TRoj-Generic !! au secours !! RESOLU !!!&#

[Thanos]

salut ratcoldo

C normal d'en avoir tant ?? ou je suis maudite ??

Non tu n'est pas maudite Ne t'inquiêtes pas pour ce qu'Ag As a trouvé!Je te décrypte ca >

TrackingCookie.Doubleclick : Nettoyé. > ce ne sont pas des infections, mais de simples cookies traceurs.Tout le monde en récupère quand on surfe.Des infos sur ces cookies > http://www.commentcamarche.net/securite/cookies.php3

 

C:\System Volume Information\_restore{22D37528-AAD5-405E-BEA4-FAF2844C6EDD}\RP253\A0063635.exe -> Adware.PurityScan : Nettoyé. > l'Adware Purityscan a infecté un point de la restauration système: Avg As l'a nettoyé. Un point de restauration système ne présente pas de danger dans la mesure ou tu n'utilise pas la restauration système pour revenir à une date antérieure(pour rêgler un problème).Donc c'est une "infection dormante" en quelque sorte. Des infos sur la restauration système si tu ne connais pas > http://www.microsoft.com/france/windows/xp..._mille1001.html

 

maintenant, dois je garder mon ti PC cillin ou dois je mettre kchose de plus efficace, et si oui, quoi ??

PC Cillin, c'est une protection tout-en-un , c'est à dire qu'elle intègre un firewall + un antivirus.

Si tu désires en changer, je vais t'indiquer quels logiciels tu peux installer pour remplacer PC Cillin.Il faudra installer un antivirus + un firewall.

 

Ok, comment fonctionne ton pc à présent? Peux tu stp me poster un dernier rapport Combofix stp? après ca , c'est bon je pense

Modifié le 18 janvier 2007 par charles ingals

[ratcoldo]

le combofix du jour....

 

Bon, j'ai l'impression qu'il fonctionne bien...mais j'avoue ne jamais avoir remarqué des choses bizarres... Chuis myope aussi !!!

si tu penses que PC Cillin suffit, je le garde...!!

 

encore une fois merciiiii !!!

 

"Bob" - 07-01-18 14:25:27 Service Pack 2

ComboFix 07-01-16.2 - Running from: "C:\Documents and Settings\Bob\Bureau\Secours VIrus"

 

(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

 

 

~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Purity ~ ~ ~ ~ ~ ~ ~ ~~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~

Folders Quarantined:

C:\qoobox\purity\DOCUME~1

C:\qoobox\purity\DOCUME~1\Bob

C:\qoobox\purity\DOCUME~1\Bob\Application Data

C:\qoobox\purity\DOCUME~1\Bob\Mes documents

C:\qoobox\purity\DOCUME~1\Bob\Application Data\ECURIT~1

C:\qoobox\purity\DOCUME~1\Bob\Application Data\FNTS~1

C:\qoobox\purity\DOCUME~1\Bob\Application Data\from.txt

C:\qoobox\purity\DOCUME~1\Bob\Application Data\ICROSO~1

C:\qoobox\purity\DOCUME~1\Bob\Application Data\YSTEM~1

C:\qoobox\purity\DOCUME~1\Bob\Mes documents\ASEMBL~1

C:\qoobox\purity\DOCUME~1\Bob\Mes documents\CURITY~1

C:\qoobox\purity\DOCUME~1\Bob\Mes documents\DOBE~1

C:\qoobox\purity\DOCUME~1\Bob\Mes documents\from.txt

C:\qoobox\purity\Program Files\FNTS~1

C:\qoobox\purity\Program Files\SCURIT~1

C:\qoobox\purity\Program Files\SKS~1

C:\qoobox\purity\WINDOWS\system32\CROSOF~1.NET

C:\qoobox\purity\WINDOWS\system32\MBOLS~1

C:\qoobox\purity\WINDOWS\system32\SSTEM~1

C:\qoobox\purity\WINDOWS\system32\STEM32~1

 

 

((((((((((((((((((((((((((((((( Files Created from 2006-12-18 to 2007-01-18 ))))))))))))))))))))))))))))))))))

 

 

2007-01-16 18:51 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys

2007-01-16 18:51 <REP> d-------- C:\Program Files\Grisoft

2007-01-16 16:58 <REP> d-------- C:\!KillBox

2007-01-16 11:24 3,708 --a------ C:\WINDOWS\system32\tmp.reg

2007-01-16 11:23 79,360 --a------ C:\WINDOWS\system32\swxcacls.exe

2007-01-16 11:23 53,248 --a------ C:\WINDOWS\system32\Process.exe

2007-01-16 11:23 51,200 --a------ C:\WINDOWS\system32\dumphive.exe

2007-01-16 11:23 40,960 --a------ C:\WINDOWS\system32\swsc.exe

2007-01-16 11:23 288,417 --a------ C:\WINDOWS\system32\SrchSTS.exe

2007-01-16 11:23 135,168 --a------ C:\WINDOWS\system32\swreg.exe

2006-12-24 17:52 <REP> d-------- C:\Program Files\Windows Media Connect 2

 

 

(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))

 

 

