Cabotine

Checkup : Results of screen317's Security Check version 0.99.6 Windows XP Service Pack 3 Internet Explorer 8 `````````````````````````````` Antivirus/Firewall Check: Avira AntiVir Personal - Free Antivirus Antivirus up to date! (On Access scanning disabled!) ``````````````````````````````` Anti-malware/Other Utilities Check: Malwarebytes' Anti-Malware HijackThis 2.0.2 CCleaner Java 6 Update 18 Out of date Java installed! Adobe Flash Player 10.0.45.2 Mozilla Firefox (3.6.9) ```````````````````````````````` Process Check: objlist.exe by Laurent Avira Antivir avgnt.exe Avira Antivir avguard.exe ```````````````````````````````` DNS Vulnerability Check: GREAT! (Not vulnerable to DNS cache poisoning) ``````````End of Log````````````

Extra : OTL Extras logfile created on: 2010-11-20 10:50:20 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\MicroC\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000C0C | Country: Canada | Language: FRC | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 70,00% Memory free 5,00 Gb Paging File | 4,00 Gb Available in Paging File | 80,00% Paging File free Paging file location(s): c:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 465,75 Gb Total Space | 315,61 Gb Free Space | 67,76% Space Free | Partition Type: NTFS Drive E: | 465,76 Gb Total Space | 358,64 Gb Free Space | 77,00% Space Free | Partition Type: NTFS Drive G: | 614,91 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: UDF Drive H: | 930,86 Gb Total Space | 792,86 Gb Free Space | 85,18% Space Free | Partition Type: NTFS Drive K: | 149,05 Gb Total Space | 61,87 Gb Free Space | 41,51% Space Free | Partition Type: NTFS Computer Name: NATHALIE | User Name: MicroC | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = htmlfile] -- Reg Error: Key error. File not found ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 "48113:TCP" = 48113:TCP:LocalSubNet:Disabled:maconfig_tcp "48113:UDP" = 48113:UDP:LocalSubNet:Disabled:maconfig_udp "3724:TCP" = 3724:TCP:*:Enabled:Blizzard Downloader: 3724 ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare -- (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- (Lime Wire, LLC) "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare -- (Microsoft Corporation) "C:\Program Files\Microsoft LifeCam\LifeExp.exe" = C:\Program Files\Microsoft LifeCam\LifeExp.exe:*:Enabled:LifeExp.exe -- (Microsoft Corporation) "C:\Program Files\Microsoft LifeCam\LifeCam.exe" = C:\Program Files\Microsoft LifeCam\LifeCam.exe:*:Enabled:LifeCam.exe -- (Microsoft Corporation) "C:\Program Files\Microsoft LifeCam\LifeEnC2.exe" = C:\Program Files\Microsoft LifeCam\LifeEnC2.exe:*:Enabled:LifeEnC2.exe -- (Microsoft Corporation) "C:\Program Files\Microsoft LifeCam\LifeTray.exe" = C:\Program Files\Microsoft LifeCam\LifeTray.exe:*:Enabled:LifeTray.exe -- (Microsoft Corporation) "C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation) "C:\Program Files\Ubisoft\Related Designs\ANNO 1404\Anno4.exe" = C:\Program Files\Ubisoft\Related Designs\ANNO 1404\Anno4.exe:*:Disabled:ANNO 1404 -- (Related Designs) "C:\Program Files\Ubisoft\Related Designs\ANNO 1404\tools\Anno4Web.exe" = C:\Program Files\Ubisoft\Related Designs\ANNO 1404\tools\Anno4Web.exe:*:Disabled:ANNO 1404 Web -- () "C:\Program Files\ma-config.com\maconfservice.exe" = C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Disabled:maconfservice -- (CybelSoft) "C:\Program Files\Orbitdownloader\orbitdm.exe" = C:\Program Files\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit -- (Orbitdownloader.com) "C:\Program Files\Orbitdownloader\orbitnet.exe" = C:\Program Files\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit -- (Orbitdownloader.com) "C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.) "C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.) "C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe" = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe:*:Enabled:EasyShare -- (Eastman Kodak Company) ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 "{007B37D9-0C45-4202-834B-DD5FAAE99D63}" = ArcSoft Print Creations - Slimline Card "{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser "{06E6E30D-B498-442F-A943-07DE41D7F785}" = Microsoft Search Enhancement Pack "{09CF6AF5-9206-4FD7-9B08-BA6819FB47E3}" = Anno 1404 "{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer "{14D4ED84-6A9A-45A0-96F6-1753768C3CB5}" = ESSPCD "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{18754BA4-4F0C-4E6E-888B-9496AFA05F43}" = Ma-Config.com "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{1F63ED0B-EDD2-4037-B6AB-1358C624AF48}" = Scan "{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = DVD Suite "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live "{2075CB0A-D26F-4DAA-B424-5079296B43BA}" = Windows Live FolderShare "{21E75254-410E-49C4-8981-2E1A2A2221F2}" = HP Diagnostic Assistant "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{236BB7C4-4419-42FD-040C-1E257A25E34D}" = Adobe Photoshop CS2 "{2405665A-16C9-4D3A-B70E-F006220E1472}" = Overland "{267868CE-6DFF-40F7-9C58-C01119B7B117}" = Fax "{26A24AE4-039D-4CA4-87B4-2F83216014FF}" = Java 6 Update 18 "{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime "{2BBC9458-07CA-4843-848B-5C8146E5EFA8}" = CreativeProjects "{2D03B6F8-DF36-4980-B7B6-5B93D5BA3A8F}" = essvatgt "{2F71F2BA-B513-4113-969C-18A84D238E27}" = 1310 "{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper "{310BC5E2-31AF-49BB-904D-E71EB93645DC}" = AI Suite "{34A59AC3-6C5C-4A09-A7F5-369A37176C8A}" = AiOSoftware "{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{36C97B5B-5593-45B8-B50E-DAD87036BD9D}" = Microsoft LifeCam "{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player "{3AE681E0-4E8D-453F-950A-48534D3C0724}" = Copy "{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform "{3CF78481-FB7B-4B51-99A2-D5E0CD0B3AAF}" = HPSystemDiagnostics "{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}" = ANNO 1404 "{3F7924B9-D148-3141-87B1-68F36043A940}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - FRA "{41254D7B-EADF-4078-AE4A-BD73B300EE86}" = Unload "{42938595-0D83-404D-9F73-F8177FDD531A}" = ESScore "{4537EA4B-F603-4181-89FB-2953FC695AB1}" = netbrdg "{457791C5-D702-4143-A7B2-2744BE9573F2}" = HP Software Update "{4634B21A-CC07-4396-890C-2B8168661FEA}" = Windows Live Writer "{46ABBC54-1872-4AA3-95E2-F2C063A63F31}" = Installation Windows Live "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{5316DFC9-CE99-4458-9AB3-E8726EDE0210}" = skin0001 "{553255F3-78FD-40F1-A6F8-6882140265FE}" = Apple Application Support "{56589DFE-0C29-4DFE-8E42-887B771ECD23}" = ArcSoft Print Creations - Photo Book "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{56CDB4FE-895F-4E0D-8BB4-9A8D4310898D}" = Antidote HD "{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3 "{597D73A8-5FDB-4bc1-9893-40B54459F1BC}" = ProductContext "{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail "{605A4E39-613C-4A12-B56F-DEFBE6757237}" = SHASTA "{643EAE81-920C-4931-9F0B-4B343B225CA6}" = ESSBrwr "{6530EB5E-F2BE-45D3-906B-E4AFFF2D1588}" = Gestionnaire de périphériques de Windows Live "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762 "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{770F1BEC-2871-4E70-B837-FB8525FFA3B1}" = Windows Live Messenger "{786C5747-0C40-4930-9AFE-113BCE553101}" = Adobe Stock Photos 1.0 "{787414B3-146E-E8C9-55AD-1DC5C1171033}" = Nero 7 Ultra Edition "{80413011-029C-4D6B-B3AD-725DDE60B81C}" = 1310Trb "{81063354-9060-42B2-A000-1EBE96778AA9}" = iTunes "{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}" = Windows Live Call "{8777AC6D-89F9-4793-8266-DE406F343E89}" = QFolder "{8943CE61-53BD-475E-90E1-A580869E98A2}" = staticcr "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8A502E38-29C9-49FA-BCFA-D727CA062589}" = ESSTOOLS "{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86) "{8E92D746-CD9F-4B90-9668-42B74C14F765}" = ESSini "{8EDBA74D-0686-4C99-BFDD-F894678E5101}" = Adobe Common File Installer "{90120000-0010-040C-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (French) 12 "{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007 "{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581) "{90120000-0015-040C-0000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2007 "{90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007 "{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007 "{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0019-040C-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2007 "{90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007 "{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007 "{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007 "{90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007 "{90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007 "{90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007 "{90120000-0044-040C-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007 "{90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007 "{90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2) "{91517631-A9F3-4B7C-B482-43E0068FD55A}" = ESSgui "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{95120000-0122-040C-0000-0000000FF1CE}" = Microsoft Office Outlook Connector "{9591C049-5CAE-4E89-A8D9-191F1899628B}" = ArcSoft Print Creations - Funhouse "{981FB376-8418-4EA8-BBED-9DE5AA63E7D5}" = SkinsHP1 "{9901E703-D169-7139-1EA3-11AA788D09E6}" = EA Download Manager UI "{999D43F4-9709-4887-9B1A-83EBB15A8370}" = VPRINTOL "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack "{9CB2512B-3EC4-43DF-8002-46BDAB5EDD1B}" = QuickProjects "{9EEBF8D5-8712-4D1D-88F4-4CDC2D270BC3}" = PrintScreen "{A1062847-0846-427A-92A1-BB8251A91E91}" = HP PSC & OfficeJet 4.2 "{A1DCC235-DACC-4E1F-8D11-D630634B4AEF}" = PhotoGallery "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI "{A2500497-FD32-493e-B8E5-28D6728DBEF5}" = Readme "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A4EA3AB4-E78C-4286-96DF-26035507CE55}" = AiO_Scan "{A92A4DB0-CD37-42D1-BE1D-603D53C24328}" = Utilitaire d'identification du processeur Intel® "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support "{AC76BA86-1033-F400-7760-000000000002}" = Adobe Acrobat 7.0 Professional - English, Français, Deutsch "{AE1FA02D-E6A4-4EA0-8E58-6483CAC016DD}" = ESSCDBK "{B0D83FCD-9D42-43ED-8315-250326AADA02}" = ArcSoft Print Creations - Scrapbook "{B131E59D-202C-43C6-84C9-68F0C37541F1}" = Galerie de photos Windows Live "{B162D0A6-9A1D-4B7C-91A5-88FB48113C45}" = OfotoXMI "{B1BFDF6B-3C03-46fe-B5D7-BABB0063D8E0}" = pdfforge Toolbar v4.1 "{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panneau de configuration NVIDIA 260.89 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Pilote graphique 260.89 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.36 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Logiciel système PhysX 9.10.0514 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B32C75F2-7495-4D01-9431-C11E97D66F8C}" = DocProc "{B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800}" = Microsoft Corporation "{B3D5D4E0-E965-41C4-ABFD-A7B1AD0663C2}" = Director "{B45D9FEE-1AF4-46F3-9A83-2545F81547F5}" = CreativeProjectsTemplates "{B4B44FE7-41FF-4DAD-8C0A-E406DDA72992}" = CCScore "{B56D5B09-C4FB-4EA0-8EAD-7BC3E2715A2D}" = DocumentViewer "{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player "{B74D4E10-6884-0000-0000-000000000103}" = Adobe Bridge 1.0 "{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX "{BCC992E5-5C81-4066-9B55-03DC10B24D21}" = InstantShare "{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86) "{BF018D2F-C788-4AB1-AB95-1280EAB8F13E}" = TrayApp "{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = Les Sims™ 3 "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{CA9ED5E4-1548-485B-A293-417840060158}" = ArcSoft Print Creations - Photo Calendar "{CADDE354-C78C-46CB-A006-E2B178EFC271}" = Rise Of Legends "{CAE8A0F1-B498-4C23-95FA-55047E730C8F}" = ArcSoft Print Creations "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware Free Edition "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2 "{D32470A1-B10C-4059-BA53-CF0486F68EBC}" = Logiciel Kodak EasyShare "{D5D81435-B8DE-4CAF-867F-7998F2B92CFC}" = Windows Live Contrôle parental "{D7E7EC5E-4349-4E40-B37C-4342188B86EC}" = Monopoly "{DB02F716-6275-42E9-B8D2-83BA2BF5100B}" = SFR "{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live "{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag "{E21658D0-8C83-4ADD-937B-6ED07F335ABA}" = 1310Tour "{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update "{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime "{E6B4117F-AC59-4B13-9274-EB136E8897EE}" = ArcSoft Print Creations - Album Page "{E90BEB5B-CFA0-418E-9ABB-4C4A7B0D9483}" = 1310_Help "{E9787678-119F-4D52-B551-6739B2B22101}" = Adobe Help Center 1.0 "{EC8673DA-F96B-497E-B2DB-BC7B029FD680}" = BufferChm "{F04F9557-81A9-4293-BC49-2C216FA325A7}" = ArcSoft Print Creations - Greeting Card "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint "{F4A2E7CC-60CA-4AFA-B67F-AD5E58173C3F}" = SKINXSDK "{F4F47155-5B4D-42AA-97F8-490BC52EA7F3}" = Destinations "{F65787F3-B356-45EC-8DD0-0E6758EDBCEE}" = WebReg "{F7D27C70-90F5-49B9-B188-0A133C0CE353}" = Windows Live Toolbar "{F9593CFB-D836-49BC-BFF1-0E669A411D9F}" = WIRELESS "{FCDB1C92-03C6-4C76-8625-371224256091}" = ESSPDock "{FF26F7EA-BCEE-478C-9A1B-6B4F88717D73}" = CueTour "3ivx D4 4.5.1 Decoder" = 3ivx D4 4.5.1 Decoder (remove only) "Adobe Acrobat 7.0 Professional - EFG" = Adobe Acrobat 7.1.0 Professional - English, Français, Deutsch "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Photoshop CS2 - {236BB7C4-4419-42FD-040C-1E257A25E34D}" = Adobe Photoshop CS2 "Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus "BFGC" = Big Fish Games: Game Manager "c1f2d82e6b4cd05da5a97014ef736eab-1829576157" = Healing Rhythms "CCleaner" = CCleaner "Christmas 3D Screensaver_is1" = Christmas 3D Screensaver 1.0 "CobBackup9" = Cobian Backup 9 "com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player "com.ea.Vault.919CACB699904AC5D41B606703500DD39747C02D.1" = EA Download Manager UI "Discovery 3D Screensaver_is1" = Discovery 3D Screensaver 1.1 "DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5_is1" = DVDFab (Platinum/Gold/HD Decrypter) (Option: Mobile) 5.1.2.2 "Elixiris" = Elixiris "Fantasy Moon 3D Screensaver_is1" = Fantasy Moon 3D Screensaver 1.3 "Fireplace 3D Screensaver_is1" = Fireplace 3D Screensaver 1.0 "FormatFactory" = FormatFactory 2.20 "Free Mp3 Wma Converter_is1" = Free Mp3 Wma Converter V 1.81 "Free Video Converter_is1" = Free Video Converter V 2.8 "Halloween 3D Screensaver_is1" = Halloween 3D Screensaver 1.1 "HijackThis" = HijackThis 2.0.2 "HP Photo & Imaging" = HP Image Zone 4.2 "IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs "ie8" = Windows Internet Explorer 8 "InstallShield_{CADDE354-C78C-46CB-A006-E2B178EFC271}" = Rise Of Legends "IrfanView" = IrfanView (remove only) "Koi Fish 3D Screensaver_is1" = Koi Fish 3D Screensaver 1.0 "Lagoon 3D Screensaver_is1" = Lagoon 3D Screensaver 1.0 "LimeWire" = LimeWire 5.5.8 "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Marvell Miniport Driver" = Marvell Miniport Driver "Messenger Plus! Live" = Messenger Plus! Live "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Mozilla Firefox (3.6.9)" = Mozilla Firefox (3.6.9) "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP "mv61xxDriver" = marvell 61xx "Nature 3D Screensaver_is1" = Nature 3D Screensaver 1.1 "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs "NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager "Orbit_is1" = Orbit Downloader "Pack Vista Inspirat 2" = Pack Vista Inspirat 2 1.0 "Photo To Sketch_is1" = Photo To Sketch 3.51 "PosteRazor_is1" = PosteRazor "PROPLUS" = Microsoft Office Professional Plus 2007 "SeaStorm 3D Screensaver_is1" = SeaStorm 3D Screensaver 1.5 "Spirit of Fire 3D Screensaver_is1" = Spirit of Fire 3D Screensaver 2.4 "tintii" = indii.org/tintii "UltraISO_is1" = UltraISO Premium V9.36 "uTorrent" = µTorrent "Vérification Internet" = Vérification Internet "VLC media player" = VLC media player 1.0.3 "Watermill 3D Screensaver_is1" = Watermill 3D Screensaver 2.0 "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Lecteur Windows Media 11 "WinGimp-2.0_is1" = GIMP 2.6.6 "WinLiveSuite_Wave3" = Installation Windows Live "WinRAR archiver" = Archiveur WinRAR "WMFDist11" = Windows Media Format 11 runtime "wmp11" = Windows Media Player 11 "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 "XRECODE_is1" = XRECODE ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "CopyTrans Suite" = CopyTrans Suite désinstallation uniquement ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 2010-10-06 16:27:49 | Computer Name = NATHALIE | Source = Application Hang | ID = 1002 Description = Application bloquée iexplore.exe, version 8.0.6001.18702, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. Error - 2010-10-18 22:48:01 | Computer Name = NATHALIE | Source = NVIDIA OpenGL Driver | ID = 1 Description = NVIDIA display driver files from different (incompatible) versions of the driver have been detected. NVIDIA OpenGL acceleration is disabled in order to maintain system stability. To resolve this problem, update the NVIDIA display driver. The latest driver is available at Welcome to NVIDIA - World Leader in Visual Computing Technologies Error code: 5 Error - 2010-10-18 22:48:07 | Computer Name = NATHALIE | Source = NVIDIA OpenGL Driver | ID = 1 Description = NVIDIA display driver files from different (incompatible) versions of the driver have been detected. NVIDIA OpenGL acceleration is disabled in order to maintain system stability. To resolve this problem, update the NVIDIA display driver. The latest driver is available at Welcome to NVIDIA - World Leader in Visual Computing Technologies Error code: 5 Error - 2010-10-26 16:45:24 | Computer Name = NATHALIE | Source = Application Hang | ID = 1002 Description = Application bloquée iexplore.exe, version 8.0.6001.18702, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. Error - 2010-11-06 23:01:40 | Computer Name = NATHALIE | Source = Application Hang | ID = 1002 Description = Application bloquée Redrum 2 - Time Lies.exe, version 1.0.0.0, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. Error - 2010-11-15 23:56:50 | Computer Name = NATHALIE | Source = Microsoft Office 12 | ID = 2001 Description = Rejected Safe Mode action : Microsoft Office Word. Error - 2010-11-17 19:16:03 | Computer Name = NATHALIE | Source = MsiInstaller | ID = 11706 Description = Produit : Adobe Acrobat 7.0 Professional - English, Français, Deutsch -- Erreur 1706. Package d'installation pour le produit Adobe Acrobat 7.0 Professional - English, Français, Deutsch introuvable. Réessayez d'exécuter Windows Installer avec un package d'installation valide AcroPro.msi. Error - 2010-11-19 23:00:48 | Computer Name = NATHALIE | Source = Application Hang | ID = 1002 Description = Application bloquée Photoshop.exe, version 9.0.2.0, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. Error - 2010-11-20 10:54:12 | Computer Name = NATHALIE | Source = MsiInstaller | ID = 11706 Description = Produit : Adobe Acrobat 7.0 Professional - English, Français, Deutsch -- Erreur 1706. Package d'installation pour le produit Adobe Acrobat 7.0 Professional - English, Français, Deutsch introuvable. Réessayez d'exécuter Windows Installer avec un package d'installation valide AcroPro.msi. Error - 2010-11-20 10:54:26 | Computer Name = NATHALIE | Source = MsiInstaller | ID = 11706 Description = Produit : Adobe Acrobat 7.0 Professional - English, Français, Deutsch -- Erreur 1706. Package d'installation pour le produit Adobe Acrobat 7.0 Professional - English, Français, Deutsch introuvable. Réessayez d'exécuter Windows Installer avec un package d'installation valide AcroPro.msi. [ OSession Events ] Error - 2009-11-19 18:55:10 | Computer Name = NATHALIE | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 750 seconds with 240 seconds of active time. This session ended with a crash. Error - 2010-02-04 11:22:15 | Computer Name = NATHALIE | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 11 seconds with 0 seconds of active time. This session ended with a crash. Error - 2010-02-10 19:55:33 | Computer Name = NATHALIE | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 18 seconds with 0 seconds of active time. This session ended with a crash. Error - 2010-02-15 10:26:25 | Computer Name = NATHALIE | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 10 seconds with 0 seconds of active time. This session ended with a crash. Error - 2010-02-15 10:26:38 | Computer Name = NATHALIE | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 9 seconds with 0 seconds of active time. This session ended with a crash. Error - 2010-02-15 20:51:51 | Computer Name = NATHALIE | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 9 seconds with 0 seconds of active time. This session ended with a crash. Error - 2010-02-16 11:19:53 | Computer Name = NATHALIE | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 8 seconds with 0 seconds of active time. This session ended with a crash. Error - 2010-03-07 00:26:48 | Computer Name = NATHALIE | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 41 seconds with 0 seconds of active time. This session ended with a crash. Error - 2010-06-24 16:11:05 | Computer Name = NATHALIE | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4 seconds with 0 seconds of active time. This session ended with a crash. Error - 2010-07-04 21:11:10 | Computer Name = NATHALIE | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6535.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 12 seconds with 0 seconds of active time. This session ended with a crash. [ System Events ] Error - 2010-11-15 13:55:16 | Computer Name = NATHALIE | Source = Service Control Manager | ID = 7000 Description = Le service adfs n'a pas pu démarrer en raison de l'erreur : %%2 Error - 2010-11-15 13:55:17 | Computer Name = NATHALIE | Source = sptd | ID = 262148 Description = Le pilote a détecté une erreur interne dans ses structures de données pour . Error - 2010-11-15 13:56:38 | Computer Name = NATHALIE | Source = Service Control Manager | ID = 7022 Description = Le service MSCamSvc est en attente de démarrage. Error - 2010-11-15 13:56:38 | Computer Name = NATHALIE | Source = Service Control Manager | ID = 7026 Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se charger : sptd < End of report >

