un trojan clicker m'empoisonne

soptiti · le 23 avril 2007

Bonjour à Tous !

J'utilise DU METER, et depuis plusieurs jours je me suis rendu compte que ma connexion "tournait" sans raison (pas de mise à jour en route ou autres pourtant). J'ai tenté de nettoyer mon pc par les moyens habituels : AD-aware, spybot search and destroy, AVG en mode normal et en mode sans échec. Malheureusement rien n'y fait puisqu'aucun d'entre eux n'a détecté d'anomalies... ou presque : AVG m'a signalé un éléments nommé "clicker" puis plus rien.

Je suis donc très inquiet de cette connection intempestive continuelle (principalement en up load). L'un ou l'une d'entre vous aurait-il une solution, s'il vous plait ? merci d'avance.

PS : Pour avoir surfer sur le forum, voici quelques éléments qui sont souvent demandés je crois

j'utilise xp édition familial avec le service pack 2. Mon ordi est un pentium IV de 2.8Gigas et 1.25 Gigas de RAM.

j'en profite aussi pour laisser un scanne de Hijackthis

Logfile of HijackThis v1.99.1

Scan saved at 16:42:05, on 23/04/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\ZONELABS\vsmon.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe

C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

C:\Program Files\ProcessGuard\dcsuserprot.exe

C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\FTRTSVC.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

C:\Program Files\DU Meter\DUMeter.exe

C:\Program Files\QuickTime\qttask.exe

C:\Program Files\Micro Application\Cloneur Expert\TrueImageMonitor.exe

C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe

C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\Program Files\ProcessGuard\pgaccount.exe

C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE

C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe

C:\PROGRA~1\MediaKey\MMKeybd.EXE

C:\Program Files\Sesam.tv\IRAssistant\IRAssistant.exe

C:\Program Files\SPAMfighter\SFAgent.exe

C:\Program Files\ProcessGuard\procguard.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\ATI Technologies\ATI.ACE\cli.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Documents and Settings\moi\Bureau\anti trojan\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_BAND_SEARCHBAR_HTML

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - C:\PROGRA~1\COPERN~1\COPERN~1.DLL

R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no file)

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O4 - HKLM\..\Run: [siSUSBRG] C:\WINDOWS\SiSUSBrg.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

O4 - HKLM\..\Run: [DU Meter] C:\Program Files\DU Meter\DUMeter.exe

O4 - HKLM\..\Run: [Realtime Audio Engine] mmrtkrnl.exe

O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe

O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CAMTRAY.EXE

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [Cloneur Expert Monitor] "C:\Program Files\Micro Application\Cloneur Expert\TrueImageMonitor.exe"

O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe"

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"

O4 - HKLM\..\Run: [!1_pgaccount] "C:\Program Files\ProcessGuard\pgaccount.exe"

O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP

O4 - HKLM\..\Run: [s-watch] C:\Program Files\Screen Watcher\watcher.exe

O4 - HKLM\..\Run: [MMKeybd] C:\PROGRA~1\MediaKey\MMKeybd.EXE

O4 - HKLM\..\Run: [iRAssistant] C:\Program Files\Sesam.tv\IRAssistant\IRAssistant.exe

O4 - HKLM\..\Run: [sPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60

O4 - HKCU\..\Run: [!1_ProcessGuard_Startup] "C:\Program Files\ProcessGuard\procguard.exe" -minimize

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O8 - Extra context menu item: Chercher avec Copernic Agent - res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_MENU_SEARCHEXT

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE

O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE

O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\WINDOWS\System32\shdocvw.dll

O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\WINDOWS\System32\shdocvw.dll

O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O11 - Options group: [iNTERNATIONAL] International*

O14 - IERESET.INF: START_PAGE_URL=http://home.free.fr/

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - https://www-secure.symantec.com/techsupp/asa/LSSupCtl.cab

O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/SSC/SharedCon...bin/AvSniff.cab

O16 - DPF: {3451DEDE-631F-421C-8127-FD793AFC6CC8} (ActiveDataInfo Class) - https://www-secure.symantec.com/techsupp/as...rl/SymAData.cab

O16 - DPF: {44990200-3C9D-426D-81DF-AAB636FA4345} (Symantec SmartIssue) - http://www.symantec.com/techsupp/asa/ctrl/tgctlsi.cab

O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} (Symantec Script Runner Class) - http://www.symantec.com/techsupp/asa/ctrl/tgctlsr.cab

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://soptiti.spaces.msn.com//PhotoUpload/MsnPUpld.cab

O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab

O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111...all/xscan53.cab

O16 - DPF: {7F8C8173-AD80-4807-AA75-5672F22B4582} (ICSScanner Class) - http://download.zonelabs.com/bin/promotion...anner371020.cab

O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://charon777.free.fr/plugins/hardwaredetection.cab

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe

O23 - Service: DiamondCS ProcessGuard Service v3.410 (DCSPGSRV) - DiamondCS - C:\Program Files\ProcessGuard\dcsuserprot.exe

O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\FTRTSVC.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE

O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe

O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe

O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe

soptiti · le 23 avril 2007

RE bonjour!

Je m'aperçois que j'ai oublié d'indiquer que j'ai une connection de 512k ( ile de la réunion oblige) et surtout que j'ai été dans l'impossibilité de suivre à la lettre la procédure de pré-désinfection décrite sur le forum. A cela plusieurs raisons : sites miroirs qui ne renvoient à rien (ou en tout cas Internet explorer ne veut rien ouvrir), ordi qui rame grave, etc ... j'ai donc tenté de faire avec les moyens déjà installés sur mon pc et de coller au plus près de ce qui est décrit, en utilisant Ccleaner par exemple pour fait place net.

Merci encore pour vos futures réponses !!

soptiti · le 29 avril 2007

merci pour vos réponses... je galère toujous autant.... n'y a t il aucune ame charitable ???

Thanos · le 29 avril 2007

salut

J'aimerai en voir plus stp, car le rapport hijackthis ne montre rien de spécial>

Télécharge et lance DiagHelp comme montré dans ce tutoriel> http://www.malekal.com/DiagHelp/DiagHelp.php

Ne lance que l'option 1 et poste le rapport stp.Attention: n'oublie pas d'appuyer sur une touche lorsque cela te sera demandé à la fin du rapport Catchme.

Fais un scan en ligne avec Panda :

http://www.pandasoftware.fr/Activescan/Activescan.html .

Et poste le rapport qu'il t'affichera à la fin, pour cela, assure toi que IE est correctement configuré pour le scan en ligne comme indiqué ici : http://www.malekal.com/scan_Av_en_ligne.html#mozTocId898809 .

Si tu n'y arrives pas, le tuto est : http://www.malekal.com/scan_Av_en_ligne.html#mozTocId237368

Tu n'es pas obligé de donner ton email, tu peux utiliser une adresse jetable si tu le souhaites : http://www.jetable.org/fr/index

Modifié le 29 avril 2007 par charles ingals

soptiti · le 29 avril 2007

Merci pour ta réponse Charles !! je m'attaque à tout cela et j'envoie les rapports les uns après les autres dès que possible...

soptiti · le 29 avril 2007

voilà le rapport diaghelp...

