.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\ipconfig.exe 2009-03-29 19:34:03 ----A---- C:\windows\system32\input.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\initpki.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\inetres.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\inetppui.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\inetpp.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\inetmib1.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\inetcomm.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\inetcfg.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\imm32.dll 2009-03-29 19:34:03 ----A---- C:\windows\system32\imjp81k.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\ipv6mon.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\ipv6.exe 2009-03-29 19:34:02 ----A---- C:\windows\system32\ipsmsnap.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\ipsecsvc.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\ipsecsnp.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\iprtrmgr.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\ippromon.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\ipnathlp.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\ipmontr.dll 2009-03-29 19:34:02 ----A---- C:\windows\system32\iphlpapi.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\jscript.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\jgpl400.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\jgdw400.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\iyuv_32.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\ixsso.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\itss.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\itircl.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\isrdbg32.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\isign32.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\ipxwan.dll 2009-03-29 19:34:01 ----A---- C:\windows\system32\ipxroute.exe 2009-03-29 19:34:00 ----A---- C:\windows\system32\ksuser.dll 2009-03-29 19:34:00 ----A---- C:\windows\system32\keymgr.dll 2009-03-29 19:34:00 ----A---- C:\windows\system32\kerberos.dll 2009-03-29 19:34:00 ----A---- C:\windows\system32\kd1394.dll 2009-03-29 19:34:00 ----A---- C:\windows\system32\kbdnec.dll 2009-03-29 19:34:00 ----A---- C:\windows\system32\kbd106.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\makecab.exe 2009-03-29 19:33:59 ----A---- C:\windows\system32\magnify.exe 2009-03-29 19:33:59 ----A---- C:\windows\system32\lsass.exe 2009-03-29 19:33:59 ----A---- C:\windows\system32\lprhelp.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\lpk.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\logonui.exe 2009-03-29 19:33:59 ----A---- C:\windows\system32\localui.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\localsec.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\loadperf.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\lmrt.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\linkinfo.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\licwmi.dll 2009-03-29 19:33:59 ----A---- C:\windows\system32\licdll.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\midimap.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mfcsubs.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mfc42.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mfc40u.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mf3216.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mdminst.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mciwave.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mciseq.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mciqtz32.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mciavi32.dll 2009-03-29 19:33:58 ----A---- C:\windows\system32\mcastmib.dll 2009-03-29 19:33:57 ----A---- C:\windows\system32\mmfutil.dll 2009-03-29 19:33:57 ----A---- C:\windows\system32\mmcshext.dll 2009-03-29 19:33:57 ----A---- C:\windows\system32\mmcndmgr.dll 2009-03-29 19:33:57 ----A---- C:\windows\system32\mmcbase.dll 2009-03-29 19:33:57 ----A---- C:\windows\system32\mmc.exe 2009-03-29 19:33:57 ----A---- C:\windows\system32\mlang.dll 2009-03-29 19:33:57 ----A---- C:\windows\system32\mimefilt.dll 2009-03-29 19:33:57 ----A---- C:\windows\system32\miglibnt.dll 2009-03-29 19:33:56 ----A---- C:\windows\system32\mprdim.dll 2009-03-29 19:33:56 ----A---- C:\windows\system32\mprapi.dll 2009-03-29 19:33:56 ----A---- C:\windows\system32\mpr.dll 2009-03-29 19:33:56 ----A---- C:\windows\system32\mplay32.exe 2009-03-29 19:33:56 ----A---- C:\windows\system32\moricons.dll 2009-03-29 19:33:56 ----A---- C:\windows\system32\more.com 2009-03-29 19:33:56 ----A---- C:\windows\system32\modemui.dll 2009-03-29 19:33:56 ----A---- C:\windows\system32\mobsync.exe 2009-03-29 19:33:56 ----A---- C:\windows\system32\mobsync.dll 2009-03-29 19:33:56 ----A---- C:\windows\system32\mnmsrvc.exe 2009-03-29 19:33:56 ----A---- C:\windows\system32\mnmdd.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msdart.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msctfp.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msctf.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\mscpxl32.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\mscpx32r.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msconf.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\mscms.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msasn1.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msapsspc.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msafd.dll 2009-03-29 19:33:55 ----A---- C:\windows\system32\msacm32.dll 2009-03-29 19:33:54 ----A---- C:\windows\system32\msdxmlc.dll 2009-03-29 19:33:54 ----A---- C:\windows\system32\msdtcuiu.dll 2009-03-29 19:33:54 ----A---- C:\windows\system32\msdtctm.dll 2009-03-29 19:33:54 ----A---- C:\windows\system32\msdtcprx.dll 2009-03-29 19:33:54 ----A---- C:\windows\system32\msdtclog.dll 2009-03-29 19:33:54 ----A---- C:\windows\system32\msdtc.exe 2009-03-29 19:33:54 ----A---- C:\windows\system32\msdmo.dll 2009-03-29 19:33:53 ----A---- C:\windows\system32\msi.dll 2009-03-29 19:33:53 ----A---- C:\windows\system32\msgina.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msoeacct.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msnsspc.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\mslbui.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msisip.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msimtf.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msimsg.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msimg32.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msihnd.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msiexec.exe 2009-03-29 19:33:52 ----A---- C:\windows\system32\msieftp.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msidle.dll 2009-03-29 19:33:52 ----A---- C:\windows\system32\msident.dll 2009-03-29 19:33:51 ----A---- C:\windows\system32\mstinit.exe 2009-03-29 19:33:51 ----A---- C:\windows\system32\mstask.dll 2009-03-29 19:33:51 ----A---- C:\windows\system32\msrle32.dll 2009-03-29 19:33:51 ----A---- C:\windows\system32\msprivs.dll 2009-03-29 19:33:51 ----A---- C:\windows\system32\mspatcha.dll 2009-03-29 19:33:51 ----A---- C:\windows\system32\mspaint.exe 2009-03-29 19:33:51 ----A---- C:\windows\system32\msorcl32.dll 2009-03-29 19:33:51 ----A---- C:\windows\system32\msorc32r.dll 2009-03-29 19:33:51 ----A---- C:\windows\system32\msoert2.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\msvfw32.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\msvcrt40.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\msvcrt.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\msvcp60.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\msvcirt.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\msvbvm60.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\msutb.dll 2009-03-29 19:33:50 ----A---- C:\windows\system32\mstlsapi.dll 2009-03-29 19:33:49 ----A---- C:\windows\system32\msyuv.dll 2009-03-29 19:33:49 ----A---- C:\windows\system32\msxml2.dll 2009-03-29 19:33:49 ----A---- C:\windows\system32\msxml.dll 2009-03-29 19:33:49 ----A---- C:\windows\system32\mswsock.dll 2009-03-29 19:33:49 ----A---- C:\windows\system32\mswebdvd.dll 2009-03-29 19:33:49 ----A---- C:\windows\system32\msw3prt.dll 2009-03-29 19:33:49 ----A---- C:\windows\system32\msvidctl.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\netapi32.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\net1.exe 2009-03-29 19:33:48 ----A---- C:\windows\system32\net.exe 2009-03-29 19:33:48 ----A---- C:\windows\system32\nddenb32.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\nddeapir.exe 2009-03-29 19:33:48 ----A---- C:\windows\system32\nddeapi.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\ncobjapi.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\narrator.exe 2009-03-29 19:33:48 ----A---- C:\windows\system32\mydocs.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\mtxoci.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\mtxlegih.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\mtxex.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\mtxdm.dll 2009-03-29 19:33:48 ----A---- C:\windows\system32\mtxclu.dll 2009-03-29 19:33:47 ----A---- C:\windows\system32\netsh.exe 2009-03-29 19:33:47 ----A---- C:\windows\system32\netsetup.exe 2009-03-29 19:33:47 ----A---- C:\windows\system32\netrap.dll 2009-03-29 19:33:47 ----A---- C:\windows\system32\netplwiz.dll 2009-03-29 19:33:47 ----A---- C:\windows\system32\netman.dll 2009-03-29 19:33:47 ----A---- C:\windows\system32\netlogon.dll 2009-03-29 19:33:47 ----A---- C:\windows\system32\netid.dll 2009-03-29 19:33:47 ----A---- C:\windows\system32\netdde.exe 2009-03-29 19:33:47 ----A---- C:\windows\system32\netcfgx.