OTL : OTL logfile created on: 2010-11-20 10:50:20 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\MicroC\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000C0C | Country: Canada | Language: FRC | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 70,00% Memory free 5,00 Gb Paging File | 4,00 Gb Available in Paging File | 80,00% Paging File free Paging file location(s): c:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 465,75 Gb Total Space | 315,61 Gb Free Space | 67,76% Space Free | Partition Type: NTFS Drive E: | 465,76 Gb Total Space | 358,64 Gb Free Space | 77,00% Space Free | Partition Type: NTFS Drive G: | 614,91 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: UDF Drive H: | 930,86 Gb Total Space | 792,86 Gb Free Space | 85,18% Space Free | Partition Type: NTFS Drive K: | 149,05 Gb Total Space | 61,87 Gb Free Space | 41,51% Space Free | Partition Type: NTFS Computer Name: NATHALIE | User Name: MicroC | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2010-11-20 10:46:06 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\MicroC\Bureau\OTL.exe PRC - [2010-10-22 16:47:26 | 000,524,288 | ---- | M] (Spigot, Inc.) -- C:\Program Files\Fichiers communs\Spigot\Search Settings\SearchSettings.exe PRC - [2010-10-22 16:38:46 | 000,386,560 | ---- | M] (Spigot, Inc.) -- C:\Program Files\Application Updater\ApplicationUpdater.exe PRC - [2010-06-29 19:22:40 | 009,221,808 | ---- | M] (Druide informatique inc.) -- C:\Program Files\Druide\Antidote 7\Programmes32\antido32.exe PRC - [2010-06-29 19:22:40 | 000,806,080 | ---- | M] (Druide informatique inc.) -- C:\Program Files\Druide\Antidote 7\Programmes32\agentantidote.exe PRC - [2010-05-14 10:00:26 | 000,249,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe PRC - [2010-03-18 11:19:26 | 000,207,360 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe PRC - [2010-03-18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe PRC - [2010-03-08 11:00:26 | 001,805,584 | ---- | M] (Orbitdownloader.com) -- C:\Program Files\Orbitdownloader\orbitdm.exe PRC - [2010-02-15 18:06:56 | 010,358,056 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunes.exe PRC - [2010-01-27 09:40:58 | 000,323,584 | ---- | M] (Eastman Kodak Company) -- C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe PRC - [2009-12-03 08:54:40 | 000,557,056 | ---- | M] (Orbitdownloader.com) -- C:\Program Files\Orbitdownloader\orbitnet.exe PRC - [2009-10-30 06:57:08 | 000,369,200 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe PRC - [2009-08-28 18:48:08 | 000,015,376 | ---- | M] () -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\distnoted.exe PRC - [2009-08-28 18:48:02 | 000,245,288 | ---- | M] () -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe PRC - [2009-08-28 18:42:54 | 000,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe PRC - [2009-07-24 15:05:24 | 000,139,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe PRC - [2009-07-21 13:33:58 | 000,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2009-07-20 12:30:50 | 000,813,584 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe PRC - [2009-07-13 12:50:42 | 000,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe PRC - [2009-07-10 12:42:32 | 000,055,824 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.exe PRC - [2009-06-26 16:21:00 | 000,757,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\vVX3000.exe PRC - [2009-05-13 15:47:40 | 000,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2009-03-02 12:08:11 | 000,209,153 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2008-12-22 13:59:20 | 000,787,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe PRC - [2008-04-14 07:00:00 | 000,979,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-01-24 10:02:18 | 001,352,192 | ---- | M] () -- C:\Program Files\ASUS\Ai Suite\EnergySaving\PwSave.exe PRC - [2008-01-23 21:53:16 | 000,613,376 | R--- | M] () -- C:\Program Files\ASUS\AASP\1.00.59\aaCenter.exe PRC - [2008-01-09 09:17:18 | 000,627,200 | ---- | M] () -- C:\Program Files\ASUS\Ai Suite\AiGear3\CpuPowerMonitor.exe PRC - [2007-12-10 20:49:36 | 001,412,608 | ---- | M] () -- C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe PRC - [2007-03-18 17:05:02 | 000,630,784 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe ========== Modules (SafeList) ========== MOD - [2010-11-20 10:46:06 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\MicroC\Bureau\OTL.exe MOD - [2010-08-23 11:12:39 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2009-07-20 12:29:06 | 000,045,584 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\lgscroll.dll MOD - [2009-07-12 01:12:06 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll MOD - [2007-03-18 17:04:22 | 000,069,632 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.dll ========== Win32 Services (SafeList) ========== SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService) SRV - [2010-10-22 16:38:46 | 000,386,560 | ---- | M] (Spigot, Inc.) [Auto | Running] -- C:\Program Files\Application Updater\ApplicationUpdater.exe -- (Application Updater) SRV - [2010-05-14 10:00:26 | 000,249,136 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort) SRV - [2010-03-18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon) SRV - [2009-12-17 19:00:28 | 000,243,056 | ---- | M] (CybelSoft) [On_Demand | Stopped] -- C:\Program Files\ma-config.com\maconfservice.exe -- (maconfservice) SRV - [2009-11-01 14:58:05 | 000,072,704 | ---- | M] (Adobe Systems) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service) SRV - [2009-08-28 18:42:54 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device) SRV - [2009-08-05 22:48:42 | 000,704,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc) SRV - [2009-07-24 15:05:24 | 000,139,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc) SRV - [2009-07-21 13:33:58 | 000,185,089 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2009-05-13 15:47:40 | 000,108,289 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2008-11-04 00:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv) SRV - [2006-10-26 13:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV - [2005-04-03 23:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT) SRV - [2004-03-18 15:55:48 | 000,065,536 | ---- | M] (HP) [On_Demand | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12) ========== Driver Services (SafeList) ========== DRV - File not found [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\jfljamwo.sys -- (pytg) DRV - File not found [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\rfhoaxd.sys -- (ntfscx) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS -- (MRESP50a64) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS -- (MREMP50a64) DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\InCDRm.sys -- (InCDRm) DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\InCDPass.sys -- (InCDPass) DRV - File not found [File_System | Disabled | Stopped] -- C:\WINDOWS\System32\drivers\InCDFs.sys -- (InCDFs) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\MicroC\LOCALS~1\Temp\catchme.sys -- (catchme) DRV - [2010-10-08 03:30:00 | 009,587,776 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2010-03-05 20:13:31 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2010-01-05 07:56:06 | 000,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand | Stopped] -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM) DRV - [2010-01-05 07:56:04 | 000,009,968 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV) DRV - [2010-01-05 07:56:02 | 000,074,480 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL) DRV - [2009-12-18 10:23:14 | 000,014,336 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys -- (driverhardwarev2) DRV - [2009-12-02 14:34:14 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt) DRV - [2009-12-02 14:34:13 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt) DRV - [2009-11-25 11:19:02 | 000,056,816 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2009-10-21 04:22:00 | 000,298,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp) DRV - [2009-08-05 22:48:42 | 000,054,752 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr) DRV - [2009-06-26 16:21:02 | 001,956,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VX3000.sys -- (VX3000) DRV - [2009-06-17 11:56:32 | 000,028,560 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt) DRV - [2009-06-17 11:56:24 | 000,079,248 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE) DRV - [2009-06-17 11:56:16 | 000,037,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt) DRV - [2009-06-17 11:56:06 | 000,035,472 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt) DRV - [2009-06-17 11:55:34 | 000,010,384 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE) DRV - [2009-06-17 11:55:26 | 000,063,248 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou) DRV - [2009-06-17 11:55:18 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd) DRV - [2009-05-11 09:11:52 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2009-03-30 09:32:47 | 000,096,104 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2009-03-19 22:53:48 | 000,154,664 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\mv61xx.sys -- (mv61xx) DRV - [2009-02-13 11:34:33 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2008-12-07 11:24:23 | 000,018,304 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MRESP50.sys -- (MRESP50) DRV - [2008-12-07 11:23:48 | 000,019,712 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MREMP50.sys -- (MREMP50) DRV - [2008-04-14 07:00:00 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2008-04-13 11:45:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Pilote USB audio (WDM) DRV - [2007-12-20 05:00:06 | 004,637,696 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2007-12-17 04:14:05 | 000,012,400 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO) DRV - [2007-02-26 20:15:21 | 000,061,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\xusb21.sys -- (xusb21) DRV - [2004-08-13 21:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = Google Toolbar IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr-ca IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 1C A1 BE 5A 8A 37 CA 01 [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = Google Toolbar IE - HKCU\..\URLSearchHook: {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local> IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:23012 ========== FireFox ========== FF - prefs.js..browser.search.defaultthis.engineName: "Messenger Plus Live CA-EN Customized Web Search" FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2535290&SearchSource=3&q={searchTerms}" FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=302398" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT2535290&SearchSource=13" FF - prefs.js..extensions.enabledItems: {71328583-3CA7-4809-B4BA-570A85818FBB}:0.6.3 FF - prefs.js..extensions.enabledItems: {e1170235-2845-420c-acc3-42261a29dd46}:4.0.1 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {35379F86-8CCB-4724-AE33-4278DE266C70}:1.0.4 FF - prefs.js..extensions.enabledItems: {6d6b212b-2245-4898-8b16-9a11b81ff9e1}:2.5.6.0 FF - prefs.js..extensions.enabledItems: {437c4386-9237-441f-a940-009430030ee0}:2.5.8.6 FF - prefs.js..extensions.enabledItems: pdfforge@mybrowserbar.com:1.1.2 FF - prefs.js..extensions.enabledItems: searchsettings@spigot.com:1.2.3 FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2535290&q=" FF - prefs.js..keyword.URL: "http://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=302398&p=" FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=302398" FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-09-26 16:52:00 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-09-26 16:52:00 | 000,000,000 | ---D | M] [2009-10-24 08:34:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MicroC\Application Data\Mozilla\Extensions [2009-09-21 16:01:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MicroC\Application Data\Mozilla\Extensions\mozswing@mozswing.org [2010-11-15 14:56:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\MicroC\Application Data\Mozilla\Firefox\Profiles\piv174ei.default\extensions [2010-05-12 20:30:24 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\MicroC\Application Data\Mozilla\Firefox\Profiles\piv174ei.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-05-11 07:13:08 | 000,000,000 | ---D | M] (Messenger Plus Live CA-EN Toolbar) -- C:\Documents and Settings\MicroC\Application Data\Mozilla\Firefox\Profiles\piv174ei.default\extensions\{437c4386-9237-441f-a940-009430030ee0} [2010-03-06 08:54:35 | 000,000,000 | ---D | M] (Softonic France FF Toolbar) -- C:\Documents and Settings\MicroC\Application Data\Mozilla\Firefox\Profiles\piv174ei.default\extensions\{6d6b212b-2245-4898-8b16-9a11b81ff9e1} [2010-02-17 15:24:35 | 000,000,000 | ---D | M] (CacheViewer) -- C:\Documents and Settings\MicroC\Application Data\Mozilla\Firefox\Profiles\piv174ei.default\extensions\{71328583-3CA7-4809-B4BA-570A85818FBB} [2010-02-17 15:24:35 | 000,000,000 | ---D | M] (Clipmarks) -- C:\Documents and Settings\MicroC\Application Data\Mozilla\Firefox\Profiles\piv174ei.default\extensions\{e1170235-2845-420c-acc3-42261a29dd46} [2010-04-01 13:19:10 | 000,000,953 | ---- | M] () -- C:\Documents and Settings\MicroC\Application Data\Mozilla\Firefox\Profiles\piv174ei.default\searchplugins\conduit.xml [2010-11-15 17:42:08 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-09-26 16:51:57 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml [2010-09-26 16:51:57 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml [2010-09-26 16:51:57 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml [2010-09-26 16:51:57 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml [2010-09-26 16:51:57 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml O1 HOSTS File: ([2010-11-15 15:09:10 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll (Orbitdownloader.com) O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.) O2 - BHO: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.) O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (Spigot, Inc.) O3 - HKLM\..\Toolbar: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll () O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKCU\..\Toolbar\WebBrowser: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll () O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [agentantidote.exe] C:\Program Files\Druide\Antidote 7\Programmes32\agentantidote.exe (Druide informatique inc.) O4 - HKLM..\Run: [Ai Nap] C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe () O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) O4 - HKLM..\Run: [ASUS Energy Saving] C:\Program Files\ASUS\Ai Suite\EnergySaving\PwSave.exe () O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [Cpu Level Up help] C:\Program Files\ASUS\Ai Suite\CpuLevelUpHelp.exe () O4 - HKLM..\Run: [CPU Power Monitor] C:\Program Files\ASUS\Ai Suite\AiGear3\CpuPowerMonitor.exe () O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.) O4 - HKLM..\Run: [LifeCam] C:\Program Files\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe () O4 - HKLM..\Run: [searchSettings] C:\Program Files\Fichiers communs\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.) O4 - HKLM..\Run: [VX3000] C:\WINDOWS\vVX3000.exe (Microsoft Corporation) O4 - HKLM..\Run: [WindowsLivePhone] C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe (Microsoft Corporation) O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O4 - HKCU..\Run: [WindowsLivePhone] C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe (Eastman Kodak Company) O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.) O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Orbit.lnk = C:\Program Files\Orbitdownloader\orbitdm.exe (Orbitdownloader.com) O4 - Startup: C:\Documents and Settings\MicroC\Menu Démarrer\Programmes\Démarrage\Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) O4 - Startup: C:\Documents and Settings\MicroC\Menu Démarrer\Programmes\Démarrage\LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe (Lime Wire, LLC) O4 - Startup: C:\Documents and Settings\MicroC\Menu Démarrer\Programmes\Démarrage\RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe () O4 - Startup: C:\Documents and Settings\MicroC\Menu Démarrer\Programmes\Démarrage\TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe (AKSoftware) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: &Download by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com) O8 - Extra context menu item: &Grab video by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com) O8 - Extra context menu item: Convertir en Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convertir en un fichier PDF existant - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convertir la sélection en Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com) O8 - Extra context menu item: Down&load all by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com) O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll (Google Inc.) O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab (DivXBrowserPlugin Object) O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab (HP Download Manager) O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} Page introuvable | Facebook (Facebook Photo Uploader 5 Control) O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} http://fichiers.touslesdrivers.com/maconfig/MaConfig_4_0_1_3.cab (Ma-Config control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18) O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab (Windows Live Hotmail Photo Upload Tool) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com) O24 - Desktop WallPaper: C:\WINDOWS\BricoPack Wallpaper.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\BricoPack Wallpaper.bmp O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-09-30 22:05:25 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2009-06-18 16:12:18 | 000,000,088 | R--- | M] () - G:\autorun.inf -- [ UDF ] O32 - AutoRun File - [2009-03-11 14:22:42 | 000,341,520 | -H-- | M] (Ceedo Technologies Ltd.) - K:\AutoDetect.exe -- [ NTFS ] O32 - AutoRun File - [2009-03-11 14:22:38 | 000,435,728 | ---- | M] (Ceedo Technologies Ltd.) - K:\Autorun.exe -- [ NTFS ] O32 - AutoRun File - [2007-07-29 11:01:00 | 000,000,810 | RH-- | M] () - K:\Autorun.exe.manifest -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found CREATERESTOREPOINT Restore point Set: OTL Restore Point (16902053519425536) ========== Files/Folders - Created Within 30 Days ========== [2010-11-20 10:46:06 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\MicroC\Bureau\OTL.exe [2010-11-19 21:13:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Application Data\KranX Productions [2010-11-19 21:00:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Bureau\Artifacts of the Past - Les Mysteres des Temps Anciens [2010-11-19 19:45:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Bureau\Dark Tales [2010-11-15 17:42:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Application Data\Search Settings [2010-11-15 17:42:07 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Spigot [2010-11-15 17:42:07 | 000,000,000 | ---D | C] -- C:\Program Files\pdfforge Toolbar [2010-11-15 17:42:07 | 000,000,000 | ---D | C] -- C:\Program Files\Application Updater [2010-11-15 15:44:47 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-11-15 15:21:40 | 000,812,344 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\MicroC\Bureau\HJTInstall.exe [2010-11-15 15:20:38 | 000,000,000 | ---D | C] -- C:\UsbFix [2010-11-15 15:01:44 | 000,000,000 | RHSD | C] -- C:\cmdcons [2010-11-11 20:30:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Local Settings\Application Data\Deadtime Stories [2010-11-11 20:29:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Deadtime Stories [2010-11-10 14:45:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Local Settings\Application Data\KodakGallery [2010-11-10 14:44:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Application Data\Skinux [2010-11-10 13:49:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Mes documents\My Print Creations [2010-11-10 13:49:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Local Settings\Application Data\ArcSoft [2010-11-10 13:49:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Application Data\ArcSoft [2010-11-10 13:49:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ArcSoft [2010-11-10 13:48:47 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\ArcSoft [2010-11-10 13:48:47 | 000,000,000 | ---D | C] -- C:\Program Files\ArcSoft [2010-11-10 13:46:39 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Kodak [2010-11-10 13:45:37 | 000,467,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi2fs.dll [2010-11-10 13:45:37 | 000,467,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imapi2fs.dll [2010-11-10 13:45:37 | 000,320,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi2.dll [2010-11-10 13:45:37 | 000,320,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imapi2.dll [2010-11-10 13:45:37 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdrom.sys [2010-11-10 13:45:34 | 000,000,000 | ---D | C] -- C:\Program Files\Kodak [2010-11-10 13:42:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Kodak [2010-11-10 13:40:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Local Settings\Application Data\Downloaded Installations [2010-11-08 23:51:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Application Data\ShaoLin [2010-11-06 21:36:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Application Data\Anarchy [2010-11-06 19:13:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Application Data\Enki Games [2010-11-04 19:19:58 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\MicroC\Recent [2010-11-01 21:28:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Application Data\Aerohills [2010-11-01 20:44:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Application Data\ERS Game Studios [2010-11-01 20:36:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Bureau\Mystery of the Earl-fr [2010-10-29 19:23:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Bureau\Haunted Hotel - Lonely Dream [2010-10-24 22:19:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Application Data\SunRay Games [2010-10-24 16:14:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Mes documents\Adobe [2010-10-21 14:20:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Application Data\TOMI2.THE GATES OF FATE [2010-10-21 12:47:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\MicroC\Mes documents\DVDFab [2009-05-07 18:02:25 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\MicroC\Application Data\pcouffin.sys [4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [11 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010-11-20 10:46:17 | 000,869,086 | ---- | M] () -- C:\Documents and Settings\MicroC\Bureau\SecurityCheck.exe [2010-11-20 10:46:06 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\MicroC\Bureau\OTL.exe [2010-11-20 10:41:00 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010-11-20 10:19:50 | 000,171,520 | ---- | M] () -- C:\Documents and Settings\MicroC\Bureau\2010 - TRSP - MB - Facture.xls [2010-11-20 09:54:43 | 000,000,434 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{8927F947-F6BD-4135-8544-6D7C02CB2EAB}.job [2010-11-20 00:41:00 | 000,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010-11-19 22:06:57 | 032,841,728 | R--- | M] () -- C:\Documents and Settings\All Users\Documents\ESBK.mbb [2010-11-19 22:06:55 | 013,773,824 | R--- | M] () -- C:\Documents and Settings\All Users\Documents\ESBK.mb [2010-11-19 06:50:24 | 000,210,432 | ---- | M] () -- C:\Documents and Settings\MicroC\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-11-17 20:56:15 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010-11-15 22:56:45 | 000,002,593 | ---- | M] () -- C:\Documents and Settings\MicroC\Application Data\Microsoft\Internet Explorer\Quick Launch\Word.lnk [2010-11-15 17:37:05 | 000,001,554 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Orbit.lnk [2010-11-15 17:36:00 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-11-15 17:35:37 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-11-15 15:21:44 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\MicroC\Bureau\HijackThis.lnk [2010-11-15 15:21:41 | 000,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\MicroC\Bureau\HJTInstall.exe [2010-11-15 15:09:10 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2010-11-15 15:01:48 | 000,000,328 | RHS- | M] () -- C:\boot.ini [2010-11-15 14:53:39 | 003,910,081 | R--- | M] () -- C:\Documents and Settings\MicroC\Bureau\Nogash.exe [2010-11-13 11:05:24 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\MicroC\Bureau\Raccourci vers nath.lnk [2010-11-10 13:46:40 | 000,001,837 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logiciel Kodak EasyShare.lnk [2010-11-10 13:46:40 | 000,001,817 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Kodak EasyShare.lnk [2010-11-09 16:26:05 | 002,184,024 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-11-08 01:20:24 | 000,089,088 | ---- | M] () -- C:\WINDOWS\MBR.exe [2010-11-07 18:33:16 | 016,906,636 | ---- | M] () -- C:\Documents and Settings\MicroC\Bureau\PAC_Catalog_SkiDoo.pdf [2010-11-07 11:44:33 | 000,001,268 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Encore plus de jeux.lnk [2010-10-31 10:01:45 | 000,020,718 | ---- | M] () -- C:\Documents and Settings\MicroC\Mes documents\Quelques moyens de prévenir les vaginites.docx [2010-10-29 15:18:54 | 003,550,575 | ---- | M] () -- C:\Documents and Settings\MicroC\Bureau\MagixVEHD-MP.rar [2010-10-28 17:57:43 | 000,921,624 | ---- | M] () -- C:\img2-001.raw [2010-10-28 17:32:07 | 000,002,137 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\iTunes.lnk [2010-10-26 16:44:23 | 000,012,821 | ---- | M] () -- C:\Documents and Settings\MicroC\Mes documents\OFFRE D'ACHAT.docx [2010-10-24 10:52:30 | 000,240,124 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin [2010-10-24 10:52:30 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin [4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [11 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files Created - No Company Name ========== [2010-11-20 10:46:15 | 000,869,086 | ---- | C] () -- C:\Documents and Settings\MicroC\Bureau\SecurityCheck.exe [2010-11-15 15:21:44 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\MicroC\Bureau\HijackThis.lnk [2010-11-13 11:05:24 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\MicroC\Bureau\Raccourci vers nath.lnk [2010-11-10 14:45:05 | 032,841,728 | R--- | C] () -- C:\Documents and Settings\All Users\Documents\ESBK.mbb [2010-11-10 14:45:05 | 013,773,824 | R--- | C] () -- C:\Documents and Settings\All Users\Documents\ESBK.mb [2010-11-10 13:46:40 | 000,001,837 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logiciel Kodak EasyShare.lnk [2010-11-10 13:46:40 | 000,001,817 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Kodak EasyShare.lnk [2010-11-07 18:33:16 | 016,906,636 | ---- | C] () -- C:\Documents and Settings\MicroC\Bureau\PAC_Catalog_SkiDoo.pdf [2010-11-07 11:44:33 | 000,001,268 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Encore plus de jeux.lnk [2010-10-31 10:01:45 | 000,020,718 | ---- | C] () -- C:\Documents and Settings\MicroC\Mes documents\Quelques moyens de prévenir les vaginites.docx [2010-10-29 15:18:54 | 003,550,575 | ---- | C] () -- C:\Documents and Settings\MicroC\Bureau\MagixVEHD-MP.rar [2010-10-26 16:44:23 | 000,012,821 | ---- | C] () -- C:\Documents and Settings\MicroC\Mes documents\OFFRE D'ACHAT.docx [2010-10-03 18:33:47 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI [2010-06-23 02:18:13 | 000,935,440 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat [2010-02-20 11:00:41 | 000,002,816 | ---- | C] () -- C:\WINDOWS\lsrslt.ini [2010-01-06 15:38:26 | 000,000,108 | ---- | C] () -- C:\WINDOWS\Antidote7.ini [2009-11-28 22:34:06 | 000,000,050 | ---- | C] () -- C:\WINDOWS\MegaManager.INI [2009-09-27 09:45:36 | 000,484,352 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll [2009-06-26 16:21:02 | 000,015,498 | ---- | C] () -- C:\WINDOWS\VX3000.ini [2009-05-07 18:02:29 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\MicroC\Application Data\pcouffin.log [2009-05-07 18:02:25 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\MicroC\Application Data\pcouffin.cat [2009-05-07 18:02:25 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\MicroC\Application Data\pcouffin.inf [2009-02-18 19:20:24 | 000,151,552 | ---- | C] () -- C:\WINDOWS\System32\Tracer.dll [2009-02-18 19:20:24 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\SheriffNet.dll [2009-01-23 18:47:45 | 000,281,760 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2009-01-23 18:47:44 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2009-01-07 16:01:09 | 000,004,387 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log [2008-12-21 18:25:55 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI [2008-12-09 20:50:47 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2008-10-16 20:36:29 | 000,210,432 | ---- | C] () -- C:\Documents and Settings\MicroC\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008-10-03 17:04:10 | 000,009,728 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll [2008-10-02 17:29:17 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2008-09-30 22:32:55 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll [2008-09-30 22:32:55 | 000,012,400 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys [2008-09-30 22:32:53 | 000,011,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys [2008-09-30 22:32:53 | 000,010,216 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys [2008-09-30 22:22:19 | 000,031,291 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini [2008-09-30 22:22:09 | 000,030,985 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2008-09-30 22:22:08 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys [2008-09-30 22:22:01 | 000,012,536 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2008-09-30 16:57:07 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2008-09-30 13:26:26 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\MicroC\Local Settings\Application Data\fusioncache.dat [2008-09-30 12:03:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\lgfwup.ini [2008-04-13 14:33:40 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2008-01-03 09:26:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll-nv2734 [2007-08-15 03:22:00 | 000,298,752 | ---- | C] () -- C:\WINDOWS\System32\drivers\yk51x86.sys [2004-01-27 07:13:02 | 000,421,888 | ---- | C] () -- C:\WINDOWS\System32\OpenQuicktimeLib_dec.dll ========== Custom Scans ========== < %SYSTEMDRIVE%\*.* > [2010-11-15 15:45:53 | 000,013,435 | ---- | M] () -- C:\2010-11-15 - hijackthis.txt [2008-09-30 22:05:25 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-03-04 19:11:34 | 000,000,283 | ---- | M] () -- C:\Boot.bak [2010-11-15 15:01:48 | 000,000,328 | RHS- | M] () -- C:\boot.ini [2008-04-14 07:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2004-08-03 23:00:08 | 000,263,488 | RHS- | M] () -- C:\cmldr [2010-11-15 15:11:35 | 000,169,501 | ---- | M] () -- C:\ComboFix.txt [2008-09-30 22:05:25 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-04-18 18:49:53 | 000,001,200 | ---- | M] () -- C:\FindyKill_Upload_Me_NATHALIE.zip [2004-02-06 17:19:02 | 000,016,384 | R--- | M] ( ) -- C:\hpqimgrc.resources.dll [2010-10-28 17:57:43 | 000,921,624 | ---- | M] () -- C:\img2-001.raw [2008-09-30 22:05:25 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-11-15 17:33:18 | 000,001,463 | ---- | M] () -- C:\mbam-log-2010-11-15 (17-32-57).txt [2008-09-30 22:05:25 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2008-04-14 07:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008-04-14 07:00:00 | 000,252,240 | RHS- | M] () -- C:\ntldr [2010-11-15 17:35:25 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys [2009-04-07 20:52:52 | 000,016,900 | ---- | M] () -- C:\Player Loader_log.txt [2010-11-15 17:36:21 | 000,000,526 | ---- | M] () -- C:\RTHDCPL_Dump.txt [2010-03-04 16:29:46 | 000,014,402 | ---- | M] () -- C:\SAFEBOOT_REPAIR.TXT [2010-03-06 09:07:35 | 164,663,746 | ---- | M] () -- C:\Sauv.reg [2010-03-06 09:08:44 | 000,001,652 | ---- | M] () -- C:\TCleaner.txt [2010-06-29 22:38:54 | 000,000,668 | ---- | M] () -- C:\tintii.8bf.lnk [2009-11-07 11:30:02 | 000,000,315 | R--- | M] () -- C:\YukonInstall.log [2010-07-06 17:56:36 | 000,001,344 | ---- | M] () -- C:\_Sid.txt < %systemroot%\*. /mp /s > < %systemroot%\system32\*.dll /lockedfiles > [4 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] < %systemroot%\Tasks\*.job /lockedfiles > < %systemroot%\System32\config\*.sav > [2010-03-04 13:55:18 | 004,337,664 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav [2010-03-04 18:10:48 | 000,053,248 | ---- | M] () -- C:\WINDOWS\system32\config\security.sav [2010-03-04 13:55:18 | 045,785,088 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav [2010-03-04 13:55:18 | 005,767,168 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav < %systemroot%\system32\drivers\*.sys /90 > [2010-10-08 03:30:00 | 009,587,776 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\nv4_mini.sys [2010-08-26 08:39:50 | 000,357,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\srv.sys ========== Alternate Data Streams ========== @Alternate Data Stream - 97 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:40D8F125 @Alternate Data Stream - 96 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:870649A4 @Alternate Data Stream - 237 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DC0B1070 @Alternate Data Stream - 236 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:614F17D3 @Alternate Data Stream - 234 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E6C6EB3B @Alternate Data Stream - 234 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DA18D4E3 @Alternate Data Stream - 232 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F84B8DB5 @Alternate Data Stream - 231 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EA1919C7 @Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CC30FDA5 @Alternate Data Stream - 228 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3651A580 @Alternate Data Stream - 227 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2CE15176 @Alternate Data Stream - 226 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6BFA43EB @Alternate Data Stream - 223 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C48A983C @Alternate Data Stream - 223 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A5584049 @Alternate Data Stream - 223 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:206470A5 @Alternate Data Stream - 222 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:71612023 @Alternate Data Stream - 221 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6247E766 @Alternate Data Stream - 221 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0E22C5DB @Alternate Data Stream - 220 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:ECFD9449 @Alternate Data Stream - 219 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DAB09BDB @Alternate Data Stream - 219 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D8D58038 @Alternate Data Stream - 219 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:008586AE @Alternate Data Stream - 215 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9742C5DF @Alternate Data Stream - 213 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:69AF9D20 @Alternate Data Stream - 212 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3815BC84 @Alternate Data Stream - 211 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:88A44CC1 @Alternate Data Stream - 208 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3E06C78F @Alternate Data Stream - 206 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:260575F1 @Alternate Data Stream - 203 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5197985B @Alternate Data Stream - 199 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:57B2B96C @Alternate Data Stream - 198 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:737160C1 @Alternate Data Stream - 156 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0AC32449 @Alternate Data Stream - 148 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EAF954B6 @Alternate Data Stream - 142 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CAF8DAC8 @Alternate Data Stream - 141 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E9FAC3AB @Alternate Data Stream - 141 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6017A808 @Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CA0CE093 @Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2 @Alternate Data Stream - 136 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EF0C5444 @Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C76CFF82 @Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2EC5D66C @Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:91DEEE71 @Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F8F070C2 @Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A8ADE5D8 @Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:AABCC5A7 @Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F52A6209 @Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:569CEE83 < End of report >

Bonjour Lance, J'ai fait ce que tu as écrit pour Jotti, mais l'ordi ne trouve pas le dossier que je colle et ce, même si je vais jusqu'au répertoire. Donc, voici les deux rapport d'OTL OTL : Cijoint.fr - Service gratuit de dépôt de fichiers Extra : Cijoint.fr - Service gratuit de dépôt de fichiers Celui de Security Check Checkup : Cijoint.fr - Service gratuit de dépôt de fichiers Merci beaucoup de me venir en aide, c'est très apprécié Cabo PS: je joins plus bas les résultats, car celà semble difficile à lire lorsque je poste sur cijoint... Bref, tu me diras ce que tu préfères svp.

Bonjour à vous ! Ayant posté un trop long post, je dois ici recommencer. Je vais mettre en pièce jointe le rapport de 1- ComboFix puis celui 2- d'Hijackthis et celui de 3- MalwareByte's J'ai besoin de savoir si je suis encore infectée.. je dois aussi vous dire que mon ordi, malgré qu'il soit récent, perd beaucoup de vitesse et le démarrage est ultra lent... Après avoir réglé le prob de virus, pourriez-vous me diriger vers une ressource pouvant m'aider avec la lenteur de l'ordi svp ? Merci beaucoup de prendre le temps de m'aider et au plaisir ! 1- Cijoint.fr - Service gratuit de dépôt de fichiers 2- Cijoint.fr - Service gratuit de dépôt de fichiers 3- Cijoint.fr - Service gratuit de dépôt de fichiers