2007-01-18 14:21 -------- d-------- C:\Program Files\wanadoo

2007-01-12 14:22 -------- d-------- C:\Program Files\common files

2006-11-18 07:21 -------- d-------- C:\Program Files\msxml 4.0

2006-11-13 05:54 0 --a------ C:\WINDOWS\d3gn32.exe

2006-11-13 01:51 0 --a------ C:\WINDOWS\system32\addxx32.exe

2006-11-12 14:13 0 --a------ C:\WINDOWS\system32\d3sz.exe

2006-11-12 14:03 0 --a------ C:\WINDOWS\system32\d3on32.exe

2006-11-12 09:36 0 --a------ C:\WINDOWS\system32\netps32.exe

2006-11-12 09:13 0 --a------ C:\WINDOWS\appxf.exe

2006-11-12 08:13 0 --a------ C:\WINDOWS\system32\d3xa32.exe

2006-11-12 07:59 0 --a------ C:\WINDOWS\system32\appvd.exe

2006-11-12 03:43 0 --a------ C:\WINDOWS\system32\msbz32.exe

2006-11-11 23:54 0 --a------ C:\WINDOWS\sysfa32.exe

2006-11-11 18:31 0 --a------ C:\WINDOWS\winpg.exe

2006-11-11 11:06 0 --a------ C:\WINDOWS\system32\iebp.exe

2006-11-11 08:47 0 --a------ C:\WINDOWS\system32\crvw.exe

2006-11-11 06:25 0 --a------ C:\WINDOWS\winup32.exe

2006-11-11 05:52 0 --a------ C:\WINDOWS\crmd.exe

2006-11-11 05:09 0 --a------ C:\WINDOWS\netce32.exe

2006-11-11 04:28 0 --a------ C:\WINDOWS\crho.exe

2006-11-10 19:57 0 --a------ C:\WINDOWS\system32\apiwc32.exe

2006-11-10 14:06 0 --a------ C:\WINDOWS\system32\ipid.exe

2006-11-10 12:25 0 --a------ C:\WINDOWS\system32\javalr.exe

2006-11-10 09:16 0 --a------ C:\WINDOWS\mszv32.exe

2006-11-10 08:29 0 --a------ C:\WINDOWS\addoc32.exe

2006-11-10 04:09 0 --a------ C:\WINDOWS\ntdy32.exe

2006-11-10 03:19 0 --a------ C:\WINDOWS\sysmz32.exe

2006-11-10 00:28 0 --a------ C:\WINDOWS\system32\ipkr32.exe

2006-11-09 23:37 0 --a------ C:\WINDOWS\sdkgy.exe

2006-11-09 23:09 0 --a------ C:\WINDOWS\crnt.exe

2006-11-09 22:35 0 --a------ C:\WINDOWS\syssd32.exe

2006-11-09 22:22 0 --a------ C:\WINDOWS\system32\apidz.exe

2006-11-09 19:54 0 --a------ C:\WINDOWS\system32\sdklp.exe

2006-11-09 17:33 0 --a------ C:\WINDOWS\crmr32.exe

2006-11-09 16:25 0 --a------ C:\WINDOWS\system32\mfcnz.exe

2006-11-09 13:51 0 --a------ C:\WINDOWS\system32\sysse32.exe

2006-11-09 12:43 0 --a------ C:\WINDOWS\system32\iejx32.exe

2006-11-09 12:24 0 --a------ C:\WINDOWS\ipat.exe

2006-11-09 11:13 0 --a------ C:\WINDOWS\system32\crhn.exe

2006-11-09 09:28 0 --a------ C:\WINDOWS\winsn.exe

2006-11-09 09:19 0 --a------ C:\WINDOWS\system32\addzy32.exe

2006-11-09 08:47 0 --a------ C:\WINDOWS\addqs32.exe

2006-11-09 07:53 0 --a------ C:\WINDOWS\mfcrx.exe

2006-11-09 07:26 0 --a------ C:\WINDOWS\sdkzo.exe

2006-11-09 07:06 0 --a------ C:\WINDOWS\system32\apirf32.exe

2006-11-09 03:28 0 --a------ C:\WINDOWS\javamu32.exe

2006-11-09 01:43 0 --a------ C:\WINDOWS\system32\sysvv32.exe

2006-11-09 00:55 0 --a------ C:\WINDOWS\sdkan.exe

2006-11-09 00:14 0 --a------ C:\WINDOWS\iexw32.exe

2006-11-08 20:05 0 --a------ C:\WINDOWS\system32\sysif32.exe

2006-11-08 15:56 0 --a------ C:\WINDOWS\apipc32.exe

2006-11-08 15:49 0 --a------ C:\WINDOWS\system32\msaw32.exe

2006-11-08 15:08 0 --a------ C:\WINDOWS\apirf.exe

2006-11-08 14:55 0 --a------ C:\WINDOWS\crqh.exe

2006-11-08 14:22 0 --a------ C:\WINDOWS\system32\d3pi32.exe

2006-11-08 13:01 0 --a------ C:\WINDOWS\system32\apigi32.exe

2006-11-08 11:40 0 --a------ C:\WINDOWS\system32\sdkod32.exe

2006-11-08 11:01 0 --a------ C:\WINDOWS\system32\crnz32.exe

2006-11-08 09:32 0 --a------ C:\WINDOWS\ntft32.exe

2006-11-08 07:38 0 --a------ C:\WINDOWS\system32\appgj.exe

2006-11-08 07:37 0 --a------ C:\WINDOWS\sysfm32.exe

2006-11-08 07:24 0 --a------ C:\WINDOWS\ieaq.exe

2006-11-08 07:24 0 --a------ C:\WINDOWS\crcc32.exe

2006-11-08 06:07 679424 --a------ C:\WINDOWS\system32\inetcomm.dll

2006-11-08 04:52 0 --a------ C:\WINDOWS\ieif32.exe

2006-11-08 04:43 0 --a------ C:\WINDOWS\appxy32.exe

2006-11-08 04:29 0 --a------ C:\WINDOWS\system32\crur32.exe

2006-11-08 04:11 0 --a------ C:\WINDOWS\atltd32.exe

2006-11-08 02:38 0 --a------ C:\WINDOWS\winsy.exe

2006-11-08 01:16 0 --a------ C:\WINDOWS\system32\atlsk32.exe

2006-11-08 00:16 0 --a------ C:\WINDOWS\apirq.exe

2006-11-08 00:12 0 --a------ C:\WINDOWS\system32\apige32.exe

2006-11-07 23:25 0 --a------ C:\WINDOWS\system32\sdkvl32.exe

2006-11-07 23:25 0 --a------ C:\WINDOWS\atlma.exe

2006-11-07 19:37 0 --a------ C:\WINDOWS\sdkry32.exe

2006-11-07 14:46 0 --a------ C:\WINDOWS\d3cs.exe

2006-11-07 12:31 0 --a------ C:\WINDOWS\appzg.exe

2006-11-07 11:51 0 --a------ C:\WINDOWS\system32\d3tz.exe

2006-11-07 11:06 0 --a------ C:\WINDOWS\system32\atlew.exe

2006-11-07 10:48 0 --a------ C:\WINDOWS\sysac32.exe

2006-11-07 10:33 0 --a------ C:\WINDOWS\system32\ieag.exe

2006-11-07 08:09 0 --a------ C:\WINDOWS\system32\sdkjr.exe

2006-11-07 05:34 0 --a------ C:\WINDOWS\mfcjg32.exe

2006-11-07 05:17 0 --a------ C:\WINDOWS\crpz32.exe

2006-11-07 04:13 0 --a------ C:\WINDOWS\nethg32.exe

2006-11-07 03:53 0 --a------ C:\WINDOWS\ipmu.exe

2006-11-07 03:51 0 --a------ C:\WINDOWS\mfcve32.exe

2006-11-07 03:06 0 --a------ C:\WINDOWS\ntrw32.exe

2006-11-07 02:05 0 --a------ C:\WINDOWS\addjg32.exe

2006-11-07 01:32 0 --a------ C:\WINDOWS\d3cu.exe

2006-11-07 01:03 0 --a------ C:\WINDOWS\system32\mfcml32.exe

2006-11-06 21:49 0 --a------ C:\WINDOWS\mshd.exe

2006-11-06 21:12 0 --a------ C:\WINDOWS\iprh.exe

2006-11-06 18:20 0 --a------ C:\WINDOWS\ipjn.exe

2006-11-06 17:13 0 --a------ C:\WINDOWS\javafb.exe

2006-11-06 17:12 0 --a------ C:\WINDOWS\system32\atlgf.exe

2006-11-06 15:48 0 --a------ C:\WINDOWS\ipjk32.exe

2006-11-06 15:42 0 --a------ C:\WINDOWS\apizl.exe

2006-11-06 15:04 0 --a------ C:\WINDOWS\system32\sdkho.exe

2006-11-06 14:51 0 --a------ C:\WINDOWS\sysvb32.exe

2006-11-06 13:33 0 --a------ C:\WINDOWS\crjk32.exe

2006-11-06 11:22 0 --a------ C:\WINDOWS\iehg.exe

2006-11-06 09:16 0 --a------ C:\WINDOWS\system32\netrw32.exe

2006-11-06 07:39 0 --a------ C:\WINDOWS\system32\sdkzd32.exe

2006-11-06 05:11 0 --a------ C:\WINDOWS\system32\ieht.exe

2006-11-06 04:46 0 --a------ C:\WINDOWS\system32\winwa32.exe

2006-11-06 03:36 0 --a------ C:\WINDOWS\system32\msed32.exe

2006-11-06 02:50 0 --a------ C:\WINDOWS\system32\cria32.exe

2006-11-06 02:20 0 --a------ C:\WINDOWS\ievg.exe

2006-11-06 01:15 0 --a------ C:\WINDOWS\atlhf32.exe

2006-11-06 00:30 0 --a------ C:\WINDOWS\appdh32.exe

2006-11-05 23:10 0 --a------ C:\WINDOWS\ntrs32.exe

2006-11-05 21:41 0 --a------ C:\WINDOWS\system32\netbp32.exe

2006-11-05 20:56 0 --a------ C:\WINDOWS\javabk.exe

2006-11-05 20:46 0 --a------ C:\WINDOWS\system32\ntuj32.exe

2006-11-05 20:31 0 --a------ C:\WINDOWS\system32\sysdr.exe

2006-11-05 18:35 0 --a------ C:\WINDOWS\sysad32.exe

2006-11-05 18:33 0 --a------ C:\WINDOWS\msoy32.exe

2006-11-05 17:44 0 --a------ C:\WINDOWS\sdkdv32.exe

2006-11-05 16:43 0 --a------ C:\WINDOWS\msds32.exe

2006-11-05 14:58 0 --a------ C:\WINDOWS\msxg.exe

2006-11-05 13:14 0 --a------ C:\WINDOWS\system32\appaj.exe

2006-11-05 12:36 0 --a------ C:\WINDOWS\system32\appng32.exe

2006-11-05 12:20 0 --a------ C:\WINDOWS\ieet32.exe

2006-11-05 06:15 0 --a------ C:\WINDOWS\syssz32.exe

2006-11-05 05:04 0 --a------ C:\WINDOWS\system32\ipix.exe

2006-11-05 04:53 0 --a------ C:\WINDOWS\apihk32.exe

2006-11-05 03:35 0 --a------ C:\WINDOWS\mfcvf32.exe

2006-11-05 03:32 0 --a------ C:\WINDOWS\ntba32.exe

2006-11-05 02:34 0 --a------ C:\WINDOWS\addug.exe

2006-11-05 02:25 0 --a------ C:\WINDOWS\winqy.exe

2006-11-05 01:56 0 --a------ C:\WINDOWS\ieoo32.exe

2006-11-05 01:37 0 --a------ C:\WINDOWS\nettb.exe

2006-11-05 01:02 0 --a------ C:\WINDOWS\system32\netuk32.exe

2006-11-05 00:55 0 --a------ C:\WINDOWS\apimz.exe

2006-11-04 23:52 0 --a------ C:\WINDOWS\iess.exe

2006-11-04 23:48 0 --a------ C:\WINDOWS\winrn32.exe

2006-11-04 22:39 0 --a------ C:\WINDOWS\mfcxl32.exe

2006-11-04 21:44 0 --a------ C:\WINDOWS\system32\mssq32.exe

2006-11-04 21:44 0 --a------ C:\WINDOWS\appfc32.exe

2006-11-04 18:40 0 --a------ C:\WINDOWS\apptu.exe

2006-11-04 18:37 0 --a------ C:\WINDOWS\system32\winfl32.exe

2006-11-04 18:09 0 --a------ C:\WINDOWS\system32\sdknf32.exe

2006-11-04 16:02 0 --a------ C:\WINDOWS\addyk.exe

2006-11-04 15:50 0 --a------ C:\WINDOWS\appzh32.exe

2006-11-04 15:34 0 --a------ C:\WINDOWS\system32\iebn32.exe

2006-11-04 15:20 0 --a------ C:\WINDOWS\ntpg32.exe

2006-11-04 14:14 1245696 --a------ C:\WINDOWS\system32\msxml4.dll

2006-11-04 14:13 0 --a------ C:\WINDOWS\javahv32.exe

2006-11-04 14:02 0 --a------ C:\WINDOWS\system32\javauk.exe

2006-11-04 10:07 0 --a------ C:\WINDOWS\ieuo.exe

2006-11-04 09:23 0 --a------ C:\WINDOWS\ntpg.exe

2006-11-04 09:05 0 --a------ C:\WINDOWS\atlyv.exe

2006-11-04 08:24 0 --a------ C:\WINDOWS\ipcs32.exe

2006-11-04 04:13 0 --a------ C:\WINDOWS\system32\d3na.exe

2006-11-04 03:51 0 --a------ C:\WINDOWS\system32\msjl.exe

2006-11-04 03:25 0 --a------ C:\WINDOWS\system32\appgw32.exe

2006-11-04 01:45 0 --a------ C:\WINDOWS\system32\javawv.exe

2006-11-04 01:32 0 --a------ C:\WINDOWS\system32\sdknn32.exe

2006-11-04 01:15 0 --a------ C:\WINDOWS\system32\iepr32.exe

2006-11-04 00:24 0 --a------ C:\WINDOWS\ierb32.exe

2006-11-04 00:19 0 --a------ C:\WINDOWS\winkg.exe

2006-11-03 23:51 0 --a------ C:\WINDOWS\system32\msni32.exe

2006-11-03 22:36 0 --a------ C:\WINDOWS\system32\appgd32.exe

2006-11-03 21:51 0 --a------ C:\WINDOWS\system32\winzg32.exe

2006-11-03 21:45 0 --a------ C:\WINDOWS\netjd.exe

2006-11-03 21:28 0 --a------ C:\WINDOWS\crhl.exe

2006-11-03 20:14 0 --a------ C:\WINDOWS\system32\ipee32.exe

2006-11-03 19:12 0 --a------ C:\WINDOWS\ntnm.exe

2006-11-03 18:23 0 --a------ C:\WINDOWS\msgc.exe

2006-11-03 17:20 0 --a------ C:\WINDOWS\system32\ieua.exe

2006-11-03 15:57 0 --a------ C:\WINDOWS\system32\ipvc.exe

2006-11-03 15:38 0 --a------ C:\WINDOWS\msbn32.exe

2006-11-03 15:30 0 --a------ C:\WINDOWS\atlah32.exe

2006-11-03 15:19 0 --a------ C:\WINDOWS\system32\wingy32.exe

2006-11-03 14:58 0 --a------ C:\WINDOWS\system32\atlsb32.exe

2006-11-03 13:44 0 --a------ C:\WINDOWS\addps32.exe

2006-11-03 13:23 0 --a------ C:\WINDOWS\system32\d3nu.exe

2006-11-03 12:57 0 --a------ C:\WINDOWS\system32\apieq32.exe

2006-11-03 12:39 0 --a------ C:\WINDOWS\system32\msdd.exe

2006-11-03 12:34 0 --a------ C:\WINDOWS\d3xx.exe

2006-11-03 12:29 0 --a------ C:\WINDOWS\system32\msek32.exe

2006-11-03 12:23 0 --a------ C:\WINDOWS\mfcyp.exe

2006-11-03 12:10 0 --a------ C:\WINDOWS\system32\sysmw32.exe

2006-11-03 10:53 0 --a------ C:\WINDOWS\winfz32.exe

2006-11-03 10:48 0 --a------ C:\WINDOWS\msxt.exe

2006-11-03 10:14 0 --a------ C:\WINDOWS\system32\appcd32.exe

2006-11-03 10:03 8292352 --a------ C:\WINDOWS\system32\wmploc.dll

2006-11-03 09:59 99840 --a------ C:\WINDOWS\system32\wmpshell.dll

2006-11-03 09:58 272384 --a------ C:\WINDOWS\system32\wmerror.dll

2006-11-03 09:56 7680 --a------ C:\WINDOWS\system32\asferror.dll

2006-11-03 08:44 0 --a------ C:\WINDOWS\system32\sysby.exe

2006-11-03 06:29 0 --a------ C:\WINDOWS\crvl32.exe

2006-11-03 06:19 0 --a------ C:\WINDOWS\appcx.exe

2006-11-03 05:48 0 --a------ C:\WINDOWS\appyn.exe

2006-11-03 05:45 0 --a------ C:\WINDOWS\system32\winlj32.exe

2006-11-03 04:52 0 --a------ C:\WINDOWS\mfcpv32.exe

2006-11-03 03:43 0 --a------ C:\WINDOWS\crpo.exe

2006-11-03 03:37 0 --a------ C:\WINDOWS\system32\netzf.exe

2006-11-03 03:14 0 --a------ C:\WINDOWS\system32\javaty32.exe

2006-11-03 02:10 0 --a------ C:\WINDOWS\appnq32.exe

2006-11-03 01:30 0 --a------ C:\WINDOWS\atlbf32.exe

2006-11-03 01:23 0 --a------ C:\WINDOWS\msyj.exe

2006-11-03 00:36 0 --a------ C:\WINDOWS\sysfh.exe

2006-11-03 00:28 0 --a------ C:\WINDOWS\system32\iejn32.exe

2006-11-02 23:50 0 --a------ C:\WINDOWS\d3zs32.exe

2006-11-02 23:20 0 --a------ C:\WINDOWS\system32\sysco.exe

2006-11-02 22:00 0 --a------ C:\WINDOWS\sysbf32.exe

2006-11-02 21:32 0 --a------ C:\WINDOWS\system32\javazp.exe

2006-11-02 18:01 0 --a------ C:\WINDOWS\crpn32.exe

2006-11-02 17:31 0 --a------ C:\WINDOWS\system32\winge.exe

2006-11-02 17:09 0 --a------ C:\WINDOWS\javail32.exe

2006-11-02 16:57 0 --a------ C:\WINDOWS\system32\sysua32.exe

2006-11-02 15:09 0 --a------ C:\WINDOWS\apiwf.exe

2006-11-02 14:22 0 --a------ C:\WINDOWS\system32\sdkhn32.exe

2006-11-02 13:49 0 --a------ C:\WINDOWS\mfcib.exe

2006-11-02 12:49 0 --a------ C:\WINDOWS\sdkwc.exe

2006-11-02 12:19 0 --a------ C:\WINDOWS\msfm32.exe

2006-11-02 12:07 0 --a------ C:\WINDOWS\iegn32.exe

2006-11-02 11:52 44032 --------- C:\WINDOWS\system32\wpdshextres.dll

2006-11-02 11:51 0 --a------ C:\WINDOWS\system32\sdkyn32.exe

2006-11-02 11:34 0 --a------ C:\WINDOWS\sdkgt32.exe

2006-11-02 10:37 0 --a------ C:\WINDOWS\system32\crto32.exe

2006-11-02 09:59 0 --a------ C:\WINDOWS\system32\netnu.exe

2006-11-02 08:53 0 --a------ C:\WINDOWS\iesd32.exe

2006-11-02 08:52 0 --a------ C:\WINDOWS\system32\mfcbn.exe

2006-11-02 08:48 0 --a------ C:\WINDOWS\system32\apiap32.exe

2006-11-02 08:38 0 --a------ C:\WINDOWS\apiod.exe

2006-11-02 08:11 0 --a------ C:\WINDOWS\system32\javaev32.exe

2006-11-02 07:37 0 --a------ C:\WINDOWS\system32\msoj.exe

2006-11-02 05:58 0 --a------ C:\WINDOWS\mfcsu.exe

2006-11-02 04:59 0 --a------ C:\WINDOWS\system32\mfcvp32.exe

2006-11-02 04:28 0 --a------ C:\WINDOWS\system32\mszh.exe

2006-11-02 03:53 0 --a------ C:\WINDOWS\appnu32.exe

2006-11-02 03:42 0 --a------ C:\WINDOWS\iega.exe

2006-11-02 02:48 0 --a------ C:\WINDOWS\system32\crob32.exe

2006-11-02 02:41 0 --a------ C:\WINDOWS\apiuf.exe

2006-11-02 02:31 0 --a------ C:\WINDOWS\system32\mfctj32.exe

2006-11-02 02:25 0 --a------ C:\WINDOWS\system32\syszc.exe

2006-11-01 23:32 0 --a------ C:\WINDOWS\sdkyj32.exe

2006-11-01 23:32 0 --a------ C:\WINDOWS\d3il32.exe

2006-11-01 23:30 0 --a------ C:\WINDOWS\system32\d3bt32.exe

2006-11-01 22:59 0 --a------ C:\WINDOWS\sysmg32.exe

2006-11-01 22:19 0 --a------ C:\WINDOWS\iegc32.exe

2006-11-01 21:44 0 --a------ C:\WINDOWS\appog32.exe

2006-11-01 19:57 0 --a------ C:\WINDOWS\system32\addfb.exe

2006-11-01 19:54 0 --a------ C:\WINDOWS\addlf32.exe

2006-11-01 18:06 0 --a------ C:\WINDOWS\system32\nthx32.exe

2006-11-01 17:28 0 --a------ C:\WINDOWS\msqg.exe

2006-11-01 17:27 0 --a------ C:\WINDOWS\system32\d3si32.exe

2006-11-01 15:42 0 --a------ C:\WINDOWS\system32\javasz32.exe

2006-11-01 14:30 0 --a------ C:\WINDOWS\crix.exe

2006-11-01 12:58 0 --a------ C:\WINDOWS\d3xc32.exe

2006-11-01 12:45 0 --a------ C:\WINDOWS\d3mc.exe

2006-11-01 11:46 0 --a------ C:\WINDOWS\system32\addiu32.exe

2006-11-01 10:54 0 --a------ C:\WINDOWS\system32\crpf.exe

2006-11-01 10:42 0 --a------ C:\WINDOWS\system32\iemy.exe

2006-11-01 08:55 0 --a------ C:\WINDOWS\system32\crxb32.exe

2006-11-01 06:11 0 --a------ C:\WINDOWS\system32\mfcjz.exe

2006-11-01 05:45 0 --a------ C:\WINDOWS\system32\d3zd.exe

2006-11-01 03:56 0 --a------ C:\WINDOWS\system32\apinm32.exe

2006-11-01 03:50 0 --a------ C:\WINDOWS\system32\addhl32.exe

2006-11-01 03:22 0 --a------ C:\WINDOWS\system32\apifz.exe

2006-11-01 01:01 0 --a------ C:\WINDOWS\mfces32.exe

2006-11-01 00:58 0 --a------ C:\WINDOWS\sdkvl32.exe

2006-11-01 00:53 0 --a------ C:\WINDOWS\sdktn.exe

2006-11-01 00:29 0 --a------ C:\WINDOWS\appoi32.exe

2006-10-31 23:39 0 --a------ C:\WINDOWS\system32\sdkgr.exe

2006-10-31 23:22 0 --a------ C:\WINDOWS\system32\crcu32.exe

2006-10-31 22:14 0 --a------ C:\WINDOWS\system32\mfcvh32.exe

2006-10-31 22:06 0 --a------ C:\WINDOWS\system32\sdklt32.exe

2006-10-31 22:02 0 --a------ C:\WINDOWS\netuz.exe

2006-10-31 19:34 0 --a------ C:\WINDOWS\system32\atlfw32.exe

2006-10-31 18:22 0 --a------ C:\WINDOWS\system32\ntcz32.exe

2006-10-31 17:33 0 --a------ C:\WINDOWS\mfcuu32.exe

2006-10-31 15:04 0 --a------ C:\WINDOWS\crdp.exe

2006-10-31 14:44 0 --a------ C:\WINDOWS\javabw32.exe

2006-10-31 14:17 0 --a------ C:\WINDOWS\system32\syssw.exe

2006-10-31 13:50 0 --a------ C:\WINDOWS\javafo32.exe

2006-10-31 12:22 0 --a------ C:\WINDOWS\system32\netjh32.exe

2006-10-31 12:09 0 --a------ C:\WINDOWS\apiyz.exe

2006-10-31 11:56 0 --a------ C:\WINDOWS\system32\ntrt.exe

2006-10-31 11:43 0 --a------ C:\WINDOWS\javaqw32.exe

2006-10-31 11:18 0 --a------ C:\WINDOWS\system32\apilb32.exe

2006-10-31 10:49 0 --a------ C:\WINDOWS\netqc32.exe

2006-10-31 10:49 0 --a------ C:\WINDOWS\mfcom32.exe

2006-10-31 10:15 0 --a------ C:\WINDOWS\atldh.exe

2006-10-31 10:02 0 --a------ C:\WINDOWS\crvg32.exe

2006-10-31 09:45 0 --a------ C:\WINDOWS\system32\mfcsg.exe

2006-10-31 09:36 0 --a------ C:\WINDOWS\mfcok32.exe

2006-10-31 09:32 0 --a------ C:\WINDOWS\winmf.exe

2006-10-31 09:14 0 --a------ C:\WINDOWS\system32\apipf.exe

2006-10-31 09:10 0 --a------ C:\WINDOWS\system32\winzb.exe

2006-10-31 09:07 0 --a------ C:\WINDOWS\d3yv32.exe

2006-10-31 08:24 0 --a------ C:\WINDOWS\system32\apiei.exe

2006-10-31 06:31 0 --a------ C:\WINDOWS\system32\msjv32.exe

2006-10-31 05:29 0 --a------ C:\WINDOWS\apivp.exe

2006-10-31 05:21 0 --a------ C:\WINDOWS\system32\javasb32.exe

2006-10-31 04:44 0 --a------ C:\WINDOWS\sdkge32.exe

2006-10-31 03:41 0 --a------ C:\WINDOWS\addkg32.exe

2006-10-31 03:10 0 --a------ C:\WINDOWS\system32\ipxy32.exe

2006-10-31 02:44 0 --a------ C:\WINDOWS\sysat32.exe

2006-10-31 01:35 0 --a------ C:\WINDOWS\system32\sysdn32.exe

2006-10-31 01:29 0 --a------ C:\WINDOWS\system32\crxm32.exe

2006-10-31 01:22 0 --a------ C:\WINDOWS\appyc.exe

2006-10-31 00:46 0 --a------ C:\WINDOWS\system32\addbu32.exe

2006-10-31 00:37 0 --a------ C:\WINDOWS\mfchu.exe

2006-10-31 00:06 0 --a------ C:\WINDOWS\netev.exe

2006-10-30 23:49 0 --a------ C:\WINDOWS\system32\iera32.exe

2006-10-30 23:21 0 --a------ C:\WINDOWS\system32\winyv32.exe

2006-10-30 23:21 0 --a------ C:\WINDOWS\javapk.exe

2006-10-30 22:06 0 --a------ C:\WINDOWS\ntrk.exe

2006-10-30 21:57 0 --a------ C:\WINDOWS\system32\ntwn32.exe

2006-10-30 21:57 0 --a------ C:\WINDOWS\sysjx32.exe

2006-10-30 21:33 0 --a------ C:\WINDOWS\system32\atlsy32.exe

2006-10-30 20:59 0 --a------ C:\WINDOWS\system32\apixn.exe

2006-10-30 20:53 0 --a------ C:\WINDOWS\iedw.exe

2006-10-30 19:46 0 --a------ C:\WINDOWS\d3iu32.exe

2006-10-30 19:22 0 --a------ C:\WINDOWS\system32\winto.exe

2006-10-30 19:04 0 --a------ C:\WINDOWS\apifw.exe

2006-10-30 18:55 0 --a------ C:\WINDOWS\mfcpq32.exe

2006-10-30 18:37 0 --a------ C:\WINDOWS\mfced32.exe

2006-10-30 18:32 0 --a------ C:\WINDOWS\sysdd32.exe

2006-10-30 18:31 0 --a------ C:\WINDOWS\netpn.exe

2006-10-30 18:20 0 --a------ C:\WINDOWS\atlyz32.exe

2006-10-30 17:51 0 --a------ C:\WINDOWS\system32\apidu.exe

2006-10-30 16:10 0 --a------ C:\WINDOWS\ipov32.exe

2006-10-30 16:09 0 --a------ C:\WINDOWS\crfn32.exe

2006-10-30 16:08 0 --a------ C:\WINDOWS\winjw32.exe

2006-10-30 15:32 0 --a------ C:\WINDOWS\javahe32.exe

2006-10-30 14:37 0 --a------ C:\WINDOWS\javams.exe

2006-10-30 14:22 0 --a------ C:\WINDOWS\system32\sdkcp.exe

2006-10-30 14:02 0 --a------ C:\WINDOWS\addcb.exe

2006-10-30 13:14 0 --a------ C:\WINDOWS\apinj.exe

2006-10-30 12:41 0 --a------ C:\WINDOWS\netxi.exe

2006-10-30 12:38 0 --a------ C:\WINDOWS\javadd32.exe

2006-10-30 12:04 0 --a------ C:\WINDOWS\msjy32.exe

2006-10-30 10:53 0 --a------ C:\WINDOWS\javamk32.exe

2006-10-30 10:08 0 --a------ C:\WINDOWS\system32\ntfn.exe

2006-10-30 09:02 0 --a------ C:\WINDOWS\system32\sysoq32.exe

2006-10-30 08:32 0 --a------ C:\WINDOWS\mfcvs32.exe

2006-10-30 08:29 0 --a------ C:\WINDOWS\ntxr32.exe

2006-10-30 07:13 0 --a------ C:\WINDOWS\ipwu.exe

2006-10-30 07:04 0 --a------ C:\WINDOWS\system32\syszi.exe

2006-10-30 06:50 0 --a------ C:\WINDOWS\system32\sysvt32.exe

2006-10-30 06:30 0 --a------ C:\WINDOWS\system32\addvv.exe

2006-10-30 06:18 0 --a------ C:\WINDOWS\mfcez32.exe

2006-10-30 06:16 0 --a------ C:\WINDOWS\javawh.exe

2006-10-30 03:55 0 --a------ C:\WINDOWS\sysua32.exe

2006-10-30 03:39 0 --a------ C:\WINDOWS\system32\ieoj.exe

2006-10-30 03:15 0 --a------ C:\WINDOWS\system32\javayi.exe

2006-10-30 03:08 0 --a------ C:\WINDOWS\msqc32.exe

2006-10-30 01:14 0 --a------ C:\WINDOWS\system32\d3kx32.exe

2006-10-30 00:56 0 --a------ C:\WINDOWS\mfcjk.exe

2006-10-29 23:38 0 --a------ C:\WINDOWS\syspx32.exe

2006-10-29 23:33 0 --a------ C:\WINDOWS\sdkfq32.exe

2006-10-29 23:32 0 --a------ C:\WINDOWS\ipvl.exe

2006-10-29 21:11 0 --a------ C:\WINDOWS\system32\javaam32.exe

2006-10-29 20:24 0 --a------ C:\WINDOWS\apptp.exe

2006-10-29 20:15 0 --a------ C:\WINDOWS\system32\mfcmw.exe

2006-10-29 18:47 0 --a------ C:\WINDOWS\system32\crxx32.exe

2006-10-29 18:42 0 --a------ C:\WINDOWS\iprc.exe

2006-10-29 17:01 0 --a------ C:\WINDOWS\system32\javasp.exe

2006-10-29 14:45 0 --a------ C:\WINDOWS\system32\apiki32.exe

2006-10-29 14:20 0 --a------ C:\WINDOWS\system32\addkk32.exe

2006-10-29 13:41 0 --a------ C:\WINDOWS\mfceq.exe

2006-10-29 13:05 0 --a------ C:\WINDOWS\system32\appmb.exe

2006-10-29 12:25 0 --a------ C:\WINDOWS\system32\winly.exe

2006-10-29 12:18 0 --a------ C:\WINDOWS\system32\adddd32.exe

2006-10-29 11:58 0 --a------ C:\WINDOWS\msom32.exe

2006-10-29 11:04 0 --a------ C:\WINDOWS\system32\ipkl.exe

2006-10-29 10:46 0 --a------ C:\WINDOWS\system32\mfcvw.exe

2006-10-29 10:36 0 --a------ C:\WINDOWS\mfczz.exe

2006-10-29 10:04 0 --a------ C:\WINDOWS\atlbk32.exe

2006-10-29 09:03 0 --a------ C:\WINDOWS\system32\msfa32.exe

2006-10-29 08:13 0 --a------ C:\WINDOWS\system32\atllh32.exe

2006-10-29 07:43 0 --a------ C:\WINDOWS\crpw32.exe

2006-10-29 06:15 0 --a------ C:\WINDOWS\d3mc32.exe

2006-10-29 05:32 0 --a------ C:\WINDOWS\winxf32.exe

2006-10-29 04:42 0 --a------ C:\WINDOWS\system32\ipak32.exe

2006-10-29 03:55 0 --a------ C:\WINDOWS\atlsy32.exe

2006-10-29 03:14 0 --a------ C:\WINDOWS\iejw32.exe

2006-10-29 02:59 0 --a------ C:\WINDOWS\apiex.exe

2006-10-29 02:56 0 --a------ C:\WINDOWS\system32\sdkks32.exe

2006-10-29 01:59 0 --a------ C:\WINDOWS\system32\ipuo.exe

2006-10-29 01:55 0 --a------ C:\WINDOWS\system32\ieip32.exe

2006-10-29 01:29 0 --a------ C:\WINDOWS\system32\ipyt32.exe

2006-10-29 00:40 0 --a------ C:\WINDOWS\sysxz.exe

2006-10-29 00:36 0 --a------ C:\WINDOWS\apidk.exe

2006-10-28 23:37 0 --a------ C:\WINDOWS\sysge.exe

2006-10-28 23:37 0 --a------ C:\WINDOWS\atlgq.exe

2006-10-28 22:19 0 --a------ C:\WINDOWS\system32\addli32.exe

2006-10-28 21:43 0 --a------ C:\WINDOWS\addgg.exe

2006-10-28 21:17 0 --a------ C:\WINDOWS\apiuk32.exe

2006-10-28 20:04 0 --a------ C:\WINDOWS\system32\netkj.exe

2006-10-28 19:59 0 --a------ C:\WINDOWS\appqc32.exe

2006-10-28 19:55 0 --a------ C:\WINDOWS\system32\apprb32.exe

2006-10-28 18:33 0 --a------ C:\WINDOWS\sdked32.exe

2006-10-28 16:57 0 --a------ C:\WINDOWS\system32\atlyn32.exe

2006-10-28 15:18 0 --a------ C:\WINDOWS\mfcff.exe

2006-10-28 14:44 0 --a------ C:\WINDOWS\system32\mfcxd32.exe

2006-10-28 10:54 0 --a------ C:\WINDOWS\atlkc32.exe

2006-10-28 09:00 0 --a------ C:\WINDOWS\system32\ievc.exe

2006-10-28 05:59 0 --a------ C:\WINDOWS\system32\addxv.exe

2006-10-28 05:29 0 --a------ C:\WINDOWS\system32\sysrw32.exe

2006-10-28 04:11 0 --a------ C:\WINDOWS\system32\adddw32.exe

2006-10-28 03:00 0 --a------ C:\WINDOWS\ntcd32.exe

2006-10-28 02:10 0 --a------ C:\WINDOWS\system32\addfc.exe

2006-10-28 01:37 0 --a------ C:\WINDOWS\system32\netog32.exe

2006-10-28 01:30 0 --a------ C:\WINDOWS\crkp.exe

2006-10-28 00:27 0 --a------ C:\WINDOWS\system32\winra.exe

2006-10-27 23:01 0 --a------ C:\WINDOWS\system32\appkz32.exe

2006-10-27 21:11 0 --a------ C:\WINDOWS\sysrj.exe

2006-10-27 20:26 0 --a------ C:\WINDOWS\system32\atlcy32.exe

2006-10-27 19:07 0 --a------ C:\WINDOWS\system32\ieqi32.exe

2006-10-27 18:45 0 --a------ C:\WINDOWS\atlvh32.exe

2006-10-27 16:02 0 --a------ C:\WINDOWS\apifl.exe

2006-10-27 15:56 0 --a------ C:\WINDOWS\javamj32.exe

2006-10-27 15:42 0 --a------ C:\WINDOWS\system32\ipzn32.exe

2006-10-27 15:34 0 --a------ C:\WINDOWS\sdkru32.exe

2006-10-27 14:55 0 --a------ C:\WINDOWS\system32\atlig32.exe

2006-10-27 14:15 0 --a------ C:\WINDOWS\crir.exe

2006-10-27 12:46 0 --a------ C:\WINDOWS\addjj32.exe

2006-10-27 12:07 0 --a------ C:\WINDOWS\ipkq.exe

2006-10-27 12:07 0 --a------ C:\WINDOWS\atlhv32.exe

2006-10-27 10:50 0 --a------ C:\WINDOWS\msuy32.exe

2006-10-27 10:05 0 --a------ C:\WINDOWS\sdkyg.exe

2006-10-27 08:38 0 --a------ C:\WINDOWS\ieto32.exe

2006-10-27 07:24 0 --a------ C:\WINDOWS\system32\ierm32.exe

2006-10-27 07:07 0 --a------ C:\WINDOWS\system32\ntcn32.exe

2006-10-27 05:28 0 --a------ C:\WINDOWS\ieee.exe

2006-10-27 04:52 0 --a------ C:\WINDOWS\system32\ntbb.exe

2006-10-27 04:47 0 --a------ C:\WINDOWS\system32\apitq32.exe

2006-10-27 03:57 0 --a------ C:\WINDOWS\system32\appco32.exe

2006-10-27 03:45 0 --a------ C:\WINDOWS\system32\netoo.exe

2006-10-27 03:35 0 --a------ C:\WINDOWS\system32\addze32.exe

2006-10-27 03:27 0 --a------ C:\WINDOWS\system32\atltd32.exe

2006-10-27 03:27 0 --a------ C:\WINDOWS\iere32.exe

2006-10-27 03:15 0 --a------ C:\WINDOWS\mfcmh.exe

2006-10-27 02:34 0 --a------ C:\WINDOWS\system32\ipxu.exe

2006-10-27 02:21 0 --a------ C:\WINDOWS\system32\mswx32.exe

2006-10-27 00:57 0 --a------ C:\WINDOWS\d3yy.exe

2006-10-27 00:46 0 --a------ C:\WINDOWS\mfcwm.exe

2006-10-27 00:38 0 --a------ C:\WINDOWS\apigg32.exe

2006-10-26 23:16 0 --a------ C:\WINDOWS\system32\croq32.exe

2006-10-26 23:05 0 --a------ C:\WINDOWS\ieqz32.exe

2006-10-26 22:36 0 --a------ C:\WINDOWS\system32\ntca.exe

2006-10-26 20:44 0 --a------ C:\WINDOWS\appub.exe

2006-10-26 20:00 0 --a------ C:\WINDOWS\system32\msah.exe

2006-10-26 19:15 0 --a------ C:\WINDOWS\atlys.exe

2006-10-26 18:32 0 --a------ C:\WINDOWS\system32\ipwo.exe

2006-10-26 18:22 0 --a------ C:\WINDOWS\iplb.exe

2006-10-26 17:28 0 --a------ C:\WINDOWS\system32\appnv.exe

2006-10-26 17:09 0 --a------ C:\WINDOWS\apijj.exe

2006-10-26 15:20 0 --a------ C:\WINDOWS\mfcyg.exe

2006-10-26 15:16 0 --a------ C:\WINDOWS\system32\netpi32.exe

2006-10-26 14:02 0 --a------ C:\WINDOWS\winin32.exe

2006-10-26 12:56 0 --a------ C:\WINDOWS\system32\atlkn32.exe

2006-10-26 12:31 0 --a------ C:\WINDOWS\system32\appej32.exe

2006-10-26 11:38 0 --a------ C:\WINDOWS\ntet32.exe

2006-10-26 10:58 0 --a------ C:\WINDOWS\crqb32.exe

2006-10-26 10:01 0 --a------ C:\WINDOWS\appju32.exe

2006-10-26 09:57 0 --a------ C:\WINDOWS\system32\ntxk.exe

2006-10-26 09:32 0 --a------ C:\WINDOWS\system32\crfr32.exe

2006-10-26 08:56 0 --a------ C:\WINDOWS\mslr32.exe

2006-10-26 06:57 0 --a------ C:\WINDOWS\ierq32.exe

2006-10-26 05:32 0 --a------ C:\WINDOWS\ntia.exe

2006-10-26 05:21 0 --a------ C:\WINDOWS\system32\javabe32.exe

2006-10-26 05:16 0 --a------ C:\WINDOWS\d3uy32.exe

2006-10-26 05:12 0 --a------ C:\WINDOWS\system32\ntru.exe

2006-10-26 04:54 0 --a------ C:\WINDOWS\sysvv32.exe

2006-10-26 04:54 0 --a------ C:\WINDOWS\addrh32.exe