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\ntmsdba.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\ntmsapi.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\ntmarta.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\ntlanman.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\ntdsapi.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\npptools.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\notepad.exe 2009-03-29 19:33:46 ----A---- C:\windows\system32\nmmkcert.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\nlhtml.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\newdev.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\netui1.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\netui0.dll 2009-03-29 19:33:46 ----A---- C:\windows\system32\netstat.exe 2009-03-29 19:33:46 ----A---- C:\windows\system32\netshell.dll 2009-03-29 19:33:46 ----A---- C:\windows\notepad.exe 2009-03-29 19:33:45 ----A---- C:\windows\system32\odbcad32.exe 2009-03-29 19:33:45 ----A---- C:\windows\system32\odbc32gt.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\odbc32.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\ocmanage.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\objsel.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\oakley.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\ntvdmd.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\ntshrui.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\ntmssvc.dll 2009-03-29 19:33:45 ----A---- C:\windows\system32\ntmsmgr.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\oddbse32.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbctrac.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbcp32r.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbcjt32.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbcji32.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbcint.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbccu32.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbccr32.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbccp32.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbcconf.exe 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbcconf.dll 2009-03-29 19:33:44 ----A---- C:\windows\system32\odbcbcp.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\osk.exe 2009-03-29 19:33:43 ----A---- C:\windows\system32\opengl32.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\olepro32.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\oleprn.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\oledlg.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\olecli32.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\ole32.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\offfilt.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\odtext32.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\odpdx32.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\odfox32.dll 2009-03-29 19:33:43 ----A---- C:\windows\system32\odexl32.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\ping.exe 2009-03-29 19:33:42 ----A---- C:\windows\system32\pid.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\photowiz.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\perfproc.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\perfos.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\perfnet.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\perfmon.exe 2009-03-29 19:33:42 ----A---- C:\windows\system32\perfdisk.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\pdh.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\pautoenr.dll 2009-03-29 19:33:42 ----A---- C:\windows\system32\packager.exe 2009-03-29 19:33:42 ----A---- C:\windows\system32\osuninst.dll 2009-03-29 19:33:41 ----A---- C:\windows\system32\psisdecd.dll 2009-03-29 19:33:41 ----A---- C:\windows\system32\psbase.dll 2009-03-29 19:33:41 ----A---- C:\windows\system32\psapi.dll 2009-03-29 19:33:41 ----A---- C:\windows\system32\proquota.exe 2009-03-29 19:33:41 ----A---- C:\windows\system32\progman.exe 2009-03-29 19:33:41 ----A---- C:\windows\system32\profmap.dll 2009-03-29 19:33:41 ----A---- C:\windows\system32\powrprof.dll 2009-03-29 19:33:41 ----A---- C:\windows\system32\polstore.dll 2009-03-29 19:33:41 ----A---- C:\windows\system32\pjlmon.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\qprocess.exe 2009-03-29 19:33:40 ----A---- C:\windows\system32\qmgrprxy.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\qedwipes.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\qedit.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\qdvd.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\qdv.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\qcap.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\pstorsvc.dll 2009-03-29 19:33:40 ----A---- C:\windows\system32\pstorec.dll 2009-03-29 19:33:39 ----A---- C:\windows\system32\rasphone.exe 2009-03-29 19:33:39 ----A---- C:\windows\system32\rasmans.dll 2009-03-29 19:33:39 ----A---- C:\windows\system32\raschap.dll 2009-03-29 19:33:39 ----A---- C:\windows\system32\rasadhlp.dll 2009-03-29 19:33:39 ----A---- C:\windows\system32\racpldlg.dll 2009-03-29 19:33:39 ----A---- C:\windows\system32\query.dll 2009-03-29 19:33:39 ----A---- C:\windows\system32\quartz.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\regsvc.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\regapi.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\reg.exe 2009-03-29 19:33:38 ----A---- C:\windows\system32\rdshost.exe 2009-03-29 19:33:38 ----A---- C:\windows\system32\rdsaddin.exe 2009-03-29 19:33:38 ----A---- C:\windows\system32\rdpwsx.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\rdpsnd.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\rdpdd.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\rdpclip.exe 2009-03-29 19:33:38 ----A---- C:\windows\system32\rdchost.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\rcp.exe 2009-03-29 19:33:38 ----A---- C:\windows\system32\rcimlby.exe 2009-03-29 19:33:38 ----A---- C:\windows\system32\rcbdyctl.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\rastls.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\rassapi.dll 2009-03-29 19:33:38 ----A---- C:\windows\system32\rasppp.dll 2009-03-29 19:33:37 ----A---- C:\windows\system32\rpcss.dll 2009-03-29 19:33:37 ----A---- C:\windows\system32\rpcrt4.dll 2009-03-29 19:33:37 ----A---- C:\windows\system32\riched20.dll 2009-03-29 19:33:37 ----A---- C:\windows\system32\rexec.exe 2009-03-29 19:33:37 ----A---- C:\windows\system32\resutils.dll 2009-03-29 19:33:37 ----A---- C:\windows\system32\remotepg.dll 2009-03-29 19:33:37 ----A---- C:\windows\system32\regwizc.dll 2009-03-29 19:33:37 ----A---- C:\windows\system32\regsvr32.exe 2009-03-29 19:33:36 ----A---- C:\windows\system32\scesrv.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\scecli.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\sccsccp.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\scarddlg.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\safrslv.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\safrdm.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\safrcdlg.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\runonce.exe 2009-03-29 19:33:36 ----A---- C:\windows\system32\rundll32.exe 2009-03-29 19:33:36 ----A---- C:\windows\system32\rtutils.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\rtipxmib.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\rtcshare.exe 2009-03-29 19:33:36 ----A---- C:\windows\system32\rsvpsp.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\rsmps.dll 2009-03-29 19:33:36 ----A---- C:\windows\system32\rsh.exe 2009-03-29 19:33:36 ----A---- C:\windows\system32\rsaenh.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\sfc.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\setup.exe 2009-03-29 19:33:35 ----A---- C:\windows\system32\sethc.exe 2009-03-29 19:33:35 ----A---- C:\windows\system32\servdeps.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\sensapi.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\sens.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\sendmail.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\sendcmsg.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\security.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\secur32.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\seclogon.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\sdbinst.exe 2009-03-29 19:33:35 ----A---- C:\windows\system32\scrrun.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\scrobj.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\sclgntfy.dll 2009-03-29 19:33:35 ----A---- C:\windows\system32\schedsvc.dll 2009-03-29 19:33:34 ----A---- C:\windows\system32\shdocvw.dll 2009-03-29 19:33:34 ----A---- C:\windows\system32\shdoclc.dll 2009-03-29 19:33:34 ----A---- C:\windows\system32\sfcfiles.dll 2009-03-29 19:33:34 ----A---- C:\windows\system32\sfc_os.dll 2009-03-29 19:33:32 ----A---- C:\windows\system32\shmgrate.exe 2009-03-29 19:33:32 ----A---- C:\windows\system32\shmedia.dll 2009-03-29 19:33:32 ----A---- C:\windows\system32\shlwapi.dll 2009-03-29 19:33:32 ----A---- C:\windows\system32\shimgvw.dll 2009-03-29 19:33:32 ----A---- C:\windows\system32\shimeng.dll 2009-03-29 19:33:32 ----A---- C:\windows\system32\shgina.dll 2009-03-29 19:33:32 ----A---- C:\windows\system32\shfolder.dll 2009-03-29 19:33:32 ----A---- C:\windows\system32\shell32.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\snmpapi.