C:\WINDOWS\System32/drivers\avg7core.sys -->28/04/2007 14:57:22

C:\WINDOWS\System32/drivers\avgmfx86.sys -->20/04/2007 23:20:18

C:\WINDOWS\System32/drivers\avg7rsxp.sys -->23/02/2007 20:31:02

C:\WINDOWS\System32/drivers\avgarkt.sys -->31/01/2007 16:33:46

C:\WINDOWS\System32/drivers\PxHelp20.sys -->30/01/2007 08:03:36

C:\WINDOWS\System32/drivers\cdr4_xp.sys -->30/01/2007 08:03:36

C:\WINDOWS\System32/drivers\cdralw2k.sys -->30/01/2007 08:03:36

C:\WINDOWS\System32\wpa.dbl -->29/04/2007 16:52:20

C:\WINDOWS\System32\vsconfig.xml -->29/04/2007 16:52:14

C:\WINDOWS\System32\tmp.txt -->29/04/2007 14:30:42

C:\WINDOWS\System32\tmp.reg -->29/04/2007 14:30:42

C:\WINDOWS\System32\pghash.dat -->29/04/2007 14:23:50

C:\WINDOWS\System32\pguard.dat -->29/04/2007 14:17:04

C:\WINDOWS\System32\HA_Registration.dll -->23/04/2007 15:39:44

C:\WINDOWS\System32\HA_Inet.dll -->23/04/2007 15:39:44

C:\WINDOWS\System32\HA_Error.dll -->23/04/2007 15:39:44

C:\WINDOWS\System32\Uninstall.ico -->21/04/2007 21:31:00

C:\WINDOWS\System32\Help.ico -->21/04/2007 21:30:58

C:\WINDOWS\System32\pavas.ico -->21/04/2007 21:30:58

C:\WINDOWS\System32\fcbeaab_s.dll -->21/04/2007 10:26:12

C:\WINDOWS\System32\ecacfbbd1_s.ocx -->21/04/2007 10:26:12

C:\WINDOWS\System32\libeay32.dll -->21/04/2007 03:12:22

C:\WINDOWS\System32\ssleay32.dll -->21/04/2007 03:11:58

C:\WINDOWS\System32\lzx32.sy_ -->21/04/2007 03:10:34

C:\WINDOWS\System32\FNTCACHE.DAT -->04/04/2007 15:56:04

C:\WINDOWS\System32\MRT.exe -->03/04/2007 23:48:52

C:\WINDOWS\System32\winsrv.dll -->17/03/2007 16:44:48

C:\WINDOWS\System32\xpsp3res.dll -->09/03/2007 14:51:20

C:\WINDOWS\System32\mf3216.dll -->08/03/2007 18:37:50

C:\WINDOWS\System32\user32.dll -->08/03/2007 18:37:50

C:\WINDOWS\System32\gdi32.dll -->08/03/2007 18:37:50

C:\WINDOWS\System32\win32k.sys -->08/03/2007 18:33:58

C:\WINDOWS-wlancfg.log -->29/04/2007 16:53:56

C:\WINDOWS.log -->29/04/2007 16:52:12

C:\WINDOWS\ModemLog_Conexant HSF V92 56K PCI Modem.txt -->29/04/2007 16:52:10

C:\WINDOWS\wiadebug.log -->29/04/2007 16:52:10

C:\WINDOWS\bootstat.dat -->29/04/2007 16:51:44

C:\WINDOWS\SchedLgU.Txt -->29/04/2007 16:50:06

C:\WINDOWS\WindowsUpdate.log -->29/04/2007 16:50:06

C:\WINDOWS\wiaservc.log -->29/04/2007 16:50:06

C:\WINDOWS\win.ini -->29/04/2007 14:19:18

C:\WINDOWS\tsc.ini -->21/04/2007 21:29:08

C:\WINDOWS\GetServer.ini -->21/04/2007 21:27:12

C:\WINDOWS\QTFont.for -->21/04/2007 02:58:30

C:\WINDOWS\QTFont.qfn -->21/04/2007 02:58:30

C:\WINDOWS\cdplayer.ini -->09/03/2007 20:19:34

C:\WINDOWS\AudStu.INI -->07/03/2007 15:23:12

C:\WINDOWS\PATCH.EXE |09/09/2006 11:39:41

C:\WINDOWS\twunk_16.exe |01/01/1980 00:00:00

C:\WINDOWS\twunk_32.exe |01/01/1980 00:00:00

C:\WINDOWS\IsUninst.exe |14/07/2004 17:56:32

C:\WINDOWS\unin040c.exe |29/09/2004 14:35:22

C:\WINDOWS\runtsckl.exe |02/11/2005 18:07:12

C:\WINDOWS\tsc.exe |09/09/2006 11:44:18

C:\WINDOWS\CtDrvIns.exe |29/12/2004 18:46:30

C:\WINDOWS\P0630Cfg.exe |29/12/2004 18:46:30

C:\WINDOWS\IsUn040c.exe |14/07/2004 17:54:55

C:\WINDOWS\Ctregrun.exe |29/12/2004 18:55:18

C:\WINDOWS\UpdtNv28.exe |26/12/2006 16:02:32

C:\WINDOWS\unvise32.exe |11/08/2005 14:34:29

C:\WINDOWS\UNINST32.EXE |23/03/2001 13:45:22

C:\WINDOWS\CopernicAgentUninstall.exe |24/02/2007 14:53:31

C:\WINDOWS\unvise32qt.exe |30/12/2004 10:33:05

C:\WINDOWS\SiSUSBrg.exe |14/07/2004 17:55:01

C:\WINDOWS\alcrmv.exe |14/07/2004 17:55:12

C:\WINDOWS\alcupd.exe |14/07/2004 17:55:12

C:\WINDOWS\SOUNDMAN.EXE |14/07/2004 17:55:12

C:\WINDOWS\slrundll.exe |29/09/2004 15:02:51

C:\WINDOWS\IsUn0410.exe |13/10/2004 19:17:06

C:\WINDOWS\unin0410.exe |13/10/2004 19:18:09

C:\WINDOWS\Uninsop9.exe |13/10/2004 19:18:40

C:\WINDOWS\unin0407.exe |11/08/2005 14:42:43

C:\WINDOWS\Navigator Uninstaller.exe |17/02/2007 19:09:53

C:\WINDOWS\UninstWiFi.exe |27/01/2006 17:00:20

C:\WINDOWS\OptRemove.exe |28/05/2006 02:14:35

C:\WINDOWS\OptChecker.exe |28/05/2006 02:14:34

C:\WINDOWS\CmiRmRedundDir.exe |29/07/2006 08:34:32

C:\WINDOWS\CMIUninstall.exe |29/07/2006 08:34:32

C:\WINDOWS\uninst.exe |30/10/2004 21:06:19

C:\WINDOWS\twain.dll |01/01/1980 00:00:00

C:\WINDOWS\UNZIP.DLL |09/09/2006 11:39:42

C:\WINDOWS\TMUPDATE.DLL |09/09/2006 11:39:42

C:\WINDOWS\loadhttp.dll |15/10/2002 14:29:40

C:\WINDOWS\patchw32.dll |14/12/2001 13:34:46

C:\WINDOWS\AuHCcup1.dll |23/07/1999 10:53:20

C:\WINDOWS\BPMNT.dll |09/09/2006 11:44:18

C:\WINDOWS\vsapi32.dll |09/09/2006 11:44:18

C:\WINDOWS\hcextoutput.dll |09/09/2006 11:44:18

C:\WINDOWS\jestertb.dll |16/01/2005 01:17:14

C:\WINDOWS\WRServices.dll |13/09/2006 18:33:47

C:\WINDOWS\SIS_LIB.DLL |14/07/2004 17:55:01

C:\WINDOWS\twain_32.dll |01/01/1980 00:00:00

C:\WINDOWS\PCDLIB32.DLL |13/10/2004 19:17:21

C:\WINDOWS\CMIRmDriver.dll |29/07/2006 08:34:32

C:\WINDOWS\system32\pgdfgsvc.exe |05/09/2005 07:10:19

C:\WINDOWS\system32\append.exe |01/01/1980 00:00:00

C:\WINDOWS\system32\unwlsdrv.exe |06/01/2005 17:04:00

C:\WINDOWS\system32\dosx.exe |01/01/1980 00:00:00

C:\WINDOWS\system32\debug.exe |01/01/1980 00:00:00

C:\WINDOWS\system32\dvdplay.exe |23/08/2001 17:47:34

C:\WINDOWS\system32\edlin.exe |01/01/1980 00:00:00

C:\WINDOWS\system32\exe2bin.exe |01/01/1980 00:00:00

C:\WINDOWS\system32\fastopen.exe |01/01/1980 00:00:00

C:\WINDOWS\system32\mem.exe |01/01/1980 00:00:00

C:\WINDOWS\system32\mscdexnt.exe |01/01/1980 00:00:00

C:\WINDOWS\system32\nlsfunc.exe |01/01/1980 00:00:00

C:\WINDOWS\system32\setver.exe |01/01/1980 00:00:00

C:\WINDOWS\system32\share.exe |01/01/1980 00:00:00

C:\WINDOWS\system32\usrmlnka.exe |23/08/2001 17:47:48

C:\WINDOWS\system32\usrprbda.exe |23/08/2001 17:47:48

C:\WINDOWS\system32\usrshuta.exe |23/08/2001 17:47:48

C:\WINDOWS\system32\ati2sgag.exe |03/04/2006 19:38:51

C:\WINDOWS\system32\fgs.exe |14/02/2003 00:00:00

C:\WINDOWS\system32\bzip2.exe |10/11/1999 23:00:00

C:\WINDOWS\system32\gzip.exe |10/11/1999 23:00:00

C:\WINDOWS\system32\slserv.exe |29/09/2004 15:02:54

C:\WINDOWS\system32\slrundll.exe |29/09/2004 15:02:54

C:\WINDOWS\system32\md5sum.exe |10/11/1999 23:00:00

C:\WINDOWS\system32\tar.exe |10/11/1999 23:00:00

C:\WINDOWS\system32\cnmUnInst.exe |29/09/2004 14:51:15

C:\WINDOWS\system32\FTD2XXUN.EXE |10/11/2004 00:09:00

C:\WINDOWS\system32\autoprnt.exe |08/02/2005 17:54:48

C:\WINDOWS\system32\Ati2mdxx.exe |01/01/1980 00:00:00

C:\WINDOWS\system32\PSDrvCheck.exe |28/05/2003 16:37:44

C:\WINDOWS\system32\P0630Srv.exe |29/12/2004 18:46:30

C:\WINDOWS\system32\redir.exe |01/01/1980 00:00:00

C:\WINDOWS\system32\OggDSuninst.exe |05/01/2006 11:54:29

C:\WINDOWS\system32\java.exe |02/01/2006 17:59:46

C:\WINDOWS\system32\javaw.exe |02/01/2006 17:59:46

C:\WINDOWS\system32\javaws.exe |02/01/2006 17:59:47

C:\WINDOWS\system32\NeroCheck.exe |01/03/2006 12:01:28

C:\WINDOWS\system32\cmirmdrv.exe |29/07/2006 08:34:33

C:\WINDOWS\system32\GSW.EXE |15/03/2005 23:38:00

C:\WINDOWS\system32\EASIMME.exe |11/08/2006 20:37:46

C:\WINDOWS\system32\ati2evxx.exe |01/01/1980 00:00:00

C:\WINDOWS\system32\PlgEnabler.exe |11/08/2006 20:37:46

C:\WINDOWS\system32\DivXsm.exe |01/02/2007 00:27:01

C:\WINDOWS\system32\pxhpinst.exe |21/02/2007 13:03:34

C:\WINDOWS\system32\pxinsa64.exe |21/02/2007 13:03:34

C:\WINDOWS\system32\pxinsi64.exe |21/02/2007 13:03:35

C:\WINDOWS\system32\DivXCodecUpdateChecker.exe |31/01/2007 02:15:10

C:\WINDOWS\system32\pxcpya64.exe |21/02/2007 13:03:35

C:\WINDOWS\system32\pxcpyi64.exe |21/02/2007 13:03:35

C:\WINDOWS\system32\asuninst.exe |21/04/2007 21:31:53

C:\WINDOWS\system32\N065UUD.DLL |30/09/2004 19:31:53

C:\WINDOWS\system32\N065UCPL.DLL |30/09/2004 19:31:53

C:\WINDOWS\system32\N065UFW.dll |30/09/2004 19:31:53

C:\WINDOWS\system32\UCS32P.DLL |30/09/2004 19:31:53

C:\WINDOWS\system32\ir41_32.dll |23/01/2005 17:11:30

C:\WINDOWS\system32\FreeImage.dll |11/02/2007 17:51:00

C:\WINDOWS\system32\a3d.dll |14/07/2004 17:55:12

C:\WINDOWS\system32\w32n50.dll |23/12/2005 17:01:15

C:\WINDOWS\system32\opshel32.dll |13/10/2004 19:18:40

C:\WINDOWS\system32\Pixdfltn.dll |04/05/2000 13:55:46

C:\WINDOWS\system32\scnlib32.dll |04/05/2000 13:58:02

C:\WINDOWS\system32\Pixlocn.dll |04/05/2000 13:55:46

C:\WINDOWS\system32\Pixpermn.dll |04/05/2000 13:55:46

C:\WINDOWS\system32\DLLCDA32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\cpuinf32.dll |17/09/2001 13:20:02

