Aller au contenu
  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

[Resolu] trojan-downloader.win32.bagle.at; mode sans echec impossible


Messages recommandés

Bonjour à tous, :P j'ai un pb de virus trojan-downloader.win32.bagle.at ainsi que 23 autres virus selon ESET scan en ligne de nod32;

je post depuis un portable partageant le connexion en wifi avec le PC infecté. les autres bagle sont rentrés car avast s'est fait zigouillé :P #)

j'ai voulu installer avir et highjack this mais je n'arrive pas demarrer en mode sans echec. bref, c'est :P:P:P

Modifié par kalchrof
Lien vers le commentaire
Partager sur d’autres sites

Bonsoir kalchrof :P

 

Messages: 1
Bienvenue sur les forums de Zebulon.

 

Quelques liens pour t'aider à commencer :

 

On va voir ensemble ce qui se passe sur ton PC ; comme tous les intervenants ici, nous aidons bénévolement en fonction de nos activités personnelles. On va essayer d'aller au plus vite, mais il faudra peut-être parfois être patient pour attendre une réponse, pas d'affolement.

 

Tu ne dois pas ignorer, je pense, que Bagle s'attrape pincipalement via des cracks... J'espère que cela te servira de leçon. On va voir ce que l'on peut faire, et on va d'abord regarder à qui on a à faire en plus de Bagle.

 

Télécharge random's system information tool (RSIT) par random/random et sauvegarde-le sur le Bureau.

  • Double-clique sur RSIT.exe afin de lancer RSIT.
  • Clique Continue à l'écran Disclaimer.
  • Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (<<qui sera affiché)
    ainsi que de info.txt (<<qui sera réduit dans la Barre des Tâches).

Lien vers le commentaire
Partager sur d’autres sites

merci Gof de me repondre si vite; je ne peux pas en dire autant de mon PC qui rame. l'ecran disclaimer de RSIT ne reste que 2 secondes à l'ecran et même si je clique sur continue il ne se passe rien. promis juré, les crack c fini :P

Lien vers le commentaire
Partager sur d’autres sites

Bon.

 

=> Télécharge Combofix depuis l'un des liens ci-dessous. Tu dois le renommer avant de l'enregistrer. Enregistre-le sur ton Bureau.

 

Lien 1

Lien 2

Lien 3

 

CF_download_FF.gif

 

 

CF_download_rename.gif

--------------------------------------------------------------------

 

Fais un double clic sur Combo-Fix.exe & suis les invites.

  • Lorsque l'outil aura terminé, il t'affichera un rapport.
  • Envoie le contenu de C:\ComboFix.txt ainsi qu'un rapport RSIT pour que l'on puisse poursuivre.

 

Je te reprends demain. A bientôt.

Lien vers le commentaire
Partager sur d’autres sites

Bonjour Gof, désolé du delais mais Combo-Fix n'a pas voulu démarré du 1er coup et jai patienté , puis au 3e essai j'ai eu un message win 32 pis finalement l'invite et l'analyse jointe ainsi que l'analyse RSIT . encore merci de me consacrer du temps :P

je te joins egalemnent la dernière analyse de ESET on line scanner de Nod32, analyse que j'ai interrompu au bout de 3 jours de PC qui rame

 

# version=4

# OnlineScanner.ocx=1.0.0.635

# OnlineScannerDLLA.dll=1, 0, 0, 79

# OnlineScannerDLLW.dll=1, 0, 0, 78

# OnlineScannerUninstaller.exe=1, 0, 0, 49

# vers_standard_module=3929 (20090311)

# vers_arch_module=1.064 (20080214)

# vers_adv_heur_module=1.066 (20070917)

# EOSSerial=7f40966d3f376641b36829d3b4fa9873

# end=stopped

# remove_checked=true

# unwanted_checked=true

# utc_time=2009-03-16 08:57:22

# local_time=2009-03-16 09:57:22 (+0100, Paris, Madrid)

# country="France"

# osver=5.1.2600 NT Service Pack 3

# scanned=818491

# found=23

# scan_time=53187

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\4WM6N236\b64[1].jpg a variant of Win32/TrojanDownloader.Bagle trojan (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\4WM6N236\b64[2].jpg Win32/Bagle.PF worm (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\4WM6N236\b64[3].jpg Win32/TrojanDownloader.Bagle.NBG trojan (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\4WM6N236\b64_3[1].jpg Win32/Bagle.QI worm (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\4WM6N236\b64_6[1].jpg Win32/TrojanDownloader.Small.OLG trojan (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64[1].jpg Win32/TrojanDownloader.Bagle.NBG trojan (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64[2].jpg Win32/Bagle.QP worm (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64[3].jpg a variant of Win32/TrojanDownloader.Bagle trojan (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64[4].jpg a variant of Win32/TrojanDownloader.Bagle trojan (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64[5].jpg Win32/TrojanDownloader.Bagle.NBG trojan (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64_2[1].jpg Win32/Bagle.OD worm (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64_3[1].jpg Win32/Bagle.QI worm (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64_6[1].jpg Win32/TrojanDownloader.Small.OLG trojan (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\O4JO7PWQ\b64[1].jpg a variant of Win32/TrojanDownloader.Bagle trojan (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\O4JO7PWQ\b64[2].jpg a variant of Win32/TrojanDownloader.Bagle trojan (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\O4JO7PWQ\b64_2[1].jpg Win32/Bagle.QM worm (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\O4JO7PWQ\b64_6[1].jpg Win32/TrojanDownloader.Small.OLG trojan (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\O4JO7PWQ\b64_6[2].jpg Win32/TrojanDownloader.Small.OLG trojan (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\VC2PB1P9\b64[1].jpg Win32/Bagle.QP worm (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\VC2PB1P9\b64[2].jpg a variant of Win32/TrojanDownloader.Bagle trojan (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\VC2PB1P9\b64_2[1].jpg Win32/Bagle.OD worm (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\VC2PB1P9\b64_2[2].jpg Win32/Bagle.QM worm (unable to clean - deleted) 00000000000000000000000000000000

C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\VC2PB1P9\b64_3[1].jpg Win32/Bagle.QI worm (unable to clean - deleted) 00000000000000000000000000000000

 

 

 

 

 

 

 

 

 

 

 

ComboFix 09-03-15.01 - christophe.SN1006475 2009-03-18 5:48:38.1 - NTFSx86

Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.1023.678 [GMT 1:00]

Lancé depuis: c:\documents and settings\christophe.SN1006475\Bureau\Combo-Fix.exe

.

 

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))

.

 

c:\documents and settings\christophe.SN1006475\Application Data\m

c:\documents and settings\christophe.SN1006475\Application Data\m\data.oct

c:\documents and settings\christophe.SN1006475\Application Data\m\flec006.exe

c:\documents and settings\christophe.SN1006475\Application Data\m\list.oct

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\3D Shamrock Fairy 3.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\6 in 1 FLV Downloader 1.00.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Aimersoft Pocket PC Converter Suite 1.1.64.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\All-In Hold 'Em 1.5.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\AnVir Virus Destroyer 3.7.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\AnyBase Converter 1.0.2.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Aspose.Slides for .NET 2.9.0.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Atom Time Synchronizer 3.9 (Crack).zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Authentication Image 1.2 Build 20070303.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\AutoTable for MicroStation Excel 3.33.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\AVG.Anti-Virus.Professional.Edition.7.5.433.Build.904.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Avg.Antivirus.Professional.v7.1.371a669.Multilanguage.Keygen.Full.Zongo.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\AVOne Gold Converter 4.15.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\BanishCD 1.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Battlefield 1942 - Killer Commando beta mod.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Best of Hawaii 2 1.1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Blast Radius 1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Chat Interface for Operator 1.4 [Key+Serial].zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Christmas Adventure Screensaver 1.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\clipShow Beta 1.0.0706.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Comma Separated Values File Tester 1.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Crime Cities demo.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Cross 3.03.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\CS-RCS Basic 5.1 Build 285.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Desert Combat (Battlefield 1942) - Hopeless map.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Deskloops 1.3.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\DevGuru WML Quick Reference Guide 1.2.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Dictionary English - Portuguese 1.8.33.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Digital Image Tool 1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Dragon Island Nokia 6280.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\eLineStudio Site Composer CMS 2.6.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Enclave gameclips 4 (low - MOV).zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Enterprise Mail Server 3.03.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Event Minder 1.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Expletive Deleted 1.1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\EZ MP4 iPod Converter 1.0 Key.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\FileZilla Password Recovery 1.0.150.2006.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\G-Lock Email Processor 1.98.700 [Cracked].zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Gantt Chart for Workgroup 1.6.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\GoldfishHD PSP Video Converter 2.02 (Key).zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Gui4fmpeg 3.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\HexDump32 1.0.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Home Daycare Plus 1.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\ID Disk Creator 1.2.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\iDVDsoft iPod 3GP PSP MP4 Converter 1.01 [Crack].zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Image2PDF(PDF E-Book Maker) 3.2.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\ImTOO DVD Copy Express 1.1.21.0727 [Cracked].zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Internet Website.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\IP Appmon 4.5.13.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\iYas.com's Multi Clipboard 1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Jammin' Racer 1.3.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\JavaScript Horizontal Image Slider Ex 1.3.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Judy's TenKey 4.5.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\KeepSafe 1.1 (Cracked).zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\LanMail 2.1.1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\LiteServe 2.81.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Lockdown Plus PC 4.0.372.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Look Around Celtic Ireland Screensaver 1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Map Suite - Winforms Edition 0.95 (Key).zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MB Free Personal Aspects Number 1.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MB5-554 Practice Exam Testing Engine Software 1.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\McAfee SiteAdvisor for Internet Explorer 2.8.0.292.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Media Machine 1.0 [Crack].zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Microsas DuzenleXP 1.0.0.1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Microsoft InkSeine 1.1.222.0 Beta.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MM3-ProxySwitch 2007.20.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Mobile File Manager (Patch).zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MonitorWare Console 3.0.2470.25794 With Crack.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MoreAmp 0.1.22.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Movie Converter 1.41 (Key).zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MoviePlay 4.76.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MSC Wave Killer 2.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MuchFX2 Winamp Plug-in 0.99 (Crack).zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\My World Time 1.3.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\myFMbutler SHoebox SDK for Lasso 3.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\NewLive Mpeg to AVI DIVX VCD DVD Converter 3.5 Cracked.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\NOD32-2.70.23-standard.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Offline Email Extractor 2.0 (Crack).zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\OtsTurntables Free 1.00.012.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Password Power 2.1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\PDF2Tiff DLL for VB 1.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Photos of Motor Trend - Small 2.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Photovista Virtual Tour 3.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\PictureRiver 1.6.2.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\PMPro Mobile Phone Video Converter 2.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Poly Pro 1.11.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Popup Video! 1.1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Post It Note Genie 2.1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\PressKey 1.0 [Key].zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Prestwood Ping Server 1.21.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Proggybar 1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Psychonauts demo v1.01 patch.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\QuickFI 1.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Qwizdom Interact 1.2.2.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Registry Repair 3.01.17.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Sacred Egyptian Cobra 3D Screensaver 1.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\SamLogic CD-Menu Creator 6.0.3.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\SDR Audio Convertor 1.0 [Key+Serial].zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Security Task Manager 1.7e.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Serai Puzzle 1.36.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\SI Lookup 1.0 Pre-Beta 1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\SiSky Enterprise Edition 2.2.0.1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Smarty Uninstaller 2008 Pro 2.0.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Spark 2.5.3.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\SpeedingHound 3.1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\SplitMe 1.1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Springboard 0.88 Build 1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\StormChaser 1.1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Student's Guide to MLA Style 1.1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Swiftpage for Peachtree 1.7.9.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\The New English-German Dictionary 3.8.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Time Watcher 2.1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Timecard 2.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Tinysoar iPhone Video Converter 1.6.2.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\tinySpell 1.4 build 1.4.011.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Tunafish VST Sequencer 1.8.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\TurboSplit 1.2 [Key].zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\uCertify Collection for test 70-210 .zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Unreal Tournament 2004 Ego2004 map.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\User Manager 1.0 (KeyGen).zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\WebGrid - The plug and play datagrid 1.9 (Patch).zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\WinOnTop 2.0.01.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Winterscapes 2.0.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Workspace Macro 4.6.1.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\XFile 2.012 Cracked.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\YASA WMV Video Converter 4.3.87.1826 Key+Serial.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\shared\ZylBattery 1.20 Crack.zip