2006-10-26 04:12 0 --a------ C:\WINDOWS\system32\ipak.exe

2006-10-26 03:53 0 --a------ C:\WINDOWS\msma.exe

2006-10-26 02:33 0 --a------ C:\WINDOWS\system32\d3yw.exe

2006-10-26 02:18 0 --a------ C:\WINDOWS\system32\sdkam.exe

2006-10-26 01:09 0 --a------ C:\WINDOWS\syssi32.exe

2006-10-26 00:16 0 --a------ C:\WINDOWS\sdkwa32.exe

2006-10-25 23:37 0 --a------ C:\WINDOWS\system32\mfccc.exe

2006-10-25 23:37 0 --a------ C:\WINDOWS\d3tx32.exe

2006-10-25 22:54 0 --a------ C:\WINDOWS\system32\d3mu.exe

2006-10-25 19:42 0 --a------ C:\WINDOWS\system32\apptw32.exe

2006-10-25 19:07 0 --a------ C:\WINDOWS\system32\netba.exe

2006-10-25 18:00 0 --a------ C:\WINDOWS\d3qi.exe

2006-10-25 17:13 0 --a------ C:\WINDOWS\wincq.exe

2006-10-25 16:18 0 --a------ C:\WINDOWS\mfctr.exe

2006-10-25 16:14 0 --a------ C:\WINDOWS\system32\neton32.exe

2006-10-25 14:48 0 --a------ C:\WINDOWS\criu.exe

2006-10-25 13:31 0 --a------ C:\WINDOWS\system32\mfcie32.exe

2006-10-25 13:17 0 --a------ C:\WINDOWS\javaef.exe

2006-10-25 12:16 0 --a------ C:\WINDOWS\system32\sdkib32.exe

2006-10-25 11:43 0 --a------ C:\WINDOWS\d3hs.exe

2006-10-25 11:34 0 --a------ C:\WINDOWS\sdkcu.exe

2006-10-25 11:09 0 --a------ C:\WINDOWS\system32\sdkgw32.exe

2006-10-25 10:35 0 --a------ C:\WINDOWS\system32\msap32.exe

2006-10-25 10:22 0 --a------ C:\WINDOWS\system32\javavt32.exe

2006-10-25 10:18 0 --a------ C:\WINDOWS\system32\appwe32.exe

2006-10-25 09:28 0 --a------ C:\WINDOWS\addyt32.exe

2006-10-25 09:21 0 --a------ C:\WINDOWS\sdkzi32.exe

2006-10-25 09:00 0 --a------ C:\WINDOWS\system32\addzz.exe

2006-10-25 08:18 0 --a------ C:\WINDOWS\atljs32.exe

2006-10-25 07:06 0 --a------ C:\WINDOWS\system32\netwm32.exe

2006-10-25 07:00 0 --a------ C:\WINDOWS\system32\apikk.exe

2006-10-25 03:04 0 --a------ C:\WINDOWS\system32\atlte32.exe

2006-10-25 02:24 0 --a------ C:\WINDOWS\netem32.exe

2006-10-25 02:21 0 --a------ C:\WINDOWS\system32\javakq32.exe

2006-10-25 01:07 0 --a------ C:\WINDOWS\system32\mswm32.exe

2006-10-25 00:59 0 --a------ C:\WINDOWS\system32\ieuj32.exe

2006-10-25 00:49 0 --a------ C:\WINDOWS\apivg.exe

2006-10-25 00:31 0 --a------ C:\WINDOWS\system32\apiaj32.exe

2006-10-25 00:27 0 --a------ C:\WINDOWS\atlnf.exe

2006-10-25 00:16 0 --a------ C:\WINDOWS\addwh.exe

2006-10-24 23:05 0 --a------ C:\WINDOWS\sdkvp.exe

2006-10-24 22:41 0 --a------ C:\WINDOWS\ipju32.exe

2006-10-24 21:12 0 --a------ C:\WINDOWS\d3qp.exe

2006-10-24 20:57 0 --a------ C:\WINDOWS\system32\msbd.exe

2006-10-24 19:06 0 --a------ C:\WINDOWS\d3fs.exe

2006-10-24 18:51 0 --a------ C:\WINDOWS\nthi.exe

2006-10-24 18:48 0 --a------ C:\WINDOWS\mfclb.exe

2006-10-24 18:12 0 --a------ C:\WINDOWS\javabv32.exe

2006-10-24 17:38 0 --a------ C:\WINDOWS\ntld32.exe

2006-10-24 17:34 0 --a------ C:\WINDOWS\system32\ipqz32.exe

2006-10-24 16:59 0 --a------ C:\WINDOWS\system32\iegq32.exe

2006-10-24 16:38 0 --a------ C:\WINDOWS\system32\msxs32.exe

2006-10-24 16:04 0 --a------ C:\WINDOWS\apidv32.exe

2006-10-24 15:45 0 --a------ C:\WINDOWS\system32\netbd.exe

2006-10-24 15:19 0 --a------ C:\WINDOWS\system32\appff32.exe

2006-10-24 15:03 0 --a------ C:\WINDOWS\system32\mfcyh32.exe

2006-10-24 15:02 0 --a------ C:\WINDOWS\system32\addpc.exe

2006-10-24 14:12 0 --a------ C:\WINDOWS\netov32.exe

2006-10-24 14:00 0 --a------ C:\WINDOWS\sdkfs32.exe

2006-10-24 13:33 0 --a------ C:\WINDOWS\apigb.exe

2006-10-24 12:39 0 --a------ C:\WINDOWS\system32\d3st32.exe

2006-10-24 12:21 0 --a------ C:\WINDOWS\addwt32.exe

2006-10-24 12:12 0 --a------ C:\WINDOWS\addcp.exe

2006-10-24 11:24 0 --a------ C:\WINDOWS\system32\atlua32.exe

2006-10-24 10:43 0 --a------ C:\WINDOWS\system32\sdkrp32.exe

2006-10-24 10:13 0 --a------ C:\WINDOWS\system32\winwr32.exe

2006-10-24 09:46 0 --a------ C:\WINDOWS\iehq32.exe

2006-10-24 08:38 0 --a------ C:\WINDOWS\system32\nthn.exe

2006-10-24 08:32 0 --a------ C:\WINDOWS\system32\netcf32.exe

2006-10-24 08:00 0 --a------ C:\WINDOWS\system32\mfcey32.exe

2006-10-24 07:30 0 --a------ C:\WINDOWS\apiti32.exe

2006-10-24 07:24 0 --a------ C:\WINDOWS\system32\addrd.exe

2006-10-24 05:57 0 --a------ C:\WINDOWS\system32\sysna32.exe

2006-10-24 05:10 0 --a------ C:\WINDOWS\ipid.exe

2006-10-24 04:52 0 --a------ C:\WINDOWS\crcu32.exe

2006-10-24 04:35 0 --a------ C:\WINDOWS\system32\applr.exe

2006-10-24 02:02 0 --a------ C:\WINDOWS\sdkaf32.exe

2006-10-24 01:55 0 --a------ C:\WINDOWS\mfcsq32.exe

2006-10-24 01:27 0 --a------ C:\WINDOWS\system32\mfcfh32.exe

2006-10-23 22:49 0 --a------ C:\WINDOWS\msbv.exe

2006-10-23 21:34 0 --a------ C:\WINDOWS\system32\iebf32.exe

2006-10-23 21:30 0 --a------ C:\WINDOWS\wingt32.exe

2006-10-23 21:11 0 --a------ C:\WINDOWS\system32\addvi32.exe

2006-10-23 20:41 0 --a------ C:\WINDOWS\netxo32.exe

2006-10-23 19:47 0 --a------ C:\WINDOWS\sdkki32.exe

2006-10-23 19:36 0 --a------ C:\WINDOWS\appwb.exe

2006-10-23 17:46 0 --a------ C:\WINDOWS\system32\netpv32.exe

2006-10-23 17:17 0 --a------ C:\WINDOWS\system32\sysmv32.exe

2006-10-23 16:56 0 --a------ C:\WINDOWS\sdkco32.exe

2006-10-23 16:49 0 --a------ C:\WINDOWS\mfcnj32.exe

2006-10-23 16:48 0 --a------ C:\WINDOWS\system32\winkf.exe

2006-10-23 16:40 0 --a------ C:\WINDOWS\d3qx.exe

2006-10-23 15:43 0 --a------ C:\WINDOWS\iprh32.exe

2006-10-23 15:38 0 --a------ C:\WINDOWS\system32\javavq32.exe

2006-10-23 15:15 0 --a------ C:\WINDOWS\crjz.exe

2006-10-23 15:00 0 --a------ C:\WINDOWS\iekv32.exe

2006-10-23 14:58 0 --a------ C:\WINDOWS\system32\appyg32.exe

2006-10-23 14:45 0 --a------ C:\WINDOWS\appii32.exe

2006-10-23 14:13 0 --a------ C:\WINDOWS\system32\netdy.exe

2006-10-23 13:00 0 --a------ C:\WINDOWS\winiz32.exe

2006-10-23 12:59 0 --a------ C:\WINDOWS\system32\ipdl.exe

2006-10-23 12:39 0 --a------ C:\WINDOWS\system32\crow32.exe

2006-10-23 11:50 0 --a------ C:\WINDOWS\system32\appzp32.exe

2006-10-23 10:47 0 --a------ C:\WINDOWS\nttq.exe

2006-10-23 10:31 0 --a------ C:\WINDOWS\system32\atlky.exe

2006-10-23 10:27 0 --a------ C:\WINDOWS\atlff.exe

2006-10-23 09:30 0 --a------ C:\WINDOWS\iphs32.exe

2006-10-23 09:10 0 --a------ C:\WINDOWS\iesi32.exe

2006-10-23 07:49 0 --a------ C:\WINDOWS\system32\ierq32.exe

2006-10-23 06:54 0 --a------ C:\WINDOWS\system32\ipfc.exe

2006-10-23 06:21 0 --a------ C:\WINDOWS\nethi32.exe

2006-10-23 05:33 0 --a------ C:\WINDOWS\system32\ntzd.exe

2006-10-23 05:33 0 --a------ C:\WINDOWS\cree.exe

2006-10-23 05:29 0 --a------ C:\WINDOWS\appbw.exe

2006-10-23 04:32 0 --a------ C:\WINDOWS\system32\d3du32.exe

2006-10-23 04:03 0 --a------ C:\WINDOWS\addqx.exe

2006-10-23 03:39 0 --a------ C:\WINDOWS\crpf32.exe

2006-10-23 03:25 0 --a------ C:\WINDOWS\atlrp.exe

2006-10-23 02:40 0 --a------ C:\WINDOWS\system32\mfcur32.exe

2006-10-23 02:26 0 --a------ C:\WINDOWS\system32\crmy.exe

2006-10-23 02:13 0 --a------ C:\WINDOWS\crck32.exe

2006-10-23 01:53 0 --a------ C:\WINDOWS\mfcft.exe

2006-10-23 01:26 0 --a------ C:\WINDOWS\system32\ntir32.exe

2006-10-23 01:03 0 --a------ C:\WINDOWS\ntpp32.exe

2006-10-23 00:35 0 --a------ C:\WINDOWS\system32\apppr32.exe

2006-10-22 22:30 0 --a------ C:\WINDOWS\system32\apipt.exe

2006-10-22 21:29 0 --a------ C:\WINDOWS\system32\iehe.exe

2006-10-22 21:28 0 --a------ C:\WINDOWS\system32\cryh32.exe

2006-10-22 21:22 0 --a------ C:\WINDOWS\ipsf32.exe

2006-10-22 19:58 0 --a------ C:\WINDOWS\sdkuq.exe

2006-10-22 19:56 0 --a------ C:\WINDOWS\system32\addgp.exe

2006-10-22 19:25 0 --a------ C:\WINDOWS\system32\mfcve32.exe

2006-10-22 18:54 0 --a------ C:\WINDOWS\croz32.exe

2006-10-22 18:40 0 --a------ C:\WINDOWS\wingw32.exe

2006-10-22 16:33 0 --a------ C:\WINDOWS\sysay32.exe

2006-10-22 16:23 0 --a------ C:\WINDOWS\mshb.exe

2006-10-22 16:23 0 --a------ C:\WINDOWS\ipwn32.exe

2006-10-22 16:02 0 --a------ C:\WINDOWS\system32\appow32.exe

2006-10-22 15:20 0 --a------ C:\WINDOWS\system32\d3nh32.exe

2006-10-22 14:06 0 --a------ C:\WINDOWS\system32\sdkrr32.exe

2006-10-22 13:49 0 --a------ C:\WINDOWS\system32\netmr.exe

2006-10-22 13:49 0 --a------ C:\WINDOWS\d3pw32.exe

2006-10-22 13:44 0 --a------ C:\WINDOWS\system32\winyn.exe

2006-10-22 13:28 0 --a------ C:\WINDOWS\system32\msyi.exe

2006-10-22 13:02 0 --a------ C:\WINDOWS\system32\sysae.exe

2006-10-22 12:53 0 --a------ C:\WINDOWS\system32\nthj.exe

2006-10-22 12:06 0 --a------ C:\WINDOWS\javanf32.exe

2006-10-22 11:27 0 --a------ C:\WINDOWS\ntel.exe

2006-10-22 09:11 0 --a------ C:\WINDOWS\system32\sdkeu32.exe

2006-10-22 09:07 0 --a------ C:\WINDOWS\system32\winqd.exe

2006-10-22 09:01 0 --a------ C:\WINDOWS\system32\javash.exe

2006-10-22 08:40 0 --a------ C:\WINDOWS\system32\sysps32.exe

2006-10-22 08:21 0 --a------ C:\WINDOWS\atlhm.exe

2006-10-22 07:34 0 --a------ C:\WINDOWS\ipgi32.exe

2006-10-22 05:59 0 --a------ C:\WINDOWS\ntxm32.exe

2006-10-22 04:32 0 --a------ C:\WINDOWS\addcn32.exe

2006-10-22 04:18 0 --a------ C:\WINDOWS\netzd32.exe

2006-10-22 03:58 0 --a------ C:\WINDOWS\system32\apicz.exe

2006-10-22 03:11 0 --a------ C:\WINDOWS\system32\ntyl32.exe

2006-10-22 02:56 0 --a------ C:\WINDOWS\d3wz32.exe

2006-10-22 01:18 0 --a------ C:\WINDOWS\ntng32.exe

2006-10-22 01:13 0 --a------ C:\WINDOWS\system32\javapu.exe

2006-10-21 23:15 0 --a------ C:\WINDOWS\atlwi32.exe

2006-10-21 22:14 0 --a------ C:\WINDOWS\system32\d3gs32.exe

2006-10-21 22:01 0 --a------ C:\WINDOWS\sdkbx32.exe

2006-10-21 21:19 0 --a------ C:\WINDOWS\system32\iena.exe

2006-10-21 20:07 0 --a------ C:\WINDOWS\system32\syspv32.exe

2006-10-21 19:23 0 --a------ C:\WINDOWS\system32\winje32.exe

2006-10-21 19:18 0 --a------ C:\WINDOWS\system32\ipmq.exe

2006-10-21 18:17 0 --a------ C:\WINDOWS\winwa.exe

2006-10-21 16:31 0 --a------ C:\WINDOWS\sysei32.exe

2006-10-21 15:52 0 --a------ C:\WINDOWS\system32\netkh32.exe

2006-10-21 15:49 0 --a------ C:\WINDOWS\netvc32.exe

2006-10-21 15:40 0 --a------ C:\WINDOWS\apigw.exe

2006-10-21 15:36 0 --a------ C:\WINDOWS\system32\d3bp.exe

2006-10-21 15:34 0 --a------ C:\WINDOWS\d3ki32.exe

2006-10-21 15:27 0 --a------ C:\WINDOWS\system32\ntcp.exe

2006-10-21 14:09 0 --a------ C:\WINDOWS\system32\appwb32.exe

2006-10-21 13:49 0 --a------ C:\WINDOWS\ieik32.exe

2006-10-21 13:23 0 --a------ C:\WINDOWS\system32\wingd32.exe

2006-10-21 13:18 0 --a------ C:\WINDOWS\javaew32.exe

2006-10-21 12:55 0 --a------ C:\WINDOWS\ntek32.exe

2006-10-21 12:14 0 --a------ C:\WINDOWS\system32\crkb32.exe

2006-10-21 11:04 0 --a------ C:\WINDOWS\javafc.exe

2006-10-21 10:40 0 --a------ C:\WINDOWS\system32\mscc32.exe

2006-10-21 09:44 0 --a------ C:\WINDOWS\ipjj32.exe

2006-10-21 09:31 0 --a------ C:\WINDOWS\sdkei32.exe

2006-10-21 09:18 0 --a------ C:\WINDOWS\apinz.exe

2006-10-21 09:09 0 --a------ C:\WINDOWS\javahp.exe

2006-10-21 08:35 0 --a------ C:\WINDOWS\system32\ntgi32.exe

2006-10-21 08:27 0 --a------ C:\WINDOWS\system32\apikj.exe

2006-10-21 08:22 0 --a------ C:\WINDOWS\system32\mszt32.exe

2006-10-21 07:47 0 --a------ C:\WINDOWS\addhx.exe

2006-10-21 05:50 0 --a------ C:\WINDOWS\system32\d3yt.exe

2006-10-21 05:34 0 --a------ C:\WINDOWS\javaez.exe

2006-10-21 05:21 0 --a------ C:\WINDOWS\system32\crba.exe

2006-10-21 05:10 0 --a------ C:\WINDOWS\system32\d3mp32.exe

2006-10-21 04:15 0 --a------ C:\WINDOWS\iefd.exe

2006-10-21 03:34 0 --a------ C:\WINDOWS\system32\winlz.exe

2006-10-21 03:19 0 --a------ C:\WINDOWS\winfj.exe

2006-10-21 02:46 0 --a------ C:\WINDOWS\system32\crgx32.exe

2006-10-21 01:02 0 --a------ C:\WINDOWS\javaxh.exe

2006-10-21 00:40 0 --a------ C:\WINDOWS\wincg.exe

2006-10-20 23:19 0 --a------ C:\WINDOWS\sdkxx.exe

2006-10-20 22:48 0 --a------ C:\WINDOWS\mswm32.exe

2006-10-20 21:29 0 --a------ C:\WINDOWS\netyt.exe

2006-10-20 21:11 0 --a------ C:\WINDOWS\syshs.exe

2006-10-20 20:24 0 --a------ C:\WINDOWS\iecx32.exe

2006-10-20 19:26 0 --a------ C:\WINDOWS\system32\ieov.exe

2006-10-20 19:24 0 --a------ C:\WINDOWS\sysoc32.exe

2006-10-20 19:03 0 --a------ C:\WINDOWS\ipkx32.exe

2006-10-20 19:03 0 --a------ C:\WINDOWS\atlzc32.exe

2006-10-20 18:49 0 --a------ C:\WINDOWS\atlgt.exe

2006-10-20 17:58 0 --a------ C:\WINDOWS\system32\ipax32.exe

2006-10-20 17:42 0 --a------ C:\WINDOWS\system32\appzf32.exe

2006-10-20 16:00 0 --a------ C:\WINDOWS\system32\mfcxu.exe

2006-10-20 15:54 0 --a------ C:\WINDOWS\system32\winyw32.exe

2006-10-20 14:38 0 --a------ C:\WINDOWS\javatd.exe

2006-10-20 13:38 0 --a------ C:\WINDOWS\system32\sdkwv.exe

2006-10-20 13:03 0 --a------ C:\WINDOWS\sdkwx32.exe

2006-10-20 12:34 0 --a------ C:\WINDOWS\mfcqv32.exe

2006-10-20 12:23 0 --a------ C:\WINDOWS\netpn32.exe

2006-10-20 11:14 0 --a------ C:\WINDOWS\system32\sysxe32.exe

2006-10-20 10:36 0 --a------ C:\WINDOWS\system32\appfw32.exe

2006-10-20 10:21 0 --a------ C:\WINDOWS\system32\sdkzf32.exe

2006-10-20 09:07 0 --a------ C:\WINDOWS\nethz.exe

2006-10-20 09:05 0 --a------ C:\WINDOWS\system32\atlui32.exe

2006-10-20 08:43 0 --a------ C:\WINDOWS\system32\netnf.exe

2006-10-20 08:43 0 --a------ C:\WINDOWS\ieea.exe

2006-10-20 06:15 0 --a------ C:\WINDOWS\system32\apiod32.exe

2006-10-20 05:54 0 --a------ C:\WINDOWS\system32\appbi32.exe

2006-10-20 05:14 0 --a------ C:\WINDOWS\system32\iekb32.exe

2006-10-20 04:38 0 --a------ C:\WINDOWS\apirh.exe

2006-10-20 04:21 0 --a------ C:\WINDOWS\system32\atlsm32.exe

2006-10-20 03:48 0 --a------ C:\WINDOWS\ntcp.exe

2006-10-20 03:10 0 --a------ C:\WINDOWS\system32\ipbf32.exe

2006-10-20 02:38 716800 --a------ C:\WINDOWS\system32\sxs.dll

2006-10-20 02:24 0 --a------ C:\WINDOWS\addnm32.exe

2006-10-20 02:19 0 --a------ C:\WINDOWS\msjp32.exe

2006-10-20 02:03 0 --a------ C:\WINDOWS\netcg.exe

2006-10-19 23:41 0 --a------ C:\WINDOWS\system32\craz32.exe

2006-10-19 23:18 0 --a------ C:\WINDOWS\sdkuv32.exe

2006-10-19 23:14 0 --a------ C:\WINDOWS\d3bb32.exe

2006-10-19 23:08 0 --a------ C:\WINDOWS\ieqe32.exe

2006-10-19 22:32 0 --a------ C:\WINDOWS\nthx32.exe

2006-10-19 21:37 0 --a------ C:\WINDOWS\system32\mfcpd32.exe

2006-10-19 21:13 0 --a------ C:\WINDOWS\system32\sdkrl.exe

2006-10-19 19:57 0 --a------ C:\WINDOWS\d3xm.exe

2006-10-19 18:31 0 --a------ C:\WINDOWS\ieyc.exe

2006-10-19 18:00 0 --a------ C:\WINDOWS\syseb.exe

2006-10-19 17:47 0 --a------ C:\WINDOWS\crby32.exe

2006-10-19 17:39 0 --a------ C:\WINDOWS\sdktz32.exe

2006-10-19 16:36 0 --a------ C:\WINDOWS\system32\appgj32.exe

2006-10-19 16:06 0 --a------ C:\WINDOWS\system32\ipnn.exe

2006-10-19 15:42 0 --a------ C:\WINDOWS\atltg32.exe

2006-10-19 15:40 0 --a------ C:\WINDOWS\system32\crbr32.exe

2006-10-19 14:32 0 --a------ C:\WINDOWS\system32\winbj32.exe

2006-10-19 12:39 0 --a------ C:\WINDOWS\system32\javazz.exe

2006-10-19 11:16 0 --a------ C:\WINDOWS\system32\appdh.exe

2006-10-19 11:10 0 --a------ C:\WINDOWS\sdkjx.exe

2006-10-19 10:53 0 --a------ C:\WINDOWS\system32\ntmj32.exe

2006-10-19 10:13 0 --a------ C:\WINDOWS\system32\sysgo32.exe

2006-10-19 09:17 0 --a------ C:\WINDOWS\system32\javapx.exe

2006-10-19 09:15 0 --a------ C:\WINDOWS\apiun32.exe

2006-10-19 09:05 0 --a------ C:\WINDOWS\system32\ipql.exe

2006-10-19 08:27 0 --a------ C:\WINDOWS\sdksq.exe

2006-10-19 07:56 0 --a------ C:\WINDOWS\addub.exe

2006-10-19 07:47 0 --a------ C:\WINDOWS\sdktx32.exe

2006-10-19 07:26 0 --a------ C:\WINDOWS\system32\netjf.exe

2006-10-19 07:10 0 --a------ C:\WINDOWS\atldb32.exe

2006-10-19 07:06 0 --a------ C:\WINDOWS\system32\sysbx.exe

2006-10-19 06:53 0 --a------ C:\WINDOWS\mfclm.exe

2006-10-19 06:33 0 --a------ C:\WINDOWS\javaul32.exe

2006-10-19 06:28 0 --a------ C:\WINDOWS\sysmy32.exe

2006-10-19 05:57 0 --a------ C:\WINDOWS\netvt32.exe

2006-10-19 04:50 0 --a------ C:\WINDOWS\system32\winsq32.exe

2006-10-19 04:30 0 --a------ C:\WINDOWS\system32\d3bg32.exe

2006-10-19 02:44 0 --a------ C:\WINDOWS\ntiy.exe

2006-10-19 02:17 0 --a------ C:\WINDOWS\mfcih32.exe

2006-10-19 01:10 0 --a------ C:\WINDOWS\d3jo.exe

2006-10-19 00:56 0 --a------ C:\WINDOWS\system32\appud32.exe

2006-10-19 00:55 0 --a------ C:\WINDOWS\sysky.exe

2006-10-19 00:22 0 --a------ C:\WINDOWS\system32\apihi.exe

2006-10-18 23:55 0 --a------ C:\WINDOWS\system32\sdkyh.exe

2006-10-18 23:45 0 --a------ C:\WINDOWS\sdksr32.exe

2006-10-18 23:20 0 --a------ C:\WINDOWS\appbr.exe

2006-10-18 23:06 0 --a------ C:\WINDOWS\crqv32.exe

2006-10-18 22:22 0 --a------ C:\WINDOWS\system32\ipfm32.exe

2006-10-18 21:58 8704 --a------ C:\WINDOWS\system32\wdfmgr.exe

2006-10-18 21:58 8704 --a------ C:\WINDOWS\system32\uwdf.exe

2006-10-18 21:52 0 --a------ C:\WINDOWS\appdp.exe

2006-10-18 21:47 991744 --a------ C:\WINDOWS\system32\drmv2clt.dll

2006-10-18 21:47 937984 --a------ C:\WINDOWS\system32\wmnetmgr.dll

2006-10-18 21:47 767488 --------- C:\WINDOWS\system32\wmvsencd.dll

2006-10-18 21:47 757248 --a------ C:\WINDOWS\system32\wmadmod.dll

2006-10-18 21:47 656896 --------- C:\WINDOWS\system32\wmvxencd.dll

2006-10-18 21:47 63488 --a------ C:\WINDOWS\system32\wpdmtpus.dll

2006-10-18 21:47 629760 --a------ C:\WINDOWS\system32\wpd_ci.dll

2006-10-18 21:47 613376 --------- C:\WINDOWS\system32\wmpmde.dll

2006-10-18 21:47 603648 --a------ C:\WINDOWS\system32\wmspdmod.dll

2006-10-18 21:47 542720 --a------ C:\WINDOWS\system32\blackbox.dll

2006-10-18 21:47 535040 --------- C:\WINDOWS\system32\wmdrmsdk.dll

2006-10-18 21:47 429056 --a------ C:\WINDOWS\system32\wmdrmdev.dll

2006-10-18 21:47 414208 --a------ C:\WINDOWS\system32\msscp.dll

2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wmvdmoe2.dll

2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wmvdmod.dll

2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wmvadve.dll

2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wmvadvd.dll

2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wmsdmoe2.dll

2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wmsdmod.dll

2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wdfapi.dll

2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\mpg4dmod.dll

2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\mp4sdmod.dll

2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\mp43dmod.dll

2006-10-18 21:47 37376 --a------ C:\WINDOWS\system32\wmdmps.dll

2006-10-18 21:47 35840 --a------ C:\WINDOWS\system32\wpdconns.dll

2006-10-18 21:47 356352 --a------ C:\WINDOWS\system32\wpdsp.dll

2006-10-18 21:47 348672 --a------ C:\WINDOWS\system32\wmdrmnet.dll

2006-10-18 21:47 33792 --a------ C:\WINDOWS\system32\wmdmlog.dll

2006-10-18 21:47 321536 --a------ C:\WINDOWS\system32\mswmdm.dll

2006-10-18 21:47 317440 --------- C:\WINDOWS\system32\mp4sdecd.dll

2006-10-18 21:47 314880 --a------ C:\WINDOWS\system32\wmpdxm.dll

2006-10-18 21:47 295936 --a------ C:\WINDOWS\system32\wmpeffects.dll

2006-10-18 21:47 284160 --a------ C:\WINDOWS\system32\portabledeviceapi.dll

2006-10-18 21:47 276992 --a------ C:\WINDOWS\system32\audiodev.dll

2006-10-18 21:47 27136 --a------ C:\WINDOWS\system32\mspmsnsv.dll

2006-10-18 21:47 2603008 --------- C:\WINDOWS\system32\wpdshext.dll

2006-10-18 21:47 259072 --------- C:\WINDOWS\system32\mpg4decd.dll

2006-10-18 21:47 259072 --------- C:\WINDOWS\system32\mp43decd.dll

2006-10-18 21:47 2450944 --a------ C:\WINDOWS\system32\wmvcore.dll

2006-10-18 21:47 242688 --a------ C:\WINDOWS\system32\wmpasf.dll

2006-10-18 21:47 229376 --a------ C:\WINDOWS\system32\cewmdm.dll

2006-10-18 21:47 222208 --a------ C:\WINDOWS\system32\wmasf.dll

2006-10-18 21:47 212992 --a------ C:\WINDOWS\system32\mfplat.dll

2006-10-18 21:47 211456 --a------ C:\WINDOWS\system32\qasf.dll

2006-10-18 21:47 204288 --a------ C:\WINDOWS\system32\wmpsrcwp.dll

2006-10-18 21:47 199168 --------- C:\WINDOWS\system32\portabledevicewmdrm.dll

2006-10-18 21:47 179712 --a------ C:\WINDOWS\system32\msnetobj.dll

2006-10-18 21:47 175616 --a------ C:\WINDOWS\system32\mspmsp.dll

2006-10-18 21:47 166912 --a------ C:\WINDOWS\system32\portabledevicetypes.dll

2006-10-18 21:47 1661440 --a------ C:\WINDOWS\system32\wmpencen.dll

2006-10-18 21:47 1574912 --------- C:\WINDOWS\system32\wmvencod.dll

2006-10-18 21:47 157184 --a------ C:\WINDOWS\system32\wmidx.dll

2006-10-18 21:47 154624 --a------ C:\WINDOWS\system32\wpdmtp.dll

2006-10-18 21:47 1543680 --------- C:\WINDOWS\system32\wmvdecod.dll

2006-10-18 21:47 1382912 --------- C:\WINDOWS\system32\wmvsdecd.dll

2006-10-18 21:47 133632 --a------ C:\WINDOWS\system32\wpdshserviceobj.dll

2006-10-18 21:47 1329152 --a------ C:\WINDOWS\system32\wmspdmoe.dll

2006-10-18 21:47 132096 --------- C:\WINDOWS\system32\portabledevicewiacompat.dll

2006-10-18 21:47 130048 --a------ C:\WINDOWS\system32\wmpps.dll

2006-10-18 21:47 11264 --a------ C:\WINDOWS\system32\laprxy.dll

2006-10-18 21:47 1117696 --a------ C:\WINDOWS\system32\wmadmoe.dll

2006-10-18 21:47 101888 --------- C:\WINDOWS\system32\portabledeviceclassextension.dll

2006-10-18 21:13 0 --a------ C:\WINDOWS\system32\iefx.exe

2006-10-18 21:12 0 --a------ C:\WINDOWS\system32\javaim.exe

2006-10-18 21:02 0 --a------ C:\WINDOWS\system32\ieup.exe

2006-10-18 20:56 0 --a------ C:\WINDOWS\system32\ntmv.exe

2006-10-18 20:55 0 --a------ C:\WINDOWS\system32\iejr32.exe

2006-10-18 20:46 0 --a------ C:\WINDOWS\system32\msem.exe

2006-10-18 20:07 0 --a------ C:\WINDOWS\ntcv.exe

2006-10-18 20:03 100864 --a------ C:\WINDOWS\system32\logagent.exe

2006-10-18 20:00 249856 --------- C:\WINDOWS\system32\drmupgds.exe

2006-10-18 20:00 17408 --------- C:\WINDOWS\system32\wpdshextautoplay.exe

2006-10-18 17:45 0 --a------ C:\WINDOWS\mstv.exe

2006-10-18 17:07 0 --a------ C:\WINDOWS\crqw.exe

2006-10-18 16:56 0 --a------ C:\WINDOWS\system32\syscb.exe

2006-10-18 15:19 0 --a------ C:\WINDOWS\appcj.exe

2006-10-18 15:02 0 --a------ C:\WINDOWS\system32\mspy.exe

2006-10-18 14:43 0 --a------ C:\WINDOWS\ipux32.exe

2006-10-18 14:37 0 --a------ C:\WINDOWS\system32\d3bu.exe

2006-10-18 14:29 0 --a------ C:\WINDOWS\system32\syszx.exe

2006-10-18 13:58 0 --a------ C:\WINDOWS\addkb32.exe

2006-10-18 13:09 0 --a------ C:\WINDOWS\mfcko.exe

2006-10-18 11:27 0 --a------ C:\WINDOWS\system32\d3uk32.exe

2006-10-18 11:10 0 --a------ C:\WINDOWS\msgi32.exe

2006-10-18 10:32 0 --a------ C:\WINDOWS\mfcyr32.exe

2006-10-18 10:27 0 --a------ C:\WINDOWS\system32\iprl32.exe

2006-10-18 10:26 0 --a------ C:\WINDOWS\system32\crfa32.exe

2006-10-18 08:21 0 --a------ C:\WINDOWS\system32\ipmb.exe

2006-10-18 08:08 0 --a------ C:\WINDOWS\system32\appam.exe

2006-10-18 07:45 0 --a------ C:\WINDOWS\sysup.exe

2006-10-18 07:44 0 --a------ C:\WINDOWS\system32\appen.exe

2006-10-18 07:42 0 --a------ C:\WINDOWS\mfcak32.exe

2006-10-18 07:37 0 --a------ C:\WINDOWS\system32\mfcqx32.exe

2006-10-18 07:02 0 --a------ C:\WINDOWS\system32\sysph32.exe

2006-10-18 06:36 0 --a------ C:\WINDOWS\apprw32.exe

2006-10-18 05:40 0 --a------ C:\WINDOWS\d3df.exe

2006-10-18 05:37 0 --a------ C:\WINDOWS\system32\ntfu32.exe

2006-10-18 05:08 0 --a------ C:\WINDOWS\system32\sysde.exe

2006-10-18 04:54 0 --a------ C:\WINDOWS\system32\appim32.exe

2006-10-18 02:34 0 --a------ C:\WINDOWS\system32\ipuu.exe

2006-10-18 02:23 0 --a------ C:\WINDOWS\system32\addxy.exe

2006-10-18 00:15 0 --a------ C:\WINDOWS\apptd.exe

 

 

(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

 

*Note* empty entries & legit default entries are not shown

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]

"WOOKIT"="C:\\PROGRA~1\\Wanadoo\\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM="

"ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe"

"MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]

"SiS Tray"=""

"SiS KHooker"="C:\\WINDOWS\\System32\\khooker.exe"

"AGRSMMSG"="AGRSMMSG.exe"

"ezShieldProtector for Px"="C:\\WINDOWS\\System32\\ezSP_Px.exe"

"Drag'n Drop CD+DVD"="C:\\Program Files\\drag'n drop cd+dvd\\BinFiles\\DragDrop.exe /StartUp"

"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"

"WOOWATCH"="C:\\PROGRA~1\\Wanadoo\\Watch.exe"

"WOOTASKBARICON"="C:\\PROGRA~1\\Wanadoo\\GestMaj.exe TaskBarIcon.exe"

"pccguide.exe"="\"C:\\Program Files\\Trend Micro\\PC-cillin 9\\pccguide.exe\""

"PCCClient.exe"="\"C:\\Program Files\\Trend Micro\\PC-cillin 9\\PCCClient.exe\""

"Pop3trap.exe"="\"C:\\Program Files\\Trend Micro\\PC-cillin 9\\Pop3trap.exe\""

"HP Software Update"="C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe"

"!AVG Anti-Spyware"="\"C:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]

"Installed"="1"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]

"Installed"="1"

"NoChange"="1"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]

"Installed"="1"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]

"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]

"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"

 

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]

"Symantec Network Driver Update Warning"="C:\\PROGRA~1\\Symantec\\LIVEUP~1\\SNDWarn.EXE"

"ALUAlert"="C:\\Program Files\\Symantec\\LiveUpdate\\ALUNotify.exe"

"Symantec NetDriver Warning"="C:\\PROGRA~1\\SYMNET~1\\SNDWarn.exe"

 

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]

"Symantec Network Driver Update Warning"="C:\\PROGRA~1\\Symantec\\LIVEUP~1\\SNDWarn.EXE"

"ALUAlert"="C:\\Program Files\\Symantec\\LiveUpdate\\ALUNotify.exe"

"Symantec NetDriver Warning"="C:\\PROGRA~1\\SYMNET~1\\SNDWarn.exe"

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"

 

 

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]

LocalService REG_MULTI_SZ AlerterWebClientLmHostsRemoteRegistryupnphostSSDPSRV\

NetworkService REG_MULTI_SZ DnsCache\

rpcss REG_MULTI_SZ RpcSs\

imgsvc REG_MULTI_SZ StiSvc\

termsvcs REG_MULTI_SZ TermService\

HTTPFilter REG_MULTI_SZ HTTPFilter\

DcomLaunch REG_MULTI_SZ DcomLaunchTermService\

WudfServiceGroup REG_MULTI_SZ WUDFSvc\

 

 

Completion time: 07-01-18 14:28:29

C:\ComboFix2.txt ... 07-01-16 21:27

C:\ComboFix3.txt ... 07-01-16 18:04

[Thanos]

salut ratcoldo

 

J'ai parlé un peu vite... Les fichiers sont encore là!!

 

Le concepteur du programme a mis son utilitaire à jour. Le problème semble être rêglé

Fais les manipulations suivantes dans l'ordre >

 

1) Elimine le dossier WinPFind3U que tu as sur le bureau, ainsi que le fichier téléchargé WinPFind3U.zip

 

2) Comme précédemment:

 

Télécharge WinPFind3U.exe de OldTimer sur ton bureau.

• Double clique sur le fichier téléchargé : un dossier nommé WinPFind3U va apparaitre sur ton bureau.
  
• Ouvre le dossier et double clique sur le fichier WinPFind3U.exe pour lancer le programme.
  
• En haut de la fenêtre tu dois voir la version de l'utilitaire qui est la 1.0.11, assure t'en!
  
• Copie/colle le texte ci dessous (ne copie pas le mot code)dans le Panneau Paste fix here , puis clique sur le bouton Run Fix.
  