C:\WINDOWS\system32\atmfd.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\WLANUTL.dll |27/01/2006 16:58:48

C:\WINDOWS\system32\ltkrn13n.dll |03/01/2006 01:46:12

C:\WINDOWS\system32\ltfil13n.dll |03/01/2006 01:46:12

C:\WINDOWS\system32\ltdis13n.dll |03/01/2006 01:46:12

C:\WINDOWS\system32\jgaw400.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\jgmd400.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\jgdw400.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\jgsd400.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\jgsh400.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\jgpl400.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\ltimg13n.dll |03/01/2006 01:46:12

C:\WINDOWS\system32\mdwmdmsp.dll |23/08/2001 17:47:06

C:\WINDOWS\system32\xvidcore.dll |05/06/2004 12:56:16

C:\WINDOWS\system32\xvidvfw.dll |06/06/2004 12:53:42

C:\WINDOWS\system32\3ivx.dll |27/01/2004 13:48:18

C:\WINDOWS\system32\msencode.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\huffyuv.dll |20/12/2003 01:38:58

C:\WINDOWS\system32\ir50_lcs.dll |06/11/1997 14:53:30

C:\WINDOWS\system32\TDXMW32.DLL |30/10/2004 21:07:29

C:\WINDOWS\system32\stvp.dll |11/07/2003 12:48:21

C:\WINDOWS\system32\msdmo.dll |12/12/2002 00:14:32

C:\WINDOWS\system32\vp6vfw.dll |12/02/2004 09:39:38

C:\WINDOWS\system32\lfbmp13n.dll |03/01/2006 01:46:12

C:\WINDOWS\system32\vp31vfw.dll |14/02/2002 11:48:12

C:\WINDOWS\system32\slbrccsp.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\spnike.dll |23/08/2001 17:47:18

C:\WINDOWS\system32\sprio600.dll |23/08/2001 17:47:18

C:\WINDOWS\system32\sprio800.dll |23/08/2001 17:47:18

C:\WINDOWS\system32\lfcmp13n.dll |03/01/2006 01:46:12

C:\WINDOWS\system32\tsd32.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\win87em.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\isrdbg32.dll |14/07/2004 17:48:31

C:\WINDOWS\system32\vboxs430.dll |12/09/2000 21:24:29

C:\WINDOWS\system32\cmuda.dll |29/07/2006 08:34:33

C:\WINDOWS\system32\paqsp.dll |23/08/2001 17:47:16

C:\WINDOWS\system32\usrcntra.dll |23/08/2001 17:47:20

C:\WINDOWS\system32\usrcoina.dll |23/08/2001 17:47:20

C:\WINDOWS\system32\usrdpa.dll |23/08/2001 17:47:20

C:\WINDOWS\system32\usrdtea.dll |23/08/2001 17:47:20

C:\WINDOWS\system32\usrfaxa.dll |23/08/2001 17:47:20

C:\WINDOWS\system32\usrlbva.dll |23/08/2001 17:47:20

C:\WINDOWS\system32\usrrtosa.dll |23/08/2001 17:47:20

C:\WINDOWS\system32\usrsdpia.dll |23/08/2001 17:47:20

C:\WINDOWS\system32\usrsvpia.dll |23/08/2001 17:47:20

C:\WINDOWS\system32\usrv42a.dll |23/08/2001 17:47:20

C:\WINDOWS\system32\usrv80a.dll |23/08/2001 17:47:20

C:\WINDOWS\system32\usrvoica.dll |23/08/2001 17:47:20

C:\WINDOWS\system32\usrvpa.dll |23/08/2001 17:47:20

C:\WINDOWS\system32\Ir50_32.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\Ir50_qc.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\eraser.dll |25/07/2003 11:14:34

C:\WINDOWS\system32\Ir50_qcx.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\3ivxVfWCodec.dll |27/01/2004 13:48:34

C:\WINDOWS\system32\OpenQuicktimeLib.dll |27/01/2004 13:13:54

C:\WINDOWS\system32\Ir32_32.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\Ir41_qc.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\Ir41_qcx.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\MACDec.dll |15/05/2004 16:10:42

C:\WINDOWS\system32\iccvid.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\WNASPI32.DLL |30/10/2004 21:07:29

C:\WINDOWS\system32\ltefx13n.dll |03/01/2006 01:46:12

C:\WINDOWS\system32\lfgif13n.dll |03/01/2006 01:46:13

C:\WINDOWS\system32\WooDial2000.dll |23/12/2005 17:16:56

C:\WINDOWS\system32\clrviddc.dll |04/03/2006 10:46:37

C:\WINDOWS\system32\compatUI.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\atioglxx.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\DLLAV32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\ogg.dll |05/10/2002 02:04:17

C:\WINDOWS\system32\xvid.dll |04/09/2002 15:12:16

C:\WINDOWS\system32\vorbis.dll |05/10/2002 02:04:24

C:\WINDOWS\system32\atmlib.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\amstream.dll |12/12/2002 00:14:32

C:\WINDOWS\system32\atitvo32.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\DLLCDF32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\slgen.dll |29/09/2004 15:02:54

C:\WINDOWS\system32\slextspk.dll |29/09/2004 15:02:54

C:\WINDOWS\system32\slcoinst.dll |29/09/2004 15:02:54

C:\WINDOWS\system32\sbe.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\s3gnb.dll |29/09/2004 15:02:54

C:\WINDOWS\system32\nv4_disp.dll |29/09/2004 15:02:54

C:\WINDOWS\system32\mtxparhd.dll |29/09/2004 15:02:55

C:\WINDOWS\system32\hsfcisp2.dll |29/09/2004 15:02:56

C:\WINDOWS\system32\vsdata.dll |24/09/2006 17:20:41

C:\WINDOWS\system32\encdec.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\pncrt.dll |01/11/2004 14:43:22

C:\WINDOWS\system32\pndx5016.dll |01/11/2004 14:43:28

C:\WINDOWS\system32\ativcoxx.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\ativtmxx.dll |29/09/2004 15:02:57

C:\WINDOWS\system32\ati2dvaa.dll |29/09/2004 15:02:57

C:\WINDOWS\system32\pndx5032.dll |01/11/2004 14:43:28

C:\WINDOWS\system32\rmoc3260.dll |01/11/2004 14:43:39

C:\WINDOWS\system32\Wh2Robo.dll |30/10/2004 20:57:02

C:\WINDOWS\system32\FTD2XX.DLL |10/11/2004 00:09:00

C:\WINDOWS\system32\Audio3D.dll |14/07/2004 17:55:12

C:\WINDOWS\system32\lfbmp11n.dll |07/06/2002 05:02:00

C:\WINDOWS\system32\DLLCPY32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\HtmlWH.dll |11/08/2006 20:34:55

C:\WINDOWS\system32\setupnt.dll |08/02/2005 17:54:04

C:\WINDOWS\system32\snapapi.dll |08/02/2005 17:54:02

C:\WINDOWS\system32\DLLDEV32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\dpv10.dll |01/09/2004 16:49:16

C:\WINDOWS\system32\dpus10.dll |01/09/2004 16:49:16

C:\WINDOWS\system32\dpuGUI10.dll |03/09/2004 18:37:38

C:\WINDOWS\system32\qt-mt331.dll |01/09/2004 16:49:17

C:\WINDOWS\system32\DivX.dll |01/02/2007 07:56:04

C:\WINDOWS\system32\PSIKey.dll |01/09/2004 16:48:50

C:\WINDOWS\system32\NTICDMK32.dll |14/07/2004 17:56:07

C:\WINDOWS\system32\divx_xx0c.dll |01/02/2007 07:56:05

C:\WINDOWS\system32\divx_xx07.dll |01/02/2007 07:56:06

C:\WINDOWS\system32\hypertrm.dll |14/07/2004 17:47:30

C:\WINDOWS\system32\Hmpg12.dll |03/09/2001 23:46:38

C:\WINDOWS\system32\EqnClass.Dll |14/07/2004 17:44:27

C:\WINDOWS\system32\spxcoins.dll |14/07/2004 17:44:27

C:\WINDOWS\system32\dgsetup.dll |14/07/2004 17:44:27

C:\WINDOWS\system32\dgrpsetu.dll |14/07/2004 17:44:27

C:\WINDOWS\system32\lfeps11n.dll |07/06/2002 05:02:00

C:\WINDOWS\system32\lffax11n.dll |07/06/2002 05:02:00

C:\WINDOWS\system32\lfgif11n.dll |07/06/2002 05:02:00

C:\WINDOWS\system32\lfpcd11n.dll |07/06/2002 05:02:00

C:\WINDOWS\system32\lfpcx11n.dll |07/06/2002 05:02:00

C:\WINDOWS\system32\lfpsd11n.dll |07/06/2002 05:02:00

C:\WINDOWS\system32\lftga11n.dll |07/06/2002 05:02:00

C:\WINDOWS\system32\lftif11n.dll |07/06/2002 05:02:00

C:\WINDOWS\system32\lfwmf11n.dll |07/06/2002 05:02:00

C:\WINDOWS\system32\ltfil11n.DLL |07/06/2002 05:02:00

C:\WINDOWS\system32\ltimg11n.dll |07/06/2002 05:02:02

C:\WINDOWS\system32\ltkrn11n.dll |07/06/2002 05:02:02

C:\WINDOWS\system32\PCDLIB32.DLL |07/06/2002 05:02:02

C:\WINDOWS\system32\MSRTEDIT.DLL |22/01/1999 20:46:58

C:\WINDOWS\system32\pclepim1.dll |15/01/2005 23:10:35

C:\WINDOWS\system32\multiplex_vcd.dll |26/12/2001 16:12:30

C:\WINDOWS\system32\mdmxsdk.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\C4C_INST.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\HMPV2_ENC.dll |30/07/2001 16:33:56