c:\documents and settings\christophe.SN1006475\Application Data\m\srvlist.oct

c:\program files\\setup.exe

c:\program files\Internet Explorer\fxavx.ini

c:\windows\system32\ban_list.txt

c:\windows\system32\drivers\down

c:\windows\system32\drivers\downld

c:\windows\system32\drivers\downld\1003718.exe

c:\windows\system32\drivers\downld\102910328.exe

c:\windows\system32\drivers\downld\102919562.exe

c:\windows\system32\drivers\downld\102943656.exe

c:\windows\system32\drivers\downld\102977187.exe

c:\windows\system32\drivers\downld\103005640.exe

c:\windows\system32\drivers\downld\103070828.exe

c:\windows\system32\drivers\downld\103100484.exe

c:\windows\system32\drivers\downld\103113062.exe

c:\windows\system32\drivers\downld\103155640.exe

c:\windows\system32\drivers\downld\103166109.exe

c:\windows\system32\drivers\downld\103181796.exe

c:\windows\system32\drivers\downld\103608312.exe

c:\windows\system32\drivers\downld\103631296.exe

c:\windows\system32\drivers\downld\103664328.exe

c:\windows\system32\drivers\downld\103726312.exe

c:\windows\system32\drivers\downld\103736265.exe

c:\windows\system32\drivers\downld\103767765.exe

c:\windows\system32\drivers\downld\103781640.exe

c:\windows\system32\drivers\downld\103830812.exe

c:\windows\system32\drivers\downld\103843890.exe

c:\windows\system32\drivers\downld\103854437.exe

c:\windows\system32\drivers\downld\1108203.exe

c:\windows\system32\drivers\downld\118277515.exe

c:\windows\system32\drivers\downld\118291125.exe

c:\windows\system32\drivers\downld\118319843.exe

c:\windows\system32\drivers\downld\118387796.exe

c:\windows\system32\drivers\downld\118411890.exe

c:\windows\system32\drivers\downld\118420312.exe

c:\windows\system32\drivers\downld\118460328.exe

c:\windows\system32\drivers\downld\118477328.exe

c:\windows\system32\drivers\downld\118489703.exe

c:\windows\system32\drivers\downld\1198343.exe

c:\windows\system32\drivers\downld\1246953.exe

c:\windows\system32\drivers\downld\1247750.exe

c:\windows\system32\drivers\downld\1261734.exe

c:\windows\system32\drivers\downld\1289671.exe

c:\windows\system32\drivers\downld\1322203.exe

c:\windows\system32\drivers\downld\132910343.exe

c:\windows\system32\drivers\downld\132934765.exe

c:\windows\system32\drivers\downld\132970343.exe

c:\windows\system32\drivers\downld\133035343.exe

c:\windows\system32\drivers\downld\133053250.exe

c:\windows\system32\drivers\downld\133074781.exe

c:\windows\system32\drivers\downld\133084781.exe

c:\windows\system32\drivers\downld\133125281.exe

c:\windows\system32\drivers\downld\133142640.exe

c:\windows\system32\drivers\downld\133154843.exe

c:\windows\system32\drivers\downld\1383203.exe

c:\windows\system32\drivers\downld\1413265.exe

c:\windows\system32\drivers\downld\1416187.exe

c:\windows\system32\drivers\downld\1433500.exe

c:\windows\system32\drivers\downld\1439578.exe

c:\windows\system32\drivers\downld\147586203.exe

c:\windows\system32\drivers\downld\147604500.exe

c:\windows\system32\drivers\downld\147645921.exe

c:\windows\system32\drivers\downld\147654046.exe

c:\windows\system32\drivers\downld\147665687.exe

c:\windows\system32\drivers\downld\147685906.exe

c:\windows\system32\drivers\downld\147693578.exe

c:\windows\system32\drivers\downld\147730250.exe

c:\windows\system32\drivers\downld\147744078.exe

c:\windows\system32\drivers\downld\147753609.exe

c:\windows\system32\drivers\downld\15053859.exe

c:\windows\system32\drivers\downld\1508156.exe

c:\windows\system32\drivers\downld\15087796.exe

c:\windows\system32\drivers\downld\15088515.exe

c:\windows\system32\drivers\downld\15104437.exe

c:\windows\system32\drivers\downld\15105421.exe

c:\windows\system32\drivers\downld\15122390.exe

c:\windows\system32\drivers\downld\15134359.exe

c:\windows\system32\drivers\downld\15139171.exe

c:\windows\system32\drivers\downld\15145390.exe

c:\windows\system32\drivers\downld\15161218.exe

c:\windows\system32\drivers\downld\15161281.exe

c:\windows\system32\drivers\downld\1518593.exe

c:\windows\system32\drivers\downld\1518625.exe

c:\windows\system32\drivers\downld\15195734.exe

c:\windows\system32\drivers\downld\15201000.exe

c:\windows\system32\drivers\downld\15204921.exe

c:\windows\system32\drivers\downld\15206359.exe

c:\windows\system32\drivers\downld\15206921.exe

c:\windows\system32\drivers\downld\15222328.exe

c:\windows\system32\drivers\downld\15222859.exe

c:\windows\system32\drivers\downld\15245734.exe

c:\windows\system32\drivers\downld\15256218.exe

c:\windows\system32\drivers\downld\15273578.exe

c:\windows\system32\drivers\downld\15281343.exe

c:\windows\system32\drivers\downld\15288109.exe

c:\windows\system32\drivers\downld\15296718.exe

c:\windows\system32\drivers\downld\15298687.exe

c:\windows\system32\drivers\downld\15301796.exe

c:\windows\system32\drivers\downld\15314140.exe

c:\windows\system32\drivers\downld\15324765.exe

c:\windows\system32\drivers\downld\15332265.exe

c:\windows\system32\drivers\downld\15354796.exe

c:\windows\system32\drivers\downld\15368828.exe

c:\windows\system32\drivers\downld\15478296.exe

c:\windows\system32\drivers\downld\1559265.exe

c:\windows\system32\drivers\downld\15657328.exe

c:\windows\system32\drivers\downld\1569781.exe

c:\windows\system32\drivers\downld\1573328.exe

c:\windows\system32\drivers\downld\1583156.exe

c:\windows\system32\drivers\downld\1588968.exe

c:\windows\system32\drivers\downld\15900765.exe

c:\windows\system32\drivers\downld\15923984.exe

c:\windows\system32\drivers\downld\16056359.exe

c:\windows\system32\drivers\downld\16097406.exe

c:\windows\system32\drivers\downld\162173296.exe

c:\windows\system32\drivers\downld\162211078.exe

c:\windows\system32\drivers\downld\16249093.exe

c:\windows\system32\drivers\downld\162548593.exe

c:\windows\system32\drivers\downld\162558093.exe

c:\windows\system32\drivers\downld\162596625.exe

c:\windows\system32\drivers\downld\162619906.exe

c:\windows\system32\drivers\downld\162631718.exe

c:\windows\system32\drivers\downld\16273515.exe

c:\windows\system32\drivers\downld\16321421.exe

c:\windows\system32\drivers\downld\16364921.exe

c:\windows\system32\drivers\downld\16407609.exe

c:\windows\system32\drivers\downld\177083796.exe

c:\windows\system32\drivers\downld\177115359.exe

c:\windows\system32\drivers\downld\177135937.exe

c:\windows\system32\drivers\downld\177140546.exe

c:\windows\system32\drivers\downld\177177656.exe

c:\windows\system32\drivers\downld\177179359.exe

c:\windows\system32\drivers\downld\177193906.exe

c:\windows\system32\drivers\downld\177205953.exe

c:\windows\system32\drivers\downld\191644250.exe

c:\windows\system32\drivers\downld\191660765.exe

c:\windows\system32\drivers\downld\191716250.exe

c:\windows\system32\drivers\downld\191758343.exe

c:\windows\system32\drivers\downld\191781453.exe

c:\windows\system32\drivers\downld\191789703.exe

c:\windows\system32\drivers\downld\191828062.exe

c:\windows\system32\drivers\downld\191833421.exe

c:\windows\system32\drivers\downld\191847875.exe

c:\windows\system32\drivers\downld\191863140.exe

c:\windows\system32\drivers\downld\1946734.exe

c:\windows\system32\drivers\downld\1950578.exe

c:\windows\system32\drivers\downld\1956750.exe

c:\windows\system32\drivers\downld\1962593.exe

c:\windows\system32\drivers\downld\1976546.exe

c:\windows\system32\drivers\downld\206371734.exe

c:\windows\system32\drivers\downld\206390625.exe

c:\windows\system32\drivers\downld\206433390.exe

c:\windows\system32\drivers\downld\206456718.exe

c:\windows\system32\drivers\downld\206468828.exe

c:\windows\system32\drivers\downld\206510578.exe

c:\windows\system32\drivers\downld\206512328.exe

c:\windows\system32\drivers\downld\206550437.exe

c:\windows\system32\drivers\downld\206561468.exe

c:\windows\system32\drivers\downld\221065812.exe

c:\windows\system32\drivers\downld\221078703.exe

c:\windows\system32\drivers\downld\221123468.exe

c:\windows\system32\drivers\downld\221137093.exe

c:\windows\system32\drivers\downld\221183453.exe

c:\windows\system32\drivers\downld\221193765.exe

c:\windows\system32\drivers\downld\221238265.exe

c:\windows\system32\drivers\downld\221252484.exe

c:\windows\system32\drivers\downld\221264015.exe

c:\windows\system32\drivers\downld\235762687.exe

c:\windows\system32\drivers\downld\235791421.exe

c:\windows\system32\drivers\downld\235836125.exe

c:\windows\system32\drivers\downld\235869062.exe

c:\windows\system32\drivers\downld\235881984.exe

c:\windows\system32\drivers\downld\235925703.exe

c:\windows\system32\drivers\downld\235940609.exe

c:\windows\system32\drivers\downld\235950953.exe

c:\windows\system32\drivers\downld\23732062.exe

c:\windows\system32\drivers\downld\23733718.exe

c:\windows\system32\drivers\downld\23735906.exe

c:\windows\system32\drivers\downld\23737796.exe

c:\windows\system32\drivers\downld\23739718.exe

c:\windows\system32\drivers\downld\23741968.exe

c:\windows\system32\drivers\downld\23743093.exe

c:\windows\system32\drivers\downld\23744500.exe

c:\windows\system32\drivers\downld\23746500.exe

c:\windows\system32\drivers\downld\23747390.exe

c:\windows\system32\drivers\downld\23748812.exe

c:\windows\system32\drivers\downld\23750875.exe

c:\windows\system32\drivers\downld\23752765.exe

c:\windows\system32\drivers\downld\23753875.exe

c:\windows\system32\drivers\downld\23755921.exe

c:\windows\system32\drivers\downld\23758781.exe

c:\windows\system32\drivers\downld\23761718.exe

c:\windows\system32\drivers\downld\23763593.exe

c:\windows\system32\drivers\downld\23763859.exe

c:\windows\system32\drivers\downld\23765828.exe

c:\windows\system32\drivers\downld\23766687.exe

c:\windows\system32\drivers\downld\23768203.exe

c:\windows\system32\drivers\downld\23770015.exe

c:\windows\system32\drivers\downld\23772093.exe

c:\windows\system32\drivers\downld\23774265.exe

c:\windows\system32\drivers\downld\23775296.exe

c:\windows\system32\drivers\downld\23777484.exe

c:\windows\system32\drivers\downld\23778968.exe

c:\windows\system32\drivers\downld\23781078.exe

c:\windows\system32\drivers\downld\23783984.exe

c:\windows\system32\drivers\downld\23786093.exe

c:\windows\system32\drivers\downld\23787546.exe

c:\windows\system32\drivers\downld\23789718.exe

c:\windows\system32\drivers\downld\23792281.exe

c:\windows\system32\drivers\downld\23794781.exe

c:\windows\system32\drivers\downld\23799875.exe

c:\windows\system32\drivers\downld\23801906.exe

c:\windows\system32\drivers\downld\23804812.exe

c:\windows\system32\drivers\downld\23807171.exe

c:\windows\system32\drivers\downld\23809828.exe

c:\windows\system32\drivers\downld\23811937.exe

c:\windows\system32\drivers\downld\23813515.exe

c:\windows\system32\drivers\downld\23816343.exe

c:\windows\system32\drivers\downld\23818484.exe

c:\windows\system32\drivers\downld\23819921.exe

c:\windows\system32\drivers\downld\23822093.exe

c:\windows\system32\drivers\downld\23824109.exe

c:\windows\system32\drivers\downld\23824906.exe

c:\windows\system32\drivers\downld\23826406.exe

c:\windows\system32\drivers\downld\23828578.exe

c:\windows\system32\drivers\downld\23830671.exe

c:\windows\system32\drivers\downld\23834953.exe

c:\windows\system32\drivers\downld\23837125.exe

c:\windows\system32\drivers\downld\23840437.exe

c:\windows\system32\drivers\downld\23841437.exe

c:\windows\system32\drivers\downld\23843500.exe

c:\windows\system32\drivers\downld\23844296.exe

c:\windows\system32\drivers\downld\23846390.exe

c:\windows\system32\drivers\downld\23848578.exe

c:\windows\system32\drivers\downld\23850000.exe

c:\windows\system32\drivers\downld\23852218.exe

c:\windows\system32\drivers\downld\23854187.exe

c:\windows\system32\drivers\downld\23856062.exe

c:\windows\system32\drivers\downld\23878375.exe

c:\windows\system32\drivers\downld\23880609.exe

c:\windows\system32\drivers\downld\23882046.exe

c:\windows\system32\drivers\downld\23884218.exe

c:\windows\system32\drivers\downld\23886234.exe

c:\windows\system32\drivers\downld\23888000.exe

c:\windows\system32\drivers\downld\23889281.exe

c:\windows\system32\drivers\downld\23890625.exe

c:\windows\system32\drivers\downld\23892796.exe

c:\windows\system32\drivers\downld\23894984.exe

c:\windows\system32\drivers\downld\23896875.exe

c:\windows\system32\drivers\downld\23898843.exe

c:\windows\system32\drivers\downld\23901671.exe

c:\windows\system32\drivers\downld\23904250.exe

c:\windows\system32\drivers\downld\23905703.exe

c:\windows\system32\drivers\downld\23907828.exe

c:\windows\system32\drivers\downld\23910015.exe

c:\windows\system32\drivers\downld\23912218.exe

c:\windows\system32\drivers\downld\23914234.exe

c:\windows\system32\drivers\downld\2391484.exe

c:\windows\system32\drivers\downld\2393515.exe

c:\windows\system32\drivers\downld\23936328.exe

c:\windows\system32\drivers\downld\23938421.exe

c:\windows\system32\drivers\downld\23939859.exe

c:\windows\system32\drivers\downld\23941796.exe

c:\windows\system32\drivers\downld\2394187.exe

c:\windows\system32\drivers\downld\23943875.exe

c:\windows\system32\drivers\downld\2394531.exe

c:\windows\system32\drivers\downld\23946328.exe

c:\windows\system32\drivers\downld\2394750.exe

c:\windows\system32\drivers\downld\23948437.exe

c:\windows\system32\drivers\downld\2394953.exe

c:\windows\system32\drivers\downld\23950656.exe

c:\windows\system32\drivers\downld\23952812.exe

c:\windows\system32\drivers\downld\23954906.exe

c:\windows\system32\drivers\downld\23957093.exe

c:\windows\system32\drivers\downld\23959703.exe

c:\windows\system32\drivers\downld\2396000.exe

c:\windows\system32\drivers\downld\23961359.exe

c:\windows\system32\drivers\downld\23963296.exe

c:\windows\system32\drivers\downld\23964312.exe

c:\windows\system32\drivers\downld\23965671.exe

c:\windows\system32\drivers\downld\23967656.exe

c:\windows\system32\drivers\downld\23968578.exe

c:\windows\system32\drivers\downld\2396953.exe

c:\windows\system32\drivers\downld\23969968.exe

c:\windows\system32\drivers\downld\23972203.exe

c:\windows\system32\drivers\downld\23974281.exe

c:\windows\system32\drivers\downld\23976187.exe

c:\windows\system32\drivers\downld\23978171.exe

c:\windows\system32\drivers\downld\23978640.exe

c:\windows\system32\drivers\downld\23980750.exe

c:\windows\system32\drivers\downld\23982578.exe

c:\windows\system32\drivers\downld\23983640.exe

c:\windows\system32\drivers\downld\2398578.exe

c:\windows\system32\drivers\downld\23985906.exe

c:\windows\system32\drivers\downld\23987218.exe

c:\windows\system32\drivers\downld\23989296.exe

c:\windows\system32\drivers\downld\23990109.exe

c:\windows\system32\drivers\downld\23991546.exe

c:\windows\system32\drivers\downld\23993703.exe

c:\windows\system32\drivers\downld\23995875.exe

c:\windows\system32\drivers\downld\23998000.exe

c:\windows\system32\drivers\downld\24000187.exe

c:\windows\system32\drivers\downld\2400859.exe

c:\windows\system32\drivers\downld\2403140.exe

c:\windows\system32\drivers\downld\2406156.exe

c:\windows\system32\drivers\downld\2408203.exe

c:\windows\system32\drivers\downld\2410375.exe

c:\windows\system32\drivers\downld\2414062.exe

c:\windows\system32\drivers\downld\2416531.exe

c:\windows\system32\drivers\downld\2418781.exe

c:\windows\system32\drivers\downld\2421609.exe

c:\windows\system32\drivers\downld\2424468.exe

c:\windows\system32\drivers\downld\2428015.exe

c:\windows\system32\drivers\downld\2430671.exe

c:\windows\system32\drivers\downld\2432453.exe

c:\windows\system32\drivers\downld\2434671.exe

c:\windows\system32\drivers\downld\2437343.exe

c:\windows\system32\drivers\downld\2439093.exe

c:\windows\system32\drivers\downld\2441765.exe

c:\windows\system32\drivers\downld\2444234.exe

c:\windows\system32\drivers\downld\2446390.exe

c:\windows\system32\drivers\downld\2448796.exe

c:\windows\system32\drivers\downld\2450968.exe

c:\windows\system32\drivers\downld\2453203.exe

c:\windows\system32\drivers\downld\2455437.exe

c:\windows\system32\drivers\downld\2457609.exe

c:\windows\system32\drivers\downld\2459906.exe

c:\windows\system32\drivers\downld\2461375.exe

c:\windows\system32\drivers\downld\2463609.exe

c:\windows\system32\drivers\downld\2466343.exe

c:\windows\system32\drivers\downld\2468875.exe

c:\windows\system32\drivers\downld\2471203.exe

c:\windows\system32\drivers\downld\2474296.exe

c:\windows\system32\drivers\downld\2476781.exe

c:\windows\system32\drivers\downld\2478937.exe

c:\windows\system32\drivers\downld\2481375.exe

c:\windows\system32\drivers\downld\2483546.exe

c:\windows\system32\drivers\downld\2486406.exe

c:\windows\system32\drivers\downld\2488609.exe

c:\windows\system32\drivers\downld\2490828.exe