[Kill Explorer]
[Files - Created Wihin 90 days]
NY -> addcb.exe -> %SystemRoot%\addcb.exe
NY -> addcn32.exe -> %SystemRoot%\addcn32.exe
NY -> addcp.exe -> %SystemRoot%\addcp.exe
NY -> addgg.exe -> %SystemRoot%\addgg.exe
NY -> addhx.exe -> %SystemRoot%\addhx.exe
NY -> addjg32.exe -> %SystemRoot%\addjg32.exe
NY -> addjj32.exe -> %SystemRoot%\addjj32.exe
NY -> addkg32.exe -> %SystemRoot%\addkg32.exe
NY -> addlf32.exe -> %SystemRoot%\addlf32.exe
NY -> addnm32.exe -> %SystemRoot%\addnm32.exe
NY -> addoc32.exe -> %SystemRoot%\addoc32.exe
NY -> addps32.exe -> %SystemRoot%\addps32.exe
NY -> addqs32.exe -> %SystemRoot%\addqs32.exe
NY -> addqx.exe -> %SystemRoot%\addqx.exe
NY -> addrh32.exe -> %SystemRoot%\addrh32.exe
NY -> addug.exe -> %SystemRoot%\addug.exe
NY -> addwh.exe -> %SystemRoot%\addwh.exe
NY -> addwt32.exe -> %SystemRoot%\addwt32.exe
NY -> addyk.exe -> %SystemRoot%\addyk.exe
NY -> addyt32.exe -> %SystemRoot%\addyt32.exe
NY -> apidk.exe -> %SystemRoot%\apidk.exe
NY -> apidv32.exe -> %SystemRoot%\apidv32.exe
NY -> apiex.exe -> %SystemRoot%\apiex.exe
NY -> apifl.exe -> %SystemRoot%\apifl.exe
NY -> apifw.exe -> %SystemRoot%\apifw.exe
NY -> apigb.exe -> %SystemRoot%\apigb.exe
NY -> apigg32.exe -> %SystemRoot%\apigg32.exe
NY -> apigw.exe -> %SystemRoot%\apigw.exe
NY -> apihk32.exe -> %SystemRoot%\apihk32.exe
NY -> apijj.exe -> %SystemRoot%\apijj.exe
NY -> apimz.exe -> %SystemRoot%\apimz.exe
NY -> apinj.exe -> %SystemRoot%\apinj.exe
NY -> apinz.exe -> %SystemRoot%\apinz.exe
NY -> apiod.exe -> %SystemRoot%\apiod.exe
NY -> apipc32.exe -> %SystemRoot%\apipc32.exe
NY -> apirf.exe -> %SystemRoot%\apirf.exe
NY -> apirh.exe -> %SystemRoot%\apirh.exe
NY -> apirq.exe -> %SystemRoot%\apirq.exe
NY -> apiti32.exe -> %SystemRoot%\apiti32.exe
NY -> apiuf.exe -> %SystemRoot%\apiuf.exe
NY -> apiuk32.exe -> %SystemRoot%\apiuk32.exe
NY -> apivg.exe -> %SystemRoot%\apivg.exe
NY -> apivp.exe -> %SystemRoot%\apivp.exe
NY -> apiwf.exe -> %SystemRoot%\apiwf.exe
NY -> apiyz.exe -> %SystemRoot%\apiyz.exe
NY -> apizl.exe -> %SystemRoot%\apizl.exe
NY -> appbw.exe -> %SystemRoot%\appbw.exe
NY -> appcx.exe -> %SystemRoot%\appcx.exe
NY -> appdh32.exe -> %SystemRoot%\appdh32.exe
NY -> appfc32.exe -> %SystemRoot%\appfc32.exe
NY -> appii32.exe -> %SystemRoot%\appii32.exe
NY -> appju32.exe -> %SystemRoot%\appju32.exe
NY -> appnq32.exe -> %SystemRoot%\appnq32.exe
NY -> appnu32.exe -> %SystemRoot%\appnu32.exe
NY -> appog32.exe -> %SystemRoot%\appog32.exe
NY -> appoi32.exe -> %SystemRoot%\appoi32.exe
NY -> appqc32.exe -> %SystemRoot%\appqc32.exe
NY -> apptp.exe -> %SystemRoot%\apptp.exe
NY -> apptu.exe -> %SystemRoot%\apptu.exe
NY -> appub.exe -> %SystemRoot%\appub.exe
NY -> appwb.exe -> %SystemRoot%\appwb.exe
NY -> appxf.exe -> %SystemRoot%\appxf.exe
NY -> appxy32.exe -> %SystemRoot%\appxy32.exe
NY -> appyc.exe -> %SystemRoot%\appyc.exe
NY -> appyn.exe -> %SystemRoot%\appyn.exe
NY -> appzg.exe -> %SystemRoot%\appzg.exe
NY -> appzh32.exe -> %SystemRoot%\appzh32.exe
NY -> atlah32.exe -> %SystemRoot%\atlah32.exe
NY -> atlbf32.exe -> %SystemRoot%\atlbf32.exe
NY -> atlbk32.exe -> %SystemRoot%\atlbk32.exe
NY -> atldh.exe -> %SystemRoot%\atldh.exe
NY -> atlff.exe -> %SystemRoot%\atlff.exe
NY -> atlgq.exe -> %SystemRoot%\atlgq.exe
NY -> atlgt.exe -> %SystemRoot%\atlgt.exe
NY -> atlhf32.exe -> %SystemRoot%\atlhf32.exe
NY -> atlhm.exe -> %SystemRoot%\atlhm.exe
NY -> atlhv32.exe -> %SystemRoot%\atlhv32.exe
NY -> atljs32.exe -> %SystemRoot%\atljs32.exe
NY -> atlkc32.exe -> %SystemRoot%\atlkc32.exe
NY -> atlma.exe -> %SystemRoot%\atlma.exe
NY -> atlnf.exe -> %SystemRoot%\atlnf.exe
NY -> atlrp.exe -> %SystemRoot%\atlrp.exe
NY -> atlsy32.exe -> %SystemRoot%\atlsy32.exe
NY -> atltd32.exe -> %SystemRoot%\atltd32.exe
NY -> atlvh32.exe -> %SystemRoot%\atlvh32.exe
NY -> atlwi32.exe -> %SystemRoot%\atlwi32.exe
NY -> atlys.exe -> %SystemRoot%\atlys.exe
NY -> atlyv.exe -> %SystemRoot%\atlyv.exe
NY -> atlyz32.exe -> %SystemRoot%\atlyz32.exe
NY -> atlzc32.exe -> %SystemRoot%\atlzc32.exe
NY -> crcc32.exe -> %SystemRoot%\crcc32.exe
NY -> crck32.exe -> %SystemRoot%\crck32.exe
NY -> crcu32.exe -> %SystemRoot%\crcu32.exe
NY -> crdp.exe -> %SystemRoot%\crdp.exe
NY -> cree.exe -> %SystemRoot%\cree.exe
NY -> crfn32.exe -> %SystemRoot%\crfn32.exe
NY -> crhl.exe -> %SystemRoot%\crhl.exe
NY -> crho.exe -> %SystemRoot%\crho.exe
NY -> crir.exe -> %SystemRoot%\crir.exe
NY -> criu.exe -> %SystemRoot%\criu.exe
NY -> crix.exe -> %SystemRoot%\crix.exe
NY -> crjk32.exe -> %SystemRoot%\crjk32.exe
NY -> crjz.exe -> %SystemRoot%\crjz.exe
NY -> crkp.exe -> %SystemRoot%\crkp.exe
NY -> crmd.exe -> %SystemRoot%\crmd.exe
NY -> crmr32.exe -> %SystemRoot%\crmr32.exe
NY -> crnt.exe -> %SystemRoot%\crnt.exe
NY -> croz32.exe -> %SystemRoot%\croz32.exe
NY -> crpf32.exe -> %SystemRoot%\crpf32.exe
NY -> crpn32.exe -> %SystemRoot%\crpn32.exe
NY -> crpo.exe -> %SystemRoot%\crpo.exe
NY -> crpw32.exe -> %SystemRoot%\crpw32.exe
NY -> crpz32.exe -> %SystemRoot%\crpz32.exe
NY -> crqb32.exe -> %SystemRoot%\crqb32.exe
NY -> crqh.exe -> %SystemRoot%\crqh.exe
NY -> crvg32.exe -> %SystemRoot%\crvg32.exe
NY -> crvl32.exe -> %SystemRoot%\crvl32.exe
NY -> d3cs.exe -> %SystemRoot%\d3cs.exe
NY -> d3cu.exe -> %SystemRoot%\d3cu.exe
NY -> d3fs.exe -> %SystemRoot%\d3fs.exe
NY -> d3gn32.exe -> %SystemRoot%\d3gn32.exe
NY -> d3hs.exe -> %SystemRoot%\d3hs.exe
NY -> d3il32.exe -> %SystemRoot%\d3il32.exe
NY -> d3iu32.exe -> %SystemRoot%\d3iu32.exe
NY -> d3ki32.exe -> %SystemRoot%\d3ki32.exe
NY -> d3mc.exe -> %SystemRoot%\d3mc.exe
NY -> d3mc32.exe -> %SystemRoot%\d3mc32.exe
NY -> d3pw32.exe -> %SystemRoot%\d3pw32.exe
NY -> d3qi.exe -> %SystemRoot%\d3qi.exe
NY -> d3qp.exe -> %SystemRoot%\d3qp.exe
NY -> d3qx.exe -> %SystemRoot%\d3qx.exe
NY -> d3tx32.exe -> %SystemRoot%\d3tx32.exe
NY -> d3uy32.exe -> %SystemRoot%\d3uy32.exe
NY -> d3wz32.exe -> %SystemRoot%\d3wz32.exe
NY -> d3xc32.exe -> %SystemRoot%\d3xc32.exe
NY -> d3xx.exe -> %SystemRoot%\d3xx.exe
NY -> d3yv32.exe -> %SystemRoot%\d3yv32.exe
NY -> d3yy.exe -> %SystemRoot%\d3yy.exe
NY -> d3zs32.exe -> %SystemRoot%\d3zs32.exe
NY -> ieaq.exe -> %SystemRoot%\ieaq.exe
NY -> iecx32.exe -> %SystemRoot%\iecx32.exe
NY -> iedw.exe -> %SystemRoot%\iedw.exe
NY -> ieea.exe -> %SystemRoot%\ieea.exe
NY -> ieee.exe -> %SystemRoot%\ieee.exe
NY -> ieet32.exe -> %SystemRoot%\ieet32.exe
NY -> iefd.exe -> %SystemRoot%\iefd.exe
NY -> iega.exe -> %SystemRoot%\iega.exe
NY -> iegc32.exe -> %SystemRoot%\iegc32.exe
NY -> iegn32.exe -> %SystemRoot%\iegn32.exe
NY -> iehg.exe -> %SystemRoot%\iehg.exe
NY -> iehq32.exe -> %SystemRoot%\iehq32.exe
NY -> ieif32.exe -> %SystemRoot%\ieif32.exe
NY -> ieik32.exe -> %SystemRoot%\ieik32.exe
NY -> iejw32.exe -> %SystemRoot%\iejw32.exe
NY -> iekv32.exe -> %SystemRoot%\iekv32.exe
NY -> ieoo32.exe -> %SystemRoot%\ieoo32.exe
NY -> ieqz32.exe -> %SystemRoot%\ieqz32.exe
NY -> ierb32.exe -> %SystemRoot%\ierb32.exe
NY -> iere32.exe -> %SystemRoot%\iere32.exe
NY -> ierq32.exe -> %SystemRoot%\ierq32.exe
NY -> iesd32.exe -> %SystemRoot%\iesd32.exe
NY -> iesi32.exe -> %SystemRoot%\iesi32.exe
NY -> iess.exe -> %SystemRoot%\iess.exe
NY -> ieto32.exe -> %SystemRoot%\ieto32.exe
NY -> ieuo.exe -> %SystemRoot%\ieuo.exe
NY -> ievg.exe -> %SystemRoot%\ievg.exe
NY -> iexw32.exe -> %SystemRoot%\iexw32.exe
NY -> ipat.exe -> %SystemRoot%\ipat.exe
NY -> ipcs32.exe -> %SystemRoot%\ipcs32.exe
NY -> ipgi32.exe -> %SystemRoot%\ipgi32.exe
NY -> iphs32.exe -> %SystemRoot%\iphs32.exe
NY -> ipid.exe -> %SystemRoot%\ipid.exe
NY -> ipjj32.exe -> %SystemRoot%\ipjj32.exe
NY -> ipjk32.exe -> %SystemRoot%\ipjk32.exe
NY -> ipjn.exe -> %SystemRoot%\ipjn.exe
NY -> ipju32.exe -> %SystemRoot%\ipju32.exe
NY -> ipkq.exe -> %SystemRoot%\ipkq.exe
NY -> ipkx32.exe -> %SystemRoot%\ipkx32.exe
NY -> iplb.exe -> %SystemRoot%\iplb.exe
NY -> ipmu.exe -> %SystemRoot%\ipmu.exe
NY -> ipov32.exe -> %SystemRoot%\ipov32.exe
NY -> iprc.exe -> %SystemRoot%\iprc.exe
NY -> iprh.exe -> %SystemRoot%\iprh.exe
NY -> iprh32.exe -> %SystemRoot%\iprh32.exe
NY -> ipsf32.exe -> %SystemRoot%\ipsf32.exe
NY -> ipvl.exe -> %SystemRoot%\ipvl.exe
NY -> ipwn32.exe -> %SystemRoot%\ipwn32.exe
NY -> ipwu.exe -> %SystemRoot%\ipwu.exe
NY -> javabk.exe -> %SystemRoot%\javabk.exe
NY -> javabv32.exe -> %SystemRoot%\javabv32.exe
NY -> javabw32.exe -> %SystemRoot%\javabw32.exe
NY -> javadd32.exe -> %SystemRoot%\javadd32.exe
NY -> javaef.exe -> %SystemRoot%\javaef.exe
NY -> javaew32.exe -> %SystemRoot%\javaew32.exe
NY -> javaez.exe -> %SystemRoot%\javaez.exe
NY -> javafb.exe -> %SystemRoot%\javafb.exe
NY -> javafc.exe -> %SystemRoot%\javafc.exe
NY -> javafo32.exe -> %SystemRoot%\javafo32.exe
NY -> javahe32.exe -> %SystemRoot%\javahe32.exe
NY -> javahp.exe -> %SystemRoot%\javahp.exe
NY -> javahv32.exe -> %SystemRoot%\javahv32.exe
NY -> javail32.exe -> %SystemRoot%\javail32.exe
NY -> javamj32.exe -> %SystemRoot%\javamj32.exe
NY -> javamk32.exe -> %SystemRoot%\javamk32.exe
NY -> javams.exe -> %SystemRoot%\javams.exe
NY -> javamu32.exe -> %SystemRoot%\javamu32.exe
NY -> javanf32.exe -> %SystemRoot%\javanf32.exe
NY -> javapk.exe -> %SystemRoot%\javapk.exe
NY -> javaqw32.exe -> %SystemRoot%\javaqw32.exe
NY -> javatd.exe -> %SystemRoot%\javatd.exe
NY -> javawh.exe -> %SystemRoot%\javawh.exe
NY -> javaxh.exe -> %SystemRoot%\javaxh.exe
NY -> mfced32.exe -> %SystemRoot%\mfced32.exe
NY -> mfceq.exe -> %SystemRoot%\mfceq.exe
NY -> mfces32.exe -> %SystemRoot%\mfces32.exe
NY -> mfcez32.exe -> %SystemRoot%\mfcez32.exe
NY -> mfcff.exe -> %SystemRoot%\mfcff.exe
NY -> mfcft.exe -> %SystemRoot%\mfcft.exe
NY -> mfchu.exe -> %SystemRoot%\mfchu.exe
NY -> mfcib.exe -> %SystemRoot%\mfcib.exe
NY -> mfcjg32.exe -> %SystemRoot%\mfcjg32.exe
NY -> mfcjk.exe -> %SystemRoot%\mfcjk.exe
NY -> mfclb.exe -> %SystemRoot%\mfclb.exe
NY -> mfcmh.exe -> %SystemRoot%\mfcmh.exe
NY -> mfcnj32.exe -> %SystemRoot%\mfcnj32.exe
NY -> mfcok32.exe -> %SystemRoot%\mfcok32.exe
NY -> mfcom32.exe -> %SystemRoot%\mfcom32.exe
NY -> mfcpq32.exe -> %SystemRoot%\mfcpq32.exe
NY -> mfcpv32.exe -> %SystemRoot%\mfcpv32.exe
NY -> mfcqv32.exe -> %SystemRoot%\mfcqv32.exe
NY -> mfcrx.exe -> %SystemRoot%\mfcrx.exe
NY -> mfcsq32.exe -> %SystemRoot%\mfcsq32.exe
NY -> mfcsu.exe -> %SystemRoot%\mfcsu.exe
NY -> mfctr.exe -> %SystemRoot%\mfctr.exe
NY -> mfcuu32.exe -> %SystemRoot%\mfcuu32.exe
NY -> mfcve32.exe -> %SystemRoot%\mfcve32.exe
NY -> mfcvf32.exe -> %SystemRoot%\mfcvf32.exe
NY -> mfcvs32.exe -> %SystemRoot%\mfcvs32.exe
NY -> mfcwm.exe -> %SystemRoot%\mfcwm.exe
NY -> mfcxl32.exe -> %SystemRoot%\mfcxl32.exe
NY -> mfcyg.exe -> %SystemRoot%\mfcyg.exe
NY -> mfcyp.exe -> %SystemRoot%\mfcyp.exe
NY -> mfczz.exe -> %SystemRoot%\mfczz.exe
NY -> msbn32.exe -> %SystemRoot%\msbn32.exe
NY -> msbv.exe -> %SystemRoot%\msbv.exe
NY -> msds32.exe -> %SystemRoot%\msds32.exe
NY -> msfm32.exe -> %SystemRoot%\msfm32.exe
NY -> msgc.exe -> %SystemRoot%\msgc.exe
NY -> mshb.exe -> %SystemRoot%\mshb.exe
NY -> mshd.exe -> %SystemRoot%\mshd.exe
NY -> msjp32.exe -> %SystemRoot%\msjp32.exe
NY -> msjy32.exe -> %SystemRoot%\msjy32.exe
NY -> mslr32.exe -> %SystemRoot%\mslr32.exe
NY -> msma.exe -> %SystemRoot%\msma.exe
NY -> msom32.exe -> %SystemRoot%\msom32.exe
NY -> msoy32.exe -> %SystemRoot%\msoy32.exe
NY -> msqc32.exe -> %SystemRoot%\msqc32.exe
NY -> msqg.exe -> %SystemRoot%\msqg.exe
NY -> msuy32.exe -> %SystemRoot%\msuy32.exe
NY -> mswm32.exe -> %SystemRoot%\mswm32.exe
NY -> msxg.exe -> %SystemRoot%\msxg.exe
NY -> msxt.exe -> %SystemRoot%\msxt.exe
NY -> msyj.exe -> %SystemRoot%\msyj.exe
NY -> mszv32.exe -> %SystemRoot%\mszv32.exe
NY -> netce32.exe -> %SystemRoot%\netce32.exe
NY -> netcg.exe -> %SystemRoot%\netcg.exe
NY -> netem32.exe -> %SystemRoot%\netem32.exe
NY -> netev.exe -> %SystemRoot%\netev.exe
NY -> nethg32.exe -> %SystemRoot%\nethg32.exe
NY -> nethi32.exe -> %SystemRoot%\nethi32.exe
NY -> nethz.exe -> %SystemRoot%\nethz.exe
NY -> netjd.exe -> %SystemRoot%\netjd.exe
NY -> netov32.exe -> %SystemRoot%\netov32.exe
NY -> netpn.exe -> %SystemRoot%\netpn.exe
NY -> netpn32.exe -> %SystemRoot%\netpn32.exe
NY -> netqc32.exe -> %SystemRoot%\netqc32.exe
NY -> nettb.exe -> %SystemRoot%\nettb.exe
NY -> netuz.exe -> %SystemRoot%\netuz.exe
NY -> netvc32.exe -> %SystemRoot%\netvc32.exe
NY -> netxi.exe -> %SystemRoot%\netxi.exe
NY -> netxo32.exe -> %SystemRoot%\netxo32.exe
NY -> netyt.exe -> %SystemRoot%\netyt.exe
NY -> netzd32.exe -> %SystemRoot%\netzd32.exe
NY -> ntba32.exe -> %SystemRoot%\ntba32.exe
NY -> ntcd32.exe -> %SystemRoot%\ntcd32.exe
NY -> ntcp.exe -> %SystemRoot%\ntcp.exe
NY -> ntdy32.exe -> %SystemRoot%\ntdy32.exe
NY -> ntek32.exe -> %SystemRoot%\ntek32.exe
NY -> ntel.exe -> %SystemRoot%\ntel.exe
NY -> ntet32.exe -> %SystemRoot%\ntet32.exe
NY -> ntft32.exe -> %SystemRoot%\ntft32.exe
NY -> nthi.exe -> %SystemRoot%\nthi.exe
NY -> ntia.exe -> %SystemRoot%\ntia.exe
NY -> ntld32.exe -> %SystemRoot%\ntld32.exe
NY -> ntng32.exe -> %SystemRoot%\ntng32.exe
NY -> ntnm.exe -> %SystemRoot%\ntnm.exe
NY -> ntpg.exe -> %SystemRoot%\ntpg.exe
NY -> ntpg32.exe -> %SystemRoot%\ntpg32.exe
NY -> ntpp32.exe -> %SystemRoot%\ntpp32.exe
NY -> ntrk.exe -> %SystemRoot%\ntrk.exe
NY -> ntrs32.exe -> %SystemRoot%\ntrs32.exe
NY -> ntrw32.exe -> %SystemRoot%\ntrw32.exe
NY -> nttq.exe -> %SystemRoot%\nttq.exe
NY -> ntxm32.exe -> %SystemRoot%\ntxm32.exe
NY -> ntxr32.exe -> %SystemRoot%\ntxr32.exe
NY -> sdkaf32.exe -> %SystemRoot%\sdkaf32.exe
NY -> sdkan.exe -> %SystemRoot%\sdkan.exe
NY -> sdkbx32.exe -> %SystemRoot%\sdkbx32.exe
NY -> sdkco32.exe -> %SystemRoot%\sdkco32.exe
NY -> sdkcu.exe -> %SystemRoot%\sdkcu.exe
NY -> sdkdv32.exe -> %SystemRoot%\sdkdv32.exe
NY -> sdked32.exe -> %SystemRoot%\sdked32.exe
NY -> sdkei32.exe -> %SystemRoot%\sdkei32.exe
NY -> sdkfq32.exe -> %SystemRoot%\sdkfq32.exe
NY -> sdkfs32.exe -> %SystemRoot%\sdkfs32.exe
NY -> sdkge32.exe -> %SystemRoot%\sdkge32.exe
NY -> sdkgt32.exe -> %SystemRoot%\sdkgt32.exe
NY -> sdkgy.exe -> %SystemRoot%\sdkgy.exe
NY -> sdkki32.exe -> %SystemRoot%\sdkki32.exe
NY -> sdkru32.exe -> %SystemRoot%\sdkru32.exe
NY -> sdkry32.exe -> %SystemRoot%\sdkry32.exe
NY -> sdktn.exe -> %SystemRoot%\sdktn.exe
NY -> sdkuq.exe -> %SystemRoot%\sdkuq.exe
NY -> sdkvl32.exe -> %SystemRoot%\sdkvl32.exe
NY -> sdkvp.exe -> %SystemRoot%\sdkvp.exe
NY -> sdkwa32.exe -> %SystemRoot%\sdkwa32.exe
NY -> sdkwc.exe -> %SystemRoot%\sdkwc.exe
NY -> sdkwx32.exe -> %SystemRoot%\sdkwx32.exe
NY -> sdkxx.exe -> %SystemRoot%\sdkxx.exe
NY -> sdkyg.exe -> %SystemRoot%\sdkyg.exe
NY -> sdkyj32.exe -> %SystemRoot%\sdkyj32.exe
NY -> sdkzi32.exe -> %SystemRoot%\sdkzi32.exe
NY -> sdkzo.exe -> %SystemRoot%\sdkzo.exe
NY -> sysac32.exe -> %SystemRoot%\sysac32.exe
NY -> sysad32.exe -> %SystemRoot%\sysad32.exe
NY -> sysat32.exe -> %SystemRoot%\sysat32.exe
NY -> sysay32.exe -> %SystemRoot%\sysay32.exe
NY -> sysbf32.exe -> %SystemRoot%\sysbf32.exe
NY -> sysdd32.exe -> %SystemRoot%\sysdd32.exe
NY -> sysei32.exe -> %SystemRoot%\sysei32.exe
NY -> sysfa32.exe -> %SystemRoot%\sysfa32.exe
NY -> sysfh.exe -> %SystemRoot%\sysfh.exe
NY -> sysfm32.exe -> %SystemRoot%\sysfm32.exe
NY -> sysge.exe -> %SystemRoot%\sysge.exe
NY -> syshs.exe -> %SystemRoot%\syshs.exe
NY -> sysjx32.exe -> %SystemRoot%\sysjx32.exe
NY -> sysmg32.exe -> %SystemRoot%\sysmg32.exe
NY -> sysmz32.exe -> %SystemRoot%\sysmz32.exe
NY -> sysoc32.exe -> %SystemRoot%\sysoc32.exe
NY -> syspx32.exe -> %SystemRoot%\syspx32.exe
NY -> sysrj.exe -> %SystemRoot%\sysrj.exe
NY -> syssd32.exe -> %SystemRoot%\syssd32.exe
NY -> syssi32.exe -> %SystemRoot%\syssi32.exe
NY -> syssz32.exe -> %SystemRoot%\syssz32.exe
NY -> sysua32.exe -> %SystemRoot%\sysua32.exe
NY -> sysvb32.exe -> %SystemRoot%\sysvb32.exe
NY -> sysvv32.exe -> %SystemRoot%\sysvv32.exe
NY -> sysxz.exe -> %SystemRoot%\sysxz.exe
NY -> wincg.exe -> %SystemRoot%\wincg.exe
NY -> wincq.exe -> %SystemRoot%\wincq.exe
NY -> winfj.exe -> %SystemRoot%\winfj.exe
NY -> winfz32.exe -> %SystemRoot%\winfz32.exe
NY -> wingt32.exe -> %SystemRoot%\wingt32.exe
NY -> wingw32.exe -> %SystemRoot%\wingw32.exe
NY -> winin32.exe -> %SystemRoot%\winin32.exe
NY -> winiz32.exe -> %SystemRoot%\winiz32.exe
NY -> winjw32.exe -> %SystemRoot%\winjw32.exe
NY -> winkg.exe -> %SystemRoot%\winkg.exe
NY -> winmf.exe -> %SystemRoot%\winmf.exe
NY -> winpg.exe -> %SystemRoot%\winpg.exe
NY -> winqy.exe -> %SystemRoot%\winqy.exe
NY -> winrn32.exe -> %SystemRoot%\winrn32.exe
NY -> winsn.exe -> %SystemRoot%\winsn.exe
NY -> winsy.exe -> %SystemRoot%\winsy.exe
NY -> winup32.exe -> %SystemRoot%\winup32.exe
NY -> winwa.exe -> %SystemRoot%\winwa.exe
NY -> winxf32.exe -> %SystemRoot%\winxf32.exe
NY -> addbu32.exe -> %System32%\addbu32.exe
NY -> adddd32.exe -> %System32%\adddd32.exe
NY -> adddw32.exe -> %System32%\adddw32.exe
NY -> addfb.exe -> %System32%\addfb.exe
NY -> addfc.exe -> %System32%\addfc.exe
NY -> addgp.exe -> %System32%\addgp.exe
NY -> addhl32.exe -> %System32%\addhl32.exe
NY -> addiu32.exe -> %System32%\addiu32.exe
NY -> addkk32.exe -> %System32%\addkk32.exe
NY -> addli32.exe -> %System32%\addli32.exe
NY -> addpc.exe -> %System32%\addpc.exe
NY -> addrd.exe -> %System32%\addrd.exe
NY -> addvi32.exe -> %System32%\addvi32.exe
NY -> addvv.exe -> %System32%\addvv.exe
NY -> addxv.exe -> %System32%\addxv.exe
NY -> addxx32.exe -> %System32%\addxx32.exe
NY -> addze32.exe -> %System32%\addze32.exe
NY -> addzy32.exe -> %System32%\addzy32.exe
NY -> addzz.exe -> %System32%\addzz.exe
NY -> apiaj32.exe -> %System32%\apiaj32.exe
NY -> apiap32.exe -> %System32%\apiap32.exe
NY -> apicz.exe -> %System32%\apicz.exe
NY -> apidu.exe -> %System32%\apidu.exe
NY -> apidz.exe -> %System32%\apidz.exe
NY -> apiei.exe -> %System32%\apiei.exe
NY -> apieq32.exe -> %System32%\apieq32.exe
NY -> apifz.exe -> %System32%\apifz.exe
NY -> apige32.exe -> %System32%\apige32.exe
NY -> apigi32.exe -> %System32%\apigi32.exe
NY -> apiki32.exe -> %System32%\apiki32.exe
NY -> apikj.exe -> %System32%\apikj.exe
NY -> apikk.exe -> %System32%\apikk.exe
NY -> apilb32.exe -> %System32%\apilb32.exe
NY -> apinm32.exe -> %System32%\apinm32.exe
NY -> apiod32.exe -> %System32%\apiod32.exe
NY -> apipf.exe -> %System32%\apipf.exe
NY -> apipt.exe -> %System32%\apipt.exe
NY -> apirf32.exe -> %System32%\apirf32.exe
NY -> apitq32.exe -> %System32%\apitq32.exe
NY -> apiwc32.exe -> %System32%\apiwc32.exe
NY -> apixn.exe -> %System32%\apixn.exe
NY -> appaj.exe -> %System32%\appaj.exe
NY -> appbi32.exe -> %System32%\appbi32.exe
NY -> appcd32.exe -> %System32%\appcd32.exe
NY -> appco32.exe -> %System32%\appco32.exe
NY -> appej32.exe -> %System32%\appej32.exe
NY -> appff32.exe -> %System32%\appff32.exe
NY -> appfw32.exe -> %System32%\appfw32.exe
NY -> appgd32.exe -> %System32%\appgd32.exe
NY -> appgj.exe -> %System32%\appgj.exe
NY -> appgw32.exe -> %System32%\appgw32.exe
NY -> appkz32.exe -> %System32%\appkz32.exe
NY -> applr.exe -> %System32%\applr.exe
NY -> appmb.exe -> %System32%\appmb.exe
NY -> appng32.exe -> %System32%\appng32.exe
NY -> appnv.exe -> %System32%\appnv.exe
NY -> appow32.exe -> %System32%\appow32.exe
NY -> apppr32.exe -> %System32%\apppr32.exe
NY -> apprb32.exe -> %System32%\apprb32.exe
NY -> apptw32.exe -> %System32%\apptw32.exe
NY -> appvd.exe -> %System32%\appvd.exe
NY -> appwb32.exe -> %System32%\appwb32.exe
NY -> appwe32.exe -> %System32%\appwe32.exe
NY -> appyg32.exe -> %System32%\appyg32.exe
NY -> appzf32.exe -> %System32%\appzf32.exe
NY -> appzp32.exe -> %System32%\appzp32.exe
NY -> atlcy32.exe -> %System32%\atlcy32.exe
NY -> atlew.exe -> %System32%\atlew.exe
NY -> atlfw32.exe -> %System32%\atlfw32.exe
NY -> atlgf.exe -> %System32%\atlgf.exe
NY -> atlig32.exe -> %System32%\atlig32.exe
NY -> atlkn32.exe -> %System32%\atlkn32.exe
NY -> atlky.exe -> %System32%\atlky.exe
NY -> atllh32.exe -> %System32%\atllh32.exe
NY -> atlsb32.exe -> %System32%\atlsb32.exe
NY -> atlsk32.exe -> %System32%\atlsk32.exe
NY -> atlsm32.exe -> %System32%\atlsm32.exe
NY -> atlsy32.exe -> %System32%\atlsy32.exe
NY -> atltd32.exe -> %System32%\atltd32.exe
NY -> atlte32.exe -> %System32%\atlte32.exe
NY -> atlua32.exe -> %System32%\atlua32.exe
NY -> atlui32.exe -> %System32%\atlui32.exe
NY -> atlyn32.exe -> %System32%\atlyn32.exe
NY -> crba.exe -> %System32%\crba.exe
NY -> crcu32.exe -> %System32%\crcu32.exe
NY -> crfr32.exe -> %System32%\crfr32.exe
NY -> crgx32.exe -> %System32%\crgx32.exe
NY -> crhn.exe -> %System32%\crhn.exe
NY -> cria32.exe -> %System32%\cria32.exe
NY -> crkb32.exe -> %System32%\crkb32.exe
NY -> crmy.exe -> %System32%\crmy.exe
NY -> crnz32.exe -> %System32%\crnz32.exe
NY -> crob32.exe -> %System32%\crob32.exe
NY -> croq32.exe -> %System32%\croq32.exe
NY -> crow32.exe -> %System32%\crow32.exe
NY -> crpf.exe -> %System32%\crpf.exe
NY -> crto32.exe -> %System32%\crto32.exe
NY -> crur32.exe -> %System32%\crur32.exe
NY -> crvw.exe -> %System32%\crvw.exe
NY -> crxb32.exe -> %System32%\crxb32.exe
NY -> crxm32.exe -> %System32%\crxm32.exe
NY -> crxx32.exe -> %System32%\crxx32.exe
NY -> cryh32.exe -> %System32%\cryh32.exe
NY -> d3bp.exe -> %System32%\d3bp.exe
NY -> d3bt32.exe -> %System32%\d3bt32.exe
NY -> d3du32.exe -> %System32%\d3du32.exe
NY -> d3gs32.exe -> %System32%\d3gs32.exe
NY -> d3kx32.exe -> %System32%\d3kx32.exe
NY -> d3mp32.exe -> %System32%\d3mp32.exe
NY -> d3mu.exe -> %System32%\d3mu.exe
NY -> d3na.exe -> %System32%\d3na.exe
NY -> d3nh32.exe -> %System32%\d3nh32.exe
NY -> d3nu.exe -> %System32%\d3nu.exe
NY -> d3on32.exe -> %System32%\d3on32.exe
NY -> d3pi32.exe -> %System32%\d3pi32.exe
NY -> d3si32.exe -> %System32%\d3si32.exe
NY -> d3st32.exe -> %System32%\d3st32.exe
NY -> d3sz.exe -> %System32%\d3sz.exe
NY -> d3tz.exe -> %System32%\d3tz.exe
NY -> d3xa32.exe -> %System32%\d3xa32.exe
NY -> d3yt.exe -> %System32%\d3yt.exe
NY -> d3yw.exe -> %System32%\d3yw.exe
NY -> d3zd.exe -> %System32%\d3zd.exe
NY -> ieag.exe -> %System32%\ieag.exe
NY -> iebf32.exe -> %System32%\iebf32.exe
NY -> iebn32.exe -> %System32%\iebn32.exe
NY -> iebp.exe -> %System32%\iebp.exe
NY -> iegq32.exe -> %System32%\iegq32.exe
NY -> iehe.exe -> %System32%\iehe.exe
NY -> ieht.exe -> %System32%\ieht.exe
NY -> ieip32.exe -> %System32%\ieip32.exe
NY -> iejn32.exe -> %System32%\iejn32.exe
NY -> iejx32.exe -> %System32%\iejx32.exe
NY -> iekb32.exe -> %System32%\iekb32.exe
NY -> iemy.exe -> %System32%\iemy.exe
NY -> iena.exe -> %System32%\iena.exe
NY -> ieoj.exe -> %System32%\ieoj.exe
NY -> ieov.exe -> %System32%\ieov.exe
NY -> iepr32.exe -> %System32%\iepr32.exe
NY -> ieqi32.exe -> %System32%\ieqi32.exe
NY -> iera32.exe -> %System32%\iera32.exe
NY -> ierm32.exe -> %System32%\ierm32.exe
NY -> ierq32.exe -> %System32%\ierq32.exe
NY -> ieua.exe -> %System32%\ieua.exe
NY -> ieuj32.exe -> %System32%\ieuj32.exe
NY -> ievc.exe -> %System32%\ievc.exe
NY -> ipak.exe -> %System32%\ipak.exe
NY -> ipak32.exe -> %System32%\ipak32.exe
NY -> ipax32.exe -> %System32%\ipax32.exe
NY -> ipbf32.exe -> %System32%\ipbf32.exe
NY -> ipdl.exe -> %System32%\ipdl.exe
NY -> ipee32.exe -> %System32%\ipee32.exe
NY -> ipfc.exe -> %System32%\ipfc.exe
NY -> ipid.exe -> %System32%\ipid.exe
NY -> ipix.exe -> %System32%\ipix.exe
NY -> ipkl.exe -> %System32%\ipkl.exe
NY -> ipkr32.exe -> %System32%\ipkr32.exe
NY -> ipmq.exe -> %System32%\ipmq.exe
NY -> ipqz32.exe -> %System32%\ipqz32.exe
NY -> ipuo.exe -> %System32%\ipuo.exe
NY -> ipvc.exe -> %System32%\ipvc.exe
NY -> ipwo.exe -> %System32%\ipwo.exe
NY -> ipxu.exe -> %System32%\ipxu.exe
NY -> ipxy32.exe -> %System32%\ipxy32.exe
NY -> ipyt32.exe -> %System32%\ipyt32.exe
NY -> ipzn32.exe -> %System32%\ipzn32.exe
NY -> javaam32.exe -> %System32%\javaam32.exe
NY -> javabe32.exe -> %System32%\javabe32.exe
NY -> javaev32.exe -> %System32%\javaev32.exe
NY -> javakq32.exe -> %System32%\javakq32.exe
NY -> javalr.exe -> %System32%\javalr.exe
NY -> javapu.exe -> %System32%\javapu.exe
NY -> javasb32.exe -> %System32%\javasb32.exe
NY -> javash.exe -> %System32%\javash.exe
NY -> javasp.exe -> %System32%\javasp.exe
NY -> javasz32.exe -> %System32%\javasz32.exe
NY -> javaty32.exe -> %System32%\javaty32.exe
NY -> javauk.exe -> %System32%\javauk.exe
NY -> javavq32.exe -> %System32%\javavq32.exe
NY -> javavt32.exe -> %System32%\javavt32.exe
NY -> javawv.exe -> %System32%\javawv.exe
NY -> javayi.exe -> %System32%\javayi.exe
NY -> javazp.exe -> %System32%\javazp.exe
NY -> mfcbn.exe -> %System32%\mfcbn.exe
NY -> mfccc.exe -> %System32%\mfccc.exe
NY -> mfcey32.exe -> %System32%\mfcey32.exe
NY -> mfcfh32.exe -> %System32%\mfcfh32.exe
NY -> mfcie32.exe -> %System32%\mfcie32.exe
NY -> mfcjz.exe -> %System32%\mfcjz.exe
NY -> mfcml32.exe -> %System32%\mfcml32.exe
NY -> mfcmw.exe -> %System32%\mfcmw.exe
NY -> mfcnz.exe -> %System32%\mfcnz.exe
NY -> mfcsg.exe -> %System32%\mfcsg.exe
NY -> mfctj32.exe -> %System32%\mfctj32.exe
NY -> mfcur32.exe -> %System32%\mfcur32.exe
NY -> mfcve32.exe -> %System32%\mfcve32.exe
NY -> mfcvh32.exe -> %System32%\mfcvh32.exe
NY -> mfcvp32.exe -> %System32%\mfcvp32.exe
NY -> mfcvw.exe -> %System32%\mfcvw.exe
NY -> mfcxd32.exe -> %System32%\mfcxd32.exe
NY -> mfcxu.exe -> %System32%\mfcxu.exe
NY -> mfcyh32.exe -> %System32%\mfcyh32.exe
NY -> msah.exe -> %System32%\msah.exe
NY -> msap32.exe -> %System32%\msap32.exe
NY -> msaw32.exe -> %System32%\msaw32.exe
NY -> msbd.exe -> %System32%\msbd.exe
NY -> msbz32.exe -> %System32%\msbz32.exe
NY -> mscc32.exe -> %System32%\mscc32.exe
NY -> msdd.exe -> %System32%\msdd.exe
NY -> msed32.exe -> %System32%\msed32.exe
NY -> msek32.exe -> %System32%\msek32.exe
NY -> msfa32.exe -> %System32%\msfa32.exe
NY -> msjl.exe -> %System32%\msjl.exe
NY -> msjv32.exe -> %System32%\msjv32.exe
NY -> msni32.exe -> %System32%\msni32.exe
NY -> msoj.exe -> %System32%\msoj.exe
NY -> mssq32.exe -> %System32%\mssq32.exe
NY -> mswm32.exe -> %System32%\mswm32.exe
NY -> mswx32.exe -> %System32%\mswx32.exe
NY -> msxs32.exe -> %System32%\msxs32.exe
NY -> msyi.exe -> %System32%\msyi.exe
NY -> mszh.exe -> %System32%\mszh.exe
NY -> mszt32.exe -> %System32%\mszt32.exe
NY -> netba.exe -> %System32%\netba.exe
NY -> netbd.exe -> %System32%\netbd.exe
NY -> netbp32.exe -> %System32%\netbp32.exe
NY -> netcf32.exe -> %System32%\netcf32.exe
NY -> netdy.exe -> %System32%\netdy.exe
NY -> netjh32.exe -> %System32%\netjh32.exe
NY -> netkh32.exe -> %System32%\netkh32.exe
NY -> netkj.exe -> %System32%\netkj.exe
NY -> netmr.exe -> %System32%\netmr.exe
NY -> netnf.exe -> %System32%\netnf.exe
NY -> netnu.exe -> %System32%\netnu.exe
NY -> netog32.exe -> %System32%\netog32.exe
NY -> neton32.exe -> %System32%\neton32.exe
NY -> netoo.exe -> %System32%\netoo.exe
NY -> netpi32.exe -> %System32%\netpi32.exe
NY -> netps32.exe -> %System32%\netps32.exe
NY -> netpv32.exe -> %System32%\netpv32.exe
NY -> netrw32.exe -> %System32%\netrw32.exe
NY -> netuk32.exe -> %System32%\netuk32.exe
NY -> netwm32.exe -> %System32%\netwm32.exe
NY -> netzf.exe -> %System32%\netzf.exe
NY -> ntbb.exe -> %System32%\ntbb.exe
NY -> ntca.exe -> %System32%\ntca.exe
NY -> ntcn32.exe -> %System32%\ntcn32.exe
NY -> ntcp.exe -> %System32%\ntcp.exe
NY -> ntcz32.exe -> %System32%\ntcz32.exe
NY -> ntfn.exe -> %System32%\ntfn.exe
NY -> ntgi32.exe -> %System32%\ntgi32.exe
NY -> nthj.exe -> %System32%\nthj.exe
NY -> nthn.exe -> %System32%\nthn.exe
NY -> nthx32.exe -> %System32%\nthx32.exe
NY -> ntir32.exe -> %System32%\ntir32.exe
NY -> ntrt.exe -> %System32%\ntrt.exe
NY -> ntru.exe -> %System32%\ntru.exe
NY -> ntuj32.exe -> %System32%\ntuj32.exe
NY -> ntwn32.exe -> %System32%\ntwn32.exe
NY -> ntxk.exe -> %System32%\ntxk.exe
NY -> ntyl32.exe -> %System32%\ntyl32.exe
NY -> ntzd.exe -> %System32%\ntzd.exe
NY -> sdkam.exe -> %System32%\sdkam.exe
NY -> sdkcp.exe -> %System32%\sdkcp.exe
NY -> sdkeu32.exe -> %System32%\sdkeu32.exe
NY -> sdkgr.exe -> %System32%\sdkgr.exe
NY -> sdkgw32.exe -> %System32%\sdkgw32.exe
NY -> sdkhn32.exe -> %System32%\sdkhn32.exe
NY -> sdkho.exe -> %System32%\sdkho.exe
NY -> sdkib32.exe -> %System32%\sdkib32.exe
NY -> sdkjr.exe -> %System32%\sdkjr.exe
NY -> sdkks32.exe -> %System32%\sdkks32.exe
NY -> sdklp.exe -> %System32%\sdklp.exe
NY -> sdklt32.exe -> %System32%\sdklt32.exe
NY -> sdknf32.exe -> %System32%\sdknf32.exe
NY -> sdknn32.exe -> %System32%\sdknn32.exe
NY -> sdkod32.exe -> %System32%\sdkod32.exe
NY -> sdkrp32.exe -> %System32%\sdkrp32.exe
NY -> sdkrr32.exe -> %System32%\sdkrr32.exe
NY -> sdkvl32.exe -> %System32%\sdkvl32.exe
NY -> sdkwv.exe -> %System32%\sdkwv.exe
NY -> sdkyn32.exe -> %System32%\sdkyn32.exe
NY -> sdkzd32.exe -> %System32%\sdkzd32.exe
NY -> sdkzf32.exe -> %System32%\sdkzf32.exe
NY -> sysae.exe -> %System32%\sysae.exe
NY -> sysby.exe -> %System32%\sysby.exe
NY -> sysco.exe -> %System32%\sysco.exe
NY -> sysdn32.exe -> %System32%\sysdn32.exe
NY -> sysdr.exe -> %System32%\sysdr.exe
NY -> sysif32.exe -> %System32%\sysif32.exe
NY -> sysmv32.exe -> %System32%\sysmv32.exe
NY -> sysmw32.exe -> %System32%\sysmw32.exe
NY -> sysna32.exe -> %System32%\sysna32.exe
NY -> sysoq32.exe -> %System32%\sysoq32.exe
NY -> sysps32.exe -> %System32%\sysps32.exe
NY -> syspv32.exe -> %System32%\syspv32.exe
NY -> sysrw32.exe -> %System32%\sysrw32.exe
NY -> sysse32.exe -> %System32%\sysse32.exe
NY -> syssw.exe -> %System32%\syssw.exe
NY -> sysua32.exe -> %System32%\sysua32.exe
NY -> sysvt32.exe -> %System32%\sysvt32.exe
NY -> sysvv32.exe -> %System32%\sysvv32.exe
NY -> sysxe32.exe -> %System32%\sysxe32.exe
NY -> syszc.exe -> %System32%\syszc.exe
NY -> syszi.exe -> %System32%\syszi.exe
NY -> TitanPokerIconDropTRA108.ico -> %System32%\TitanPokerIconDropTRA108.ico
NY -> tmp.reg -> %System32%\tmp.reg
NY -> TrafficSales_Casino_3.ico -> %System32%\TrafficSales_Casino_3.ico
NY -> winfl32.exe -> %System32%\winfl32.exe
NY -> wingd32.exe -> %System32%\wingd32.exe
NY -> winge.exe -> %System32%\winge.exe
NY -> wingy32.exe -> %System32%\wingy32.exe
NY -> winje32.exe -> %System32%\winje32.exe
NY -> winkf.exe -> %System32%\winkf.exe
NY -> winlj32.exe -> %System32%\winlj32.exe
NY -> winly.exe -> %System32%\winly.exe
NY -> winlz.exe -> %System32%\winlz.exe
NY -> winqd.exe -> %System32%\winqd.exe
NY -> winra.exe -> %System32%\winra.exe
NY -> winto.exe -> %System32%\winto.exe
NY -> winwa32.exe -> %System32%\winwa32.exe
NY -> winwr32.exe -> %System32%\winwr32.exe
NY -> winyn.exe -> %System32%\winyn.exe
NY -> winyv32.exe -> %System32%\winyv32.exe
NY -> winyw32.exe -> %System32%\winyw32.exe
NY -> winzb.exe -> %System32%\winzb.exe
NY -> winzg32.exe -> %System32%\winzg32.exe
[Files - Modified Wihin 30 days]
NY -> l?gonui.exe -> %System32%\l?gonui.exe
[Reboot]