Allo à vous, je suis infecté par un intru qui m'empêchait d'ouvrir toute les applications .exe ainsi qu'internet... Après un redémarrage de rage, j'ai réussis à ouvrir Avira Antivirus.. De plus, en tenant appuyé longtemps le CTRL-ALT-DELETE, j'ai finalement pu ouvrir le gestionnaire des tâches (ouvert en 100 copies...) ce qui m'a permis de fermer un processus douteux... Par la suite j'ai fais un ComboFix et un rapport HitJackThis que je vous soumet... je n'ose plus redémarrer l'ordi de peur d'être encore prise avec ce petit malin.. pouvez-vous m'aider svp ? Merci ! Cabotine de retour.... ------------------Rapport ComboFix------------------ ComboFix 10-11-15.02 - MicroC 2010-11-15 15:04:49.6.4 - x86 Microsoft Windows XP Professionnel 5.1.2600.3.1252.33.1036.18.3327.2535 [GMT -5:00] Lancé depuis: c:\documents and settings\MicroC\Bureau\Nogash.exe AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7} * Un nouveau point de restauration a été créé . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . c:\docume~1\MicroC\LOCALS~1\Temp\dtsfeolne\tadegrdtsbl.exe c:\docume~1\MicroC\LOCALS~1\Temp\ihbeeqapx\tybubtytsbl.exe c:\documents and settings\MicroC\Local Settings\Application Data\syssvc.exe c:\program files\pdfforge Toolbar\IE\1.1.2\pdFForgetoolbarie.dll c:\program files\pdfforge Toolbar\SearchSettings.dll c:\windows\Help\nvcpar.hlp-nv2754 c:\windows\Help\nvcpcs.hlp-nv2757 c:\windows\Help\nvcpda.hlp-nv2757 c:\windows\Help\nvcpde.hlp-nv2757 c:\windows\Help\nvcpel.hlp-nv2757 c:\windows\Help\nvcpeng.hlp-nv2757 c:\windows\Help\nvcpes.hlp-nv2757 c:\windows\Help\nvcpesm.hlp-nv2757 c:\windows\Help\nvcpfi.hlp-nv2757 c:\windows\Help\nvcpfr.hlp-nv2760 c:\windows\Help\nvcphe.hlp-nv2760 c:\windows\Help\nvcphu.hlp-nv2760 c:\windows\Help\nvcpit.hlp-nv2760 c:\windows\Help\nvcpja.hlp-nv2760 c:\windows\Help\nvcpko.hlp-nv2764 c:\windows\Help\nvcpl.hlp-nv2764 c:\windows\Help\nvcpnl.hlp-nv2764 c:\windows\Help\nvcpno.hlp-nv2764 c:\windows\Help\nvcppl.hlp-nv2764 c:\windows\Help\nvcppt.hlp-nv2767 c:\windows\Help\nvcpptb.hlp-nv2767 c:\windows\Help\nvcpru.hlp-nv2767 c:\windows\Help\nvcpsk.hlp-nv2767 c:\windows\Help\nvcpsl.hlp-nv2767 c:\windows\Help\nvcpsv.hlp-nv2767 c:\windows\Help\nvcpth.hlp-nv2770 c:\windows\Help\nvcptr.hlp-nv2770 c:\windows\Help\nvcpzhc.hlp-nv2770 c:\windows\Help\nvcpzht.hlp-nv2770 c:\windows\system32\Thumbs.db . ((((((((((((((((((((((((((((( Fichiers créés du 2010-10-15 au 2010-11-15 )))))))))))))))))))))))))))))))))))) . 2010-11-12 01:30 . 2010-11-12 01:36 -------- d-----w- c:\documents and settings\MicroC\Local Settings\Application Data\Deadtime Stories 2010-11-12 01:29 . 2010-11-12 01:30 -------- d-----w- c:\documents and settings\All Users\Application Data\Deadtime Stories 2010-11-10 19:45 . 2010-11-10 19:45 -------- d-----w- c:\documents and settings\MicroC\Local Settings\Application Data\KodakGallery 2010-11-10 19:44 . 2010-11-10 19:44 -------- d-----w- c:\documents and settings\MicroC\Application Data\Skinux 2010-11-10 18:49 . 2010-11-10 18:49 -------- d-----w- c:\documents and settings\MicroC\Local Settings\Application Data\ArcSoft 2010-11-10 18:40 . 2010-11-10 18:40 -------- d-----w- c:\documents and settings\MicroC\Local Settings\Application Data\Downloaded Installations 2010-11-09 04:51 . 2010-11-09 04:51 -------- d-----w- c:\documents and settings\MicroC\Application Data\ShaoLin 2010-11-07 02:36 . 2010-11-07 02:36 -------- d-----w- c:\documents and settings\MicroC\Application Data\Anarchy 2010-11-07 00:13 . 2010-11-07 16:57 -------- d-----w- c:\documents and settings\MicroC\Application Data\Enki Games 2010-11-02 02:28 . 2010-11-02 02:28 -------- d-----w- c:\documents and settings\MicroC\Application Data\Aerohills 2010-11-02 01:44 . 2010-11-04 02:09 -------- d-----w- c:\documents and settings\MicroC\Application Data\ERS Game Studios 2010-10-25 03:19 . 2010-10-25 03:19 -------- d-----w- c:\documents and settings\MicroC\Application Data\SunRay Games 2010-10-21 19:20 . 2010-10-21 19:22 -------- d-----w- c:\documents and settings\MicroC\Application Data\TOMI2.THE GATES OF FATE 2010-10-18 22:25 . 2010-10-08 08:30 888424 ----a-w- c:\windows\system32\nvdispco32.dll 2010-10-18 22:25 . 2010-10-08 08:30 813672 ----a-w- c:\windows\system32\nvgenco32.dll . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2010-10-08 08:30 . 2009-12-27 19:30 61440 ----a-w- c:\windows\system32\OpenCL.dll 2010-10-08 08:30 . 2009-12-27 19:30 13012992 ----a-w- c:\windows\system32\nvcompiler.dll 2010-10-08 08:30 . 2009-09-27 21:12 4882432 ----a-w- c:\windows\system32\nvcuda.dll 2010-10-08 08:30 . 2009-09-27 21:12 2932840 ----a-w- c:\windows\system32\nvcuvid.dll 2010-10-08 08:30 . 2009-09-27 21:12 2666088 ----a-w- c:\windows\system32\nvcuvenc.dll 2010-10-08 08:30 . 2009-09-27 21:12 1462272 ----a-w- c:\windows\system32\nvapi.dll 2010-10-08 08:30 . 2009-09-27 21:12 14528512 ----a-w- c:\windows\system32\nvoglnt.dll 2010-10-08 08:30 . 2008-01-03 14:26 9587776 ----a-w- c:\windows\system32\drivers\nv4_mini.sys 2010-10-08 08:30 . 2008-01-03 14:26 6358784 ----a-w- c:\windows\system32\nv4_disp.dll 2010-10-08 06:28 . 2010-10-08 06:28 81920 ----a-w- c:\windows\system32\nvwddi.dll 2010-10-08 06:28 . 2010-10-08 06:28 253952 ----a-w- c:\windows\system32\nvrsth.dll 2010-10-08 06:28 . 2010-10-08 06:28 249856 ----a-w- c:\windows\system32\nvrseng.dll 2010-10-08 06:28 . 2010-10-08 06:28 282624 ----a-w- c:\windows\system32\nvrsel.dll 2010-10-08 06:28 . 2010-10-08 06:28 274432 ----a-w- c:\windows\system32\nvrsesm.dll 2010-10-08 06:28 . 2010-10-08 06:28 126976 ----a-w- c:\windows\system32\nvrszht.dll 2010-10-08 06:28 . 2010-10-08 06:28 331776 ----a-w- c:\windows\system32\nvrshe.dll 2010-10-08 06:28 . 2010-10-08 06:28 253952 ----a-w- c:\windows\system32\nvrsda.dll 2010-10-08 06:28 . 2010-10-08 06:28 249856 ----a-w- c:\windows\system32\nvrsfi.dll 2010-10-08 06:28 . 2010-10-08 06:28 286720 ----a-w- c:\windows\system32\nvrsfr.dll 2010-10-08 06:28 . 2010-10-08 06:28 274432 ----a-w- c:\windows\system32\nvrsnl.dll 2010-10-08 06:28 . 2010-10-08 06:28 270336 ----a-w- c:\windows\system32\nvrsru.dll 2010-10-08 06:28 . 2010-10-08 06:28 262144 ----a-w- c:\windows\system32\nvrshu.dll 2010-10-08 06:28 . 2010-10-08 06:28 258048 ----a-w- c:\windows\system32\nvrssl.dll 2010-10-08 06:28 . 2010-10-08 06:28 229376 ----a-w- c:\windows\system32\nvrszhc.dll 2010-10-08 06:28 . 2010-10-08 06:28 258048 ----a-w- c:\windows\system32\nvrstr.dll 2010-10-08 06:28 . 2010-10-08 06:28 282624 ----a-w- c:\windows\system32\nvrses.dll 2010-10-08 06:28 . 2010-10-08 06:28 266240 ----a-w- c:\windows\system32\nvrsko.dll 2010-10-08 06:28 . 2010-10-08 06:28 253952 ----a-w- c:\windows\system32\nvrssv.dll 2010-10-08 06:28 . 2010-10-08 06:28 249856 ----a-w- c:\windows\system32\nvrscs.dll 2010-10-08 06:28 . 2010-10-08 06:28 335872 ----a-w- c:\windows\system32\nvrsar.dll 2010-10-08 06:28 . 2010-10-08 06:28 278528 ----a-w- c:\windows\system32\nvrsde.dll 2010-10-08 06:28 . 2010-10-08 06:28 258048 ----a-w- c:\windows\system32\nvrssk.dll 2010-10-08 06:28 . 2010-10-08 06:28 282624 ----a-w- c:\windows\system32\nvrsit.dll 2010-10-08 06:28 . 2010-10-08 06:28 274432 ----a-w- c:\windows\system32\nvrspt.dll 2010-10-08 06:28 . 2010-10-08 06:28 270336 ----a-w- c:\windows\system32\nvrsptb.dll 2010-10-08 06:28 . 2010-10-08 06:28 258048 ----a-w- c:\windows\system32\nvrspl.dll 2010-10-08 06:28 . 2010-10-08 06:28 253952 ----a-w- c:\windows\system32\nvrsno.dll 2010-10-08 06:28 . 2010-10-08 06:28 277608 ----a-w- c:\windows\system32\nvmccs.dll 2010-10-08 06:28 . 2010-10-08 06:28 270336 ----a-w- c:\windows\system32\nvrsja.dll 2010-10-08 06:28 . 2010-10-08 06:28 13851752 ----a-w- c:\windows\system32\nvcpl.dll 2010-10-08 06:28 . 2010-10-08 06:28 110696 ----a-w- c:\windows\system32\nvmctray.dll 2010-10-08 06:28 . 2010-10-08 06:28 156776 ----a-w- c:\windows\system32\nvsvc32.exe 2010-10-08 06:28 . 2010-10-08 06:28 145000 ----a-w- c:\windows\system32\nvcolor.exe 2010-09-18 16:23 . 2008-04-14 12:00 974848 ----a-w- c:\windows\system32\mfc42u.dll 2010-09-18 06:53 . 2008-04-14 12:00 974848 ----a-w- c:\windows\system32\mfc42.dll 2010-09-18 06:53 . 2008-04-14 12:00 954368 ----a-w- c:\windows\system32\mfc40.dll 2010-09-18 06:53 . 2008-04-14 12:00 953856 ----a-w- c:\windows\system32\mfc40u.dll 2010-09-10 05:50 . 2008-04-14 12:00 916480 ----a-w- c:\windows\system32\wininet.dll 2010-09-10 05:50 . 2008-04-14 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll 2010-09-10 05:50 . 2008-04-14 12:00 1469440 ----a-w- c:\windows\system32\inetcpl.cpl 2010-09-01 11:51 . 2008-04-14 12:00 285824 ----a-w- c:\windows\system32\atmfd.dll 2010-09-01 07:55 . 2008-04-14 12:00 1852928 ----a-w- c:\windows\system32\win32k.sys 2010-08-27 08:02 . 2008-04-14 12:00 119808 ----a-w- c:\windows\system32\t2embed.dll 2010-08-27 05:58 . 2008-04-14 12:00 99840 ----a-w- c:\windows\system32\srvsvc.dll 2010-08-27 01:43 . 2008-05-05 11:25 5632 ----a-w- c:\windows\system32\xpsp4res.dll 2010-08-26 13:39 . 2008-04-14 12:00 357248 ----a-w- c:\windows\system32\drivers\srv.sys 2010-08-23 16:12 . 2008-04-14 12:00 617472 ----a-w- c:\windows\system32\comctl32.dll . ------- Sigcheck ------- [-] 2009-08-07 . 0B6DABD6FFF1AD42A3CD65A1C7EE8F35 . 68832 . . [7.4.7600.226] . . c:\windows\system32\wuauclt.exe [-] 2009-08-07 . 0B6DABD6FFF1AD42A3CD65A1C7EE8F35 . 68832 . . [7.4.7600.226] . . c:\windows\system32\dllcache\wuauclt.exe [7] 2009-08-06 . 62BB79160F86CD962F312C68C6239BFD . 53472 . . [7.4.7600.226] . . c:\windows\ERDNT\cache\wuauclt.exe [-] 2008-04-14 . 3EFE912DD25D2586E6A0341DB0A66F69 . 979968 . . [6.00.2900.5512] . . c:\windows\explorer.exe [-] 2008-04-14 . 3EFE912DD25D2586E6A0341DB0A66F69 . 979968 . . [6.00.2900.5512] . . c:\windows\system32\dllcache\explorer.exe . ((((((((((((((((((((((((((((( SnapShot@2010-06-18_22.55.36 ))))))))))))))))))))))))))))))))))))))))) . + 2009-07-12 01:32 . 2009-07-12 01:32 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_0ccc058c\mfc80KOR.dll + 2009-07-12 01:32 . 2009-07-12 01:32 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_0ccc058c\mfc80JPN.dll + 2009-07-12 01:32 . 2009-07-12 01:32 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_0ccc058c\mfc80ITA.dll + 2009-07-12 01:32 . 2009-07-12 01:32 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_0ccc058c\mfc80FRA.dll + 2009-07-12 01:32 . 2009-07-12 01:32 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_0ccc058c\mfc80ESP.dll + 2009-07-12 01:32 . 2009-07-12 01:32 57344 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_0ccc058c\mfc80ENU.dll + 2009-07-12 01:32 . 2009-07-12 01:32 65536 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_0ccc058c\mfc80DEU.dll + 2009-07-12 01:32 . 2009-07-12 01:32 45056 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_0ccc058c\mfc80CHT.dll + 2009-07-12 01:32 . 2009-07-12 01:32 40960 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_0ccc058c\mfc80CHS.dll + 2009-07-12 06:07 . 2009-07-12 06:07 57856 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_b77cec8e\mfcm80u.dll + 2009-07-12 06:19 . 2009-07-12 06:19 69632 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_b77cec8e\mfcm80.dll + 2010-05-26 19:50 . 2003-03-16 04:15 90112 c:\windows\unvise32.exe + 2010-11-15 17:55 . 2010-11-15 17:55 16384 c:\windows\Temp\Perflib_Perfdata_2dc.dat + 2008-04-14 12:00 . 2010-06-21 14:46 46080 c:\windows\system32\tzchange.exe - 2008-04-14 12:00 . 2010-01-23 08:11 46080 c:\windows\system32\tzchange.exe + 2008-04-14 12:00 . 2010-08-17 13:17 58880 c:\windows\system32\spoolsv.exe - 2010-03-17 18:31 . 2009-05-26 11:40 18296 c:\windows\system32\spmsg.dll + 2010-03-17 18:31 . 2007-11-30 11:19 18296 c:\windows\system32\spmsg.dll + 2010-10-18 22:25 . 2010-07-09 22:38 61440 c:\windows\system32\ReinstallBackups\0027\DriverFiles\OpenCL.dll + 2007-02-08 06:40 . 2007-02-08 06:40 64512 c:\windows\system32\ptpitcp.dll + 2010-03-31 04:16 . 2010-03-31 04:16 99176 c:\windows\system32\PresentationHostProxy.dll + 2008-04-14 12:00 . 2010-10-06 07:03 87400 c:\windows\system32\perfc00C.dat - 2008-04-14 12:00 . 2010-06-18 22:33 87400 c:\windows\system32\perfc00C.dat + 2008-04-14 12:00 . 2010-10-06 07:03 73362 c:\windows\system32\perfc009.dat - 2008-04-14 12:00 . 2010-06-18 22:33 73362 c:\windows\system32\perfc009.dat + 2009-11-07 05:07 . 2009-11-07 05:07 49488 c:\windows\system32\netfxperf.dll + 2009-11-06 02:17 . 2009-11-06 02:17 11600 c:\windows\system32\mui\0409\mscorees.dll - 2008-04-14 12:00 . 2009-03-08 09:31 66560 c:\windows\system32\mshtmled.dll + 2008-04-14 12:00 . 2010-09-10 05:50 66560 c:\windows\system32\mshtmled.dll + 2007-08-13 22:54 . 2010-09-10 05:50 55296 c:\windows\system32\msfeedsbs.dll - 2007-08-13 22:54 . 2010-02-25 06:17 55296 c:\windows\system32\msfeedsbs.dll + 2009-09-23 20:46 . 2010-09-02 21:07 58176 c:\windows\system32\mlfcache.dat - 2008-04-14 12:00 . 2010-02-25 06:17 25600 c:\windows\system32\jsproxy.dll + 2008-04-14 12:00 . 2010-09-10 05:50 25600 c:\windows\system32\jsproxy.dll - 2008-04-14 12:00 . 2008-04-14 12:00 80384 c:\windows\system32\iccvid.dll + 2008-04-14 12:00 . 2010-06-17 14:03 80384 c:\windows\system32\iccvid.dll - 2003-11-07 18:31 . 2003-11-07 18:31 94208 c:\windows\system32\hpzjsn01.dll + 2003-11-07 17:31 . 2003-11-07 17:31 94208 c:\windows\system32\hpzjsn01.dll - 2004-04-26 18:56 . 2004-04-26 18:56 49152 c:\windows\system32\hpzjrd01.dll + 2004-04-26 17:56 . 2004-04-26 17:56 49152 c:\windows\system32\hpzjrd01.dll - 2009-01-07 21:03 . 2004-03-18 21:39 57344 c:\windows\system32\HPZisn12.dll + 2009-01-07 21:03 . 2004-03-18 20:39 57344 c:\windows\system32\HPZisn12.dll - 2009-01-07 21:03 . 2004-03-18 21:39 94208 c:\windows\system32\HPZipt12.dll + 2009-01-07 21:03 . 2004-03-18 20:39 94208 c:\windows\system32\HPZipt12.dll - 2009-01-07 21:03 . 2004-03-18 21:55 65536 c:\windows\system32\HPZipm12.exe + 2009-01-07 21:03 . 2004-03-18 20:55 65536 c:\windows\system32\HPZipm12.exe + 2009-01-07 21:03 . 2004-03-18 20:38 61440 c:\windows\system32\HPZinw12.exe - 2009-01-07 21:03 . 2004-03-18 21:38 61440 c:\windows\system32\HPZinw12.exe + 2010-07-06 20:22 . 2004-06-22 18:16 90112 c:\windows\system32\hpovst08.dll - 2004-06-21 17:40 . 2004-06-21 17:40 90112 c:\windows\system32\hpovst08.dll + 2010-11-10 18:48 . 2007-06-06 14:25 40960 c:\windows\system32\DRVSTORE\kpd_E87DACE52C9F2DBB0F3672314807213D8FCC0029\KPDLM.dll + 2010-11-10 18:48 . 2007-06-06 14:37 28672 c:\windows\system32\DRVSTORE\kpd_E87DACE52C9F2DBB0F3672314807213D8FCC0029\KPDGPD.dll + 2010-11-10 18:48 . 2007-06-06 14:18 45056 c:\windows\system32\DRVSTORE\kpd_E87DACE52C9F2DBB0F3672314807213D8FCC0029\KPDDynCC.DLL + 2010-01-07 01:19 . 2010-04-29 19:39 38224 c:\windows\system32\drivers\mbamswissarmy.sys - 2010-01-07 01:19 . 2010-01-07 21:07 38224 c:\windows\system32\drivers\mbamswissarmy.sys + 2010-01-07 01:19 . 2010-04-29 19:39 20952 c:\windows\system32\drivers\mbam.sys - 2008-04-14 12:00 . 2008-04-14 12:00 62976 c:\windows\system32\drivers\cdrom.sys + 2008-04-14 12:00 . 2008-05-02 10:49 62976 c:\windows\system32\drivers\cdrom.sys - 2010-03-05 23:39 . 2010-02-25 06:17 12800 c:\windows\system32\dllcache\xpshims.dll + 2010-03-05 23:39 . 2010-09-10 05:50 12800 c:\windows\system32\dllcache\xpshims.dll + 2008-04-14 12:00 . 2010-08-27 05:58 99840 c:\windows\system32\dllcache\srvsvc.dll + 2008-04-14 12:00 . 2010-08-17 13:17 58880 c:\windows\system32\dllcache\spoolsv.exe - 2008-04-14 12:00 . 2009-03-08 09:31 66560 c:\windows\system32\dllcache\mshtmled.dll + 2008-04-14 12:00 . 2010-09-10 05:50 66560 c:\windows\system32\dllcache\mshtmled.dll + 2010-03-05 22:57 . 2010-09-10 05:50 55296 c:\windows\system32\dllcache\msfeedsbs.dll - 2010-03-05 22:57 . 2010-02-25 06:17 55296 c:\windows\system32\dllcache\msfeedsbs.dll + 2008-04-14 12:00 . 2010-09-10 05:50 43520 c:\windows\system32\dllcache\licmgr10.dll + 2008-04-14 12:00 . 2010-09-10 05:50 25600 c:\windows\system32\dllcache\jsproxy.dll - 2008-04-14 12:00 . 2010-02-25 06:17 25600 c:\windows\system32\dllcache\jsproxy.dll + 2010-11-10 18:45 . 2008-05-02 10:49 62976 c:\windows\system32\dllcache\cdrom.sys + 2008-04-14 12:00 . 2010-03-05 14:38 65536 c:\windows\system32\dllcache\asycfilt.dll + 2008-04-14 12:00 . 2010-03-05 14:38 65536 c:\windows\system32\asycfilt.dll - 2008-07-29 23:16 . 2008-07-29 23:16 32768 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.WasHosting.dll + 2010-04-08 03:48 . 2010-04-08 03:48 32768 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.WasHosting.dll + 2009-11-07 05:07 . 2009-11-07 05:07 13648 c:\windows\Microsoft.NET\Framework\v2.0.50727\sbscmp20_mscorlib.dll + 2010-09-22 13:43 . 2010-09-22 13:43 30544 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe + 2010-09-23 19:55 . 2010-09-23 19:55 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Security.dll + 2010-09-23 06:26 . 2010-09-23 06:26 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll - 2008-05-28 04:49 . 2008-05-28 04:49 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll + 2010-09-23 06:26 . 2010-09-23 06:26 86016 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorie.dll - 2008-05-28 04:49 . 2008-05-28 04:49 86016 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorie.dll + 2010-09-23 06:26 . 2010-09-23 06:26 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll - 2008-05-28 04:49 . 2008-05-28 04:49 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll - 2008-05-28 05:30 . 2008-05-28 05:30 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe + 2010-09-23 07:17 . 2010-09-23 07:17 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe + 2010-09-23 07:17 . 2010-09-23 07:17 24576 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_filter.dll - 2003-02-20 23:19 . 2003-02-20 23:19 24576 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_filter.dll + 2009-11-07 05:07 . 2009-11-07 05:07 13648 c:\windows\Microsoft.NET\Framework\SharedReg12.dll + 2009-11-07 05:07 . 2009-11-07 05:07 13648 c:\windows\Microsoft.NET\Framework\sbscmp20_perfcounter.dll + 2009-11-07 05:07 . 2009-11-07 05:07 13648 c:\windows\Microsoft.NET\Framework\sbscmp20_mscorwks.dll + 2009-11-07 05:07 . 2009-11-07 05:07 13648 c:\windows\Microsoft.NET\Framework\sbscmp10.dll + 2009-11-07 05:07 . 2009-11-07 05:07 13664 c:\windows\Microsoft.NET\Framework\sbs_wminet_utils.dll + 2009-11-07 05:07 . 2009-11-07 05:07 13688 c:\windows\Microsoft.NET\Framework\sbs_system.enterpriseservices.dll + 2009-11-07 05:07 . 2009-11-07 05:07 13664 c:\windows\Microsoft.NET\Framework\sbs_system.data.dll + 2009-11-07 05:07 . 2009-11-07 05:07 13696 c:\windows\Microsoft.NET\Framework\sbs_system.configuration.install.dll + 2009-11-07 05:07 . 2009-11-07 05:07 13656 c:\windows\Microsoft.NET\Framework\sbs_mscorsec.dll + 2009-11-07 05:07 . 2009-11-07 05:07 13656 c:\windows\Microsoft.NET\Framework\sbs_mscorrc.dll + 2009-11-07 05:07 . 2009-11-07 05:07 13656 c:\windows\Microsoft.NET\Framework\sbs_mscordbi.dll + 2009-11-07 05:07 . 2009-11-07 05:07 13672 c:\windows\Microsoft.NET\Framework\sbs_microsoft.jscript.dll + 2009-11-07 05:07 . 2009-11-07 05:07 13664 c:\windows\Microsoft.NET\Framework\sbs_diasymreader.dll + 2009-11-07 05:07 . 2009-11-07 05:07 86864 c:\windows\Microsoft.NET\Framework\NETFXSBS10.exe + 2010-10-18 04:36 . 2010-10-18 04:36 21504 c:\windows\Installer\14014417.msi + 2010-11-10 18:48 . 2010-11-10 18:48 45056 c:\windows\Installer\{FCDB1C92-03C6-4C76-8625-371224256091}\PdockShortcut4.exe - 2008-10-06 12:37 . 2010-06-15 10:29 35088 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\oisicon.exe + 2008-10-06 12:37 . 2010-11-11 08:03 35088 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\oisicon.exe + 2008-10-06 12:37 . 2010-11-11 08:03 18704 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\mspicons.exe - 2008-10-06 12:37 . 2010-06-15 10:29 18704 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\mspicons.exe + 2008-10-06 12:37 . 2010-11-11 08:03 20240 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\cagicon.exe - 2008-10-06 12:37 . 2010-06-15 10:29 20240 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\cagicon.exe + 2010-06-04 07:00 . 2010-09-30 07:01 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll + 2010-09-21 18:57 . 2010-09-21 18:57 10134 c:\windows\Installer\{5791B7D3-8B34-4218-9750-6A8E45D0AD32}\ARPPRODUCTICON.exe + 2010-07-13 20:22 . 2010-07-13 20:22 14534 c:\windows\Installer\{4E020FCA-6B92-4D16-817A-501E92D51E8B}\SystemFolder_msiexec.exe + 2010-07-13 20:22 . 2010-07-13 20:22 29926 c:\windows\Installer\{4E020FCA-6B92-4D16-817A-501E92D51E8B}\Install_LeeGT_Games_ToolBar.exe + 2010-11-10 18:46 . 2010-11-10 18:46 92854 c:\windows\Installer\{42938595-0D83-404D-9F73-F8177FDD531A}\EasyShareStartupShortcut10.exe + 2010-11-10 18:46 . 2010-11-10 18:46 92854 c:\windows\Installer\{42938595-0D83-404D-9F73-F8177FDD531A}\EasyShareStartMenu10_1.exe + 2010-11-10 18:46 . 2010-11-10 18:46 92854 c:\windows\Installer\{42938595-0D83-404D-9F73-F8177FDD531A}\EasyShareDesktopShortcut10.exe + 2010-01-28 02:16 . 2010-01-28 02:16 34000 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\libParseurWikipedia32_7.dll + 2010-01-28 02:16 . 2010-01-28 02:16 96976 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\libOutilsAntidote32_7.dll + 2010-01-28 02:16 . 2010-01-28 02:16 81104 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\libGestionnaireExtensionsTexteursDruide32_7.dll + 2010-01-28 02:16 . 2010-01-28 02:16 36552 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Installer_dans_les_logiciels.exe + 2010-01-28 02:16 . 2010-01-28 02:16 84688 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.Word.MT.P300.dll + 2009-09-27 10:06 . 2009-09-27 10:06 62160 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.Word.Interface.P107.dll + 2009-09-27 10:06 . 2009-09-27 10:06 62160 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.PowerPoint.P107.dll + 2009-09-27 10:06 . 2009-09-27 10:06 62160 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.Outlook.P107.dll + 2009-09-27 10:06 . 2009-09-27 10:06 66256 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.Excel.P107.dll + 2010-06-10 07:08 . 2010-02-25 06:17 12800 c:\windows\ie8updates\KB982381-IE8\xpshims.dll + 2010-06-10 07:08 . 2010-02-25 06:17 55296 c:\windows\ie8updates\KB982381-IE8\msfeedsbs.dll + 2010-06-10 07:08 . 2010-02-25 06:17 25600 c:\windows\ie8updates\KB982381-IE8\jsproxy.dll + 2010-10-14 07:03 . 2010-06-24 12:25 12800 c:\windows\ie8updates\KB2360131-IE8\xpshims.dll + 2010-10-14 07:03 . 2009-03-08 09:31 66560 c:\windows\ie8updates\KB2360131-IE8\mshtmled.dll + 2010-10-14 07:03 . 2010-06-24 12:25 55296 c:\windows\ie8updates\KB2360131-IE8\msfeedsbs.dll + 2010-10-14 07:03 . 2009-03-08 09:34 43008 c:\windows\ie8updates\KB2360131-IE8\licmgr10.dll + 2010-10-14 07:03 . 2010-06-24 12:25 25600 c:\windows\ie8updates\KB2360131-IE8\jsproxy.dll + 2010-08-12 07:03 . 2010-05-06 10:33 12800 c:\windows\ie8updates\KB2183461-IE8\xpshims.dll + 2010-08-12 07:03 . 2010-05-06 10:33 55296 c:\windows\ie8updates\KB2183461-IE8\msfeedsbs.dll + 2010-08-12 07:03 . 2010-05-06 10:33 25600 c:\windows\ie8updates\KB2183461-IE8\jsproxy.dll - 2009-01-07 21:01 . 2004-06-21 17:40 17176 c:\windows\hpomdl04.dat + 2010-07-06 22:49 . 2004-06-22 18:16 17176 c:\windows\hpomdl04.dat + 2010-11-10 18:45 . 2008-05-02 10:49 62976 c:\windows\Driver Cache\i386\cdrom.sys + 2010-10-06 07:01 . 2010-10-06 07:01 90112 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_b3357472\System.Drawing.Design.dll + 2010-10-06 07:01 . 2010-10-06 07:01 61440 c:\windows\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_35d07ae8\CustomMarshalers.dll + 2010-08-12 07:09 . 2010-08-12 07:09 47616 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLiveWriter\dd5ce29ac227f3d0fd81b84621a57477\WindowsLiveWriter.ni.exe + 2010-08-12 07:09 . 2010-08-12 07:09 99840 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\67a565eaa748e11f0953953cbdcd4e72\WindowsLive.Writer.Api.ni.dll + 2010-08-12 07:07 . 2010-08-12 07:07 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\5ec9dec678303ebff0ef018edb5ec595\UIAutomationProvider.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\46ef15b88ef577de4882c519329fc5d2\System.Windows.Presentation.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\aada360296a42e0413579a19c771ec2d\System.Web.DynamicData.Design.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\70ee6267f7bad40e8707d402277770c3\System.Web.DynamicData.Design.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\2b5ff2c6358c483eb1439b99badb54fd\System.ComponentModel.DataAnnotations.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\6125ff5a4fcd93d70a246cbff3005d42\System.AddIn.Contract.ni.dll + 2010-08-12 07:06 . 2010-08-12 07:06 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\de26af01222270c121788161496fcfe7\PresentationFontCache.ni.exe + 2010-08-12 07:06 . 2010-08-12 07:06 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\3c5adeedb70e6e052a6556c6ab9b6918\PresentationCFFRasterizer.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\5e5176efbfeb803b7f217525beec6844\Microsoft.Vsa.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 15872 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualC\272d51526813ea113970b8e890c92ee2\Microsoft.VisualC.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\e1d4e0b1f112000ab33bbaf88bd9ed99\Microsoft.Build.Framework.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\4200cf5b7f247ec1b997808c6d1ba7d1\Microsoft.Build.Framework.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\50b7fc7f36c76313cbb434b10923e4e9\dfsvc.ni.exe + 2010-08-12 07:08 . 2010-08-12 07:08 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\5ffa548547613dbc5a92f2c5b7cad196\Accessibility.ni.dll + 2010-11-10 18:46 . 2010-11-10 18:46 86016 c:\windows\assembly\GAC_MSIL\VirtualCollectionBase-Defs-PlatReq\1.0.5227.4054__b0cfd8589c27b05f\VirtualCollectionBase-Defs-PlatReq.dll - 2009-10-15 07:05 . 2009-10-15 07:05 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll + 2010-10-06 07:02 . 2010-10-06 07:02 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll + 2010-06-10 07:04 . 2010-06-10 07:04 32768 c:\windows\assembly\GAC_MSIL\System.ServiceModel.WasHosting\3.0.0.0__b77a5c561934e089\System.ServiceModel.WasHosting.dll - 2009-07-16 01:01 . 2009-07-16 01:01 32768 c:\windows\assembly\GAC_MSIL\System.ServiceModel.WasHosting\3.0.0.0__b77a5c561934e089\System.ServiceModel.WasHosting.dll + 2010-10-06 07:02 . 2010-10-06 07:02 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll - 2009-10-15 07:05 . 2009-10-15 07:05 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll - 2009-10-15 07:06 . 2009-10-15 07:06 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll + 2010-10-06 07:02 . 2010-10-06 07:02 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll - 2009-10-15 07:05 . 2009-10-15 07:05 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll + 2010-10-06 07:02 . 2010-10-06 07:02 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll - 2009-10-15 07:05 . 2009-10-15 07:05 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll + 2010-10-06 07:02 . 2010-10-06 07:02 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll - 2009-10-15 07:05 . 2009-10-15 07:05 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll + 2010-10-06 07:02 . 2010-10-06 07:02 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll - 2009-10-15 07:05 . 2009-10-15 07:05 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll + 2010-10-06 07:02 . 2010-10-06 07:02 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll - 2009-10-15 07:05 . 2009-10-15 07:05 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll + 2010-10-06 07:02 . 2010-10-06 07:02 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll - 2009-10-15 07:05 . 2009-10-15 07:05 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll + 2010-10-06 07:02 . 2010-10-06 07:02 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll + 2010-10-06 07:02 . 2010-10-06 07:02 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll - 2009-10-15 07:05 . 2009-10-15 07:05 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll - 2009-10-15 07:05 . 2009-10-15 07:05 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll + 2010-10-06 07:02 . 2010-10-06 07:02 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll + 2010-11-10 18:46 . 2010-11-10 18:46 38400 c:\windows\assembly\GAC_32\PeopleRecognition-Defs-PlatReq\1.1.5227.4054__b0cfd8589c27b05f\PeopleRecognition-Defs-PlatReq.dll + 2010-10-06 07:02 . 2010-10-06 07:02 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll - 2009-10-15 07:05 . 2009-10-15 07:05 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll + 2010-10-06 07:02 . 2010-10-06 07:02 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll - 2009-10-15 07:05 . 2009-10-15 07:05 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll + 2010-10-06 07:01 . 2010-10-06 07:01 81920 c:\windows\assembly\GAC\System.Security\1.0.5000.0__b03f5f7f11d50a3a\System.Security.dll - 2009-12-09 03:23 . 2009-12-09 03:23 12800 c:\windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll + 2010-08-17 23:54 . 2010-08-17 23:54 12800 c:\windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll - 2009-12-09 03:23 . 2009-12-09 03:23 53248 c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll + 2010-08-17 23:54 . 2010-08-17 23:54 53248 c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll + 2010-09-15 07:03 . 2010-02-22 14:25 26488 c:\windows\$hf_mig$\KB982802\update\spcustom.dll + 2010-09-15 07:03 . 2010-02-22 14:25 18296 c:\windows\$hf_mig$\KB982802\spmsg.dll + 2010-08-12 07:01 . 2010-02-22 14:25 26488 c:\windows\$hf_mig$\KB982665\update\spcustom.dll + 2010-08-12 07:01 . 2010-02-22 14:25 18296 c:\windows\$hf_mig$\KB982665\spmsg.dll + 2010-06-17 14:02 . 2010-06-17 14:02 80384 c:\windows\$hf_mig$\KB982665\SP3QFE\iccvid.dll + 2010-06-10 07:08 . 2008-07-08 13:03 26488 c:\windows\$hf_mig$\KB982381-IE8\update\spcustom.dll + 2010-06-10 07:08 . 2008-07-08 13:03 18296 c:\windows\$hf_mig$\KB982381-IE8\spmsg.dll + 2010-06-09 07:59 . 2010-05-06 10:27 12800 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\xpshims.dll + 2010-06-09 07:59 . 2010-05-06 10:27 55296 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\msfeedsbs.dll + 2010-06-09 07:59 . 2010-05-06 10:27 25600 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\jsproxy.dll + 2010-08-12 07:06 . 2010-02-22 14:25 26488 c:\windows\$hf_mig$\KB982214\update\spcustom.dll + 2010-08-12 07:06 . 2010-02-22 14:25 18296 c:\windows\$hf_mig$\KB982214\spmsg.dll + 2010-10-14 07:05 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB982132\update\spcustom.dll + 2010-10-14 07:05 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB982132\spmsg.dll + 2010-08-12 07:01 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB981997\update\spcustom.dll + 2010-08-12 07:01 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB981997\spmsg.dll + 2010-10-14 07:01 . 2010-02-22 14:25 26488 c:\windows\$hf_mig$\KB981957\update\spcustom.dll + 2010-10-14 07:01 . 2010-02-22 14:25 18296 c:\windows\$hf_mig$\KB981957\spmsg.dll + 2010-08-12 07:06 . 2010-02-22 14:25 26488 c:\windows\$hf_mig$\KB981852\update\spcustom.dll + 2010-08-12 03:01 . 2010-06-17 13:45 16896 c:\windows\$hf_mig$\KB981852\update\mpsyschk.dll + 2010-08-12 07:06 . 2010-02-22 14:25 18296 c:\windows\$hf_mig$\KB981852\spmsg.dll + 2010-09-15 07:02 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB981322\update\spcustom.dll + 2010-09-15 07:02 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB981322\spmsg.dll + 2010-08-12 07:03 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB980436\update\spcustom.dll + 2010-08-12 07:03 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB980436\spmsg.dll + 2010-06-10 07:11 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB980218\update\spcustom.dll + 2010-06-10 07:11 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB980218\spmsg.dll + 2010-06-10 07:11 . 2008-07-08 13:03 26488 c:\windows\$hf_mig$\KB980195\update\spcustom.dll + 2010-06-10 07:11 . 2008-07-08 13:03 18296 c:\windows\$hf_mig$\KB980195\spmsg.dll + 2010-10-14 07:04 . 2009-05-26 09:01 26488 c:\windows\$hf_mig$\KB979687\update\spcustom.dll + 2010-10-14 07:04 . 2009-05-26 09:01 18296 c:\windows\$hf_mig$\KB979687\spmsg.dll + 2010-06-10 07:08 . 2009-05-26 09:01 26488 c:\windows\$hf_mig$\KB979559\update\spcustom.dll + 2010-06-10 07:08 . 2009-05-26 09:01 18296 c:\windows\$hf_mig$\KB979559\spmsg.dll + 2010-06-10 07:05 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB979482\update\spcustom.dll + 2010-06-10 07:05 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB979482\spmsg.dll + 2010-03-05 14:53 . 2010-03-05 14:53 65536 c:\windows\$hf_mig$\KB979482\SP3QFE\asycfilt.dll + 2010-05-13 07:01 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB978542\update\spcustom.dll + 2010-05-13 07:01 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB978542\spmsg.dll + 2010-06-10 07:05 . 2008-07-08 13:03 26488 c:\windows\$hf_mig$\KB975562\update\spcustom.dll + 2010-06-10 07:05 . 2008-07-08 13:03 18296 c:\windows\$hf_mig$\KB975562\spmsg.dll + 2010-10-14 07:06 . 2010-02-22 14:25 26488 c:\windows\$hf_mig$\KB2387149\update\spcustom.dll + 2010-10-14 07:06 . 2010-02-22 14:25 18296 c:\windows\$hf_mig$\KB2387149\spmsg.dll + 2010-10-14 07:00 . 2010-02-22 14:25 26488 c:\windows\$hf_mig$\KB2360937\update\spcustom.dll + 2010-10-14 07:00 . 2010-02-22 14:25 18296 c:\windows\$hf_mig$\KB2360937\spmsg.dll + 2010-10-14 07:04 . 2009-05-26 09:01 26488 c:\windows\$hf_mig$\KB2360131-IE8\update\spcustom.dll + 2010-10-14 07:04 . 2009-05-26 09:01 18296 c:\windows\$hf_mig$\KB2360131-IE8\spmsg.dll + 2010-10-14 04:16 . 2010-09-10 05:47 12800 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\xpshims.dll + 2010-10-14 04:16 . 2010-09-10 05:47 66560 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\mshtmled.dll + 2010-10-14 04:16 . 2010-09-10 05:47 55296 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\msfeedsbs.dll + 2010-10-14 04:16 . 2010-09-10 05:47 43520 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\licmgr10.dll + 2010-10-14 04:16 . 2010-09-10 05:47 25600 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\jsproxy.dll + 2010-09-15 07:03 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB2347290\update\spcustom.dll + 2010-09-15 07:03 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB2347290\spmsg.dll + 2010-08-17 13:19 . 2010-08-17 13:19 58880 c:\windows\$hf_mig$\KB2347290\SP3QFE\spoolsv.exe + 2010-10-14 07:05 . 2010-02-22 14:25 26488 c:\windows\$hf_mig$\KB2345886\update\spcustom.dll + 2010-10-14 07:05 . 2010-02-22 14:25 18296 c:\windows\$hf_mig$\KB2345886\spmsg.dll + 2010-08-27 06:06 . 2010-08-27 06:06 99840 c:\windows\$hf_mig$\KB2345886\SP3QFE\srvsvc.dll + 2010-08-03 07:00 . 2010-02-22 14:25 26488 c:\windows\$hf_mig$\KB2286198\update\spcustom.dll + 2010-08-03 07:00 . 2010-02-22 14:25 18296 c:\windows\$hf_mig$\KB2286198\spmsg.dll + 2010-10-14 07:05 . 2010-02-22 14:25 26488 c:\windows\$hf_mig$\KB2279986\update\spcustom.dll + 2010-10-14 07:05 . 2010-02-22 14:25 18296 c:\windows\$hf_mig$\KB2279986\spmsg.dll + 2010-09-15 07:04 . 2009-05-26 09:01 26488 c:\windows\$hf_mig$\KB2259922\update\spcustom.dll + 2010-09-15 07:04 . 2009-05-26 09:01 18296 c:\windows\$hf_mig$\KB2259922\spmsg.dll + 2010-07-15 07:04 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB2229593\update\spcustom.dll + 2010-07-15 07:04 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB2229593\spmsg.dll + 2010-08-12 07:03 . 2009-05-26 09:01 26488 c:\windows\$hf_mig$\KB2183461-IE8\update\spcustom.dll + 2010-08-12 07:03 . 2009-05-26 09:01 18296 c:\windows\$hf_mig$\KB2183461-IE8\spmsg.dll + 2010-08-12 03:01 . 2010-06-24 12:28 12800 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\xpshims.dll + 2010-08-12 03:01 . 2010-06-24 12:28 55296 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\msfeedsbs.dll + 2010-08-12 03:01 . 2010-06-24 12:28 25600 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\jsproxy.dll + 2010-08-12 07:03 . 2010-02-22 14:25 26488 c:\windows\$hf_mig$\KB2160329\update\spcustom.dll + 2010-08-12 07:03 . 2010-02-22 14:25 18296 c:\windows\$hf_mig$\KB2160329\spmsg.dll + 2010-09-15 07:01 . 2010-02-22 14:25 26488 c:\windows\$hf_mig$\KB2141007\update\spcustom.dll + 2010-09-15 07:01 . 2010-02-22 14:25 18296 c:\windows\$hf_mig$\KB2141007\spmsg.dll + 2010-09-15 07:03 . 2010-02-22 14:25 26488 c:\windows\$hf_mig$\KB2121546\update\spcustom.dll + 2010-09-15 07:03 . 2010-02-22 14:25 18296 c:\windows\$hf_mig$\KB2121546\spmsg.dll + 2010-08-12 07:06 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB2115168\update\spcustom.dll + 2010-08-12 07:06 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB2115168\spmsg.dll + 2010-08-12 07:06 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB2079403\update\spcustom.dll + 2010-08-12 07:06 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB2079403\spmsg.dll + 2010-10-06 07:02 . 2010-10-06 07:02 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll - 2009-10-15 07:05 . 2009-10-15 07:05 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll + 2010-08-25 03:56 . 2010-08-25 03:56 4096 c:\windows\d3dx.dat - 2009-10-15 07:05 . 2009-10-15 07:05 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll + 2010-10-06 07:02 . 2010-10-06 07:02 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll + 2010-10-06 07:02 . 2010-10-06 07:02 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll - 2009-10-15 07:06 . 2009-10-15 07:06 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll - 2009-10-15 07:05 . 2009-10-15 07:05 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll + 2010-10-06 07:02 . 2010-10-06 07:02 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll + 2010-10-06 07:02 . 2010-10-06 07:02 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll - 2009-10-15 07:05 . 2009-10-15 07:05 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll + 2010-11-10 18:47 . 2010-11-10 18:47 3072 c:\windows\assembly\GAC_32\policy.2.0.EastmanKodakCompany.EasyShare\2.0.6005.7527__e736f44e197b3380\policy.2.0.EastmanKodakCompany.EasyShare.dll + 2010-11-10 18:47 . 2010-11-10 18:47 3072 c:\windows\assembly\GAC_32\policy.1.0.EastmanKodakCompany.EasyShare\1.0.0.2__e736f44e197b3380\policy.1.0.EastmanKodakCompany.EasyShare.dll + 2010-07-22 06:19 . 2010-07-22 06:19 5632 c:\windows\$hf_mig$\KB982802\SP3QFE\sprv040c.dll + 2010-07-12 13:19 . 2010-07-12 13:19 5632 c:\windows\$hf_mig$\KB979687\SP3QFE\sprv040c.dll + 2010-10-14 04:16 . 2010-08-13 22:44 5632 c:\windows\$hf_mig$\KB2360937\SP3QFE\sprv040c.dll + 2010-08-27 01:43 . 2010-08-27 01:43 5632 c:\windows\$hf_mig$\KB2345886\SP3QFE\sprv040c.dll + 2010-10-06 07:02 . 2010-10-06 07:02 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll - 2009-10-15 07:05 . 2009-10-15 07:05 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll + 2010-10-06 07:02 . 2010-10-06 07:02 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll - 2009-10-15 07:05 . 2009-10-15 07:05 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll + 2008-03-04 07:17 . 2008-03-04 07:17 655872 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30304.0_x-ww_003f2b36\msvcr90.dll + 2008-03-04 07:17 . 2008-03-04 07:17 572928 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30304.0_x-ww_003f2b36\msvcp90.dll + 2008-03-04 01:52 . 2008-03-04 01:52 225280 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30304.0_x-ww_003f2b36\msvcm90.dll + 2008-04-14 12:00 . 2010-06-18 17:45 293888 c:\windows\system32\winsrv.dll + 2010-09-21 18:56 . 1998-07-13 06:08 119568 c:\windows\system32\VB6FR.DLL - 2009-09-27 14:45 . 2000-10-02 00:00 119568 c:\windows\system32\VB6FR.DLL - 2008-04-14 12:00 . 2008-04-14 12:00 406016 c:\windows\system32\usp10.dll + 2008-04-14 12:00 . 2010-04-16 15:38 406016 c:\windows\system32\usp10.dll + 2002-10-06 21:11 . 2005-06-25 18:16 480256 c:\windows\system32\spool\drivers\w32x86\3\PSCRIPT5.DLL + 2002-10-06 21:11 . 2005-06-25 18:16 138240 c:\windows\system32\spool\drivers\w32x86\3\PS5UI.DLL + 2008-04-14 12:00 . 2010-06-30 12:32 149504 c:\windows\system32\schannel.dll + 2008-04-14 12:00 . 2010-08-16 08:44 590848 c:\windows\system32\rpcrt4.dll + 2010-10-18 22:25 . 2010-07-09 22:38 604776 c:\windows\system32\ReinstallBackups\0027\DriverFiles\nvudisp.exe + 2010-10-18 22:25 . 2010-07-09 22:38 232968 c:\windows\system32\ReinstallBackups\0027\DriverFiles\nvdrsdb.bin + 2010-10-18 22:25 . 2010-07-09 22:38 236136 c:\windows\system32\ReinstallBackups\0027\DriverFiles\nvcod.dll + 2010-10-18 22:25 . 2010-07-09 22:38 139776 c:\windows\system32\ReinstallBackups\0027\DriverFiles\dbInstaller.exe + 2010-03-31 04:10 . 2010-03-31 04:10 295264 c:\windows\system32\PresentationHost.exe + 2008-04-14 12:00 . 2010-10-06 07:03 516662 c:\windows\system32\perfh00C.dat - 2008-04-14 12:00 . 2010-06-18 22:33 516662 c:\windows\system32\perfh00C.dat - 2008-04-14 12:00 . 2010-06-18 22:33 446254 c:\windows\system32\perfh009.dat + 2008-04-14 12:00 . 2010-10-06 07:03 446254 c:\windows\system32\perfh009.dat + 2004-01-27 12:13 . 2004-01-27 12:13 421888 c:\windows\system32\OpenQuicktimeLib_dec.dll - 2008-04-14 12:00 . 2010-02-25 06:17 206848 c:\windows\system32\occache.dll + 2008-04-14 12:00 . 2010-09-10 05:50 206848 c:\windows\system32\occache.dll + 2008-10-01 04:31 . 2010-07-07 17:46 604776 c:\windows\system32\NVUNINST.EXE + 2008-10-01 04:32 . 2010-07-09 22:38 604776 c:\windows\system32\nvudisp.exe + 2010-05-25 03:43 . 2010-10-24 15:52 240124 c:\windows\system32\nvdrsdb1.bin + 2010-05-25 03:43 . 2010-10-18 22:25 240124 c:\windows\system32\nvdrsdb0.bin + 2009-09-27 21:12 . 2010-07-09 22:38 236136 c:\windows\system32\nvcodins.dll + 2009-09-27 21:12 . 2010-07-09 22:38 236136 c:\windows\system32\nvcod.dll - 2008-04-14 12:00 . 2010-02-25 06:17 611840 c:\windows\system32\mstime.dll + 2008-04-14 12:00 . 2010-09-10 05:50 611840 c:\windows\system32\mstime.dll + 2007-08-13 22:54 . 2010-09-10 05:50 602112 c:\windows\system32\msfeeds.dll + 2009-11-07 05:07 . 2009-11-07 05:07 297808 c:\windows\system32\mscoree.dll - 2006-10-19 01:47 . 2006-10-19 01:47 317440 c:\windows\system32\MP4SDECD.dll + 2006-10-19 01:47 . 2010-03-30 16:24 317440 c:\windows\system32\mp4sdecd.dll + 2007-06-06 14:18 . 2007-06-06 14:18 200704 c:\windows\system32\KPDRES.DLL + 2007-06-06 14:38 . 2007-06-06 14:38 237568 c:\windows\system32\KPDPMUI.dll + 2007-06-06 14:38 . 2007-06-06 14:38 344064 c:\windows\system32\KPDPM.dll + 2008-10-01 03:03 . 2010-06-09 07:44 692736 c:\windows\system32\inetcomm.dll + 2010-11-10 18:45 . 2008-05-02 13:26 467968 c:\windows\system32\imapi2fs.dll + 2010-11-10 18:45 . 2008-05-02 13:26 320000 c:\windows\system32\imapi2.dll + 2008-04-14 12:00 . 2010-09-10 05:50 184320 c:\windows\system32\iepeers.dll - 2008-04-14 12:00 . 2010-02-25 06:17 184320 c:\windows\system32\iepeers.dll - 2008-04-14 12:00 . 2010-02-25 06:17 387584 c:\windows\system32\iedkcs32.dll + 2008-04-14 12:00 . 2010-09-10 05:50 387584 c:\windows\system32\iedkcs32.dll + 2008-04-14 12:00 . 2010-08-26 12:22 173056 c:\windows\system32\ie4uinit.exe - 2008-04-14 12:00 . 2010-02-24 09:55 173056 c:\windows\system32\ie4uinit.exe - 2004-06-21 17:40 . 2004-06-21 17:40 180315 c:\windows\system32\hpzsnt10.dll + 2010-07-06 20:21 . 2004-06-22 18:16 180315 c:\windows\system32\hpzsnt10.dll - 2009-01-07 21:03 . 2004-03-18 21:56 204800 c:\windows\system32\HPZipr12.dll + 2009-01-07 21:03 . 2004-03-18 20:56 204800 c:\windows\system32\HPZipr12.dll + 2009-01-07 21:03 . 2004-03-18 20:53 278584 c:\windows\system32\HPZidr12.dll - 2009-01-07 21:03 . 2004-03-18 21:53 278584 c:\windows\system32\HPZidr12.dll + 2010-11-10 18:48 . 2007-06-06 14:46 229376 c:\windows\system32\DRVSTORE\kpd_E87DACE52C9F2DBB0F3672314807213D8FCC0029\KPDVS.dll + 2010-11-10 18:48 . 2007-06-06 14:37 278528 c:\windows\system32\DRVSTORE\kpd_E87DACE52C9F2DBB0F3672314807213D8FCC0029\KPDUI.dll + 2010-11-10 18:48 . 2007-06-06 14:18 200704 c:\windows\system32\DRVSTORE\kpd_E87DACE52C9F2DBB0F3672314807213D8FCC0029\KPDRES.dll + 2010-11-10 18:48 . 2007-06-06 14:37 258048 c:\windows\system32\DRVSTORE\kpd_E87DACE52C9F2DBB0F3672314807213D8FCC0029\KPDGDI.dll + 2008-10-01 03:02 . 2010-07-16 12:04 221696 c:\windows\system32\dllcache\wordpad.exe + 2008-04-14 12:00 . 2010-06-18 17:45 293888 c:\windows\system32\dllcache\winsrv.dll - 2008-04-14 12:00 . 2010-02-25 06:17 916480 c:\windows\system32\dllcache\wininet.dll + 2008-04-14 12:00 . 2010-09-10 05:50 916480 c:\windows\system32\dllcache\wininet.dll + 2008-04-14 12:00 . 2010-04-16 15:38 406016 c:\windows\system32\dllcache\usp10.dll - 2008-04-14 12:00 . 2008-04-14 12:00 406016 c:\windows\system32\dllcache\usp10.dll + 2008-04-14 12:00 . 2010-08-27 08:02 119808 c:\windows\system32\dllcache\t2embed.dll - 2008-04-14 12:00 . 2009-10-15 16:32 119808 c:\windows\system32\dllcache\t2embed.dll + 2008-04-14 12:00 . 2010-08-26 13:39 357248 c:\windows\system32\dllcache\srv.sys + 2008-04-14 12:00 . 2010-06-30 12:32 149504 c:\windows\system32\dllcache\schannel.dll + 2008-04-14 12:00 . 2010-08-16 08:44 590848 c:\windows\system32\dllcache\rpcrt4.dll - 2008-04-14 12:00 . 2010-02-25 06:17 206848 c:\windows\system32\dllcache\occache.dll + 2008-04-14 12:00 . 2010-09-10 05:50 206848 c:\windows\system32\dllcache\occache.dll + 2008-04-14 12:00 . 2010-09-10 05:50 611840 c:\windows\system32\dllcache\mstime.dll - 2008-04-14 12:00 . 2010-02-25 06:17 611840 c:\windows\system32\dllcache\mstime.dll + 2010-03-05 22:57 . 2010-09-10 05:50 602112 c:\windows\system32\dllcache\msfeeds.dll + 2010-03-30 16:24 . 2010-03-30 16:24 317440 c:\windows\system32\dllcache\mp4sdecd.dll + 2008-04-14 12:00 . 2010-09-18 16:23 974848 c:\windows\system32\dllcache\mfc42u.dll + 2008-04-14 12:00 . 2010-09-18 06:53 974848 c:\windows\system32\dllcache\mfc42.dll + 2008-04-14 12:00 . 2010-09-18 06:53 953856 c:\windows\system32\dllcache\mfc40u.dll + 2008-04-14 12:00 . 2010-09-18 06:53 954368 c:\windows\system32\dllcache\mfc40.dll + 2008-10-01 03:03 . 2010-06-09 07:44 692736 c:\windows\system32\dllcache\inetcomm.dll + 2010-11-10 18:45 . 2008-05-02 13:26 467968 c:\windows\system32\dllcache\imapi2fs.dll + 2010-11-10 18:45 . 2008-05-02 13:26 320000 c:\windows\system32\dllcache\imapi2.dll + 2010-03-05 23:39 . 2010-09-10 05:50 247808 c:\windows\system32\dllcache\ieproxy.dll - 2010-03-05 23:39 . 2010-02-25 06:17 247808 c:\windows\system32\dllcache\ieproxy.dll - 2008-04-14 12:00 . 2010-02-25 06:17 184320 c:\windows\system32\dllcache\iepeers.dll + 2008-04-14 12:00 . 2010-09-10 05:50 184320 c:\windows\system32\dllcache\iepeers.dll + 2010-06-09 07:59 . 2010-09-10 05:50 743424 c:\windows\system32\dllcache\iedvtool.dll - 2008-04-14 12:00 . 2010-02-25 06:17 387584 c:\windows\system32\dllcache\iedkcs32.dll + 2008-04-14 12:00 . 2010-09-10 05:50 387584 c:\windows\system32\dllcache\iedkcs32.dll - 2008-04-14 12:00 . 2010-02-24 09:55 173056 c:\windows\system32\dllcache\ie4uinit.exe + 2008-04-14 12:00 . 2010-08-26 12:22 173056 c:\windows\system32\dllcache\ie4uinit.exe + 2008-10-01 03:03 . 2010-06-14 14:31 744448 c:\windows\system32\dllcache\helpsvc.exe - 2008-10-01 03:03 . 2008-04-14 12:00 744448 c:\windows\system32\dllcache\helpsvc.exe - 2008-04-14 12:00 . 2008-04-14 12:00 617472 c:\windows\system32\dllcache\comctl32.dll + 2008-04-14 12:00 . 2010-08-23 16:12 617472 c:\windows\system32\dllcache\comctl32.dll + 2008-04-14 12:00 . 2010-09-01 11:51 285824 c:\windows\system32\dllcache\atmfd.dll + 2004-01-27 13:35 . 2004-01-27 13:35 270336 c:\windows\system32\3ivxVfWCodec_dec.dll + 2004-01-27 13:35 . 2004-01-27 13:35 958464 c:\windows\system32\3ivx_dec.dll + 2000-10-02 03:00 . 2000-10-02 03:00 119568 c:\windows\system\VB6FR.DLL - 2008-10-01 03:03 . 2008-04-14 12:00 744448 c:\windows\pchealth\helpctr\binaries\HelpSvc.exe + 2008-10-01 03:03 . 2010-06-14 14:31 744448 c:\windows\pchealth\helpctr\binaries\helpsvc.exe + 2010-03-31 04:16 . 2010-03-31 04:16 130408 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationHostDLL.dll + 2010-04-08 03:48 . 2010-04-08 03:48 970752 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll + 2010-04-08 03:48 . 2010-04-08 03:48 110592 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMdiagnostics.dll - 2008-07-29 23:16 . 2008-07-29 23:16 110592 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMdiagnostics.dll + 2010-09-22 13:43 . 2010-09-22 13:43 435024 c:\windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll + 2010-02-09 16:22 . 2010-02-09 16:22 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll - 2008-07-25 15:17 . 2008-07-25 15:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll + 2010-05-11 10:40 . 2010-05-11 10:40 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll - 2009-08-08 03:51 . 2009-08-08 03:51 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll + 2010-05-11 10:40 . 2010-05-11 10:40 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll - 2008-05-28 04:49 . 2008-05-28 04:49 102400 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorld.dll + 2010-09-23 06:26 . 2010-09-23 06:26 102400 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorld.dll - 2008-05-28 04:48 . 2008-05-28 04:48 315392 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll + 2010-09-23 06:25 . 2010-09-23 06:25 315392 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll + 2010-09-23 07:17 . 2010-09-23 07:17 258048 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll - 2008-05-28 05:30 . 2008-05-28 05:30 258048 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll - 2009-01-07 21:03 . 1998-10-29 21:45 306688 c:\windows\IsUninst.exe + 2009-01-07 21:03 . 1998-10-29 20:45 306688 c:\windows\IsUninst.exe + 2010-08-04 19:13 . 2010-08-04 19:13 686080 c:\windows\Installer\b0440c.msp + 2010-07-06 22:56 . 2010-07-06 22:56 206848 c:\windows\Installer\5cd7d.msi + 2010-07-06 22:56 . 2010-07-06 22:56 135168 c:\windows\Installer\5cd75.msi + 2010-07-06 22:56 . 2010-07-06 22:56 135168 c:\windows\Installer\5cd6d.msi + 2010-07-06 22:55 . 2010-07-06 22:55 135680 c:\windows\Installer\5cd65.msi + 2010-07-06 22:55 . 2010-07-06 22:55 324608 c:\windows\Installer\5cd5d.msi + 2010-07-06 22:54 . 2010-07-06 22:54 219136 c:\windows\Installer\5cd55.msi + 2010-07-06 22:54 . 2010-07-06 22:54 129024 c:\windows\Installer\5cd4d.msi + 2010-07-06 22:54 . 2010-07-06 22:54 540672 c:\windows\Installer\5cd45.msi + 2010-07-06 22:54 . 2010-07-06 22:54 426496 c:\windows\Installer\5cd3d.msi + 2010-07-06 22:54 . 2010-07-06 22:54 317952 c:\windows\Installer\5cd18.msi + 2010-07-06 22:54 . 2010-07-06 22:54 284160 c:\windows\Installer\5cd0d.msi + 2010-07-06 22:54 . 2010-07-06 22:54 134144 c:\windows\Installer\5cd03.msi + 2010-05-27 01:20 . 2010-05-27 01:20 791552 c:\windows\Installer\5c0de1.msi + 2010-11-10 18:47 . 2010-11-10 18:47 295936 c:\windows\Installer\48fdfd3.msi + 2010-11-10 18:47 . 2010-11-10 18:47 370688 c:\windows\Installer\48fdfcb.msi + 2010-11-10 18:47 . 2010-11-10 18:47 404480 c:\windows\Installer\48fdfc3.msi + 2010-11-10 18:47 . 2010-11-10 18:47 213504 c:\windows\Installer\48fdfba.msi + 2010-11-10 18:47 . 2010-11-10 18:47 186368 c:\windows\Installer\48fdfb1.msi + 2010-11-10 18:47 . 2010-11-10 18:47 180736 c:\windows\Installer\48fdfa9.msi + 2010-11-10 18:47 . 2010-11-10 18:47 181248 c:\windows\Installer\48fdfa1.msi + 2010-11-10 18:47 . 2010-11-10 18:47 430080 c:\windows\Installer\48fdf99.msi + 2010-11-10 18:47 . 2010-11-10 18:47 548352 c:\windows\Installer\48fdf91.msi + 2010-11-10 18:47 . 2010-11-10 18:47 291840 c:\windows\Installer\48fdf89.msi + 2010-11-10 18:46 . 2010-11-10 18:46 357376 c:\windows\Installer\48fdf81.msi + 2010-11-10 18:46 . 2010-11-10 18:46 291840 c:\windows\Installer\48fdf79.msi + 2010-11-10 18:46 . 2010-11-10 18:46 182784 c:\windows\Installer\48fdf71.msi + 2010-11-10 18:46 . 2010-11-10 18:46 288768 c:\windows\Installer\48fdf69.msi + 2010-11-10 18:46 . 2010-11-10 18:46 294912 c:\windows\Installer\48fdf61.msi + 2010-06-10 07:10 . 2010-06-10 07:10 200192 c:\windows\Installer\4484583f.msi + 2010-02-25 04:14 . 2010-02-25 04:14 543232 c:\windows\Installer\44845768.msp + 2010-09-24 01:02 . 2010-09-24 01:02 798208 c:\windows\Installer\3069664f.msp + 2010-06-11 23:07 . 2010-06-11 23:07 168960 c:\windows\Installer\23f34b7b.msp + 2010-09-21 18:57 . 2010-09-21 18:57 840704 c:\windows\Installer\21636ff3.msi + 2010-11-10 18:48 . 2010-11-10 18:48 135168 c:\windows\Installer\{FCDB1C92-03C6-4C76-8625-371224256091}\PdockShortcut5.exe - 2010-01-18 03:50 . 2010-01-18 03:50 371272 c:\windows\Installer\{D103C4BA-F905-437A-8049-DB24763BBE36}\SkypeIcon.exe + 2010-08-05 19:14 . 2010-08-05 19:14 371272 c:\windows\Installer\{D103C4BA-F905-437A-8049-DB24763BBE36}\SkypeIcon.exe + 2008-10-06 12:37 . 2010-11-11 08:03 888080 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe - 2008-10-06 12:37 . 2010-06-15 10:29 888080 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe - 2008-10-06 12:37 . 2010-06-15 10:29 272648 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pubs.exe + 2008-10-06 12:37 . 2010-11-11 08:03 272648 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pubs.exe - 2008-10-06 12:37 . 2010-06-15 10:29 922384 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pptico.exe + 2008-10-06 12:37 . 2010-11-11 08:03 922384 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pptico.exe + 2008-10-06 12:37 . 2010-11-11 08:03 845584 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\outicon.exe - 2008-10-06 12:37 . 2010-06-15 10:29 845584 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\outicon.exe - 2008-10-06 12:37 . 2010-06-15 10:29 217864 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\misc.exe + 2008-10-06 12:37 . 2010-11-11 08:03 217864 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\misc.exe - 2008-10-06 12:37 . 2010-06-15 10:29 159504 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\inficon.exe + 2008-10-06 12:37 . 2010-11-11 08:03 159504 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\inficon.exe + 2010-07-13 20:22 . 2010-07-13 20:22 738326 c:\windows\Installer\{4E020FCA-6B92-4D16-817A-501E92D51E8B}\Sarah_Maribu_and_The_Lost_World.exe + 2010-01-28 02:16 . 2010-01-28 02:16 750800 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\libOutilsNoyauDruide32_7.dll + 2010-01-28 02:16 . 2010-01-28 02:16 488144 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\libOutilsGuiDruide32_7.dll + 2010-01-28 02:16 . 2010-01-28 02:16 326856 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\GesAnt.exe + 2010-01-28 02:16 . 2010-01-28 02:16 410832 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.WordPerfect.P114.dll + 2010-01-28 02:16 . 2010-01-28 02:16 410832 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.WordPerfect.P113.dll + 2010-01-28 02:16 . 2010-01-28 02:16 688848 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.Word.MT.P200.dll + 2010-01-28 02:16 . 2010-01-28 02:16 260304 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.Word.Interface.P200.dll + 2010-01-28 02:16 . 2010-01-28 02:16 283344 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.Word.Interface.P100.dll + 2010-01-28 02:16 . 2010-01-28 02:16 237776 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.PowerPoint.P100.dll + 2010-01-28 02:16 . 2010-01-28 02:16 138960 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.OutlookExpress.AntiOups.P100.dll + 2010-01-28 02:16 . 2010-01-28 02:16 280272 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.Outlook.P100.dll + 2010-01-28 02:16 . 2010-01-28 02:16 880848 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.Outlook.AntiOups.P100.dll + 2010-01-28 02:16 . 2010-01-28 02:16 139472 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.OOo.MT.P100.dll + 2010-01-28 02:16 . 2010-01-28 02:16 455392 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.OOo.MA.P100.dll + 2010-01-28 02:16 . 2010-01-28 02:16 101584 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.GroupWise.P100.dll + 2010-01-28 02:16 . 2010-01-28 02:16 689872 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.GroupWise.AntiOups.P100.dll + 2010-01-28 02:16 . 2010-01-28 02:16 231120 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\Antidote.Excel.P100.dll + 2010-01-28 02:16 . 2010-01-28 02:16 617152 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\agentantidote.exe + 2009-03-06 06:37 . 2009-03-06 06:37 501640 c:\windows\Installer\$PatchCache$\Managed\00002109110000000000000000F01FEC\12.0.6425\SOA.DLL + 2009-03-06 08:26 . 2009-03-06 08:26 770464 c:\windows\Installer\$PatchCache$\Managed\00002109110000000000000000F01FEC\12.0.6425\REGFORM.EXE + 2008-10-25 13:27 . 2008-10-25 13:27 177040 c:\windows\Installer\$PatchCache$\Managed\00002109110000000000000000F01FEC\12.0.6425\IPOLK.DLL + 2008-10-26 10:26 . 2008-10-26 10:26 162680 c:\windows\Installer\$PatchCache$\Managed\00002109110000000000000000F01FEC\12.0.6425\ACCWIZ.DLL + 2010-06-10 07:08 . 2010-02-25 06:17 916480 c:\windows\ie8updates\KB982381-IE8\wininet.dll + 2010-06-10 07:08 . 2010-02-22 14:25 406392 c:\windows\ie8updates\KB982381-IE8\spuninst\updspapi.dll + 2010-06-10 07:08 . 2008-07-08 13:03 234872 c:\windows\ie8updates\KB982381-IE8\spuninst\spuninst.exe + 2010-06-10 07:08 . 2010-02-25 06:17 206848 c:\windows\ie8updates\KB982381-IE8\occache.dll + 2010-06-10 07:08 . 2010-02-25 06:17 611840 c:\windows\ie8updates\KB982381-IE8\mstime.dll + 2010-06-10 07:08 . 2010-02-25 06:17 594432 c:\windows\ie8updates\KB982381-IE8\msfeeds.dll + 2010-06-10 07:08 . 2010-02-25 06:17 247808 c:\windows\ie8updates\KB982381-IE8\ieproxy.dll + 2010-06-10 07:08 . 2010-02-25 06:17 184320 c:\windows\ie8updates\KB982381-IE8\iepeers.dll + 2010-06-10 07:08 . 2009-03-08 08:35 742912 c:\windows\ie8updates\KB982381-IE8\iedvtool.dll + 2010-06-10 07:08 . 2010-02-25 06:17 387584 c:\windows\ie8updates\KB982381-IE8\iedkcs32.dll + 2010-06-10 07:08 . 2010-02-24 09:55 173056 c:\windows\ie8updates\KB982381-IE8\ie4uinit.exe + 2010-10-14 07:03 . 2010-06-24 12:25 916480 c:\windows\ie8updates\KB2360131-IE8\wininet.dll + 2010-10-14 07:04 . 2010-07-05 13:17 406392 c:\windows\ie8updates\KB2360131-IE8\spuninst\updspapi.dll + 2010-10-14 07:04 . 2009-05-26 09:01 234872 c:\windows\ie8updates\KB2360131-IE8\spuninst\spuninst.exe + 2010-10-14 07:03 . 2010-06-24 12:25 206848 c:\windows\ie8updates\KB2360131-IE8\occache.dll + 2010-10-14 07:03 . 2010-06-24 12:25 611840 c:\windows\ie8updates\KB2360131-IE8\mstime.dll + 2010-10-14 07:03 . 2010-06-24 12:25 599040 c:\windows\ie8updates\KB2360131-IE8\msfeeds.dll + 2010-10-14 07:03 . 2010-06-24 12:25 247808 c:\windows\ie8updates\KB2360131-IE8\ieproxy.dll + 2010-10-14 07:03 . 2010-06-24 12:25 184320 c:\windows\ie8updates\KB2360131-IE8\iepeers.dll + 2010-10-14 07:03 . 2010-06-24 12:25 743424 c:\windows\ie8updates\KB2360131-IE8\iedvtool.dll + 2010-10-14 07:03 . 2010-06-24 12:25 387584 c:\windows\ie8updates\KB2360131-IE8\iedkcs32.dll + 2010-10-14 07:03 . 2010-06-23 12:08 173056 c:\windows\ie8updates\KB2360131-IE8\ie4uinit.exe + 2010-08-12 07:03 . 2010-05-06 10:33 916480 c:\windows\ie8updates\KB2183461-IE8\wininet.dll + 2010-08-12 07:03 . 2010-02-22 14:25 406392 c:\windows\ie8updates\KB2183461-IE8\spuninst\updspapi.dll + 2010-08-12 07:03 . 2009-05-26 09:01 234872 c:\windows\ie8updates\KB2183461-IE8\spuninst\spuninst.exe + 2010-08-12 07:03 . 2010-05-06 10:33 206848 c:\windows\ie8updates\KB2183461-IE8\occache.dll + 2010-08-12 07:03 . 2010-05-06 10:33 611840 c:\windows\ie8updates\KB2183461-IE8\mstime.dll + 2010-08-12 07:03 . 2010-05-06 10:33 599040 c:\windows\ie8updates\KB2183461-IE8\msfeeds.dll + 2010-08-12 07:03 . 2010-05-06 10:33 247808 c:\windows\ie8updates\KB2183461-IE8\ieproxy.dll + 2010-08-12 07:03 . 2010-05-06 10:33 184320 c:\windows\ie8updates\KB2183461-IE8\iepeers.dll + 2010-08-12 07:03 . 2010-05-06 10:33 743424 c:\windows\ie8updates\KB2183461-IE8\iedvtool.dll + 2010-08-12 07:03 . 2010-05-06 10:33 387584 c:\windows\ie8updates\KB2183461-IE8\iedkcs32.dll + 2010-08-12 07:03 . 2010-05-05 13:30 173056 c:\windows\ie8updates\KB2183461-IE8\ie4uinit.exe + 2010-07-06 22:49 . 2010-07-06 22:56 104567 c:\windows\hpoins04.dat + 2007-10-18 14:04 . 2007-10-18 14:04 341296 c:\windows\Downloaded Program Files\HPDEXAXO.dll + 2010-10-06 07:01 . 2010-10-06 07:01 835584 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_b7a6f630\System.Drawing.dll + 2010-10-06 07:01 . 2010-10-06 07:01 192512 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_c64cfe11\System.Drawing.Design.dll + 2010-10-06 07:01 . 2010-10-06 07:01 118784 c:\windows\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_cd716580\CustomMarshalers.dll + 2010-08-12 07:09 . 2010-08-12 07:09 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\a16b8bcca59515281688ec856c034698\WsatConfig.ni.exe + 2010-10-06 07:05 . 2010-10-06 07:05 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLiveLocal.Wr#\f39d526b39e8928e719d9ce8a971383e\WindowsLiveLocal.WriterPlugin.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLiveLocal.Wr#\556ae36dd8238b6157bc1e8a7cccd550\WindowsLiveLocal.WriterPlugin.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 118784 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\f06626ccee27150b618f6ff8e4b83dba\WindowsLive.Writer.Extensibility.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 108544 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\e0e45d40fad4c1b13c93dbd1268410f3\WindowsLive.Writer.Passport.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 594944 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\df15c0083bdfbbe4b1c7e83034ecd5f6\WindowsLive.Writer.HtmlEditor.ni.dll + 2010-10-06 07:05 . 2010-10-06 07:05 851968 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\d0916f4cf87dafdf941b66056dd0e005\WindowsLive.Writer.BlogClient.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 313856 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\c46d84073499887c745801bda334c97f\WindowsLive.Writer.Interop.SHDocVw.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 152064 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\b2d5a953edeb3357a489c44f9f9000b2\WindowsLive.Writer.HtmlParser.ni.dll + 2010-10-06 07:05 . 2010-10-06 07:05 594944 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\aa7ddbdf38e8a7129fb0befd951897f5\WindowsLive.Writer.HtmlEditor.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 322048 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\8f73472385b353ebd6010d02ad42b2b6\WindowsLive.Writer.SpellChecker.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 851968 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\84c1ee11d86bed17949850c394f4581c\WindowsLive.Writer.BlogClient.ni.dll + 2010-10-06 07:05 . 2010-10-06 07:05 152064 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\7619247d1c0a0779042423940f5f93de\WindowsLive.Writer.HtmlParser.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 428032 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\56faab9a03f8863e76f75d8b6c70185b\WindowsLive.Writer.Localization.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 174080 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\4844cd1fac89240407ab5e2a4fe9c518\WindowsLive.Writer.BrowserControl.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 334848 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\482300ac4d48e5c77dc319ec489e6bfc\WindowsLive.Writer.Interop.Mshtml.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 119296 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\436529704b6c85b97f68a5489dc82ab2\WindowsLive.Writer.FileDestinations.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 319488 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\3dce78aa75f081de7ad7cd480e64167a\WindowsLive.Writer.Interop.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 843776 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\1931e1807dc35a71bda7ce8b517c84ef\WindowsLive.Writer.Controls.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\18a657bcf90f1a3340e7e33ea4dad4c9\WindowsLive.Writer.Mshtml.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 117760 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\088f2a6fd9107021e9b80ecc5c832334\WindowsLive.Writer.Instrumentation.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 145920 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Client\4db92179406aa5a642aca6165defa8fe\WindowsLive.Client.ni.dll + 2010-08-12 07:07 . 2010-08-12 07:07 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\672c4d8e3c33e309c1ed90fa4cb85aba\WindowsFormsIntegration.ni.dll + 2010-08-12 07:07 . 2010-08-12 07:07 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\cd91a32f4e36ccb2981c72c0d333e928\UIAutomationTypes.ni.dll + 2010-08-12 07:07 . 2010-08-12 07:07 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\9df760fdf8071c7b0de78f39de365e6a\UIAutomationClient.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\ff53d5b5249a2841ee196294429f51cf\System.Xml.Linq.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\7f9a1ae146571025fd49914b5c71a39b\System.Web.Routing.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\5e16c279496a553c988c6199f0cee8aa\System.Web.Routing.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\d0ae809162b55e2fa958739177476af8\System.Web.RegularExpressions.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\b1646e54b708b9824f4193f87eb00c0e\System.Web.Extensions.Design.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\720b28d81e987b889180b291ea19b821\System.Web.Extensions.Design.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\da36fd678161cd3444ef547c894e3f35\System.Web.Entity.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\504a93e73da77c502ecf98bfdfc1485e\System.Web.Entity.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\f22334fbd9497d79448fffef515ae0cc\System.Web.Entity.Design.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\49ae7c73fac8827123d5db1714c22599\System.Web.Entity.Design.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\ce3aa27d3c4c052845ac5abb1374defa\System.Web.DynamicData.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\af5452305588da228a74e30324681d20\System.Web.DynamicData.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\9d9bca1a8993c427984aa1bc9c165a33\System.Web.Abstractions.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\95fab896ef2af14876e3e1524379773b\System.Web.Abstractions.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\26d5bf1f7e700c2c19aa9b1da5519b24\System.Transactions.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8b000cc703c9d95593b516bf2c2ec316\System.ServiceProcess.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\75e331a5d731d8e207be07adc06dec23\System.Security.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\dd7497aa089340600c8c5af8ab421ff7\System.Runtime.Serialization.Formatters.Soap.ni.dll + 2010-10-06 07:05 . 2010-10-06 07:05 771584 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\a140e8da81b3af34c864ad851fe150fd\System.Runtime.Remoting.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 771584 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\3de39eb60b9d32af46f32f6c7a88fc7f\System.Runtime.Remoting.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\2a080994f308f347b0497bb8804861cf\System.Net.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\bc1cf48ba7dc00f45d0e949c49ab677a\System.Management.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\904fda53006680a67f917ab638be0305\System.Management.Instrumentation.ni.dll + 2010-08-12 07:08 . 2010-08-12 07:08 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\4490976887e2e5a3b594041edbdf5064\System.IO.Log.ni.dll + 2010-08-12 07:08 . 2010-08-12 07:08 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\77b9f6f6671aaaeb84c6907d467e792c\System.IdentityModel.Selectors.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\15724a7517f939c9b300f341fb5620b8\System.EnterpriseServices.Wrapper.dll + 2010-08-12 07:09 . 2010-08-12 07:09 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\15724a7517f939c9b300f341fb5620b8\System.EnterpriseServices.ni.dll + 2010-08-12 07:07 . 2010-08-12 07:07 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\90199b4aa63b1b9c8ed0c3de16eec824\System.Drawing.Design.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\849e98c9f428a12cb581320a23f69dbd\System.DirectoryServices.AccountManagement.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\7a823a4f61cf8c86aad02559f8fed07b\System.DirectoryServices.Protocols.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\ad95820d2e29e8d55c0d8a838214c6e5\System.Data.Services.Design.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\617acb0d900bdde947ec79f7b5ccc183\System.Data.Services.Client.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\488c4017d45e861644a34fae557aa80f\System.Data.Entity.Design.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\165bd290e518b9397ca55192985fdee3\System.Data.Entity.Design.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\41345e34f26854fc1878eae3e4d5d4a5\System.Data.DataSetExtensions.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\ab688d0f9f333ba117832726bfb589c1\System.Configuration.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\b48677ab9aa7a6830785f67b8478b4da\System.Configuration.Install.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\93a0958d5557e2b380647af0171ad354\System.AddIn.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\d0758f84e927e3f0a15a6cde1b96d835\SMSvcHost.ni.exe + 2010-08-12 07:09 . 2010-08-12 07:09 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\8043a108e3bb2d3dcc84b547b8085e99\SMDiagnostics.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\72d3aacfca2e1ce835c210f5a1decb36\ServiceModelReg.ni.exe + 2010-08-12 07:09 . 2010-08-12 07:09 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\5aeb40ff7128df2881fb03c01d070b20\ServiceModelReg.ni.exe + 2010-08-12 07:06 . 2010-08-12 07:06 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e7e7321956e6822b1bf3691c35c842f6\PresentationFramework.Aero.ni.dll + 2010-08-12 07:06 . 2010-08-12 07:06 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a14488afff027f0f2985e659449097f5\PresentationFramework.Royale.ni.dll + 2010-08-12 07:06 . 2010-08-12 07:06 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\787e60c5dd562cb45887080095d2a3b7\PresentationFramework.Classic.ni.dll + 2010-08-12 07:06 . 2010-08-12 07:06 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\2313ccc125dcb6a9800048ec1c51ec12\PresentationFramework.Luna.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\5db9c32d9f352162e6da220ca463db0d\MSBuild.ni.exe + 2010-08-12 07:09 . 2010-08-12 07:09 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\fcf975f74bd134d8e0fa8f37c5bc6a8c\Microsoft.Transactions.Bridge.Dtc.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\d6b9038136600fbfbbbd7460dc19da19\Microsoft.Build.Utilities.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\585cc7218599e7806521d0e737ba5ffb\Microsoft.Build.Utilities.v3.5.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\3057ec53731286e69e389d103c32fa41\Microsoft.Build.Engine.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\914e338ac6e92714f3e32ae5d89bf03b\Microsoft.Build.Conversion.v3.5.