c:\windows\system32\drivers\downld\2493078.exe

c:\windows\system32\drivers\downld\2495296.exe

c:\windows\system32\drivers\downld\2497937.exe

c:\windows\system32\drivers\downld\2501421.exe

c:\windows\system32\drivers\downld\250364218.exe

c:\windows\system32\drivers\downld\250460156.exe

c:\windows\system32\drivers\downld\250505015.exe

c:\windows\system32\drivers\downld\250549234.exe

c:\windows\system32\drivers\downld\2505625.exe

c:\windows\system32\drivers\downld\250564593.exe

c:\windows\system32\drivers\downld\250598203.exe

c:\windows\system32\drivers\downld\250606187.exe

c:\windows\system32\drivers\downld\250654296.exe

c:\windows\system32\drivers\downld\250680984.exe

c:\windows\system32\drivers\downld\250703390.exe

c:\windows\system32\drivers\downld\2510031.exe

c:\windows\system32\drivers\downld\2514609.exe

c:\windows\system32\drivers\downld\2520000.exe

c:\windows\system32\drivers\downld\2526968.exe

c:\windows\system32\drivers\downld\2529640.exe

c:\windows\system32\drivers\downld\2532000.exe

c:\windows\system32\drivers\downld\2536265.exe

c:\windows\system32\drivers\downld\2539593.exe

c:\windows\system32\drivers\downld\2542937.exe

c:\windows\system32\drivers\downld\2546562.exe

c:\windows\system32\drivers\downld\2547937.exe

c:\windows\system32\drivers\downld\2548140.exe

c:\windows\system32\drivers\downld\2559328.exe

c:\windows\system32\drivers\downld\2564062.exe

c:\windows\system32\drivers\downld\2572265.exe

c:\windows\system32\drivers\downld\2576531.exe

c:\windows\system32\drivers\downld\2578812.exe

c:\windows\system32\drivers\downld\2581968.exe

c:\windows\system32\drivers\downld\2584875.exe

c:\windows\system32\drivers\downld\2586781.exe

c:\windows\system32\drivers\downld\2587937.exe

c:\windows\system32\drivers\downld\2590250.exe

c:\windows\system32\drivers\downld\2591812.exe

c:\windows\system32\drivers\downld\2594265.exe

c:\windows\system32\drivers\downld\2595140.exe

c:\windows\system32\drivers\downld\2598750.exe

c:\windows\system32\drivers\downld\2601718.exe

c:\windows\system32\drivers\downld\2608031.exe

c:\windows\system32\drivers\downld\2611812.exe

c:\windows\system32\drivers\downld\2620265.exe

c:\windows\system32\drivers\downld\2626234.exe

c:\windows\system32\drivers\downld\2631437.exe

c:\windows\system32\drivers\downld\2633890.exe

c:\windows\system32\drivers\downld\2638359.exe

c:\windows\system32\drivers\downld\2640046.exe

c:\windows\system32\drivers\downld\2642390.exe

c:\windows\system32\drivers\downld\265126640.exe

c:\windows\system32\drivers\downld\265139671.exe

c:\windows\system32\drivers\downld\265165921.exe

c:\windows\system32\drivers\downld\265241015.exe

c:\windows\system32\drivers\downld\265255250.exe

c:\windows\system32\drivers\downld\265327937.exe

c:\windows\system32\drivers\downld\265341015.exe

c:\windows\system32\drivers\downld\265386531.exe

c:\windows\system32\drivers\downld\265401218.exe

c:\windows\system32\drivers\downld\265416015.exe

c:\windows\system32\drivers\downld\2666921.exe

c:\windows\system32\drivers\downld\2670750.exe

c:\windows\system32\drivers\downld\2674609.exe

c:\windows\system32\drivers\downld\2677609.exe

c:\windows\system32\drivers\downld\2679296.exe

c:\windows\system32\drivers\downld\2682281.exe

c:\windows\system32\drivers\downld\2684750.exe

c:\windows\system32\drivers\downld\2688109.exe

c:\windows\system32\drivers\downld\2689406.exe

c:\windows\system32\drivers\downld\2690984.exe

c:\windows\system32\drivers\downld\2693328.exe

c:\windows\system32\drivers\downld\2696375.exe

c:\windows\system32\drivers\downld\2698578.exe

c:\windows\system32\drivers\downld\2700328.exe

c:\windows\system32\drivers\downld\2702578.exe

c:\windows\system32\drivers\downld\2705687.exe

c:\windows\system32\drivers\downld\2707250.exe

c:\windows\system32\drivers\downld\2709578.exe

c:\windows\system32\drivers\downld\2711953.exe

c:\windows\system32\drivers\downld\2715000.exe

c:\windows\system32\drivers\downld\2718875.exe

c:\windows\system32\drivers\downld\2721843.exe

c:\windows\system32\drivers\downld\2723515.exe

c:\windows\system32\drivers\downld\2725875.exe

c:\windows\system32\drivers\downld\2728234.exe

c:\windows\system32\drivers\downld\2732281.exe

c:\windows\system32\drivers\downld\2733531.exe

c:\windows\system32\drivers\downld\2735843.exe

c:\windows\system32\drivers\downld\2738187.exe

c:\windows\system32\drivers\downld\2740468.exe

c:\windows\system32\drivers\downld\2744281.exe

c:\windows\system32\drivers\downld\2746687.exe

c:\windows\system32\drivers\downld\2749671.exe

c:\windows\system32\drivers\downld\2752031.exe

c:\windows\system32\drivers\downld\2755875.exe

c:\windows\system32\drivers\downld\2758875.exe

c:\windows\system32\drivers\downld\279861218.exe

c:\windows\system32\drivers\downld\279894937.exe

c:\windows\system32\drivers\downld\279919078.exe

c:\windows\system32\drivers\downld\279927375.exe

c:\windows\system32\drivers\downld\279965328.exe

c:\windows\system32\drivers\downld\279980250.exe

c:\windows\system32\drivers\downld\279989984.exe

c:\windows\system32\drivers\downld\294438906.exe

c:\windows\system32\drivers\downld\294496328.exe

c:\windows\system32\drivers\downld\294519921.exe

c:\windows\system32\drivers\downld\294533890.exe

c:\windows\system32\drivers\downld\294578000.exe

c:\windows\system32\drivers\downld\294598390.exe

c:\windows\system32\drivers\downld\294607500.exe

c:\windows\system32\drivers\downld\296500.exe

c:\windows\system32\drivers\downld\29708343.exe

c:\windows\system32\drivers\downld\29746281.exe

c:\windows\system32\drivers\downld\29762234.exe

c:\windows\system32\drivers\downld\29762984.exe

c:\windows\system32\drivers\downld\29782125.exe

c:\windows\system32\drivers\downld\29826031.exe

c:\windows\system32\drivers\downld\29832656.exe

c:\windows\system32\drivers\downld\29860921.exe

c:\windows\system32\drivers\downld\29878562.exe

c:\windows\system32\drivers\downld\29881812.exe

c:\windows\system32\drivers\downld\29882656.exe

c:\windows\system32\drivers\downld\29883390.exe

c:\windows\system32\drivers\downld\29899984.exe

c:\windows\system32\drivers\downld\29915921.exe

c:\windows\system32\drivers\downld\29917343.exe

c:\windows\system32\drivers\downld\29926765.exe

c:\windows\system32\drivers\downld\29935046.exe

c:\windows\system32\drivers\downld\29947687.exe

c:\windows\system32\drivers\downld\29972375.exe

c:\windows\system32\drivers\downld\29978859.exe

c:\windows\system32\drivers\downld\29983296.exe

c:\windows\system32\drivers\downld\30015921.exe

c:\windows\system32\drivers\downld\30031968.exe

c:\windows\system32\drivers\downld\30044125.exe

c:\windows\system32\drivers\downld\30057078.exe

c:\windows\system32\drivers\downld\300968.exe

c:\windows\system32\drivers\downld\30109359.exe

c:\windows\system32\drivers\downld\30126640.exe

c:\windows\system32\drivers\downld\30182250.exe

c:\windows\system32\drivers\downld\30200875.exe

c:\windows\system32\drivers\downld\30214562.exe

c:\windows\system32\drivers\downld\309045031.exe

c:\windows\system32\drivers\downld\309063484.exe

c:\windows\system32\drivers\downld\309083453.exe

c:\windows\system32\drivers\downld\309106359.exe

c:\windows\system32\drivers\downld\309121296.exe

c:\windows\system32\drivers\downld\309168843.exe

c:\windows\system32\drivers\downld\309173375.exe

c:\windows\system32\drivers\downld\309213390.exe

c:\windows\system32\drivers\downld\309243234.exe

c:\windows\system32\drivers\downld\309254078.exe

c:\windows\system32\drivers\downld\323265.exe

c:\windows\system32\drivers\downld\323705625.exe

c:\windows\system32\drivers\downld\323725171.exe

c:\windows\system32\drivers\downld\323797796.exe

c:\windows\system32\drivers\downld\323845546.exe

c:\windows\system32\drivers\downld\323862937.exe

c:\windows\system32\drivers\downld\323905859.exe

c:\windows\system32\drivers\downld\323923406.exe

c:\windows\system32\drivers\downld\323940562.exe

c:\windows\system32\drivers\downld\338392031.exe

c:\windows\system32\drivers\downld\338408359.exe

c:\windows\system32\drivers\downld\338442656.exe

c:\windows\system32\drivers\downld\338457515.exe

c:\windows\system32\drivers\downld\338474562.exe

c:\windows\system32\drivers\downld\338487765.exe

c:\windows\system32\drivers\downld\338527687.exe

c:\windows\system32\drivers\downld\338535968.exe

c:\windows\system32\drivers\downld\338573468.exe

c:\windows\system32\drivers\downld\338587468.exe

c:\windows\system32\drivers\downld\338595890.exe

c:\windows\system32\drivers\downld\353030406.exe

c:\windows\system32\drivers\downld\353049046.exe

c:\windows\system32\drivers\downld\353077390.exe

c:\windows\system32\drivers\downld\353119765.exe

c:\windows\system32\drivers\downld\353177140.exe

c:\windows\system32\drivers\downld\353211125.exe

c:\windows\system32\drivers\downld\353220031.exe

c:\windows\system32\drivers\downld\353255453.exe

c:\windows\system32\drivers\downld\353270656.exe

c:\windows\system32\drivers\downld\353281234.exe

c:\windows\system32\drivers\downld\3555843.exe

c:\windows\system32\drivers\downld\356031.exe

c:\windows\system32\drivers\downld\360140.exe

c:\windows\system32\drivers\downld\361015.exe

c:\windows\system32\drivers\downld\362968.exe

c:\windows\system32\drivers\downld\364609.exe

c:\windows\system32\drivers\downld\367156.exe

c:\windows\system32\drivers\downld\367745609.exe

c:\windows\system32\drivers\downld\367778250.exe

c:\windows\system32\drivers\downld\367801640.exe

c:\windows\system32\drivers\downld\367809312.exe

c:\windows\system32\drivers\downld\367845890.exe

c:\windows\system32\drivers\downld\367860734.exe

c:\windows\system32\drivers\downld\367871828.exe

c:\windows\system32\drivers\downld\369593.exe

c:\windows\system32\drivers\downld\369625.exe

c:\windows\system32\drivers\downld\372859.exe

c:\windows\system32\drivers\downld\374718.exe

c:\windows\system32\drivers\downld\377281.exe

c:\windows\system32\drivers\downld\379937.exe

c:\windows\system32\drivers\downld\380734.exe

c:\windows\system32\drivers\downld\381515.exe

c:\windows\system32\drivers\downld\382290937.exe

c:\windows\system32\drivers\downld\382303421.exe

c:\windows\system32\drivers\downld\382325218.exe

c:\windows\system32\drivers\downld\382396765.exe

c:\windows\system32\drivers\downld\382407375.exe

c:\windows\system32\drivers\downld\382451562.exe

c:\windows\system32\drivers\downld\382464531.exe

c:\windows\system32\drivers\downld\382500.exe

c:\windows\system32\drivers\downld\382501796.exe

c:\windows\system32\drivers\downld\382516328.exe

c:\windows\system32\drivers\downld\382541140.exe

c:\windows\system32\drivers\downld\383000.exe

c:\windows\system32\drivers\downld\383453.exe

c:\windows\system32\drivers\downld\383531.exe

c:\windows\system32\drivers\downld\383890.exe

c:\windows\system32\drivers\downld\38402203.exe

c:\windows\system32\drivers\downld\38403781.exe

c:\windows\system32\drivers\downld\38405671.exe

c:\windows\system32\drivers\downld\38407578.exe

c:\windows\system32\drivers\downld\38408078.exe

c:\windows\system32\drivers\downld\38410015.exe

c:\windows\system32\drivers\downld\38411031.exe

c:\windows\system32\drivers\downld\38412390.exe

c:\windows\system32\drivers\downld\38414546.exe

c:\windows\system32\drivers\downld\38416562.exe

c:\windows\system32\drivers\downld\38418390.exe

c:\windows\system32\drivers\downld\38418875.exe

c:\windows\system32\drivers\downld\38420812.exe

c:\windows\system32\drivers\downld\38421796.exe

c:\windows\system32\drivers\downld\38423156.exe

c:\windows\system32\drivers\downld\38425140.exe

c:\windows\system32\drivers\downld\38425359.exe

c:\windows\system32\drivers\downld\38427531.exe

c:\windows\system32\drivers\downld\38429437.exe

c:\windows\system32\drivers\downld\38429656.exe

c:\windows\system32\drivers\downld\38431578.exe

c:\windows\system32\drivers\downld\38431859.exe

c:\windows\system32\drivers\downld\38433968.exe

c:\windows\system32\drivers\downld\38435984.exe

c:\windows\system32\drivers\downld\38436875.exe

c:\windows\system32\drivers\downld\38438312.exe

c:\windows\system32\drivers\downld\38440218.exe

c:\windows\system32\drivers\downld\38441140.exe

c:\windows\system32\drivers\downld\38442625.exe

c:\windows\system32\drivers\downld\38444734.exe

c:\windows\system32\drivers\downld\38446687.exe

c:\windows\system32\drivers\downld\38447671.exe

c:\windows\system32\drivers\downld\38449093.exe

c:\windows\system32\drivers\downld\38451078.exe

c:\windows\system32\drivers\downld\38452718.exe

c:\windows\system32\drivers\downld\38453484.exe

c:\windows\system32\drivers\downld\38455484.exe

c:\windows\system32\drivers\downld\38456875.exe

c:\windows\system32\drivers\downld\38459031.exe

c:\windows\system32\drivers\downld\38461109.exe

c:\windows\system32\drivers\downld\38463671.exe

c:\windows\system32\drivers\downld\38467953.exe

c:\windows\system32\drivers\downld\38470125.exe

c:\windows\system32\drivers\downld\38472125.exe

c:\windows\system32\drivers\downld\38473078.exe

c:\windows\system32\drivers\downld\38474437.exe

c:\windows\system32\drivers\downld\38476406.exe

c:\windows\system32\drivers\downld\38477375.exe

c:\windows\system32\drivers\downld\38478734.exe

c:\windows\system32\drivers\downld\38480578.exe

c:\windows\system32\drivers\downld\38481562.exe

c:\windows\system32\drivers\downld\38483046.exe

c:\windows\system32\drivers\downld\38484984.exe

c:\windows\system32\drivers\downld\38485984.exe

c:\windows\system32\drivers\downld\38487390.exe

c:\windows\system32\drivers\downld\38489218.exe

c:\windows\system32\drivers\downld\38490265.exe

c:\windows\system32\drivers\downld\38491703.exe

c:\windows\system32\drivers\downld\38493546.exe

c:\windows\system32\drivers\downld\38493828.exe

c:\windows\system32\drivers\downld\38495937.exe

c:\windows\system32\drivers\downld\38496750.exe

c:\windows\system32\drivers\downld\38498203.exe

c:\windows\system32\drivers\downld\38521312.exe

c:\windows\system32\drivers\downld\38521593.exe

c:\windows\system32\drivers\downld\38523718.exe

c:\windows\system32\drivers\downld\38525734.exe

c:\windows\system32\drivers\downld\38526515.exe

c:\windows\system32\drivers\downld\38528062.exe

c:\windows\system32\drivers\downld\38530125.exe

c:\windows\system32\drivers\downld\38530875.exe

c:\windows\system32\drivers\downld\38532375.exe

c:\windows\system32\drivers\downld\385343.exe

c:\windows\system32\drivers\downld\38534375.exe

c:\windows\system32\drivers\downld\38535296.exe

c:\windows\system32\drivers\downld\38536671.exe

c:\windows\system32\drivers\downld\38538546.exe

c:\windows\system32\drivers\downld\38539531.exe

c:\windows\system32\drivers\downld\38540968.exe

c:\windows\system32\drivers\downld\38542875.exe

c:\windows\system32\drivers\downld\38543156.exe

c:\windows\system32\drivers\downld\38545015.exe

c:\windows\system32\drivers\downld\38546046.exe

c:\windows\system32\drivers\downld\38568640.exe

c:\windows\system32\drivers\downld\38570593.exe

c:\windows\system32\drivers\downld\38571515.exe

c:\windows\system32\drivers\downld\38573062.exe

c:\windows\system32\drivers\downld\38575937.exe

c:\windows\system32\drivers\downld\38577343.exe

c:\windows\system32\drivers\downld\38579125.exe

c:\windows\system32\drivers\downld\38580265.exe

c:\windows\system32\drivers\downld\38581656.exe

c:\windows\system32\drivers\downld\38583578.exe

c:\windows\system32\drivers\downld\38584531.exe

c:\windows\system32\drivers\downld\38585968.exe

c:\windows\system32\drivers\downld\38587765.exe

c:\windows\system32\drivers\downld\38588937.exe

c:\windows\system32\drivers\downld\38590312.exe

c:\windows\system32\drivers\downld\38592125.exe

c:\windows\system32\drivers\downld\38592468.exe

c:\windows\system32\drivers\downld\38594484.exe

c:\windows\system32\drivers\downld\38595359.exe

c:\windows\system32\drivers\downld\38596750.exe

c:\windows\system32\drivers\downld\38598593.exe

c:\windows\system32\drivers\downld\38599515.exe

c:\windows\system32\drivers\downld\38601125.exe

c:\windows\system32\drivers\downld\38603031.exe

c:\windows\system32\drivers\downld\38605390.exe

c:\windows\system32\drivers\downld\38607375.exe

c:\windows\system32\drivers\downld\38608484.exe

c:\windows\system32\drivers\downld\38609718.exe

c:\windows\system32\drivers\downld\38611625.exe

c:\windows\system32\drivers\downld\38613546.exe

c:\windows\system32\drivers\downld\38614031.exe

c:\windows\system32\drivers\downld\38616078.exe

c:\windows\system32\drivers\downld\38616906.exe

c:\windows\system32\drivers\downld\386171.exe

c:\windows\system32\drivers\downld\38618312.exe

c:\windows\system32\drivers\downld\38620265.exe

c:\windows\system32\drivers\downld\38620515.exe