 

Le Fix va se faire rapidement,puis il te sera demandé de redémarrer ton pc : accepte en cliquant sur Yes

 

3) Le pc va redémarrer :relance WinPFind3U et poste le nouveau rapport

Poste aussi le rapport qui se trouve dans le dossier WinPFind3u( c'est un rapport qui a pour nom la date du jour\mois\année\heure).

 

Voilà ! allez courage on va y arriver!!

Modifié le 19 janvier 2007 par charles ingals

[ratcoldo]

Kikou !! arf !! quelle affaire !! j'espère que les tous les cas ne sont pas aussi pénibles que moi !!

 

 

le run fix :

Explorer killed successfully

[Files - Created Wihin 90 days]

C:\WINDOWS\addcb.exe moved successfully.

C:\WINDOWS\addcn32.exe moved successfully.

C:\WINDOWS\addcp.exe moved successfully.

C:\WINDOWS\addgg.exe moved successfully.

C:\WINDOWS\addhx.exe moved successfully.

C:\WINDOWS\addjg32.exe moved successfully.

C:\WINDOWS\addjj32.exe moved successfully.

C:\WINDOWS\addkg32.exe moved successfully.

C:\WINDOWS\addlf32.exe moved successfully.

C:\WINDOWS\addnm32.exe moved successfully.

C:\WINDOWS\addoc32.exe moved successfully.

C:\WINDOWS\addps32.exe moved successfully.

C:\WINDOWS\addqs32.exe moved successfully.

C:\WINDOWS\addqx.exe moved successfully.

C:\WINDOWS\addrh32.exe moved successfully.

C:\WINDOWS\addug.exe moved successfully.

C:\WINDOWS\addwh.exe moved successfully.

C:\WINDOWS\addwt32.exe moved successfully.

C:\WINDOWS\addyk.exe moved successfully.

C:\WINDOWS\addyt32.exe moved successfully.

C:\WINDOWS\apidk.exe moved successfully.

C:\WINDOWS\apidv32.exe moved successfully.

C:\WINDOWS\apiex.exe moved successfully.

C:\WINDOWS\apifl.exe moved successfully.

C:\WINDOWS\apifw.exe moved successfully.

C:\WINDOWS\apigb.exe moved successfully.

C:\WINDOWS\apigg32.exe moved successfully.

C:\WINDOWS\apigw.exe moved successfully.

C:\WINDOWS\apihk32.exe moved successfully.

C:\WINDOWS\apijj.exe moved successfully.

C:\WINDOWS\apimz.exe moved successfully.

C:\WINDOWS\apinj.exe moved successfully.

C:\WINDOWS\apinz.exe moved successfully.

C:\WINDOWS\apiod.exe moved successfully.

C:\WINDOWS\apipc32.exe moved successfully.

C:\WINDOWS\apirf.exe moved successfully.

C:\WINDOWS\apirh.exe moved successfully.

C:\WINDOWS\apirq.exe moved successfully.

C:\WINDOWS\apiti32.exe moved successfully.

C:\WINDOWS\apiuf.exe moved successfully.

C:\WINDOWS\apiuk32.exe moved successfully.

C:\WINDOWS\apivg.exe moved successfully.

C:\WINDOWS\apivp.exe moved successfully.

C:\WINDOWS\apiwf.exe moved successfully.

C:\WINDOWS\apiyz.exe moved successfully.

C:\WINDOWS\apizl.exe moved successfully.

C:\WINDOWS\appbw.exe moved successfully.

C:\WINDOWS\appcx.exe moved successfully.

C:\WINDOWS\appdh32.exe moved successfully.

C:\WINDOWS\appfc32.exe moved successfully.

C:\WINDOWS\appii32.exe moved successfully.

C:\WINDOWS\appju32.exe moved successfully.

C:\WINDOWS\appnq32.exe moved successfully.

C:\WINDOWS\appnu32.exe moved successfully.

C:\WINDOWS\appog32.exe moved successfully.

C:\WINDOWS\appoi32.exe moved successfully.

C:\WINDOWS\appqc32.exe moved successfully.

C:\WINDOWS\apptp.exe moved successfully.

C:\WINDOWS\apptu.exe moved successfully.

C:\WINDOWS\appub.exe moved successfully.

C:\WINDOWS\appwb.exe moved successfully.

C:\WINDOWS\appxf.exe moved successfully.

C:\WINDOWS\appxy32.exe moved successfully.

C:\WINDOWS\appyc.exe moved successfully.

C:\WINDOWS\appyn.exe moved successfully.

C:\WINDOWS\appzg.exe moved successfully.

C:\WINDOWS\appzh32.exe moved successfully.

C:\WINDOWS\atlah32.exe moved successfully.

C:\WINDOWS\atlbf32.exe moved successfully.

C:\WINDOWS\atlbk32.exe moved successfully.

C:\WINDOWS\atldh.exe moved successfully.

C:\WINDOWS\atlff.exe moved successfully.

C:\WINDOWS\atlgq.exe moved successfully.

C:\WINDOWS\atlgt.exe moved successfully.

C:\WINDOWS\atlhf32.exe moved successfully.

C:\WINDOWS\atlhm.exe moved successfully.

C:\WINDOWS\atlhv32.exe moved successfully.

C:\WINDOWS\atljs32.exe moved successfully.

C:\WINDOWS\atlkc32.exe moved successfully.

C:\WINDOWS\atlma.exe moved successfully.

C:\WINDOWS\atlnf.exe moved successfully.

C:\WINDOWS\atlrp.exe moved successfully.

C:\WINDOWS\atlsy32.exe moved successfully.

C:\WINDOWS\atltd32.exe moved successfully.

C:\WINDOWS\atlvh32.exe moved successfully.

C:\WINDOWS\atlwi32.exe moved successfully.

C:\WINDOWS\atlys.exe moved successfully.

C:\WINDOWS\atlyv.exe moved successfully.

C:\WINDOWS\atlyz32.exe moved successfully.

C:\WINDOWS\atlzc32.exe moved successfully.

C:\WINDOWS\crcc32.exe moved successfully.

C:\WINDOWS\crck32.exe moved successfully.

C:\WINDOWS\crcu32.exe moved successfully.

C:\WINDOWS\crdp.exe moved successfully.

C:\WINDOWS\cree.exe moved successfully.

C:\WINDOWS\crfn32.exe moved successfully.

C:\WINDOWS\crhl.exe moved successfully.

C:\WINDOWS\crho.exe moved successfully.

C:\WINDOWS\crir.exe moved successfully.

C:\WINDOWS\criu.exe moved successfully.

C:\WINDOWS\crix.exe moved successfully.

C:\WINDOWS\crjk32.exe moved successfully.

C:\WINDOWS\crjz.exe moved successfully.

C:\WINDOWS\crkp.exe moved successfully.

C:\WINDOWS\crmd.exe moved successfully.

C:\WINDOWS\crmr32.exe moved successfully.

C:\WINDOWS\crnt.exe moved successfully.

C:\WINDOWS\croz32.exe moved successfully.

C:\WINDOWS\crpf32.exe moved successfully.

C:\WINDOWS\crpn32.exe moved successfully.

C:\WINDOWS\crpo.exe moved successfully.

C:\WINDOWS\crpw32.exe moved successfully.

C:\WINDOWS\crpz32.exe moved successfully.

C:\WINDOWS\crqb32.exe moved successfully.

C:\WINDOWS\crqh.exe moved successfully.

C:\WINDOWS\crvg32.exe moved successfully.

C:\WINDOWS\crvl32.exe moved successfully.

C:\WINDOWS\d3cs.exe moved successfully.

C:\WINDOWS\d3cu.exe moved successfully.

C:\WINDOWS\d3fs.exe moved successfully.

C:\WINDOWS\d3gn32.exe moved successfully.

C:\WINDOWS\d3hs.exe moved successfully.

C:\WINDOWS\d3il32.exe moved successfully.

C:\WINDOWS\d3iu32.exe moved successfully.

C:\WINDOWS\d3ki32.exe moved successfully.

C:\WINDOWS\d3mc.exe moved successfully.

C:\WINDOWS\d3mc32.exe moved successfully.

C:\WINDOWS\d3pw32.exe moved successfully.

C:\WINDOWS\d3qi.exe moved successfully.

C:\WINDOWS\d3qp.exe moved successfully.

C:\WINDOWS\d3qx.exe moved successfully.

C:\WINDOWS\d3tx32.exe moved successfully.

C:\WINDOWS\d3uy32.exe moved successfully.

C:\WINDOWS\d3wz32.exe moved successfully.

C:\WINDOWS\d3xc32.exe moved successfully.

C:\WINDOWS\d3xx.exe moved successfully.

C:\WINDOWS\d3yv32.exe moved successfully.

C:\WINDOWS\d3yy.exe moved successfully.

C:\WINDOWS\d3zs32.exe moved successfully.

C:\WINDOWS\ieaq.exe moved successfully.

C:\WINDOWS\iecx32.exe moved successfully.

C:\WINDOWS\iedw.exe moved successfully.

C:\WINDOWS\ieea.exe moved successfully.

C:\WINDOWS\ieee.exe moved successfully.

C:\WINDOWS\ieet32.exe moved successfully.

C:\WINDOWS\iefd.exe moved successfully.

C:\WINDOWS\iega.exe moved successfully.

C:\WINDOWS\iegc32.exe moved successfully.

C:\WINDOWS\iegn32.exe moved successfully.

C:\WINDOWS\iehg.exe moved successfully.

C:\WINDOWS\iehq32.exe moved successfully.

C:\WINDOWS\ieif32.exe moved successfully.

C:\WINDOWS\ieik32.exe moved successfully.

C:\WINDOWS\iejw32.exe moved successfully.

C:\WINDOWS\iekv32.exe moved successfully.

C:\WINDOWS\ieoo32.exe moved successfully.

C:\WINDOWS\ieqz32.exe moved successfully.

C:\WINDOWS\ierb32.exe moved successfully.

C:\WINDOWS\iere32.exe moved successfully.

C:\WINDOWS\ierq32.exe moved successfully.

C:\WINDOWS\iesd32.exe moved successfully.

C:\WINDOWS\iesi32.exe moved successfully.

C:\WINDOWS\iess.exe moved successfully.

C:\WINDOWS\ieto32.exe moved successfully.

C:\WINDOWS\ieuo.exe moved successfully.

C:\WINDOWS\ievg.exe moved successfully.

C:\WINDOWS\iexw32.exe moved successfully.

C:\WINDOWS\ipat.exe moved successfully.

C:\WINDOWS\ipcs32.exe moved successfully.

C:\WINDOWS\ipgi32.exe moved successfully.

C:\WINDOWS\iphs32.exe moved successfully.

C:\WINDOWS\ipid.exe moved successfully.

C:\WINDOWS\ipjj32.exe moved successfully.

C:\WINDOWS\ipjk32.exe moved successfully.

C:\WINDOWS\ipjn.exe moved successfully.

C:\WINDOWS\ipju32.exe moved successfully.

C:\WINDOWS\ipkq.exe moved successfully.

C:\WINDOWS\ipkx32.exe moved successfully.

C:\WINDOWS\iplb.exe moved successfully.

C:\WINDOWS\ipmu.exe moved successfully.

C:\WINDOWS\ipov32.exe moved successfully.

C:\WINDOWS\iprc.exe moved successfully.

C:\WINDOWS\iprh.exe moved successfully.

C:\WINDOWS\iprh32.exe moved successfully.

C:\WINDOWS\ipsf32.exe moved successfully.

C:\WINDOWS\ipvl.exe moved successfully.

C:\WINDOWS\ipwn32.exe moved successfully.

C:\WINDOWS\ipwu.exe moved successfully.

C:\WINDOWS\javabk.exe moved successfully.

C:\WINDOWS\javabv32.exe moved successfully.

C:\WINDOWS\javabw32.exe moved successfully.

C:\WINDOWS\javadd32.exe moved successfully.

C:\WINDOWS\javaef.exe moved successfully.

C:\WINDOWS\javaew32.exe moved successfully.

C:\WINDOWS\javaez.exe moved successfully.

C:\WINDOWS\javafb.exe moved successfully.

C:\WINDOWS\javafc.exe moved successfully.

C:\WINDOWS\javafo32.exe moved successfully.

C:\WINDOWS\javahe32.exe moved successfully.

C:\WINDOWS\javahp.exe moved successfully.

C:\WINDOWS\javahv32.exe moved successfully.

C:\WINDOWS\javail32.exe moved successfully.

C:\WINDOWS\javamj32.exe moved successfully.

C:\WINDOWS\javamk32.exe moved successfully.

C:\WINDOWS\javams.exe moved successfully.

C:\WINDOWS\javamu32.exe moved successfully.

C:\WINDOWS\javanf32.exe moved successfully.

C:\WINDOWS\javapk.exe moved successfully.

C:\WINDOWS\javaqw32.exe moved successfully.

C:\WINDOWS\javatd.exe moved successfully.

C:\WINDOWS\javawh.exe moved successfully.

C:\WINDOWS\javaxh.exe moved successfully.

C:\WINDOWS\mfced32.exe moved successfully.

C:\WINDOWS\mfceq.exe moved successfully.

C:\WINDOWS\mfces32.exe moved successfully.

C:\WINDOWS\mfcez32.exe moved successfully.

C:\WINDOWS\mfcff.exe moved successfully.

C:\WINDOWS\mfcft.exe moved successfully.

C:\WINDOWS\mfchu.exe moved successfully.

C:\WINDOWS\mfcib.exe moved successfully.

C:\WINDOWS\mfcjg32.exe moved successfully.

C:\WINDOWS\mfcjk.exe moved successfully.

C:\WINDOWS\mfclb.exe moved successfully.

C:\WINDOWS\mfcmh.exe moved successfully.

C:\WINDOWS\mfcnj32.exe moved successfully.

C:\WINDOWS\mfcok32.exe moved successfully.

C:\WINDOWS\mfcom32.exe moved successfully.

C:\WINDOWS\mfcpq32.exe moved successfully.

C:\WINDOWS\mfcpv32.exe moved successfully.

C:\WINDOWS\mfcqv32.exe moved successfully.

C:\WINDOWS\mfcrx.exe moved successfully.

C:\WINDOWS\mfcsq32.exe moved successfully.

C:\WINDOWS\mfcsu.exe moved successfully.

C:\WINDOWS\mfctr.exe moved successfully.

C:\WINDOWS\mfcuu32.exe moved successfully.

C:\WINDOWS\mfcve32.exe moved successfully.

C:\WINDOWS\mfcvf32.exe moved successfully.

C:\WINDOWS\mfcvs32.exe moved successfully.

C:\WINDOWS\mfcwm.exe moved successfully.

C:\WINDOWS\mfcxl32.exe moved successfully.

C:\WINDOWS\mfcyg.exe moved successfully.

C:\WINDOWS\mfcyp.exe moved successfully.

C:\WINDOWS\mfczz.exe moved successfully.

C:\WINDOWS\msbn32.exe moved successfully.

C:\WINDOWS\msbv.exe moved successfully.

C:\WINDOWS\msds32.exe moved successfully.

C:\WINDOWS\msfm32.exe moved successfully.

C:\WINDOWS\msgc.exe moved successfully.

C:\WINDOWS\mshb.exe moved successfully.

C:\WINDOWS\mshd.exe moved successfully.

C:\WINDOWS\msjp32.exe moved successfully.

C:\WINDOWS\msjy32.exe moved successfully.

C:\WINDOWS\mslr32.exe moved successfully.

C:\WINDOWS\msma.exe moved successfully.

C:\WINDOWS\msom32.exe moved successfully.

C:\WINDOWS\msoy32.exe moved successfully.

C:\WINDOWS\msqc32.exe moved successfully.

C:\WINDOWS\msqg.exe moved successfully.

C:\WINDOWS\msuy32.exe moved successfully.

C:\WINDOWS\mswm32.exe moved successfully.

C:\WINDOWS\msxg.exe moved successfully.

C:\WINDOWS\msxt.exe moved successfully.

C:\WINDOWS\msyj.exe moved successfully.

C:\WINDOWS\mszv32.exe moved successfully.

C:\WINDOWS\netce32.exe moved successfully.

C:\WINDOWS\netcg.exe moved successfully.

C:\WINDOWS\netem32.exe moved successfully.

C:\WINDOWS\netev.exe moved successfully.

C:\WINDOWS\nethg32.exe moved successfully.

C:\WINDOWS\nethi32.exe moved successfully.

C:\WINDOWS\nethz.exe moved successfully.

C:\WINDOWS\netjd.exe moved successfully.

C:\WINDOWS\netov32.exe moved successfully.

C:\WINDOWS\netpn.exe moved successfully.

C:\WINDOWS\netpn32.exe moved successfully.

C:\WINDOWS\netqc32.exe moved successfully.

C:\WINDOWS\nettb.exe moved successfully.

C:\WINDOWS\netuz.exe moved successfully.

C:\WINDOWS\netvc32.exe moved successfully.

C:\WINDOWS\netxi.exe moved successfully.

C:\WINDOWS\netxo32.exe moved successfully.

C:\WINDOWS\netyt.exe moved successfully.

C:\WINDOWS\netzd32.exe moved successfully.

C:\WINDOWS\ntba32.exe moved successfully.

C:\WINDOWS\ntcd32.exe moved successfully.

C:\WINDOWS\ntcp.exe moved successfully.

C:\WINDOWS\ntdy32.exe moved successfully.

C:\WINDOWS\ntek32.exe moved successfully.

C:\WINDOWS\ntel.exe moved successfully.

C:\WINDOWS\ntet32.exe moved successfully.

C:\WINDOWS\ntft32.exe moved successfully.

C:\WINDOWS\nthi.exe moved successfully.

C:\WINDOWS\ntia.exe moved successfully.

C:\WINDOWS\ntld32.exe moved successfully.

C:\WINDOWS\ntng32.exe moved successfully.

C:\WINDOWS\ntnm.exe moved successfully.

C:\WINDOWS\ntpg.exe moved successfully.

C:\WINDOWS\ntpg32.exe moved successfully.

C:\WINDOWS\ntpp32.exe moved successfully.

C:\WINDOWS\ntrk.exe moved successfully.

C:\WINDOWS\ntrs32.exe moved successfully.

C:\WINDOWS\ntrw32.exe moved successfully.

C:\WINDOWS\nttq.exe moved successfully.

C:\WINDOWS\ntxm32.exe moved successfully.

C:\WINDOWS\ntxr32.exe moved successfully.

C:\WINDOWS\sdkaf32.exe moved successfully.

C:\WINDOWS\sdkan.exe moved successfully.

C:\WINDOWS\sdkbx32.exe moved successfully.

C:\WINDOWS\sdkco32.exe moved successfully.

C:\WINDOWS\sdkcu.exe moved successfully.

C:\WINDOWS\sdkdv32.exe moved successfully.

C:\WINDOWS\sdked32.exe moved successfully.

C:\WINDOWS\sdkei32.exe moved successfully.

C:\WINDOWS\sdkfq32.exe moved successfully.

C:\WINDOWS\sdkfs32.exe moved successfully.

C:\WINDOWS\sdkge32.exe moved successfully.

C:\WINDOWS\sdkgt32.exe moved successfully.

C:\WINDOWS\sdkgy.exe moved successfully.

C:\WINDOWS\sdkki32.exe moved successfully.

C:\WINDOWS\sdkru32.exe moved successfully.

C:\WINDOWS\sdkry32.exe moved successfully.

C:\WINDOWS\sdktn.exe moved successfully.

C:\WINDOWS\sdkuq.exe moved successfully.

C:\WINDOWS\sdkvl32.exe moved successfully.

C:\WINDOWS\sdkvp.exe moved successfully.

C:\WINDOWS\sdkwa32.exe moved successfully.

C:\WINDOWS\sdkwc.exe moved successfully.

C:\WINDOWS\sdkwx32.exe moved successfully.

C:\WINDOWS\sdkxx.exe moved successfully.

C:\WINDOWS\sdkyg.exe moved successfully.

C:\WINDOWS\sdkyj32.exe moved successfully.

C:\WINDOWS\sdkzi32.exe moved successfully.

C:\WINDOWS\sdkzo.exe moved successfully.

C:\WINDOWS\sysac32.exe moved successfully.

C:\WINDOWS\sysad32.exe moved successfully.

C:\WINDOWS\sysat32.exe moved successfully.

C:\WINDOWS\sysay32.exe moved successfully.

C:\WINDOWS\sysbf32.exe moved successfully.

C:\WINDOWS\sysdd32.exe moved successfully.

C:\WINDOWS\sysei32.exe moved successfully.

C:\WINDOWS\sysfa32.exe moved successfully.

C:\WINDOWS\sysfh.exe moved successfully.

C:\WINDOWS\sysfm32.exe moved successfully.

C:\WINDOWS\sysge.exe moved successfully.

C:\WINDOWS\syshs.exe moved successfully.

C:\WINDOWS\sysjx32.exe moved successfully.

C:\WINDOWS\sysmg32.exe moved successfully.

C:\WINDOWS\sysmz32.exe moved successfully.

C:\WINDOWS\sysoc32.exe moved successfully.

C:\WINDOWS\syspx32.exe moved successfully.