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\sndrec32.exe 2009-03-29 19:33:31 ----A---- C:\windows\system32\smlogsvc.exe 2009-03-29 19:33:31 ----A---- C:\windows\system32\smlogcfg.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\slbiop.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\slayerxp.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\skeys.exe 2009-03-29 19:33:31 ----A---- C:\windows\system32\sigverif.exe 2009-03-29 19:33:31 ----A---- C:\windows\system32\sigtab.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\shutdown.exe 2009-03-29 19:33:31 ----A---- C:\windows\system32\shsvcs.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\shscrap.dll 2009-03-29 19:33:31 ----A---- C:\windows\system32\shrpubw.exe 2009-03-29 19:33:30 ----A---- C:\windows\system32\srsvc.dll 2009-03-29 19:33:30 ----A---- C:\windows\system32\srrstr.dll 2009-03-29 19:33:30 ----A---- C:\windows\system32\srclient.dll 2009-03-29 19:33:30 ----A---- C:\windows\system32\sqlunirl.dll 2009-03-29 19:33:30 ----A---- C:\windows\system32\sqlsrv32.dll 2009-03-29 19:33:30 ----A---- C:\windows\system32\spoolsv.exe 2009-03-29 19:33:30 ----A---- C:\windows\system32\spoolss.dll 2009-03-29 19:33:30 ----A---- C:\windows\system32\spider.exe 2009-03-29 19:33:30 ----A---- C:\windows\system32\sort.exe 2009-03-29 19:33:30 ----A---- C:\windows\system32\snmpsnap.dll 2009-03-29 19:33:29 ----A---- C:\windows\system32\ssdpsrv.dll 2009-03-29 19:33:29 ----A---- C:\windows\system32\ssdpapi.dll 2009-03-29 19:33:28 ----A---- C:\windows\system32\storprop.dll 2009-03-29 19:33:28 ----A---- C:\windows\system32\stobject.dll 2009-03-29 19:33:28 ----A---- C:\windows\system32\stimon.exe 2009-03-29 19:33:28 ----A---- C:\windows\system32\sti_ci.dll 2009-03-29 19:33:28 ----A---- C:\windows\system32\sti.dll 2009-03-29 19:33:28 ----A---- C:\windows\system32\stclient.dll 2009-03-29 19:33:27 ----A---- C:\windows\system32\t2embed.dll 2009-03-29 19:33:27 ----A---- C:\windows\system32\sysocmgr.exe 2009-03-29 19:33:27 ----A---- C:\windows\system32\syncui.dll 2009-03-29 19:33:27 ----A---- C:\windows\system32\synceng.dll 2009-03-29 19:33:27 ----A---- C:\windows\system32\sxs.dll 2009-03-29 19:33:27 ----A---- C:\windows\system32\svchost.exe 2009-03-29 19:33:26 ----A---- C:\windows\system32\themeui.dll 2009-03-29 19:33:26 ----A---- C:\windows\system32\termsrv.dll 2009-03-29 19:33:26 ----A---- C:\windows\system32\termmgr.dll 2009-03-29 19:33:26 ----A---- C:\windows\system32\telnet.exe 2009-03-29 19:33:26 ----A---- C:\windows\system32\tcpmon.dll 2009-03-29 19:33:26 ----A---- C:\windows\system32\tcpmib.dll 2009-03-29 19:33:26 ----A---- C:\windows\system32\taskmgr.exe 2009-03-29 19:33:26 ----A---- C:\windows\system32\tapisrv.dll 2009-03-29 19:33:26 ----A---- C:\windows\system32\tapi32.dll 2009-03-29 19:33:26 ----A---- C:\windows\system32\tapi3.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\umpnpmgr.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\umandlg.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\udhisapi.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\txflog.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\tsddd.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\tscfgwmi.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\trkwks.dll 2009-03-29 19:33:25 ----A---- C:\windows\system32\tree.com 2009-03-29 19:33:25 ----A---- C:\windows\system32\tracert.exe 2009-03-29 19:33:25 ----A---- C:\windows\system32\tourstart.exe 2009-03-29 19:33:24 ----A---- C:\windows\system32\user32.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\usbui.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\usbmon.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\ups.exe 2009-03-29 19:33:24 ----A---- C:\windows\system32\upnpui.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\upnphost.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\upnpcont.exe 2009-03-29 19:33:24 ----A---- C:\windows\system32\upnp.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\uniplat.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\unimdmat.dll 2009-03-29 19:33:24 ----A---- C:\windows\system32\uniime.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\verifier.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\vdmredir.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\vdmdbg.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\vbscript.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\vbajet32.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\uxtheme.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\utilman.exe 2009-03-29 19:33:23 ----A---- C:\windows\system32\usp10.dll 2009-03-29 19:33:23 ----A---- C:\windows\system32\userenv.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\webvw.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\webclnt.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\wdigest.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\wavemsp.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\w32time.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\vssvc.exe 2009-03-29 19:33:22 ----A---- C:\windows\system32\vssapi.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\vfwwdm32.dll 2009-03-29 19:33:22 ----A---- C:\windows\system32\version.dll 2009-03-29 19:33:21 ----A---- C:\windows\system32\wiavideo.dll 2009-03-29 19:33:21 ----A---- C:\windows\system32\wiashext.dll 2009-03-29 19:33:21 ----A---- C:\windows\system32\wiaservc.dll 2009-03-29 19:33:21 ----A---- C:\windows\system32\wiascr.dll 2009-03-29 19:33:21 ----A---- C:\windows\system32\wiadss.dll 2009-03-29 19:33:21 ----A---- C:\windows\system32\wiadefui.dll 2009-03-29 19:33:21 ----A---- C:\windows\system32\wiaacmgr.exe 2009-03-29 19:33:21 ----A---- C:\windows\system32\wextract.exe 2009-03-29 19:33:20 ----A---- C:\windows\system32\wintrust.dll 2009-03-29 19:33:20 ----A---- C:\windows\system32\winsta.dll 2009-03-29 19:33:20 ----A---- C:\windows\system32\winsrv.dll 2009-03-29 19:33:20 ----A---- C:\windows\system32\winscard.dll 2009-03-29 19:33:20 ----A---- C:\windows\system32\winrnr.dll 2009-03-29 19:33:20 ----A---- C:\windows\system32\winntbbu.dll 2009-03-29 19:33:20 ----A---- C:\windows\system32\winmm.dll 2009-03-29 19:33:20 ----A---- C:\windows\system32\winlogon.exe 2009-03-29 19:33:20 ----A---- C:\windows\system32\winipsec.dll 2009-03-29 19:33:19 ----A---- C:\windows\system32\wow32.dll 2009-03-29 19:33:19 ----A---- C:\windows\system32\wmstream.dll 2009-03-29 19:33:19 ----A---- C:\windows\system32\wmsdmoe.dll 2009-03-29 19:33:19 ----A---- C:\windows\system32\wmi.dll 2009-03-29 19:33:19 ----A---- C:\windows\system32\wlnotify.dll 2009-03-29 19:33:19 ----A---- C:\windows\system32\wldap32.dll 2009-03-29 19:33:19 ----A---- C:\windows\system32\winver.exe 2009-03-29 19:33:18 ----A---- C:\windows\system32\wtsapi32.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wstdecod.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wsock32.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wsnmp32.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wshtcpip.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wshrm.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wship6.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wshext.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wshcon.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wscript.exe 2009-03-29 19:33:18 ----A---- C:\windows\system32\ws2help.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\ws2_32.dll 2009-03-29 19:33:18 ----A---- C:\windows\system32\wpnpinst.exe 2009-03-29 19:33:18 ----A---- C:\windows\system32\wpabaln.exe 2009-03-29 19:33:17 ----A---- C:\windows\system32\zipfldr.dll 2009-03-29 19:33:17 ----A---- C:\windows\system32\xolehlp.dll 2009-03-29 19:33:17 ----A---- C:\windows\system32\xcopy.exe 2009-03-29 19:33:17 ----A---- C:\windows\system32\xactsrv.dll 2009-03-29 19:33:17 ----A---- C:\windows\system32\wzcsvc.dll 2009-03-29 19:33:17 ----A---- C:\windows\system32\wzcsapi.dll 2009-03-29 19:33:17 ----A---- C:\windows\system32\wzcdlg.dll 2009-03-29 19:33:15 ----A---- C:\windows\system32\comdlg32.dll 2009-03-29 19:33:15 ----A---- C:\windows\system32\comctl32.dll 2009-03-29 19:33:15 ----A---- C:\windows\system32\cmd.exe 2009-03-29 19:33:15 ----A---- C:\windows\system32\cacls.exe 2009-03-29 19:33:15 ----A---- C:\windows\system32\autoconv.exe 2009-03-29 19:33:15 ----A---- C:\windows\system32\autochk.exe 2009-03-29 19:33:15 ----A---- C:\windows\system32\advapi32.dll 2009-03-29 19:33:14 ----A---- C:\windows\system32\localspl.dll 2009-03-29 19:33:14 ----A---- C:\windows\system32\lmhsvc.dll 2009-03-29 19:33:14 ----A---- C:\windows\system32\kernel32.dll 2009-03-29 19:33:14 ----A---- C:\windows\system32\imagehlp.dll 2009-03-29 19:33:14 ----A---- C:\windows\system32\ftp.exe 2009-03-29 19:33:14 ----A---- C:\windows\system32\format.com 2009-03-29 19:33:14 ----A---- C:\windows\system32\dhcpcsvc.dll 2009-03-29 19:33:14 ----A---- C:\windows\system32\csrsrv.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\ntprint.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\ntlsapi.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\ntdll.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\nslookup.exe 2009-03-29 19:33:13 ----A---- C:\windows\system32\msv1_0.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\msgsvc.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\mgmtapi.