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\12ae6f3635448471fc9f7d8bfe39c67d\CustomMarshalers.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\daca3c9ad6d867d3fec70d14b4f20cf3\ComSvcConfig.ni.exe + 2010-10-06 07:05 . 2010-10-06 07:05 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\af4a3ae6d5c1cafa57002beb487b8d7a\AspNetMMCExt.ni.dll + 2010-08-12 07:08 . 2010-08-12 07:08 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\56aec0938ef1bbdeca65b07a5fe8cd39\AspNetMMCExt.ni.dll - 2009-10-15 07:05 . 2009-10-15 07:05 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll + 2010-10-06 07:02 . 2010-10-06 07:02 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll + 2010-10-06 07:02 . 2010-10-06 07:02 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll - 2009-10-15 07:05 . 2009-10-15 07:05 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll + 2010-10-06 07:02 . 2010-10-06 07:02 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll - 2009-10-15 07:05 . 2009-10-15 07:05 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll - 2009-10-15 07:05 . 2009-10-15 07:05 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll + 2010-10-06 07:02 . 2010-10-06 07:02 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll + 2010-06-10 07:04 . 2010-06-10 07:04 970752 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll - 2009-10-15 07:05 . 2009-10-15 07:05 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll + 2010-10-06 07:02 . 2010-10-06 07:02 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll + 2010-10-06 07:02 . 2010-10-06 07:02 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll - 2009-10-15 07:05 . 2009-10-15 07:05 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll + 2010-10-06 07:02 . 2010-10-06 07:02 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll - 2009-10-15 07:05 . 2009-10-15 07:05 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll - 2009-10-15 07:05 . 2009-10-15 07:05 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll + 2010-10-06 07:02 . 2010-10-06 07:02 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll + 2010-06-10 07:04 . 2010-06-10 07:04 438272 c:\windows\assembly\GAC_MSIL\System.IdentityModel\3.0.0.0__b77a5c561934e089\System.IdentityModel.dll + 2010-10-06 07:02 . 2010-10-06 07:02 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll - 2009-10-15 07:05 . 2009-10-15 07:05 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll + 2010-10-06 07:02 . 2010-10-06 07:02 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll - 2009-10-15 07:05 . 2009-10-15 07:05 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll + 2010-10-06 07:02 . 2010-10-06 07:02 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll - 2009-10-15 07:05 . 2009-10-15 07:05 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll + 2010-10-06 07:03 . 2010-10-06 07:03 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll - 2009-10-15 07:06 . 2009-10-15 07:06 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll - 2009-10-15 07:06 . 2009-10-15 07:06 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll + 2010-10-06 07:03 . 2010-10-06 07:03 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll + 2010-10-06 07:03 . 2010-10-06 07:03 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll - 2009-10-15 07:06 . 2009-10-15 07:06 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll - 2009-10-15 07:06 . 2009-10-15 07:06 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll + 2010-10-06 07:02 . 2010-10-06 07:02 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll - 2009-07-16 01:00 . 2009-07-16 01:00 110592 c:\windows\assembly\GAC_MSIL\SMDiagnostics\3.0.0.0__b77a5c561934e089\SMdiagnostics.dll + 2010-06-10 07:04 . 2010-06-10 07:04 110592 c:\windows\assembly\GAC_MSIL\SMDiagnostics\3.0.0.0__b77a5c561934e089\SMdiagnostics.dll + 2010-10-06 07:02 . 2010-10-06 07:02 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll - 2009-10-15 07:05 . 2009-10-15 07:05 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll + 2010-10-06 07:02 . 2010-10-06 07:02 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll - 2009-10-15 07:05 . 2009-10-15 07:05 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll - 2009-10-15 07:05 . 2009-10-15 07:05 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll + 2010-10-06 07:02 . 2010-10-06 07:02 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll + 2010-10-06 07:02 . 2010-10-06 07:02 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll - 2009-10-15 07:05 . 2009-10-15 07:05 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll + 2010-10-06 07:02 . 2010-10-06 07:02 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll - 2009-10-15 07:05 . 2009-10-15 07:05 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll - 2009-10-15 07:05 . 2009-10-15 07:05 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll + 2010-10-06 07:02 . 2010-10-06 07:02 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll + 2010-10-06 07:02 . 2010-10-06 07:02 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll - 2009-10-15 07:05 . 2009-10-15 07:05 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll + 2010-11-10 18:46 . 2010-11-10 18:46 430080 c:\windows\assembly\GAC_32\WicFileFormat-PlatOpt\1.0.5227.4054__b0cfd8589c27b05f\WicFileFormat-PlatOpt.dll + 2010-10-06 07:02 . 2010-10-06 07:02 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll - 2009-10-15 07:05 . 2009-10-15 07:05 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll - 2009-10-15 07:05 . 2009-10-15 07:05 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll + 2010-10-06 07:02 . 2010-10-06 07:02 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll - 2009-10-15 07:05 . 2009-10-15 07:05 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll + 2010-10-06 07:02 . 2010-10-06 07:02 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll + 2010-10-06 07:02 . 2010-10-06 07:02 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll - 2009-10-15 07:06 . 2009-10-15 07:06 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll + 2010-11-10 18:47 . 2010-11-10 18:47 262144 c:\windows\assembly\GAC_32\EastmanKodakCompany.EasyShare\2.0.6005.7527__e736f44e197b3380\EastmanKodakCompany.EasyShare.dll + 2010-11-10 18:47 . 2010-11-10 18:47 282624 c:\windows\assembly\GAC_32\EastmanKodakCompany.EasyShare\1.0.2698.25402__e736f44e197b3380\EastmanKodakCompany.EasyShare.dll + 2010-08-17 23:54 . 2010-08-17 23:54 223232 c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll - 2009-12-09 03:23 . 2009-12-09 03:23 223232 c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll - 2009-12-09 03:23 . 2009-12-09 03:23 178176 c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll + 2010-08-17 23:54 . 2010-08-17 23:54 178176 c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll - 2009-12-09 03:23 . 2009-12-09 03:23 364544 c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll + 2010-08-17 23:54 . 2010-08-17 23:54 364544 c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll + 2010-08-17 23:54 . 2010-08-17 23:54 159232 c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll - 2009-12-09 03:23 . 2009-12-09 03:23 159232 c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll + 2010-08-17 23:54 . 2010-08-17 23:54 145920 c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll - 2009-12-09 03:23 . 2009-12-09 03:23 145920 c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll - 2009-12-09 03:23 . 2009-12-09 03:23 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2010-08-17 23:54 . 2010-08-17 23:54 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2009-12-09 03:23 . 2009-12-09 03:23 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2010-08-17 23:54 . 2010-08-17 23:54 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2010-08-17 23:54 . 2010-08-17 23:54 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2009-12-09 03:23 . 2009-12-09 03:23 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2009-12-09 03:23 . 2009-12-09 03:23 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2010-08-17 23:54 . 2010-08-17 23:54 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2009-12-09 03:23 . 2009-12-09 03:23 577024 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2010-08-17 23:54 . 2010-08-17 23:54 577024 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2009-12-09 03:23 . 2009-12-09 03:23 576000 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2010-08-17 23:54 . 2010-08-17 23:54 576000 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2010-08-17 23:54 . 2010-08-17 23:54 567296 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2009-12-09 03:23 . 2009-12-09 03:23 567296 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2010-08-17 23:54 . 2010-08-17 23:54 563712 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2009-12-09 03:23 . 2009-12-09 03:23 563712 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2009-12-09 03:23 . 2009-12-09 03:23 473600 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll + 2010-08-17 23:54 . 2010-08-17 23:54 473600 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll + 2010-09-15 07:03 . 2010-02-22 14:25 406392 c:\windows\$hf_mig$\KB982802\update\updspapi.dll + 2010-09-15 07:03 . 2010-02-22 14:25 767352 c:\windows\$hf_mig$\KB982802\update\update.exe + 2010-09-15 07:03 . 2010-02-22 14:25 234872 c:\windows\$hf_mig$\KB982802\spuninst.exe + 2010-07-23 06:13 . 2010-07-23 06:13 590848 c:\windows\$hf_mig$\KB982802\SP3QFE\rpcrt4.dll + 2010-08-12 07:01 . 2010-02-22 14:25 406392 c:\windows\$hf_mig$\KB982665\update\updspapi.dll + 2010-08-12 07:01 . 2010-02-22 14:25 767352 c:\windows\$hf_mig$\KB982665\update\update.exe + 2010-08-12 07:01 . 2010-02-22 14:25 234872 c:\windows\$hf_mig$\KB982665\spuninst.exe + 2010-06-10 07:08 . 2010-02-22 14:25 406392 c:\windows\$hf_mig$\KB982381-IE8\update\updspapi.dll + 2010-06-10 07:08 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB982381-IE8\update\update.exe + 2010-06-10 07:08 . 2008-07-08 13:03 234872 c:\windows\$hf_mig$\KB982381-IE8\spuninst.exe + 2010-06-09 07:59 . 2010-05-06 10:27 919040 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\wininet.dll + 2010-06-09 07:59 . 2010-05-06 10:27 206848 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\occache.dll + 2010-06-09 07:59 . 2010-05-06 10:27 611840 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\mstime.dll + 2010-06-09 07:59 . 2010-05-06 10:27 599040 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\msfeeds.dll + 2010-06-09 07:59 . 2010-05-06 10:27 247808 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\ieproxy.dll + 2010-06-09 07:59 . 2010-05-06 10:27 184320 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\iepeers.dll + 2010-06-09 07:59 . 2010-05-06 10:27 743424 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\iedvtool.dll + 2010-06-09 07:59 . 2010-05-06 10:27 387584 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\iedkcs32.dll + 2010-06-09 07:59 . 2010-05-05 13:55 173056 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\ie4uinit.exe + 2010-08-12 07:06 . 2010-02-22 14:25 406392 c:\windows\$hf_mig$\KB982214\update\updspapi.dll + 2010-08-12 07:06 . 2010-02-22 14:25 767352 c:\windows\$hf_mig$\KB982214\update\update.exe + 2010-08-12 07:06 . 2010-02-22 14:25 234872 c:\windows\$hf_mig$\KB982214\spuninst.exe + 2010-08-12 03:01 . 2010-06-21 14:18 354304 c:\windows\$hf_mig$\KB982214\SP3QFE\srv.sys + 2010-10-14 07:05 . 2009-05-26 11:40 406392 c:\windows\$hf_mig$\KB982132\update\updspapi.dll + 2010-10-14 07:05 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB982132\update\update.exe + 2010-10-14 07:05 . 2009-05-26 11:40 234872 c:\windows\$hf_mig$\KB982132\spuninst.exe + 2010-08-27 08:01 . 2010-08-27 08:01 119808 c:\windows\$hf_mig$\KB982132\SP3QFE\t2embed.dll + 2010-08-12 07:01 . 2009-05-26 11:40 406392 c:\windows\$hf_mig$\KB981997\update\updspapi.dll + 2010-08-12 07:01 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB981997\update\update.exe + 2010-08-12 07:01 . 2009-05-26 11:40 234872 c:\windows\$hf_mig$\KB981997\spuninst.exe + 2010-10-14 07:01 . 2010-02-22 14:25 406392 c:\windows\$hf_mig$\KB981957\update\updspapi.dll + 2010-10-14 07:01 . 2010-02-22 14:25 767352 c:\windows\$hf_mig$\KB981957\update\update.exe + 2010-10-14 07:01 . 2010-02-22 14:25 234872 c:\windows\$hf_mig$\KB981957\spuninst.exe + 2010-08-12 07:06 . 2010-02-22 14:25 406392 c:\windows\$hf_mig$\KB981852\update\updspapi.dll + 2010-08-12 07:06 . 2010-02-22 14:25 767352 c:\windows\$hf_mig$\KB981852\update\update.exe + 2010-08-12 07:06 . 2010-02-22 14:25 234872 c:\windows\$hf_mig$\KB981852\spuninst.exe + 2010-09-15 07:02 . 2009-05-26 11:40 406392 c:\windows\$hf_mig$\KB981322\update\updspapi.dll + 2010-09-15 07:02 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB981322\update\update.exe + 2010-09-15 07:02 . 2009-05-26 11:40 234872 c:\windows\$hf_mig$\KB981322\spuninst.exe + 2010-04-16 15:30 . 2010-04-16 15:30 406016 c:\windows\$hf_mig$\KB981322\SP3QFE\usp10.dll + 2010-08-12 07:03 . 2009-05-26 11:40 406392 c:\windows\$hf_mig$\KB980436\update\updspapi.dll + 2010-08-12 07:03 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB980436\update\update.exe + 2010-08-12 07:03 . 2009-05-26 11:40 234872 c:\windows\$hf_mig$\KB980436\spuninst.exe + 2010-06-30 12:24 . 2010-06-30 12:24 149504 c:\windows\$hf_mig$\KB980436\SP3QFE\schannel.dll + 2010-06-10 07:11 . 2009-05-26 11:40 406392 c:\windows\$hf_mig$\KB980218\update\updspapi.dll + 2010-06-10 07:11 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB980218\update\update.exe + 2010-06-10 07:11 . 2009-05-26 11:40 234872 c:\windows\$hf_mig$\KB980218\spuninst.exe + 2010-04-20 05:38 . 2010-04-20 05:38 285824 c:\windows\$hf_mig$\KB980218\SP3QFE\atmfd.dll + 2010-06-10 07:11 . 2008-07-08 13:04 406392 c:\windows\$hf_mig$\KB980195\update\updspapi.dll + 2010-06-10 07:11 . 2008-07-08 13:03 767352 c:\windows\$hf_mig$\KB980195\update\update.exe + 2010-06-10 07:11 . 2008-07-08 13:03 234872 c:\windows\$hf_mig$\KB980195\spuninst.exe + 2010-10-14 07:04 . 2009-05-26 11:40 406392 c:\windows\$hf_mig$\KB979687\update\updspapi.dll + 2010-10-14 07:04 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB979687\update\update.exe + 2010-10-14 07:04 . 2009-05-26 09:01 234872 c:\windows\$hf_mig$\KB979687\spuninst.exe + 2010-07-16 12:01 . 2010-07-16 12:01 221696 c:\windows\$hf_mig$\KB979687\SP3QFE\wordpad.exe + 2010-06-10 07:08 . 2009-05-26 11:40 406392 c:\windows\$hf_mig$\KB979559\update\updspapi.dll + 2010-06-10 07:08 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB979559\update\update.exe + 2010-06-10 07:08 . 2009-05-26 09:01 234872 c:\windows\$hf_mig$\KB979559\spuninst.exe + 2010-06-10 07:05 . 2009-05-26 11:40 406392 c:\windows\$hf_mig$\KB979482\update\updspapi.dll + 2010-06-10 07:05 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB979482\update\update.exe + 2010-06-10 07:05 . 2009-05-26 11:40 234872 c:\windows\$hf_mig$\KB979482\spuninst.exe + 2010-05-13 07:01 . 2009-05-26 11:40 406392 c:\windows\$hf_mig$\KB978542\update\updspapi.dll + 2010-05-13 07:01 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB978542\update\update.exe + 2010-05-13 07:01 . 2009-05-26 11:40 234872 c:\windows\$hf_mig$\KB978542\spuninst.exe + 2010-01-29 14:54 . 2010-01-29 14:54 691712 c:\windows\$hf_mig$\KB978542\SP3QFE\inetcomm.dll + 2010-06-10 07:05 . 2009-05-26 11:40 406392 c:\windows\$hf_mig$\KB975562\update\updspapi.dll + 2010-06-10 07:05 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB975562\update\update.exe + 2010-06-10 07:05 . 2008-07-08 13:03 234872 c:\windows\$hf_mig$\KB975562\spuninst.exe + 2010-10-14 07:06 . 2010-02-22 14:25 406392 c:\windows\$hf_mig$\KB2387149\update\updspapi.dll + 2010-10-14 07:06 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2387149\update\update.exe + 2010-10-14 07:06 . 2010-02-22 14:25 234872 c:\windows\$hf_mig$\KB2387149\spuninst.exe + 2010-10-14 04:18 . 2010-09-18 07:18 974848 c:\windows\$hf_mig$\KB2387149\SP3QFE\mfc42u.dll + 2010-10-14 04:18 . 2010-09-18 07:18 974848 c:\windows\$hf_mig$\KB2387149\SP3QFE\mfc42.dll + 2010-10-14 04:18 . 2010-09-18 07:18 953856 c:\windows\$hf_mig$\KB2387149\SP3QFE\mfc40u.dll + 2010-10-14 04:18 . 2010-09-18 07:18 954368 c:\windows\$hf_mig$\KB2387149\SP3QFE\mfc40.dll + 2010-10-14 07:00 . 2010-02-22 14:25 406392 c:\windows\$hf_mig$\KB2360937\update\updspapi.dll + 2010-10-14 07:00 . 2010-02-22 14:25 767352 c:\windows\$hf_mig$\KB2360937\update\update.exe + 2010-10-14 07:00 . 2010-02-22 14:25 234872 c:\windows\$hf_mig$\KB2360937\spuninst.exe + 2010-10-14 04:16 . 2010-08-16 08:43 590848 c:\windows\$hf_mig$\KB2360937\SP3QFE\rpcrt4.dll + 2010-10-14 07:04 . 2010-07-05 13:17 406392 c:\windows\$hf_mig$\KB2360131-IE8\update\updspapi.dll + 2010-10-14 07:04 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB2360131-IE8\update\update.exe + 2010-10-14 07:04 . 2009-05-26 09:01 234872 c:\windows\$hf_mig$\KB2360131-IE8\spuninst.exe + 2010-10-14 04:16 . 2010-09-10 05:47 919552 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\wininet.dll + 2010-10-14 04:16 . 2010-09-10 05:47 206848 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\occache.dll + 2010-10-14 04:16 . 2010-09-10 05:47 611840 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\mstime.dll + 2010-10-14 04:16 . 2010-09-10 05:47 602112 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\msfeeds.dll + 2010-10-14 04:16 . 2010-09-10 05:47 247808 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\ieproxy.dll + 2010-10-14 04:16 . 2010-09-10 05:47 184320 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\iepeers.dll + 2010-10-14 04:16 . 2010-09-10 05:47 743424 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\iedvtool.dll + 2010-10-14 04:16 . 2010-09-10 05:47 387584 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\iedkcs32.dll + 2010-10-14 04:16 . 2010-09-08 15:48 173056 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\ie4uinit.exe + 2010-09-15 07:03 . 2009-05-26 11:40 406392 c:\windows\$hf_mig$\KB2347290\update\updspapi.dll + 2010-09-15 07:03 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB2347290\update\update.exe + 2010-09-15 07:03 . 2009-05-26 11:40 234872 c:\windows\$hf_mig$\KB2347290\spuninst.exe + 2010-10-14 07:05 . 2010-02-22 14:25 406392 c:\windows\$hf_mig$\KB2345886\update\updspapi.dll + 2010-10-14 07:05 . 2010-02-22 14:25 767352 c:\windows\$hf_mig$\KB2345886\update\update.exe + 2010-10-14 07:05 . 2010-02-22 14:25 234872 c:\windows\$hf_mig$\KB2345886\spuninst.exe + 2010-08-26 13:37 . 2010-08-26 13:37 357248 c:\windows\$hf_mig$\KB2345886\SP3QFE\srv.sys + 2010-08-03 07:00 . 2010-02-22 14:25 406392 c:\windows\$hf_mig$\KB2286198\update\updspapi.dll + 2010-08-03 07:00 . 2010-02-22 14:25 767352 c:\windows\$hf_mig$\KB2286198\update\update.exe + 2010-08-03 07:00 . 2010-02-22 14:25 234872 c:\windows\$hf_mig$\KB2286198\spuninst.exe + 2010-10-14 07:05 . 2010-07-05 13:17 406392 c:\windows\$hf_mig$\KB2279986\update\updspapi.dll + 2010-10-14 07:05 . 2010-07-05 13:17 767352 c:\windows\$hf_mig$\KB2279986\update\update.exe + 2010-10-14 07:05 . 2010-02-22 14:25 234872 c:\windows\$hf_mig$\KB2279986\spuninst.exe + 2010-09-01 11:49 . 2010-09-01 11:49 285824 c:\windows\$hf_mig$\KB2279986\SP3QFE\atmfd.dll + 2010-09-15 07:04 . 2009-05-26 09:01 406392 c:\windows\$hf_mig$\KB2259922\update\updspapi.dll + 2010-09-15 07:04 . 2009-05-26 09:01 767352 c:\windows\$hf_mig$\KB2259922\update\update.exe + 2010-09-15 07:04 . 2009-05-26 09:01 234872 c:\windows\$hf_mig$\KB2259922\spuninst.exe + 2010-07-15 07:04 . 2010-02-22 23:55 406392 c:\windows\$hf_mig$\KB2229593\update\updspapi.dll + 2010-07-15 07:04 . 2010-02-22 14:25 767352 c:\windows\$hf_mig$\KB2229593\update\update.exe + 2010-07-15 07:04 . 2009-05-26 11:40 234872 c:\windows\$hf_mig$\KB2229593\spuninst.exe + 2010-07-14 20:28 . 2010-06-14 14:38 744448 c:\windows\$hf_mig$\KB2229593\SP3QFE\helpsvc.exe + 2010-08-12 07:03 . 2010-02-22 14:25 406392 c:\windows\$hf_mig$\KB2183461-IE8\update\updspapi.dll + 2010-08-12 07:03 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB2183461-IE8\update\update.exe + 2010-08-12 07:03 . 2009-05-26 09:01 234872 c:\windows\$hf_mig$\KB2183461-IE8\spuninst.exe + 2010-08-12 03:01 . 2010-06-24 12:28 919040 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\wininet.dll + 2010-08-12 03:01 . 2010-06-24 12:28 206848 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\occache.dll + 2010-08-12 03:01 . 2010-06-24 12:28 611840 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\mstime.dll + 2010-08-12 03:01 . 2010-06-24 12:28 599040 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\msfeeds.dll + 2010-08-12 03:01 . 2010-06-24 12:28 247808 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\ieproxy.dll + 2010-08-12 03:01 . 2010-06-24 12:28 184320 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\iepeers.dll + 2010-08-12 03:01 . 2010-06-24 12:28 743424 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\iedvtool.dll + 2010-08-12 03:01 . 2010-06-24 12:28 387584 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\iedkcs32.dll + 2010-08-12 03:01 . 2010-06-23 11:30 173056 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\ie4uinit.exe + 2010-08-12 07:03 . 2010-02-22 14:25 406392 c:\windows\$hf_mig$\KB2160329\update\updspapi.dll + 2010-08-12 07:03 . 2010-02-22 14:25 767352 c:\windows\$hf_mig$\KB2160329\update\update.exe + 2010-08-12 07:03 . 2010-02-22 14:25 234872 c:\windows\$hf_mig$\KB2160329\spuninst.exe + 2010-09-15 07:01 . 2010-02-22 14:25 406392 c:\windows\$hf_mig$\KB2141007\update\updspapi.dll + 2010-09-15 07:01 . 2010-02-22 14:25 767352 c:\windows\$hf_mig$\KB2141007\update\update.exe + 2010-09-15 07:01 . 2010-02-22 14:25 234872 c:\windows\$hf_mig$\KB2141007\spuninst.exe + 2010-06-09 07:42 . 2010-06-09 07:42 692736 c:\windows\$hf_mig$\KB2141007\SP3QFE\inetcomm.dll + 2010-09-15 07:03 . 2010-02-22 14:25 406392 c:\windows\$hf_mig$\KB2121546\update\updspapi.dll + 2010-09-15 07:03 . 2010-02-22 14:25 767352 c:\windows\$hf_mig$\KB2121546\update\update.exe + 2010-09-15 07:03 . 2010-02-22 14:25 234872 c:\windows\$hf_mig$\KB2121546\spuninst.exe + 2010-06-18 17:43 . 2010-06-18 17:43 293888 c:\windows\$hf_mig$\KB2121546\SP3QFE\winsrv.dll + 2010-08-12 07:06 . 2009-05-26 11:40 406392 c:\windows\$hf_mig$\KB2115168\update\updspapi.dll + 2010-08-12 07:06 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB2115168\update\update.exe + 2010-08-12 07:06 . 2009-05-26 11:40 234872 c:\windows\$hf_mig$\KB2115168\spuninst.exe + 2010-08-12 07:06 . 2009-05-26 11:40 406392 c:\windows\$hf_mig$\KB2079403\update\updspapi.dll + 2010-08-12 07:06 . 2009-05-26 11:40 767352 c:\windows\$hf_mig$\KB2079403\update\update.exe + 2010-08-12 07:06 . 2009-05-26 11:40 234872 c:\windows\$hf_mig$\KB2079403\spuninst.exe + 2010-10-14 04:17 . 2010-08-23 16:12 1054208 c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll + 2006-12-02 04:25 . 2006-12-02 03:25 1101824 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll - 2006-12-02 04:25 . 2006-12-02 04:25 1101824 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll + 2009-07-12 01:46 . 2009-07-12 01:46 1093120 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_b77cec8e\mfc80u.dll + 2009-07-12 01:46 . 2009-07-12 01:46 1105920 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_b77cec8e\mfc80.dll + 2008-04-14 12:00 . 2010-04-06 08:52 2462720 c:\windows\system32\WMVCore.dll + 2008-04-14 12:00 . 2010-09-10 05:50 1210880 c:\windows\system32\urlmon.dll + 2008-04-14 12:00 . 2010-07-27 06:30 8518656 c:\windows\system32\shell32.dll + 2010-10-18 22:25 . 2010-07-09 22:38 2195030 c:\windows\system32\ReinstallBackups\0027\DriverFiles\nvdata.bin + 2010-10-18 22:25 . 2010-07-09 22:38 2914408 c:\windows\system32\ReinstallBackups\0027\DriverFiles\nvcuvid.dll + 2010-10-18 22:25 . 2010-07-09 22:38 2506344 c:\windows\system32\ReinstallBackups\0027\DriverFiles\nvcuvenc.dll + 2010-10-18 22:25 . 2010-07-09 22:38 4595712 c:\windows\system32\ReinstallBackups\0027\DriverFiles\nvcuda.dll + 2010-10-18 22:25 . 2010-07-09 22:38 1388544 c:\windows\system32\ReinstallBackups\0027\DriverFiles\nvapi.dll + 2010-10-18 22:25 . 2010-07-09 22:38 6343040 c:\windows\system32\ReinstallBackups\0027\DriverFiles\nv4_disp.dll - 2008-04-14 12:00 . 2009-11-27 17:13 1297920 c:\windows\system32\quartz.dll + 2008-04-14 12:00 . 2010-02-05 18:26 1297920 c:\windows\system32\quartz.dll + 2008-04-14 12:00 . 2010-07-16 12:06 1287680 c:\windows\system32\ole32.dll + 2009-09-27 21:12 . 2010-10-08 08:30 2293194 c:\windows\system32\nvdata.bin - 2008-04-14 12:00 . 2010-02-16 19:06 2148352 c:\windows\system32\ntoskrnl.exe + 2008-04-14 12:00 . 2010-04-28 05:43 2148352 c:\windows\system32\ntoskrnl.exe - 2008-04-13 19:07 . 2010-02-16 19:06 2026496 c:\windows\system32\ntkrnlpa.exe + 2008-04-13 19:07 . 2010-04-28 05:43 2026496 c:\windows\system32\ntkrnlpa.exe - 2008-04-14 12:00 . 2009-07-31 04:33 1172480 c:\windows\system32\msxml3.dll + 2008-04-14 12:00 . 2010-06-14 07:42 1172480 c:\windows\system32\msxml3.dll + 2008-04-14 12:00 . 2010-09-10 05:50 5957120 c:\windows\system32\mshtml.dll + 2007-08-13 22:34 . 2010-09-10 05:50 1986560 c:\windows\system32\iertutil.dll + 2008-09-30 21:54 . 2010-11-09 21:26 2184024 c:\windows\system32\FNTCACHE.DAT + 2010-11-10 18:48 . 2007-06-06 14:57 2363392 c:\windows\system32\DRVSTORE\kpd_E87DACE52C9F2DBB0F3672314807213D8FCC0029\xerces-c_2_7.dll + 2008-04-14 12:00 . 2010-04-06 08:52 2462720 c:\windows\system32\dllcache\WMVCore.dll + 2008-04-14 12:00 . 2010-09-01 07:55 1852928 c:\windows\system32\dllcache\win32k.sys + 2008-04-14 12:00 . 2010-09-10 05:50 1210880 c:\windows\system32\dllcache\urlmon.dll + 2008-04-14 12:00 . 2010-07-27 06:30 8518656 c:\windows\system32\dllcache\shell32.dll - 2008-04-14 12:00 . 2009-11-27 17:13 1297920 c:\windows\system32\dllcache\quartz.dll + 2008-04-14 12:00 . 2010-02-05 18:26 1297920 c:\windows\system32\dllcache\quartz.dll + 2008-04-14 12:00 . 2010-07-16 12:06 1287680 c:\windows\system32\dllcache\ole32.dll + 2008-01-03 14:26 . 2010-10-08 08:30 9587776 c:\windows\system32\dllcache\nv4_mini.sys + 2009-08-05 03:58 . 2010-04-28 18:13 2192000 c:\windows\system32\dllcache\ntoskrnl.exe - 2009-08-05 03:58 . 2010-02-17 18:07 2192000 c:\windows\system32\dllcache\ntoskrnl.exe - 2010-03-05 18:30 . 2010-02-16 19:06 2026496 c:\windows\system32\dllcache\ntkrpamp.exe + 2010-03-05 18:30 . 2010-04-28 05:43 2026496 c:\windows\system32\dllcache\ntkrpamp.exe - 2010-03-05 18:30 . 2010-02-16 19:07 2068864 c:\windows\system32\dllcache\ntkrnlpa.exe + 2010-03-05 18:30 . 2010-04-28 05:43 2068864 c:\windows\system32\dllcache\ntkrnlpa.exe - 2010-03-05 18:30 . 2010-02-16 19:06 2148352 c:\windows\system32\dllcache\ntkrnlmp.exe + 2010-03-05 18:30 . 2010-04-28 05:43 2148352 c:\windows\system32\dllcache\ntkrnlmp.exe - 2008-04-14 12:00 . 2009-07-31 04:33 1172480 c:\windows\system32\dllcache\msxml3.dll + 2008-04-14 12:00 . 2010-06-14 07:42 1172480 c:\windows\system32\dllcache\msxml3.dll + 2008-10-01 03:03 . 2010-01-29 15:00 1315328 c:\windows\system32\dllcache\msoe.dll - 2008-10-01 03:03 . 2009-07-10 13:27 1315328 c:\windows\system32\dllcache\msoe.dll + 2008-04-14 12:00 . 2010-09-10 05:50 5957120 c:\windows\system32\dllcache\mshtml.dll + 2008-10-01 03:03 . 2010-06-18 13:36 3558912 c:\windows\system32\dllcache\moviemk.exe - 2008-10-01 03:03 . 2009-10-23 15:28 3558912 c:\windows\system32\dllcache\moviemk.exe + 2010-03-05 22:57 . 2010-09-10 05:50 1986560 c:\windows\system32\dllcache\iertutil.dll + 2009-11-07 05:06 . 2009-11-07 05:06 1130824 c:\windows\system32\dfshim.dll + 2010-04-08 03:48 . 2010-04-08 03:48 5967872 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.dll - 2008-11-25 08:59 . 2008-11-25 08:59 5242880 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll + 2010-09-22 13:44 . 2010-09-22 13:44 5242880 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll + 2010-03-23 09:32 . 2010-03-23 09:32 3182592 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll - 2009-08-08 03:51 . 2009-08-08 03:51 5812560 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll + 2010-05-11 10:40 . 2010-05-11 10:40 5812560 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll + 2010-05-11 10:40 . 2010-05-11 10:40 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll - 2008-05-28 05:35 . 2008-05-28 05:35 1265664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.dll + 2010-09-23 19:55 . 2010-09-23 19:55 1265664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.dll - 2008-05-28 05:35 . 2008-05-28 05:35 1232896 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.dll + 2010-09-23 19:55 . 2010-09-23 19:55 1232896 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.dll + 2010-09-23 06:26 . 2010-09-23 06:26 2514944 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll - 2008-05-28 04:48 . 2008-05-28 04:48 2514944 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll + 2010-09-23 06:25 . 2010-09-23 06:25 2523136 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll - 2008-05-28 04:48 . 2008-05-28 04:48 2523136 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll + 2010-09-23 19:55 . 2010-09-23 19:55 2142208 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll - 2008-05-28 04:43 . 2008-05-28 04:43 2142208 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll + 2010-05-25 13:16 . 2010-05-25 13:16 6013952 c:\windows\Installer\f16fa31.msi + 2010-07-13 20:22 . 2010-07-13 20:22 1358848 c:\windows\Installer\e4a2d0d.msi + 2009-10-16 11:08 . 2009-10-16 11:08 2237952 c:\windows\Installer\e2af3db.msp + 2010-04-09 19:21 . 2010-04-09 19:21 5025792 c:\windows\Installer\e2af3c5.msp + 2010-08-05 19:14 . 2010-08-05 19:14 1575936 c:\windows\Installer\cdc73a4.msi + 2010-08-19 21:57 . 2010-08-19 21:57 3395584 c:\windows\Installer\b043f6.msp + 2010-05-20 23:57 . 2010-05-20 23:57 4989952 c:\windows\Installer\6d4321c.msp + 2010-05-20 23:57 . 2010-05-20 23:57 5907456 c:\windows\Installer\6d4321b.msp + 2010-06-11 15:03 . 2010-06-11 15:03 5021184 c:\windows\Installer\6d431fb.msp + 2010-05-27 01:23 . 2010-05-27 01:23 9472000 c:\windows\Installer\5c1091.msi + 2010-11-10 18:48 . 2010-11-10 18:48 1515008 c:\windows\Installer\48fdfe4.msi + 2010-11-10 18:47 . 2010-11-10 18:47 2035200 c:\windows\Installer\48fdfdb.msi + 2010-11-10 18:46 . 2010-11-10 18:46 1055232 c:\windows\Installer\48fdf58.msi + 2010-04-24 21:08 . 2010-04-24 21:08 9129984 c:\windows\Installer\44845812.msp + 2010-03-24 22:54 . 2010-03-24 22:54 3126272 c:\windows\Installer\448457fb.msp + 2010-03-24 22:54 . 2010-03-24 22:54 2516992 c:\windows\Installer\448457fa.msp + 2010-04-24 21:07 . 2010-04-24 21:07 4667392 c:\windows\Installer\448457df.msp + 2010-04-24 21:05 . 2010-04-24 21:05 4199424 c:\windows\Installer\448457c9.msp + 2010-05-19 03:35 . 2010-05-19 03:35 5023744 c:\windows\Installer\448457b3.msp + 2010-04-12 02:17 . 2010-04-12 02:17 2607104 c:\windows\Installer\4484578d.msp + 2010-04-12 02:17 . 2010-04-12 02:17 4210688 c:\windows\Installer\4484578c.msp + 2010-04-24 21:10 . 2010-04-24 21:10 8486400 c:\windows\Installer\44845759.msp + 2010-08-13 22:01 . 2010-08-13 22:01 8993280 c:\windows\Installer\39e04ca.msp + 2010-08-13 21:59 . 2010-08-13 21:59 8182272 c:\windows\Installer\39e04b4.msp + 2010-08-13 22:02 . 2010-08-13 22:02 2545664 c:\windows\Installer\39e049e.msp + 2010-08-13 22:00 . 2010-08-13 22:00 9404928 c:\windows\Installer\39e0488.msp + 2010-09-17 10:06 . 2010-09-17 10:06 3355648 c:\windows\Installer\39e0471.msp + 2010-09-23 11:39 . 2010-09-23 11:39 4265472 c:\windows\Installer\30696646.msp + 2010-07-26 20:00 . 2010-07-26 20:00 5010944 c:\windows\Installer\2e48fa92.msp + 2010-07-11 00:14 . 2010-07-11 00:14 2850816 c:\windows\Installer\2e48fa6e.msp + 2010-09-17 11:04 . 2010-09-17 11:04 9401856 c:\windows\Installer\2c33b65.msp + 2010-10-21 23:12 . 2010-10-21 23:12 3359744 c:\windows\Installer\2c33b4f.msp + 2010-10-07 23:43 . 2010-10-07 23:43 1980416 c:\windows\Installer\2c33b39.msp + 2009-11-09 04:25 . 2009-11-09 04:25 1935360 c:\windows\Installer\1beb0aad.msp + 2010-10-18 22:28 . 2010-10-18 22:28 1598464 c:\windows\Installer\17d4872b.msi + 2008-10-06 12:37 . 2010-11-11 08:03 1172240 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\xlicons.exe - 2008-10-06 12:37 . 2010-06-15 10:29 1172240 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\xlicons.exe + 2008-10-06 12:37 . 2010-11-11 08:03 1165584 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\accicons.exe - 2008-10-06 12:37 . 2010-06-15 10:29 1165584 c:\windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\accicons.exe + 2010-01-28 01:57 . 2010-01-28 01:57 4481536 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\libAntidote32_7.dll + 2010-01-28 02:16 . 2010-01-28 02:16 1337560 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\AssistantDeTelechargement.exe + 2010-01-28 14:40 . 2010-01-28 14:40 8914608 c:\windows\Installer\$PatchCache$\Managed\EF4BDC65F598D0E4B84BA9D8340198D8\7.3.7000\antido32.exe + 2008-08-26 02:50 . 2008-08-26 02:50 2585592 c:\windows\Installer\$PatchCache$\Managed\00002109110000000000000000F01FEC\12.0.6425\VBE6.DLL + 2008-11-10 06:41 . 2008-11-10 06:41 2014584 c:\windows\Installer\$PatchCache$\Managed\00002109110000000000000000F01FEC\12.0.6425\PPTVIEW.EXE + 2009-03-06 08:26 . 2009-03-06 08:26 5466488 c:\windows\Installer\$PatchCache$\Managed\00002109110000000000000000F01FEC\12.0.6425\IPDESIGN.DLL + 2008-11-04 04:40 . 2008-11-04 04:40 1442160 c:\windows\Installer\$PatchCache$\Managed\00002109110000000000000000F01FEC\12.0.6425\INFOPATH.EXE + 2010-06-10 07:08 . 2010-02-25 06:17 1209344 c:\windows\ie8updates\KB982381-IE8\urlmon.dll + 2010-06-10 07:08 . 2010-02-25 06:17 5944832 c:\windows\ie8updates\KB982381-IE8\mshtml.dll + 2010-06-10 07:08 . 2010-02-25 06:17 1985536 c:\windows\ie8updates\KB982381-IE8\iertutil.dll + 2010-10-14 07:03 . 2010-06-24 12:25 1210368 c:\windows\ie8updates\KB2360131-IE8\urlmon.dll + 2010-10-14 07:03 . 2010-06-24 12:25 5951488 c:\windows\ie8updates\KB2360131-IE8\mshtml.dll + 2010-10-14 07:03 . 2010-06-24 12:25 1986560 c:\windows\ie8updates\KB2360131-IE8\iertutil.dll + 2010-08-12 07:03 . 2010-05-06 10:33 1209344 c:\windows\ie8updates\KB2183461-IE8\urlmon.dll + 2010-08-12 07:03 . 2010-05-06 10:33 5950976 c:\windows\ie8updates\KB2183461-IE8\mshtml.dll + 2010-08-12 07:03 . 2010-05-06 10:33 1985536 c:\windows\ie8updates\KB2183461-IE8\iertutil.dll + 2009-08-05 03:58 . 2010-04-28 18:13 2192000 c:\windows\Driver Cache\i386\ntoskrnl.exe - 2009-08-05 03:58 . 2010-02-17 18:07 2192000 c:\windows\Driver Cache\i386\ntoskrnl.exe - 2010-03-05 18:30 . 2010-02-16 19:06 2026496 c:\windows\Driver Cache\i386\ntkrpamp.exe + 2010-03-05 18:30 . 2010-04-28 05:43 2026496 c:\windows\Driver Cache\i386\ntkrpamp.exe + 2010-03-05 18:30 . 2010-04-28 05:43 2068864 c:\windows\Driver Cache\i386\ntkrnlpa.exe - 2010-03-05 18:30 . 2010-02-16 19:07 2068864 c:\windows\Driver Cache\i386\ntkrnlpa.exe - 2010-03-05 18:30 . 2010-02-16 19:06 2148352 c:\windows\Driver Cache\i386\ntkrnlmp.exe + 2010-03-05 18:30 . 2010-04-28 05:43 2148352 c:\windows\Driver Cache\i386\ntkrnlmp.exe + 2010-10-06 07:01 . 2010-10-06 07:01 1966080 c:\windows\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_4fdb2a2f\System.dll + 2010-10-06 07:01 . 2010-10-06 07:01 4792320 c:\windows\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_1acab41e\System.dll + 2010-10-06 07:01 . 2010-10-06 07:01 5513216 c:\windows\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_f3d44c4a\System.Xml.dll + 2010-10-06 07:01 . 2010-10-06 07:01 2088960 c:\windows\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_33488fc4\System.Xml.dll + 2010-10-06 07:01 . 2010-10-06 07:01 3018752 c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_7276ec7e\System.Windows.Forms.dll + 2010-10-06 07:01 . 2010-10-06 07:01 7884800 c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_71cd17a2\System.Windows.Forms.dll + 2010-10-06 07:01 . 2010-10-06 07:01 2244608 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_f5816e12\System.Drawing.dll + 2010-10-06 07:01 . 2010-10-06 07:01 1466368 c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_c16e6b7b\System.Design.dll + 2010-10-06 07:01 . 2010-10-06 07:01 3395584 c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_1ca26b39\System.Design.dll + 2010-10-06 07:01 . 2010-10-06 07:01 8908800 c:\windows\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_e2fc0196\mscorlib.dll + 2010-10-06 07:01 . 2010-10-06 07:01 3391488 c:\windows\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_e1b3dc00\mscorlib.dll + 2010-10-06 07:05 . 2010-10-06 07:05 6392832 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\d13674449b3ae21327820bddbd7e445f\WindowsLive.Writer.PostEditor.ni.dll + 2010-10-06 07:05 . 2010-10-06 07:05 2002432 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\c266f56473a94ee07c092381c2ff9522\WindowsLive.Writer.CoreServices.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 1105920 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\ba732eb3a84c96e8bf60495395efbfac\WindowsLive.Writer.ApplicationFramework.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 2002432 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\aacec1e49b5cc0e8369ff555abd4b922\WindowsLive.Writer.CoreServices.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 6392832 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\87825e26c8a5fd4e559b5e8d58faec21\WindowsLive.Writer.PostEditor.ni.dll + 2010-08-12 07:06 . 2010-08-12 07:06 3325440 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cec7ecb8eac09dd630d180ce87d23b80\WindowsBase.ni.dll + 2010-08-12 07:07 . 2010-08-12 07:07 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\b7f6e7b265f9aae807ddc4284563e550\UIAutomationClientsideProviders.ni.dll + 2010-08-12 07:05 . 2010-08-12 07:05 7949824 c:\windows\assembly\NativeImages_v2.0.50727_32\System\08ffa4d388d5f007869aa7651c458e7c\System.ni.dll + 2010-08-12 07:07 . 2010-08-12 07:07 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\a6dbe24cbfe3ab6b318ed3095cc572d8\System.Xml.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\bec60fe2e934a6284224ab45b0e981e2\System.WorkflowServices.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\60b3c9a63b2065a6952d16256545c25d\System.WorkflowServices.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\5cc2a23ce8ac371c7a97b5e542ee27ed\System.Workflow.Runtime.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\09da139c48e2f5e76994a5c0f2e5b19e\System.Workflow.Runtime.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\c0aabf67e7ef98dc10c3e174c136731b\System.Workflow.ComponentModel.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\6809417da74ff937e18b3034f1eac2f2\System.Workflow.ComponentModel.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\6c91ee82035d30efa8893e7b0396bbb0\System.Workflow.Activities.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\66682c8a064608ba4ffd0463cf09aef9\System.Workflow.Activities.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\2d662564b8d9c57a34c588cc2970902b\System.Web.Services.ni.dll + 2010-10-06 07:05 . 2010-10-06 07:05 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\181254ba0cb690decedb950fd26d7bea\System.Web.Services.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\9b455702c9b7b02c5708406f87986751\System.Web.Mobile.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\4200f716e9a41cb91d17516ba864e586\System.Web.Mobile.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 2405376 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\da367bc2ecf2c9c5b4f858b6dba9e2ea\System.Web.Extensions.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 2403328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\49c7a1c78ed9502ba97c11e6bd993f63\System.Web.Extensions.ni.dll + 2010-08-12 07:07 . 2010-08-12 07:07 1917952 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\5eb08849d17b272ed2a393420cb0305b\System.Speech.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\f5790a1b7b41e7b8d05f01b549c80f39\System.ServiceModel.Web.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\8e34e273d036b7468fc4e951a1fde437\System.ServiceModel.Web.ni.dll + 2010-08-12 07:08 . 2010-08-12 07:08 2345472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\8061a0f5c1c2ee0549e19224352f67fa\System.Runtime.Serialization.ni.dll + 2010-08-12 07:07 . 2010-08-12 07:07 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\99767d4df92b83fdfb06012512722ec1\System.Printing.ni.dll + 2010-10-06 07:05 . 2010-10-06 07:05 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\095bb4f033374647b6d66c51f16bb886\System.IdentityModel.ni.dll + 2010-08-12 07:08 . 2010-08-12 07:08 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\0885f31c21b796465fde6297dba20981\System.IdentityModel.ni.dll + 2010-08-12 07:07 . 2010-08-12 07:07 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\dcc0244092fe52e6885b50be25ef3b31\System.Drawing.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\d20b7e58607ddb1ded9b687627ae8c21\System.DirectoryServices.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\daa33674d4250e38a24b70180d209ac8\System.Deployment.ni.dll + 2010-08-12 07:06 . 2010-08-12 07:06 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\f04ef00e652a8655a717639e8aeb7b63\System.Data.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\f0470c2be4e6bb1dadbeed43e4e8af5c\System.Data.SqlXml.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\b8c9267d87b7358e1a5f00bf1572c313\System.Data.Services.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\23cf0498f2ebe4c8ffa5cc79efca2dc5\System.Data.Services.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 1115136 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.OracleC#\58202ed61096113d08815c0a78313b66\System.Data.OracleClient.ni.dll + 2010-08-12 07:07 . 2010-08-12 07:07 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\c18c236a09e715138daec2e25be205bb\System.Data.Linq.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 9924096 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\6ce886492d9b6a34555be3f328682ec2\System.Data.Entity.ni.dll + 2010-08-12 07:06 . 2010-08-12 07:06 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\faeda674832135a080bc73eda51813ff\System.Core.ni.dll + 2010-08-12 07:06 . 2010-08-12 07:06 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\3e85c3d63ce3c3f37061aa626feb2a52\ReachFramework.ni.dll + 2010-08-12 07:06 . 2010-08-12 07:06 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\bf67db30179ff6e8cb1bdbaa290d122e\PresentationUI.ni.dll + 2010-08-12 07:06 . 2010-08-12 07:06 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\835786d8a0caabae09ad440f6e3abfc6\PresentationBuildTasks.ni.dll + 2010-10-06 07:06 . 2010-10-06 07:06 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\a27783547338dbebf84101a685ba641b\Microsoft.VisualBasic.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\9732a7c993055f82040642966db07ccf\Microsoft.VisualBasic.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\773d7bf69a9a0c0556aa41f53e75ab05\Microsoft.Transactions.Bridge.ni.dll + 2010-08-12 07:10 . 2010-08-12 07:10 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\16ff33f07efdb9da2a18e27585c604be\Microsoft.JScript.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\d0fb91b296616a1a844bf265947018ee\Microsoft.Build.Tasks.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\892e993c8df1c75081113131dc429c15\Microsoft.Build.Tasks.v3.5.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\d0beebd2c9045158cdcd4bd5987b717b\Microsoft.Build.Engine.ni.dll + 2010-06-23 07:02 . 2010-06-23 07:02 1249280 c:\windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll + 2010-10-06 07:03 . 2010-10-06 07:03 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll - 2009-10-15 07:06 . 2009-10-15 07:06 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll + 2010-10-06 07:03 . 2010-10-06 07:03 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll - 2009-10-15 07:05 . 2009-10-15 07:05 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll + 2010-10-06 07:02 . 2010-10-06 07:02 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - 2009-07-16 01:03 . 2009-07-16 01:03 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll + 2010-10-06 07:03 . 2010-10-06 07:03 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll + 2010-06-10 07:04 . 2010-06-10 07:04 5967872 c:\windows\assembly\GAC_MSIL\System.ServiceModel\3.0.0.0__b77a5c561934e089\System.ServiceModel.dll - 2009-10-15 07:05 . 2009-10-15 07:05 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll + 2010-10-06 07:02 . 2010-10-06 07:02 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll + 2010-06-23 07:02 . 2010-06-23 07:02 5279744 c:\windows\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll + 2010-10-06 07:02 . 2010-10-06 07:02 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll - 2009-10-15 07:05 . 2009-10-15 07:05 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll - 2009-10-15 07:06 . 2009-10-15 07:06 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll + 2010-10-06 07:03 . 2010-10-06 07:03 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll + 2010-06-23 07:02 . 2010-06-23 07:02 4210688 c:\windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - 2009-07-16 01:01 . 2009-07-16 01:01 4210688 c:\windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll + 2010-10-06 07:02 . 2010-10-06 07:02 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll + 2010-10-06 07:01 . 2010-10-06 07:01 1232896 c:\windows\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll - 2009-10-15 07:01 . 2009-10-15 07:01 1232896 c:\windows\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll + 2010-10-06 07:01 . 2010-10-06 07:01 1265664 c:\windows\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll - 2009-10-15 07:01 . 2009-10-15 07:01 1265664 c:\windows\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll - 2009-12-09 03:23 . 2009-12-09 03:23 2846720 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2010-08-17 23:54 . 2010-08-17 23:54 2846720 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2009-12-09 03:23 . 2009-12-09 03:23 2676224 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2010-08-17 23:54 . 2010-08-17 23:54 2676224 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2010-06-09 07:59 . 2010-05-06 10:27 1209856 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\urlmon.dll + 2010-06-09 07:59 . 2010-05-06 10:27 5953024 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\mshtml.dll + 2010-06-09 07:59 . 2010-05-06 10:27 1986048 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\iertutil.dll + 2010-08-12 03:00 . 2010-06-18 13:43 3558912 c:\windows\$hf_mig$\KB981997\SP3QFE\moviemk.exe + 2010-09-01 07:54 . 2010-09-01 07:54 1862016 c:\windows\$hf_mig$\KB981957\SP3QFE\win32k.sys + 2010-08-12 03:01 . 2010-04-28 05:17 2192128 c:\windows\$hf_mig$\KB981852\SP3QFE\ntoskrnl.exe + 2010-08-12 03:01 . 2010-04-28 05:17 2026496 c:\windows\$hf_mig$\KB981852\SP3QFE\ntkrpamp.exe + 2010-04-29 03:17 . 2010-04-29 03:17 2068992 c:\windows\$hf_mig$\KB981852\SP3QFE\ntkrnlpa.exe + 2010-08-12 03:01 . 2010-04-28 05:17 2148352 c:\windows\$hf_mig$\KB981852\SP3QFE\ntkrnlmp.exe + 2010-07-16 12:04 . 2010-07-16 12:04 1288704 c:\windows\$hf_mig$\KB979687\SP3QFE\ole32.dll + 2010-05-02 08:02 . 2010-05-02 08:02 1860480 c:\windows\$hf_mig$\KB979559\SP3QFE\win32k.sys + 2010-01-29 14:54 . 2010-01-29 14:54 1315328 c:\windows\$hf_mig$\KB978542\SP3QFE\msoe.dll + 2010-02-05 18:28 . 2010-02-05 18:28 1297920 c:\windows\$hf_mig$\KB975562\SP3QFE\quartz.dll + 2010-10-14 04:16 . 2010-09-10 05:47 1211904 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\urlmon.dll + 2010-10-14 04:16 . 2010-09-10 05:47 5958656 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\mshtml.dll + 2010-10-14 04:16 . 2010-09-10 05:47 1987072 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\iertutil.dll + 2010-07-27 06:28 . 2010-07-27 06:28 8519680 c:\windows\$hf_mig$\KB2286198\SP3QFE\shell32.dll + 2010-08-12 03:01 . 2010-06-24 12:28 1211904 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\urlmon.dll + 2010-08-12 03:01 . 2010-06-24 12:28 5954560 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\mshtml.dll + 2010-08-12 03:01 . 2010-06-24 12:28 1987072 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\iertutil.dll + 2010-06-24 21:29 . 2010-06-24 21:29 1861248 c:\windows\$hf_mig$\KB2160329\SP3QFE\win32k.sys + 2010-06-14 07:40 . 2010-06-14 07:40 1172480 c:\windows\$hf_mig$\KB2079403\SP3QFE\msxml3.dll - 2008-04-14 12:00 . 2009-07-14 03:43 10841088 c:\windows\system32\wmp.dll + 2008-04-14 12:00 . 2010-08-26 03:36 10841088 c:\windows\system32\wmp.dll + 2010-10-18 22:25 . 2010-07-09 22:38 13549568 c:\windows\system32\ReinstallBackups\0027\DriverFiles\nvoglnt.dll + 2010-10-18 22:25 . 2010-07-09 22:38 54951744 c:\windows\system32\ReinstallBackups\0027\DriverFiles\NvCplSetupInt.exe + 2010-10-18 22:25 . 2010-07-09 22:38 10260480 c:\windows\system32\ReinstallBackups\0027\DriverFiles\nvcompiler.dll + 2010-10-18 22:25 . 2010-07-09 22:38 10604128 c:\windows\system32\ReinstallBackups\0027\DriverFiles\nv4_mini.sys + 2008-09-30 17:13 . 2010-11-11 08:00 35758536 c:\windows\system32\MRT.exe + 2007-08-13 22:54 . 2010-09-10 05:50 11080192 c:\windows\system32\ieframe.dll - 2008-04-14 12:00 . 2009-07-14 03:43 10841088 c:\windows\system32\dllcache\wmp.dll + 2008-04-14 12:00 . 2010-08-26 03:36 10841088 c:\windows\system32\dllcache\wmp.dll + 2010-03-05 22:57 . 2010-09-10 05:50 11080192 c:\windows\system32\dllcache\ieframe.dll + 2010-04-02 23:29 . 2010-04-02 23:29 11413504 c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp + 2010-09-24 18:08 . 2010-09-24 18:08 11430400 c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\M2416447\M2416447Uninstall.msp + 2010-07-23 05:04 . 2010-07-23 05:04 11395072 c:\windows\Installer\b043e0.msp + 2010-05-20 23:58 . 2010-05-20 23:58 12114432 c:\windows\Installer\6d431e4.msp + 2010-11-10 18:46 . 2010-11-10 18:46 26428928 c:\windows\Installer\48fdf4f.msi + 2010-04-02 16:30 . 2010-04-02 16:30 17456640 c:\windows\Installer\4484585f.msp + 2010-04-24 21:09 . 2010-04-24 21:09 11750912 c:\windows\Installer\44845828.msp + 2010-04-12 02:17 . 2010-04-12 02:17 14599680 c:\windows\Installer\4484579d.msp + 2010-04-24 21:07 . 2010-04-24 21:07 10118144 c:\windows\Installer\4484577f.msp + 2010-09-24 11:08 . 2010-09-24 11:08 17518080 c:\windows\Installer\3069663b.msp + 2010-05-19 17:08 . 2010-05-19 17:08 11408896 c:\windows\Installer\2e48fa7b.msp + 2010-07-11 00:06 . 2010-07-11 00:06 10120192 c:\windows\Installer\2e48fa57.msp + 2010-06-04 07:00 . 2010-06-04 07:00 20242432 c:\windows\Installer\259e2142.msp + 2010-09-08 07:00 . 2010-09-08 07:00 20303872 c:\windows\Installer\1ced352.msp + 2010-03-31 05:23 . 2010-03-31 05:23 15638528 c:\windows\Installer\1beb0abb.msp + 2010-09-30 07:00 . 2010-09-30 07:00 20303872 c:\windows\Installer\11835830.msp + 2009-03-06 06:37 . 2009-03-06 06:37 10222432 c:\windows\Installer\$PatchCache$\Managed\00002109110000000000000000F01FEC\12.0.6425\MSACCESS.EXE + 2010-06-10 07:08 . 2010-02-25 15:47 11070976 c:\windows\ie8updates\KB982381-IE8\ieframe.dll + 2010-10-14 07:03 . 2010-06-24 21:55 11077120 c:\windows\ie8updates\KB2360131-IE8\ieframe.dll + 2010-08-12 07:03 . 2010-05-06 10:33 11076096 c:\windows\ie8updates\KB2183461-IE8\ieframe.dll + 2010-08-12 07:07 . 2010-08-12 07:07 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\439c466b60614915587c5273eaf0ca7f\System.Windows.Forms.ni.dll + 2010-10-06 07:05 . 2010-10-06 07:05 11800576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\41f436dae3c8146752d06130f7331527\System.Web.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 11798016 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\411a627d6f5cb83509332253406988e5\System.Web.ni.dll + 2010-08-12 07:09 . 2010-08-12 07:09 17403904 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\f523a69e7c93ee4f245c996eac4b3a57\System.ServiceModel.ni.dll + 2010-10-06 07:05 . 2010-10-06 07:05 17403904 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\75aeb590008d6e166f7be18f935c52d2\System.ServiceModel.ni.dll + 2010-10-06 07:04 . 2010-10-06 07:04 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\fdc42078fd10e4dc8b05087900c63977\System.Design.ni.dll + 2010-08-12 07:07 . 2010-08-12 07:07 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\b307acf63075b997d02a97a7492d0d9c\System.Design.ni.dll + 2010-08-12 07:06 . 2010-08-12 07:06 14328320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a632f3ef85ffd35341b383eed577cb93\PresentationFramework.ni.dll + 2010-08-12 07:06 . 2010-08-12 07:06 12215808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\f00db8db51f5707c7fe52c0683dc6136\PresentationCore.ni.dll + 2010-08-12 07:05 . 2010-08-12 07:05 11490816 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7bffd7ff2009f421fe5d229927588496\mscorlib.ni.dll + 2010-05-06 19:57 . 2010-05-06 19:57 11078144 c:\windows\$hf_mig$\KB982381-IE8\SP3QFE\ieframe.dll + 2010-09-10 15:17 . 2010-09-10 15:17 11082240 c:\windows\$hf_mig$\KB2360131-IE8\SP3QFE\ieframe.dll + 2010-08-12 03:01 . 2010-06-24 12:28 11079168 c:\windows\$hf_mig$\KB2183461-IE8\SP3QFE\ieframe.dll + 2010-09-30 14:47 . 2010-09-30 14:47 223760896 c:\windows\Installer\134b41af.msp . -- Instantané actualisé -- . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WindowsLivePhone"="c:\program files\Windows Live\Device Manager\msgrdvmn.exe" [2008-12-22 787816] "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2009-10-30 369200] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-07-13 39408] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CPU Power Monitor"="c:\program files\ASUS\Ai Suite\AiGear3\CpuPowerMonitor.exe" [2008-01-09 627200] "Cpu Level Up help"="c:\program files\ASUS\Ai Suite\CpuLevelUpHelp.exe" [2007-12-01 881152] "ASUS Energy Saving"="c:\program files\ASUS\Ai Suite\EnergySaving\PwSave.exe" [2008-01-24 1352192] "Ai Nap"="c:\program files\ASUS\Ai Suite\AiNap\AiNap.exe" [2007-12-11 1412608] "WindowsLivePhone"="c:\program files\Windows Live\Device Manager\msgrdvmn.exe" [2008-12-22 787816] "VX3000"="c:\windows\vVX3000.exe" [2009-06-26 757248] "LifeCam"="c:\program files\Microsoft LifeCam\LifeExp.exe" [2009-07-24 118640] "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 55824] "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153] "RTHDCPL"="RTHDCPL.EXE" [2007-12-20 16860672] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-02-15 141608] "agentantidote.exe"="c:\program files\Druide\Antidote 7\Programmes32\agentantidote.exe" [2010-06-30 806080] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-03-18 421888] "HP Component Manager"="c:\program files\HP\hpcoretech\hpcmpmgr.exe" [2004-05-12 241664] "SearchSettings"="c:\program files\pdfforge Toolbar\SearchSettings.exe" [2010-01-08 974848] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-10-08 110696] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-10-08 13851752] "nwiz"="c:\program files\NVIDIA Corporation\nView\nwiz.exe" [2010-08-26 1753192] "ArcSoft Connection Service"="c:\program files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-03-18 207360] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] c:\documents and settings\MicroC\Menu D‚marrer\Programmes\D‚marrage\ Adobe Gamma.lnk - c:\program files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664] LimeWire On Startup.lnk - c:\program files\LimeWire\LimeWire.exe [2010-3-30 503808] RocketDock.lnk - c:\windows\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe [2007-3-18 630784] TransBar.lnk - c:\windows\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe [2005-6-1 65536] c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ Logiciel Kodak EasyShare.lnk - c:\program files\Kodak\Kodak EasyShare software\bin\EasyShare.exe [2010-1-27 323584] Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2009-11-7 813584] Orbit.lnk - c:\program files\Orbitdownloader\orbitdm.exe [2010-3-5 1805584] [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon] 2009-09-03 19:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] @="" [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Acrobat.lnk] path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Acrobat.lnk backup=c:\windows\pss\Lancement rapide d'Adobe Acrobat.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^MicroC^Menu Démarrer^Programmes^Démarrage^RocketDock.lnk] path=c:\documents and settings\MicroC\Menu Démarrer\Programmes\Démarrage\RocketDock.lnk backup=c:\windows\pss\RocketDock.lnkStartup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BellCanada_McciTrayApp] 2008-12-07 16:24 1471488 ----a-w- c:\program files\BellCanada\McciTrayApp.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update] 2004-02-12 18:38 49152 ----a-w- c:\program files\HP\HP Software Update\hpwuSchd2.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] 2010-02-15 23:07 141608 ----a-w- c:\program files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] 2001-07-09 15:50 155648 ----a-w- c:\windows\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2010-03-18 01:53 421888 ----a-w- c:\program files\QuickTime\QTTask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2009-07-13 17:50 39408 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "getPlus® Helper"=3 (0x3) "avast! Web Scanner"=3 (0x3) "avast! Mail Scanner"=3 (0x3) "avast! Antivirus"=2 (0x2) "aswUpdSv"=2 (0x2) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\Microsoft LifeCam\\LifeExp.exe"= "c:\\Program Files\\Microsoft LifeCam\\LifeCam.exe"= "c:\\Program Files\\Microsoft LifeCam\\LifeEnC2.exe"= "c:\\Program Files\\Microsoft LifeCam\\LifeTray.exe"= "c:\\Program Files\\Mozilla Firefox\\firefox.exe"= "c:\\Program Files\\Ubisoft\\Related Designs\\ANNO 1404\\Anno4.exe"= "c:\\Program Files\\Ubisoft\\Related Designs\\ANNO 1404\\tools\\Anno4Web.exe"= "c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"= "c:\\Program Files\\Orbitdownloader\\orbitdm.exe"= "c:\\Program Files\\Orbitdownloader\\orbitnet.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\uTorrent\\uTorrent.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= "c:\\Program Files\\Kodak\\Kodak EasyShare software\\bin\\EasyShare.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "3724:TCP"= 3724:TCP:Blizzard Downloader: 3724 R0 mv61xx;mv61xx;c:\windows\system32\drivers\mv61xx.sys [2009-03-19 154664] R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [2010-01-05 9968] R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2010-01-05 74480] R2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [2010-02-20 108289] R2 Application Updater;Application Updater;c:\program files\Application Updater\ApplicationUpdater.exe [2010-01-07 380928] R2 LBeepKE;LBeepKE;c:\windows\system32\drivers\LBeepKE.sys [2009-11-07 10384] S0 ntfscx;ntfscx;c:\windows\system32\drivers\rfhoaxd.sys --> c:\windows\system32\drivers\rfhoaxd.sys [?] S0 pytg;pytg;c:\windows\system32\drivers\jfljamwo.sys --> c:\windows\system32\drivers\jfljamwo.sys [?] S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2008-10-02 691696] S2 gupdate1ca09aedfebe53e;Service Google Update (gupdate1ca09aedfebe53e);c:\program files\Google\Update\GoogleUpdate.exe [2009-07-20 133104] S3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2009-12-17 243056] S3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [2010-01-05 7408] . Contenu du dossier 'Tâches planifiées' 2010-11-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-07-21 02:56] 2010-11-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-07-21 02:56] 2010-04-21 c:\windows\Tasks\Microsoft_Hardware_Launch_vVX3000_exe.job - c:\windows\vVX3000.exe [2009-06-26 21:21] 2010-11-15 c:\windows\Tasks\User_Feed_Synchronization-{8927F947-F6BD-4135-8544-6D7C02CB2EAB}.job - c:\windows\system32\msfeedssync.exe [2007-08-13 08:31] . . ------- Examen supplémentaire ------- . uStart Page = hxxp://www.google.ca/ uInternet Settings,ProxyOverride = <local> uInternet Settings,ProxyServer = http=127.0.0.1:23012 uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: &Download by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/201 IE: &Grab video by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/204 IE: Convertir en Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: Convertir en un fichier PDF existant - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Convertir la cible du lien en Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: Convertir la cible du lien en un fichier PDF existant - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Convertir la sélection en Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: Convertir la sélection en un fichier PDF existant - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Convertir les liens sélectionnés en fichier Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html IE: Convertir les liens sélectionnés en un fichier PDF existant - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html IE: Do&wnload selected by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/203 IE: Down&load all by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/202 IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: Liens de téléchargement avec Mega Manager... - c:\program files\Megaupload\Mega Manager\mm_file.htm IE: Recherche sur eBay - c:\program files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html IE: Rechercher sur eBay - c:\program files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html FF - ProfilePath - c:\documents and settings\MicroC\Application Data\Mozilla\Firefox\Profiles\piv174ei.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2535290&SearchSource=3&q={searchTerms} FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT2535290&SearchSource=13 FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2535290&q= FF - component: c:\documents and settings\MicroC\Application Data\Mozilla\Firefox\Profiles\piv174ei.default\extensions\{437c4386-9237-441f-a940-009430030ee0}\components\FFExternalAlert.dll FF - component: c:\documents and settings\MicroC\Application Data\Mozilla\Firefox\Profiles\piv174ei.default\extensions\{437c4386-9237-441f-a940-009430030ee0}\components\RadioWMPCore.dll FF - component: c:\documents and settings\MicroC\Application Data\Mozilla\Firefox\Profiles\piv174ei.default\extensions\{6d6b212b-2245-4898-8b16-9a11b81ff9e1}\components\FFExternalAlert.dll FF - component: c:\documents and settings\MicroC\Application Data\Mozilla\Firefox\Profiles\piv174ei.default\extensions\{6d6b212b-2245-4898-8b16-9a11b81ff9e1}\components\RadioWMPCore.dll FF - component: c:\program files\Orbitdownloader\addons\OneClickYouTubeDownloader\components\GrabXpcom.dll FF - component: c:\program files\pdfforge Toolbar\FF\components\pdfforgeToolbarFF.dll FF - component: c:\program files\pdfforge Toolbar\SSFF\components\SearchSettingsFF.dll FF - plugin: c:\program files\Google\Update\1.2.183.39\npGoogleOneClick8.dll FF - plugin: c:\program files\ma-config.com\nphardwaredetection.dll FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ ---- PARAMETRES FIREFOX ---- c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false); . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2010-11-15 15:09 Windows 5.1.2600 Service Pack 3 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . --------------------- CLES DE REGISTRE BLOQUEES --------------------- [HKEY_USERS\S-1-5-21-790525478-789336058-682003330-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*] "??"=hex:9a,25,b5,ca,9b,6b,ca,f7,4f,ea,81,54,b7,1f,c5,ec,7d,a4,ef,e2,7f,4f,eb, 3f,e5,df,cd,40,89,01,06,8e,08,23,19,6c,1b,c2,74,b5,4a,7f,15,f7,b4,9e,34,8f,\ "??"=hex:35,fc,c6,3d,c9,02,ad,db,37,1f,61,de,0f,33,8f,50 [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|ÿÿÿÿÀ•€|ù•9~*] "AB141C35E9F4BF344B9FC010BB17F68A"="" . --------------------- DLLs chargées dans les processus actifs --------------------- - - - - - - - > 'winlogon.exe'(768) c:\program files\SUPERAntiSpyware\SASWINLO.dll . Heure de fin: 2010-11-15 15:11:34 ComboFix-quarantined-files.txt 2010-11-15 20:11 ComboFix2.txt 2010-06-18 22:57 Avant-CF: 338 619 957 248 octets libres Après-CF: 340 820 135 936 octets libres WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /noexecute=optin /fastdetect - - End Of File - - AB7734A8B95067C2CC216C33FF1C9A83 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:45:27, on 2010-11-15 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Application Updater\ApplicationUpdater.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\Program Files\Microsoft LifeCam\MSCamS32.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\ASUS\Ai Suite\AiGear3\CpuPowerMonitor.exe C:\Program Files\ASUS\Ai Suite\EnergySaving\PwSave.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\ASUS\AASP\1.00.59\aaCenter.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Druide\Antidote 7\Programmes32\agentantidote.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Orbitdownloader\orbitdm.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\explorer.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = Microsoft Windows Update R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:23012 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [CPU Power Monitor] "C:\Program Files\ASUS\Ai Suite\AiGear3\CpuPowerMonitor.exe" O4 - HKLM\..\Run: [Cpu Level Up help] C:\Program Files\ASUS\Ai Suite\CpuLevelUpHelp.exe O4 - HKLM\..\Run: [ASUS Energy Saving] "C:\Program Files\ASUS\Ai Suite\EnergySaving\PwSave.exe" O4 - HKLM\..\Run: [Ai Nap] "C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe" O4 - HKLM\..\Run: [WindowsLivePhone] C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe /AutoRun O4 - HKLM\..\Run: [VX3000] C:\WINDOWS\vVX3000.exe O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe" O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [agentantidote.exe] "C:\Program Files\Druide\Antidote 7\Programmes32\agentantidote.exe" /LancementSession O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [searchSettings] C:\Program Files\pdfforge Toolbar\SearchSettings.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe O4 - HKCU\..\Run: [WindowsLivePhone] "C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe" /AutoRun O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O4 - Global Startup: Orbit.lnk = C:\Program Files\Orbitdownloader\orbitdm.exe O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm O8 - Extra context menu item: Recherche sur eBay - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html O8 - Extra context menu item: Rechercher sur eBay - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Correcteur - {F7C8E5F6-B6D1-45db-8D91-2BCFA5DF11A9} - C:\Program Files\Druide\Antidote 7\Texteurs\Internet Explorer\Antidote.InternetExplorer.K.P100.htm (HKCU) O9 - Extra button: Dictionnaires - {F9B969E8-58D0-4dd9-AC8A-EE2336FF8F65} - C:\Program Files\Druide\Antidote 7\Texteurs\Internet Explorer\Antidote.InternetExplorer.D.P100.htm (HKCU) O9 - Extra button: Guides - {FA089E36-3F1B-4c51-9A1A-C4E7012483AF} - C:\Program Files\Druide\Antidote 7\Texteurs\Internet Explorer\Antidote.InternetExplorer.G.P100.htm (HKCU) O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - Page introuvable | Facebook O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (Ma-Config control) - http://fichiers.touslesdrivers.com/maconfig/MaConfig_4_0_1_3.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files\Application Updater\ApplicationUpdater.exe O23 - Service: Service Google Update (gupdate1ca09aedfebe53e) (gupdate1ca09aedfebe53e) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (file missing) O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 13433 bytes Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:45:27, on 2010-11-15 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Application Updater\ApplicationUpdater.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\Program Files\Microsoft LifeCam\MSCamS32.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\ASUS\Ai Suite\AiGear3\CpuPowerMonitor.exe C:\Program Files\ASUS\Ai Suite\EnergySaving\PwSave.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\ASUS\AASP\1.00.59\aaCenter.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Druide\Antidote 7\Programmes32\agentantidote.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Orbitdownloader\orbitdm.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\explorer.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = Microsoft Windows Update R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:23012 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [CPU Power Monitor] "C:\Program Files\ASUS\Ai Suite\AiGear3\CpuPowerMonitor.exe" O4 - HKLM\..\Run: [Cpu Level Up help] C:\Program Files\ASUS\Ai Suite\CpuLevelUpHelp.exe O4 - HKLM\..\Run: [ASUS Energy Saving] "C:\Program Files\ASUS\Ai Suite\EnergySaving\PwSave.exe" O4 - HKLM\..\Run: [Ai Nap] "C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe" O4 - HKLM\..\Run: [WindowsLivePhone] C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe /AutoRun O4 - HKLM\..\Run: [VX3000] C:\WINDOWS\vVX3000.exe O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe" O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [agentantidote.exe] "C:\Program Files\Druide\Antidote 7\Programmes32\agentantidote.exe" /LancementSession O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [searchSettings] C:\Program Files\pdfforge Toolbar\SearchSettings.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe O4 - HKCU\..\Run: [WindowsLivePhone] "C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe" /AutoRun O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O4 - Global Startup: Orbit.lnk = C:\Program Files\Orbitdownloader\orbitdm.exe O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm O8 - Extra context menu item: Recherche sur eBay - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html O8 - Extra context menu item: Rechercher sur eBay - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Correcteur - {F7C8E5F6-B6D1-45db-8D91-2BCFA5DF11A9} - C:\Program Files\Druide\Antidote 7\Texteurs\Internet Explorer\Antidote.InternetExplorer.K.P100.htm (HKCU) O9 - Extra button: Dictionnaires - {F9B969E8-58D0-4dd9-AC8A-EE2336FF8F65} - C:\Program Files\Druide\Antidote 7\Texteurs\Internet Explorer\Antidote.InternetExplorer.D.P100.htm (HKCU) O9 - Extra button: Guides - {FA089E36-3F1B-4c51-9A1A-C4E7012483AF} - C:\Program Files\Druide\Antidote 7\Texteurs\Internet Explorer\Antidote.InternetExplorer.G.P100.htm (HKCU) O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - Page introuvable | Facebook O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (Ma-Config control) - http://fichiers.touslesdrivers.com/maconfig/MaConfig_4_0_1_3.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files\Application Updater\ApplicationUpdater.exe O23 - Service: Service Google Update (gupdate1ca09aedfebe53e) (gupdate1ca09aedfebe53e) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (file missing) O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 13433 bytes