C:\WINDOWS\sysrj.exe moved successfully.

C:\WINDOWS\syssd32.exe moved successfully.

C:\WINDOWS\syssi32.exe moved successfully.

C:\WINDOWS\syssz32.exe moved successfully.

C:\WINDOWS\sysua32.exe moved successfully.

C:\WINDOWS\sysvb32.exe moved successfully.

C:\WINDOWS\sysvv32.exe moved successfully.

C:\WINDOWS\sysxz.exe moved successfully.

C:\WINDOWS\wincg.exe moved successfully.

C:\WINDOWS\wincq.exe moved successfully.

C:\WINDOWS\winfj.exe moved successfully.

C:\WINDOWS\winfz32.exe moved successfully.

C:\WINDOWS\wingt32.exe moved successfully.

C:\WINDOWS\wingw32.exe moved successfully.

C:\WINDOWS\winin32.exe moved successfully.

C:\WINDOWS\winiz32.exe moved successfully.

C:\WINDOWS\winjw32.exe moved successfully.

C:\WINDOWS\winkg.exe moved successfully.

C:\WINDOWS\winmf.exe moved successfully.

C:\WINDOWS\winpg.exe moved successfully.

C:\WINDOWS\winqy.exe moved successfully.

C:\WINDOWS\winrn32.exe moved successfully.

C:\WINDOWS\winsn.exe moved successfully.

C:\WINDOWS\winsy.exe moved successfully.

C:\WINDOWS\winup32.exe moved successfully.

C:\WINDOWS\winwa.exe moved successfully.

C:\WINDOWS\winxf32.exe moved successfully.

C:\WINDOWS\SYSTEM32\addbu32.exe moved successfully.

C:\WINDOWS\SYSTEM32\adddd32.exe moved successfully.

C:\WINDOWS\SYSTEM32\adddw32.exe moved successfully.

C:\WINDOWS\SYSTEM32\addfb.exe moved successfully.

C:\WINDOWS\SYSTEM32\addfc.exe moved successfully.

C:\WINDOWS\SYSTEM32\addgp.exe moved successfully.

C:\WINDOWS\SYSTEM32\addhl32.exe moved successfully.

C:\WINDOWS\SYSTEM32\addiu32.exe moved successfully.

C:\WINDOWS\SYSTEM32\addkk32.exe moved successfully.

C:\WINDOWS\SYSTEM32\addli32.exe moved successfully.

C:\WINDOWS\SYSTEM32\addpc.exe moved successfully.

C:\WINDOWS\SYSTEM32\addrd.exe moved successfully.

C:\WINDOWS\SYSTEM32\addvi32.exe moved successfully.

C:\WINDOWS\SYSTEM32\addvv.exe moved successfully.

C:\WINDOWS\SYSTEM32\addxv.exe moved successfully.

C:\WINDOWS\SYSTEM32\addxx32.exe moved successfully.

C:\WINDOWS\SYSTEM32\addze32.exe moved successfully.

C:\WINDOWS\SYSTEM32\addzy32.exe moved successfully.

C:\WINDOWS\SYSTEM32\addzz.exe moved successfully.

C:\WINDOWS\SYSTEM32\apiaj32.exe moved successfully.

C:\WINDOWS\SYSTEM32\apiap32.exe moved successfully.

C:\WINDOWS\SYSTEM32\apicz.exe moved successfully.

C:\WINDOWS\SYSTEM32\apidu.exe moved successfully.

C:\WINDOWS\SYSTEM32\apidz.exe moved successfully.

C:\WINDOWS\SYSTEM32\apiei.exe moved successfully.

C:\WINDOWS\SYSTEM32\apieq32.exe moved successfully.

C:\WINDOWS\SYSTEM32\apifz.exe moved successfully.

C:\WINDOWS\SYSTEM32\apige32.exe moved successfully.

C:\WINDOWS\SYSTEM32\apigi32.exe moved successfully.

C:\WINDOWS\SYSTEM32\apiki32.exe moved successfully.

C:\WINDOWS\SYSTEM32\apikj.exe moved successfully.

C:\WINDOWS\SYSTEM32\apikk.exe moved successfully.

C:\WINDOWS\SYSTEM32\apilb32.exe moved successfully.

C:\WINDOWS\SYSTEM32\apinm32.exe moved successfully.

C:\WINDOWS\SYSTEM32\apiod32.exe moved successfully.

C:\WINDOWS\SYSTEM32\apipf.exe moved successfully.

C:\WINDOWS\SYSTEM32\apipt.exe moved successfully.

C:\WINDOWS\SYSTEM32\apirf32.exe moved successfully.

C:\WINDOWS\SYSTEM32\apitq32.exe moved successfully.

C:\WINDOWS\SYSTEM32\apiwc32.exe moved successfully.

C:\WINDOWS\SYSTEM32\apixn.exe moved successfully.

C:\WINDOWS\SYSTEM32\appaj.exe moved successfully.

C:\WINDOWS\SYSTEM32\appbi32.exe moved successfully.

C:\WINDOWS\SYSTEM32\appcd32.exe moved successfully.

C:\WINDOWS\SYSTEM32\appco32.exe moved successfully.

C:\WINDOWS\SYSTEM32\appej32.exe moved successfully.

C:\WINDOWS\SYSTEM32\appff32.exe moved successfully.

C:\WINDOWS\SYSTEM32\appfw32.exe moved successfully.

C:\WINDOWS\SYSTEM32\appgd32.exe moved successfully.

C:\WINDOWS\SYSTEM32\appgj.exe moved successfully.

C:\WINDOWS\SYSTEM32\appgw32.exe moved successfully.

C:\WINDOWS\SYSTEM32\appkz32.exe moved successfully.

C:\WINDOWS\SYSTEM32\applr.exe moved successfully.

C:\WINDOWS\SYSTEM32\appmb.exe moved successfully.

C:\WINDOWS\SYSTEM32\appng32.exe moved successfully.

C:\WINDOWS\SYSTEM32\appnv.exe moved successfully.

C:\WINDOWS\SYSTEM32\appow32.exe moved successfully.

C:\WINDOWS\SYSTEM32\apppr32.exe moved successfully.

C:\WINDOWS\SYSTEM32\apprb32.exe moved successfully.

C:\WINDOWS\SYSTEM32\apptw32.exe moved successfully.

C:\WINDOWS\SYSTEM32\appvd.exe moved successfully.

C:\WINDOWS\SYSTEM32\appwb32.exe moved successfully.

C:\WINDOWS\SYSTEM32\appwe32.exe moved successfully.

C:\WINDOWS\SYSTEM32\appyg32.exe moved successfully.

C:\WINDOWS\SYSTEM32\appzf32.exe moved successfully.

C:\WINDOWS\SYSTEM32\appzp32.exe moved successfully.

C:\WINDOWS\SYSTEM32\atlcy32.exe moved successfully.

C:\WINDOWS\SYSTEM32\atlew.exe moved successfully.

C:\WINDOWS\SYSTEM32\atlfw32.exe moved successfully.

C:\WINDOWS\SYSTEM32\atlgf.exe moved successfully.

C:\WINDOWS\SYSTEM32\atlig32.exe moved successfully.

C:\WINDOWS\SYSTEM32\atlkn32.exe moved successfully.

C:\WINDOWS\SYSTEM32\atlky.exe moved successfully.

C:\WINDOWS\SYSTEM32\atllh32.exe moved successfully.

C:\WINDOWS\SYSTEM32\atlsb32.exe moved successfully.

C:\WINDOWS\SYSTEM32\atlsk32.exe moved successfully.

C:\WINDOWS\SYSTEM32\atlsm32.exe moved successfully.

C:\WINDOWS\SYSTEM32\atlsy32.exe moved successfully.

C:\WINDOWS\SYSTEM32\atltd32.exe moved successfully.

C:\WINDOWS\SYSTEM32\atlte32.exe moved successfully.

C:\WINDOWS\SYSTEM32\atlua32.exe moved successfully.

C:\WINDOWS\SYSTEM32\atlui32.exe moved successfully.

C:\WINDOWS\SYSTEM32\atlyn32.exe moved successfully.

C:\WINDOWS\SYSTEM32\crba.exe moved successfully.

C:\WINDOWS\SYSTEM32\crcu32.exe moved successfully.

C:\WINDOWS\SYSTEM32\crfr32.exe moved successfully.

C:\WINDOWS\SYSTEM32\crgx32.exe moved successfully.

C:\WINDOWS\SYSTEM32\crhn.exe moved successfully.

C:\WINDOWS\SYSTEM32\cria32.exe moved successfully.

C:\WINDOWS\SYSTEM32\crkb32.exe moved successfully.

C:\WINDOWS\SYSTEM32\crmy.exe moved successfully.

C:\WINDOWS\SYSTEM32\crnz32.exe moved successfully.

C:\WINDOWS\SYSTEM32\crob32.exe moved successfully.

C:\WINDOWS\SYSTEM32\croq32.exe moved successfully.

C:\WINDOWS\SYSTEM32\crow32.exe moved successfully.

C:\WINDOWS\SYSTEM32\crpf.exe moved successfully.

C:\WINDOWS\SYSTEM32\crto32.exe moved successfully.

C:\WINDOWS\SYSTEM32\crur32.exe moved successfully.

C:\WINDOWS\SYSTEM32\crvw.exe moved successfully.

C:\WINDOWS\SYSTEM32\crxb32.exe moved successfully.

C:\WINDOWS\SYSTEM32\crxm32.exe moved successfully.

C:\WINDOWS\SYSTEM32\crxx32.exe moved successfully.

C:\WINDOWS\SYSTEM32\cryh32.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3bp.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3bt32.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3du32.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3gs32.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3kx32.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3mp32.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3mu.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3na.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3nh32.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3nu.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3on32.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3pi32.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3si32.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3st32.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3sz.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3tz.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3xa32.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3yt.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3yw.exe moved successfully.

C:\WINDOWS\SYSTEM32\d3zd.exe moved successfully.

C:\WINDOWS\SYSTEM32\ieag.exe moved successfully.

C:\WINDOWS\SYSTEM32\iebf32.exe moved successfully.

C:\WINDOWS\SYSTEM32\iebn32.exe moved successfully.

C:\WINDOWS\SYSTEM32\iebp.exe moved successfully.

C:\WINDOWS\SYSTEM32\iegq32.exe moved successfully.

C:\WINDOWS\SYSTEM32\iehe.exe moved successfully.

C:\WINDOWS\SYSTEM32\ieht.exe moved successfully.

C:\WINDOWS\SYSTEM32\ieip32.exe moved successfully.

C:\WINDOWS\SYSTEM32\iejn32.exe moved successfully.

C:\WINDOWS\SYSTEM32\iejx32.exe moved successfully.

C:\WINDOWS\SYSTEM32\iekb32.exe moved successfully.

C:\WINDOWS\SYSTEM32\iemy.exe moved successfully.

C:\WINDOWS\SYSTEM32\iena.exe moved successfully.

C:\WINDOWS\SYSTEM32\ieoj.exe moved successfully.

C:\WINDOWS\SYSTEM32\ieov.exe moved successfully.

C:\WINDOWS\SYSTEM32\iepr32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ieqi32.exe moved successfully.

C:\WINDOWS\SYSTEM32\iera32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ierm32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ierq32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ieua.exe moved successfully.

C:\WINDOWS\SYSTEM32\ieuj32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ievc.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipak.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipak32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipax32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipbf32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipdl.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipee32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipfc.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipid.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipix.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipkl.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipkr32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipmq.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipqz32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipuo.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipvc.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipwo.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipxu.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipxy32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipyt32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ipzn32.exe moved successfully.

C:\WINDOWS\SYSTEM32\javaam32.exe moved successfully.

C:\WINDOWS\SYSTEM32\javabe32.exe moved successfully.

C:\WINDOWS\SYSTEM32\javaev32.exe moved successfully.

C:\WINDOWS\SYSTEM32\javakq32.exe moved successfully.

C:\WINDOWS\SYSTEM32\javalr.exe moved successfully.

C:\WINDOWS\SYSTEM32\javapu.exe moved successfully.

C:\WINDOWS\SYSTEM32\javasb32.exe moved successfully.

C:\WINDOWS\SYSTEM32\javash.exe moved successfully.

C:\WINDOWS\SYSTEM32\javasp.exe moved successfully.

C:\WINDOWS\SYSTEM32\javasz32.exe moved successfully.

C:\WINDOWS\SYSTEM32\javaty32.exe moved successfully.

C:\WINDOWS\SYSTEM32\javauk.exe moved successfully.

C:\WINDOWS\SYSTEM32\javavq32.exe moved successfully.

C:\WINDOWS\SYSTEM32\javavt32.exe moved successfully.

C:\WINDOWS\SYSTEM32\javawv.exe moved successfully.

C:\WINDOWS\SYSTEM32\javayi.exe moved successfully.

C:\WINDOWS\SYSTEM32\javazp.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcbn.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfccc.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcey32.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcfh32.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcie32.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcjz.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcml32.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcmw.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcnz.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcsg.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfctj32.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcur32.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcve32.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcvh32.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcvp32.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcvw.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcxd32.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcxu.exe moved successfully.

C:\WINDOWS\SYSTEM32\mfcyh32.exe moved successfully.

C:\WINDOWS\SYSTEM32\msah.exe moved successfully.

C:\WINDOWS\SYSTEM32\msap32.exe moved successfully.

C:\WINDOWS\SYSTEM32\msaw32.exe moved successfully.

C:\WINDOWS\SYSTEM32\msbd.exe moved successfully.

C:\WINDOWS\SYSTEM32\msbz32.exe moved successfully.

C:\WINDOWS\SYSTEM32\mscc32.exe moved successfully.

C:\WINDOWS\SYSTEM32\msdd.exe moved successfully.

C:\WINDOWS\SYSTEM32\msed32.exe moved successfully.

C:\WINDOWS\SYSTEM32\msek32.exe moved successfully.

C:\WINDOWS\SYSTEM32\msfa32.exe moved successfully.

C:\WINDOWS\SYSTEM32\msjl.exe moved successfully.

C:\WINDOWS\SYSTEM32\msjv32.exe moved successfully.

C:\WINDOWS\SYSTEM32\msni32.exe moved successfully.

C:\WINDOWS\SYSTEM32\msoj.exe moved successfully.

C:\WINDOWS\SYSTEM32\mssq32.exe moved successfully.

C:\WINDOWS\SYSTEM32\mswm32.exe moved successfully.

C:\WINDOWS\SYSTEM32\mswx32.exe moved successfully.

C:\WINDOWS\SYSTEM32\msxs32.exe moved successfully.

C:\WINDOWS\SYSTEM32\msyi.exe moved successfully.

C:\WINDOWS\SYSTEM32\mszh.exe moved successfully.

C:\WINDOWS\SYSTEM32\mszt32.exe moved successfully.

C:\WINDOWS\SYSTEM32\netba.exe moved successfully.

C:\WINDOWS\SYSTEM32\netbd.exe moved successfully.

C:\WINDOWS\SYSTEM32\netbp32.exe moved successfully.

C:\WINDOWS\SYSTEM32\netcf32.exe moved successfully.

C:\WINDOWS\SYSTEM32\netdy.exe moved successfully.

C:\WINDOWS\SYSTEM32\netjh32.exe moved successfully.

C:\WINDOWS\SYSTEM32\netkh32.exe moved successfully.

C:\WINDOWS\SYSTEM32\netkj.exe moved successfully.

C:\WINDOWS\SYSTEM32\netmr.exe moved successfully.

C:\WINDOWS\SYSTEM32\netnf.exe moved successfully.

C:\WINDOWS\SYSTEM32\netnu.exe moved successfully.

C:\WINDOWS\SYSTEM32\netog32.exe moved successfully.

C:\WINDOWS\SYSTEM32\neton32.exe moved successfully.

C:\WINDOWS\SYSTEM32\netoo.exe moved successfully.

C:\WINDOWS\SYSTEM32\netpi32.exe moved successfully.

C:\WINDOWS\SYSTEM32\netps32.exe moved successfully.

C:\WINDOWS\SYSTEM32\netpv32.exe moved successfully.

C:\WINDOWS\SYSTEM32\netrw32.exe moved successfully.

C:\WINDOWS\SYSTEM32\netuk32.exe moved successfully.

C:\WINDOWS\SYSTEM32\netwm32.exe moved successfully.

C:\WINDOWS\SYSTEM32\netzf.exe moved successfully.

C:\WINDOWS\SYSTEM32\ntbb.exe moved successfully.

C:\WINDOWS\SYSTEM32\ntca.exe moved successfully.

C:\WINDOWS\SYSTEM32\ntcn32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ntcp.exe moved successfully.

C:\WINDOWS\SYSTEM32\ntcz32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ntfn.exe moved successfully.

C:\WINDOWS\SYSTEM32\ntgi32.exe moved successfully.

C:\WINDOWS\SYSTEM32\nthj.exe moved successfully.

C:\WINDOWS\SYSTEM32\nthn.exe moved successfully.

C:\WINDOWS\SYSTEM32\nthx32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ntir32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ntrt.exe moved successfully.

C:\WINDOWS\SYSTEM32\ntru.exe moved successfully.

C:\WINDOWS\SYSTEM32\ntuj32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ntwn32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ntxk.exe moved successfully.

C:\WINDOWS\SYSTEM32\ntyl32.exe moved successfully.

C:\WINDOWS\SYSTEM32\ntzd.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkam.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkcp.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkeu32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkgr.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkgw32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkhn32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkho.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkib32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkjr.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkks32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdklp.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdklt32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdknf32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdknn32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkod32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkrp32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkrr32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkvl32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkwv.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkyn32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkzd32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sdkzf32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysae.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysby.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysco.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysdn32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysdr.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysif32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysmv32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysmw32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysna32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysoq32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysps32.exe moved successfully.

C:\WINDOWS\SYSTEM32\syspv32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysrw32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysse32.exe moved successfully.

C:\WINDOWS\SYSTEM32\syssw.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysua32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysvt32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysvv32.exe moved successfully.

C:\WINDOWS\SYSTEM32\sysxe32.exe moved successfully.

C:\WINDOWS\SYSTEM32\syszc.exe moved successfully.

C:\WINDOWS\SYSTEM32\syszi.exe moved successfully.

C:\WINDOWS\SYSTEM32\TitanPokerIconDropTRA108.ico moved successfully.

C:\WINDOWS\SYSTEM32\tmp.reg moved successfully.

C:\WINDOWS\SYSTEM32\TrafficSales_Casino_3.ico moved successfully.

C:\WINDOWS\SYSTEM32\winfl32.exe moved successfully.

C:\WINDOWS\SYSTEM32\wingd32.exe moved successfully.

C:\WINDOWS\SYSTEM32\winge.exe moved successfully.

C:\WINDOWS\SYSTEM32\wingy32.exe moved successfully.

C:\WINDOWS\SYSTEM32\winje32.exe moved successfully.

C:\WINDOWS\SYSTEM32\winkf.exe moved successfully.

C:\WINDOWS\SYSTEM32\winlj32.exe moved successfully.

C:\WINDOWS\SYSTEM32\winly.exe moved successfully.

C:\WINDOWS\SYSTEM32\winlz.exe moved successfully.

C:\WINDOWS\SYSTEM32\winqd.exe moved successfully.

C:\WINDOWS\SYSTEM32\winra.exe moved successfully.

C:\WINDOWS\SYSTEM32\winto.exe moved successfully.

C:\WINDOWS\SYSTEM32\winwa32.exe moved successfully.

C:\WINDOWS\SYSTEM32\winwr32.exe moved successfully.

C:\WINDOWS\SYSTEM32\winyn.exe moved successfully.

C:\WINDOWS\SYSTEM32\winyv32.exe moved successfully.

C:\WINDOWS\SYSTEM32\winyw32.exe moved successfully.

C:\WINDOWS\SYSTEM32\winzb.exe moved successfully.

C:\WINDOWS\SYSTEM32\winzg32.exe moved successfully.

[Files - Modified Wihin 30 days]

File move failed. C:\WINDOWS\SYSTEM32\l?gonui.exe scheduled to be moved on reboot.

< End of log >

Created on 01/19/2007 07:47:26

 

 

voila la première étape....

[ratcoldo]

Pour la seconde étape, ca plante...le run scan commence, puis l'ordi fait un bruit de bouillouire prete à exploser et écran blanc...J'arrete, recommence et même bin's !!

 

??????

[ratcoldo]

apres un repos de qqs minutes, monsieur l'ordi a bien voulou faire...

 

inPFind3 logfile created on: 19/01/2007 08:43:28

WinPFind3U by OldTimer - Version 1.0.11 Folder = C:\Documents and Settings\Bob\Bureau\Secours VIrus\WinPFind3u\

Microsoft Windows XP Service Pack 2 (Version = 5.1.2600)

Internet Explorer (Version = 6.0.2900.2180)

 

491040 Kb Total Physical Memory | 148172 Kb Available Physical Memory | 30,18% Memory free

1149132 Kb Paging File | 811528 Kb Available in Paging File | 70,62% Paging File free

Paging file location(s): C:\pagefile.sys 720 1440;

 

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 29302528 Kb Total Space | 17132752 Kb Free Space | 58,47% Space Free

Drive D: | 126985760 Kb Total Space | 123715397 Kb Free Space | 97,42% Space Free

E: Drive not present or media not loaded

F: Drive not present or media not loaded

 

 

[Processes - Non-Microsoft Only]

agrsmmsg.exe -> %SystemRoot%\AGRSMMSG.exe -> Agere Systems [Ver = 2.1.28 2.1.28 03/31/2003 13:54:16 | Size = 88267 bytes | Modified Date = 31/03/2003 12:54:18 | Attr = ]

avgas.exe -> %ProgramFiles%\Grisoft\AVG Anti-Spyware 7.5\avgas.exe -> Anti-Malware Development a.s. [Ver = 7, 5, 0, 50 | Size = 6266880 bytes | Modified Date = 07/10/2006 13:20:00 | Attr = ]

dragdrop.exe -> %ProgramFiles%\drag'n drop cd+dvd\BinFiles\DragDrop.exe -> [Ver = 3, 0, 0, 0 | Size = 1171456 bytes | Modified Date = 23/06/2003 14:33:00 | Attr = ]

ezsp_px.exe -> %System32%\ezSP_Px.exe -> Easy Systems Japan Ltd. [Ver = 1, 0, 0, 0 | Size = 40960 bytes | Modified Date = 20/08/2002 09:29:26 | Attr = ]

ftrtsvc.exe -> %System32%\FTRTSVC.exe -> France Telecom [Ver = 11.0 (4) | Size = 40960 bytes | Modified Date = 23/08/2004 13:49:56 | Attr = ]

gps.exe -> %ProgramFiles%\sony\giga pocket\gps.exe -> Sony Corporation [Ver = 5.5.03.07220 | Size = 208896 bytes | Modified Date = 22/07/2003 12:27:00 | Attr = ]

gpvsvr.exe -> %ProgramFiles%\sony\giga pocket\GPVSvr.exe -> Sony Corporation [Ver = 2, 5, 01, 05120 | Size = 942080 bytes | Modified Date = 23/06/2003 15:44:42 | Attr = ]

guard.exe -> %ProgramFiles%\Grisoft\AVG Anti-Spyware 7.5\guard.exe -> Anti-Malware Development a.s. [Ver = 7, 5, 0, 47 | Size = 204800 bytes | Modified Date = 28/09/2006 15:13:20 | Attr = ]

hpqste08.exe -> %ProgramFiles%\HP\Digital Imaging\bin\hpqste08.exe -> Hewlett-Packard Co. [Ver = 53.0.13.000 | Size = 204800 bytes | Modified Date = 11/05/2005 23:40:38 | Attr = ]

hpqtra08.exe -> %ProgramFiles%\HP\Digital Imaging\bin\hpqtra08.exe -> Hewlett-Packard Co. [Ver = 53.0.13.000 | Size = 282624 bytes | Modified Date = 11/05/2005 22:23:26 | Attr = ]

hpwuschd2.exe -> %ProgramFiles%\HP\HP Software Update\HPWuSchd2.exe -> Hewlett-Packard Co. [Ver = 53.0.13.000 | Size = 49152 bytes | Modified Date = 11/05/2005 22:12:54 | Attr = ]

pccclient.exe -> %ProgramFiles%\Trend Micro\PC-cillin 9\PCCClient.exe -> Trend Micro Inc. [Ver = 9.0.6.1403 | Size = 458752 bytes | Modified Date = 25/05/2006 10:01:32 | Attr = ]

pccguide.exe -> %ProgramFiles%\Trend Micro\PC-cillin 9\pccguide.exe -> Trend Micro Inc. [Ver = 9.0.6.1403 | Size = 274432 bytes | Modified Date = 25/05/2006 10:01:32 | Attr = ]

pccpfw.exe -> %ProgramFiles%\Trend Micro\PC-cillin 9\PCCPFW.exe -> Trend Micro Inc. [Ver = 9.0.6.1403 | Size = 163840 bytes | Modified Date = 25/05/2006 10:01:32 | Attr = ]

pop3trap.exe -> %ProgramFiles%\Trend Micro\PC-cillin 9\Pop3trap.exe -> Trend Micro Inc. [Ver = 9.0.6.1403 | Size = 315458 bytes | Modified Date = 25/05/2006 10:01:32 | Attr = ]

qttask.exe -> %ProgramFiles%\QuickTime\qttask.exe -> Apple Computer, Inc. [Ver = 6.3 | Size = 77824 bytes | Modified Date = 09/11/2004 22:50:56 | Attr = ]

reservemodule.exe -> %ProgramFiles%\sony\giga pocket\ReserveModule.exe -> Sony Corporation [Ver = 5.5.03.06240 | Size = 262144 bytes | Modified Date = 07/07/2003 09:34:12 | Attr = ]

rm_sv.exe -> %ProgramFiles%\sony\giga pocket\RM_SV.exe -> Sony Corporation [Ver = 5, 5, 0, 05280 | Size = 90112 bytes | Modified Date = 07/07/2003 09:35:32 | Attr = ]

shwserv.exe -> %ProgramFiles%\sony\giga pocket\shwserv.exe -> Sony Corporation [Ver = 5, 5, 41, 05120 | Size = 77824 bytes | Modified Date = 07/07/2003 09:36:22 | Attr = ]

sssvr.exe -> %ProgramFiles%\sony\vaio media music server\SSSvr.exe -> Sony Corporation [Ver = 2.5.00.15184 | Size = 536648 bytes | Modified Date = 18/03/2003 16:00:42 | Attr = ]

sv_httpd.exe -> %CommonProgramFiles%\Sony Shared\vaio media platform\sv_httpd.exe -> Sony Corporation [Ver = 2.5.01.06030 | Size = 57344 bytes | Modified Date = 23/06/2003 12:42:30 | Attr = ]

sv_httpd.exe -> %CommonProgramFiles%\sony shared\vaio media platform\sv_httpd.exe -> Sony Corporation [Ver = 2.5.01.06030 | Size = 57344 bytes | Modified Date = 23/06/2003 12:42:30 | Attr = ]

taskbaricon.exe -> %ProgramFiles%\Wanadoo\TaskBarIcon.exe -> France Télécom R&D [Ver = 5.9 (1) | Size = 61440 bytes | Modified Date = 05/10/2004 16:00:12 | Attr = ]

tmntsrv.exe -> %ProgramFiles%\Trend Micro\PC-cillin 9\Tmntsrv.exe -> Trend Micro Inc. [Ver = 9.0.6.1403 | Size = 176128 bytes | Modified Date = 25/05/2006 10:01:32 | Attr = ]

upnpframework.exe -> %CommonProgramFiles%\Sony Shared\vaio media platform\UPnPFramework.exe -> Sony Corporation [Ver = 3.0.01.16070 | Size = 675840 bytes | Modified Date = 10/04/2003 13:55:00 | Attr = ]

upnpframework.exe -> %CommonProgramFiles%\sony shared\vaio media platform\UPnPFramework.exe -> Sony Corporation [Ver = 3.0.01.16070 | Size = 675840 bytes | Modified Date = 10/04/2003 13:55:00 | Attr = ]

usbsircs.exe -> %ProgramFiles%\sony\usbsircs\USBsircs.exe -> Sony Corporation [Ver = 6, 1, 00, 06251 | Size = 208896 bytes | Modified Date = 25/06/2003 12:02:24 | Attr = ]

vaserv.exe -> %ProgramFiles%\sony\VAIO Action Setup\VAServ.exe -> Sony Corporation [Ver = 1.6.00.02160 | Size = 53248 bytes | Modified Date = 16/02/2003 20:35:06 | Attr = ]

webtrap.exe -> %ProgramFiles%\Trend Micro\PC-cillin 9\WebTrap.exe -> Trend Micro Inc. [Ver = 9.0.6.1403 | Size = 233472 bytes | Modified Date = 25/05/2006 10:01:34 | Attr = ]

winpfind3u.exe -> %UserDesktop%\Secours VIrus\WinPFind3u\WinPFind3U.exe -> Oldtimer Tools [Ver = 1.0.11.0 | Size = 306176 bytes | Modified Date = 18/01/2007 18:01:14 | Attr = ]

wlancfg.exe -> %ProgramFiles%\Inventel\Gateway\WLANCFG.EXE -> Inventel [Ver = 4, 0, 0, 0 | Size = 1466368 bytes | Modified Date = 20/04/2006 15:45:54 | Attr = ]

 

[Win32 Services - Non-Microsoft Only]

(AVG Anti-Spyware Guard) AVG Anti-Spyware Guard [Win32_Own | Auto | Running] -> %ProgramFiles%\Grisoft\AVG Anti-Spyware 7.5\guard.exe -> Anti-Malware Development a.s. [Ver = 7, 5, 0, 47 | Size = 204800 bytes | Modified Date = 28/09/2006 15:13:20 | Attr = ]

(dmadmin) Service d'administration du Gestionnaire de disque logique [Win32_Shared | On_Demand | Stopped] -> %System32%\dmadmin.exe -> Microsoft Corp., Veritas Software [Ver = 2600.2180.503.0 | Size = 225280 bytes | Modified Date = 20/08/2004 00:09:52 | Attr = ]

(FTRTSVC) France Telecom Routing Table Service [Win32_Own | Auto | Running] -> %System32%\FTRTSVC.exe -> France Telecom [Ver = 11.0 (4) | Size = 40960 bytes | Modified Date = 23/08/2004 13:49:56 | Attr = ]

(Giga Pocket Hardware Detector) Giga Pocket Hardware Detector [Win32_Own | Auto | Running] -> %ProgramFiles%\sony\giga pocket\shwserv.exe -> Sony Corporation [Ver = 5, 5, 41, 05120 | Size = 77824 bytes | Modified Date = 07/07/2003 09:36:22 | Attr = ]