C:\WINDOWS\system32\ati3d2ag.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\CNMLMON.DLL |29/09/2004 14:51:23

C:\WINDOWS\system32\DLLDIR32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\DLLDRV32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\Oemdspif.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\ati2dvag.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\HMPV2_ENC_MMX.dll |23/07/2001 22:04:36

C:\WINDOWS\system32\divx_xx11.dll |01/02/2007 07:56:05

C:\WINDOWS\system32\divxdec_040c.dll |04/09/2004 00:34:08

C:\WINDOWS\system32\divxdec_0407.dll |04/09/2004 00:34:08

C:\WINDOWS\system32\divxdec_0411.dll |04/09/2004 00:25:12

C:\WINDOWS\system32\MagixDS.dll |11/08/2006 20:37:46

C:\WINDOWS\system32\DLLIMG32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\DLLIO32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\DLLPRJ32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\DLLPTL32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\DLLISO32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\DLLIX.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\DLLMSC32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\DLLPNT32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\DLLPRF32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\DLLRD32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\DLLRES32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\P0630Sti.dll |29/12/2004 18:46:30

C:\WINDOWS\system32\P0630Hwx.dll |29/12/2004 18:46:30

C:\WINDOWS\system32\P0630Pin.dll |29/12/2004 18:46:30

C:\WINDOWS\system32\CtCamMgr.dll |29/12/2004 18:46:30

C:\WINDOWS\system32\P0630Vfw.dll |29/12/2004 18:46:30

C:\WINDOWS\system32\34CoInstaller.dll |15/01/2005 22:59:45

C:\WINDOWS\system32\Ma32.dll |15/01/2005 23:10:35

C:\WINDOWS\system32\PCLEGetGuid.dll |15/01/2005 23:10:35

C:\WINDOWS\system32\hticons.dll |14/07/2004 17:47:30

C:\WINDOWS\system32\Macd32.dll |15/01/2005 23:10:35

C:\WINDOWS\system32\Mamc32.dll |15/01/2005 23:10:35

C:\WINDOWS\system32\Masd32.dll |15/01/2005 23:10:35

C:\WINDOWS\system32\Mase32.dll |15/01/2005 23:10:35

C:\WINDOWS\system32\LFCMP11n.DLL |07/06/2002 05:02:00

C:\WINDOWS\system32\Lfpng11n.dll |07/06/2002 05:02:00

C:\WINDOWS\system32\LTDIS11n.dll |07/06/2002 05:02:00

C:\WINDOWS\system32\Ltwvc11n.dll |07/06/2002 05:02:02

C:\WINDOWS\system32\RALMain.dll |15/01/2005 23:10:38

C:\WINDOWS\system32\Cnmbjun4.dll |29/09/2004 14:51:15

C:\WINDOWS\system32\Cnmbjun5.dll |29/09/2004 14:51:15

C:\WINDOWS\system32\DiskIO.dll |15/01/2005 23:10:38

C:\WINDOWS\system32\Cachex.dll |15/01/2005 23:10:38

C:\WINDOWS\system32\MLPagAx.dll |15/01/2005 23:10:38

C:\WINDOWS\system32\cmirmdrv.dll |29/07/2006 08:34:33

C:\WINDOWS\system32\midas.dll |01/07/2003 22:48:09

C:\WINDOWS\system32\imagr5.dll |01/03/2006 12:01:28

C:\WINDOWS\system32\iacenc.dll |05/01/2006 11:56:21

C:\WINDOWS\system32\iyvu9_32.dll |05/01/2006 11:56:21

C:\WINDOWS\system32\imagx5.dll |01/03/2006 12:01:28

C:\WINDOWS\system32\slbiop.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\slbcsp.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\dpu11.dll |30/01/2007 07:56:52

C:\WINDOWS\system32\dpus11.dll |30/01/2007 07:56:52

C:\WINDOWS\system32\qedwipes.dll |12/12/2002 00:14:32

C:\WINDOWS\system32\psisdecd.dll |14/07/2004 17:59:39

C:\WINDOWS\system32\picn20.dll |01/03/2006 12:01:29

C:\WINDOWS\system32\DLLTPO32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\OWL52T.DLL |11/02/2005 19:40:21

C:\WINDOWS\system32\BDS52T.DLL |11/02/2005 19:40:22

C:\WINDOWS\system32\STRING32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\livesnth.dll |04/03/2006 10:46:37

C:\WINDOWS\system32\vorbisenc.dll |05/10/2002 02:04:25

C:\WINDOWS\system32\OggDS.dll |06/10/2002 21:42:57

C:\WINDOWS\system32\vsutil.dll |24/09/2006 17:20:41

C:\WINDOWS\system32\ATIDDC.DLL |01/01/1980 00:00:00

C:\WINDOWS\system32\MMRTKRNL.DLL |10/11/2004 00:08:59

C:\WINDOWS\system32\TTI32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\ffJmpWeb.dll |17/03/2006 22:18:02

C:\WINDOWS\system32\ImagXpr5.dll |01/03/2006 12:01:28

C:\WINDOWS\system32\udaprop.dll |29/07/2006 08:34:33

C:\WINDOWS\system32\TTIC32.dll |11/08/2006 20:37:45

C:\WINDOWS\system32\atioglx1.dll |22/02/2006 06:27:13

C:\WINDOWS\system32\atiiiexx.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\vsmonapi.dll |24/09/2006 17:21:23

C:\WINDOWS\system32\dpv11.dll |30/01/2007 07:56:52

C:\WINDOWS\system32\vspubapi.dll |24/09/2006 17:21:23

C:\WINDOWS\system32\DATEDLL.DLL |15/03/2005 23:37:59

C:\WINDOWS\system32\GSWDLL.DLL |15/03/2005 23:38:00

C:\WINDOWS\system32\QPRO200.DLL |15/03/2005 23:38:00

C:\WINDOWS\system32\UnzDll.dll |15/03/2005 23:38:00

C:\WINDOWS\system32\ZipDll.dll |15/03/2005 23:38:00

C:\WINDOWS\system32\ati3d1ag.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\EASIMME.dll |11/08/2006 20:37:46

C:\WINDOWS\system32\ATI2EVXX(3).DLL |01/01/1980 00:00:00

C:\WINDOWS\system32\ssleay32.dll |21/04/2007 03:11:57

C:\WINDOWS\system32\ATI2EVXX(4).DLL |01/01/1980 00:00:00

C:\WINDOWS\system32\atipdlxx.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\ATIDEMGR.dll |22/02/2006 05:21:35

C:\WINDOWS\system32\ati2cqag.dll |29/09/2004 15:02:57

C:\WINDOWS\system32\ati3duag.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\ativvaxx.dll |29/09/2004 15:02:57