Rebonjour Thanos, J'ai installé PSI de Secunia, et je croyais que ce logiciel faisait aussi la vérification de la mise à jour des drivers de l'ordinateur. Je suis en protection à 99%, donc je suis assez "safe" J'ai installé Copian Backup, que je trouve génial. Tu sais, ce n'est pas moi qui manque de place sur mes disque durs. J'ai recompté et je totalise 2,5To. J'ai planifié des backups du disque dur principal, celui qui a Windows, donc le C:/ pour moi, vers un disque dur externe. je n'ai pas de réseau maison. je comprend les dangers des cracks, des keygens... Mais tu sais, parfois tout acheté ça deviens lourd pour le budget. Et comme je me débrouille pas mal en informatique, je suis habituellement très prudente. Alors j'ai une question pour toi : Est-ce que Antivir et Malwarebytes peuvent détecter un virus ou autre dans une archive que je viens de télécharger ou encore dans un exécutable ? Voilà, je me demandais si je devais faire un Scan de tous mes disque dur avec Antivir ou Malwarebytes ou les deux ? Cabotine J'attends de tes nouvelles pour continuer le nettoyage des outils. PS: Est-ce que je supprime les logiciels qui ont servi à la désinfection ? (RSIT, HijackThis, SafebookeyRepair, Toolscleaner, et un autre truc que j'ai renommé et qui est représenté par une seringue ??