(PCCPFW) PC-cillin PersonalFirewall [Win32_Own | Auto | Running] -> %ProgramFiles%\Trend Micro\PC-cillin 9\PCCPFW.exe -> Trend Micro Inc. [Ver = 9.0.6.1403 | Size = 163840 bytes | Modified Date = 25/05/2006 10:01:32 | Attr = ]

(Pml Driver HPZ12) Pml Driver HPZ12 [Win32_Own | Auto | Stopped] -> %System32%\HPZipm12.exe -> HP [Ver = 9, 0, 0, 0 | Size = 69632 bytes | Modified Date = 29/09/2004 11:14:36 | Attr = ]

(Sony TV Tuner Controller) Sony TV Tuner Controller [Win32_Own | On_Demand | Stopped] -> %ProgramFiles%\sony\giga pocket\halsv.exe -> Sony Corporation [Ver = 5.5.03.05270 | Size = 118784 bytes | Modified Date = 07/07/2003 12:43:22 | Attr = ]

(Sony TV Tuner Manager) Sony TV Tuner Manager [Win32_Own | On_Demand | Running] -> %ProgramFiles%\sony\giga pocket\RM_SV.exe -> Sony Corporation [Ver = 5, 5, 0, 05280 | Size = 90112 bytes | Modified Date = 07/07/2003 09:35:32 | Attr = ]

(SPTISRV) Sony SPTI Service [Win32_Own | On_Demand | Stopped] -> %CommonProgramFiles%\Sony Shared\AVLib\SPTISRV.exe -> Sony Corporation [Ver = 3.2.00.12242 | Size = 65536 bytes | Modified Date = 24/12/2002 10:01:22 | Attr = ]

(Tmntsrv) Trend NT Realtime Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Trend Micro\PC-cillin 9\Tmntsrv.exe -> Trend Micro Inc. [Ver = 9.0.6.1403 | Size = 176128 bytes | Modified Date = 25/05/2006 10:01:32 | Attr = ]

(VAIOMediaPlatform-MusicServer-AppServer) VAIO Media Music Server [Win32_Own | Auto | Running] -> %ProgramFiles%\sony\vaio media music server\SSSvr.exe -> Sony Corporation [Ver = 2.5.00.15184 | Size = 536648 bytes | Modified Date = 18/03/2003 16:00:42 | Attr = ]

(VAIOMediaPlatform-MusicServer-HTTP) VAIO Media Music Server (HTTP) [Win32_Shared | Auto | Running] -> %CommonProgramFiles%\Sony Shared\vaio media platform\sv_httpd.exe -> Sony Corporation [Ver = 2.5.01.06030 | Size = 57344 bytes | Modified Date = 23/06/2003 12:42:30 | Attr = ]

(VAIOMediaPlatform-MusicServer-UPnP) VAIO Media Music Server (UPnP) [Win32_Own | Auto | Running] -> %CommonProgramFiles%\Sony Shared\vaio media platform\UPnPFramework.exe -> Sony Corporation [Ver = 3.0.01.16070 | Size = 675840 bytes | Modified Date = 10/04/2003 13:55:00 | Attr = ]

(VAIOMediaPlatform-PhotoServer-AppServer) VAIO Media Photo Server [Win32_Own | Auto | Stopped] -> %ProgramFiles%\sony\photo server\appsrv\PhotoAppSrv.exe -> Sony Corporation [Ver = 2, 5, 1,06240 | Size = 860160 bytes | Modified Date = 24/06/2003 09:08:06 | Attr = ]

(VAIOMediaPlatform-PhotoServer-HTTP) VAIO Media Photo Server (HTTP) [Win32_Shared | Auto | Stopped] -> %CommonProgramFiles%\sony shared\vaio media platform\sv_httpd.exe -> Sony Corporation [Ver = 2.5.01.06030 | Size = 57344 bytes | Modified Date = 23/06/2003 12:42:30 | Attr = ]

(VAIOMediaPlatform-PhotoServer-UPnP) VAIO Media Photo Server (UPnP) [Win32_Own | Auto | Stopped] -> %CommonProgramFiles%\sony shared\vaio media platform\UPnPFramework.exe -> Sony Corporation [Ver = 3.0.01.16070 | Size = 675840 bytes | Modified Date = 10/04/2003 13:55:00 | Attr = ]

(VAIOMediaPlatform-VideoServer-AppServer) VAIO Media Video Server [Win32_Own | Auto | Running] -> %ProgramFiles%\sony\giga pocket\GPVSvr.exe -> Sony Corporation [Ver = 2, 5, 01, 05120 | Size = 942080 bytes | Modified Date = 23/06/2003 15:44:42 | Attr = ]

(VAIOMediaPlatform-VideoServer-HTTP) VAIO Media Video Server (HTTP) [Win32_Shared | Auto | Running] -> %CommonProgramFiles%\sony shared\vaio media platform\sv_httpd.exe -> Sony Corporation [Ver = 2.5.01.06030 | Size = 57344 bytes | Modified Date = 23/06/2003 12:42:30 | Attr = ]

(VAIOMediaPlatform-VideoServer-UPnP) VAIO Media Video Server (UPnP) [Win32_Own | Auto | Running] -> %CommonProgramFiles%\sony shared\vaio media platform\UPnPFramework.exe -> Sony Corporation [Ver = 3.0.01.16070 | Size = 675840 bytes | Modified Date = 10/04/2003 13:55:00 | Attr = ]

(Wlancfg) Service de lancement de WlanCfg [Win32_Own | Auto | Stopped] -> %ProgramFiles%\Inventel\Gateway\WLANCFG.EXE -> Inventel [Ver = 4, 0, 0, 0 | Size = 1466368 bytes | Modified Date = 20/04/2006 15:45:54 | Attr = ]

 

[Registry - Non-Microsoft Only]

< Run [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

!AVG Anti-Spyware -> %ProgramFiles%\Grisoft\AVG Anti-Spyware 7.5\avgas.exe -> Anti-Malware Development a.s. [Ver = 7, 5, 0, 50 | Size = 6266880 bytes | Modified Date = 07/10/2006 13:20:00 | Attr = ]

AGRSMMSG -> %SystemRoot%\AGRSMMSG.exe -> Agere Systems [Ver = 2.1.28 2.1.28 03/31/2003 13:54:16 | Size = 88267 bytes | Modified Date = 31/03/2003 12:54:18 | Attr = ]

Drag'n Drop CD+DVD -> %ProgramFiles%\drag'n drop cd+dvd\BinFiles\DragDrop.exe -> [Ver = 3, 0, 0, 0 | Size = 1171456 bytes | Modified Date = 23/06/2003 14:33:00 | Attr = ]

ezShieldProtector for Px -> %System32%\ezSP_Px.exe -> Easy Systems Japan Ltd. [Ver = 1, 0, 0, 0 | Size = 40960 bytes | Modified Date = 20/08/2002 09:29:26 | Attr = ]

HP Software Update -> %ProgramFiles%\HP\HP Software Update\HPWuSchd2.exe -> Hewlett-Packard Co. [Ver = 53.0.13.000 | Size = 49152 bytes | Modified Date = 11/05/2005 22:12:54 | Attr = ]

PCCClient.exe -> %ProgramFiles%\Trend Micro\PC-cillin 9\PCCClient.exe -> Trend Micro Inc. [Ver = 9.0.6.1403 | Size = 458752 bytes | Modified Date = 25/05/2006 10:01:32 | Attr = ]

pccguide.exe -> %ProgramFiles%\Trend Micro\PC-cillin 9\pccguide.exe -> Trend Micro Inc. [Ver = 9.0.6.1403 | Size = 274432 bytes | Modified Date = 25/05/2006 10:01:32 | Attr = ]

Pop3trap.exe -> %ProgramFiles%\Trend Micro\PC-cillin 9\Pop3trap.exe -> Trend Micro Inc. [Ver = 9.0.6.1403 | Size = 315458 bytes | Modified Date = 25/05/2006 10:01:32 | Attr = ]

QuickTime Task -> %ProgramFiles%\QuickTime\qttask.exe -> Apple Computer, Inc. [Ver = 6.3 | Size = 77824 bytes | Modified Date = 09/11/2004 22:50:56 | Attr = ]

SiS KHooker -> %System32%\khooker.exe -> File not found

SiS Tray -> -> File not found

WOOTASKBARICON -> %SystemDrive%\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe -> File not found

WOOWATCH -> %ProgramFiles%\Wanadoo\Watch.exe -> France Télécom R&D [Ver = 11.0 (2) | Size = 20480 bytes | Modified Date = 23/08/2004 13:49:56 | Attr = ]

< OptionalComponents [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\

IMAIL -> Installed = 1 ->

MAPI -> Installed = 1 ->

MSFS -> Installed = 1 ->

< Run [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

WOOKIT -> %ProgramFiles%\Wanadoo\Shell.exe -> [Ver = 10.0 (63) | Size = 122880 bytes | Modified Date = 23/08/2004 13:50:00 | Attr = ]

< Common Startup > -> C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage

%AllUsersStartup%\HP Digital Imaging Monitor.lnk -> %ProgramFiles%\HP\Digital Imaging\bin\hpqtra08.exe -> Hewlett-Packard Co. [Ver = 53.0.13.000 | Size = 282624 bytes | Modified Date = 11/05/2005 22:23:26 | Attr = ]

%AllUsersStartup%\Keyboard Closure Setup.lnk -> %ProgramFiles%\sony\keyboard closure setup\KSWServ.exe -> Sony Corporation [Ver = 1, 3, 1, 06060 | Size = 90112 bytes | Modified Date = 06/06/2003 20:29:28 | Attr = ]

%AllUsersStartup%\Pilote Remocon.lnk -> %ProgramFiles%\sony\usbsircs\USBsircs.exe -> Sony Corporation [Ver = 6, 1, 00, 06251 | Size = 208896 bytes | Modified Date = 25/06/2003 12:02:24 | Attr = ]

%AllUsersStartup%\Timer Recording Manager.lnk -> %ProgramFiles%\sony\giga pocket\ReserveModule.exe -> Sony Corporation [Ver = 5.5.03.06240 | Size = 262144 bytes | Modified Date = 07/07/2003 09:34:12 | Attr = ]

%AllUsersStartup%\VAIO Action Setup (Serveur).lnk -> %ProgramFiles%\sony\VAIO Action Setup\VAServ.exe -> Sony Corporation [Ver = 1.6.00.02160 | Size = 53248 bytes | Modified Date = 16/02/2003 20:35:06 | Attr = ]

< AppInit_DLLs [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs

< ShellExecuteHooks [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks

{57B86673-276A-48B2-BAE7-C6DBB3020EB8} [HKLM] -> %ProgramFiles%\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll [AVG Anti-Spyware 7.5] -> Anti-Malware Development a.s. [Ver = 7, 5, 0, 47 | Size = 73728 bytes | Modified Date = 28/09/2006 15:13:28 | Attr = ]

< SecurityProviders [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders

< Winlogon settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

*VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet ->

Control_RunDLL -> -> File not found

< Policy Settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{BDEADF00-C265-11D0-BCED-00A0C90AB50F} -> 1 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF} -> 1073741857 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{0DF44EAA-FF21-4412-828E-260A8728E7F1} -> 32 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\dontdisplaylastusername -> 0 ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticecaption -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticetext -> ->

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\shutdownwithoutlogon -> 1 ->

< Policy Settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> ->

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ActiveDesktop\ -> ->

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Associations\ -> ->

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> ->

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun -> •

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\ -> ->

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\ -> ->

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableRegistryTools -> 0 ->

HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\ -> ->

HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ -> ->

< HOSTS File > ->

-> Hosts file not found ->

 

[Files - Created Within 30 days]

hiberfil.sys -> %SystemDrive%\hiberfil.sys -> [Ver = | Size = 502894592 bytes | Created Date = 02/01/1601 23:00:00 | Attr = HS]

maclist.dat -> %CommonProgramFiles%\Sony Shared\OpenMG\maclist.dat -> [Ver = | Size = 672 bytes | Created Date = 24/12/2006 11:55:46 | Attr = ]

maclist2.dat -> %CommonProgramFiles%\Sony Shared\OpenMG\maclist2.dat -> [Ver = | Size = 664 bytes | Created Date = 24/12/2006 11:56:12 | Attr = ]

62B8C68615B46B1D18501BA812C37CA35BFEAE7D088D4BE532439A31A2576634AF6C18E29B9FD2B2.ICV -> %CommonProgramFiles%\Sony Shared\OpenMG\OMGRIGHT\62B8C68615B46B1D18501BA812C37CA35BFEAE7D088D4BE532439A31A2576634AF6C18E29B9FD2B2.ICV -> [Ver = | Size = 4 bytes | Created Date = 24/12/2006 11:56:12 | Attr = ]

77FB82D9313162DC6DBD81554066A587929E770A5B9F9339802852C59C97BB83D5F3EED678E8759A.ICV -> %CommonProgramFiles%\Sony Shared\OpenMG\OMGRIGHT\77FB82D9313162DC6DBD81554066A587929E770A5B9F9339802852C59C97BB83D5F3EED678E8759A.ICV -> [Ver = | Size = 4 bytes | Created Date = 24/12/2006 11:56:25 | Attr = ]

010F50000004000000C06D287E4EE76E9A0CFF10.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\1010F50000004000000C06D287E4EE76E9A0CFF10.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:55:24 | Attr = ]

010F50000004000000826A287E4EE76E5D4E9D22.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\2210F50000004000000826A287E4EE76E5D4E9D22.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:55:57 | Attr = ]

010F50000004000000DA67287E4EE76E9FEBE42E.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\2E10F50000004000000DA67287E4EE76E9FEBE42E.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:52:48 | Attr = ]

010F5000000400000077B6287E4EE76E3DDB4347.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\4710F5000000400000077B6287E4EE76E3DDB4347.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:54:22 | Attr = ]

010F50000004000000113B287E4EE76E7AC38F4F.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\4F10F50000004000000113B287E4EE76E7AC38F4F.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:53:23 | Attr = ]

010F500000040000008A13287E4EE76EE81EAD63.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\6310F500000040000008A13287E4EE76EE81EAD63.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:53:45 | Attr = ]

010F50000004000000BD22287E4EE76E1E63E066.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\6610F50000004000000BD22287E4EE76E1E63E066.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:52:30 | Attr = ]

010F500000040000003A28287E4EE76E3B80E46C.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\6C10F500000040000003A28287E4EE76E3B80E46C.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:55:09 | Attr = ]

010F500000040000008636287E4EE76ECCDCFD93.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\9310F500000040000008636287E4EE76ECCDCFD93.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:54:32 | Attr = ]

010F500000040000007D41287E4EE76EF9D69B96.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\9610F500000040000007D41287E4EE76EF9D69B96.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:56:12 | Attr = ]

010F50000004000000707D287E4EE76EB382FAA3.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\A310F50000004000000707D287E4EE76EB382FAA3.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:54:45 | Attr = ]

010F500000040000002173287E4EE76E02A6E8A6.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\A610F500000040000002173287E4EE76E02A6E8A6.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:53:11 | Attr = ]

010F5000000400000042DE287E4EE76E180804CD.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\CD10F5000000400000042DE287E4EE76E180804CD.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:54:02 | Attr = ]

010F50000004000000B956287E4EE76E17F737CD.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\CD10F50000004000000B956287E4EE76E17F737CD.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:54:57 | Attr = ]

010F500000040000000B5D287E4EE76E316F61EC.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\EC10F500000040000000B5D287E4EE76E316F61EC.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:55:46 | Attr = ]

010F50000004000000BAD7287E4EE76E66E994F5.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\F510F50000004000000BAD7287E4EE76E66E994F5.opf -> [Ver = | Size = 217 bytes | Created Date = 24/12/2006 11:52:09 | Attr = ]

ClickToFindandFixErrors_US.ico -> %System32%\ClickToFindandFixErrors_US.ico -> [Ver = | Size = 2238 bytes | Created Date = 16/01/2007 15:46:31 | Attr = ]

dumphive.exe -> %System32%\dumphive.exe -> [Ver = | Size = 51200 bytes | Created Date = 16/01/2007 11:23:52 | Attr = ]

@Alternate Data Stream - 26 bytes -> %System32%\dumphive.exe:Zone.Identifier ->

Process.exe -> %System32%\Process.exe -> http://www.beyondlogic.org [Ver = 2, 0, 0, 0 | Size = 53248 bytes | Created Date = 16/01/2007 11:23:52 | Attr = ]

@Alternate Data Stream - 26 bytes -> %System32%\Process.exe:Zone.Identifier ->

SrchSTS.exe -> %System32%\SrchSTS.exe -> S!Ri [Ver = | Size = 288417 bytes | Created Date = 16/01/2007 11:23:52 | Attr = ]

@Alternate Data Stream - 26 bytes -> %System32%\SrchSTS.exe:Zone.Identifier ->

swreg.exe -> %System32%\swreg.exe -> SteelWerX [Ver = 2.0.1.0 | Size = 135168 bytes | Created Date = 16/01/2007 11:23:52 | Attr = ]

@Alternate Data Stream - 26 bytes -> %System32%\swreg.exe:Zone.Identifier ->

swsc.exe -> %System32%\swsc.exe -> [Ver = | Size = 40960 bytes | Created Date = 16/01/2007 11:23:52 | Attr = ]

@Alternate Data Stream - 26 bytes -> %System32%\swsc.exe:Zone.Identifier ->

swxcacls.exe -> %System32%\swxcacls.exe -> SteelWerX [Ver = 1.0.1.1 | Size = 79360 bytes | Created Date = 16/01/2007 11:23:52 | Attr = ]

@Alternate Data Stream - 26 bytes -> %System32%\swxcacls.exe:Zone.Identifier ->

apphelp.sdb -> %System32%\dllcache\apphelp.sdb -> [Ver = | Size = 217118 bytes | Created Date = 24/12/2006 17:53:08 | Attr = ]

apph_sp.sdb -> %System32%\dllcache\apph_sp.sdb -> [Ver = | Size = 764868 bytes | Created Date = 24/12/2006 17:53:08 | Attr = ]

sysmain.sdb -> %System32%\dllcache\sysmain.sdb -> [Ver = | Size = 1197294 bytes | Created Date = 24/12/2006 17:53:08 | Attr = ]

AvgAsCln.sys -> %System32%\drivers\AvgAsCln.sys -> GRISOFT, s.r.o. [Ver = 1.0.0.14 | Size = 3968 bytes | Created Date = 16/01/2007 18:51:53 | Attr = ]

 

[Files - Modified Within 30 days]

hiberfil.sys -> %SystemDrive%\hiberfil.sys -> [Ver = | Size = 502894592 bytes | Modified Date = 19/01/2007 07:50:16 | Attr = HS]

icv.dat -> %CommonProgramFiles%\Sony Shared\OpenMG\icv.dat -> [Ver = | Size = 20 bytes | Modified Date = 24/12/2006 11:56:26 | Attr = ]

maclist.dat -> %CommonProgramFiles%\Sony Shared\OpenMG\maclist.dat -> [Ver = | Size = 672 bytes | Modified Date = 24/12/2006 11:56:26 | Attr = ]

maclist2.dat -> %CommonProgramFiles%\Sony Shared\OpenMG\maclist2.dat -> [Ver = | Size = 664 bytes | Modified Date = 24/12/2006 11:56:14 | Attr = ]

omglog.bak -> %CommonProgramFiles%\Sony Shared\OpenMG\omglog.bak -> [Ver = | Size = 10356 bytes | Modified Date = 24/12/2006 11:59:24 | Attr = ]

62B8C68615B46B1D18501BA812C37CA35BFEAE7D088D4BE532439A31A2576634AF6C18E29B9FD2B2.ICV -> %CommonProgramFiles%\Sony Shared\OpenMG\OMGRIGHT\62B8C68615B46B1D18501BA812C37CA35BFEAE7D088D4BE532439A31A2576634AF6C18E29B9FD2B2.ICV -> [Ver = | Size = 4 bytes | Modified Date = 24/12/2006 11:56:14 | Attr = ]

77FB82D9313162DC6DBD81554066A587929E770A5B9F9339802852C59C97BB83D5F3EED678E8759A.ICV -> %CommonProgramFiles%\Sony Shared\OpenMG\OMGRIGHT\77FB82D9313162DC6DBD81554066A587929E770A5B9F9339802852C59C97BB83D5F3EED678E8759A.ICV -> [Ver = | Size = 4 bytes | Modified Date = 24/12/2006 11:56:26 | Attr = ]

010F50000004000000C06D287E4EE76E9A0CFF10.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\1010F50000004000000C06D287E4EE76E9A0CFF10.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:55:48 | Attr = ]

010F50000004000000826A287E4EE76E5D4E9D22.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\2210F50000004000000826A287E4EE76E5D4E9D22.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:56:14 | Attr = ]

010F50000004000000DA67287E4EE76E9FEBE42E.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\2E10F50000004000000DA67287E4EE76E9FEBE42E.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:53:12 | Attr = ]

010F5000000400000077B6287E4EE76E3DDB4347.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\4710F5000000400000077B6287E4EE76E3DDB4347.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:54:34 | Attr = ]

010F50000004000000113B287E4EE76E7AC38F4F.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\4F10F50000004000000113B287E4EE76E7AC38F4F.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:53:46 | Attr = ]

010F500000040000008A13287E4EE76EE81EAD63.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\6310F500000040000008A13287E4EE76EE81EAD63.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:54:04 | Attr = ]

010F50000004000000BD22287E4EE76E1E63E066.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\6610F50000004000000BD22287E4EE76E1E63E066.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:52:50 | Attr = ]

010F500000040000003A28287E4EE76E3B80E46C.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\6C10F500000040000003A28287E4EE76E3B80E46C.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:55:26 | Attr = ]

010F500000040000008636287E4EE76ECCDCFD93.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\9310F500000040000008636287E4EE76ECCDCFD93.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:54:46 | Attr = ]

010F500000040000007D41287E4EE76EF9D69B96.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\9610F500000040000007D41287E4EE76EF9D69B96.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:56:26 | Attr = ]

010F50000004000000707D287E4EE76EB382FAA3.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\A310F50000004000000707D287E4EE76EB382FAA3.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:54:58 | Attr = ]

010F500000040000002173287E4EE76E02A6E8A6.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\A610F500000040000002173287E4EE76E02A6E8A6.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:53:24 | Attr = ]

010F5000000400000042DE287E4EE76E180804CD.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\CD10F5000000400000042DE287E4EE76E180804CD.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:54:24 | Attr = ]

010F50000004000000B956287E4EE76E17F737CD.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\CD10F50000004000000B956287E4EE76E17F737CD.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:55:10 | Attr = ]

010F500000040000000B5D287E4EE76E316F61EC.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\EC10F500000040000000B5D287E4EE76E316F61EC.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:55:58 | Attr = ]

010F50000004000000BAD7287E4EE76E66E994F5.opf -> %CommonProgramFiles%\Sony Shared\OpenMG\procfile\F510F50000004000000BAD7287E4EE76E66E994F5.opf -> [Ver = | Size = 217 bytes | Modified Date = 24/12/2006 11:52:32 | Attr = ]

bootstat.dat -> %SystemRoot%\bootstat.dat -> [Ver = | Size = 2048 bytes | Modified Date = 19/01/2007 07:50:16 | Attr = S]

imsins.BAK -> %SystemRoot%\imsins.BAK -> [Ver = | Size = 1393 bytes | Modified Date = 24/12/2006 17:53:36 | Attr = ]

QTFont.for -> %SystemRoot%\QTFont.for -> [Ver = | Size = 1409 bytes | Modified Date = 16/01/2007 18:59:50 | Attr = ]

QTFont.qfn -> %SystemRoot%\QTFont.qfn -> [Ver = | Size = 54156 bytes | Modified Date = 19/01/2007 07:50:32 | Attr = H ]

win.ini -> %SystemRoot%\win.ini -> [Ver = | Size = 743 bytes | Modified Date = 24/12/2006 17:52:54 | Attr = ]

amcompat.tlb -> %System32%\amcompat.tlb -> [Ver = | Size = 16832 bytes | Modified Date = 24/12/2006 17:57:52 | Attr = ]

ClickToFindandFixErrors_US.ico -> %System32%\ClickToFindandFixErrors_US.ico -> [Ver = | Size = 2238 bytes | Modified Date = 16/01/2007 15:46:32 | Attr = ]

dumphive.exe -> %System32%\dumphive.exe -> [Ver = | Size = 51200 bytes | Modified Date = 16/01/2007 11:23:44 | Attr = ]

@Alternate Data Stream - 26 bytes -> %System32%\dumphive.exe:Zone.Identifier ->

l?gonui.exe -> %System32%\l?gonui.exe -> [Ver = | Size = 515584 bytes | Modified Date = 20/08/2004 00:09:54 | Attr = ]

MobileSidewalkRON_2.ico -> %System32%\MobileSidewalkRON_2.ico -> [Ver = | Size = 72566 bytes | Modified Date = 04/01/2007 18:42:18 | Attr = ]

nscompat.tlb -> %System32%\nscompat.tlb -> [Ver = | Size = 23392 bytes | Modified Date = 24/12/2006 17:57:50 | Attr = ]

Process.exe -> %System32%\Process.exe -> http://www.beyondlogic.org [Ver = 2, 0, 0, 0 | Size = 53248 bytes | Modified Date = 16/01/2007 11:23:44 | Attr = ]

@Alternate Data Stream - 26 bytes -> %System32%\Process.exe:Zone.Identifier ->

SrchSTS.exe -> %System32%\SrchSTS.exe -> S!Ri [Ver = | Size = 288417 bytes | Modified Date = 16/01/2007 11:23:44 | Attr = ]

@Alternate Data Stream - 26 bytes -> %System32%\SrchSTS.exe:Zone.Identifier ->

swreg.exe -> %System32%\swreg.exe -> SteelWerX [Ver = 2.0.1.0 | Size = 135168 bytes | Modified Date = 16/01/2007 11:23:44 | Attr = ]

@Alternate Data Stream - 26 bytes -> %System32%\swreg.exe:Zone.Identifier ->

swsc.exe -> %System32%\swsc.exe -> [Ver = | Size = 40960 bytes | Modified Date = 16/01/2007 11:23:44 | Attr = ]

@Alternate Data Stream - 26 bytes -> %System32%\swsc.exe:Zone.Identifier ->

swxcacls.exe -> %System32%\swxcacls.exe -> SteelWerX [Ver = 1.0.1.1 | Size = 79360 bytes | Modified Date = 16/01/2007 11:23:44 | Attr = ]

@Alternate Data Stream - 26 bytes -> %System32%\swxcacls.exe:Zone.Identifier ->

wpa.dbl -> %System32%\wpa.dbl -> [Ver = | Size = 1158 bytes | Modified Date = 19/01/2007 07:51:06 | Attr = ]

 

[File String Scan - Non-Microsoft Only]

PTech , -> %CommonProgramFiles%\Microsoft Shared\Works Shared\1036\WkCalLng.dll -> Microsoft® Corporation [Ver = 7.02.0514.0 | Size = 196608 bytes | Modified Date = 23/07/2002 15:28:10 | Attr = ]

PEC2 , -> %CommonProgramFiles%\Sony Shared\AVLib\Metallic.dll -> Sony Corporation [Ver = 2.6.60.06240 | Size = 110592 bytes | Modified Date = 23/06/2003 23:51:14 | Attr = ]

PEC2 , -> %System32%\dfrg.msc -> [Ver = | Size = 41131 bytes | Modified Date = 30/08/2002 13:00:00 | Attr = ]

FSG! , -> %System32%\divxdec.ax -> DivXNetworks, Inc. [Ver = 5.1.1.1031 | Size = 236544 bytes | Modified Date = 10/12/2003 15:36:10 | Attr = ]

UPX! , UPX0 , -> %System32%\SrchSTS.exe -> S!Ri [Ver = | Size = 288417 bytes | Modified Date = 16/01/2007 11:23:44 | Attr = ]

UPX! , UPX0 , -> %System32%\swreg.exe -> SteelWerX [Ver = 2.0.1.0 | Size = 135168 bytes | Modified Date = 16/01/2007 11:23:44 | Attr = ]

UPX! , UPX0 , -> %System32%\swsc.exe -> [Ver = | Size = 40960 bytes | Modified Date = 16/01/2007 11:23:44 | Attr = ]

UPX! , UPX0 , -> %System32%\swxcacls.exe -> SteelWerX [Ver = 1.0.1.1 | Size = 79360 bytes | Modified Date = 16/01/2007 11:23:44 | Attr = ]

winsync , -> %System32%\wbdbase.deu -> [Ver = | Size = 1309184 bytes | Modified Date = 30/08/2002 13:00:00 | Attr = ]

UPX0 , -> %System32%\dllcache\NT5IIS.CAT -> [Ver = | Size = 809394 bytes | Modified Date = 30/08/2002 13:00:00 | Attr = ]

PTech , -> %System32%\drivers\mtlstrm.sys -> Smart Link [Ver = 3.80.01MC15 | Size = 1309184 bytes | Modified Date = 04/08/2004 06:41:38 | Attr = ]

UPX! , aspack , -> %System32%\drivers\VSAPINT.SYS -> Trend Micro Inc. [Ver = 8.320-1003 | Size = 1051456 bytes | Modified Date = 27/09/2006 13:04:50 | Attr = ]

 

< End of report >

 

 

 

A toi de jouer...au décryptage !!

 

a plus !! et merchi encore !!

[Thanos]

salut

 

Super!! Là, le rapport montre bien que l'utilitaire a fait son boulot(l'annotation "moved successfully.").

Pour la seconde étape, ca plante...le run scan commence, puis l'ordi fait un bruit de bouillouire prete à exploser et écran blanc...J'arrete, recommence et même bin's !!

lorsque tu lances le scan, il vaut mieux t'assurer qu'un autre programme n'est pas en cours(mis à part les programmes de protection à ne pas désactiver bien sûr!).Ca peut être une raison de ce gros ralentissement!

 

Bon et pour finir,parce que Combofix a montré des fichiers plus vieux, fais comme ceci>

 

Démarre WinPFind3U en double cliquant sur WinPFind3U.exe et copie/colle le texte ci dessous (ne copie pas le mot code)

dans le Panneau Paste fix here , puis clique sur le bouton Run Fix.