C:\WINDOWS\system32\ati2evxx.dll |01/01/1980 00:00:00

C:\WINDOWS\system32\ati2edxx.dll |22/02/2006 06:40:41

C:\WINDOWS\system32\atikvmag.dll |22/02/2006 06:11:01

C:\WINDOWS\system32\mgxasio.dll |11/08/2006 20:37:47

C:\WINDOWS\system32\mgxoschk.dll |11/08/2006 20:34:15

C:\WINDOWS\system32\INETWH32.dll |15/10/2004 22:18:38

C:\WINDOWS\system32\ROBOEX32.DLL |15/10/2004 22:18:38

C:\WINDOWS\system32\vsinit.dll |24/09/2006 17:20:41

C:\WINDOWS\system32\zlib.dll |27/07/2000 01:13:02

C:\WINDOWS\system32\SmartSubClass.dll |27/04/2001 13:11:42

C:\WINDOWS\system32\SmartMenuXP.dll |13/10/2001 22:48:34

C:\WINDOWS\system32\zlcommdb.dll |24/09/2006 17:21:29

C:\WINDOWS\system32\vsxml.dll |24/09/2006 17:21:23

C:\WINDOWS\system32\vswmi.dll |24/09/2006 17:21:24

C:\WINDOWS\system32\zlcomm.dll |24/09/2006 17:21:29

C:\WINDOWS\system32\Registry.dll |25/09/2001 18:53:24

C:\WINDOWS\system32\vsregexp.dll |24/09/2006 17:21:31

C:\WINDOWS\system32\dtu100.dll |30/01/2007 07:56:56

C:\WINDOWS\system32\dpl100.dll |30/01/2007 07:56:56

C:\WINDOWS\system32\libeay32_0.9.6l.dll |24/09/2006 17:21:31

C:\WINDOWS\system32\vsutil_loc040c.dll |24/09/2006 17:21:34

C:\WINDOWS\system32\libdivx.dll |30/01/2007 08:03:26

C:\WINDOWS\system32\ssldivx.dll |30/01/2007 08:03:26

C:\WINDOWS\system32\qt-dx331.dll |30/01/2007 08:03:40

C:\WINDOWS\system32\dpu10.dll |03/09/2004 18:33:33

C:\WINDOWS\system32\dpuGUI11.dll |30/01/2007 07:56:52

C:\WINDOWS\system32\px.dll |21/02/2007 13:03:34

C:\WINDOWS\system32\pxmas.dll |21/02/2007 13:03:34

C:\WINDOWS\system32\pxwave.dll |21/02/2007 13:03:34

C:\WINDOWS\system32\vxblock.dll |21/02/2007 13:03:34

C:\WINDOWS\system32\pxdrv.dll |21/02/2007 13:03:34

C:\WINDOWS\system32\pxsfs.dll |21/02/2007 13:03:34

C:\WINDOWS\system32\pxafs.dll |21/02/2007 13:03:34

C:\WINDOWS\system32\ResInterface.dll |11/07/2003 12:48:21

C:\WINDOWS\system32\DivXWMPExtType.dll |12/12/2006 19:24:42

C:\WINDOWS\system32\libeay32.dll |21/04/2007 03:12:21

C:\WINDOWS\system32\fcbeaab_s.dll |21/04/2007 10:26:11

C:\WINDOWS\system32\ZPORT4AS.dll |21/04/2007 21:31:53

C:\WINDOWS\system32\HA_Error.dll |23/04/2007 15:39:58

C:\WINDOWS\system32\HA_Inet.dll |23/04/2007 15:39:58

C:\WINDOWS\system32\HA_Registration.dll |23/04/2007 15:39:58

C:\WINDOWS\system32\xmlparse.dll |08/08/2005 15:33:05

C:\WINDOWS\system32\xmltok.dll |08/08/2005 15:33:05

C:\WINDOWS\system32\libmySQL.dll |30/10/2002 10:07:25

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 2B1B-1302

Répertoire de C:\WINDOWS\system

23/08/2001 12:00 9 728 regsvr32.exe

23/12/1997 02:00 4 672 WOWPOST.EXE

28/04/1993 00:00 286 720 GSW.EXE

17/02/2004 17:51 1 458 176 SmWizard.exe

4 fichier(s) 1 759 296 octets

0 Rép(s) 5 122 424 832 octets libres

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 2B1B-1302

Répertoire de C:\WINDOWS\system32

19/08/2004 16:09 6 144 csrss.exe

1 fichier(s) 6 144 octets

0 Rép(s) 5 122 424 832 octets libres

Contenu de Downloaded Program Files

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 2B1B-1302

Répertoire de C:\WINDOWS\Downloaded Program Files

14/07/2004 17:48 <REP> .

14/07/2004 17:48 <REP> ..

14/07/2004 17:48 65 desktop.ini

07/11/2004 03:47 <REP> CONFLICT.1

19/06/2002 14:11 117 088 PURen-us.dll

31/05/2002 09:20 117 328 PURfr-fr.dll

25/01/2006 12:43 367 LegitCheckControl.inf

10/04/2000 17:12 1 765 fhg.inf

15/10/2004 07:59 110 592 PURfr-xx.dll

12/04/2006 15:39 372 736 MsnPUpld.dll

12/04/2006 15:38 393 MsnPUpld.inf

26/06/2006 19:21 169 672 SymAData.dll

27/10/2004 14:10 111 752 LSSupCtl.dll

27/10/2004 14:03 302 LSSupCtl.inf

16/11/2005 11:52 490 Medialogic.INF

26/06/2006 19:21 558 792 tgctlsr.dll

26/06/2006 19:21 1 091 272 tgctlsi.dll

17/05/2006 14:32 161 480 rufsi.dll

17/05/2006 14:29 241 CabSA.inf

02/11/2005 18:07 435 712 xscan53.ocx

02/11/2005 18:01 1 777 xscan.inf

10/09/2006 01:00 124 584 naveng32.dll

10/09/2006 01:00 882 344 navex32a.dll

10/09/2006 01:00 2 504 catalog.dat

10/09/2006 01:00 272 040 ecmsvr32.dll

10/09/2006 01:00 6 899 ecbootil.vxd

10/09/2006 01:00 32 virscant.dat

10/09/2006 01:00 966 991 virscan1.dat

10/09/2006 01:00 569 712 virscan2.dat

10/09/2006 01:00 146 648 virscan3.dat

10/09/2006 01:00 320 186 virscan4.dat

10/09/2006 01:00 2 710 718 virscan5.dat

10/09/2006 01:00 389 301 virscan6.dat

10/09/2006 01:00 4 477 098 virscan7.dat

10/09/2006 01:00 1 595 050 virscan8.dat

10/09/2006 01:00 3 633 426 virscan9.dat

10/09/2006 01:00 224 zdone.dat

10/09/2006 01:00 106 244 virscan.inf

10/09/2006 01:00 97 552 scrauth.dat

10/09/2006 01:00 453 tinf.dat

10/09/2006 01:00 148 tinfidx.dat

10/09/2006 01:00 1 957 tinfl.dat

10/09/2006 01:00 58 757 tscan1.dat

10/09/2006 01:00 3 027 tscan1hd.dat

10/09/2006 01:00 901 symaveng.inf

10/09/2006 01:00 14 symaveng.cat

10/09/2006 01:00 48 717 tcdefs.dat

10/09/2006 01:00 968 580 tcscan7.dat

10/09/2006 01:00 315 343 tcscan8.dat

10/09/2006 01:00 661 149 tcscan9.dat

10/09/2006 01:00 5 116 v.grd

10/09/2006 01:00 2 261 v.sig

26/10/2004 18:10 6 854 navapi.vxd

26/10/2004 18:10 208 896 navapi32.dll

26/10/2004 18:14 197 760 avsniff.dll

26/10/2004 18:11 626 avsniff.inf

13/09/2006 16:49 2 072 vscanmsx.dat

18/09/2006 17:00 1 734 392 ICSScan.dll

18/09/2006 13:31 471 ICSScanner.inf

09/11/2006 14:36 5 019 swflash.inf

22/12/2006 12:20 1 564 hardwaredetection.inf

25/06/2006 12:50 1 793 erma.inf

24/08/2006 08:28 141 424 asinst.dll

22/08/2006 09:06 537 asinst.inf

61 fichier(s) 23 921 208 octets

Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.1

07/11/2004 03:47 <REP> .

07/11/2004 03:47 <REP> ..

26/06/2006 19:21 169 672 SymAData.dll

27/10/2004 14:10 111 752 LSSupCtl.dll

27/10/2004 14:03 302 LSSupCtl.inf

3 fichier(s) 281 726 octets

Total des fichiers listés :

64 fichier(s) 24 202 934 octets

5 Rép(s) 5 122 424 832 octets libres

Recherche de rootkit! (Merci S!Ri)

C:\WINDOWS\System32\ip6fw.sys présent! Possible infection Spy-Agent.bv.dldr/Win32/Cutwail.M

Recherche d'infections connues

catchme 0.2 W2K/XP/Vista - userland rootkit detector by Gmer, 17 October 2006

http://www.gmer.net

scanning hidden processes ...

scanning hidden services ...

scanning hidden autostart entries ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run

!1_pgaccount = "C:\Program Files\ProcessGuard\pgaccount.exe"???? ?????? ? ?????????A???????????????????????

scanning hidden files ...

scan completed successfully

hidden processes: 0

hidden services: 0

hidden files: 0

Liste des programmes installes

AC3Filter (remove only)

Ad-Aware SE Personal

Adobe Acrobat 5.0

Adobe Flash Player 9 ActiveX

Adobe Shockwave Player

Ahead Nero 6 Demo

Archiveur WinRAR

ArcSoft PhotoStudio 2000

ATI - Software Uninstall Utility

ATI Catalyst Control Center

ATI Display Driver

AutoUpdate

AVG Anti-Rootkit Free

AVG Anti-Spyware 7.5

AVG Free Edition

C-Media 3D Audio

C-Media WDM Audio Driver

Caere Scan Manager 5.1

CCleaner (remove only)

Cloneur Expert

Copernic Agent Basic

Creative WebCam Center

Creative WebCam Live! Driver (1.00.06.0414)

Direct Show Ogg Vorbis Filter (remove only)

DivX Codec

DivX Content Uploader

DivX Converter

DivX Player

DivX Web Player

DU Meter

Dépanneur Expert

EasyRecovery Professional

Editeur de disque

eMule

File Good Security 3.10g

HardwareDetection

HijackThis 1.99.1

Imprimante BJ

Indeo® XP Software

J2SE Runtime Environment 5.0 Update 2

J2SE Runtime Environment 5.0 Update 6

Java 2 Runtime Environment, SE v1.4.2_01

Java 2 Runtime Environment, SE v1.4.2_06

jv16 PowerTools 2006

K-Lite Codec Pack 2.27 Full

K!TV

La Bataille pour la Terre du Milieu™ II

Language pack for Ad-Aware SE

Lecteur Windows Media 10

Lemmings for Windows 95

Livebox

Manuel d'utilisation de Creative WebCam Live! (Français)

MediaKey

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1 Hotfix (KB886903)

Microsoft Internationalized Domain Names Mitigation APIs

Microsoft National Language Support Downlevel APIs

Microsoft Office 2000 CD-ROM 2

Microsoft Office Professional Edition 2003

Microsoft XML Parser

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)

Monopoly

MpFormat

MpFormat (C:\Program Files\MpFormat\)

MpFormat (C:\Program Files\MpFormat\) #3

MSN Messenger 7.5

MSXML 4.0 SP2 (KB927978)

Navigator

Nettoyeur de disque

NTI CD & DVD-Maker

NTI CD & DVD-Maker 6.5 Gold

OmniPage Pro 9.0

Paint Shop Pro 6 Digital Camera Support

Paint Shop Pro 6.0 (CD-ROM)

Panda ActiveScan

Partition Expert

Pinnacle PCTV

PowerDVD

QuickTime

RealPlayer

Realtek AC'97 Audio

Security BOX FreeWare 1.1

Shockwave

SiSAGP driver

Skype 2.0

SkySwePro

SPAMfighter

Spybot - Search & Destroy 1.4

StatView

Ulead GIF Animator 5 Trial

USB Flash Disk

VideoLAN VLC media player 0.8.6b

Wanadoo Messager

WebFldrs XP

Windows Genuine Advantage Notifications (KB905474)

Windows Genuine Advantage v1.3.0254.0

Windows Genuine Advantage Validation Tool (KB892130)

Windows Internet Explorer 7

Windows Live Messenger

Windows Live Sign-in Assistant

Windows Media Format Runtime

Windows Vista Upgrade Advisor

Windows XP Service Pack 2

WinZip

World of Warcraft

XviD Video Codec 04092002-1 (Koepi's build with EPSZ ME)

XVid;-)

ZoneAlarm

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 2B1B-1302

Répertoire de C:\Program Files

14/07/2004 17:44 <REP> .