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\lsasrv.dll 2009-03-29 19:33:13 ----A---- C:\windows\system32\locator.exe 2009-03-29 19:33:12 ----A---- C:\windows\system32\rasauto.dll 2009-03-29 19:33:12 ----A---- C:\windows\system32\rasapi32.dll 2009-03-29 19:33:12 ----A---- C:\windows\system32\printui.dll 2009-03-29 19:33:12 ----A---- C:\windows\system32\perfctrs.dll 2009-03-29 19:33:12 ----A---- C:\windows\system32\olecnv32.dll 2009-03-29 19:33:12 ----A---- C:\windows\system32\oleaut32.dll 2009-03-29 19:33:12 ----A---- C:\windows\system32\nwprovau.dll 2009-03-29 19:33:12 ----A---- C:\windows\system32\ntvdm.exe 2009-03-29 19:33:11 ----A---- C:\windows\system32\schannel.dll 2009-03-29 19:33:11 ----A---- C:\windows\system32\scardsvr.exe 2009-03-29 19:33:11 ----A---- C:\windows\system32\savedump.exe 2009-03-29 19:33:11 ----A---- C:\windows\system32\samsrv.dll 2009-03-29 19:33:11 ----A---- C:\windows\system32\samlib.dll 2009-03-29 19:33:11 ----A---- C:\windows\system32\rshx32.dll 2009-03-29 19:33:11 ----A---- C:\windows\system32\rastapi.dll 2009-03-29 19:33:11 ----A---- C:\windows\system32\rasman.dll 2009-03-29 19:33:11 ----A---- C:\windows\system32\rasdlg.dll 2009-03-29 19:33:10 ----A---- C:\windows\system32\syssetup.dll 2009-03-29 19:33:10 ----A---- C:\windows\system32\srvsvc.dll 2009-03-29 19:33:10 ----A---- C:\windows\system32\smss.exe 2009-03-29 19:33:10 ----A---- C:\windows\system32\setupapi.dll 2009-03-29 19:33:10 ----A---- C:\windows\system32\sessmgr.exe 2009-03-29 19:33:10 ----A---- C:\windows\system32\services.exe 2009-03-29 19:33:09 ----A---- C:\windows\system32\wkssvc.dll 2009-03-29 19:33:09 ----A---- C:\windows\system32\win32spl.dll 2009-03-29 19:33:09 ----A---- C:\windows\system32\userinit.exe 2009-03-29 19:33:09 ----A---- C:\windows\system32\untfs.dll 2009-03-29 19:33:09 ----A---- C:\windows\system32\ulib.dll 2009-03-29 19:33:09 ----A---- C:\windows\system32\tcpmonui.dll 2009-03-29 19:33:00 ----A---- C:\windows\system32\ntkrnlpa.exe 2009-03-29 19:33:00 ----A---- C:\windows\system32\HAL.DLL 2009-03-29 19:32:59 ----A---- C:\windows\system32\ntoskrnl.exe 2009-03-29 18:10:23 ----HDC---- C:\windows\$NtUninstallXPSEPSCLP$ 2009-03-29 17:47:21 ----D---- C:\d70f59010c1c22b2bc99e1709048eacd 2009-03-29 17:33:39 ----HDC---- C:\windows\$NtUninstallKB950749$ 2009-03-29 17:30:24 ----D---- C:\windows\ie7updates 2009-03-29 17:20:36 ----D---- C:\windows\network diagnostic 2009-03-29 17:20:31 ----HDC---- C:\windows\$NtUninstallKB914440$ 2009-03-29 17:11:44 ----HDC---- C:\windows\$NtUninstallKB945553$ 2009-03-29 17:11:34 ----HDC---- C:\windows\$NtUninstallKB943055$ 2009-03-29 17:11:25 ----HDC---- C:\windows\$NtUninstallKB946026$ 2009-03-29 17:11:14 ----HDC---- C:\windows\$NtUninstallKB943485$ 2009-03-29 17:11:01 ----HDC---- C:\windows\$NtUninstallKB937894$ 2009-03-29 17:10:50 ----HDC---- C:\windows\$NtUninstallKB944653$ 2009-03-29 17:10:39 ----HDC---- C:\windows\$NtUninstallKB933729$ 2009-03-29 17:10:27 ----HDC---- C:\windows\$NtUninstallKB938127$ 2009-03-29 17:10:17 ----HDC---- C:\windows\$NtUninstallKB938828$ 2009-03-29 17:10:08 ----HDC---- C:\windows\$NtUninstallKB935839$ 2009-03-29 17:09:29 ----HDC---- C:\windows\$NtUninstallKB929123$ 2009-03-28 17:00:30 ----HDC---- C:\windows\$NtUninstallKB951376-v2_0$ 2009-03-28 17:00:21 ----HDC---- C:\windows\$NtUninstallKB952954_0$ 2009-03-28 17:00:14 ----HDC---- C:\windows\$NtUninstallKB946648_0$ 2009-03-28 17:00:05 ----HDC---- C:\windows\$NtUninstallKB956803_0$ 2009-03-28 16:59:14 ----HDC---- C:\windows\$NtUninstallKB955839$ 2009-03-28 16:58:48 ----HDC---- C:\windows\$NtUninstallKB958215_0$ 2009-03-28 16:58:19 ----HDC---- C:\windows\$NtUninstallKB950974_0$ 2009-03-28 16:58:11 ----HDC---- C:\windows\$NtUninstallKB951698_0$ 2009-03-28 16:57:20 ----HDC---- C:\windows\$NtUninstallKB960225_0$ 2009-03-28 16:56:41 ----HDC---- C:\windows\$NtUninstallKB956841_0$ 2009-03-28 16:55:58 ----HDC---- C:\windows\$NtUninstallKB960714_0$ 2009-03-28 16:53:58 ----HDC---- C:\windows\$NtUninstallKB938464-v2_0$ 2009-03-28 16:53:45 ----HDC---- C:\windows\$NtUninstallKB925720$ 2009-03-28 16:52:28 ----HDC---- C:\windows\$NtUninstallKB952069_WM9$ 2009-03-28 16:49:32 ----HDC---- C:\windows\$NtUninstallKB941569$ 2009-03-28 16:48:47 ----HDC---- C:\windows\$NtUninstallKB950762_0$ 2009-03-28 16:48:39 ----HDC---- C:\windows\$NtUninstallKB957097_0$ 2009-03-28 16:48:32 ----HDC---- C:\windows\$NtUninstallKB960715$ 2009-03-28 16:48:25 ----HDC---- C:\windows\$NtUninstallKB958687_0$ 2009-03-28 16:48:17 ----HDC---- C:\windows\$NtUninstallKB952287_0$ 2009-03-28 16:45:55 ----HDC---- C:\windows\$NtUninstallKB967715_0$ 2009-03-28 16:45:36 ----HDC---- C:\windows\$NtUninstallKB929399$ 2009-03-28 16:44:17 ----HDC---- C:\windows\$NtUninstallKB950760$ 2009-03-28 16:43:43 ----HDC---- C:\windows\$NtUninstallKB951066_0$ 2009-03-28 16:43:26 ----HDC---- C:\windows\$NtUninstallKB958690_0$ 2009-03-28 16:42:47 ----HDC---- C:\windows\$NtUninstallKB951748_0$ 2009-03-28 16:40:58 ----HDC---- C:\windows\$NtUninstallKB954600_0$ 2009-03-28 16:40:50 ----HDC---- C:\windows\$NtUninstallKB958644_0$ 2009-03-28 16:40:41 ----HDC---- C:\windows\$NtUninstallKB955069_0$ 2009-03-28 16:40:19 ----HDC---- C:\windows\$NtUninstallKB956802_0$ 2009-03-28 16:39:31 ----HDC---- C:\windows\$NtUninstallKB944338-v2$ 2009-03-28 16:38:47 ----HDC---- C:\windows\$NtUninstallKB936782_WMP10$ 2009-03-28 12:06:40 ----N---- C:\windows\system32\wlanapi.dll 2009-03-28 12:06:25 ----N---- C:\windows\system32\tspkg.dll 2009-03-28 12:06:25 ----N---- C:\windows\system32\tsgqec.dll 2009-03-28 12:06:08 ----N---- C:\windows\system32\setupn.exe 2009-03-28 12:06:03 ----N---- C:\windows\system32\rhttpaa.dll 2009-03-28 12:06:01 ----N---- C:\windows\system32\rasqec.dll 2009-03-28 12:06:01 ----N---- C:\windows\system32\qutil.dll 2009-03-28 12:05:59 ----N---- C:\windows\system32\qcliprov.dll 2009-03-28 12:05:59 ----N---- C:\windows\system32\qagentrt.dll 2009-03-28 12:05:58 ----N---- C:\windows\system32\qagent.dll 2009-03-28 12:05:52 ----N---- C:\windows\system32\onex.dll 2009-03-28 12:05:40 ----N---- C:\windows\system32\napstat.exe 2009-03-28 12:05:40 ----N---- C:\windows\system32\napmontr.dll 2009-03-28 12:05:40 ----N---- C:\windows\system32\napipsec.dll 2009-03-28 12:05:35 ----N---- C:\windows\system32\msshavmsg.dll 2009-03-28 12:05:35 ----N---- C:\windows\system32\mssha.dll 2009-03-28 12:05:14 ----N---- C:\windows\system32\mmcperf.exe 2009-03-28 12:05:13 ----N---- C:\windows\system32\mmcfxcommon.dll 2009-03-28 12:05:13 ----N---- C:\windows\system32\mmcex.dll 2009-03-28 12:05:13 ----N---- C:\windows\system32\microsoft.managementconsole.dll 2009-03-28 12:04:56 ----N---- C:\windows\system32\l2gpstore.dll 2009-03-28 12:04:55 ----N---- C:\windows\system32\kmsvc.dll 2009-03-28 12:04:54 ----N---- C:\windows\system32\kbdpash.dll 2009-03-28 12:04:54 ----N---- C:\windows\system32\kbdnepr.dll 2009-03-28 12:04:54 ----N---- C:\windows\system32\kbdiultn.dll 2009-03-28 12:04:54 ----N---- C:\windows\system32\kbdbhc.dll 2009-03-28 12:04:49 ----N---- C:\windows\system32\smtpapi.dll 2009-03-28 12:04:48 ----N---- C:\windows\system32\rwnh.dll 2009-03-28 12:04:31 ----A---- C:\windows\003506_.tmp 2009-03-28 12:04:27 ----N---- C:\windows\system32\eapsvc.dll 2009-03-28 12:04:27 ----N---- C:\windows\system32\eapqec.dll 2009-03-28 12:04:27 ----N---- C:\windows\system32\eappprxy.dll 2009-03-28 12:04:26 ----N---- C:\windows\system32\eapphost.dll 2009-03-28 12:04:26 ----N---- C:\windows\system32\eappgnui.dll 2009-03-28 12:04:26 ----N---- C:\windows\system32\eappcfg.dll 2009-03-28 12:04:26 ----N---- C:\windows\system32\eapp3hst.dll 2009-03-28 12:04:26 ----N---- C:\windows\system32\eapolqec.dll 2009-03-28 12:04:21 ----N---- C:\windows\system32\dot3ui.dll 2009-03-28 12:04:21 ----N---- C:\windows\system32\dot3svc.dll 2009-03-28 12:04:21 ----N---- C:\windows\system32\dot3msm.dll 2009-03-28 12:04:21 ----N---- C:\windows\system32\dot3gpclnt.dll 2009-03-28 12:04:21 ----N---- C:\windows\system32\dot3dlg.dll 2009-03-28 12:04:21 ----N---- C:\windows\system32\dot3cfg.dll 2009-03-28 12:04:21 ----N---- C:\windows\system32\dot3api.dll 2009-03-28 12:04:19 ----N---- C:\windows\system32\dimsroam.dll 2009-03-28 12:04:19 ----N---- C:\windows\system32\dimsntfy.dll 2009-03-28 12:04:18 ----N---- C:\windows\system32\dhcpqec.dll 2009-03-28 12:04:14 ----N---- C:\windows\system32\credssp.dll 2009-03-28 12:04:04 ----N---- C:\windows\system32\bitsprx4.dll 2009-03-28 12:04:04 ----N---- C:\windows\system32\azroles.dll 2009-03-28 12:03:51 ----N---- C:\windows\system32\aaclient.dll 2009-03-28 08:57:08 ----SHDC---- C:\Program Files\Fichiers communs\WindowsLiveInstaller 2009-03-28 08:56:33 ----D---- C:\Program Files\Windows Live 2009-03-28 08:55:36 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller 2009-03-28 08:38:36 ----A---- C:\windows\system32\mucltui.dll.mui 2009-03-28 08:38:04 ----A---- C:\windows\system32\wucltui.dll.mui 2009-03-28 08:38:04 ----A---- C:\windows\system32\wuaueng.dll.mui 2009-03-28 08:38:04 ----A---- C:\windows\system32\wuapi.dll.mui 2009-03-27 12:10:25 ----A---- C:\windows\ntbtlog.txt 2009-03-26 22:21:56 ----A---- C:\windows\wininit.ini 2009-03-26 21:33:59 ----D---- C:\Program Files\Spybot - Search & Destroy 2009-03-26 21:33:59 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2009-03-26 21:11:43 ----D---- C:\logiciel 2009-03-26 18:24:46 ----D---- C:\windows\WBEM 2009-03-26 18:24:45 ----D---- C:\windows\system32\fr-fr 2009-03-26 18:22:16 ----HDC---- C:\windows\$NtServicePackUninstallIDNMitigationAPIs$ 2009-03-26 18:19:02 ----HDC---- C:\windows\$NtServicePackUninstallNLSDownlevelMapping$ 2009-03-26 18:17:34 ----HDC---- C:\windows\$NtUninstallKB915865$ 2009-03-26 16:35:50 ----A---- C:\windows\system32\aswBoot.exe 2009-03-26 16:35:44 ----D---- C:\Program Files\Alwil Software ======List of files/folders modified in the last 1 months====== 2009-04-08 14:11:19 ----D---- C:\windows\Temp 2009-04-08 14:07:12 ----D---- C:\windows\system32\drivers 2009-04-08 14:07:12 ----AD---- C:\Program Files 2009-04-08 14:06:30 ----A---- C:\windows\SchedLgU.Txt 2009-04-08 11:55:25 ----D---- C:\windows\system32 2009-04-08 11:54:11 ----AD---- C:\WINDOWS 2009-04-08 11:54:09 ----SD---- C:\windows\Downloaded Program Files 2009-04-07 10:09:10 ----A---- C:\windows\winamp.ini 2009-04-05 08:58:08 ----HD---- C:\windows\inf 2009-04-05 08:58:02 ----D---- C:\windows\system32\CatRoot2 2009-04-05 08:46:10 ----SHD---- C:\windows\Installer 2009-04-05 08:46:08 ----D---- C:\windows\WinSxS 2009-04-05 08:28:02 ----RSHDC---- C:\windows\system32\dllcache 2009-04-05 08:28:01 ----D---- C:\windows\Help 2009-04-05 08:28:01 ----D---- C:\Program Files\Internet Explorer 2009-04-05 07:33:32 ----D---- C:\windows\system32\CatRoot 2009-04-05 07:21:49 ----A---- C:\windows\imsins.BAK 2009-04-05 07:19:19 ----D---- C:\windows\Media 2009-04-04 23:15:47 ----A---- C:\windows\OEWABLog.txt 2009-04-04 23:15:00 ----A---- C:\windows\setuplog.txt 2009-04-04 23:00:34 ----A---- C:\windows\system32\PerfStringBackup.INI 2009-04-04 22:57:21 ----D---- C:\windows\system32\Setup 2009-04-04 22:57:21 ----D---- C:\windows\AppPatch 2009-04-04 22:57:21 ----D---- C:\Program Files\Messenger 2009-04-04 22:57:20 ----D---- C:\windows\system32\wbem 2009-04-04 22:57:19 ----RSD---- C:\windows\Fonts 2009-04-04 22:11:30 ----A---- C:\windows\iis6.BAK 2009-04-04 21:59:28 ----D---- C:\windows\security 2009-04-04 21:45:05 ----D---- C:\windows\ServicePackFiles 2009-04-04 21:45:03 ----D---- C:\windows\EHome 2009-04-04 21:44:58 ----D---- C:\windows\system32\inetsrv 2009-04-04 21:44:57 ----D---- C:\windows\ime 2009-04-04 21:44:13 ----D---- C:\windows\system32\usmt 2009-04-04 21:44:02 ----D---- C:\windows\system32\bits 2009-04-04 21:44:02 ----D---- C:\windows\peernet 2009-04-04 21:44:01 ----D---- C:\Program Files\Movie Maker 2009-04-04 21:37:49 ----D---- C:\windows\system32\Restore 2009-04-04 21:37:48 ----D---- C:\windows\system32\npp 2009-04-04 21:37:45 ----D---- C:\windows\msagent 2009-04-04 21:37:41 ----D---- C:\windows\srchasst 2009-04-04 21:37:35 ----D---- C:\Program Files\NetMeeting 2009-04-04 21:37:30 ----D---- C:\windows\system32\Com 2009-04-04 21:37:21 ----D---- C:\Program Files\Windows Media Player 2009-04-04 21:37:08 ----D---- C:\Program Files\Windows NT 2009-04-04 21:37:07 ----D---- C:\Program Files\Outlook Express 2009-04-04 21:36:56 ----D---- C:\Program Files\Fichiers communs\System 2009-04-04 21:36:31 ----D---- C:\windows\system32\oobe 2009-04-04 21:36:29 ----D---- C:\windows\system 2009-04-04 21:32:10 ----D---- C:\windows\system32\ReinstallBackups 2009-04-01 07:27:47 ----A---- C:\windows\win.ini 2009-04-01 07:27:47 ----A---- C:\windows\system.ini 2009-03-31 19:38:54 ----D---- C:\Program Files\pasystem 2009-03-31 09:49:14 ----HD---- C:\Program Files\InstallShield Installation Information 2009-03-31 09:31:56 ----D---- C:\windows\Globalization 2009-03-31 09:31:54 ----D---- C:\windows\Minidump 2009-03-31 09:25:53 ----D---- C:\Program Files\Fichiers communs\InstallShield 2009-03-30 01:46:06 ----SD---- C:\windows\Tasks 2009-03-29 19:09:02 ----D---- C:\windows\Microsoft.NET 2009-03-29 19:08:57 ----RSD---- C:\windows\assembly 2009-03-29 18:09:05 ----D---- C:\windows\system32\XPSViewer 2009-03-29 17:49:21 ----D---- C:\windows\system32\en-us 2009-03-29 17:32:31 ----HD---- C:\windows\$hf_mig$ 2009-03-28 16:50:14 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared 2009-03-28 10:03:51 ----D---- C:\windows\Debug 2009-03-28 09:54:48 ----DC---- C:\windows\system32\DRVSTORE 2009-03-28 08:57:08 ----D---- C:\Program Files\Fichiers communs 2009-03-27 10:58:48 ----D---- C:\Program Files\psdriver 2009-03-27 10:52:52 ----D---- C:\Program Files\DNS 2009-03-26 17:53:36 ----D---- C:\windows\system32\config 2009-03-26 17:53:31 ----D---- C:\Program Files\PrintView 2009-03-26 16:22:07 ----D---- C:\Program Files\EPSON 2009-03-10 22:18:20 ----N---- C:\windows\system32\WgaTray.exe 2009-03-10 22:18:20 ----A---- C:\windows\system32\LegitCheckControl.dll 2009-03-10 22:18:00 ----A---- C:\windows\system32\WgaLogon.dll ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\windows\system32\drivers\Aavmker4.sys [2007-09-06 26624] R1 AmdK7;Pilote de processeur AMD K7; C:\windows\System32\DRIVERS\amdk7.sys [2008-04-13 41856] R1 aswTdi;avast! Network Shield Support; C:\windows\system32\drivers\aswTdi.sys [2007-09-06 42912] R1 prodrv06;StarForce Protection Environment Driver v6; C:\windows\System32\drivers\prodrv06.sys [2003-10-10 52128] R2 aswMon2;avast! Standard Shield Support; C:\windows\system32\drivers\aswMon2.sys [2007-09-06 94416] R2 hwpsgt;hwpsgt; C:\windows\System32\DRIVERS\hwpsgt.sys [2006-01-11 137344] R2 lemsgt;lemsgt; C:\windows\System32\DRIVERS\lemsgt.sys [2006-01-11 9472] R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\System32\DRIVERS\AGRSM.sys [2006-01-25 1149888] R3 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr.sys [2007-09-06 23152] R3 FET5X86V;VIA Rhine-Family Fast-Ethernet Adapter Driver Service; C:\windows\system32\DRIVERS\fetnd5bv.sys [2006-08-31 43008] R3 MODEMCSA;Périphérique de filtrage de flux Unimodem; C:\windows\system32\drivers\MODEMCSA.sys [2001-08-17 16128] R3 usbhub;Concentrateur USB2; C:\windows\System32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 usbstor;Pilote de stockage de masse USB; C:\windows\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\windows\System32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 viagfx;viagfx; C:\windows\System32\DRIVERS\vtmini.sys [2004-02-04 134144] R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\windows\system32\drivers\vinyl97.sys [2004-09-06 161536] S1 kbdhid;Pilote HID de clavier; C:\windows\system32\DRIVERS\kbdhid.sys [2008-04-13 14720] S3 aaudstum;aaudstum; \??\C:\DOCUME~1\Manuella\LOCALS~1\Temp\aaudstum.sys [] S3 catchme;catchme; \??\C:\DOCUME~1\Manuella\LOCALS~1\Temp\catchme.sys [] S3 CCDECODE;Décodeur sous-titre fermé; C:\windows\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\windows\System32\DRIVERS\fetnd5.sys [2001-08-17 27165] S3 HidUsb;Pilote de classe HID Microsoft; C:\windows\System32\DRIVERS\hidusb.sys [2008-04-13 10368] S3 mouhid;Pilote HID de souris; C:\windows\System32\DRIVERS\mouhid.sys [2001-08-23 12288] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\windows\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\windows\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; C:\windows\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\windows\system32\DRIVERS\pccsmcfd.sys [] S3 SLIP;Détrameur décalage BDA; C:\windows\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 SQTECH905C;DualCamera; C:\windows\System32\Drivers\Capt905c.sys [2005-06-17 33545] S3 streamip;BDA IPSink; C:\windows\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 usbccgp;Pilote parent générique USB Microsoft; C:\windows\System32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 usbprint;Classe d'imprimantes USB Microsoft; C:\windows\system32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 usbscan;Pilote de scanneur USB; C:\windows\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\windows\system32\DRIVERS\w810bus.sys [2006-02-20 58288] S3 w810mdfl;Sony Ericsson W810 USB WMC Modem Filter; C:\windows\system32\DRIVERS\w810mdfl.sys [2006-02-20 8336] S3 w810mdm;Sony Ericsson W810 USB WMC Modem Driver; C:\windows\system32\DRIVERS\w810mdm.sys [2006-02-20 94064] S3 w810mgmt;Sony Ericsson W810 USB WMC Device Management Drivers (WDM); C:\windows\system32\DRIVERS\w810mgmt.sys [2006-02-20 85408] S3 w810obex;Sony Ericsson W810 USB WMC OBEX Interface; C:\windows\system32\DRIVERS\w810obex.sys [2006-02-20 83344] S3 WpdUsb;WpdUsb; C:\windows\system32\DRIVERS\wpdusb.sys [2006-10-18 38528] S3 WSTCODEC;Codec Teletext standard; C:\windows\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\windows\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] S3 ZSMC301b;Philips SPC 200NC PC Camera; C:\windows\System32\Drivers\usbVM31b.sys [] S4 IntelIde;IntelIde; C:\windows\system32\drivers\IntelIde.sys [] S4 mchInjDrv;mchInjDrv; \??\C:\DOCUME~1\Manuella\LOCALS~1\Temp\mc22.tmp [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2007-09-06 16248] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2007-09-06 132472] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-31 152984] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\windows\system32\svchost.exe [2008-04-13 14336] R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2007-09-06 243064] R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2007-09-06 345464] S3 aspnet_state;Service d'état ASP.NET; C:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632] S3 idsvc;Windows CardSpace; C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328] S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF----------------- RSIT info info.txt logfile of random's system information tool 1.06 2009-04-08 14:16:14 ======Uninstall list====== -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf AC3Filter (remove only)-->C:\Program Files\AC3Filter\uninstall.exe Adobe Flash Player 10 ActiveX-->C:\windows\system32\Macromed\Flash\uninstall_activeX.exe Adobe® Photoshop® Album Edition Découverte 3.0-->MsiExec.exe /I{4BDFD2CE-6329-42E4-9801-9B3D1F10D79B} Agere Systems PCI Soft Modem-->agrsmdel Ahead Nero Burning ROM-->C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL Apple Software Update-->MsiExec.exe /I{74EC78BC-B379-4E29-9006-8F161DCAABA6} Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe Assistant de connexion Windows Live-->MsiExec.exe /I{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2} avast! Antivirus-->rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup CamfrogWEB Advanced ActiveX Plugin (remove only)-->"C:\Program Files\CFWebAdvancedU\Uninstall.exe" Correctif pour Windows XP (KB952287)-->"C:\windows\$NtUninstallKB952287$\spuninst\spuninst.exe" Correctif pour Windows XP (KB961118)-->"C:\windows\$NtUninstallKB961118$\spuninst\spuninst.exe" Correctif