Se connecter / S'enregistrer
Votre question

Infection fakealert

Tags :
  • Internet Explorer
  • Sécurité
Dernière réponse : dans Sécurité et virus
9 Mars 2011 12:21:32

Bonjour, alors que mon antivirus, Bitdefender, ne le détecte pas, Stinger détecte sur mon PC l'alerte suivante :
le fichier C:/Windows/Macromed/Flash/uninstall_activX.exe est infecté par le virus et le trojan FakeAlert!fakealert-REP
Que dois-je faire ? merci de votre aide

Autres pages sur : infection fakealert

9 Mars 2011 12:55:43

Bonjour,

*Télécharge RSIT (merci random/random) sur le Bureau : Ici
Double-clique sur RSIT.exe, il ne nécessite pas d' installation.
Clique Continue à l' écran Disclaimer si tu acceptes les conditions.
-Si HijackThis est non détecté sur ton Pc, il le téléchargera (autorise l' accès via ton pare-feu si demandé et accepte la licence).
Lorsque l' analyse sera terminée, deux fichiers texte s' ouvriront.
Poste le contenu de log.txt (celui qui s' ouvre) ainsi qu' info.txt qui est dans la Barre des Tâches

NB : Ces rapports sont enregistrés dans le dossier C:\rsit

A+
10 Mars 2011 11:21:39

Bonjour, merci pour ta réponse. Je te mets en dessous les 2 rapports : encore merci @+