c:\windows\system32\drivers\downld\387453.exe

c:\windows\system32\drivers\downld\388843.exe

c:\windows\system32\drivers\downld\389171.exe

c:\windows\system32\drivers\downld\390453.exe

c:\windows\system32\drivers\downld\390656.exe

c:\windows\system32\drivers\downld\391468.exe

c:\windows\system32\drivers\downld\391734.exe

c:\windows\system32\drivers\downld\392203.exe

c:\windows\system32\drivers\downld\392437.exe

c:\windows\system32\drivers\downld\392578.exe

c:\windows\system32\drivers\downld\392843.exe

c:\windows\system32\drivers\downld\393109.exe

c:\windows\system32\drivers\downld\394328.exe

c:\windows\system32\drivers\downld\394562.exe

c:\windows\system32\drivers\downld\396046.exe

c:\windows\system32\drivers\downld\396093.exe

c:\windows\system32\drivers\downld\396988921.exe

c:\windows\system32\drivers\downld\397020359.exe

c:\windows\system32\drivers\downld\397066421.exe

c:\windows\system32\drivers\downld\397145656.exe

c:\windows\system32\drivers\downld\397163531.exe

c:\windows\system32\drivers\downld\397224343.exe

c:\windows\system32\drivers\downld\397234531.exe

c:\windows\system32\drivers\downld\397285828.exe

c:\windows\system32\drivers\downld\397300562.exe

c:\windows\system32\drivers\downld\397312343.exe

c:\windows\system32\drivers\downld\397718.exe

c:\windows\system32\drivers\downld\398453.exe

c:\windows\system32\drivers\downld\398546.exe

c:\windows\system32\drivers\downld\398796.exe

c:\windows\system32\drivers\downld\400140.exe

c:\windows\system32\drivers\downld\400265.exe

c:\windows\system32\drivers\downld\400453.exe

c:\windows\system32\drivers\downld\401187.exe

c:\windows\system32\drivers\downld\401484.exe

c:\windows\system32\drivers\downld\401625.exe

c:\windows\system32\drivers\downld\401640.exe

c:\windows\system32\drivers\downld\401984.exe

c:\windows\system32\drivers\downld\402281.exe

c:\windows\system32\drivers\downld\402453.exe

c:\windows\system32\drivers\downld\402828.exe

c:\windows\system32\drivers\downld\403046.exe

c:\windows\system32\drivers\downld\403109.exe

c:\windows\system32\drivers\downld\403609.exe

c:\windows\system32\drivers\downld\404671.exe

c:\windows\system32\drivers\downld\405156.exe

c:\windows\system32\drivers\downld\406906.exe

c:\windows\system32\drivers\downld\407593.exe

c:\windows\system32\drivers\downld\407843.exe

c:\windows\system32\drivers\downld\408281.exe

c:\windows\system32\drivers\downld\409015.exe

c:\windows\system32\drivers\downld\410546.exe

c:\windows\system32\drivers\downld\411468.exe

c:\windows\system32\drivers\downld\411531.exe

c:\windows\system32\drivers\downld\4125031.exe

c:\windows\system32\drivers\downld\412593.exe

c:\windows\system32\drivers\downld\4131453.exe

c:\windows\system32\drivers\downld\4139546.exe

c:\windows\system32\drivers\downld\414046.exe

c:\windows\system32\drivers\downld\4143859.exe

c:\windows\system32\drivers\downld\4158500.exe

c:\windows\system32\drivers\downld\416328.exe

c:\windows\system32\drivers\downld\4167031.exe

c:\windows\system32\drivers\downld\4172671.exe

c:\windows\system32\drivers\downld\417625.exe

c:\windows\system32\drivers\downld\417921.exe

c:\windows\system32\drivers\downld\4180484.exe

c:\windows\system32\drivers\downld\4190656.exe

c:\windows\system32\drivers\downld\419968.exe

c:\windows\system32\drivers\downld\420015.exe

c:\windows\system32\drivers\downld\4205750.exe

c:\windows\system32\drivers\downld\420656.exe

c:\windows\system32\drivers\downld\4212500.exe

c:\windows\system32\drivers\downld\4223875.exe

c:\windows\system32\drivers\downld\424015.exe

c:\windows\system32\drivers\downld\424812.exe

c:\windows\system32\drivers\downld\425125.exe

c:\windows\system32\drivers\downld\425468.exe

c:\windows\system32\drivers\downld\426171.exe

c:\windows\system32\drivers\downld\4276734.exe

c:\windows\system32\drivers\downld\428500.exe

c:\windows\system32\drivers\downld\428921.exe

c:\windows\system32\drivers\downld\431015.exe

c:\windows\system32\drivers\downld\432453.exe

c:\windows\system32\drivers\downld\435812.exe

c:\windows\system32\drivers\downld\437500.exe

c:\windows\system32\drivers\downld\437625.exe

c:\windows\system32\drivers\downld\438625.exe

c:\windows\system32\drivers\downld\440515.exe

c:\windows\system32\drivers\downld\441875.exe

c:\windows\system32\drivers\downld\443046.exe

c:\windows\system32\drivers\downld\44371781.exe

c:\windows\system32\drivers\downld\44380578.exe

c:\windows\system32\drivers\downld\44406609.exe

c:\windows\system32\drivers\downld\44415093.exe

c:\windows\system32\drivers\downld\44488687.exe

c:\windows\system32\drivers\downld\44496718.exe

c:\windows\system32\drivers\downld\44518281.exe

c:\windows\system32\drivers\downld\44519265.exe

c:\windows\system32\drivers\downld\44533843.exe

c:\windows\system32\drivers\downld\44573531.exe

c:\windows\system32\drivers\downld\445796.exe

c:\windows\system32\drivers\downld\44586187.exe

c:\windows\system32\drivers\downld\44596078.exe

c:\windows\system32\drivers\downld\446156.exe

c:\windows\system32\drivers\downld\446171.exe

c:\windows\system32\drivers\downld\446203.exe

c:\windows\system32\drivers\downld\44626843.exe

c:\windows\system32\drivers\downld\44655406.exe

c:\windows\system32\drivers\downld\446640.exe

c:\windows\system32\drivers\downld\44741406.exe

c:\windows\system32\drivers\downld\44748875.exe

c:\windows\system32\drivers\downld\44816890.exe

c:\windows\system32\drivers\downld\44842843.exe

c:\windows\system32\drivers\downld\44864687.exe

c:\windows\system32\drivers\downld\449609.exe

c:\windows\system32\drivers\downld\449718.exe

c:\windows\system32\drivers\downld\451171.exe

c:\windows\system32\drivers\downld\452390.exe

c:\windows\system32\drivers\downld\453078.exe

c:\windows\system32\drivers\downld\453312.exe

c:\windows\system32\drivers\downld\454125.exe

c:\windows\system32\drivers\downld\454156.exe

c:\windows\system32\drivers\downld\454375.exe

c:\windows\system32\drivers\downld\455000.exe

c:\windows\system32\drivers\downld\455968.exe

c:\windows\system32\drivers\downld\456984.exe

c:\windows\system32\drivers\downld\458562.exe

c:\windows\system32\drivers\downld\459140.exe

c:\windows\system32\drivers\downld\459265.exe

c:\windows\system32\drivers\downld\459718.exe

c:\windows\system32\drivers\downld\462328.exe

c:\windows\system32\drivers\downld\463046.exe

c:\windows\system32\drivers\downld\463656.exe

c:\windows\system32\drivers\downld\466125.exe

c:\windows\system32\drivers\downld\467078.exe

c:\windows\system32\drivers\downld\467250.exe

c:\windows\system32\drivers\downld\467281.exe

c:\windows\system32\drivers\downld\469515.exe

c:\windows\system32\drivers\downld\470156.exe

c:\windows\system32\drivers\downld\470875.exe

c:\windows\system32\drivers\downld\471546.exe

c:\windows\system32\drivers\downld\471906.exe

c:\windows\system32\drivers\downld\472546.exe

c:\windows\system32\drivers\downld\472687.exe

c:\windows\system32\drivers\downld\473390.exe

c:\windows\system32\drivers\downld\474781.exe

c:\windows\system32\drivers\downld\475968.exe

c:\windows\system32\drivers\downld\477296.exe

c:\windows\system32\drivers\downld\478062.exe

c:\windows\system32\drivers\downld\478093.exe

c:\windows\system32\drivers\downld\480421.exe

c:\windows\system32\drivers\downld\480687.exe

c:\windows\system32\drivers\downld\480921.exe

c:\windows\system32\drivers\downld\481187.exe

c:\windows\system32\drivers\downld\482171.exe

c:\windows\system32\drivers\downld\484312.exe

c:\windows\system32\drivers\downld\484500.exe

c:\windows\system32\drivers\downld\486109.exe

c:\windows\system32\drivers\downld\486781.exe

c:\windows\system32\drivers\downld\487078.exe

c:\windows\system32\drivers\downld\487234.exe

c:\windows\system32\drivers\downld\487781.exe

c:\windows\system32\drivers\downld\489250.exe

c:\windows\system32\drivers\downld\491296.exe

c:\windows\system32\drivers\downld\491375.exe

c:\windows\system32\drivers\downld\492421.exe

c:\windows\system32\drivers\downld\493296.exe

c:\windows\system32\drivers\downld\493843.exe

c:\windows\system32\drivers\downld\496406.exe

c:\windows\system32\drivers\downld\497062.exe

c:\windows\system32\drivers\downld\497203.exe

c:\windows\system32\drivers\downld\498187.exe

c:\windows\system32\drivers\downld\498328.exe

c:\windows\system32\drivers\downld\499718.exe

c:\windows\system32\drivers\downld\499734.exe

c:\windows\system32\drivers\downld\500421.exe

c:\windows\system32\drivers\downld\500468.exe

c:\windows\system32\drivers\downld\500734.exe

c:\windows\system32\drivers\downld\502328.exe

c:\windows\system32\drivers\downld\503234.exe

c:\windows\system32\drivers\downld\504500.exe

c:\windows\system32\drivers\downld\505750.exe

c:\windows\system32\drivers\downld\505937.exe

c:\windows\system32\drivers\downld\506921.exe

c:\windows\system32\drivers\downld\507187.exe

c:\windows\system32\drivers\downld\507359.exe

c:\windows\system32\drivers\downld\508375.exe

c:\windows\system32\drivers\downld\509906.exe

c:\windows\system32\drivers\downld\510250.exe

c:\windows\system32\drivers\downld\510812.exe

c:\windows\system32\drivers\downld\511171.exe

c:\windows\system32\drivers\downld\514046.exe

c:\windows\system32\drivers\downld\514546.exe

c:\windows\system32\drivers\downld\514875.exe

c:\windows\system32\drivers\downld\516640.exe

c:\windows\system32\drivers\downld\517296.exe

c:\windows\system32\drivers\downld\517500.exe

c:\windows\system32\drivers\downld\517671.exe

c:\windows\system32\drivers\downld\517875.exe

c:\windows\system32\drivers\downld\518843.exe

c:\windows\system32\drivers\downld\520593.exe

c:\windows\system32\drivers\downld\521234.exe

c:\windows\system32\drivers\downld\521968.exe

c:\windows\system32\drivers\downld\522671.exe

c:\windows\system32\drivers\downld\523562.exe

c:\windows\system32\drivers\downld\523859.exe

c:\windows\system32\drivers\downld\524000.exe

c:\windows\system32\drivers\downld\5247656.exe

c:\windows\system32\drivers\downld\525296.exe

c:\windows\system32\drivers\downld\525453.exe

c:\windows\system32\drivers\downld\525718.exe

c:\windows\system32\drivers\downld\5259250.exe

c:\windows\system32\drivers\downld\5267125.exe

c:\windows\system32\drivers\downld\526859.exe

c:\windows\system32\drivers\downld\528562.exe

c:\windows\system32\drivers\downld\529296.exe

c:\windows\system32\drivers\downld\5296296.exe

c:\windows\system32\drivers\downld\5301578.exe

c:\windows\system32\drivers\downld\53022593.exe

c:\windows\system32\drivers\downld\53023906.exe

c:\windows\system32\drivers\downld\53026093.exe

c:\windows\system32\drivers\downld\53027156.exe

c:\windows\system32\drivers\downld\53029734.exe

c:\windows\system32\drivers\downld\53031515.exe

c:\windows\system32\drivers\downld\53034031.exe

c:\windows\system32\drivers\downld\53036171.exe

c:\windows\system32\drivers\downld\530375.exe

c:\windows\system32\drivers\downld\53038468.exe

c:\windows\system32\drivers\downld\53039046.exe

c:\windows\system32\drivers\downld\53041328.exe

c:\windows\system32\drivers\downld\53044062.exe

c:\windows\system32\drivers\downld\530453.exe

c:\windows\system32\drivers\downld\53046250.exe

c:\windows\system32\drivers\downld\53048265.exe

c:\windows\system32\drivers\downld\53049843.exe

c:\windows\system32\drivers\downld\53051640.exe

c:\windows\system32\drivers\downld\53053765.exe

c:\windows\system32\drivers\downld\53055812.exe

c:\windows\system32\drivers\downld\53056671.exe

c:\windows\system32\drivers\downld\53058890.exe

c:\windows\system32\drivers\downld\53060968.exe

c:\windows\system32\drivers\downld\53062437.exe

c:\windows\system32\drivers\downld\53064250.exe

c:\windows\system32\drivers\downld\53066453.exe

c:\windows\system32\drivers\downld\53069265.exe

c:\windows\system32\drivers\downld\53071500.exe

c:\windows\system32\drivers\downld\53073875.exe

c:\windows\system32\drivers\downld\53075953.exe

c:\windows\system32\drivers\downld\53078109.exe

c:\windows\system32\drivers\downld\53079328.exe

c:\windows\system32\drivers\downld\53081812.exe

c:\windows\system32\drivers\downld\53084015.exe

c:\windows\system32\drivers\downld\53085156.exe

c:\windows\system32\drivers\downld\53088203.exe

c:\windows\system32\drivers\downld\53089421.exe

c:\windows\system32\drivers\downld\53091312.exe

c:\windows\system32\drivers\downld\53092765.exe

c:\windows\system32\drivers\downld\53094421.exe

c:\windows\system32\drivers\downld\53096625.exe

c:\windows\system32\drivers\downld\53098843.exe

c:\windows\system32\drivers\downld\53100562.exe

c:\windows\system32\drivers\downld\53102703.exe

c:\windows\system32\drivers\downld\53104500.exe

c:\windows\system32\drivers\downld\53106984.exe

c:\windows\system32\drivers\downld\53109406.exe

c:\windows\system32\drivers\downld\53111484.exe

c:\windows\system32\drivers\downld\53112078.exe

c:\windows\system32\drivers\downld\53114187.exe

c:\windows\system32\drivers\downld\53115343.exe

c:\windows\system32\drivers\downld\53117078.exe

c:\windows\system32\drivers\downld\53119281.exe

c:\windows\system32\drivers\downld\53119609.exe

c:\windows\system32\drivers\downld\53121921.exe

c:\windows\system32\drivers\downld\53124218.exe

c:\windows\system32\drivers\downld\53125484.exe

c:\windows\system32\drivers\downld\53127578.exe

c:\windows\system32\drivers\downld\53129671.exe

c:\windows\system32\drivers\downld\53131828.exe

c:\windows\system32\drivers\downld\53132890.exe

c:\windows\system32\drivers\downld\53134765.exe

c:\windows\system32\drivers\downld\53136937.exe

c:\windows\system32\drivers\downld\53137937.exe

c:\windows\system32\drivers\downld\53139796.exe

c:\windows\system32\drivers\downld\5316015.exe

c:\windows\system32\drivers\downld\53163234.exe

c:\windows\system32\drivers\downld\53165437.exe

c:\windows\system32\drivers\downld\53167609.exe

c:\windows\system32\drivers\downld\53168921.exe

c:\windows\system32\drivers\downld\53170703.exe

c:\windows\system32\drivers\downld\53172953.exe

c:\windows\system32\drivers\downld\53175093.exe

c:\windows\system32\drivers\downld\53176515.exe

c:\windows\system32\drivers\downld\53178281.exe

c:\windows\system32\drivers\downld\53180437.exe

c:\windows\system32\drivers\downld\53181515.exe

c:\windows\system32\drivers\downld\53183312.exe

c:\windows\system32\drivers\downld\53185625.exe

c:\windows\system32\drivers\downld\53187890.exe

c:\windows\system32\drivers\downld\53189015.exe

c:\windows\system32\drivers\downld\53190843.exe

c:\windows\system32\drivers\downld\53193015.exe

c:\windows\system32\drivers\downld\53195109.exe

c:\windows\system32\drivers\downld\53195937.exe

c:\windows\system32\drivers\downld\53219656.exe

c:\windows\system32\drivers\downld\53221093.exe

c:\windows\system32\drivers\downld\53223421.exe

c:\windows\system32\drivers\downld\53225671.exe

c:\windows\system32\drivers\downld\53226140.exe

c:\windows\system32\drivers\downld\53228390.exe

c:\windows\system32\drivers\downld\53230500.exe

c:\windows\system32\drivers\downld\53232671.exe

c:\windows\system32\drivers\downld\53234718.exe

c:\windows\system32\drivers\downld\53236281.exe

c:\windows\system32\drivers\downld\53238609.exe

c:\windows\system32\drivers\downld\53240968.exe

c:\windows\system32\drivers\downld\53242109.exe

c:\windows\system32\drivers\downld\53243875.exe

c:\windows\system32\drivers\downld\53246078.exe

c:\windows\system32\drivers\downld\53248421.exe

c:\windows\system32\drivers\downld\53249578.exe

c:\windows\system32\drivers\downld\53251500.exe

c:\windows\system32\drivers\downld\53255406.exe

c:\windows\system32\drivers\downld\53257593.exe

c:\windows\system32\drivers\downld\53258671.exe

c:\windows\system32\drivers\downld\53260656.exe

c:\windows\system32\drivers\downld\53262687.exe

c:\windows\system32\drivers\downld\53264750.exe

c:\windows\system32\drivers\downld\53266578.exe

c:\windows\system32\drivers\downld\53268890.exe

c:\windows\system32\drivers\downld\53271250.exe

c:\windows\system32\drivers\downld\53274343.exe

c:\windows\system32\drivers\downld\53279156.exe

c:\windows\system32\drivers\downld\53280781.exe

c:\windows\system32\drivers\downld\53283125.exe

c:\windows\system32\drivers\downld\53285046.exe

c:\windows\system32\drivers\downld\53287625.exe

c:\windows\system32\drivers\downld\53293390.exe

c:\windows\system32\drivers\downld\53296671.exe

c:\windows\system32\drivers\downld\53300812.exe

c:\windows\system32\drivers\downld\5332531.exe

c:\windows\system32\drivers\downld\533546.exe

c:\windows\system32\drivers\downld\533609.exe

c:\windows\system32\drivers\downld\534234.exe

c:\windows\system32\drivers\downld\535750.exe

c:\windows\system32\drivers\downld\535781.exe

c:\windows\system32\drivers\downld\536234.exe

c:\windows\system32\drivers\downld\536250.exe