14/07/2004 17:44 <REP> ..

22/04/2007 09:46 <REP> a2 free

05/01/2006 11:54 <REP> AC3Filter

14/07/2004 17:56 <REP> Adobe

06/05/2005 18:48 <REP> Agnitum

17/10/2004 15:47 <REP> Ahead

30/10/2004 21:06 <REP> ALCATech

01/02/2006 19:13 <REP> Anonymizer

13/10/2004 19:17 <REP> ArcSoft

03/04/2006 19:38 <REP> ATI Technologies

14/07/2004 17:55 <REP> AvRack

13/04/2005 09:17 <REP> bps spyware

13/04/2005 09:18 <REP> BulletProofSoft.com

18/04/2005 16:36 <REP> CachemanXP

13/10/2004 19:18 <REP> Caere

13/08/1999 06:00 5 885 CAMUNWISE.INI

08/09/2006 17:13 <REP> CCleaner

04/12/2004 10:55 <REP> Cdex

17/02/2005 14:47 <REP> CheckFlow

04/03/2006 10:34 <REP> Clean Disk Security

29/07/2006 08:34 <REP> C-Media 3D Audio

14/07/2004 17:48 <REP> ComPlus Applications

31/10/2004 02:39 <REP> Copernic Agent

29/12/2004 18:45 <REP> Creative

28/02/2005 15:56 <REP> Cyanide

14/07/2004 17:57 <REP> CyberLink

13/11/2004 17:16 <REP> DivX

30/10/2004 13:41 <REP> DU Meter

26/03/2006 10:34 <REP> EA GAMES

17/10/2004 17:07 <REP> Elaborate Bytes

22/07/2006 17:37 <REP> Electronic Arts

29/10/2004 11:14 <REP> eMule

07/02/2007 18:45 <REP> Eraser

16/05/2006 18:53 <REP> Everest Poker

05/01/2006 11:54 <REP> ffdshow

14/07/2004 17:44 <REP> Fichiers communs

31/10/2004 18:05 <REP> File Good Security

25/11/2004 10:01 <REP> FlashGet

11/08/2005 14:34 <REP> Game On

13/11/2004 17:12 <REP> GFI

28/01/2006 16:48 <REP> Google

24/06/2005 08:57 <REP> GrabIt

28/12/2006 15:06 <REP> Grisoft

20/06/2005 19:05 <REP> GT Interactive

03/04/2006 18:01 <REP> HardwareDetection

13/01/2007 15:43 <REP> ICRAplus

23/01/2005 19:41 <REP> Infogrames

14/07/2004 17:48 <REP> Internet Explorer

13/01/2007 15:03 <REP> Internet Spy

23/12/2005 17:04 <REP> Inventel

14/07/2004 17:58 <REP> Java

21/04/2007 10:26 <REP> jv16 PowerTools 2006

16/01/2005 00:35 <REP> K!TV

17/10/2004 15:35 <REP> K-Lite Codec Pack

01/11/2004 18:20 <REP> Lavasoft

13/01/2007 14:23 <REP> LCPA Lite

05/01/2006 11:56 <REP> Ligos

13/11/2004 19:01 <REP> Lionhead Studios Ltd

02/01/2005 11:30 <REP> LucasArts

30/09/2004 12:00 <REP> Maxis

15/10/2004 21:11 <REP> MCK3

17/02/2007 19:10 <REP> MediaKey

04/08/2006 12:15 <REP> Mes Jeux Téléchargés

14/07/2004 17:47 <REP> Messenger

08/02/2005 17:53 <REP> Micro Application

01/10/2004 15:29 <REP> Microsoft Encarta

14/07/2004 17:49 <REP> microsoft frontpage

29/09/2004 14:41 <REP> Microsoft Office

30/01/2007 04:10 <REP> Microsoft Windows Vista Upgrade Advisor

14/07/2004 18:30 <REP> Microsoft Works

17/10/2004 17:42 <REP> Microsoft.NET

14/07/2004 17:48 <REP> Movie Maker

10/10/2004 09:36 <REP> mozilla.org

28/06/2005 14:58 <REP> MpFormat

14/07/2004 17:47 <REP> MSN Gaming Zone

21/12/2004 01:40 <REP> MSN Messenger

20/11/2006 08:27 <REP> MSXML 4.0

14/07/2004 17:48 <REP> NetMeeting

14/07/2004 17:56 <REP> NewTech Infosystems

22/02/2006 09:39 8 nomutil.txt

01/10/2004 10:54 <REP> Norton AntiVirus

05/11/2004 23:29 <REP> NukeNabber

26/01/2005 10:47 <REP> Ontrack

08/02/2007 09:10 <REP> OrangeHSS

14/07/2004 17:48 <REP> Outlook Express

30/10/2004 20:56 <REP> Paint Shop Pro 6

13/01/2007 14:40 <REP> PasToucheXP

30/10/2004 22:24 <REP> PATRICIAN II

12/12/2004 16:48 <REP> Pinnacle

16/05/2006 19:13 <REP> PokerStars

29/08/2005 16:42 <REP> PopCap Games

16/01/2005 01:16 <REP> Primedius

13/09/2006 17:54 <REP> ProcessGuard

30/12/2004 10:32 <REP> QuickTime

01/11/2004 14:43 <REP> Real

14/07/2004 17:55 <REP> Realtek Sound Manager

17/03/2006 22:15 <REP> SAGEM

21/12/2004 12:38 <REP> SBox FreeWare

13/01/2007 14:46 <REP> Screen Watcher

14/07/2004 17:47 <REP> Services en ligne

17/02/2007 19:09 <REP> Sesam.tv

03/04/2006 19:40 <REP> sisagp

21/03/2006 10:55 <REP> Skype

02/11/2004 19:46 <REP> SmartFTP Setup Files

03/10/2004 10:58 <REP> Snapshot Viewer

04/04/2007 16:00 <REP> SPAMfighter

13/11/2004 17:37 <REP> Spybot - Search & Destroy

13/09/2006 18:33 <REP> Steganos AntiSpyware 2006

17/10/2004 15:34 <REP> SuperCopier

11/02/2005 19:40 <REP> SweepSky

30/01/2005 16:17 <REP> TechSmith

06/11/2004 03:08 <REP> The Cleaner

22/02/2006 11:11 558 Thierry.txt

17/10/2004 15:55 <REP> THQ

08/08/2005 15:32 <REP> Ubi Soft

01/02/2006 14:16 <REP> UBISOFT

15/10/2004 22:18 <REP> Ulead Systems

28/06/2005 14:40 <REP> USBDisk

05/02/2006 17:55 <REP> VideoLAN

23/12/2005 17:15 <REP> Wanadoo

17/03/2006 22:18 <REP> Wanadoo Messager

30/10/2004 21:31 <REP> Warcraft III

21/02/2005 19:58 <REP> WASTE

25/11/2006 21:02 <REP> Webteh

27/07/2006 10:30 <REP> Windows Media Connect 2

14/07/2004 17:47 <REP> Windows Media Player

14/07/2004 17:47 <REP> Windows NT

21/02/2007 23:44 <REP> WinLemm

03/11/2004 20:12 <REP> WinRAR

12/04/2005 21:58 <REP> WinZip

14/07/2004 17:49 <REP> xerox

07/11/2004 12:07 <REP> XviD

13/11/2004 17:16 <REP> XVid;-)

22/04/2006 12:21 <REP> YourWare Solutions

24/09/2006 17:21 <REP> Zone Labs

3 fichier(s) 6 451 octets

133 Rép(s) 5 120 917 504 octets libres

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 2B1B-1302

Répertoire de C:\Program Files\fichiers communs

14/07/2004 17:44 <REP> .

14/07/2004 17:44 <REP> ..

14/07/2004 17:44 <REP> Microsoft Shared

14/07/2004 17:44 <REP> SpeechEngines

14/07/2004 17:44 <REP> ODBC

14/07/2004 17:48 <REP> System

14/07/2004 17:48 <REP> MSSoap

14/07/2004 17:48 <REP> Services

14/07/2004 17:55 <REP> InstallShield

14/07/2004 17:56 <REP> Adobe

14/07/2004 17:58 <REP> Java

29/09/2004 14:43 <REP> Designer

01/10/2004 10:54 <REP> Symantec Shared

13/10/2004 19:18 <REP> Caere

08/03/2006 13:55 <REP> xing shared

04/04/2007 16:01 <REP> Application

01/11/2004 14:43 <REP> Real

04/08/2006 12:17 <REP> BOONTY Shared

05/11/2004 23:26 <REP> Wise Installation Wizard

08/02/2005 17:54 <REP> Acronis

11/08/2006 20:37 <REP> MAGIX Shared

04/04/2007 16:02 <REP> Ankiro

08/02/2007 09:09 <REP> France Telecom

24/02/2007 14:53 <REP> Copernic

01/04/2007 13:05 <REP> Blizzard Entertainment

11/08/2005 14:34 <REP> Broderbund

24/01/2006 14:58 278 528 FDEUnInstaller.exe

01/03/2006 12:01 <REP> Ahead

1 fichier(s) 278 528 octets

27 Rép(s) 5 121 933 312 octets libres

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 2B1B-1302

Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders

14/07/2004 17:54 <REP> .

14/07/2004 17:54 <REP> ..