Logfile of random's system information tool 1.08 (written by random/random)
Run by User at 2011-03-10 14:12:13
Microsoft Windows 7 Professionnel Service Pack 1
System drive C: has 26 GB (33%) free of 80 GB
Total RAM: 2047 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:12:31, on 10/03/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\BitDefender\BitDefender 2011\pchooklaunch32.exe
C:\Program Files\Logitech\SetPoint\LBTWiz.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\explorer.exe
C:\Users\User\Downloads\RSIT.exe
C:\Program Files\trend micro\User.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Bluetooth Connection Assistant] LBTWIZ.EXE -silent
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O16 - DPF: {8FEFF364-6A5F-4966-A917-A3AC28411659} (SopCore Control) - http://download.sopcast.com/download/SOPCORE.CAB
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O17 - HKLM\System\CCS\Services\Tcpip\..\{1A6524E2-6329-4456-B625-D7DED6084332}: NameServer = 213.188.190.1,213.188.172.70
O17 - HKLM\System\CS1\Services\Tcpip\..\{1A6524E2-6329-4456-B625-D7DED6084332}: NameServer = 213.188.190.1,213.188.172.70
O17 - HKLM\System\CS2\Services\Tcpip\..\{1A6524E2-6329-4456-B625-D7DED6084332}: NameServer = 213.188.190.1,213.188.172.70
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\Windows\system32\drivers\pclepci.sys
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: BitDefender Update Server v2 (Update Server) - BitDefender - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
O23 - Service: BitDefender Desktop Update Service (Updatesrv) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\uxtuneup.dll,-4096 (UxTuneUp) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 22742 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-01-30 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-01-05 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{381FFDE8-2394-4F90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll [2011-03-08 160832]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Hardware Abstraction Layer"=C:\Windows\KHALMNPR.EXE [2009-06-17 55824]
"Kernel and Hardware Abstraction Layer"=C:\Windows\KHALMNPR.EXE [2009-06-17 55824]
"Bluetooth Connection Assistant"=LBTWIZ.EXE -silent []
"BitDefender Antiphishing Helper"=C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe [2011-03-08 71216]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2009-07-20 72208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDriveAutoRun"=67108863
"HonorAutorunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-03-10 14:12:13 ----D---- C:\rsit
2011-03-10 14:12:13 ----D---- C:\Program Files\trend micro
2011-03-10 08:30:56 ----A---- C:\Windows\system32\FntCache.dll
2011-03-10 08:30:56 ----A---- C:\Windows\system32\DWrite.dll
2011-03-10 08:30:56 ----A---- C:\Windows\system32\d2d1.dll
2011-03-10 08:30:55 ----A---- C:\Windows\system32\sbe.dll
2011-03-10 08:30:55 ----A---- C:\Windows\system32\EncDec.dll
2011-03-10 08:30:55 ----A---- C:\Windows\system32\CPFilters.dll
2011-03-09 14:54:49 ----D---- C:\ProgramData\Spybot - Search & Destroy
2011-03-09 14:54:49 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-03-08 21:14:15 ----D---- C:\Users\User\AppData\Roaming\Malwarebytes
2011-03-08 21:14:09 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2011-03-08 21:14:08 ----D---- C:\ProgramData\Malwarebytes
2011-03-08 21:14:05 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-03-08 21:14:04 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-03-08 17:21:15 ----D---- C:\Windows\system32\SPReview
2011-03-08 17:20:21 ----D---- C:\Windows\system32\EventProviders
2011-03-08 17:18:37 ----A---- C:\Windows\system32\dfshim.dll
2011-03-08 17:18:34 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2011-03-08 17:18:34 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2011-03-08 17:18:33 ----A---- C:\Windows\system32\mstscax.dll
2011-03-08 17:18:31 ----A---- C:\Windows\system32\d3d10warp.dll
2011-03-08 17:18:30 ----A---- C:\Windows\system32\sysmain.dll
2011-03-08 17:18:30 ----A---- C:\Windows\system32\mfc40u.dll
2011-03-08 17:18:30 ----A---- C:\Windows\system32\mfc40.dll
2011-03-08 17:18:29 ----A---- C:\Windows\system32\secproc_isv.dll
2011-03-08 17:18:28 ----A---- C:\Windows\system32\shell32.dll
2011-03-08 17:18:28 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-03-08 17:18:27 ----A---- C:\Windows\system32\secproc.dll
2011-03-08 17:18:27 ----A---- C:\Windows\system32\RMActivate.exe
2011-03-08 17:18:27 ----A---- C:\Windows\system32\ieframe.dll
2011-03-08 17:18:26 ----A---- C:\Windows\system32\spwizui.dll
2011-03-08 17:18:25 ----A---- C:\Windows\system32\mscoree.dll
2011-03-08 17:18:25 ----A---- C:\Windows\system32\mf.dll
2011-03-08 17:18:24 ----A---- C:\Windows\system32\ntkrnlpa.exe
2011-03-08 17:18:24 ----A---- C:\Windows\system32\mssrch.dll
2011-03-08 17:18:24 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2011-03-08 17:18:24 ----A---- C:\Windows\system32\iertutil.dll
2011-03-08 17:18:24 ----A---- C:\Windows\system32\CertEnroll.dll