Windows XP - KB885250-->C:\WINDOWS\$NtUninstallKB885250$\spuninst\spuninst.exe Correctif Windows XP - KB887742-->C:\WINDOWS\$NtUninstallKB887742$\spuninst\spuninst.exe Correctif Windows XP - KB888113-->C:\WINDOWS\$NtUninstallKB888113$\spuninst\spuninst.exe Correctif Windows XP - KB890923-->"C:\WINDOWS\$NtUninstallKB890923$\spuninst\spuninst.exe" Creative Modem Blaster V.92 DI5733-1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C1C0717C-546A-11D7-9963-00A0C92C4EC3}\Setup.exe" -l0x40c /remove Dealio Toolbar-->MsiExec.exe /X{F789537C-DE16-4208-AA3A-D13493958E19} Disc2Phone-->MsiExec.exe /I{6E65247F-58F9-41CA-BE69-0316F7907170} EasyCleaner-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F5346614-B7C4-4E94-826A-E2363155233D}\setup.exe" -l0x9 -removeonly EPSON Logiciel imprimante-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /r EPSON PhotoQuicker3.5-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{65F5B7AF-3363-11D7-BB6B-00018021113F}\SETUP.EXE" -l0x40c uninst EPSON PRINT Image Framer Tool2.1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{23B59ED4-C360-11D7-875B-0090CC005647}\SETUP.EXE" -l0x40c anything EPSON Web-To-Page-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}\SETUP.EXE" -l0x40c -anything ffdshow (remove only)-->"C:\Program Files\ffdshow\uninstall.exe" Free Mp3 Wma Converter V 1.5.3-->"C:\Program Files\Free Audio Pack\unins000.exe" HijackThis 2.0.2-->"C:\DOCUME~1\Manuella\LOCALS~1\Temp\Rar$EX04.765\HijackThis.exe" /uninstall Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT="" Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT="" Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\windows\$NtUninstallKB929399$\spuninst\spuninst.exe" Hotfix for Windows Media Format SDK (KB902344)-->"C:\windows\$NtUninstallKB902344$\spuninst\spuninst.exe" Java 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF} Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe" Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700} Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{72AD53CC-CCC0-3757-8480-9EE176866A7C} Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{0BD83598-C2EF-3343-847B-7D2E84599128} Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31} Microsoft .NET Framework 3.5 SP1-->C:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} Microsoft Internationalized Domain Names Mitigation APIs-->"C:\windows\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe" Microsoft National Language Support Downlevel APIs-->"C:\windows\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe" Microsoft Office XP Professional avec FrontPage-->MsiExec.exe /I{9028040C-6000-11D3-8CFE-0050048383C9} Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\windows\$NtUninstallWudf01000$\spuninst\spuninst.exe" Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\windows\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\windows\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB893066)-->"C:\WINDOWS\$NtUninstallKB893066$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB896422)-->"C:\WINDOWS\$NtUninstallKB896422$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB901190)-->"C:\WINDOWS\$NtUninstallKB901190$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB905915)-->"C:\WINDOWS\$NtUninstallKB905915$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB912812)-->"C:\WINDOWS\$NtUninstallKB912812$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB913446)-->"C:\WINDOWS\$NtUninstallKB913446$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB916281)-->"C:\WINDOWS\$NtUninstallKB916281$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB917159)-->"C:\WINDOWS\$NtUninstallKB917159$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB918439)-->"C:\WINDOWS\$NtUninstallKB918439$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB919007)-->"C:\WINDOWS\$NtUninstallKB919007$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB920670)-->"C:\WINDOWS\$NtUninstallKB920670$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\windows\$NtUninstallKB938464-v2$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\windows\$NtUninstallKB941569$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\windows\$NtUninstallKB946648$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\windows\$NtUninstallKB950760$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\windows\$NtUninstallKB950762$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\windows\$NtUninstallKB950974$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\windows\$NtUninstallKB951066$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\windows\$NtUninstallKB951376-v2$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\windows\$NtUninstallKB951698$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\windows\$NtUninstallKB951748$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\windows\$NtUninstallKB952954$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\windows\$NtUninstallKB954600$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\windows\$NtUninstallKB955069$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\windows\$NtUninstallKB956802$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\windows\$NtUninstallKB956803$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\windows\$NtUninstallKB956841$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\windows\$NtUninstallKB957097$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958215)-->"C:\windows\$NtUninstallKB958215$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\windows\$NtUninstallKB958644$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\windows\$NtUninstallKB958687$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\windows\$NtUninstallKB958690$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\windows\$NtUninstallKB960225$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960714)-->"C:\windows\$NtUninstallKB960714$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\windows\$NtUninstallKB960715$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB955839)-->"C:\windows\$NtUninstallKB955839$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB967715)-->"C:\windows\$NtUninstallKB967715$\spuninst\spuninst.exe" Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 6 Service Pack 2 (KB954459)-->MsiExec.exe /I{1A528690-6A2D-4BC5-B143-8C4AE8D19D96} Navilog1 3.7.6-->"C:\Program Files\Navilog1\unins000.exe" Package de base Microsoft de service de chiffrement pour cartes à puce-->"C:\windows\$NtUninstallbasecsp$\spuninst\spuninst.exe" PIF DESIGNER2.1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0A7124DF-F8A4-405B-904F-CFD3D3DFB5AE}\SETUP.EXE" -l0x40c anything PowerDVD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\Setup.exe" -uninstall Sony Ericsson PC Suite 1.20.173-->MsiExec.exe /I{C5ADA65A-7828-4D85-B071-ECC52B51F794} Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe" SuperCopier2-->"C:\Program Files\SuperCopier2\SC2Uninst.exe" UniChrome IGP Driver and Utilities-->C:\PROGRA~1\S3Inc\S3\s3setvga.exe -s -fC:\PROGRA~1\S3Inc\S3\S3.uns VIA Audio Driver Setup Program-->RunDll32.exe UnAudioNT.dll,UninstallAudio C:\WINDOWS\IsUninst.exe -y-f"C:\PROGRA~1\VIAudioi\SBASetup\Uninst.isu" VIA Platform Device Manager-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{20D4A895-748C-4D88-871C-FDB1695B0169} VIA Rhine-Family Fast-Ethernet Adapter-->Rundll32.exe vuins32.dll,vuins32Ex $Rhine $VIA Winamp (remove only)-->"C:\Program Files\Winamp\UninstWA.exe" Windows Genuine Advantage v1.3.0254.0-->MsiExec.exe /I{63569CE9-FA00-469C-AF5C-E5D4D93ACF91} Windows Imaging Component-->"C:\windows\$NtUninstallWIC$\spuninst\spuninst.exe" Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390} Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65} Windows Live Safety Scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows Media Format 11 runtime-->"C:\windows\$NtUninstallWMFDist11$\spuninst\spuninst.exe" Windows Media Format SDK Hotfix - KB891122-->"C:\windows\$NtUninstallKB891122$\spuninst\spuninst.exe" Windows XP Service Pack 3-->"C:\windows\$NtServicePackUninstall$\spuninst\spuninst.exe" XML Paper Specification Shared Components Language Pack 1.0-->"C:\windows\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe" ======Hosts File====== 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com ======Security center information====== AV: avast! antivirus 4.7.1043 [VPS 090408-0] ======System event log====== Computer Name: ACHOUR-79NP15EW Event Code: 51 Message: Une erreur a été détectée sur le périphérique \Device\Harddisk6\D au cours d'une opération de pagination. Record Number: 63164 Source Name: Disk Time Written: 20090326182155.000000-240 Event Type: Avertissement User: Computer Name: ACHOUR-79NP15EW Event Code: 51 Message: Une erreur a été détectée sur le périphérique \Device\Harddisk6\D au cours d'une opération de pagination. Record Number: 63163 Source Name: Disk Time Written: 20090326182155.000000-240 Event Type: Avertissement User: Computer Name: ACHOUR-79NP15EW Event Code: 51 Message: Une erreur a été détectée sur le périphérique \Device\Harddisk6\D au cours d'une opération de pagination. Record Number: 63162 Source Name: Disk Time Written: 20090326182155.000000-240 Event Type: Avertissement User: Computer Name: ACHOUR-79NP15EW Event Code: 51 Message: Une erreur a été détectée sur le périphérique \Device\Harddisk6\D au cours d'une opération de pagination. Record Number: 63161 Source Name: Disk Time Written: 20090326182155.000000-240 Event Type: Avertissement User: Computer Name: ACHOUR-79NP15EW Event Code: 51 Message: Une erreur a été détectée sur le périphérique \Device\Harddisk6\D au cours d'une opération de pagination. Record Number: 63160 