Allo Thanos, J'ai fais ce que tu m'a dit avec HijackThis et avec Nvidia. Je te mets ici le résultat de Toolscleaner: [ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ] --> Recherche: C:\Rsit: trouvé ! C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Sécurité\HijackThis: trouvé ! C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Sécurité\HijackThis\HijackThis.lnk: trouvé ! C:\Nogash22840N\Combofix.txt: trouvé ! C:\Program Files\MsnFix: trouvé ! C:\Program Files\Mozilla Firefox\SmitFraudfix: trouvé ! C:\Program Files\Trend Micro\HijackThis.exe: trouvé ! C:\Program Files\Trend Micro\hijackthis.log: trouvé ! C:\Program Files\Trend Micro\HijackThis: trouvé ! C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé ! C:\Program Files\Trend Micro\HijackThis\hijackthis.log: trouvé ! C:\WINDOWS\msnfix.txt: trouvé ! C:\WINDOWS\system32\*.msnfix: trouvé ! --------------------------------- --> Suppression: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Sécurité\HijackThis\HijackThis.lnk: supprimé ! C:\Program Files\Trend Micro\HijackThis.exe: supprimé ! C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé ! C:\Nogash22840N\Combofix.txt: supprimé ! C:\Program Files\Trend Micro\hijackthis.log: supprimé ! C:\Program Files\Trend Micro\HijackThis\hijackthis.log: supprimé ! C:\WINDOWS\msnfix.txt: supprimé ! C:\WINDOWS\system32\*.msnfix: ERREUR DE SUPPRESSION !! C:\Rsit: supprimé ! C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Sécurité\HijackThis: supprimé ! C:\Program Files\MsnFix: supprimé ! C:\Program Files\Mozilla Firefox\SmitFraudfix: supprimé ! C:\Program Files\Trend Micro\HijackThis: supprimé ! Sauvegarde du registre crée ! ____________________________________________________ Je vais mettre mon JAVA à jour et te reviens avec les autres utilitaires. a++