2011-03-08 17:18:23 ----A---- C:\Windows\system32\wmp.dll
2011-03-08 17:18:21 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-03-08 17:18:21 ----A---- C:\Windows\system32\PresentationHost.exe
2011-03-08 17:18:21 ----A---- C:\Windows\system32\esent.dll
2011-03-08 17:18:21 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2011-03-08 17:18:20 ----A---- C:\Windows\system32\schedsvc.dll
2011-03-08 17:18:20 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-03-08 17:18:20 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2011-03-08 17:18:19 ----A---- C:\Windows\system32\tquery.dll
2011-03-08 17:18:18 ----A---- C:\Windows\system32\RacEngn.dll
2011-03-08 17:18:18 ----A---- C:\Windows\system32\ntdll.dll
2011-03-08 17:18:18 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2011-03-08 17:18:16 ----A---- C:\Windows\system32\wininet.dll
2011-03-08 17:18:16 ----A---- C:\Windows\system32\rdpdd.dll
2011-03-08 17:18:16 ----A---- C:\Windows\system32\qmgr.dll
2011-03-08 17:18:16 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-03-08 17:18:15 ----A---- C:\Windows\system32\wevtsvc.dll
2011-03-08 17:18:15 ----A---- C:\Windows\system32\urlmon.dll
2011-03-08 17:18:15 ----A---- C:\Windows\system32\ole32.dll
2011-03-08 17:18:14 ----A---- C:\Windows\system32\vssapi.dll
2011-03-08 17:18:14 ----A---- C:\Windows\system32\SearchFolder.dll
2011-03-08 17:18:14 ----A---- C:\Windows\system32\IKEEXT.DLL
2011-03-08 17:18:14 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-03-08 17:18:14 ----A---- C:\Windows\system32\d3d9.dll
2011-03-08 17:18:14 ----A---- C:\Windows\explorer.exe
2011-03-08 17:18:13 ----A---- C:\Windows\system32\taskschd.dll
2011-03-08 17:18:13 ----A---- C:\Windows\system32\kernel32.dll
2011-03-08 17:18:13 ----A---- C:\Windows\system32\crypt32.dll
2011-03-08 17:18:12 ----A---- C:\Windows\system32\spreview.exe
2011-03-08 17:18:12 ----A---- C:\Windows\system32\spinstall.exe
2011-03-08 17:18:12 ----A---- C:\Windows\system32\PushPrinterConnections.exe
2011-03-08 17:18:12 ----A---- C:\Windows\system32\mstsc.exe
2011-03-08 17:18:12 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-03-08 17:18:11 ----A---- C:\Windows\system32\wer.dll
2011-03-08 17:18:11 ----A---- C:\Windows\system32\termsrv.dll
2011-03-08 17:18:11 ----A---- C:\Windows\system32\rpcrt4.dll
2011-03-08 17:18:11 ----A---- C:\Windows\system32\certcli.dll
2011-03-08 17:18:10 ----A---- C:\Windows\system32\msxml6.dll
2011-03-08 17:18:10 ----A---- C:\Windows\system32\lsasrv.dll
2011-03-08 17:18:10 ----A---- C:\Windows\system32\gpsvc.dll
2011-03-08 17:18:10 ----A---- C:\Windows\system32\dwmcore.dll
2011-03-08 17:18:09 ----A---- C:\Windows\system32\WinSAT.exe
2011-03-08 17:18:09 ----A---- C:\Windows\system32\wbengine.exe
2011-03-08 17:18:09 ----A---- C:\Windows\system32\scavengeui.dll
2011-03-08 17:18:09 ----A---- C:\Windows\system32\odbc32.dll
2011-03-08 17:18:09 ----A---- C:\Windows\system32\mstime.dll
2011-03-08 17:18:09 ----A---- C:\Windows\system32\MPSSVC.dll
2011-03-08 17:18:09 ----A---- C:\Windows\system32\diagperf.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\umrdp.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\TSWorkspace.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\tsmf.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\quartz.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\msfeeds.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\localspl.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\iedkcs32.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\dot3api.dll
2011-03-08 17:18:07 ----A---- C:\Windows\system32\winhttp.dll
2011-03-08 17:18:07 ----A---- C:\Windows\system32\setupapi.dll
2011-03-08 17:18:07 ----A---- C:\Windows\system32\MSVidCtl.dll
2011-03-08 17:18:07 ----A---- C:\Windows\system32\drivers\nvstor.sys
2011-03-08 17:18:07 ----A---- C:\Windows\system32\apphelp.dll
2011-03-08 17:18:06 ----A---- C:\Windows\system32\WindowsCodecs.dll
2011-03-08 17:18:06 ----A---- C:\Windows\system32\VSSVC.exe
2011-03-08 17:18:06 ----A---- C:\Windows\system32\netlogon.dll
2011-03-08 17:18:06 ----A---- C:\Windows\system32\dbgeng.dll
2011-03-08 17:18:06 ----A---- C:\Windows\system32\d3d11.dll
2011-03-08 17:18:05 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-03-08 17:18:05 ----A---- C:\Windows\system32\winlogon.exe
2011-03-08 17:18:05 ----A---- C:\Windows\system32\webio.dll
2011-03-08 17:18:05 ----A---- C:\Windows\system32\user32.dll
2011-03-08 17:18:05 ----A---- C:\Windows\system32\netcfgx.dll
2011-03-08 17:18:05 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2011-03-08 17:18:04 ----A---- C:\Windows\system32\WsmSvc.dll
2011-03-08 17:18:04 ----A---- C:\Windows\system32\Query.dll
2011-03-08 17:18:04 ----A---- C:\Windows\system32\gpprefcl.dll
2011-03-08 17:18:04 ----A---- C:\Windows\system32\drivers\srv.sys
2011-03-08 17:18:04 ----A---- C:\Windows\system32\advapi32.dll
2011-03-08 17:18:03 ----A---- C:\Windows\system32\upnp.dll
2011-03-08 17:18:03 ----A---- C:\Windows\system32\schannel.dll
2011-03-08 17:18:03 ----A---- C:\Windows\system32\mmcndmgr.dll