c:\windows\system32\drivers\downld\538328.exe

c:\windows\system32\drivers\downld\538375.exe

c:\windows\system32\drivers\downld\5390531.exe

c:\windows\system32\drivers\downld\5402125.exe

c:\windows\system32\drivers\downld\541109.exe

c:\windows\system32\drivers\downld\541500.exe

c:\windows\system32\drivers\downld\542218.exe

c:\windows\system32\drivers\downld\5422203.exe

c:\windows\system32\drivers\downld\542796.exe

c:\windows\system32\drivers\downld\542843.exe

c:\windows\system32\drivers\downld\5435578.exe

c:\windows\system32\drivers\downld\545093.exe

c:\windows\system32\drivers\downld\546140.exe

c:\windows\system32\drivers\downld\546953.exe

c:\windows\system32\drivers\downld\5471203.exe

c:\windows\system32\drivers\downld\547968.exe

c:\windows\system32\drivers\downld\549109.exe

c:\windows\system32\drivers\downld\550234.exe

c:\windows\system32\drivers\downld\5503468.exe

c:\windows\system32\drivers\downld\550781.exe

c:\windows\system32\drivers\downld\552093.exe

c:\windows\system32\drivers\downld\552328.exe

c:\windows\system32\drivers\downld\552734.exe

c:\windows\system32\drivers\downld\553062.exe

c:\windows\system32\drivers\downld\554859.exe

c:\windows\system32\drivers\downld\556859.exe

c:\windows\system32\drivers\downld\557765.exe

c:\windows\system32\drivers\downld\558156.exe

c:\windows\system32\drivers\downld\559109.exe

c:\windows\system32\drivers\downld\560765.exe

c:\windows\system32\drivers\downld\561343.exe

c:\windows\system32\drivers\downld\561843.exe

c:\windows\system32\drivers\downld\564140.exe

c:\windows\system32\drivers\downld\564671.exe

c:\windows\system32\drivers\downld\565687.exe

c:\windows\system32\drivers\downld\567031.exe

c:\windows\system32\drivers\downld\567046.exe

c:\windows\system32\drivers\downld\567796.exe

c:\windows\system32\drivers\downld\569609.exe

c:\windows\system32\drivers\downld\571593.exe

c:\windows\system32\drivers\downld\572359.exe

c:\windows\system32\drivers\downld\572906.exe

c:\windows\system32\drivers\downld\575078.exe

c:\windows\system32\drivers\downld\575343.exe

c:\windows\system32\drivers\downld\575781.exe

c:\windows\system32\drivers\downld\576031.exe

c:\windows\system32\drivers\downld\578296.exe

c:\windows\system32\drivers\downld\578812.exe

c:\windows\system32\drivers\downld\579765.exe

c:\windows\system32\drivers\downld\580421.exe

c:\windows\system32\drivers\downld\580515.exe

c:\windows\system32\drivers\downld\580578.exe

c:\windows\system32\drivers\downld\581031.exe

c:\windows\system32\drivers\downld\583296.exe

c:\windows\system32\drivers\downld\585531.exe

c:\windows\system32\drivers\downld\585875.exe

c:\windows\system32\drivers\downld\585953.exe

c:\windows\system32\drivers\downld\588359.exe

c:\windows\system32\drivers\downld\589515.exe

c:\windows\system32\drivers\downld\590062.exe

c:\windows\system32\drivers\downld\59117250.exe

c:\windows\system32\drivers\downld\59133156.exe

c:\windows\system32\drivers\downld\59159687.exe

c:\windows\system32\drivers\downld\59201937.exe

c:\windows\system32\drivers\downld\59220093.exe

c:\windows\system32\drivers\downld\59225625.exe

c:\windows\system32\drivers\downld\59264453.exe

c:\windows\system32\drivers\downld\59276984.exe

c:\windows\system32\drivers\downld\59286812.exe

c:\windows\system32\drivers\downld\59292828.exe

c:\windows\system32\drivers\downld\593046.exe

c:\windows\system32\drivers\downld\59305515.exe

c:\windows\system32\drivers\downld\59339437.exe

c:\windows\system32\drivers\downld\59379546.exe

c:\windows\system32\drivers\downld\59461046.exe

c:\windows\system32\drivers\downld\59474625.exe

c:\windows\system32\drivers\downld\59491671.exe

c:\windows\system32\drivers\downld\595140.exe

c:\windows\system32\drivers\downld\595328.exe

c:\windows\system32\drivers\downld\59546171.exe

c:\windows\system32\drivers\downld\59559046.exe

c:\windows\system32\drivers\downld\59605187.exe

c:\windows\system32\drivers\downld\59624062.exe

c:\windows\system32\drivers\downld\59637875.exe

c:\windows\system32\drivers\downld\597671.exe

c:\windows\system32\drivers\downld\599640.exe

c:\windows\system32\drivers\downld\599750.exe

c:\windows\system32\drivers\downld\601640.exe

c:\windows\system32\drivers\downld\602125.exe

c:\windows\system32\drivers\downld\602406.exe

c:\windows\system32\drivers\downld\602687.exe

c:\windows\system32\drivers\downld\604796.exe

c:\windows\system32\drivers\downld\605390.exe

c:\windows\system32\drivers\downld\607703.exe

c:\windows\system32\drivers\downld\608281.exe

c:\windows\system32\drivers\downld\6083937.exe

c:\windows\system32\drivers\downld\6090421.exe

c:\windows\system32\drivers\downld\610640.exe

c:\windows\system32\drivers\downld\612218.exe

c:\windows\system32\drivers\downld\612453.exe

c:\windows\system32\drivers\downld\612531.exe

c:\windows\system32\drivers\downld\615171.exe

c:\windows\system32\drivers\downld\615187.exe

c:\windows\system32\drivers\downld\618828.exe

c:\windows\system32\drivers\downld\618968.exe

c:\windows\system32\drivers\downld\624718.exe

c:\windows\system32\drivers\downld\624750.exe

c:\windows\system32\drivers\downld\624968.exe

c:\windows\system32\drivers\downld\628171.exe

c:\windows\system32\drivers\downld\629031.exe

c:\windows\system32\drivers\downld\629437.exe

c:\windows\system32\drivers\downld\629546.exe

c:\windows\system32\drivers\downld\630234.exe

c:\windows\system32\drivers\downld\630390.exe

c:\windows\system32\drivers\downld\630515.exe

c:\windows\system32\drivers\downld\632718.exe

c:\windows\system32\drivers\downld\633703.exe

c:\windows\system32\drivers\downld\635140.exe

c:\windows\system32\drivers\downld\636468.exe

c:\windows\system32\drivers\downld\637703.exe

c:\windows\system32\drivers\downld\637968.exe

c:\windows\system32\drivers\downld\640093.exe

c:\windows\system32\drivers\downld\640250.exe

c:\windows\system32\drivers\downld\640515.exe

c:\windows\system32\drivers\downld\640671.exe

c:\windows\system32\drivers\downld\643531.exe

c:\windows\system32\drivers\downld\643718.exe

c:\windows\system32\drivers\downld\644093.exe

c:\windows\system32\drivers\downld\644187.exe

c:\windows\system32\drivers\downld\644203.exe

c:\windows\system32\drivers\downld\644312.exe

c:\windows\system32\drivers\downld\646031.exe

c:\windows\system32\drivers\downld\646140.exe

c:\windows\system32\drivers\downld\646812.exe

c:\windows\system32\drivers\downld\647468.exe

c:\windows\system32\drivers\downld\647796.exe

c:\windows\system32\drivers\downld\648390.exe

c:\windows\system32\drivers\downld\649250.exe

c:\windows\system32\drivers\downld\651796.exe

c:\windows\system32\drivers\downld\653234.exe

c:\windows\system32\drivers\downld\653281.exe

c:\windows\system32\drivers\downld\653328.exe

c:\windows\system32\drivers\downld\654359.exe

c:\windows\system32\drivers\downld\655078.exe

c:\windows\system32\drivers\downld\655515.exe

c:\windows\system32\drivers\downld\657062.exe

c:\windows\system32\drivers\downld\657781.exe

c:\windows\system32\drivers\downld\660328.exe

c:\windows\system32\drivers\downld\661453.exe

c:\windows\system32\drivers\downld\662968.exe

c:\windows\system32\drivers\downld\664968.exe

c:\windows\system32\drivers\downld\666437.exe

c:\windows\system32\drivers\downld\666750.exe

c:\windows\system32\drivers\downld\6671265.exe

c:\windows\system32\drivers\downld\6680687.exe

c:\windows\system32\drivers\downld\669890.exe

c:\windows\system32\drivers\downld\670000.exe

c:\windows\system32\drivers\downld\672031.exe

c:\windows\system32\drivers\downld\673250.exe

c:\windows\system32\drivers\downld\679125.exe

c:\windows\system32\drivers\downld\680359.exe

c:\windows\system32\drivers\downld\680468.exe

c:\windows\system32\drivers\downld\681359.exe

c:\windows\system32\drivers\downld\684625.exe

c:\windows\system32\drivers\downld\685312.exe

c:\windows\system32\drivers\downld\686593.exe

c:\windows\system32\drivers\downld\688921.exe

c:\windows\system32\drivers\downld\689609.exe

c:\windows\system32\drivers\downld\689890.exe

c:\windows\system32\drivers\downld\691140.exe

c:\windows\system32\drivers\downld\692203.exe

c:\windows\system32\drivers\downld\694515.exe

c:\windows\system32\drivers\downld\694765.exe

c:\windows\system32\drivers\downld\700250.exe

c:\windows\system32\drivers\downld\701906.exe

c:\windows\system32\drivers\downld\703734.exe

c:\windows\system32\drivers\downld\704500.exe

c:\windows\system32\drivers\downld\706031.exe

c:\windows\system32\drivers\downld\709890.exe

c:\windows\system32\drivers\downld\710375.exe

c:\windows\system32\drivers\downld\714671.exe

c:\windows\system32\drivers\downld\717687.exe

c:\windows\system32\drivers\downld\719578.exe

c:\windows\system32\drivers\downld\721250.exe

c:\windows\system32\drivers\downld\722796.exe

c:\windows\system32\drivers\downld\723000.exe

c:\windows\system32\drivers\downld\726593.exe

c:\windows\system32\drivers\downld\727000.exe

c:\windows\system32\drivers\downld\730421.exe

c:\windows\system32\drivers\downld\730515.exe

c:\windows\system32\drivers\downld\733250.exe

c:\windows\system32\drivers\downld\733703.exe

c:\windows\system32\drivers\downld\733921.exe

c:\windows\system32\drivers\downld\734984.exe

c:\windows\system32\drivers\downld\737000.exe

c:\windows\system32\drivers\downld\73708812.exe

c:\windows\system32\drivers\downld\73718015.exe

c:\windows\system32\drivers\downld\73742109.exe

c:\windows\system32\drivers\downld\737640.exe

c:\windows\system32\drivers\downld\73809421.exe

c:\windows\system32\drivers\downld\73825390.exe

c:\windows\system32\drivers\downld\73874984.exe

c:\windows\system32\drivers\downld\73881156.exe

c:\windows\system32\drivers\downld\73925984.exe

c:\windows\system32\drivers\downld\73938609.exe

c:\windows\system32\drivers\downld\73947875.exe

c:\windows\system32\drivers\downld\739890.exe

c:\windows\system32\drivers\downld\740250.exe

c:\windows\system32\drivers\downld\740421.exe

c:\windows\system32\drivers\downld\74088500.exe

c:\windows\system32\drivers\downld\74116140.exe

c:\windows\system32\drivers\downld\74164328.exe

c:\windows\system32\drivers\downld\742531.exe

c:\windows\system32\drivers\downld\74276515.exe

c:\windows\system32\drivers\downld\74314156.exe

c:\windows\system32\drivers\downld\74328796.exe

c:\windows\system32\drivers\downld\743625.exe

c:\windows\system32\drivers\downld\74380281.exe

c:\windows\system32\drivers\downld\74395843.exe

c:\windows\system32\drivers\downld\74410468.exe

c:\windows\system32\drivers\downld\744828.exe

c:\windows\system32\drivers\downld\746953.exe

c:\windows\system32\drivers\downld\748406.exe

c:\windows\system32\drivers\downld\749062.exe

c:\windows\system32\drivers\downld\749187.exe

c:\windows\system32\drivers\downld\749890.exe

c:\windows\system32\drivers\downld\752250.exe

c:\windows\system32\drivers\downld\753578.exe

c:\windows\system32\drivers\downld\754234.exe

c:\windows\system32\drivers\downld\755531.exe

c:\windows\system32\drivers\downld\756703.exe

c:\windows\system32\drivers\downld\758000.exe

c:\windows\system32\drivers\downld\758250.exe

c:\windows\system32\drivers\downld\761375.exe

c:\windows\system32\drivers\downld\762718.exe

c:\windows\system32\drivers\downld\763562.exe

c:\windows\system32\drivers\downld\7638984.exe

c:\windows\system32\drivers\downld\7650171.exe

c:\windows\system32\drivers\downld\7656812.exe

c:\windows\system32\drivers\downld\775296.exe

c:\windows\system32\drivers\downld\782437.exe

c:\windows\system32\drivers\downld\786031.exe

c:\windows\system32\drivers\downld\786234.exe

c:\windows\system32\drivers\downld\786828.exe

c:\windows\system32\drivers\downld\788734.exe

c:\windows\system32\drivers\downld\790578.exe

c:\windows\system32\drivers\downld\791687.exe

c:\windows\system32\drivers\downld\792484.exe

c:\windows\system32\drivers\downld\793109.exe

c:\windows\system32\drivers\downld\794406.exe

c:\windows\system32\drivers\downld\796593.exe

c:\windows\system32\drivers\downld\797250.exe

c:\windows\system32\drivers\downld\797750.exe

c:\windows\system32\drivers\downld\800671.exe

c:\windows\system32\drivers\downld\800781.exe

c:\windows\system32\drivers\downld\802484.exe

c:\windows\system32\drivers\downld\803015.exe

c:\windows\system32\drivers\downld\805109.exe

c:\windows\system32\drivers\downld\805265.exe

c:\windows\system32\drivers\downld\805375.exe

c:\windows\system32\drivers\downld\807640.exe

c:\windows\system32\drivers\downld\807734.exe

c:\windows\system32\drivers\downld\807875.exe

c:\windows\system32\drivers\downld\809109.exe

c:\windows\system32\drivers\downld\810984.exe

c:\windows\system32\drivers\downld\811078.exe

c:\windows\system32\drivers\downld\811453.exe

c:\windows\system32\drivers\downld\813015.exe

c:\windows\system32\drivers\downld\814234.exe

c:\windows\system32\drivers\downld\814781.exe

c:\windows\system32\drivers\downld\817265.exe

c:\windows\system32\drivers\downld\818343.exe

c:\windows\system32\drivers\downld\818640.exe

c:\windows\system32\drivers\downld\819484.exe

c:\windows\system32\drivers\downld\821906.exe

c:\windows\system32\drivers\downld\822125.exe

c:\windows\system32\drivers\downld\824125.exe

c:\windows\system32\drivers\downld\826296.exe

c:\windows\system32\drivers\downld\826593.exe

c:\windows\system32\drivers\downld\826906.exe

c:\windows\system32\drivers\downld\828046.exe

c:\windows\system32\drivers\downld\829515.exe

c:\windows\system32\drivers\downld\830796.exe

c:\windows\system32\drivers\downld\831406.exe

c:\windows\system32\drivers\downld\832281.exe

c:\windows\system32\drivers\downld\833781.exe

c:\windows\system32\drivers\downld\834125.exe

c:\windows\system32\drivers\downld\835843.exe

c:\windows\system32\drivers\downld\836140.exe

c:\windows\system32\drivers\downld\837343.exe

c:\windows\system32\drivers\downld\839781.exe

c:\windows\system32\drivers\downld\840750.exe

c:\windows\system32\drivers\downld\842984.exe

c:\windows\system32\drivers\downld\844250.exe

c:\windows\system32\drivers\downld\845171.exe

c:\windows\system32\drivers\downld\848265.exe

c:\windows\system32\drivers\downld\848468.exe

c:\windows\system32\drivers\downld\850359.exe

c:\windows\system32\drivers\downld\850562.exe

c:\windows\system32\drivers\downld\853218.exe

c:\windows\system32\drivers\downld\854031.exe

c:\windows\system32\drivers\downld\856828.exe

c:\windows\system32\drivers\downld\857281.exe

c:\windows\system32\drivers\downld\858656.exe

c:\windows\system32\drivers\downld\861656.exe

c:\windows\system32\drivers\downld\861968.exe

c:\windows\system32\drivers\downld\864437.exe

c:\windows\system32\drivers\downld\865062.exe

c:\windows\system32\drivers\downld\866625.exe

c:\windows\system32\drivers\downld\867296.exe

c:\windows\system32\drivers\downld\868109.exe

c:\windows\system32\drivers\downld\869406.exe

c:\windows\system32\drivers\downld\872656.exe

c:\windows\system32\drivers\downld\873718.exe

c:\windows\system32\drivers\downld\874984.exe

c:\windows\system32\drivers\downld\876125.exe

c:\windows\system32\drivers\downld\877203.exe

c:\windows\system32\drivers\downld\879828.exe

c:\windows\system32\drivers\downld\880546.exe

c:\windows\system32\drivers\downld\882218.exe

c:\windows\system32\drivers\downld\88366750.exe

c:\windows\system32\drivers\downld\883671.exe

c:\windows\system32\drivers\downld\88407171.exe

c:\windows\system32\drivers\downld\88426453.exe

c:\windows\system32\drivers\downld\88432718.exe

c:\windows\system32\drivers\downld\88468296.exe

c:\windows\system32\drivers\downld\88480984.exe

c:\windows\system32\drivers\downld\88490000.exe

c:\windows\system32\drivers\downld\886937.exe

c:\windows\system32\drivers\downld\887171.exe

c:\windows\system32\drivers\downld\88832656.exe

c:\windows\system32\drivers\downld\88849484.exe

c:\windows\system32\drivers\downld\88861593.exe

c:\windows\system32\drivers\downld\88902562.exe

c:\windows\system32\drivers\downld\88914359.exe

c:\windows\system32\drivers\downld\889328.exe

c:\windows\system32\drivers\downld\88965625.exe

c:\windows\system32\drivers\downld\88977375.exe

c:\windows\system32\drivers\downld\89042015.exe

c:\windows\system32\drivers\downld\89056515.exe

c:\windows\system32\drivers\downld\89076265.exe

c:\windows\system32\drivers\downld\892093.exe

c:\windows\system32\drivers\downld\892625.exe

c:\windows\system32\drivers\downld\894765.exe

c:\windows\system32\drivers\downld\896375.exe

c:\windows\system32\drivers\downld\898234.exe

c:\windows\system32\drivers\downld\899687.exe

c:\windows\system32\drivers\downld\9011109.exe

c:\windows\system32\drivers\downld\901437.exe

c:\windows\system32\drivers\downld\902109.exe

c:\windows\system32\drivers\downld\9022796.exe