Allo Thanos, J'ai fait la mise à jour de Firefox et tout est OK, la fenêtre apparait, mais quand je fais enregistrer, la fenêtre d'enregistrement habituelle des fichier ne s'ouvre pas, je peux choisir l'endroit que j'enregistre plutôt que ça enregistre dans Mesdocuments/telecharger.... Voilà pour ceci. Je vais t'attendre pour avoir une procédure de nettoyage. Aussi, j'aimerais vraiment savoir comment bien me protéger pour l'avenir .. Ça fait plus de 20 ans que je surf (oui j'ai commencé jeune !!) et même dans les dernières années, jamais je n'ai eu de problème de virus aussi envahissant. Sous Win98, je n'avais pas de problème, je t'assure... Voilà, merci pour ton aide et je vais attendre de tes nouvelles. Au plaisir ! Cabotine

Allo Thanos, Voici le résumé des faits : Supression Alcohol 120% Supression Daemon Tools Redémarrage en mode sans échec : OK !!!! Que puis-je faire maintenant ? Merci Thanos !

Thanos, voici la capture de la "fausse" fenêtre qui apparait. Pour régler le tout superficiellement, j'ai télcharger en format .RAR (seule extension que je peux télécharger car on m'offre l'option d'ouvrir l'archive immédiatement) le logiciel Orbit Downloader. Par la suite j'ai télécharger Explorer 8 par Orbit et j'ai fais l'installation. Explorer fonctionne à nouveau. Je te met l'image de la fausse fenêtre : ICI Je vais désinstaller Alcohol et Daemon Tools, car j'ai tjrs des messages d'erreur. Cependant, j'ai besoin d'un émulateur comme Daemon tools pour des trucs perso. Existe t-il une version de ce logiciel sans trop de risque ? Merci !

Thanos.... Je suis sur Firefox et je veux télécharger explorer 8, je ne suis plus capable d'ouvrir mon explorer 7 sur mon bureau et ni google chrome. Dans firefox, il m'apparait ENCORE la fausse fausse fenêtre d'enregistrement ce qui fait que je ne peux plus télécharger quoi que ce soit... GRRRRRrrrrrrrrrrrrrrrrrrrrr