2011-03-08 17:18:03 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2011-03-08 17:18:03 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-03-08 17:18:03 ----A---- C:\Windows\system32\drivers\nvraid.sys
2011-03-08 17:18:02 ----A---- C:\Windows\system32\netfxperf.dll
2011-03-08 17:18:02 ----A---- C:\Windows\system32\msv1_0.dll
2011-03-08 17:18:02 ----A---- C:\Windows\system32\msdrm.dll
2011-03-08 17:18:02 ----A---- C:\Windows\system32\lsm.exe
2011-03-08 17:18:02 ----A---- C:\Windows\system32\imapi2fs.dll
2011-03-08 17:18:02 ----A---- C:\Windows\system32\drivers\csc.sys
2011-03-08 17:18:02 ----A---- C:\Windows\system32\authui.dll
2011-03-08 17:18:01 ----A---- C:\Windows\system32\sppobjs.dll
2011-03-08 17:18:01 ----A---- C:\Windows\system32\shlwapi.dll
2011-03-08 17:18:01 ----A---- C:\Windows\system32\SessEnv.dll
2011-03-08 17:18:01 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2011-03-08 17:18:01 ----A---- C:\Windows\system32\KernelBase.dll
2011-03-08 17:18:00 ----A---- C:\Windows\system32\usp10.dll
2011-03-08 17:18:00 ----A---- C:\Windows\system32\mcbuilder.exe
2011-03-08 17:17:59 ----A---- C:\Windows\system32\xpsservices.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\winload.exe
2011-03-08 17:17:59 ----A---- C:\Windows\system32\WebClnt.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\userenv.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\comdlg32.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\certmgr.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\audiosrv.dll
2011-03-08 17:17:58 ----A---- C:\Windows\system32\sppwinob.dll
2011-03-08 17:17:58 ----A---- C:\Windows\system32\iphlpsvc.dll
2011-03-08 17:17:56 ----A---- C:\Windows\system32\rpcss.dll
2011-03-08 17:17:56 ----A---- C:\Windows\system32\cmd.exe
2011-03-08 17:17:56 ----A---- C:\Windows\system32\BFE.DLL
2011-03-08 17:17:55 ----A---- C:\Windows\system32\wuaueng.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\Wldap32.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\win32spl.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\rdpendp.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\propsys.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\nlasvc.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\mfds.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\framedynos.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\drivers\volsnap.sys
2011-03-08 17:17:55 ----A---- C:\Windows\system32\dnsapi.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\wucltux.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\winresume.exe
2011-03-08 17:17:54 ----A---- C:\Windows\system32\samsrv.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\rdpclip.exe
2011-03-08 17:17:54 ----A---- C:\Windows\system32\profsvc.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\ncsi.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\drivers\netio.sys
2011-03-08 17:17:54 ----A---- C:\Windows\system32\drivers\ndis.sys
2011-03-08 17:17:54 ----A---- C:\Windows\system32\cscsvc.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\azroles.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\werconcpl.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\themeui.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\taskeng.exe
2011-03-08 17:17:53 ----A---- C:\Windows\system32\spp.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\mswsock.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\drivers\storport.sys
2011-03-08 17:17:53 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-03-08 17:17:53 ----A---- C:\Windows\system32\dhcpcore.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\credui.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\appmgr.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\wintrust.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\msxml3.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\inetcomm.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\dxgi.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\drivers\http.sys
2011-03-08 17:17:52 ----A---- C:\Windows\system32\dbghelp.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\basecsp.dll
2011-03-08 17:17:51 ----A---- C:\Windows\system32\WinSATAPI.dll
2011-03-08 17:17:51 ----A---- C:\Windows\system32\taskcomp.dll
2011-03-08 17:17:51 ----A---- C:\Windows\system32\spoolsv.exe
2011-03-08 17:17:51 ----A---- C:\Windows\system32\gdi32.dll
2011-03-08 17:17:51 ----A---- C:\Windows\system32\evr.dll
2011-03-08 17:17:51 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2011-03-08 17:17:51 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2011-03-08 17:17:51 ----A---- C:\Windows\system32\calc.exe
2011-03-08 17:17:50 ----A---- C:\Windows\system32\vpnike.dll
2011-03-08 17:17:50 ----A---- C:\Windows\system32\srvsvc.dll
2011-03-08 17:17:50 ----A---- C:\Windows\system32\sqlsrv32.dll
2011-03-08 17:17:50 ----A---- C:\Windows\system32\QAGENTRT.DLL
2011-03-08 17:17:50 ----A---- C:\Windows\system32\drivers\amdsata.sys
2011-03-08 17:17:49 ----A---- C:\Windows\system32\UIRibbon.dll