Source Name: Disk Time Written: 20090326182155.000000-240 Event Type: Avertissement User: =====Application event log===== Computer Name: ACHOUR-79NP15EW Event Code: 1000 Message: Application défaillante epmworker.exe, version 1.2.0.1183, module défaillant oleaut32.dll, version 5.1.2600.2180, adresse de défaillance 0x00004874. Record Number: 6957 Source Name: Application Error Time Written: 20080607144447.000000-240 Event Type: erreur User: Computer Name: ACHOUR-79NP15EW Event Code: 1800 Message: Le service Centre de sécurité Windows a démarré. Record Number: 6956 Source Name: SecurityCenter Time Written: 20080607144401.000000-240 Event Type: Informations User: Computer Name: ACHOUR-79NP15EW Event Code: 2 Message: Record Number: 6955 Source Name: BackWeb Plug-in - 8520111 Time Written: 20080607144358.000000-240 Event Type: Informations User: Computer Name: ACHOUR-79NP15EW Event Code: 2 Message: Record Number: 6954 Source Name: BackWeb Plug-in - 8520111 Time Written: 20080606210836.000000-240 Event Type: Informations User: Computer Name: ACHOUR-79NP15EW Event Code: 4137 Message: CI a démarré pour le catalogue c:\system volume information\catalog.wci. Record Number: 6953 Source Name: Ci Time Written: 20080606192426.000000-240 Event Type: Informations User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Fichiers communs\Teleca Shared "windir"=%SystemRoot% "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 8 Stepping 1, AuthenticAMD "PROCESSOR_REVISION"=0801 "NUMBER_OF_PROCESSORS"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "FP_NO_HOST_CHECK"=NO -----------------EOF----------------- je ne sais pas ce qui c'est passé j'espere que ce sera bon cette fois
-
bonjour j'ai suivi la procedure et voici les raports navilog option2 Search Navipromo version 3.7.6 commencé le 07/04/2009 à 10:28:48,17 !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!! !!! Postez ce rapport sur le forum pour le faire analyser !!! !!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!! Outil exécuté depuis C:\Program Files\navilog1 Mise à jour le 14.03.2009 à 18h00 par IL-MAFIOSO Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : AMD Athlon XP 2400+ ) BIOS : Phoenix - AwardBIOS v6.00PG USER : Manuella ( Administrator ) BOOT : Normal boot Antivirus : avast! antivirus 4.7.1043 [VPS 090407-0] 4.7.1043 (Activated) C:\ (Local Disk) - NTFS - Total:32 Go (Free:17 Go) D:\ (USB) E:\ (USB) F:\ (USB) G:\ (USB) H:\ (CD or DVD) I:\ (CD or DVD) J:\ (Local Disk) - FAT - Total:0 Go (Free:0 Go) Recherche executé en mode normal *** Recherche dossiers dans "C:\windows" *** *** Recherche dossiers dans "C:\Program Files" *** *** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" *** *** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" *** *** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Manuella\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Manuella\locals~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Manuella\menudm~1\progra~1" *** *** Recherche avec Catchme-rootkit/stealth malware detector par gmer *** pour + d'infos : http://www.gmer.net *** Recherche avec GenericNaviSearch *** !!! Tous ces résultats peuvent révéler des fichiers légitimes !!! !!! A vérifier impérativement avant toute suppression manuelle !!! * Recherche dans "C:\windows\system32" * * Recherche dans "C:\Documents and Settings\Manuella\locals~1\applic~1" * *** Recherche fichiers *** C:\windows\Downloaded Program Files\egaccess4.inf trouvé ! C:\windows\Downloaded Program Files\IaLdr32.inf trouvé ! C:\windows\pack.epk trouvé ! C:\windows\tmlpcert2007 trouvé ! *** Recherche clés spécifiques dans le Registre *** !! Les clés trouvées ne sont pas forcément infectées !! HKEY_CURRENT_USER\Software\Lanconfig HKEY_CURRENT_USER\Software\mc *** Module de Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Recherche nouveaux fichiers Instant Access : 2)Recherche Heuristique : * Dans "C:\windows\system32" : orzkemayv_navtmp.dat trouvé ! * Dans "C:\Documents and Settings\Manuella\locals~1\applic~1" : 3)Recherche Certificats : Certificat Egroup trouvé ! Certificat Electronic-Group absent ! Certificat Montorgueil absent ! Certificat OOO-Favorit absent ! Certificat Sunny-Day-Design-Ltd absent ! 4)Recherche autres dossiers et fichiers connus : *** Analyse terminée le 07/04/2009 à 10:34:46,14 *** MBAM Malwarebytes' Anti-Malware 1.36 Version de la base de données: 1952 Windows 5.1.2600 Service Pack 3 08/04/2009 13:59:33 mbam-log-2009-04-08 (13-59-33).txt Type de recherche: Examen complet (C:\|J:\|) Eléments examinés: 130420 Temps écoulé: 1 hour(s), 41 minute(s), 33 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 8 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 1 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{ed8525ea-2bfc-4440-bd8a-20efb9d5e541} (Adware.Hotbar) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b64f4a7c-97c9-11da-8bde-f66bad1e3f3a} (Rogue.WinAntivirus) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c68ae9c0-0909-4ddc-b661-c1afb9f59898} (Adware.BookedSpace) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Screensavers.com (Adware.Comet) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\every toolbarevery toolbar (Adware.Trace) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): C:\Program Files\owcstp16.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully. RSIT log Logfile of random's system information tool 1.06 (written by random/random) Run by Manuella at 2009-04-08 14:16:04 Microsoft Windows XP Professionnel Service Pack 3 System drive C: has 18 GB (54%) free of 33 GB Total RAM: 479 MB (33% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:16:11, on 08/04/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\windows\System32\smss.exe C:\windows\system32\csrss.exe C:\windows\system32\winlogon.exe C:\windows\system32\services.exe C:\windows\system32\lsass.exe C:\windows\system32\svchost.exe C:\windows\system32\svchost.exe C:\windows\System32\svchost.exe C:\windows\system32\svchost.exe C:\windows\System32\svchost.exe C:\windows\System32\svchost.exe C:\windows\Explorer.EXE C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\windows\system32\spoolsv.exe C:\Program Files\VIAudioi\SBADeck\ADeck.exe C:\windows\AGRSMMSG.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe C:\Program Files\Winamp\Winampa.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\SuperCopier2\SuperCopier2.exe C:\windows\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe C:\WINDOWS\System32\cisvc.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe C:\windows\System32\svchost.exe C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\windows\System32\alg.exe C:\windows\system32\wuauclt.exe C:\Program Files\Microsoft Office\Office10\WINWORD.EXE C:\windows\system32\cidaemon.exe C:\WINDOWS\System32\wbem\wmiprvse.exe J:\RSIT.exe C:\hijakthis\Manuella.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - (no file) O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5CA6535C-3C7E-CE1F-BE3B-642E7C3C19B5} - (no file) O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\Dealio.dll (file missing) O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O4 - HKLM\..\Run: [AudioDeck] C:\Program Files\VIAudioi\SBADeck\ADeck.exe 1 O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [NeroCheck] C:\windows\system32\NeroCheck.exe O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe" O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Pando] "C:\Program Files\Pando Networks\Pando\pando.exe" /Automation O4 - HKCU\..\Run: [PaSystem] "C:\Program Files\pasystem\pasystem.exe" O4 - HKCU\..\Run: [superCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\windows\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [QUAD Windows service] C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Registry Cleaner.exe -h O4 - HKCU\..\Run: [QUAD Scheduler] C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Scheduler.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: >>> FREE PORN GALLERIES <<< - java script:{document.location='http://sexmaxx.com/freegalleries.htm';} O8 - Extra context menu item: Compare Prices with &Dealio - C:\Program Files\Dealio\res\DealioSearch.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1238243032843 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1238242957859 O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl.sun.com/webapps/download/AutoDL?BundleId=29223 O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {A1426AC5-8CE5-4A00-B71E-011D35709AC6} - http://advnt01.com/dialer/int_ver34.CAB O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} (Environnement d'exécution Java 1.4.0_03) - O18 - Filter hijack: deflate - (no CLSID) - (no file) O18 - Filter hijack: gzip - (no CLSID) - (no file) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O24 - Desktop Component 0: (no name) - http://spaces.msn.com/lumynella/blog/;<...><script src= O24 - Desktop Component 1: (no name) - http://astrocenter.wanadoo.fr/wanadoo/css/center.css O24 - Desktop Component 2: (no name) - file:///C:/DOCUME~1/Manuella/LOCALS~1/APPLIC~1/IM/Runtime/EMOTIC~1/12E9EC~1.GIF O24 - Desktop Component 3: (no name) - file:///C:/DOCUME~1/Manuella/LOCALS~1/APPLIC~1/IM/Runtime/Image/627F12~1/KISSIN~1.GIF O24 - Desktop Component 4: (no name) - file:///C:/DOCUME~1/Manuella/LOCALS~1/APPLIC~1/IM/Runtime/Image/F1B62D~1/LIPS_K~1.GIF -- End of file - 9247 bytes ======Scheduled tasks folder====== C:\windows\tasks\AppleSoftwareUpdate.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A}] SWEETIE Class [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}] Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA6535C-3C7E-CE1F-BE3B-642E7C3C19B5}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6A87B991-A31F-4130-AE72-6D0C294BF082}] DealioBHO Class - C:\Program Files\Dealio\Dealio.