[Kill Explorer]
[ Extra Files ]
C:\WINDOWS\system32\craz32.exe
C:\WINDOWS\sdkuv32.exe
C:\WINDOWS\d3bb32.exe
C:\WINDOWS\ieqe32.exe
C:\WINDOWS\nthx32.exe
C:\WINDOWS\system32\mfcpd32.exe
C:\WINDOWS\system32\sdkrl.exe
C:\WINDOWS\d3xm.exe
C:\WINDOWS\ieyc.exe
C:\WINDOWS\syseb.exe
C:\WINDOWS\crby32.exe
C:\WINDOWS\sdktz32.exe
C:\WINDOWS\system32\appgj32.exe
C:\WINDOWS\system32\ipnn.exe
C:\WINDOWS\atltg32.exe
C:\WINDOWS\system32\crbr32.exe
C:\WINDOWS\system32\winbj32.exe
C:\WINDOWS\system32\javazz.exe
C:\WINDOWS\system32\appdh.exe
C:\WINDOWS\sdkjx.exe
C:\WINDOWS\system32\ntmj32.exe
C:\WINDOWS\system32\sysgo32.exe
C:\WINDOWS\system32\javapx.exe
C:\WINDOWS\apiun32.exe
C:\WINDOWS\system32\ipql.exe
C:\WINDOWS\sdksq.exe
C:\WINDOWS\addub.exe
C:\WINDOWS\sdktx32.exe
C:\WINDOWS\system32\netjf.exe
C:\WINDOWS\atldb32.exe
C:\WINDOWS\system32\sysbx.exe
C:\WINDOWS\mfclm.exe
C:\WINDOWS\javaul32.exe
C:\WINDOWS\sysmy32.exe
C:\WINDOWS\netvt32.exe
C:\WINDOWS\system32\winsq32.exe
C:\WINDOWS\system32\d3bg32.exe
C:\WINDOWS\ntiy.exe
C:\WINDOWS\mfcih32.exe
C:\WINDOWS\d3jo.exe
C:\WINDOWS\system32\appud32.exe
C:\WINDOWS\sysky.exe
C:\WINDOWS\system32\apihi.exe
C:\WINDOWS\system32\sdkyh.exe
C:\WINDOWS\sdksr32.exe
C:\WINDOWS\appbr.exe
C:\WINDOWS\crqv32.exe
C:\WINDOWS\system32\ipfm32.exe
C:\WINDOWS\appdp.exe
C:\WINDOWS\system32\iefx.exe
C:\WINDOWS\system32\javaim.exe
C:\WINDOWS\system32\ieup.exe
C:\WINDOWS\system32\ntmv.exe
C:\WINDOWS\system32\iejr32.exe
C:\WINDOWS\system32\msem.exe
C:\WINDOWS\ntcv.exe
C:\WINDOWS\mstv.exe
C:\WINDOWS\crqw.exe
C:\WINDOWS\system32\syscb.exe
C:\WINDOWS\appcj.exe
C:\WINDOWS\system32\mspy.exe
C:\WINDOWS\ipux32.exe
C:\WINDOWS\system32\d3bu.exe
C:\WINDOWS\system32\syszx.exe
C:\WINDOWS\addkb32.exe
C:\WINDOWS\mfcko.exe
C:\WINDOWS\system32\d3uk32.exe
C:\WINDOWS\msgi32.exe
C:\WINDOWS\mfcyr32.exe
C:\WINDOWS\system32\iprl32.exe
C:\WINDOWS\system32\crfa32.exe
C:\WINDOWS\system32\ipmb.exe
C:\WINDOWS\system32\appam.exe
C:\WINDOWS\sysup.exe
C:\WINDOWS\system32\appen.exe
C:\WINDOWS\mfcak32.exe
C:\WINDOWS\system32\mfcqx32.exe
C:\WINDOWS\system32\sysph32.exe
C:\WINDOWS\apprw32.exe
C:\WINDOWS\d3df.exe
C:\WINDOWS\system32\ntfu32.exe
C:\WINDOWS\system32\sysde.exe
C:\WINDOWS\system32\appim32.exe
C:\WINDOWS\system32\ipuu.exe
C:\WINDOWS\system32\addxy.exe
C:\WINDOWS\apptd.exe
[Reboot]

Le Fix va se faire rapidement,puis il te sera demandé de redémarrer ton pc : accepte en cliquant sur Yes

 

Poste le rapport qui se trouve dans le dossier WinPFind3u( c'est un rapport qui a pour nom la date du jour\mois\année\heure).Poste aussi un dernier rapport Combofix.

 

Voilà: l'outil fonctionne à merveille,et là il ne doit plus rien rester.

 

@+ tard et bravo pour ta patience

[ratcoldo]

et voili voilou !!

 

Explorer killed successfully

[ Extra Files ]

C:\WINDOWS\system32\craz32.exe moved successfully.

C:\WINDOWS\sdkuv32.exe moved successfully.

C:\WINDOWS\d3bb32.exe moved successfully.

C:\WINDOWS\ieqe32.exe moved successfully.

C:\WINDOWS\nthx32.exe moved successfully.

C:\WINDOWS\system32\mfcpd32.exe moved successfully.

C:\WINDOWS\system32\sdkrl.exe moved successfully.

C:\WINDOWS\d3xm.exe moved successfully.

C:\WINDOWS\ieyc.exe moved successfully.

C:\WINDOWS\syseb.exe moved successfully.

C:\WINDOWS\crby32.exe moved successfully.

C:\WINDOWS\sdktz32.exe moved successfully.

C:\WINDOWS\system32\appgj32.exe moved successfully.

C:\WINDOWS\system32\ipnn.exe moved successfully.

C:\WINDOWS\atltg32.exe moved successfully.

C:\WINDOWS\system32\crbr32.exe moved successfully.

C:\WINDOWS\system32\winbj32.exe moved successfully.

C:\WINDOWS\system32\javazz.exe moved successfully.

C:\WINDOWS\system32\appdh.exe moved successfully.

C:\WINDOWS\sdkjx.exe moved successfully.

C:\WINDOWS\system32\ntmj32.exe moved successfully.

C:\WINDOWS\system32\sysgo32.exe moved successfully.

C:\WINDOWS\system32\javapx.exe moved successfully.

C:\WINDOWS\apiun32.exe moved successfully.

C:\WINDOWS\system32\ipql.exe moved successfully.

C:\WINDOWS\sdksq.exe moved successfully.

C:\WINDOWS\addub.exe moved successfully.

C:\WINDOWS\sdktx32.exe moved successfully.

C:\WINDOWS\system32\netjf.exe moved successfully.

C:\WINDOWS\atldb32.exe moved successfully.

C:\WINDOWS\system32\sysbx.exe moved successfully.

C:\WINDOWS\mfclm.exe moved successfully.

C:\WINDOWS\javaul32.exe moved successfully.

C:\WINDOWS\sysmy32.exe moved successfully.

C:\WINDOWS\netvt32.exe moved successfully.

C:\WINDOWS\system32\winsq32.exe moved successfully.

C:\WINDOWS\system32\d3bg32.exe moved successfully.

C:\WINDOWS\ntiy.exe moved successfully.

C:\WINDOWS\mfcih32.exe moved successfully.

C:\WINDOWS\d3jo.exe moved successfully.

C:\WINDOWS\system32\appud32.exe moved successfully.

C:\WINDOWS\sysky.exe moved successfully.

C:\WINDOWS\system32\apihi.exe moved successfully.

C:\WINDOWS\system32\sdkyh.exe moved successfully.

C:\WINDOWS\sdksr32.exe moved successfully.

C:\WINDOWS\appbr.exe moved successfully.

C:\WINDOWS\crqv32.exe moved successfully.

C:\WINDOWS\system32\ipfm32.exe moved successfully.

C:\WINDOWS\appdp.exe moved successfully.

C:\WINDOWS\system32\iefx.exe moved successfully.

C:\WINDOWS\system32\javaim.exe moved successfully.

C:\WINDOWS\system32\ieup.exe moved successfully.

C:\WINDOWS\system32\ntmv.exe moved successfully.

C:\WINDOWS\system32\iejr32.exe moved successfully.

C:\WINDOWS\system32\msem.exe moved successfully.

C:\WINDOWS\ntcv.exe moved successfully.

C:\WINDOWS\mstv.exe moved successfully.

C:\WINDOWS\crqw.exe moved successfully.

C:\WINDOWS\system32\syscb.exe moved successfully.

C:\WINDOWS\appcj.exe moved successfully.

C:\WINDOWS\system32\mspy.exe moved successfully.

C:\WINDOWS\ipux32.exe moved successfully.

C:\WINDOWS\system32\d3bu.exe moved successfully.

C:\WINDOWS\system32\syszx.exe moved successfully.

C:\WINDOWS\addkb32.exe moved successfully.

C:\WINDOWS\mfcko.exe moved successfully.

C:\WINDOWS\system32\d3uk32.exe moved successfully.

C:\WINDOWS\msgi32.exe moved successfully.

C:\WINDOWS\mfcyr32.exe moved successfully.

C:\WINDOWS\system32\iprl32.exe moved successfully.

C:\WINDOWS\system32\crfa32.exe moved successfully.

C:\WINDOWS\system32\ipmb.exe moved successfully.

C:\WINDOWS\system32\appam.exe moved successfully.

C:\WINDOWS\sysup.exe moved successfully.

C:\WINDOWS\system32\appen.exe moved successfully.

C:\WINDOWS\mfcak32.exe moved successfully.

C:\WINDOWS\system32\mfcqx32.exe moved successfully.

C:\WINDOWS\system32\sysph32.exe moved successfully.

C:\WINDOWS\apprw32.exe moved successfully.

C:\WINDOWS\d3df.exe moved successfully.

C:\WINDOWS\system32\ntfu32.exe moved successfully.

C:\WINDOWS\system32\sysde.exe moved successfully.

C:\WINDOWS\system32\appim32.exe moved successfully.

C:\WINDOWS\system32\ipuu.exe moved successfully.

C:\WINDOWS\system32\addxy.exe moved successfully.

C:\WINDOWS\apptd.exe moved successfully.

< End of log >

Created on 01/19/2007 14:17:32

 

 

 

ca m'a lair bien "successfully"...kel doux mot !!!

[ratcoldo]

et le combofix

 

"Bob" - 07-01-19 14:28:01 Service Pack 2

ComboFix 07-01-16.2 - Running from: "C:\Documents and Settings\Bob\Bureau\Secours VIrus"

 

(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

 

 

~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Purity ~ ~ ~ ~ ~ ~ ~ ~~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~

Folders Quarantined:

C:\qoobox\purity\DOCUME~1

C:\qoobox\purity\DOCUME~1\Bob

C:\qoobox\purity\DOCUME~1\Bob\Application Data

C:\qoobox\purity\DOCUME~1\Bob\Mes documents

C:\qoobox\purity\DOCUME~1\Bob\Application Data\ECURIT~1

C:\qoobox\purity\DOCUME~1\Bob\Application Data\FNTS~1

C:\qoobox\purity\DOCUME~1\Bob\Application Data\from.txt

C:\qoobox\purity\DOCUME~1\Bob\Application Data\ICROSO~1

C:\qoobox\purity\DOCUME~1\Bob\Application Data\YSTEM~1

C:\qoobox\purity\DOCUME~1\Bob\Mes documents\ASEMBL~1

C:\qoobox\purity\DOCUME~1\Bob\Mes documents\CURITY~1

C:\qoobox\purity\DOCUME~1\Bob\Mes documents\DOBE~1

C:\qoobox\purity\DOCUME~1\Bob\Mes documents\from.txt

C:\qoobox\purity\Program Files\FNTS~1

C:\qoobox\purity\Program Files\SCURIT~1

C:\qoobox\purity\Program Files\SKS~1

C:\qoobox\purity\WINDOWS\system32\CROSOF~1.NET

C:\qoobox\purity\WINDOWS\system32\MBOLS~1

C:\qoobox\purity\WINDOWS\system32\SSTEM~1

C:\qoobox\purity\WINDOWS\system32\STEM32~1

 

 

((((((((((((((((((((((((((((((( Files Created from 2006-12-19 to 2007-01-19 ))))))))))))))))))))))))))))))))))

 

 

2007-01-16 18:51 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys

2007-01-16 18:51 <REP> d-------- C:\Program Files\Grisoft

2007-01-16 16:58 <REP> d-------- C:\!KillBox

2007-01-16 11:23 79,360 --a------ C:\WINDOWS\system32\swxcacls.exe

2007-01-16 11:23 53,248 --a------ C:\WINDOWS\system32\Process.exe

2007-01-16 11:23 51,200 --a------ C:\WINDOWS\system32\dumphive.exe

2007-01-16 11:23 40,960 --a------ C:\WINDOWS\system32\swsc.exe

2007-01-16 11:23 288,417 --a------ C:\WINDOWS\system32\SrchSTS.exe

2007-01-16 11:23 135,168 --a------ C:\WINDOWS\system32\swreg.exe

2006-12-24 17:52 <REP> d-------- C:\Program Files\Windows Media Connect 2

 

 

(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))

 

 

2007-01-19 14:20 -------- d-------- C:\Program Files\wanadoo

2007-01-12 14:22 -------- d-------- C:\Program Files\common files

2006-11-08 06:07 679424 --a------ C:\WINDOWS\system32\inetcomm.dll

2006-11-04 14:14 1245696 --a------ C:\WINDOWS\system32\msxml4.dll

2006-11-03 10:03 8292352 --a------ C:\WINDOWS\system32\wmploc.dll

2006-11-03 09:59 99840 --a------ C:\WINDOWS\system32\wmpshell.dll

2006-11-03 09:58 272384 --a------ C:\WINDOWS\system32\wmerror.dll

2006-11-03 09:56 7680 --a------ C:\WINDOWS\system32\asferror.dll

2006-11-02 11:52 44032 --------- C:\WINDOWS\system32\wpdshextres.dll

2006-10-20 02:38 716800 --a------ C:\WINDOWS\system32\sxs.dll

 

 

(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

 

*Note* empty entries & legit default entries are not shown

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]

"WOOKIT"="C:\\PROGRA~1\\Wanadoo\\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM="

"ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe"

"MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]

"SiS Tray"=""

"SiS KHooker"="C:\\WINDOWS\\System32\\khooker.exe"

"AGRSMMSG"="AGRSMMSG.exe"

"ezShieldProtector for Px"="C:\\WINDOWS\\System32\\ezSP_Px.exe"

"Drag'n Drop CD+DVD"="C:\\Program Files\\drag'n drop cd+dvd\\BinFiles\\DragDrop.exe /StartUp"

"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"

"WOOWATCH"="C:\\PROGRA~1\\Wanadoo\\Watch.exe"

"WOOTASKBARICON"="C:\\PROGRA~1\\Wanadoo\\GestMaj.exe TaskBarIcon.exe"

"pccguide.exe"="\"C:\\Program Files\\Trend Micro\\PC-cillin 9\\pccguide.exe\""

"PCCClient.exe"="\"C:\\Program Files\\Trend Micro\\PC-cillin 9\\PCCClient.exe\""

"Pop3trap.exe"="\"C:\\Program Files\\Trend Micro\\PC-cillin 9\\Pop3trap.exe\""

"HP Software Update"="C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe"

"!AVG Anti-Spyware"="\"C:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]

"Installed"="1"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]

"Installed"="1"

"NoChange"="1"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]

"Installed"="1"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]

"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]

"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"

 

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]

"Symantec Network Driver Update Warning"="C:\\PROGRA~1\\Symantec\\LIVEUP~1\\SNDWarn.EXE"

"ALUAlert"="C:\\Program Files\\Symantec\\LiveUpdate\\ALUNotify.exe"

"Symantec NetDriver Warning"="C:\\PROGRA~1\\SYMNET~1\\SNDWarn.exe"

 

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]

"Symantec Network Driver Update Warning"="C:\\PROGRA~1\\Symantec\\LIVEUP~1\\SNDWarn.EXE"

"ALUAlert"="C:\\Program Files\\Symantec\\LiveUpdate\\ALUNotify.exe"

"Symantec NetDriver Warning"="C:\\PROGRA~1\\SYMNET~1\\SNDWarn.exe"

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"

 

 

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]

LocalService REG_MULTI_SZ AlerterWebClientLmHostsRemoteRegistryupnphostSSDPSRV\

NetworkService REG_MULTI_SZ DnsCache\

rpcss REG_MULTI_SZ RpcSs\

imgsvc REG_MULTI_SZ StiSvc\

termsvcs REG_MULTI_SZ TermService\

HTTPFilter REG_MULTI_SZ HTTPFilter\

DcomLaunch REG_MULTI_SZ DcomLaunchTermService\

WudfServiceGroup REG_MULTI_SZ WUDFSvc\

 

 

Completion time: 07-01-19 14:30:13

C:\ComboFix2.txt ... 07-01-19 14:26

C:\ComboFix3.txt ... 07-01-18 14:28

 

 

 

 

j'attends les dernières instructions si besoin.....

 

Merci, et c toi qui ai patient....moi je suis !!!

[Thanos]

salut racoldo

 

Tu sais quoi?...c'est tout bon cette fois ci Tous les fichiers infectés ont été éliminés et le rapport Combofix ne montre rien de mauvais à présent

 

Je te félicite pour ta persévérance une fois de plus parce que beaucoup auraient abandonné !!

 

Elimine le dossier suivant > C:!Killbox.

 

Tu te souviens qu'Ag As a trouvé des points de restauration infectés? Voilà comment nettoyer la restauration système, c'est très simple >

 

Supprime la restauration système puis réactive la comme ceci => aide visuelle

Clique sur Démarrer.

Clique avec le bouton droit sur l'icône Poste de travail, puis cliquez sur Propriétés.

Clique sur l'onglet «Restauration du système».

Sélectionne «Désactiver la Restauration du système» ou «Désactiver la Restauration du système sur tous les lecteurs»

Clique sur "Appliquer".

Comme le dit le message, ceci supprimera tous les points de restauration existants. Pour faire cela, clique sur Oui.

Clique sur OK.Redémarre ton PC.Fais l'opération inverse, et réactive la restauration:un nouveau point sera automatiquement créé.

 

Lance Smitfraudfix et :

 

* Pour effacer la liste des sites de confiance et sensibles, sélectionne 3 et presse Entrée dans le menu.

* A la question: Réinitialiser la liste des sites de confiance et sensibles ? répond O (oui) et presse Entrée afin de restaurer les zones de confiances et sensibles.

 

 

* Tu peux conserver :

 

ATF Cleaner by Atribune pour nettoyer ton pc (au moins une fois dans la semaine!)

Avg As il ne protègera ton pc que 30 jours, puis il perdra ses fonctions: il reste utile après ca pour scanner et nettoyer le pc! à mettre à jour avant utilisation.

Killbox : utile pour éliminer des fichiers récalcitrants. Si tu veux en savoir plus sur le programme > http://perso.orange.fr/jesses/Docs/Logiciels/KillBox.htm

 

* Tu peux éliminer :

 

SmitfraudFix de S!Ri : le dossier ainsi que le fichier zip .

DiagHelp.zip et le dossier DiagHelp complêt si tu n'en a pas l'utilité (pour lister des répertoires "sensibles")

About:buster ainsi que kazaabegone (le dossier plus le fichier d'installation)

combofix.exe de sUBs et le dossier C:\QooBox

WinPFind3U et le fichier téléchargé WinPFind3U.zip

 

Tu me demandais si PC Cillin était suffisant?Comme je te disait il a l'avantage d'intégrer un antivirus et un parefeu.

La chose importante à retenir dans l'antivirus, c'est qu'il soit régulièrement mis à jour (tous les jours de préférence).

Je ne te parlerais pas de sa configuration , car je ne l'a connais pas! et je crois que malheureusement, le logiciel n'est pas vraiment paramétrable!

Pour ce qui est de la partie parefeu de PC-cillin 9 , fais le test suivant pour en évaluer l'efficacité >

http://www.zebulon.fr/outils/scanports/test-securite.php

lance le test : l'idéal serait que ton pc soit invisible sur le réseau.Si par contre des ports sont détectés comme ouverts, il faut s'inquiêter!! n'hésite pas à poster le résultat s'il est mauvais!

 

Si tu as envie d'en changer, n'hésite pas à demander: moi ou d'autres te conseilleront sur les solutions gratuites disponibles.

 

Quand tu as le temps, et si tu veux bien >

 

Rapporte ton infection pour faire condamner les auteurs sur Malware-Complaints. Pour faire entendre notre voix, nous devons être le plus nombreux possibles, alors n'hésite pas :

- Voir les règles de Malware-Complaints

- Enregistre toi sur le forum à partir du bouton register en haut :

Si tu as plus de 13 ans, choisir : I Agree to these terms and am over or exactly 13 years of age

Si tu as moins, clic sur : I Agree to these terms and am under 13 years of age

 

Après t'être enregistré, tu as sous forme de liste les types d'infection (Look2Me, Smitfraud, SpywareQuake etc..) : http://www.malwarecomplaints.info/viewforu...e115fda8cee41a4

 

Si le malware que tu as eu n'apparaît pas dans la liste, pour toi il s'agit de CoolWebSearch \ Trojan zlob\ Purityscan , créé un message dans le sujet "Autres infections" conforme au règle du forum (age, ville, département etc..) : http://www.malwarecomplaints.info/viewforum.php?f=10

 

Pour poster un message, clique sur le bouton "post reply" et complête les informations.

 

Si tu as des questions ou des problèmes, n'hésite pas à me demander ici ou à contacter un des modérateurs du forum : Kimberly, AgnesD ou ipl_001.

 

ps: n'hésite pas à témoigner sur Malware Complaints , ca fera réagir les dirigeants et permettra de rendre la toile plus sûre

 

Les conseils qui suivent sont volontairement génériques, de sorte qu'ils puissent servir à un maximum de personnes. Je t'invite à prendre le temps de bien lire tout cela, de t'informer, d'essayer... Pour trouver quels sont les softs qui te conviennent le mieux.

 

Windows Update parfaitement à jour (catégorie critique, Services Pack et Services Release )

- pare-feu bien paramétré- antivirus bien paramétré et mis à jour régulièrement(quotidiennement s'il le faut) avec un scan complet régulier.

- IMPORTANT :une attitude prudente vis à vis de la navigation (pas de sites douteux:cracks, warez, etc) et vis à vis de la messagerie (fichiers joints aux messages doivent être scanné avant d'être ouvert ainsi que les fichiers téléchargés dont la provenance n'est pas sûre!!)

- une attitude vigilante (être l'affût de fonctionnements inhabituels de ton système)

- nettoyage hebdomadaire du système (suppression des fichiers inutiles avec ATF cleaner, nettoyage de la base de registre avec jv16, scandisk, defragmentation du disque dur régulière)

- scan hebdomadaire antispyware

***

 

Pour en savoir plus sur la sécurité pc, consulte les pages suivantes:

Ipl_001 : http://IPL001.free.fr/IT/IT-AM0.html

Malekal_Morte : http://www.malekal.com/

***

 

1)- Voici les utilitaires et programmes que tu peux installer pour sécuriser ton PC :

Navigateurs

• => Firefox, un vrai navigateur que tu pourras sécuriser avec les conseils de Megataupe :
  - Téléchargement :

http://www.mozilla-europe.org/fr/products/firefox/
- Tutorial : http://forum.zebulon.fr/index.php?showtopic=69628
Je te le recommande vivement !
 
=> Opera
- Téléchargement : http://www.opera.com/download/
- Explications par Pitcat : http://speedweb1.ovh.org/forum-tesgaz/view...ae5af52b512dbab
- Fonctionnalitées et Astuces par Lordtoniok : http://forum.zebulon.fr/index.php?showtopic=73742
 
Si tu veux toujours utiliser IE ! :
 
=> IE-SPYAD : (ajoute plus de 5000 sites à la zone de restriction pour te protéger lorsque tu atterris sur un site douteux)
Pour Internet Explorer uniquement ! (une fois l'utilitaire dézippé dans son dossier, cliquer sur le fichier ie-ads.reg : les modifications ne sont pas visibles mais l'effet est garanti par le message qui suit !)
- Téléchargement : http://www.spywarewarrior.com/uiuc/res/ie-spyad2.exe

Sécurisation des ports

• => ZebProtect (pour sécuriser les ports de ton PC, très simple) :
  - Téléchargement :

http://telechargement.zebulon.fr/123.html
- Tutorial par Tesgaz : http://www.zebulon.fr/articles/zebprotect.php
 
=> Si tu veux tester ton firewall :
- scanner les ports du PC : http://www.pcflank.com/

Sécurisation de la navigation

• => SpywareBlaster :
  - Téléchargement :

http://www.javacoolsoftware.com/downloads.html
- Tutorial : http://www.ordi-netfr.org/tutorialspywareblaster.php
Freeware permettant d'empêcher l'installation de spywares (logiciels espions) et autres adwares (insertion de publicité) sur ton PC. Contrairement à des logiciels comme Spybot - Search & Destroy ou Ad-aware, SpywareBlaster est un logiciel préventif.
 
=> Le fichier Hosts :
Souvent négligé par les internautes, il est pourtant très recommandé de savoir l'exploiter.
- Télécharger le fichier Hosts de Tesgaz régulièrement mis à jour : http://speedweb1.free.fr/download/secu/hosts.ZIP
- Télécharger les listes hosts du forum Assiste.com par Pierre Pinard : http://assiste.forum.free.fr/viewtopic.php?t=11318
- Explications sur le Hosts : http://speedweb1.free.fr/frames2.php?page=securite10
- Conversations sur le Hosts sur Zebulon : http://forum.zebulon.fr/index.php?showtopic=88615

Antispywares

• => Ad-Aware SE de Lavasoft :
  - Téléchargement :

http://www.ordi-netfr.com/adawarese.html
- Téléchargement 2 : http://www.lavasoft.de/support/download/#free
- Tutorial : http://home.tiscali.be/schouppeguy/adawarese/adawase.htm
- Tutorial 2 par Patarien : http://tutopat.hostonet.org/viewtopic.php?t=207
seule la version payante te permet de protéger le pc!la version gratuite sert à scanner le pc (après mise à jour, et de préférence en mode sans échec)
 
=> SpyBot-Search & Destroy de Patrick Kolla :
- Téléchargement : http://spybot.safer-networking.de/fr/download/index.html
- Tutorial : http://www.safer-networking.org/fr/tutorial/index.html
- Tutorial par Tesgaz : http://www.zebulon.fr/articles/spybot_1.php
A noter la présence de 2 outils résidents optionnels, le "Teatimer" et le "SDhelper" ; le tuto indiqué t'en dira d'avantage.
 
=>Spywareterminator
- Téléchargement : http://www.spywareterminator.com/
- Tutorial par Malekal_Morte: http://www.malekal.com/tutorial_SpywareTerminator.html
Ce logiciel est gratuit et possède une protection en temps réel qui permettra de protéger ton pc contre les spywares
 
=> AVG Anti-Spyware (AVG AS) :
- Téléchargement : http://download.grisoft.cz/softw/70/filedi..._4.0.0.172a.exe
- Tutorial par Malekal_morte : http://www.malekal.com/tutorial_ewidoV4.html#mozTocId415851
Ewido est un antimalware très efficace. Certaines fonctions ne sont gratuites que 30 jours, mais il est très performant en analyse en mode sans échec.

Contrôleurs d'intégrité - Résidents / pour utilisateurs avancés

• =>Winpooch projet Opensources :
  - Téléchargement :

http://winpooch.free.fr/page/home.php?lang=fr&page=home
- Conversation sur Zebulon par Jack Burton : http://forum.zebulon.fr/index.php?showtopi...amp;hl=Winpooch
 
=>WinPatrol de BillP Studios :
- Téléchargement : http://www.winpatrol.com/download.html
- Tutorial par Krigou : http://www.libellules.ch/weblog/comments.php?id=46_0_1_0_C
 
=>ProcessGuard de DiamondCS :
- Téléchargement : http://www.diamondcs.com.au/processguard/i...p?page=download
- Conversation sur Zebulon par Megataupe : http://forum.zebulon.fr/index.php?showtopic=66717
- tutorial par Odsen : http://benoit.aun.free.fr/securite-facile-...rocessguard.php
 
=>Icesword - IDS de la Xfocus Team :
- Téléchargement : http://www.open-files.com/forum/index.php?...st&p=459692
- tutorial par Txon : http://www.open-files.com/forum/index.php?showtopic=29383
- Explications sur Zebulon par Horus Agressor : http://forum.zebulon.fr/index.php?showtopic=96713

2)- Les utilitaires pour nettoyer le PC :

• => EasyCleaner de Toni Helenius :
  - Téléchargement :

http://personal.inet.fi/business/toniarts/ecleane.htm
- Tutorial - temporaires par DarkBG : http://www.uptoopc.net/nettoyer/temporaires.php
- Tutorial - registre : http://www.uptoopc.net/nettoyer/registre.php
- Tutorial - autres fonctions : http://www.uptoopc.net/nettoyer/autresfonctions.php
Easy cleaner est un utilitaire de nettoyage.
 
=> ATF Cleaner de Atribune :
- Téléchargement : http://www.atribune.org/ccount/click.php?id=1
- Tutorial par Lomaster : http://lomaster.freehostia.com/atfcleaner.html
 
=> JV16 :
- Téléchargement : http://telechargement.zebulon.fr/201-jv16-powertools.html
- Tutorial par Tesgaz : http://www.zebulon.fr/articles/base-de-registre-3.php

3)- Pour aller plus loin dans l'optimisation et la sécurisation - quelques pistes par Tesgaz :

• =>Configurez vos services :
  

http://speedweb1.free.fr/frames2.php?page=service3
http://speedweb1.free.fr/frames2.php?page=service4

• =>Optimiser la protection de son PC pour Internet en toute sécurité :
  

http://speedweb1.free.fr/frames2.php?page=securite1
 
=>Autorisation et restriction des Dossiers et fichiers avec NTFS :
http://speedweb1.free.fr/frames2.php?page=securite4
 
=>Améliorer votre sécurité grâce aux restrictions :
http://speedweb1.free.fr/frames2.php?page=securite6
 
=>Les mots de passe :
http://speedweb1.free.fr/frames2.php?page=securite7

4)- Des précautions simples qui permettent de retrouver un pc en bon état! :

• => Erunt & Ntregopt:
  - Téléchargement :

http://telechargement.zebulon.fr/202-erunt.html
- Téléchargement : http://telechargement.zebulon.fr/203-ntregopt.html
le pc étant clean,il est important de pouvoir Sauvegarder la base de registre afin de la restaurer en cas de problème=>
ntregopt permet de compacter la base de registre pour gagner de la place , et Erunt permet d'en faire une sauvegarde pour pouvoir la restaurer en l'état si besoin est.(problème infectieux,problème de plantage...)
- Tutoriel par Tesgaz : http://www.zebulon.fr/articles/base-de-registre-3.php
 
=>Installer la console de récupération :
http://www.zebulon.fr/articles/console-de-recuperation-1.php
Il est parfois utile d'avoir la consolé de récupération accessible au démarrage de windows afin de pouvoir l'utiliser et ainsi réparer plus facilement son système endommagé!

• =>Process Explorer de SysInternals :
  

http://speedweb1.ovh.org/forum-tesgaz/viewtopic.php?t=39
Remplace aventageusement le Gestionnaire des Tâches de Windows ! surtout lorsque celui ci est désactivé par un malware!
- Téléchargement : http://www.sysinternals.com/Utilities/ProcessExplorer.html
- Tutoriel par Tesgaz : http://speedweb1.ovh.org/forum-tesgaz/viewtopic.php?t=39

Lorsque la désinfection est terminée,pense à changer le titre et y rajouter " Résolu" stp.

 

A bientot sur les forums de