2011-03-08 17:17:49 ----A---- C:\Windows\system32\sxs.dll
2011-03-08 17:17:49 ----A---- C:\Windows\system32\netshell.dll
2011-03-08 17:17:49 ----A---- C:\Windows\system32\lpksetup.exe
2011-03-08 17:17:49 ----A---- C:\Windows\system32\ie4uinit.exe
2011-03-08 17:17:49 ----A---- C:\Windows\system32\fveapi.dll
2011-03-08 17:17:49 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-03-08 17:17:49 ----A---- C:\Windows\system32\cryptsvc.dll
2011-03-08 17:17:48 ----A---- C:\Windows\system32\ws2_32.dll
2011-03-08 17:17:48 ----A---- C:\Windows\system32\stobject.dll
2011-03-08 17:17:48 ----A---- C:\Windows\system32\hgprint.dll
2011-03-08 17:17:48 ----A---- C:\Windows\system32\drivers\rdbss.sys
2011-03-08 17:17:48 ----A---- C:\Windows\system32\drivers\msdsm.sys
2011-03-08 17:17:48 ----A---- C:\Windows\system32\comctl32.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\WSDApi.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\wmpeffects.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\rpchttp.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\prncache.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\printui.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\net1.exe
2011-03-08 17:17:47 ----A---- C:\Windows\system32\msi.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\inetpp.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\dps.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\ci.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\aitagent.exe
2011-03-08 17:17:47 ----A---- C:\Windows\system32\aepdu.dll
2011-03-08 17:17:46 ----A---- C:\Windows\system32\WMVCORE.DLL
2011-03-08 17:17:46 ----A---- C:\Windows\system32\vds.exe
2011-03-08 17:17:46 ----A---- C:\Windows\system32\scansetting.dll
2011-03-08 17:17:46 ----A---- C:\Windows\system32\MMDevAPI.dll
2011-03-08 17:17:46 ----A---- C:\Windows\system32\mfc42u.dll
2011-03-08 17:17:46 ----A---- C:\Windows\system32\FXSSVC.exe
2011-03-08 17:17:46 ----A---- C:\Windows\system32\drivers\vmbus.sys
2011-03-08 17:17:46 ----A---- C:\Windows\system32\drivers\pci.sys
2011-03-08 17:17:46 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-03-08 17:17:46 ----A---- C:\Windows\system32\davclnt.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\wpdshext.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\wlangpui.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\t2embed.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\scrptadm.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\QSHVHOST.DLL
2011-03-08 17:17:45 ----A---- C:\Windows\system32\pnidui.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\IPSECSVC.DLL
2011-03-08 17:17:45 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-03-08 17:17:45 ----A---- C:\Windows\system32\consent.exe
2011-03-08 17:17:45 ----A---- C:\Windows\system32\aaclient.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\webservices.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\tscfgwmi.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\SyncCenter.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\netdiagfx.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\fde.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\drivers\termdd.sys
2011-03-08 17:17:44 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2011-03-08 17:17:44 ----A---- C:\Windows\system32\drivers\rdpdr.sys
2011-03-08 17:17:44 ----A---- C:\Windows\system32\drivers\amdxata.sys
2011-03-08 17:17:43 ----A---- C:\Windows\system32\wuapi.dll
2011-03-08 17:17:43 ----A---- C:\Windows\system32\wscapi.dll
2011-03-08 17:17:43 ----A---- C:\Windows\system32\WinSCard.dll
2011-03-08 17:17:43 ----A---- C:\Windows\system32\WFS.exe
2011-03-08 17:17:43 ----A---- C:\Windows\system32\vmicsvc.exe
2011-03-08 17:17:43 ----A---- C:\Windows\system32\sdengin2.dll
2011-03-08 17:17:43 ----A---- C:\Windows\system32\pla.dll
2011-03-08 17:17:43 ----A---- C:\Windows\system32\cscobj.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\WUDFSvc.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\wisptis.exe
2011-03-08 17:17:42 ----A---- C:\Windows\system32\winsta.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\wiaservc.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\setupcl.exe
2011-03-08 17:17:42 ----A---- C:\Windows\system32\rdpcore.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\ntshrui.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2011-03-08 17:17:42 ----A---- C:\Windows\system32\msasn1.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\mcmde.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\imapi2.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\iepeers.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2011-03-08 17:17:42 ----A---- C:\Windows\system32\drivers\msahci.sys
2011-03-08 17:17:42 ----A---- C:\Windows\system32\conhost.exe
2011-03-08 17:17:41 ----A---- C:\Windows\system32\WMPEncEn.dll
2011-03-08 17:17:41 ----A---- C:\Windows\system32\onex.dll
2011-03-08 17:17:41 ----A---- C:\Windows\system32\gameux.dll