07/03/2001 09:00 127 033 MSOWS40c.DLL

03/06/1999 14:09 122 937 MSOWS409.DLL

18/03/1999 06:37 593 977 RAGENT.DLL

17/10/2004 17:41 <REP> 1036

15/07/2003 06:52 35 896 MSOSV.DLL

17/10/2004 17:42 <REP> 1033

11/07/2003 10:15 1 292 872 MSONSEXT.DLL

11/07/2003 02:25 80 448 PKMWS.DLL

6 fichier(s) 2 253 163 octets

4 Rép(s) 5 121 933 312 octets libres

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 2B1B-1302

Répertoire de C:\

11/11/2001 00:00 68 096 diff.exe

27/08/2006 14:10 103 424 grep.exe

2 fichier(s) 171 520 octets

0 Rép(s) 5 121 933 312 octets libres

c:\Documents and Settings\moi\Local Settings\Temp\unwise.exe

c:\Documents and Settings\moi\Mes documents\bsplayer216.945_clip.exe

c:\Documents and Settings\moi\Mes documents\icraplus.exe

c:\Documents and Settings\moi\Mes documents\jv16pt_setup.exe

c:\Documents and Settings\moi\Mes documents\setup multivir.exe

c:\Documents and Settings\moi\Mes documents\drivers\6-7_xp-2k_dd_ccc_wdm_enu_34826.exe

c:\Documents and Settings\moi\Mes documents\drivers\dotnetfx.exe

c:\Documents and Settings\moi\Mes documents\drivers\dxwebsetup.exe

c:\Documents and Settings\moi\Mes documents\drivers\Install_Messenger.exe

c:\Documents and Settings\moi\Mes documents\drivers\UDA051_build01(Logo51.3_Standard)\setup.exe

c:\Documents and Settings\moi\Mes documents\drivers\UDA051_build01(Logo51.3_Standard)\Driver\WDM\CMIRMDRV.EXE

c:\Documents and Settings\moi\Mes documents\drivers\UDA051_build01(Logo51.3_Standard)\Driver\WDM\SmWizard.exe

c:\Documents and Settings\moi\Mes documents\drivers\UDA051_build01(Logo51.3_Standard)\Driver\Win_98\CMIRMDRV.EXE

c:\Documents and Settings\moi\Mes documents\drivers\UDA051_build01(Logo51.3_Standard)\Driver\Win_98\SmWizard.exe

c:\Documents and Settings\moi\Mes documents\drivers\UDA051_build01(Logo51.3_Standard)\Play3D\CmiPlay3D.exe

c:\Documents and Settings\moi\Mes documents\drivers\agp121\setup.exe

c:\Documents and Settings\moi\Mes documents\drivers\agp121\SISfiles\AMDInst.exe

c:\Documents and Settings\moi\Mes documents\drivers\agp121\SISfiles\ata133ap.exe

c:\Documents and Settings\moi\Mes documents\drivers\agp121\SISfiles\instdrv.exe

c:\Documents and Settings\moi\Mes documents\drivers\agp121\SISfiles\waitwnd.exe

c:\Documents and Settings\moi\Mes documents\drivers\agp121\USB\Win2K_XP\WinXPUSB\SiSUSBrg.exe

c:\Documents and Settings\moi\Mes documents\drivers\agp121\USB\Win9x\SiSFiles\Mp_s3.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\BackgroundDownloader.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\BNUpdate.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\Launcher.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\Repair.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\WoW.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\WoW-1.12.0-frFR-downloader.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\WoW-1.12.0-frFR-patch.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\WoW-1.12.x-to-2.0.1-frFR-patch-downloader.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\WoW-2.0.10.6448-to-2.0.12.6546-frFR-downloader.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\WoW-2.0.10.6448-to-2.0.12.6546-frFR-patch.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\WoW-2.0.3.6299-to-2.0.10.6448-frFR-downloader.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\WoW-2.0.3.6299-to-2.0.10.6448-frFR-patch.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\WoW-2.0.3-frFR-downloader.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\WowError.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\WoW-1.12.x-to-2.0.1-frFR-patch\Updater.exe

c:\Documents and Settings\moi\Mes documents\World of Warcraft\Patches\WoW-2.0.0-to-2.0.3-frFR-Win-patch\BNUpdate.exe

c:\Documents and Settings\moi\Mes documents\divers7pwd.exe

c:\Documents and Settings\moi\Mes documents\divers\a2freesetup.exe

c:\Documents and Settings\moi\Mes documents\divers\aawsepersonal.exe

c:\Documents and Settings\moi\Mes documents\divers\AluriaLiteScannerInstall.exe

c:\Documents and Settings\moi\Mes documents\divers\cleaner41.exe

c:\Documents and Settings\moi\Mes documents\divers\codinstl.exe

c:\Documents and Settings\moi\Mes documents\divers\copernicagentbasicfr.exe

c:\Documents and Settings\moi\Mes documents\divers\cpuz.exe

c:\Documents and Settings\moi\Mes documents\divers\DivX412Bundle+Player.exe

c:\Documents and Settings\moi\Mes documents\divers\DUMeter-Install.exe

c:\Documents and Settings\moi\Mes documents\divers\eMule0.44d-Installer.exe

c:\Documents and Settings\moi\Mes documents\divers\fgf140.exe

c:\Documents and Settings\moi\Mes documents\divers\fgs-3.10g.exe

c:\Documents and Settings\moi\Mes documents\divers\flowprotector2005_demo2.exe

c:\Documents and Settings\moi\Mes documents\divers\INSTALL_MSN_MESSENGER_DL.EXE

c:\Documents and Settings\moi\Mes documents\divers\klcodec227f.exe

c:\Documents and Settings\moi\Mes documents\divers\RealPlayer10-5GOLD_fr.exe

c:\Documents and Settings\moi\Mes documents\divers\Security BOX® Freeware.exe

c:\Documents and Settings\moi\Mes documents\divers\setup.exe

c:\Documents and Settings\moi\Mes documents\divers\setup_MCK3.exe

c:\Documents and Settings\moi\Mes documents\divers\SetupCloneDVD2Slysoft.exe

c:\Documents and Settings\moi\Mes documents\divers\SetupDVDDecrypter_3.5.1.0.exe

c:\Documents and Settings\moi\Mes documents\divers\setupMckFtp.exe

c:\Documents and Settings\moi\Mes documents\divers\SFTPMSI.exe

c:\Documents and Settings\moi\Mes documents\divers\ssfisetup1611_1793400604.exe

c:\Documents and Settings\moi\Mes documents\divers\tauscan.exe

c:\Documents and Settings\moi\Mes documents\divers\vlc-0.8.6b-win32.exe

c:\Documents and Settings\moi\Mes documents\divers\waste-setup-1.5-beta-3-mini-fre.exe

c:\Documents and Settings\moi\Mes documents\divers\zlsSetup_51_033_000.exe

c:\Documents and Settings\moi\Mes documents\divers\zlsSetup_51_039_004.exe

c:\Documents and Settings\moi\Mes documents\divers\disk expert\dx_s_f.exe

c:\Documents and Settings\moi\Mes documents\divers\Photoshop 7 FR by Arsonik\setup\_ISDel.exe

c:\Documents and Settings\moi\Mes documents\divers\Photoshop 7 FR by Arsonik\setup\Setup.exe

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\Setup\instmsia.exe

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\Setup\instmsiw.exe

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\Setup\setup.exe

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\Rescueme\Setup.exe

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\Rescueme\DOSYSTEM\CHKDSK.EXE

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\Rescueme\DOSYSTEM\EMM386.EXE

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\Rescueme\DOSYSTEM\FLOPPY.EXE

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\Rescueme\DOSYSTEM\FLOPPY9x.EXE

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\Rescueme\DOSYSTEM\FLOPPYME.EXE

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\Rescueme\DOSYSTEM\NWCDEX.EXE

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\Rescueme\DOSYSTEM\PTEDIT32.EXE

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\DKeeper\instmsia.exe

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\DKeeper\instmsiw.exe

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\DKeeper\setup.exe

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\BTMagic\Setup\instmsia.exe

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\BTMagic\Setup\instmsiw.exe

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\BTMagic\Setup\setup.exe

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\BTMagic\Rescueme\Setup.exe

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\BTMagic\Rescueme\DOSYSTEM\CHKDSK.EXE

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\BTMagic\Rescueme\DOSYSTEM\EMM386.EXE

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\BTMagic\Rescueme\DOSYSTEM\FLOPPY.EXE

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\BTMagic\Rescueme\DOSYSTEM\FLOPPY9x.EXE

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\BTMagic\Rescueme\DOSYSTEM\FLOPPYME.EXE

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\BTMagic\Rescueme\DOSYSTEM\NWCDEX.EXE

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\BTMagic\Rescueme\DOSYSTEM\PQBOOT.EXE

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\BTMagic\Rescueme\DOSYSTEM\PTEDIT32.EXE