c:\windows\system32\drivers\downld\9029250.exe

c:\windows\system32\drivers\downld\9034125.exe

c:\windows\system32\drivers\downld\9037750.exe

c:\windows\system32\drivers\downld\9039984.exe

c:\windows\system32\drivers\downld\9043796.exe

c:\windows\system32\drivers\downld\9047718.exe

c:\windows\system32\drivers\downld\9050640.exe

c:\windows\system32\drivers\downld\9053421.exe

c:\windows\system32\drivers\downld\905500.exe

c:\windows\system32\drivers\downld\9057718.exe

c:\windows\system32\drivers\downld\9062031.exe

c:\windows\system32\drivers\downld\9088000.exe

c:\windows\system32\drivers\downld\909156.exe

c:\windows\system32\drivers\downld\9093875.exe

c:\windows\system32\drivers\downld\9098265.exe

c:\windows\system32\drivers\downld\9105640.exe

c:\windows\system32\drivers\downld\9113828.exe

c:\windows\system32\drivers\downld\911562.exe

c:\windows\system32\drivers\downld\9122906.exe

c:\windows\system32\drivers\downld\9127125.exe

c:\windows\system32\drivers\downld\9132796.exe

c:\windows\system32\drivers\downld\9137078.exe

c:\windows\system32\drivers\downld\9139953.exe

c:\windows\system32\drivers\downld\9143531.exe

c:\windows\system32\drivers\downld\9146343.exe

c:\windows\system32\drivers\downld\9147875.exe

c:\windows\system32\drivers\downld\9150625.exe

c:\windows\system32\drivers\downld\9154984.exe

c:\windows\system32\drivers\downld\9159234.exe

c:\windows\system32\drivers\downld\916359.exe

c:\windows\system32\drivers\downld\9171375.exe

c:\windows\system32\drivers\downld\9182734.exe

c:\windows\system32\drivers\downld\9189859.exe

c:\windows\system32\drivers\downld\920046.exe

c:\windows\system32\drivers\downld\9217156.exe

c:\windows\system32\drivers\downld\9218953.exe

c:\windows\system32\drivers\downld\9222546.exe

c:\windows\system32\drivers\downld\922390.exe

c:\windows\system32\drivers\downld\9226828.exe

c:\windows\system32\drivers\downld\9228937.exe

c:\windows\system32\drivers\downld\9231812.exe

c:\windows\system32\drivers\downld\9234796.exe

c:\windows\system32\drivers\downld\9237562.exe

c:\windows\system32\drivers\downld\9240750.exe

c:\windows\system32\drivers\downld\9244015.exe

c:\windows\system32\drivers\downld\9246796.exe

c:\windows\system32\drivers\downld\924781.exe

c:\windows\system32\drivers\downld\9252578.exe

c:\windows\system32\drivers\downld\9258312.exe

c:\windows\system32\drivers\downld\9261171.exe

c:\windows\system32\drivers\downld\9263984.exe

c:\windows\system32\drivers\downld\9267546.exe

c:\windows\system32\drivers\downld\9271421.exe

c:\windows\system32\drivers\downld\9273984.exe

c:\windows\system32\drivers\downld\9276796.exe

c:\windows\system32\drivers\downld\9280281.exe

c:\windows\system32\drivers\downld\928062.exe

c:\windows\system32\drivers\downld\9283312.exe

c:\windows\system32\drivers\downld\9285390.exe

c:\windows\system32\drivers\downld\9286921.exe

c:\windows\system32\drivers\downld\9291875.exe

c:\windows\system32\drivers\downld\929531.exe

c:\windows\system32\drivers\downld\9295468.exe

c:\windows\system32\drivers\downld\9298328.exe

c:\windows\system32\drivers\downld\9300437.exe

c:\windows\system32\drivers\downld\9302593.exe

c:\windows\system32\drivers\downld\9306906.exe

c:\windows\system32\drivers\downld\9311250.exe

c:\windows\system32\drivers\downld\9315500.exe

c:\windows\system32\drivers\downld\9319734.exe

c:\windows\system32\drivers\downld\9322046.exe

c:\windows\system32\drivers\downld\9324109.exe

c:\windows\system32\drivers\downld\9326234.exe

c:\windows\system32\drivers\downld\9328437.exe

c:\windows\system32\drivers\downld\933812.exe

c:\windows\system32\drivers\downld\938937.exe

c:\windows\system32\drivers\downld\942312.exe

c:\windows\system32\drivers\downld\943687.exe

c:\windows\system32\drivers\downld\946109.exe

c:\windows\system32\drivers\downld\950796.exe

c:\windows\system32\drivers\downld\955531.exe

c:\windows\system32\drivers\downld\957921.exe

c:\windows\system32\drivers\downld\962578.exe

c:\windows\system32\drivers\downld\964968.exe

c:\windows\system32\drivers\downld\967343.exe

c:\windows\system32\drivers\downld\970734.exe

c:\windows\system32\drivers\hldrrr.exe

c:\windows\system32\drivers\mdelk.exe

c:\windows\system32\drivers\srosa.sys

c:\windows\system32\MabryObj.dll

c:\windows\system32\mdelk.exe

c:\windows\system32\wintems.exe

 

.

((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.

 

-------\Service_SROSA

-------\Legacy_SROSA

-------\Legacy_BOONTY_GAMES

-------\Service_Boonty Games

 

 

((((((((((((((((((((((((((((( Fichiers créés du 2009-02-18 au 2009-03-18 ))))))))))))))))))))))))))))))))))))

.

 

2009-03-18 06:02 . 2009-03-18 06:02 <REP> d-------- c:\windows\LastGood

2009-03-17 00:06 . 2009-03-17 00:06 <REP> d----c--- C:\rsit

2009-03-11 18:44 . 2009-03-12 07:09 <REP> d-------- c:\program files\EsetOnlineScanner

2009-03-11 12:41 . 2009-03-11 12:41 <REP> d-------- c:\program files\Defenza

2009-03-11 12:41 . 1996-08-20 20:37 15,840 --a------ c:\windows\system32\Machnm1.exe

2009-03-11 12:41 . 2005-09-25 16:37 5,632 --a------ c:\windows\system32\Machnm64.sys

2009-03-11 12:41 . 2009-03-11 12:41 3,120 --a------ c:\windows\system32\118290.54

2009-03-11 12:41 . 2009-03-11 12:41 3,120 --a------ c:\windows\118294.78

2009-03-11 12:41 . 2003-08-13 00:27 2,304 --a------ c:\windows\system32\Machnm32.sys

2009-03-11 10:51 . 2009-03-11 12:11 <REP> d-------- c:\windows\avxoscan

2009-03-11 09:23 . 2009-03-11 09:23 <REP> d-------- c:\program files\WOT

2009-03-11 02:34 . 2009-03-11 02:34 <REP> d-------- c:\program files\Windows Defender

2009-03-11 02:26 . 2009-03-11 02:26 <REP> d----c--- C:\fsaua.data

2009-03-11 02:22 . 2009-03-11 02:22 <REP> d-------- c:\program files\Update Services

2009-03-11 01:50 . 2009-03-11 11:30 <REP> d-------- c:\documents and settings\christophe.SN1006475\SecurityScans

2009-03-11 01:48 . 2009-03-11 01:48 <REP> d-------- c:\program files\Microsoft Baseline Security Analyzer 2

2009-03-11 01:45 . 2009-03-11 01:45 <REP> d-------- c:\program files\McafeeRootkitDetective

2009-03-10 18:51 . 2009-03-10 20:44 <REP> d----c--- C:\756ebbc6acbbe51a509140b77c43

2009-03-10 18:20 . 2009-03-10 18:20 <REP> d----c--- C:\679180b666ef33bd1acd4a13ce81605e

2009-03-09 18:39 . 2009-03-09 18:39 <REP> d----c--- C:\MFT 143762

2009-03-09 18:39 . 2009-03-09 18:39 <REP> d----c--- C:\MFT 123117

2009-03-09 13:56 . 2009-03-09 14:00 <REP> d-------- c:\program files\AxBx

2009-03-09 11:03 . 2009-03-09 11:03 <REP> d----c--- C:\00c1dd6213e4481ea3

2009-03-09 11:02 . 2009-03-09 11:03 <REP> d----c--- C:\f30a645f33c1db201701c677

2009-02-21 08:24 . 2009-02-21 08:24 <REP> d----c--- C:\lgupload

2009-02-21 08:20 . 2009-02-21 08:20 <REP> d-------- c:\documents and settings\christophe.SN1006475\Application Data\LG Electronics

2009-02-21 08:13 . 2009-02-21 08:13 <REP> d-------- c:\program files\LG Electronics

2009-02-21 08:13 . 2007-07-11 10:45 21,632 --a------ c:\windows\system32\drivers\lgusbmodem.sys

2009-02-21 08:13 . 2007-07-11 15:51 19,840 --a------ c:\windows\system32\drivers\lgusbdiag.sys

2009-02-21 08:13 . 2007-07-11 10:40 12,416 --a------ c:\windows\system32\drivers\lgusbbus.sys

2009-02-21 08:09 . 2009-02-21 08:10 <REP> d-------- c:\program files\LG PC Suite 2

2009-02-21 08:09 . 2009-02-21 08:09 <REP> d-------- c:\documents and settings\christophe.SN1006475\Application Data\InstallShield

2009-02-18 11:09 . 2009-02-18 11:10 <REP> d-------- c:\documents and settings\SOPHIE.SN100647590008\Application Data\Winamp

 

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2009-03-11 13:11 --------- d-----w c:\documents and settings\christophe.SN1006475\Application Data\OpenOffice.org2

2009-03-11 11:41 --------- d--h--w c:\program files\InstallShield Installation Information

2009-03-11 10:49 --------- d-----w c:\program files\Spybot - Search & Destroy

2009-03-11 10:49 --------- d-----w c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy

2009-03-11 08:42 --------- d-----w c:\program files\Java

2009-03-11 07:16 --------- d-----w c:\program files\Windows Live Safety Center

2009-03-11 03:16 --------- d-----w c:\documents and settings\All Users\Application Data\Symantec

2009-03-11 03:13 --------- d-----w c:\program files\Fichiers communs\Symantec Shared

2009-03-10 17:51 --------- d-----w c:\documents and settings\All Users\Application Data\Microsoft Help

2009-03-10 05:19 --------- d-----w c:\program files\CCleaner

2009-03-06 17:25 --------- d-----w c:\program files\TuneUp Utilities 2008

2009-03-05 02:06 --------- d-----w c:\program files\PeerGuardian2

2009-03-04 14:26 --------- d---a-w c:\program files\eMule.v0.48a.Applejuice.v2.0.1

2009-02-27 13:55 --------- d-----w c:\program files\Microsoft Silverlight

2009-02-23 09:07 --------- d-----w c:\documents and settings\christophe.SN1006475\Application Data\Media Player Classic

2009-02-22 13:25 --------- d-----w c:\documents and settings\SOPHIE.SN100647590008\Application Data\OpenOffice.org2

2009-01-29 22:35 --------- d-----w c:\program files\Fichiers communs\Adobe

2009-01-26 17:15 --------- d-----w c:\program files\Fichiers communs\Logitech

2008-10-31 20:47 2,853,682 ----a-w c:\program files\foobar2000_0.9.5.6.exe

2008-07-13 16:55 91,280 -c--a-w c:\documents and settings\christophe.SN1006475\Application Data\GDIPFONTCACHEV1.DAT

2007-04-05 05:39 87,608 -c--a-w c:\documents and settings\christophe.SN1006475\Application Data\ezpinst.exe

2007-04-05 05:39 47,360 -c--a-w c:\documents and settings\christophe.SN1006475\Application Data\pcouffin.sys

2006-11-30 15:34 57,115,310 -c--a-w c:\program files\openofficeorg3.cab

2006-11-30 15:34 3,293,189 -c--a-w c:\program files\openofficeorg4.cab

2006-11-30 15:25 15,519,277 -c--a-w c:\program files\openofficeorg2.cab

2006-11-30 15:22 18,447,022 -c--a-w c:\program files\openofficeorg1.cab

2006-11-30 15:17 5,298,688 -c--a-w c:\program files\openofficeorg21.msi

2006-11-30 15:17 217 -c--a-w c:\program files\setup.ini

2006-11-04 19:36 758,272 -c--a-w c:\program files\VirtualDub.exe

2006-11-04 19:36 120,328 -c--a-w c:\program files\VirtualDub.vdi

2006-11-04 19:35 7,738 -c--a-w c:\program files\vdub.exe

2006-11-04 19:34 210,423 -c--a-w c:\program files\VirtualDub.chm

2005-08-25 21:44 14,545 -c--a-w c:\program files\Codecs.ini

2005-08-25 20:17 929,280 -c--a-w c:\program files\VirtualDubMod.exe

2005-08-25 20:17 137,733 -c--a-w c:\program files\VirtualDubMod.vdi

2005-08-25 20:10 9,804 -c--a-w c:\program files\vdremote.dll

2005-08-25 20:10 40,960 -c--a-w c:\program files\AuxSetup.exe

2005-08-25 20:10 11,340 -c--a-w c:\program files\vdicmdrv.dll

2005-08-25 20:09 7,244 -c--a-w c:\program files\vdsvrlnk.dll

2004-09-12 11:22 615 -c--a-w c:\program files\VirtualDubMod.exe.manifest

2003-12-03 19:26 210,415 -c--a-w c:\program files\VirtualDubMod.chm

2003-12-01 22:11 74,186 -c--a-w c:\program files\VirtualDub.vdhelp

2003-10-01 16:31 18,321 -c--a-w c:\program files\copying

2003-04-25 22:29 146,944 -c--a-w c:\program files\SciLexer.dll

2003-03-17 19:41 1,263 -c--a-w c:\program files\readme_virtualdubmod_dlls.txt

2003-03-11 21:50 48,640 -c--a-w c:\program files\vorbis.dll

2003-03-11 21:10 20,992 -c--a-w c:\program files\ogg.dll

2003-03-10 15:42 125,440 -c--a-w c:\program files\corona.dll

2002-11-14 17:55 56,832 -c--a-w c:\program files\AviSynthLexer.lexer

2002-05-22 04:18 860 -c--a-w c:\program files\license_corona.txt

2002-03-11 09:06 1,822,520 -c--a-w c:\program files\instmsiw.exe

2002-03-11 08:45 1,708,856 -c--a-w c:\program files\instmsia.exe

2007-01-19 03:50 60,518 -c--a-w c:\program files\mozilla firefox\components\jar50.dll

2007-01-19 03:51 49,248 -c--a-w c:\program files\mozilla firefox\components\jsd3250.dll

2007-01-19 03:50 165,992 -c--a-w c:\program files\mozilla firefox\components\xpinstal.dll

2005-05-13 16:12 217,073 -csha-r c:\windows\meta4.exe

2007-01-16 18:30 56 -csh--r c:\windows\system32\1701ED2D90.sys

2005-07-14 11:31 27,648 -csha-r c:\windows\system32\AVSredirect.dll

2005-06-26 14:32 616,448 -csha-r c:\windows\system32\cygwin1.dll

2005-06-21 21:37 45,568 -csha-r c:\windows\system32\cygz.dll

2006-05-03 09:06 163,328 -csh--r c:\windows\system32\flvDX.dll

2004-01-24 23:00 70,656 --sha-r c:\windows\system32\i420vfw.dll

2007-07-22 07:30 848 -csha-w c:\windows\system32\KGyGaAvL.sys

2007-02-21 10:47 31,232 -csh--r c:\windows\system32\msfDX.dll

2005-02-28 12:16 240,128 -csha-r c:\windows\system32\x.264.exe

2004-01-25 16:18 70,656 -csha-w c:\windows\system32\yv12vfw.dll

2008-06-07 20:42 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\Historique\History.IE5\MSHist012008060720080608\index.dat

.

 

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Neuf Media Center"="c:\program files\Neuf\Media Center\MediaCenter.exe" [2007-10-15 1025264]

"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

"ccleaner"="c:\program files\CCleaner\ccleaner.exe" [2009-02-19 1471728]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ACTIVBOARD"="c:\apps\ABoard\ABoard.exe" [2003-05-02 24576]

"OFFICEKB"="c:\program files\Trust\DS-4500X Wireless Laser Deskset\Keyboard\kbdap32a.EXE" [2007-01-04 401920]

"FLMOFFICE4DMOUSE"="c:\program files\Trust\DS-4500X Wireless Laser Deskset\Mouse\mouse32a.exe" [2007-01-04 370176]

"ISUSPM Startup"="c:\progra~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 221184]

"LogitechCommunicationsManager"="c:\program files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" [2008-08-14 565008]

"LogitechQuickCamRibbon"="c:\program files\Logitech\QuickCam\Quickcam.exe" [2008-08-14 2407184]

"QuickTime Task"="c:\program files\QuickTime Alternative\qttask.exe" [2008-03-28 413696]

"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-05-01 185896]

"MMTray"="c:\program files\Musicmatch\Musicmatch Jukebox\mm_tray.exe" [2006-01-19 110592]

"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]

"WinampAgent"="c:\program files\Winamp\winampa.exe" [2008-07-09 36352]

"VirusKeeper"="c:\program files\AxBx\VirusKeeper 2009 Pro Evaluation\VirusKeeper.exe" [2009-03-16 3824512]

"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-01-17 148888]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

"Picasa Media Detector"="c:\program files\Picasa2\PicasaMediaDetector.exe" [2007-09-28 443968]

 

c:\documents and settings\SOPHIE.SN100647590008\Menu D‚marrer\Programmes\D‚marrage\

OpenOffice.org 2.4.lnk - c:\program files\OpenOffice.org 2.4\program\quickstart.exe [2008-01-21 393216]

 

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\

Logitech Desktop Messenger.lnk - c:\program files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe [2006-12-28 450560]

 

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]

Source= c:\documents and settings\christophe.SN1006475\Mes documents\Mes images\DSC00877.JPG

FriendlyName=

 

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\1]

Source= c:\documents and settings\christophe.SN1006475\Mes documents\Mes images\DSC00874.JPG

FriendlyName=

 

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\2]

Source= c:\documents and settings\christophe.SN1006475\Mes documents\Mes images\DSC00840.JPG

FriendlyName=

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"VIDC.I420"= i420vfw.dll

"vidc.3ivx"= 3ivxVfWCodec.dll

"vidc.3iv2"= 3ivxVfWCodec.dll

"msacm.divxa32"= divxa32.acm

"VIDC.HFYU"= huffyuv.dll

"VIDC.i263"= i263_32.drv

"msacm.imc"= imc32.acm

"VIDC.VP31"= vp31vfw.dll

"vidc.X264"= x264vfw.dll

"msacm.avis"= ff_acm.acm

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]

BootExecute REG_MULTI_SZ autocheck autochk *\0stera

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^DSLMON.lnk]

backup=c:\windows\pss\DSLMON.lnkCommon Startup

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LDM

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]

--a--c--- 2003-08-12 20:10 335872 c:\ati technologies\ATI Control Panel\atiptaxx.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp]

--a--c--- 2009-03-14 10:56 115816 c:\program files\Fichiers communs\Symantec Shared\ccApp.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccRegVfy]

--a--c--- 2002-11-19 15:24 59056 c:\program files\Fichiers communs\Symantec Shared\ccRegVfy.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DMXLauncher]

--a--c--- 2006-08-14 01:07 102400 c:\program files\Roxio\Media Experience\DMXLauncher.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MimBoot]

--a--c--- 2006-01-19 11:06 11776 c:\progra~1\MUSICM~1\MUSICM~1\mimboot.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray]

--a------ 2006-01-19 11:06 110592 c:\program files\Musicmatch\Musicmatch Jukebox\mm_tray.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]