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-31 35840] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-31 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}] EpsonToolBandKicker Class - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2004-02-10 339968] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "AudioDeck"=C:\Program Files\VIAudioi\SBADeck\ADeck.exe [2004-09-30 7957504] "AGRSMMSG"=C:\windows\AGRSMMSG.exe [2004-06-29 88363] "Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744] "Adobe Photo Downloader"=C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe [2005-06-23 57344] "NeroCheck"=C:\windows\system32\NeroCheck.exe [2001-07-09 155648] "WinampAgent"=C:\Program Files\Winamp\Winampa.exe [2003-04-01 12288] "avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2007-09-06 79224] "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-31 148888] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe [] "MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-13 1695232] "Pando"=C:\Program Files\Pando Networks\Pando\pando.exe /Automation [] "PaSystem"=C:\Program Files\pasystem\pasystem.exe [] "SuperCopier2.exe"=C:\Program Files\SuperCopier2\SuperCopier2.exe [2006-07-07 1052672] "ctfmon.exe"=C:\windows\system32\ctfmon.exe [2008-04-13 15360] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe [2006-09-15 155896] "QUAD Windows service"=C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Registry Cleaner.exe -h [] "QUAD Scheduler"=C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Scheduler.exe [] C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\windows\system32\WgaLogon.dll [2009-03-10 265088] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\windows\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa] "notification packages"= scecli scecli scecli scecli%0
-
désolé je ne pensais pas qu'une solution me serais proposé aussi vite merci pour la rapidité voici le raport de navilog Search Navipromo version 3.7.6 commencé le 07/04/2009 à 10:28:48,17 !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!! !!! Postez ce rapport sur le forum pour le faire analyser !!! !!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!! Outil exécuté depuis C:\Program Files\navilog1 Mise à jour le 14.03.2009 à 18h00 par IL-MAFIOSO Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : AMD Athlon XP 2400+ ) BIOS : Phoenix - AwardBIOS v6.00PG USER : Manuella ( Administrator ) BOOT : Normal boot Antivirus : avast! antivirus 4.7.1043 [VPS 090407-0] 4.7.1043 (Activated) C:\ (Local Disk) - NTFS - Total:32 Go (Free:17 Go) D:\ (USB) E:\ (USB) F:\ (USB) G:\ (USB) H:\ (CD or DVD) I:\ (CD or DVD) J:\ (Local Disk) - FAT - Total:0 Go (Free:0 Go) Recherche executé en mode normal *** Recherche dossiers dans "C:\windows" *** *** Recherche dossiers dans "C:\Program Files" *** *** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" *** *** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" *** *** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Manuella\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Manuella\locals~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Manuella\menudm~1\progra~1" *** *** Recherche avec Catchme-rootkit/stealth malware detector par gmer *** pour + d'infos : http://www.gmer.net *** Recherche avec GenericNaviSearch *** !!! Tous ces résultats peuvent révéler des fichiers légitimes !!! !!! A vérifier impérativement avant toute suppression manuelle !!! * Recherche dans "C:\windows\system32" * * Recherche dans "C:\Documents and Settings\Manuella\locals~1\applic~1" * *** Recherche fichiers *** C:\windows\Downloaded Program Files\egaccess4.inf trouvé ! C:\windows\Downloaded Program Files\IaLdr32.inf trouvé ! C:\windows\pack.epk trouvé ! C:\windows\tmlpcert2007 trouvé ! *** Recherche clés spécifiques dans le Registre *** !! Les clés trouvées ne sont pas forcément infectées !! HKEY_CURRENT_USER\Software\Lanconfig HKEY_CURRENT_USER\Software\mc *** Module de Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Recherche nouveaux fichiers Instant Access : 2)Recherche Heuristique : * Dans "C:\windows\system32" : orzkemayv_navtmp.dat trouvé ! * Dans "C:\Documents and Settings\Manuella\locals~1\applic~1" : 3)Recherche Certificats : Certificat Egroup trouvé ! Certificat Electronic-Group absent ! Certificat Montorgueil absent ! Certificat OOO-Favorit absent ! Certificat Sunny-Day-Design-Ltd absent ! 4)Recherche autres dossiers et fichiers connus : *** Analyse terminée le 07/04/2009 à 10:34:46,14 *** j'attend pour continuer la procédure?
-
bonjour je suis confronté a un probleme le pc fonction lentement et en plus quand je fait la mise a jour d'internet explorer7 la il devient inutilisable. il ploque quand je veut aller dans l'explorateur je suis obligé de l'éteindre de force en plus je n'arrive pas a desintaller "dealio toolbar" autre précision : le pc est rester plus de 2 ans sans faire de mise a jour peu etre que mon probleme a déja été rencontré mais je vient de m'inscrire et je n'ai pas encore le temps de consulter le forum merci de votre aide voici le rapport Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 13:31:42, on 05/04/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\windows\System32\smss.exe C:\windows\system32\csrss.exe C:\windows\system32\winlogon.exe C:\windows\system32\services.exe C:\windows\system32\lsass.exe C:\windows\system32\svchost.exe C:\windows\system32\svchost.exe C:\windows\System32\svchost.exe C:\windows\system32\svchost.exe C:\windows\System32\svchost.exe C:\windows\Explorer.EXE C:\windows\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\windows\system32\spoolsv.exe C:\Program Files\VIAudioi\SBADeck\ADeck.exe C:\windows\AGRSMMSG.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe C:\Program Files\Winamp\Winampa.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\SuperCopier2\SuperCopier2.exe C:\windows\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe C:\WINDOWS\System32\cisvc.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe C:\windows\System32\svchost.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\windows\System32\alg.exe C:\windows\system32\wuauclt.exe C:\windows\system32\cidaemon.exe C:\hijakthis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - (no file) O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5CA6535C-3C7E-CE1F-BE3B-642E7C3C19B5} - (no file) O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\Dealio.dll (file missing) O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O4 - HKLM\..\Run: [AudioDeck] C:\Program Files\VIAudioi\SBADeck\ADeck.exe 1 O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [NeroCheck] C:\windows\system32\NeroCheck.exe O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe" O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Pando] "C:\Program Files\Pando Networks\Pando\pando.exe" /Automation O4 - HKCU\..\Run: [PaSystem] "C:\Program Files\pasystem\pasystem.exe" O4 - HKCU\..\Run: [superCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\windows\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [QUAD Windows service] C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Registry Cleaner.exe -h O4 - HKCU\..\Run: [QUAD Scheduler] C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Scheduler.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: >>> FREE PORN GALLERIES <<< - java script:{document.location='http://sexmaxx.com/freegalleries.htm';} O8 - Extra context menu item: Compare Prices with &Dealio - C:\Program Files\Dealio\res\DealioSearch.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {04F414E9-E352-4BC3-963D-7BFE5A5F31A9} - http://scripts.dlv4.com/binaries/egaccess4...ss4_1064_XP.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {321F38B6-7E5F-470E-B58C-927523B7AF92} - http://es6-scripts.dlv4.com/binaries/egacc..._1069_em_XP.cab O16 - DPF: {5F4D3335-3194-4167-85AE-E7325F2695EF} - http://scripts.dlv4.com/binaries/egaccess4..._1068_em_XP.cab O16 - DPF: {5FD9726A-4977-449D-8352-25FDD8A510B5} - http://scripts.dlv4.com/binaries/egaccess4..._1067_em_XP.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1238243032843 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1238242957859 O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl.sun.com/webapps/download/AutoDL?BundleId=29223 O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {A1426AC5-8CE5-4A00-B71E-011D35709AC6} - http://advnt01.com/dialer/int_ver34.CAB O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} (Environnement d'exécution Java 1.4.0_03) - O16 - DPF: {CB5D474E-A510-40A4-B5A4-838933BCBA64} - http://scripts.dlv4.com/binaries/egaccess4...ss4_1065_XP.cab O16 - DPF: {FA1D6D8F-C6ED-4752-8512-A33283240130} - http://scripts.dlv4.com/binaries/egaccess4...ss4_1066_XP.cab O16 - DPF: {FBF65A16-C9AB-465E-AECE-D2D9D5AB5E60} - http://scripts.dlv4.com/binaries/egaccess4...ss4_1067_XP.cab O18 - Filter hijack: deflate - (no CLSID) - (no file) O18 - Filter hijack: gzip - (no CLSID) - (no file) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O24 - Desktop Component 0: (no name) - http://spaces.msn.com/lumynella/blog/;<...><script src= O24 - Desktop Component 1: (no name) - http://astrocenter.wanadoo.fr/wanadoo/css/center.css O24 - Desktop Component 2: (no name) - file:///C:/DOCUME~1/Manuella/LOCALS~1/APPLIC~1/IM/Runtime/EMOTIC~1/12E9EC~1.GIF O24 - Desktop Component 3: (no name) - file:///C:/DOCUME~1/Manuella/LOCALS~1/APPLIC~1/IM/Runtime/Image/627F12~1/KISSIN~1.GIF O24 - Desktop Component 4: (no name) - file:///C:/DOCUME~1/Manuella/LOCALS~1/APPLIC~1/IM/Runtime/Image/F1B62D~1/LIPS_K~1.GIF -- End of file - 9980 bytes