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\BTMagic\Rescueme\DOSYSTEM\restrmbr.exe

c:\Documents and Settings\moi\Mes documents\divers\PArtition Magic 8 fr\BTMagic\Rescueme\DOSYSTEM\WRPROG.EXE

c:\Documents and Settings\moi\Mes documents\divers\Pinnacle Hollywood FX5\Hollywood FX.exe

c:\Documents and Settings\moi\Mes documents\divers\Pinnacle Studio 9\Welcome.exe

c:\Documents and Settings\moi\Mes documents\divers\Pinnacle Studio 9\Tutorial\Tutorial.exe

c:\Documents and Settings\moi\Mes documents\divers\Pinnacle Studio 9\Tools\amcap.exe

c:\Documents and Settings\moi\Mes documents\divers\Pinnacle Studio 9\Tools\PPE114.EXE

c:\Documents and Settings\moi\Mes documents\divers\Pinnacle Studio 9\Setup\setup.exe

c:\Documents and Settings\moi\Mes documents\divers\Pinnacle Studio 9\Pixie5\PixieTool.exe

c:\Documents and Settings\moi\Mes documents\divers\Pinnacle Studio 9\Pixie5\RegisterStudio\LicenseTool.exe

c:\Documents and Settings\moi\Mes documents\divers\Pinnacle Studio 9\HollywoodFX\hfx5studiosilent.exe

c:\Documents and Settings\moi\Mes documents\divers\Pinnacle Studio 9\Driver\PCLEBendPCI.exe

c:\Documents and Settings\moi\Mes documents\divers\Pinnacle Studio 9\Driver\PCLEUSB.exe

c:\Documents and Settings\moi\Mes documents\divers\winzip\winzip90.exe

c:\Documents and Settings\moi\Mes documents\soptiti\bsplayer212.941_clip.exe

c:\Documents and Settings\moi\Mes documents\soptiti\EraserSetup.exe

c:\Documents and Settings\moi\Mes documents\soptiti\free-parental-control.exe

c:\Documents and Settings\moi\Mes documents\soptiti\setup espion.exe

c:\Documents and Settings\moi\Mes documents\soptiti\vlc-0.8.4a-win32.exe

c:\Documents and Settings\moi\Bureau\anti trojan\avgas-setup-7.5.0.50.exe

c:\Documents and Settings\moi\Bureau\anti trojan\avgas-signatures-full-current.exe

c:\Documents and Settings\moi\Bureau\anti trojan\HijackThis.exe

c:\Documents and Settings\moi\Bureau\anti trojan\pgsetup.exe

c:\Documents and Settings\moi\Bureau\anti trojan\sarsfx.exe

c:\Documents and Settings\moi\Bureau\anti trojan\saspy2006int.exe

c:\Documents and Settings\moi\Bureau\anti trojan\SmitfraudFix\dumphive.exe

c:\Documents and Settings\moi\Bureau\anti trojan\SmitfraudFix\GenericRenosFix.exe

c:\Documents and Settings\moi\Bureau\anti trojan\SmitfraudFix\HostsChk.exe

c:\Documents and Settings\moi\Bureau\anti trojan\SmitfraudFix\Process.exe

c:\Documents and Settings\moi\Bureau\anti trojan\SmitfraudFix\Reboot.exe

c:\Documents and Settings\moi\Bureau\anti trojan\SmitfraudFix\restart.exe

c:\Documents and Settings\moi\Bureau\anti trojan\SmitfraudFix\SmiUpdate.exe

c:\Documents and Settings\moi\Bureau\anti trojan\SmitfraudFix\SrchSTS.exe

c:\Documents and Settings\moi\Bureau\anti trojan\SmitfraudFix\swreg.exe

c:\Documents and Settings\moi\Bureau\anti trojan\SmitfraudFix\swsc.exe

c:\Documents and Settings\moi\Bureau\anti trojan\SmitfraudFix\swxcacls.exe

c:\Documents and Settings\moi\Bureau\anti trojan\SmitfraudFix\unzip.exe

c:\Documents and Settings\moi\Bureau\TV\setup-2.0.0.0.exe

c:\Documents and Settings\moi\Bureau\outils disk\pagedfrg.exe

c:\Documents and Settings\moi\Bureau\jeux\pokerth-0.3-win32.exe

c:\Documents and Settings\moi\Bureau\divers\aawsepersonal.exe

c:\Documents and Settings\moi\Bureau\divers\ccsetup132.exe

c:\Documents and Settings\moi\Bureau\divers\eMule0.47a-Installer.exe

c:\Documents and Settings\moi\Bureau\divers\GrabIt153b.exe

c:\Documents and Settings\moi\Bureau\divers\lusetup.exe

c:\Documents and Settings\moi\Bureau\divers\QuickPar-0.9.1.0-FRA.exe

c:\Documents and Settings\moi\Bureau\divers\securitoo_controle_parental_r5.exe

c:\Documents and Settings\moi\Bureau\divers\setupavast.exe

c:\Documents and Settings\moi\Bureau\divers\SkypeSetup.exe

c:\Documents and Settings\moi\Bureau\divers\spamfighter.exe

c:\Documents and Settings\moi\Bureau\divers\spybotsd14.exe

c:\Documents and Settings\moi\Bureau\divers\TCPOptimizer.exe

c:\Documents and Settings\moi\Bureau\divers\WM9Codecs.exe

c:\Documents and Settings\moi\Bureau\divers\zone alarm.exe

c:\Documents and Settings\moi\Bureau\divers\FORMATAGE MPFUB26 b\mpformat.exe

c:\Documents and Settings\moi\Bureau\divers\FORMATAGE MPFUB26 b\setup.exe

c:\Documents and Settings\moi\Bureau\divers\clins d'oeil et image perso animées [zozobis] testé OK\install.exe

c:\Documents and Settings\moi\Bureau\divers\anonyme\Anonymizer_Software_Setup.exe

c:\Documents and Settings\moi\Bureau\divers\anonyme\ipanonymizer.exe

c:\Documents and Settings\moi\Bureau\divers\Roxio 24 (D)\Start_Pc.exe

c:\Documents and Settings\moi\Bureau\divers\Roxio 24 (D)\XTRAS\ACTIVEX\REDIST\APRXDIST.EXE

c:\Documents and Settings\moi\Bureau\divers\Roxio 24 (D)\XTRAS\ACTIVEX\REDIST\AXDIST.EXE

c:\Documents and Settings\moi\Bureau\divers\Roxio 24 (D)\XTRAS\ACTIVEX\REDIST\WINTDIST.EXE

c:\Documents and Settings\moi\Bureau\divers\SmitfraudFix\Process.exe

c:\Documents and Settings\moi\Bureau\divers\SmitfraudFix\Reboot.exe

c:\Documents and Settings\moi\Bureau\divers\SmitfraudFix\SrchSTS.exe

c:\Documents and Settings\moi\Bureau\divers\SmitfraudFix\swreg.exe

c:\Documents and Settings\moi\Bureau\divers\SmitfraudFix\swsc.exe

c:\Documents and Settings\moi\Bureau\DiagHelp\catchme.exe

c:\Documents and Settings\moi\Bureau\DiagHelp\diff.exe

c:\Documents and Settings\moi\Bureau\DiagHelp\dumphive.exe

c:\Documents and Settings\moi\Bureau\DiagHelp\FilesInfoCmd.exe

c:\Documents and Settings\moi\Bureau\DiagHelp\Fport.exe

c:\Documents and Settings\moi\Bureau\DiagHelp\grep.exe

c:\Documents and Settings\moi\Bureau\DiagHelp\LFiles.exe

c:\Documents and Settings\moi\Bureau\DiagHelp\LISTDLLS.exe

c:\Documents and Settings\moi\Bureau\DiagHelp\pslist.exe

c:\Documents and Settings\moi\Bureau\DiagHelp\streams.exe

c:\Documents and Settings\moi\Bureau\DiagHelp\swreg.exe

c:\Documents and Settings\moi\Bureau\video-music\NERO 6.0.0.19\nbr60019fra.exe

c:\Documents and Settings\moi\Bureau\video-music\NERO 6.0.0.19\nero60019.exe

c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll

c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll

c:\Documents and Settings\All Users\Application Data\Grisoft\Avg7Data\avg7upd\backup\avgcore.dll

c:\Documents and Settings\moi\Application Data\Adobe\Acrobat\Whapi\WHA Library.dll

c:\Documents and Settings\moi\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll

soptiti · le 29 avril 2007

...et le rapport de l'antivirus en ligne, sommes toutes très chargé

Incident Status Location

Virus:Trj/Agent.CDG Disinfected C:\WINDOWS\SYSTEM32\THX32.ACM

Virus:Trj/Agent.CDG Disinfected C:\WINDOWS\SYSTEM32\DVAUDIO.DRV

Adware:Adware/SaveNow Not disinfected C:\Documents and Settings\MOI\Mes documents\bsplayer216.945_clip.exe[bSplayer_WhenUSave_InstallerInst.exe]

Adware:Adware/SaveNow Not disinfected C:\Documents and Settings\MOI\Mes documents\SOPTITI\bsplayer212.941_clip.exe[bSplayer_WhenUSave_InstallerInst.exe]

Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\MOI\Bureau\anti trojan\SmitfraudFix.zip[smitfraudFix/Process.exe]

Virus:Trj/Shutdown.Z Disinfected C:\Documents and Settings\MOI\Bureau\anti trojan\SmitfraudFix.zip[smitfraudFix/restart.exe]

Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\MOI\Bureau\anti trojan\SmitfraudFix\Process.exe

Virus:Trj/Shutdown.Z Disinfected C:\Documents and Settings\MOI\Bureau\anti trojan\SmitfraudFix\RESTART.EXE

Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\MOI\Bureau\DIVERS\SmitfraudFix\Process.exe

Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\MOI\Bureau\DIVERS\SmitfraudFix.zip[smitfraudFix/Process.exe]

Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\MOI\Cookies\moi@xiti[1].txt

Malekal_morte · le 29 avril 2007

Yop,

Ne pas tenir compte de ceci :

Recherche de rootkit! (Merci S!Ri)
C:\WINDOWS\System32\ip6fw.sys présent! Possible infection Spy-Agent.bv.dldr/Win32/Cutwail.M

soptiti · le 29 avril 2007

merci de ta réponse malekal mais j'ai pas tout compris.... lool !!

Tu peux traduire stp ? ou autrement dit, dois-je agir sur la ligne que tu désignes ?

Malekal_morte · le 29 avril 2007

Tu fais et attends charles ingals

En fait, c'était plus destiné à charles ingals !

Connexion

Pas encore inscrit ?

un trojan clicker m'empoisonne

Messages recommandés

soptiti

soptiti

soptiti

Thanos

soptiti

soptiti

soptiti

Malekal_morte

soptiti

Malekal_morte

Rejoindre la conversation

En ligne récemment 0 membre est en ligne

Zebulon

Outils en ligne

Naviguer