--a--c--- 2007-01-19 12:55 5674352 c:\program files\MSN Messenger\msnmsgr.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\osCheck]

--a--c--- 2009-03-16 01:57 26248 c:\program files\Norton AntiVirus\osCheck.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector]

--a------ 2007-09-28 02:17 443968 c:\program files\Picasa2\PicasaMediaDetector.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxioDragToDisc]

--a--c--- 2006-07-31 09:00 1116920 c:\program files\Roxio\Drag-to-Disc\DrgToDsc.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray]

--a--c--- 2006-08-10 12:10 221184 c:\program files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]

--a------ 2008-05-01 17:31 185896 c:\program files\Fichiers communs\Real\Update_OB\realsched.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]

--a------ 2008-07-09 22:33 36352 c:\program files\Winamp\winampa.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]

"Boonty Games"=3 (0x3)

"SymAppCore"=2 (0x2)

"Symantec Core LC"=3 (0x3)

"LiveUpdate Notice Service"=2 (0x2)

"LiveUpdate Notice Ex"=2 (0x2)

"LiveUpdate"=3 (0x3)

"ISPwdSvc"=3 (0x3)

"CLTNetCnService"=2 (0x2)

"ccSetMgr"=2 (0x2)

"ccEvtMgr"=2 (0x2)

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"

"ctfmon.exe"=c:\windows\system32\ctfmon.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]

"eCarteBleue-BP"="c:\program files\e-Carte Bleue\Banque Populaire\ECB-BP.exe" /dontopenmycards

"mm_server"="c:\program files\Musicmatch\Musicmatch Jukebox\mm_server.exe"

"ISUSScheduler"="c:\program files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start

"ISUSPM Startup"=c:\progra~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup

"SoundMan"=SOUNDMAN.EXE

"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot

"MMTray"="c:\program files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"AntiVirusDisableNotify"=dword:00000001

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]

"DisableMonitoring"=dword:00000001

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]

"DisableMonitoring"=dword:00000001

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]

"DisableMonitoring"=dword:00000001

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=

"c:\\Program Files\\DivX\\DivX Player\\DivX Player.exe"=

"c:\\Program Files\\Fichiers communs\\aolshare\\sysinfo\\sinf.exe"=

"c:\\WINDOWS\\system32\\mmc.exe"=

"c:\\Program Files\\Shareaza\\Shareaza.exe"=

"c:\\Program Files\\Messenger\\msmsgs.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"c:\\Program Files\\eMule.v0.48a.Applejuice.v2.0.1\\emule.exe"=

"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=

"c:\\Program Files\\iTunes\\iTunes.exe"=

"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=

"c:\\Program Files\\MSN Messenger\\livecall.exe"=

"c:\\Program Files\\eMule.v0.48a.Applejuice.v2.0.1\\eMule Applejuice\\emule.exe"=

"c:\program files\Neuf\Media Center\httpd\httpd.exe"= c:\program files\Neuf\Media Center\httpd\httpd.exe:172.16.255.0/255.255.255.0,192.168.1.2/255.255.255.255:Enabled:Serveur de partage Media Center (Player Neuf Cegetel)

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]

"57438:TCP"= 57438:TCP:Azureus

"57438:UDP"= 57438:UDP:Azureus

"22974:TCP"= 22974:TCP:eMule TCP

"9547:TCP"= 9547:TCP:eMule UDP

 

R1 Asapi;Asapi;c:\windows\system32\drivers\asapi.sys [2003-10-07 11264]

R1 c2scsi;c2scsi;c:\windows\system32\drivers\c2scsi.sys [2007-08-05 241664]

R1 vcsmpdrv;vcsmpdrv;c:\windows\system32\drivers\vcsmpdrv.sys [2003-10-07 49232]

R2 VCSSecS;Virtual CD v4 Security service (SDK - Version);c:\program files\Virtual CD v4 SDK\System\vcssecs.exe [2003-10-07 139264]

R2 vkservice;VirusKeeper antivirus/antispyware;c:\program files\AxBx\VirusKeeper 2009 Pro Evaluation\vk_service.exe [2008-09-26 1119584]

S4 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [2006-11-03 13592]

 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

UxTuneUp

.

Contenu du dossier 'Tâches planifiées'

 

2009-03-14 c:\windows\Tasks\AppleSoftwareUpdate.job

- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 13:57]

 

2009-03-18 c:\windows\Tasks\Maintenance en 1 clic.job

- c:\program files\TuneUp Utilities 2008\OneClickStarter.exe [2008-03-03 09:42]

 

2009-03-18 c:\windows\Tasks\MP Scheduled Scan.job

- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 19:20]

 

2009-03-16 c:\windows\Tasks\Norton AntiVirus - Analyse système complète - christophe.SN1006475.job

- c:\progra~1\NORTON~1\Navw32.exe [2009-03-17 01:06]

 

2009-03-18 c:\windows\Tasks\RegCure Program Check.job

- c:\program files\RegCure\RegCure.exe [2008-04-21 22:21]

 

2009-03-12 c:\windows\Tasks\RegCure.job

- c:\program files\RegCure\RegCure.exe [2008-04-21 22:21]

 

2009-03-17 c:\windows\Tasks\User_Feed_Synchronization-{1050FBD2-23BA-4551-831E-6B72F17466F3}.job

- c:\windows\system32\msfeedssync.exe [2007-08-13 17:36]

 

2009-03-18 c:\windows\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job

- c:\program files\Windows Live Toolbar\MSNTBUP.EXE [2007-10-19 11:20]

.

- - - - ORPHELINS SUPPRIMES - - - -

 

HKCU-Run-LDM - c:\program files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe

 

 

.

------- Examen supplémentaire -------

.

uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8

uStart Page = hxxp://www.neufportail.fr/

uInternet Settings,ProxyOverride = localhost;*.local

uSearchURL,(Default) = hxxp://www.google.com/search?q=%s

Trusted Zone: eset.com\www

Trusted Zone: java.com\www

Trusted Zone: secuser.com\www

DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab

DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab

DPF: {9D3AA934-55FA-4373-96FD-ED7787E4F161} - hxxps://collectionsbmu.ville-ge.ch/Components/WindowsHooker.dll

FF - ProfilePath -

 

---- PARAMETRES FIREFOX ----

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.cookie.p3plevel", 1); // 0=low, 1=medium, 2=high, 3=custom

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.enablePad", false); // Allow client to do proxy autodiscovery

c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.search.param.Google.1.default", "chrome://branding/content/searchconfig.properties");

c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.search.param.Google.1.custom", "chrome://branding/content/searchconfig.properties");

.

 

**************************************************************************

 

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2009-03-18 06:13:56

Windows 5.1.2600 Service Pack 3 NTFS

 

Recherche de processus cachés ...

 

Recherche d'éléments en démarrage automatique cachés ...

 

Recherche de fichiers cachés ...

 

Scan terminé avec succès

Fichiers cachés: 0

 

**************************************************************************

.

--------------------- CLES DE REGISTRE BLOQUEES ---------------------

 

[HKEY_USERS\S-1-5-21-2307018245-1465403579-252423984-1007\Software\Microsoft\SystemCertificates\AddressBook*]

@Allowed: (Read) (RestrictedCode)

@Allowed: (Read) (RestrictedCode)

@SACL=

 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{53c1be49-d401-41c2-b7c0-cd34ec48a086}]

@Denied: (Full) (Everyone)

"Model"=dword:00000020

"Therad"=dword:0000001e

"MData"=hex(0):2b,8f,78,29,5a,0c,ce,ec,48,d4,68,e5,9f,6a,96,3e,ab,de,c5,81,26,

38,95,44,ff,25,5b,70,e9,89,02,32,a1,dc,95,7b,71,fe,7a,d3,75,c0,90,48,62,87,\

 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]

@Denied: (Full) (Everyone)

"scansk"=hex(0):4e,ff,5e,b3,e1,4f,64,5b,7e,e1,b9,28,dd,33,c0,0c,52,df,02,8e,25,

74,ee,dd,2c,2c,fa,22,ef,66,f1,9a,5f,1c,0f,74,6c,ce,30,b5,00,00,00,00,00,00,\

.

--------------------- DLLs chargées dans les processus actifs ---------------------

 

- - - - - - - > 'winlogon.exe'(676)

c:\windows\system32\Ati2evxx.dll

.

------------------------ Autres processus actifs ------------------------

.

c:\program files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe

c:\program files\Bonjour\mDNSResponder.exe

c:\windows\system32\dllhost.exe

c:\program files\Java\jre6\bin\jqs.exe

c:\program files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe

c:\program files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe

c:\program files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe

c:\program files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE

c:\program files\Symantec\LiveUpdate\AluSchedulerSvc.exe

c:\program files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe

c:\windows\system32\vssvc.exe

c:\windows\wanmpsvc.exe

c:\program files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe

c:\apps\ABoard\AOSD.EXE

c:\program files\Neuf\Media Center\httpd\httpd.exe

c:\program files\Neuf\Media Center\httpd\httpd.exe

c:\program files\Fichiers communs\LogiShrd\LQCVFX\COCIManager.exe

.

**************************************************************************

.

Heure de fin: 2009-03-18 6:24:43 - La machine a redémarré

ComboFix-quarantined-files.txt 2009-03-18 05:24:38

 

Avant-CF: 10,556,960,768 octets libres

Après-CF: 10,897,301,504 octets libres

 

1964 --- E O F --- 2009-03-18 05:02:35

 

(...) Rapport CF en doublon : Edité par Gof.

 

maitenant l'analyse RITS

 

(...) Rapport CF en triple : Edité par Gof.

 

 

encore désolé pour la l0ngeur.

Lien vers le commentaire
Partager sur d’autres sites

Bonsoir kalchrof :P

 

Eh bien... Tu ne dois pas ignorer que Bagle s'attrape essentiellement avec des cracks. As-tu vu à quoi ressemble ton système ? Vu le pavé de fichiers infectieux, c'est étonnant que tu n'ais pas eu d'avantage de disfonctionnements ; tu as eu beaucoup de chance. J'espère que cela te servira de leçon.

 

Tu m'as dit que tu postais le rapport RSIT, mais tu as posté 3 fois le rapport ComboFix en fait. Ce n'est pas grave. Relance à nouveau ComboFix, et poste moi le nouveau rapport généré.

Lien vers le commentaire
Partager sur d’autres sites

salut à toi ô grand Gof Suprème, et encore merci de consacrer ton temps à mon pb.

je n'a tjrs pas reinstaller d'antivirus...j'ai cru comprendre qu'Antivir +spybot etait une bonne combinaison?

voici le rapport combo-fix

 

ComboFix 09-03-15.01 - christophe.SN1006475 2009-03-18 23:20:03.2 - NTFSx86

Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.1023.563 [GMT 1:00]

Lancé depuis: c:\documents and settings\christophe.SN1006475\Bureau\Combo-Fix.exe

AV: Norton AntiVirus *On-access scanning enabled* (Updated)

FW: Norton AntiVirus *enabled*

.

 

((((((((((((((((((((((((((((( Fichiers créés du 2009-02-18 au 2009-03-18 ))))))))))))))))))))))))))))))))))))

.

 

2009-03-18 17:14 . 2009-03-18 18:25 <REP> d-------- c:\program files\trend micro

2009-03-18 06:02 . 2009-03-18 06:02 <REP> d-------- c:\windows\LastGood

2009-03-17 00:06 . 2009-03-18 18:26 <REP> d----c--- C:\rsit

2009-03-11 18:44 . 2009-03-12 07:09 <REP> d-------- c:\program files\EsetOnlineScanner

2009-03-11 12:41 . 2009-03-11 12:41 <REP> d-------- c:\program files\Defenza

2009-03-11 12:41 . 1996-08-20 20:37 15,840 --a------ c:\windows\system32\Machnm1.exe

2009-03-11 12:41 . 2005-09-25 16:37 5,632 --a------ c:\windows\system32\Machnm64.sys

2009-03-11 12:41 . 2009-03-11 12:41 3,120 --a------ c:\windows\system32\118290.54

2009-03-11 12:41 . 2009-03-11 12:41 3,120 --a------ c:\windows\118294.78

2009-03-11 12:41 . 2003-08-13 00:27 2,304 --a------ c:\windows\system32\Machnm32.sys

2009-03-11 10:51 . 2009-03-11 12:11 <REP> d-------- c:\windows\avxoscan

2009-03-11 09:23 . 2009-03-11 09:23 <REP> d-------- c:\program files\WOT

2009-03-11 02:34 . 2009-03-11 02:34 <REP> d-------- c:\program files\Windows Defender

2009-03-11 02:26 . 2009-03-11 02:26 <REP> d----c--- C:\fsaua.data

2009-03-11 02:22 . 2009-03-11 02:22 <REP> d-------- c:\program files\Update Services

2009-03-11 01:50 . 2009-03-11 11:30 <REP> d-------- c:\documents and settings\christophe.SN1006475\SecurityScans

2009-03-11 01:48 . 2009-03-11 01:48 <REP> d-------- c:\program files\Microsoft Baseline Security Analyzer 2

2009-03-11 01:45 . 2009-03-11 01:45 <REP> d-------- c:\program files\McafeeRootkitDetective

2009-03-10 18:51 . 2009-03-10 20:44 <REP> d----c--- C:\756ebbc6acbbe51a509140b77c43

2009-03-10 18:20 . 2009-03-10 18:20 <REP> d----c--- C:\679180b666ef33bd1acd4a13ce81605e

2009-03-09 18:39 . 2009-03-09 18:39 <REP> d----c--- C:\MFT 143762

2009-03-09 18:39 . 2009-03-09 18:39 <REP> d----c--- C:\MFT 123117

2009-03-09 13:56 . 2009-03-09 14:00 <REP> d-------- c:\program files\AxBx

2009-03-09 11:03 . 2009-03-09 11:03 <REP> d----c--- C:\00c1dd6213e4481ea3

2009-03-09 11:02 . 2009-03-09 11:03 <REP> d----c--- C:\f30a645f33c1db201701c677

2009-02-21 08:24 . 2009-02-21 08:24 <REP> d----c--- C:\lgupload

2009-02-21 08:20 . 2009-02-21 08:20 <REP> d-------- c:\documents and settings\christophe.SN1006475\Application Data\LG Electronics

2009-02-21 08:13 . 2009-02-21 08:13 <REP> d-------- c:\program files\LG Electronics

2009-02-21 08:13 . 2007-07-11 10:45 21,632 --a------ c:\windows\system32\drivers\lgusbmodem.sys

2009-02-21 08:13 . 2007-07-11 15:51 19,840 --a------ c:\windows\system32\drivers\lgusbdiag.sys

2009-02-21 08:13 . 2007-07-11 10:40 12,416 --a------ c:\windows\system32\drivers\lgusbbus.sys

2009-02-21 08:09 . 2009-02-21 08:10 <REP> d-------- c:\program files\LG PC Suite 2

2009-02-21 08:09 . 2009-02-21 08:09 <REP> d-------- c:\documents and settings\christophe.SN1006475\Application Data\InstallShield

2009-02-18 11:09 . 2009-02-18 11:10 <REP> d-------- c:\documents and settings\SOPHIE.SN100647590008\Application Data\Winamp

 

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2009-03-11 13:11 --------- d-----w c:\documents and settings\christophe.SN1006475\Application Data\OpenOffice.org2

2009-03-11 11:41 --------- d--h--w c:\program files\InstallShield Installation Information

2009-03-11 10:49 --------- d-----w c:\program files\Spybot - Search & Destroy

2009-03-11 10:49 --------- d-----w c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy

2009-03-11 08:42 --------- d-----w c:\program files\Java

2009-03-11 07:16 --------- d-----w c:\program files\Windows Live Safety Center

2009-03-11 03:16 --------- d-----w c:\documents and settings\All Users\Application Data\Symantec

2009-03-11 03:13 --------- d-----w c:\program files\Fichiers communs\Symantec Shared

2009-03-10 17:51 --------- d-----w c:\documents and settings\All Users\Application Data\Microsoft Help

2009-03-10 05:19 --------- d-----w c:\program files\CCleaner

2009-03-06 17:25 --------- d-----w c:\program files\TuneUp Utilities 2008

2009-03-05 02:06 --------- d-----w c:\program files\PeerGuardian2

2009-03-04 14:26 --------- d---a-w c:\program files\eMule.v0.48a.Applejuice.v2.0.1

2009-02-27 13:55 --------- d-----w c:\program files\Microsoft Silverlight

2009-02-23 09:07 --------- d-----w c:\documents and settings\christophe.SN1006475\Application Data\Media Player Classic

2009-02-22 13:25 --------- d-----w c:\documents and settings\SOPHIE.SN100647590008\Application Data\OpenOffice.org2

2009-01-29 22:35 --------- d-----w c:\program files\Fichiers communs\Adobe

2009-01-26 17:15 --------- d-----w c:\program files\Fichiers communs\Logitech

2009-01-17 12:29 410,984 ----a-w c:\windows\system32\deploytk.dll

2009-01-16 20:15 3,594,752 ----a-w c:\windows\system32\dllcache\mshtml.dll

2008-12-20 22:47 826,368 ----a-w c:\windows\system32\wininet.dll

2008-12-20 22:47 826,368 ----a-w c:\windows\system32\dllcache\wininet.dll

2008-12-20 22:47 671,232 ----a-w c:\windows\system32\dllcache\mstime.dll

2008-12-20 22:47 477,696 ----a-w c:\windows\system32\dllcache\mshtmled.dll

2008-12-20 22:47 44,544 ----a-w c:\windows\system32\dllcache\pngfilt.dll

2008-12-20 22:47 233,472 ------w c:\windows\system32\dllcache\webcheck.dll

2008-12-20 22:47 193,024 ----a-w c:\windows\system32\dllcache\msrating.dll

2008-12-20 22:47 105,984 ------w c:\windows\system32\dllcache\url.dll

2008-12-20 22:47 102,912 ------w c:\windows\system32\dllcache\occache.dll

2008-12-20 22:47 1,160,192 ----a-w c:\windows\system32\dllcache\urlmon.dll

2008-12-19 09:11 70,656 ----a-w c:\windows\system32\dllcache\ie4uinit.exe

2008-12-19 09:10 13,824 ------w c:\windows\system32\dllcache\ieudinit.exe

2008-12-19 05:25 634,024 ------w c:\windows\system32\dllcache\iexplore.exe

2008-12-19 05:23 161,792 ----a-w c:\windows\system32\dllcache\ieakui.dll

2008-10-31 20:47 2,853,682 ----a-w c:\program files\foobar2000_0.9.5.6.exe

2008-07-13 16:55 91,280 -c--a-w c:\documents and settings\christophe.SN1006475\Application Data\GDIPFONTCACHEV1.DAT