Rappor RSIT : Logfile of random's system information tool 1.06 (written by random/random) Run by MicroC at 2010-03-05 18:07:45 Microsoft Windows XP Professionnel Service Pack 3 System drive C: has 373 GB (78%) free of 477 GB Total RAM: 3327 MB (83% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 18:07:56, on 2010-03-05 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16981) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\Program Files\Microsoft LifeCam\MSCamS32.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\Program Files\ASUS\Ai Suite\AiGear3\CpuPowerMonitor.exe C:\Program Files\ASUS\Ai Suite\EnergySaving\PwSave.exe C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe C:\Program Files\ASUS\AASP\1.00.59\aaCenter.exe C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe C:\WINDOWS\vVX3000.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Documents and Settings\MicroC\Mes documents\Logiciels\RCA Detective\RCADetective.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\Documents and Settings\MicroC\Bureau\Cabo1R2S3I4T.exe C:\Program Files\trend micro\MicroC.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [CPU Power Monitor] "C:\Program Files\ASUS\Ai Suite\AiGear3\CpuPowerMonitor.exe" O4 - HKLM\..\Run: [Cpu Level Up help] C:\Program Files\ASUS\Ai Suite\CpuLevelUpHelp.exe O4 - HKLM\..\Run: [ASUS Energy Saving] "C:\Program Files\ASUS\Ai Suite\EnergySaving\PwSave.exe" O4 - HKLM\..\Run: [Ai Nap] "C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe" O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe" O4 - HKLM\..\Run: [WindowsLivePhone] C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe /AutoRun O4 - HKLM\..\Run: [VX3000] C:\WINDOWS\vVX3000.exe O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe" O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKCU\..\Run: [WindowsLivePhone] "C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe" /AutoRun O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: RCA Detective.lnk = C:\Documents and Settings\MicroC\Mes documents\Logiciels\RCA Detective\RCADetective.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm O8 - Extra context menu item: Recherche sur eBay - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html O8 - Extra context menu item: Rechercher sur eBay - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.0...oUploader55.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (Ma-Config control) - http://fichiers.touslesdrivers.com/maconfi...fig_4_0_1_3.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Service Google Update (gupdate1ca09aedfebe53e) (gupdate1ca09aedfebe53e) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (file missing) O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 12283 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job C:\WINDOWS\tasks\Microsoft_Hardware_Launch_vVX3000_exe.job C:\WINDOWS\tasks\User_Feed_Synchronization-{8927F947-F6BD-4135-8544-6D7C02CB2EAB}.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}] Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-07-13 259696] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-10-31 764912] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-13 41368] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-07-13 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2006-12-18 231160] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-07-13 259696] {21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "HP Component Manager"=C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [2004-05-12 241664] "CPU Power Monitor"=C:\Program Files\ASUS\Ai Suite\AiGear3\CpuPowerMonitor.exe [2008-01-09 627200] "Cpu Level Up help"=C:\Program Files\ASUS\Ai Suite\CpuLevelUpHelp.exe [2007-11-30 881152] "ASUS Energy Saving"=C:\Program Files\ASUS\Ai Suite\EnergySaving\PwSave.exe [2008-01-24 1352192] "Ai Nap"=C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe [2007-12-10 1412608] "Acrobat Assistant 7.0"=C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [2008-04-23 483328] "WindowsLivePhone"=C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe [2008-12-22 787816] "VX3000"=C:\WINDOWS\vVX3000.exe [2009-06-26 757248] "AdobeCS4ServiceManager"=C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712] "LifeCam"=C:\Program Files\Microsoft LifeCam\LifeExp.exe [2009-07-24 118640] "Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2009-06-17 55824] "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-09-05 417792] "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153] "nwiz"=nwiz.exe /installquiet [] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-11-20 110184] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-11-20 12669544] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-12-20 16860672] "Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsLivePhone"=C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe [2008-12-22 787816] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-07-13 39408] "DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BellCanada_McciTrayApp] C:\Program Files\BellCanada\McciTrayApp.exe [2008-12-07 1471488] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2004-02-12 49152] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe [2009-09-21 305440] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] C:\Program Files\QuickTime\qttask.exe [2009-09-05 417792] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-13 148888] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-07-13 39408] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Acrobat.lnk] C:\WINDOWS\Installer\{AC76BA86-1033-F400-7760-000000000002}\SC_Acrobat.exe [2010-03-05 25214] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^MicroC^Menu Démarrer^Programmes^Démarrage^RocketDock.lnk] C:\WINDOWS\BRICOP~1\VISTAI~1\ROCKET~1\ROCKET~1.EXE [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "getPlus® Helper"=3 "avast! Web Scanner"=3 "avast! Mail Scanner"=3 "avast! Antivirus"=2 "aswUpdSv"=2 C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Documents and Settings\MicroC\Menu Démarrer\Programmes\Démarrage Adobe Gamma.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe RCA Detective.lnk - C:\Documents and Settings\MicroC\Mes documents\Logiciels\RCA Detective\RCADetective.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon] C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2009-09-03 548352] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265088] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveAutoRun"=67108863 "NoDriveTypeAutoRun"=323 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= "NoDriveAutoRun"= "NoDriveTypeAutoRun"= "NoDrives"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule" "C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire" "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare" "C:\Program Files\Microsoft LifeCam\LifeExp.exe"="C:\Program Files\Microsoft LifeCam\LifeExp.exe:*:Enabled:LifeExp.exe" "C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4" "C:\Program Files\Microsoft LifeCam\LifeCam.exe"="C:\Program Files\Microsoft LifeCam\LifeCam.exe:*:Enabled:LifeCam.exe" "C:\Program Files\Microsoft LifeCam\LifeEnC2.exe"="C:\Program Files\Microsoft LifeCam\LifeEnC2.exe:*:Enabled:LifeEnC2.exe" "C:\Program Files\Microsoft LifeCam\LifeTray.exe"="C:\Program Files\Microsoft LifeCam\LifeTray.exe:*:Enabled:LifeTray.exe" "C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox" "C:\Program Files\Ubisoft\Related Designs\ANNO 1404\Anno4.exe"="C:\Program Files\Ubisoft\Related Designs\ANNO 1404\Anno4.exe:*:Disabled:ANNO 1404" "C:\Program Files\Ubisoft\Related Designs\ANNO 1404\tools\Anno4Web.exe"="C:\Program Files\Ubisoft\Related Designs\ANNO 1404\tools\Anno4Web.exe:*:Disabled:ANNO 1404 Web" "C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Disabled:maconfservice" "C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare" ======List of files/folders created in the last 3 months====== 2010-03-05 17:43:43 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$ 2010-03-05 17:43:38 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$ 2010-03-05 17:43:33 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$ 2010-03-05 17:43:28 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$ 2010-03-05 17:43:23 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$ 2010-03-05 17:43:18 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$ 2010-03-05 17:43:14 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$ 2010-03-05 17:43:05 ----HDC---- C:\WINDOWS\$NtUninstallKB978207$ 2010-03-05 17:43:00 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$ 2010-03-05 17:42:55 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$ 2010-03-05 17:42:50 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$ 2010-03-05 17:42:44 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$ 2010-03-05 17:42:38 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$ 2010-03-05 17:42:31 ----HDC---- C:\WINDOWS\$NtUninstallKB961503$ 2010-03-05 17:42:08 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$ 2010-03-05 17:42:03 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$ 2010-03-05 17:41:58 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$ 2010-03-05 17:41:54 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$ 2010-03-05 17:41:44 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$ 2010-03-05 17:41:37 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$ 2010-03-05 17:41:32 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$ 2010-03-05 17:41:24 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$ 2010-03-05 17:41:19 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$ 2010-03-05 17:41:13 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$ 2010-03-05 17:41:04 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$ 2010-03-05 17:41:00 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$ 2010-03-05 17:40:55 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$ 2010-03-05 17:40:51 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$ 2010-03-05 17:40:46 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$ 2010-03-05 17:40:40 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$ 2010-03-05 17:40:34 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$ 2010-03-05 17:40:29 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$ 2010-03-05 17:40:21 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$ 2010-03-05 17:40:16 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$ 2010-03-05 17:40:11 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$ 2010-03-05 17:40:07 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$ 2010-03-05 17:40:02 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$ 2010-03-05 17:39:56 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$ 2010-03-05 17:39:50 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$ 2010-03-05 17:39:40 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$ 2010-03-05 17:39:35 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$ 2010-03-05 17:39:30 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$ 2010-03-05 17:39:22 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$ 2010-03-05 17:39:11 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$ 2010-03-05 17:39:06 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$ 2010-03-05 17:39:00 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$ 2010-03-05 17:38:54 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$ 2010-03-05 17:38:49 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$ 2010-03-05 17:38:41 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$ 2010-03-05 17:38:32 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$ 2010-03-05 17:38:27 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$ 2010-03-05 17:38:22 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$ 2010-03-05 17:38:17 ----HDC---- C:\WINDOWS\$NtUninstallKB979306$ 2010-03-05 17:38:13 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$ 2010-03-05 17:38:08 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$ 2010-03-05 17:38:04 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$ 2010-03-05 17:37:58 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$ 2010-03-05 17:37:47 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$ 2010-03-04 22:17:08 ----D---- C:\WINDOWS\Prefetch 2010-03-04 19:14:47 ----A---- C:\WINDOWS\OEWABLog.txt 2010-03-04 19:13:52 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2010-03-04 19:12:16 ----D---- C:\Program Files\Messenger 2010-03-04 19:05:56 ----A---- C:\WINDOWS\pnplog.txt 2010-03-04 18:57:51 ----A---- C:\WINDOWS\imsins.BAK 2010-03-04 18:57:41 ----A---- C:\WINDOWS\system32\irclass.dll 2010-03-04 18:57:40 ----A---- C:\WINDOWS\system32\spxcoins.dll 2010-03-04 18:57:17 ----RA---- C:\WINDOWS\SETF2.tmp 2010-03-04 18:57:14 ----RA---- C:\WINDOWS\SETE6.tmp 2010-03-04 18:57:13 ----RA---- C:\WINDOWS\SETE3.tmp 2010-03-04 18:56:36 ----A---- C:\WINDOWS\setuplog.txt 2010-03-04 16:29:43 ----A---- C:\SAFEBOOT_REPAIR.TXT 2010-02-21 01:41:24 ----SHD---- C:\RECYCLER 2010-02-20 14:09:33 ----D---- C:\rsit 2010-02-20 13:23:15 ----D---- C:\Program Files\Avira 2010-02-20 13:23:15 ----D---- C:\Documents and Settings\All Users\Application Data\Avira 2010-02-20 12:10:18 ----D---- C:\Nogash22840N 2010-02-20 11:00:41 ----A---- C:\WINDOWS\lsrslt.ini 2010-02-20 10:57:42 ----D---- C:\FyK 2010-02-19 21:13:51 ----D---- C:\Program Files\GRISOFT 2010-02-19 20:09:15 ----D---- C:\Documents and Settings\MicroC\Application Data\CA3222A28ED77778283ED6F386E44AE1 2010-02-19 12:32:17 ----D---- C:\Program Files\Fichiers communs\Adobe AIR 2010-02-19 12:27:28 ----A---- C:\WINDOWS\_MSRSTRT.EXE 2010-02-17 19:05:17 ----D---- C:\Program Files\directx 2010-02-17 19:04:38 ----D---- C:\Program Files\Infogrames 2010-02-17 18:59:46 ----D---- C:\Program Files\DAEMON Tools Toolbar 2010-02-17 18:59:37 ----D---- C:\Program Files\DAEMON Tools Lite 2010-02-17 16:53:29 ----D---- C:\Program Files\Conduit 2010-02-17 16:37:12 ----D---- C:\Program Files\IVCsoft 2010-02-17 16:30:51 ----D---- C:\Program Files\FLV to AVI MPEG WMV 3GP MP4 iPod Converter 2010-02-06 14:17:02 ----D---- C:\Documents and Settings\MicroC\Application Data\vlc 2010-01-31 21:55:14 ----A---- C:\WINDOWS\BricoPackFoldersDelete.cmd 2010-01-22 08:12:53 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP 2010-01-21 16:20:10 ----D---- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com 2010-01-21 16:20:05 ----D---- C:\Program Files\SUPERAntiSpyware 2010-01-21 16:20:05 ----D---- C:\Documents and Settings\MicroC\Application Data\SUPERAntiSpyware.com 2010-01-21 13:50:42 ----D---- C:\Program Files\Spybot - Search & Destroy 2010-01-21 13:50:42 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2010-01-21 13:47:36 ----D---- C:\MSNCleaner 2010-01-21 13:30:16 ----A---- C:\WINDOWS\msnfix.txt 2010-01-21 13:30:08 ----D---- C:\Program Files\MSNFix 2010-01-21 13:07:09 ----D---- C:\Program Files\Trend Micro 2010-01-21 08:40:19 ----D---- C:\WINDOWS\CSC 2010-01-20 09:58:10 ----D---- C:\Documents and Settings\All Users\Application Data\Alwil Software 2010-01-17 22:56:23 ----D---- C:\Documents and Settings\MicroC\Application Data\skypePM 2010-01-17 22:50:51 ----D---- C:\Documents and Settings\MicroC\Application Data\Skype 2010-01-17 22:50:25 ----D---- C:\Program Files\Fichiers communs\Skype 2010-01-17 22:50:22 ----RD---- C:\Program Files\Skype 2010-01-17 22:50:05 ----D---- C:\Documents and Settings\All Users\Application Data\Skype 2010-01-17 18:55:35 ----D---- C:\Documents and Settings\MicroC\Application Data\DAEMON Tools Lite 2010-01-17 00:39:47 ----D---- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite 2010-01-06 21:11:25 ----D---- C:\Documents and Settings\MicroC\Application Data\Malwarebytes 2010-01-06 20:42:38 ----SH---- C:\Boot.bak 2010-01-06 20:42:28 ----RASHD---- C:\cmdcons 2010-01-06 20:40:51 ----D---- C:\WINDOWS\ERDNT 2010-01-06 20:37:55 ----D---- C:\Nogash 2010-01-06 20:19:32 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2010-01-06 20:19:32 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2010-01-06 15:38:26 ----A---- C:\WINDOWS\Antidote7.ini 2010-01-06 15:38:03 ----D---- C:\Documents and Settings\MicroC\Application Data\Druide 2010-01-06 15:37:36 ----D---- C:\Program Files\Druide 2009-12-27 16:08:13 ----D---- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition 2009-12-27 14:41:09 ----D---- C:\Program Files\Intel Corporation 2009-12-27 14:30:34 ----A---- C:\WINDOWS\system32\OpenCL.dll 2009-12-27 14:30:33 ----A---- C:\WINDOWS\system32\nvcompiler.dll 2009-12-27 13:56:57 ----D---- C:\Program Files\RivaTuner v2.06 2009-12-23 11:25:39 ----D---- C:\Documents and Settings\MicroC\Application Data\Auslogics 2009-12-23 11:25:36 ----D---- C:\Program Files\Auslogics 2009-12-22 16:54:14 ----D---- C:\Documents and Settings\MicroC\Application Data\iLibs_old 2009-12-22 16:53:37 ----D---- C:\Documents and Settings\MicroC\Application Data\iCloner 2009-12-22 16:52:55 ----D---- C:\Documents and Settings\MicroC\Application Data\CopyTransPhoto 2009-12-22 16:34:23 ----D---- C:\Program Files\WindSolutions 2009-12-22 16:34:12 ----D---- C:\Documents and Settings\MicroC\Application Data\WindSolutions 2009-12-22 16:34:12 ----D---- C:\Documents and Settings\All Users\Application Data\WindSolutions 2009-12-15 22:13:08 ----D---- C:\Program Files\eBay ======List of files/folders modified in the last 3 months====== 2010-03-05 18:07:28 ----D---- C:\WINDOWS\Temp 2010-03-05 18:07:05 ----D---- C:\Program Files\Internet Explorer 2010-03-05 18:07:05 ----A---- C:\RTHDCPL_Dump.txt 2010-03-05 18:06:26 ----D---- C:\WINDOWS\system32\CatRoot2 2010-03-05 18:06:22 ----D---- C:\WINDOWS 2010-03-05 18:06:11 ----D---- C:\WINDOWS\system32 2010-03-05 18:05:40 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-03-05 18:05:40 ----HD---- C:\WINDOWS\inf 2010-03-05 18:05:40 ----D---- C:\WINDOWS\Media 2010-03-05 18:05:40 ----D---- C:\WINDOWS\Help 2010-03-05 18:04:33 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-03-05 17:57:42 ----D---- C:\WINDOWS\ie7updates 2010-03-05 17:57:41 ----HD---- C:\WINDOWS\$hf_mig$ 2010-03-05 17:56:49 ----HDC---- C:\WINDOWS\ie7 2010-03-05 17:56:44 ----D---- C:\WINDOWS\system32\CatRoot 2010-03-05 17:54:33 ----D---- C:\Program Files\Mozilla Firefox 2010-03-05 17:53:07 ----D---- C:\WINDOWS\Debug 2010-03-05 17:49:58 ----D---- C:\WINDOWS\system32\wbem 2010-03-05 17:49:58 ----D---- C:\WINDOWS\AppPatch 2010-03-05 17:43:45 ----D---- C:\WINDOWS\system32\drivers 2010-03-05 17:40:04 ----D---- C:\Program Files\Outlook Express 2010-03-05 17:27:33 ----SHD---- C:\WINDOWS\Installer 2010-03-05 17:27:33 ----D---- C:\Config.Msi 2010-03-05 13:27:54 ----D---- C:\WINDOWS\SoftwareDistribution 2010-03-04 22:19:10 ----D---- C:\WINDOWS\Registration 2010-03-04 22:18:58 ----SHD---- C:\System Volume Information 2010-03-04 22:18:58 ----D---- C:\WINDOWS\system32\Restore 2010-03-04 22:18:27 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-03-04 19:19:11 ----D---- C:\WINDOWS\system32\config 2010-03-04 19:14:43 ----A---- C:\WINDOWS\ODBCINST.INI 2010-03-04 19:13:55 ----SD---- C:\WINDOWS\Web 2010-03-04 19:13:55 ----SD---- C:\Program Files 2010-03-04 19:13:47 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2010-03-04 19:13:37 ----A---- C:\WINDOWS\win.ini 2010-03-04 19:13:31 ----D---- C:\Program Files\Windows Media Player 2010-03-04 19:13:28 ----D---- C:\WINDOWS\system32\oobe 2010-03-04 19:12:42 ----D---- C:\WINDOWS\system32\Com 2010-03-04 19:11:34 ----SH---- C:\boot.ini 2010-03-04 19:09:06 ----SD---- C:\WINDOWS\Tasks 2010-03-04 18:57:53 ----D---- C:\WINDOWS\security 2010-03-04 18:57:44 ----A---- C:\WINDOWS\system.ini 2010-03-04 18:57:32 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini 2010-03-04 18:17:22 ----D---- C:\Program Files\Electronic Arts 2010-03-04 18:17:17 ----D---- C:\ProgramData 2010-03-04 16:29:43 ----D---- C:\WINDOWS\repair 2010-03-04 13:54:11 ----D---- C:\WINDOWS\system32\Setup 2010-03-04 13:54:11 ----D---- C:\WINDOWS\system 2010-03-04 13:54:05 ----D---- C:\WINDOWS\L2Schemas 2010-03-04 13:54:04 ----D---- C:\WINDOWS\system32\usmt 2010-03-04 13:53:53 ----D---- C:\WINDOWS\ime 2010-03-04 13:53:53 ----D---- C:\WINDOWS\ehome 2010-03-04 13:53:52 ----RSD---- C:\WINDOWS\Fonts 2010-03-04 13:53:51 ----D---- C:\WINDOWS\Network Diagnostic 2010-03-04 13:53:49 ----D---- C:\WINDOWS\system32\fr-fr 2010-03-04 13:53:41 ----D---- C:\WINDOWS\PeerNet 2010-03-04 13:53:31 ----D---- C:\WINDOWS\system32\npp 2010-03-04 13:53:25 ----D---- C:\WINDOWS\msagent 2010-03-04 13:53:22 ----D---- C:\WINDOWS\system32\fr 2010-03-04 13:51:13 ----D---- C:\WINDOWS\system32\1036 2010-03-04 13:50:54 ----D---- C:\WINDOWS\twain_32 2010-03-04 13:50:23 ----D---- C:\WINDOWS\system32\icsxml 2010-03-04 13:50:03 ----D---- C:\WINDOWS\system32\ias 2010-03-04 13:49:59 ----D---- C:\WINDOWS\system32\1033 2010-03-04 13:49:18 ----D---- C:\WINDOWS\Driver Cache 2010-03-03 22:01:37 ----D---- C:\WINDOWS\BricoPacks 2010-03-03 20:42:25 ----D---- C:\WINDOWS\Minidump 2010-03-03 20:39:17 ----D---- C:\Program Files\CCleaner 2010-03-03 20:09:54 ----D---- C:\WINDOWS\ie8updates 2010-03-03 17:48:49 ----D---- C:\Documents and Settings\MicroC\Application Data\eBay 2010-03-03 17:48:49 ----D---- C:\Documents and Settings\All Users\Application Data\eBay 2010-03-03 17:01:46 ----D---- C:\Program Files\Movie Maker 2010-02-21 02:30:07 ----HDC---- C:\WINDOWS\$NtUninstallWdf01001$ 2010-02-21 01:30:59 ----D---- C:\Program Files\Fichiers communs 2010-02-21 00:07:27 ----D---- C:\WINDOWS\WinSxS 2010-02-20 14:48:49 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$ 2010-02-19 12:41:50 ----D---- C:\Documents and Settings\MicroC\Application Data\Adobe 2010-02-19 07:09:20 ----D---- C:\Documents and Settings\MicroC\Application Data\LimeWire 2010-02-17 19:04:38 ----HD---- C:\Program Files\InstallShield Installation Information 2010-02-10 03:00:53 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help 2010-02-06 14:13:15 ----A---- C:\WINDOWS\NeroDigital.ini 2010-02-01 18:01:02 ----D---- C:\Documents and Settings\MicroC\Application Data\Ahead 2010-02-01 14:26:20 ----A---- C:\WINDOWS\system32\MRT.exe 2010-01-31 22:16:06 ----D---- C:\WINDOWS\Cursors 2010-01-31 21:56:16 ----A---- C:\WINDOWS\BricoPackUninst.txt 2010-01-31 21:56:16 ----A---- C:\WINDOWS\BricoPackUninst.cmd 2010-01-31 21:51:05 ----D---- C:\Documents and Settings\MicroC\Application Data\Shareaza 2010-01-31 20:08:59 ----D---- C:\WINDOWS\system32\LogFiles 2010-01-31 20:08:44 ----SD---- C:\WINDOWS\Downloaded Program Files 2010-01-25 18:13:52 ----D---- C:\Documents and Settings\MicroC\Application Data\Bioshock 2010-01-23 03:11:44 ----A---- C:\WINDOWS\system32\tzchange.exe 2010-01-21 16:19:50 ----D---- C:\Program Files\Fichiers communs\Wise Installation Wizard 2010-01-21 13:39:28 ----D---- C:\WINDOWS\pss 2010-01-21 11:01:34 ----D---- C:\Program Files\UltraISO 2010-01-21 08:01:41 ----D---- C:\Program Files\Microsoft Silverlight 2010-01-20 10:01:51 ----D---- C:\Documents and Settings\MicroC\Application Data\Orbit 2010-01-20 09:58:10 ----D---- C:\Program Files\Alwil Software 2010-01-20 09:57:42 ----D---- C:\downloads 2010-01-17 22:51:24 ----D---- C:\Program Files\Google 2010-01-17 18:55:30 ----DC---- C:\WINDOWS\system32\DRVSTORE 2010-01-17 18:55:29 ----D---- C:\Program Files\Windows Live 2010-01-17 18:55:29 ----D---- C:\Program Files\MSN 2010-01-06 22:40:28 ----SD---- C:\Documents and Settings\MicroC\Application Data\Microsoft 2010-01-06 20:02:55 ----D---- C:\Documents and Settings 2010-01-05 15:26:14 ----A---- C:\WINDOWS\system32\mshtml.dll 2010-01-05 04:56:14 ----A---- C:\WINDOWS\system32\wininet.dll 2010-01-05 04:56:13 ----N---- C:\WINDOWS\system32\pngfilt.dll 2010-01-05 04:56:13 ----N---- C:\WINDOWS\system32\occache.dll 2010-01-05 04:56:13 ----A---- C:\WINDOWS\system32\webcheck.dll 2010-01-05 04:56:13 ----A---- C:\WINDOWS\system32\urlmon.dll 2010-01-05 04:56:13 ----A---- C:\WINDOWS\system32\url.dll 2010-01-05 04:56:12 ----N---- C:\WINDOWS\system32\mstime.dll 2010-01-05 04:56:12 ----N---- C:\WINDOWS\system32\msrating.dll 2010-01-05 04:56:12 ----N---- C:\WINDOWS\system32\mshtmled.dll 2010-01-05 04:56:10 ----N---- C:\WINDOWS\system32\jsproxy.dll 2010-01-05 04:56:09 ----N---- C:\WINDOWS\system32\iernonce.dll 2010-01-05 04:56:09 ----N---- C:\WINDOWS\system32\iepeers.dll 2010-01-05 04:56:08 ----N---- C:\WINDOWS\system32\iedkcs32.dll 2010-01-05 04:56:08 ----A---- C:\WINDOWS\system32\ieencode.dll 2010-01-05 04:56:07 ----N---- C:\WINDOWS\system32\ieaksie.dll 2010-01-05 04:56:07 ----N---- C:\WINDOWS\system32\ieakeng.dll 2010-01-05 04:56:07 ----N---- C:\WINDOWS\system32\extmgr.dll 2010-01-05 04:56:07 ----N---- C:\WINDOWS\system32\dxtrans.dll 2010-01-05 04:56:07 ----N---- C:\WINDOWS\system32\dxtmsft.dll 2010-01-05 04:56:06 ----A---- C:\WINDOWS\system32\corpol.dll 2010-01-05 04:56:06 ----A---- C:\WINDOWS\system32\advpack.dll 2009-12-31 10:33:54 ----N---- C:\WINDOWS\system32\ie4uinit.exe 2009-12-31 10:33:06 ----A---- C:\WINDOWS\system32\ieudinit.exe 2009-12-27 14:34:14 ----D---- C:\Program Files\ma-config.com 2009-12-27 14:34:14 ----D---- C:\Documents and Settings\All Users\Application Data\ma-config.com 2009-12-27 10:44:22 ----D---- C:\Program Files\Messenger Plus! Live 2009-12-22 15:46:54 ----D---- C:\Documents and Settings\MicroC\Application Data\Apple Computer 2009-12-22 15:35:36 ----D---- C:\Documents and Settings\All Users\Application Data\Apple 2009-12-22 00:09:01 ----A---- C:\WINDOWS\system32\shdocvw.dll 2009-12-21 14:06:58 ----A---- C:\WINDOWS\system32\msfeedsbs.dll 2009-12-21 14:06:58 ----A---- C:\WINDOWS\system32\msfeeds.dll 2009-12-21 14:06:57 ----A---- C:\WINDOWS\system32\iertutil.dll 2009-12-21 14:06:56 ----A---- C:\WINDOWS\system32\ieframe.dll 2009-12-18 08:04:09 ----N---- C:\WINDOWS\system32\ieakui.dll 2009-12-17 02:41:32 ----A---- C:\WINDOWS\system32\mspaint.exe 2009-12-14 02:09:26 ----A---- C:\WINDOWS\system32\csrsrv.dll 2009-12-09 03:02:45 ----RSD---- C:\WINDOWS\assembly 2009-12-08 22:23:30 ----D---- C:\WINDOWS\system32\DirectX 2009-12-08 04:24:28 ----A---- C:\WINDOWS\system32\shlwapi.dll ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 AsIO;AsIO; C:\WINDOWS\system32\drivers\AsIO.sys [2007-12-17 12400] R1 AvgArCln;Avg Anti-Rootkit Clean Driver; C:\WINDOWS\System32\DRIVERS\AvgArCln.sys [2007-01-18 3968] R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104] R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576] R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [] R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys [] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520] R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720] R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-12-02 281760] R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-11-25 56816] R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-08-05 54752] R2 LBeepKE;LBeepKE; C:\WINDOWS\System32\Drivers\LBeepKE.sys [2009-06-17 10384] R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-12-02 25888] R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600] R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384] R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368] R3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2004-06-21 51088] R3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2004-06-21 16496] R3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2004-06-21 21744] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-12-20 4637696] R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2009-06-17 20240] R3 L8042mou;SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2009-06-17 63248] R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2009-06-17 35472] R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2009-06-17 37392] R3 LMouKE;SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2009-06-17 79248] R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2009-06-17 28560] R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-14 12288] R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810] R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-11-20 10235968] R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2009-05-07 47360] R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128] R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208] R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520] R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] R3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368] R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608] R3 VX3000;VX-3000; C:\WINDOWS\system32\DRIVERS\VX3000.sys [2009-06-26 1956352] R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000] R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2009-10-21 298752] S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys [] S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys [] S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] S3 catchme;catchme; \??\C:\DOCUME~1\MicroC\LOCALS~1\Temp\catchme.sys [] S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [] S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS [] S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS [] S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS [] S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS [] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880] S3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS [] S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232] S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-08-28 40448] S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528] S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\WINDOWS\system32\DRIVERS\xusb21.sys [2007-02-26 61984] S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys [] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289] R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-07-13 152984] R2 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2008-12-07 303104] R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS32.exe [2009-07-24 139120] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-11-20 154216] R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S2 gupdate1ca09aedfebe53e;Service Google Update (gupdate1ca09aedfebe53e); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-20 133104] S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-11-01 72704] S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-10-27 655624] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 fsssvc;Service Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-07-13 182768] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632] S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-09-21 545568] S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-12-17 243056] S3 NMIndexingService;NMIndexingService; C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe [] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712] S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-03-18 65536] S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF----------------- Voilà

Allo Thanos, Le mode sans échec n'est pas accessible dans l'immédiat Lorsque je le charge, après avoir vu ls écritures passer, en bas ça écrit : Press ESC to loading a347bus.sys je ne l'ai pas fait... J'ai fais la mise à jour de windows avec 62 éléments à installer. Je veux te montrer une message d'erreur qui m'apparait très fréquemment : ICI Je fais l'examen RSIT et je reviens le poster ici. A++

Je patiente encore.... Que faire maintenant ? Encore moi, voilà j'ai dû redémarrer 2 fois et je suis allé dans le BIOS pour remettre mon disqu dur en démarrage. Le 1er redémarrage n'a pas fonctionné, mais le 2 si. Je viens de lancer Antivir examen complet du disque dur C. J'ai hâte de voir si je vais être débarassé de ce trucs qui fuck ma machine et qui figeait mon écran. Je suis allé sur le bureau, paramètre et ça n'a pas gelé lorsque j'ai suis allé à l'écran de veille. Voilà pour les bonnes nouvelles ! Je vais donner suite du scan Antivir et si tout est sous contrôle, je vais poster le rapport ici. Par la suite, je vais attendre tes consignes. Merci Thanos et désolée de te faire dormir si tard.... Cabotine Voici le rapport antivir Avira AntiVir Personal Date de création du fichier de rapport : 4 mars 2010 22:21 La recherche porte sur 1817062 souches de virus. Détenteur de la licence : Avira AntiVir Personal - FREE Antivirus Numéro de série : 0000149996-ADJIE-0000001 Plateforme : Windows XP Version de Windows : (Service Pack 3) [5.1.2600] Mode Boot : Démarré normalement Identifiant : SYSTEM Nom de l'ordinateur : NATHALIE Informations de version : BUILD.DAT : 9.0.0.75 21698 Bytes 22/01/2010 23:14:00 AVSCAN.EXE : 9.0.3.10 466689 Bytes 13/10/2009 16:25:46 AVSCAN.DLL : 9.0.3.0 49409 Bytes 03/03/2009 15:21:02 LUKE.DLL : 9.0.3.2 209665 Bytes 20/02/2009 16:35:11 LUKERES.DLL : 9.0.2.0 13569 Bytes 03/03/2009 15:21:31 VBASE000.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 12:35:52 VBASE001.VDF : 7.10.1.0 1372672 Bytes 19/11/2009 05:11:49 VBASE002.VDF : 7.10.3.1 3143680 Bytes 20/01/2010 05:11:56 VBASE003.VDF : 7.10.3.75 996864 Bytes 26/01/2010 05:11:59 VBASE004.VDF : 7.10.3.76 2048 Bytes 26/01/2010 05:11:59 VBASE005.VDF : 7.10.3.77 2048 Bytes 26/01/2010 05:11:59 VBASE006.VDF : 7.10.3.78 2048 Bytes 26/01/2010 05:11:59 VBASE007.VDF : 7.10.3.79 2048 Bytes 26/01/2010 05:11:59 VBASE008.VDF : 7.10.3.80 2048 Bytes 26/01/2010 05:12:00 VBASE009.VDF : 7.10.3.81 2048 Bytes 26/01/2010 05:12:00 VBASE010.VDF : 7.10.3.82 2048 Bytes 26/01/2010 05:12:00 VBASE011.VDF : 7.10.3.83 2048 Bytes 26/01/2010 05:12:00 VBASE012.VDF : 7.10.3.84 2048 Bytes 26/01/2010 05:12:00 VBASE013.VDF : 7.10.3.85 2048 Bytes 26/01/2010 05:12:00 VBASE014.VDF : 7.10.3.122 172544 Bytes 29/01/2010 05:12:01 VBASE015.VDF : 7.10.3.149 79872 Bytes 01/02/2010 05:12:01 VBASE016.VDF : 7.10.3.174 68608 Bytes 03/02/2010 05:12:01 VBASE017.VDF : 7.10.3.199 76800 Bytes 04/02/2010 05:12:02 VBASE018.VDF : 7.10.3.222 64512 Bytes 05/02/2010 05:12:02 VBASE019.VDF : 7.10.3.243 75776 Bytes 08/02/2010 05:12:02 VBASE020.VDF : 7.10.4.6 81920 Bytes 09/02/2010 05:12:03 VBASE021.VDF : 7.10.4.30 78848 Bytes 11/02/2010 05:12:03 VBASE022.VDF : 7.10.4.50 107520 Bytes 15/02/2010 05:12:03 VBASE023.VDF : 7.10.4.62 105472 Bytes 15/02/2010 05:12:04 VBASE024.VDF : 7.10.4.85 111616 Bytes 17/02/2010 05:12:04 VBASE025.VDF : 7.10.4.109 122368 Bytes 21/02/2010 22:06:33 VBASE026.VDF : 7.10.4.128 109056 Bytes 23/02/2010 22:06:33 VBASE027.VDF : 7.10.4.151 111104 Bytes 26/02/2010 22:06:34 VBASE028.VDF : 7.10.4.170 132608 Bytes 01/03/2010 22:06:34 VBASE029.VDF : 7.10.4.184 100864 Bytes 02/03/2010 22:06:34 VBASE030.VDF : 7.10.4.199 110592 Bytes 04/03/2010 21:24:56 VBASE031.VDF : 7.10.4.200 18944 Bytes 04/03/2010 21:24:56 Version du moteur : 8.2.1.180 AEVDF.DLL : 8.1.1.3 106868 Bytes 21/02/2010 05:12:12 AESCRIPT.DLL : 8.1.3.17 1032570 Bytes 03/03/2010 22:06:39 AESCN.DLL : 8.1.5.0 127347 Bytes 03/03/2010 22:06:38 AESBX.DLL : 8.1.2.0 254323 Bytes 03/03/2010 22:06:39 AERDL.DLL : 8.1.4.2 479602 Bytes 21/02/2010 05:12:11 AEPACK.DLL : 8.2.1.0 426356 Bytes 03/03/2010 22:06:37 AEOFFICE.DLL : 8.1.0.39 196987 Bytes 21/02/2010 05:12:09 AEHEUR.DLL : 8.1.1.7 2326902 Bytes 21/02/2010 05:12:09 AEHELP.DLL : 8.1.10.1 237942 Bytes 03/03/2010 22:06:37 AEGEN.DLL : 8.1.2.0 373107 Bytes 03/03/2010 22:06:36 AEEMU.DLL : 8.1.1.0 393587 Bytes 08/11/2009 12:38:26 AECORE.DLL : 8.1.12.2 188790 Bytes 03/03/2010 22:06:35 AEBB.DLL : 8.1.0.3 53618 Bytes 08/11/2009 12:38:20 AVWINLL.DLL : 9.0.0.3 18177 Bytes 12/12/2008 13:47:30 AVPREF.DLL : 9.0.3.0 44289 Bytes 26/08/2009 20:13:31 AVREP.DLL : 8.0.0.7 159784 Bytes 21/02/2010 05:12:12 AVREG.DLL : 9.0.0.0 36609 Bytes 07/11/2008 20:24:42 AVARKT.DLL : 9.0.0.3 292609 Bytes 24/03/2009 20:05:22 AVEVTLOG.DLL : 9.0.0.7 167169 Bytes 30/01/2009 15:36:37 SQLITE3.DLL : 3.6.1.0 326401 Bytes 28/01/2009 20:03:49 SMTPLIB.DLL : 9.2.0.25 28417 Bytes 02/02/2009 13:20:57 NETNT.DLL : 9.0.0.0 11521 Bytes 07/11/2008 20:40:59 RCIMAGE.DLL : 9.0.0.25 2438913 Bytes 17/06/2009 18:44:26 RCTEXT.DLL : 9.0.73.0 88321 Bytes 02/11/2009 21:58:32 Configuration pour la recherche actuelle : Nom de la tâche...............................: Contrôle intégral du système Fichier de configuration......................: c:\program files\avira\antivir desktop\sysscan.avp Documentation.................................: bas Action principale.............................: réparer Action secondaire.............................: supprimer Recherche sur les secteurs d'amorçage maître..: marche Recherche sur les secteurs d'amorçage.........: marche Secteurs d'amorçage...........................: C:, E:, G:, Recherche dans les programmes actifs..........: marche Recherche en cours sur l'enregistrement.......: marche Recherche de Rootkits.........................: marche Contrôle d'intégrité de fichiers système......: arrêt Fichier mode de recherche.....................: Tous les fichiers Recherche sur les archives....................: marche Limiter la profondeur de récursivité..........: 20 Archive Smart Extensions......................: marche Heuristique de macrovirus.....................: marche Heuristique fichier...........................: moyen Catégories de dangers divergentes.............: +APPL,+GAME,+JOKE,+PCK,+PFS,+SPR, Début de la recherche : 4 mars 2010 22:21 La recherche d'objets cachés commence. '65972' objets ont été contrôlés, '0' objets cachés ont été trouvés. La recherche sur les processus démarrés commence : Processus de recherche 'wmiadap.exe' - '1' module(s) sont contrôlés Processus de recherche 'avscan.exe' - '1' module(s) sont contrôlés Processus de recherche 'avcenter.exe' - '1' module(s) sont contrôlés Processus de recherche 'KHALMNPR.exe' - '1' module(s) sont contrôlés Processus de recherche 'RCADetective.exe' - '1' module(s) sont contrôlés Processus de recherche 'SetPoint.exe' - '1' module(s) sont contrôlés Processus de recherche 'ctfmon.exe' - '1' module(s) sont contrôlés Processus de recherche 'GoogleToolbarNotifier.exe' - '1' module(s) sont contrôlés Processus de recherche 'RTHDCPL.exe' - '1' module(s) sont contrôlés Processus de recherche 'rundll32.exe' - '1' module(s) sont contrôlés Processus de recherche 'avgnt.exe' - '1' module(s) sont contrôlés Processus de recherche 'aaCenter.exe' - '1' module(s) sont contrôlés Processus de recherche 'vVX3000.exe' - '1' module(s) sont contrôlés Processus de recherche 'msgrdvmn.exe' - '1' module(s) sont contrôlés Processus de recherche 'acrotray.exe' - '1' module(s) sont contrôlés Processus de recherche 'AiNap.exe' - '1' module(s) sont contrôlés Processus de recherche 'PwSave.exe' - '1' module(s) sont contrôlés Processus de recherche 'CpuPowerMonitor.exe' - '1' module(s) sont contrôlés Processus de recherche 'hpcmpmgr.exe' - '1' module(s) sont contrôlés Processus de recherche 'wuauclt.exe' - '1' module(s) sont contrôlés Processus de recherche 'msdtc.exe' - '1' module(s) sont contrôlés Processus de recherche 'dllhost.exe' - '1' module(s) sont contrôlés Processus de recherche 'alg.exe' - '1' module(s) sont contrôlés Processus de recherche 'wmiapsrv.exe' - '1' module(s) sont contrôlés Processus de recherche 'wmiprvse.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'SeaPort.exe' - '1' module(s) sont contrôlés Processus de recherche 'MSCamS32.exe' - '1' module(s) sont contrôlés Processus de recherche 'McciCMService.exe' - '1' module(s) sont contrôlés Processus de recherche 'jqs.exe' - '1' module(s) sont contrôlés Processus de recherche 'AppleMobileDeviceService.exe' - '1' module(s) sont contrôlés Processus de recherche 'explorer.exe' - '1' module(s) sont contrôlés Processus de recherche 'avguard.exe' - '1' module(s) sont contrôlés Processus de recherche 'sched.exe' - '1' module(s) sont contrôlés Processus de recherche 'spoolsv.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'nvsvc32.exe' - '1' module(s) sont contrôlés Processus de recherche 'lsass.exe' - '1' module(s) sont contrôlés Processus de recherche 'services.exe' - '1' module(s) sont contrôlés Processus de recherche 'winlogon.exe' - '1' module(s) sont contrôlés Processus de recherche 'csrss.exe' - '1' module(s) sont contrôlés Processus de recherche 'smss.exe' - '1' module(s) sont contrôlés '47' processus ont été contrôlés avec '47' modules La recherche sur les secteurs d'amorçage maître commence : Secteur d'amorçage maître HD0 [iNFO] Aucun virus trouvé ! Secteur d'amorçage maître HD1 [iNFO] Aucun virus trouvé ! Secteur d'amorçage maître HD2 [iNFO] Aucun virus trouvé ! Secteur d'amorçage maître HD3 [iNFO] Aucun virus trouvé ! La recherche sur les secteurs d'amorçage commence : Secteur d'amorçage 'C:\' [iNFO] Aucun virus trouvé ! Secteur d'amorçage 'E:\' [iNFO] Aucun virus trouvé ! Secteur d'amorçage 'G:\' [iNFO] Aucun virus trouvé ! La recherche sur les renvois aux fichiers exécutables (registre) commence : Le registre a été contrôlé ( '61' fichiers). La recherche sur les fichiers sélectionnés commence : Recherche débutant dans 'C:\' C:\pagefile.sys [AVERTISSEMENT] Impossible d'ouvrir le fichier ! [REMARQUE] Ce fichier est un fichier système Windows. [REMARQUE] Il est correct que ce fichier ne puisse pas être ouvert pour la recherche. C:\WINDOWS\system32\drivers\atapi.sys [AVERTISSEMENT] Impossible d'ouvrir le fichier ! Recherche débutant dans 'E:\' Recherche débutant dans 'G:\' <New Volume> Fin de la recherche : 5 mars 2010 00:15 Temps nécessaire: 1:53:35 Heure(s) La recherche a été effectuée intégralement 26389 Les répertoires ont été contrôlés 647976 Des fichiers ont été contrôlés 0 Des virus ou programmes indésirables ont été trouvés 0 Des fichiers ont été classés comme suspects 0 Des fichiers ont été supprimés 0 Des virus ou programmes indésirables ont été réparés 0 Les fichiers ont été déplacés dans la quarantaine 0 Les fichiers ont été renommés 2 Impossible de contrôler des fichiers 647974 Fichiers non infectés 2746 Les archives ont été contrôlées 2 Avertissements 1 Consignes 65972 Des objets ont été contrôlés lors du Rootkitscan 0 Des objets cachés ont été trouvés Que dois-je faire pour nettoyer "à Fond" ?? A++ Cabo