2007-04-05 05:39 87,608 -c--a-w c:\documents and settings\christophe.SN1006475\Application Data\ezpinst.exe

2007-04-05 05:39 47,360 -c--a-w c:\documents and settings\christophe.SN1006475\Application Data\pcouffin.sys

2006-11-30 15:34 57,115,310 -c--a-w c:\program files\openofficeorg3.cab

2006-11-30 15:34 3,293,189 -c--a-w c:\program files\openofficeorg4.cab

2006-11-30 15:25 15,519,277 -c--a-w c:\program files\openofficeorg2.cab

2006-11-30 15:22 18,447,022 -c--a-w c:\program files\openofficeorg1.cab

2006-11-30 15:17 5,298,688 -c--a-w c:\program files\openofficeorg21.msi

2006-11-30 15:17 217 -c--a-w c:\program files\setup.ini

2006-11-04 19:36 758,272 -c--a-w c:\program files\VirtualDub.exe

2006-11-04 19:36 120,328 -c--a-w c:\program files\VirtualDub.vdi

2006-11-04 19:35 7,738 -c--a-w c:\program files\vdub.exe

2006-11-04 19:34 210,423 -c--a-w c:\program files\VirtualDub.chm

2005-08-25 21:44 14,545 -c--a-w c:\program files\Codecs.ini

2005-08-25 20:17 929,280 -c--a-w c:\program files\VirtualDubMod.exe

2005-08-25 20:17 137,733 -c--a-w c:\program files\VirtualDubMod.vdi

2005-08-25 20:10 9,804 -c--a-w c:\program files\vdremote.dll

2005-08-25 20:10 40,960 -c--a-w c:\program files\AuxSetup.exe

2005-08-25 20:10 11,340 -c--a-w c:\program files\vdicmdrv.dll

2005-08-25 20:09 7,244 -c--a-w c:\program files\vdsvrlnk.dll

2004-09-12 11:22 615 -c--a-w c:\program files\VirtualDubMod.exe.manifest

2003-12-03 19:26 210,415 -c--a-w c:\program files\VirtualDubMod.chm

2003-12-01 22:11 74,186 -c--a-w c:\program files\VirtualDub.vdhelp

2003-10-01 16:31 18,321 -c--a-w c:\program files\copying

2003-04-25 22:29 146,944 -c--a-w c:\program files\SciLexer.dll

2003-03-17 19:41 1,263 -c--a-w c:\program files\readme_virtualdubmod_dlls.txt

2003-03-11 21:50 48,640 -c--a-w c:\program files\vorbis.dll

2003-03-11 21:10 20,992 -c--a-w c:\program files\ogg.dll

2003-03-10 15:42 125,440 -c--a-w c:\program files\corona.dll

2002-11-14 17:55 56,832 -c--a-w c:\program files\AviSynthLexer.lexer

2002-05-22 04:18 860 -c--a-w c:\program files\license_corona.txt

2002-03-11 09:06 1,822,520 -c--a-w c:\program files\instmsiw.exe

2002-03-11 08:45 1,708,856 -c--a-w c:\program files\instmsia.exe

2007-01-19 03:50 60,518 -c--a-w c:\program files\mozilla firefox\components\jar50.dll

2007-01-19 03:51 49,248 -c--a-w c:\program files\mozilla firefox\components\jsd3250.dll

2007-01-19 03:50 165,992 -c--a-w c:\program files\mozilla firefox\components\xpinstal.dll

2005-05-13 16:12 217,073 -csha-r c:\windows\meta4.exe

2007-01-16 18:30 56 -csh--r c:\windows\system32\1701ED2D90.sys

2005-07-14 11:31 27,648 -csha-r c:\windows\system32\AVSredirect.dll

2005-06-26 14:32 616,448 -csha-r c:\windows\system32\cygwin1.dll

2005-06-21 21:37 45,568 -csha-r c:\windows\system32\cygz.dll

2006-05-03 09:06 163,328 -csh--r c:\windows\system32\flvDX.dll

2004-01-24 23:00 70,656 --sha-r c:\windows\system32\i420vfw.dll

2007-07-22 07:30 848 -csha-w c:\windows\system32\KGyGaAvL.sys

2007-02-21 10:47 31,232 -csh--r c:\windows\system32\msfDX.dll

2005-02-28 12:16 240,128 -csha-r c:\windows\system32\x.264.exe

2004-01-25 16:18 70,656 -csha-w c:\windows\system32\yv12vfw.dll

2008-06-07 20:42 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\Historique\History.IE5\MSHist012008060720080608\index.dat

.

 

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Neuf Media Center"="c:\program files\Neuf\Media Center\MediaCenter.exe" [2007-10-15 1025264]

"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

"ccleaner"="c:\program files\CCleaner\ccleaner.exe" [2009-02-19 1471728]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ACTIVBOARD"="c:\apps\ABoard\ABoard.exe" [2003-05-02 24576]

"OFFICEKB"="c:\program files\Trust\DS-4500X Wireless Laser Deskset\Keyboard\kbdap32a.EXE" [2007-01-04 401920]

"FLMOFFICE4DMOUSE"="c:\program files\Trust\DS-4500X Wireless Laser Deskset\Mouse\mouse32a.exe" [2007-01-04 370176]

"ISUSPM Startup"="c:\progra~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 221184]

"LogitechCommunicationsManager"="c:\program files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" [2008-08-14 565008]

"LogitechQuickCamRibbon"="c:\program files\Logitech\QuickCam\Quickcam.exe" [2008-08-14 2407184]

"QuickTime Task"="c:\program files\QuickTime Alternative\qttask.exe" [2008-03-28 413696]

"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-05-01 185896]

"MMTray"="c:\program files\Musicmatch\Musicmatch Jukebox\mm_tray.exe" [2006-01-19 110592]

"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]

"WinampAgent"="c:\program files\Winamp\winampa.exe" [2008-07-09 36352]

"VirusKeeper"="c:\program files\AxBx\VirusKeeper 2009 Pro Evaluation\VirusKeeper.exe" [2009-03-16 3824512]

"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-01-17 148888]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

"Picasa Media Detector"="c:\program files\Picasa2\PicasaMediaDetector.exe" [2007-09-28 443968]

 

c:\documents and settings\SOPHIE.SN100647590008\Menu D‚marrer\Programmes\D‚marrage\

OpenOffice.org 2.4.lnk - c:\program files\OpenOffice.org 2.4\program\quickstart.exe [2008-01-21 393216]

 

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\

Logitech Desktop Messenger.lnk - c:\program files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe [2006-12-28 450560]

 

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]

Source= c:\documents and settings\christophe.SN1006475\Mes documents\Mes images\DSC00877.JPG

FriendlyName=

 

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\1]

Source= c:\documents and settings\christophe.SN1006475\Mes documents\Mes images\DSC00874.JPG

FriendlyName=

 

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\2]

Source= c:\documents and settings\christophe.SN1006475\Mes documents\Mes images\DSC00840.JPG

FriendlyName=

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"VIDC.I420"= i420vfw.dll

"vidc.3ivx"= 3ivxVfWCodec.dll

"vidc.3iv2"= 3ivxVfWCodec.dll

"msacm.divxa32"= divxa32.acm

"VIDC.HFYU"= huffyuv.dll

"VIDC.i263"= i263_32.drv

"msacm.imc"= imc32.acm

"VIDC.VP31"= vp31vfw.dll

"vidc.X264"= x264vfw.dll

"msacm.avis"= ff_acm.acm

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]

BootExecute REG_MULTI_SZ autocheck autochk *\0stera

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^DSLMON.lnk]

backup=c:\windows\pss\DSLMON.lnkCommon Startup

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]

--a--c--- 2003-08-12 20:10 335872 c:\ati technologies\ATI Control Panel\atiptaxx.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp]

--a--c--- 2009-03-14 10:56 115816 c:\program files\Fichiers communs\Symantec Shared\ccApp.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccRegVfy]

--a--c--- 2002-11-19 15:24 59056 c:\program files\Fichiers communs\Symantec Shared\ccRegVfy.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DMXLauncher]

--a--c--- 2006-08-14 01:07 102400 c:\program files\Roxio\Media Experience\DMXLauncher.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MimBoot]

--a--c--- 2006-01-19 11:06 11776 c:\progra~1\MUSICM~1\MUSICM~1\mimboot.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray]

--a------ 2006-01-19 11:06 110592 c:\program files\Musicmatch\Musicmatch Jukebox\mm_tray.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]

--a--c--- 2007-01-19 12:55 5674352 c:\program files\MSN Messenger\msnmsgr.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\osCheck]

--a--c--- 2009-03-16 01:57 26248 c:\program files\Norton AntiVirus\osCheck.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector]

--a------ 2007-09-28 02:17 443968 c:\program files\Picasa2\PicasaMediaDetector.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxioDragToDisc]

--a--c--- 2006-07-31 09:00 1116920 c:\program files\Roxio\Drag-to-Disc\DrgToDsc.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray]

--a--c--- 2006-08-10 12:10 221184 c:\program files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]

--a------ 2008-05-01 17:31 185896 c:\program files\Fichiers communs\Real\Update_OB\realsched.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]

--a------ 2008-07-09 22:33 36352 c:\program files\Winamp\winampa.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]

"Boonty Games"=3 (0x3)

"SymAppCore"=2 (0x2)

"Symantec Core LC"=3 (0x3)

"LiveUpdate Notice Service"=2 (0x2)

"LiveUpdate Notice Ex"=2 (0x2)

"LiveUpdate"=3 (0x3)

"ISPwdSvc"=3 (0x3)

"CLTNetCnService"=2 (0x2)

"ccSetMgr"=2 (0x2)

"ccEvtMgr"=2 (0x2)

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"

"ctfmon.exe"=c:\windows\system32\ctfmon.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]

"eCarteBleue-BP"="c:\program files\e-Carte Bleue\Banque Populaire\ECB-BP.exe" /dontopenmycards

"mm_server"="c:\program files\Musicmatch\Musicmatch Jukebox\mm_server.exe"

"ISUSScheduler"="c:\program files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start

"ISUSPM Startup"=c:\progra~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup

"SoundMan"=SOUNDMAN.EXE

"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot

"MMTray"="c:\program files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"AntiVirusDisableNotify"=dword:00000001

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]

"DisableMonitoring"=dword:00000001

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]

"DisableMonitoring"=dword:00000001

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]

"DisableMonitoring"=dword:00000001

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=

"c:\\Program Files\\DivX\\DivX Player\\DivX Player.exe"=

"c:\\Program Files\\Fichiers communs\\aolshare\\sysinfo\\sinf.exe"=

"c:\\WINDOWS\\system32\\mmc.exe"=

"c:\\Program Files\\Shareaza\\Shareaza.exe"=

"c:\\Program Files\\Messenger\\msmsgs.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"c:\\Program Files\\eMule.v0.48a.Applejuice.v2.0.1\\emule.exe"=

"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=

"c:\\Program Files\\iTunes\\iTunes.exe"=

"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=

"c:\\Program Files\\MSN Messenger\\livecall.exe"=

"c:\\Program Files\\eMule.v0.48a.Applejuice.v2.0.1\\eMule Applejuice\\emule.exe"=

"c:\program files\Neuf\Media Center\httpd\httpd.exe"= c:\program files\Neuf\Media Center\httpd\httpd.exe:172.16.255.0/255.255.255.0,192.168.1.2/255.255.255.255:Enabled:Serveur de partage Media Center (Player Neuf Cegetel)

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]

"57438:TCP"= 57438:TCP:Azureus

"57438:UDP"= 57438:UDP:Azureus

"22974:TCP"= 22974:TCP:eMule TCP

"9547:TCP"= 9547:TCP:eMule UDP

 

R1 Asapi;Asapi;c:\windows\system32\drivers\asapi.sys [2003-10-07 11264]

R1 c2scsi;c2scsi;c:\windows\system32\drivers\c2scsi.sys [2007-08-05 241664]

R1 vcsmpdrv;vcsmpdrv;c:\windows\system32\drivers\vcsmpdrv.sys [2003-10-07 49232]

R2 VCSSecS;Virtual CD v4 Security service (SDK - Version);c:\program files\Virtual CD v4 SDK\System\vcssecs.exe [2003-10-07 139264]

R2 vkservice;VirusKeeper antivirus/antispyware;c:\program files\AxBx\VirusKeeper 2009 Pro Evaluation\vk_service.exe [2008-09-26 1119584]

S4 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [2006-11-03 13592]

 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

UxTuneUp

.

Contenu du dossier 'Tâches planifiées'

 

2009-03-14 c:\windows\Tasks\AppleSoftwareUpdate.job

- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 13:57]

 

2009-03-18 c:\windows\Tasks\Maintenance en 1 clic.job

- c:\program files\TuneUp Utilities 2008\OneClickStarter.exe [2008-03-03 09:42]

 

2009-03-18 c:\windows\Tasks\MP Scheduled Scan.job

- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 19:20]

 

2009-03-18 c:\windows\Tasks\Norton AntiVirus - Analyse système complète - christophe.SN1006475.job

- c:\progra~1\NORTON~1\Navw32.exe [2009-03-17 01:06]

 

2009-03-18 c:\windows\Tasks\RegCure Program Check.job

- c:\program files\RegCure\RegCure.exe [2008-04-21 22:21]

 

2009-03-12 c:\windows\Tasks\RegCure.job

- c:\program files\RegCure\RegCure.exe [2008-04-21 22:21]

 

2009-03-18 c:\windows\Tasks\User_Feed_Synchronization-{1050FBD2-23BA-4551-831E-6B72F17466F3}.job

- c:\windows\system32\msfeedssync.exe [2007-08-13 17:36]

 

2009-03-18 c:\windows\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job

- c:\program files\Windows Live Toolbar\MSNTBUP.EXE [2007-10-19 11:20]

.

.

------- Examen supplémentaire -------

.

uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8

uStart Page = hxxp://www.neufportail.fr/

uInternet Settings,ProxyOverride = localhost;*.local

uSearchURL,(Default) = hxxp://www.google.com/search?q=%s

Trusted Zone: eset.com\www

Trusted Zone: java.com\www

Trusted Zone: secuser.com\www

DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab

DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab

DPF: {9D3AA934-55FA-4373-96FD-ED7787E4F161} - hxxps://collectionsbmu.ville-ge.ch/Components/WindowsHooker.dll

FF - ProfilePath -

 

---- PARAMETRES FIREFOX ----

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.cookie.p3plevel", 1); // 0=low, 1=medium, 2=high, 3=custom

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.enablePad", false); // Allow client to do proxy autodiscovery

c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.search.param.Google.1.default", "chrome://branding/content/searchconfig.properties");

c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.search.param.Google.1.custom", "chrome://branding/content/searchconfig.properties");

.

 

**************************************************************************

 

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2009-03-18 23:21:46

Windows 5.1.2600 Service Pack 3 NTFS

 

Recherche de processus cachés ...

 

Recherche d'éléments en démarrage automatique cachés ...

 

Recherche de fichiers cachés ...

 

Scan terminé avec succès

Fichiers cachés: 0

 

**************************************************************************

.

--------------------- CLES DE REGISTRE BLOQUEES ---------------------

 

[HKEY_USERS\S-1-5-21-2307018245-1465403579-252423984-1007\Software\Microsoft\SystemCertificates\AddressBook*]

@Allowed: (Read) (RestrictedCode)

@Allowed: (Read) (RestrictedCode)

@SACL=

 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{53c1be49-d401-41c2-b7c0-cd34ec48a086}]

@Denied: (Full) (Everyone)

"Model"=dword:00000020

"Therad"=dword:0000001e

"MData"=hex(0):2b,8f,78,29,5a,0c,ce,ec,48,d4,68,e5,9f,6a,96,3e,ab,de,c5,81,26,

38,95,44,ff,25,5b,70,e9,89,02,32,a1,dc,95,7b,71,fe,7a,d3,75,c0,90,48,62,87,\

 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]

@Denied: (Full) (Everyone)

"scansk"=hex(0):4e,ff,5e,b3,e1,4f,64,5b,7e,e1,b9,28,dd,33,c0,0c,52,df,02,8e,25,

74,ee,dd,2c,2c,fa,22,ef,66,f1,9a,5f,1c,0f,74,6c,ce,30,b5,00,00,00,00,00,00,\

.

--------------------- DLLs chargées dans les processus actifs ---------------------

 

- - - - - - - > 'winlogon.exe'(676)

c:\windows\system32\Ati2evxx.dll

.

Heure de fin: 2009-03-18 23:25:09

ComboFix-quarantined-files.txt 2009-03-18 22:24:18

ComboFix2.txt 2009-03-18 05:24:46

 

Avant-CF: 10 904 829 952 octets libres

Après-CF: 10,893,619,200 octets libres

 

343 --- E O F --- 2009-03-18 05:02:35

Lien vers le commentaire
Partager sur d’autres sites

Re,

 

Tu me dis ne pas avoir d'antivirus, pourtant Norton est bien présent dans les rapports. Il reste un peu de nettoyage à faire, mais auparavant, je souhaiterais que tu me postes le rapport RSIT (les deux fichiers, log.txt et extra.txt) que tu devais me donner et que tu ne m'as pas donné.

Lien vers le commentaire
Partager sur d’autres sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

 Share

  • En ligne récemment   0 membre est en ligne

    Aucun utilisateur enregistré regarde cette page.

×
×
  • Créer...