2011-03-08 17:17:41 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2011-03-08 17:17:41 ----A---- C:\Windows\system32\dwmredir.dll
2011-03-08 17:17:41 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-03-08 17:17:41 ----A---- C:\Windows\system32\aeinv.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\winmm.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\TabSvc.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\shsvcs.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\rasmans.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\mssvp.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\drivers\udfs.sys
2011-03-08 17:17:40 ----A---- C:\Windows\system32\drivers\acpi.sys
2011-03-08 17:17:39 ----A---- C:\Windows\system32\vaultsvc.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\thumbcache.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\samcli.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\proquota.exe
2011-03-08 17:17:39 ----A---- C:\Windows\system32\netiohlp.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\Narrator.exe
2011-03-08 17:17:39 ----A---- C:\Windows\system32\msutb.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2011-03-08 17:17:39 ----A---- C:\Windows\system32\hbaapi.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\halmacpi.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\hal.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\bootres.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\autofmt.exe
2011-03-08 17:17:39 ----A---- C:\Windows\system32\autoconv.exe
2011-03-08 17:17:39 ----A---- C:\Windows\system32\autochk.exe
2011-03-08 17:17:39 ----A---- C:\Windows\system32\AudioSes.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\audiodg.exe
2011-03-08 17:17:38 ----A---- C:\Windows\system32\srchadmin.dll
2011-03-08 17:17:38 ----A---- C:\Windows\system32\schtasks.exe
2011-03-08 17:17:38 ----A---- C:\Windows\system32\regapi.dll
2011-03-08 17:17:38 ----A---- C:\Windows\system32\msinfo32.exe
2011-03-08 17:17:38 ----A---- C:\Windows\system32\mimefilt.dll
2011-03-08 17:17:38 ----A---- C:\Windows\system32\ipsmsnap.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\wcncsvc.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\tcpipcfg.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\sspicli.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\QAGENT.DLL
2011-03-08 17:17:37 ----A---- C:\Windows\system32\powercpl.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\netid.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\msihnd.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\mscorier.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-03-08 17:17:37 ----A---- C:\Windows\system32\framedyn.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\eapphost.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\drivers\winusb.sys
2011-03-08 17:17:37 ----A---- C:\Windows\system32\drivers\volmgr.sys
2011-03-08 17:17:37 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-03-08 17:17:37 ----A---- C:\Windows\system32\drivers\partmgr.sys
2011-03-08 17:17:37 ----A---- C:\Windows\system32\drivers\netbt.sys
2011-03-08 17:17:37 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2011-03-08 17:17:36 ----A---- C:\Windows\system32\umpo.dll
2011-03-08 17:17:36 ----A---- C:\Windows\system32\DXP.dll
2011-03-08 17:17:36 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-03-08 17:17:36 ----A---- C:\Windows\system32\actxprxy.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\wdc.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\Vault.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\untfs.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\StructuredQuery.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\sppsvc.exe
2011-03-08 17:17:35 ----A---- C:\Windows\system32\sdclt.exe
2011-03-08 17:17:35 ----A---- C:\Windows\system32\scesrv.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\rastls.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\oleaut32.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\nci.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\drivers\ataport.sys
2011-03-08 17:17:34 ----A---- C:\Windows\system32\WMNetMgr.dll
2011-03-08 17:17:34 ----A---- C:\Windows\system32\wlanpref.dll
2011-03-08 17:17:34 ----A---- C:\Windows\system32\RpcRtRemote.dll
2011-03-08 17:17:34 ----A---- C:\Windows\system32\Robocopy.exe
2011-03-08 17:17:34 ----A---- C:\Windows\system32\ListSvc.dll
2011-03-08 17:17:34 ----A---- C:\Windows\system32\licmgr10.dll
2011-03-08 17:17:34 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2011-03-08 17:17:33 ----A---- C:\Windows\system32\taskmgr.exe
2011-03-08 17:17:33 ----A---- C:\Windows\system32\mtxclu.dll
2011-03-08 17:17:33 ----A---- C:\Windows\system32\DxpTaskSync.dll
2011-03-08 17:17:33 ----A---- C:\Windows\system32\Display.dll
2011-03-08 17:17:32 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-03-08 17:17:32 ----A---- C:\Windows\system32\mssphtb.dll
2011-03-08 17:17:32 ----A---- C:\Windows\system32\msdri.dll
2011-03-08 17:17:32 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2011-03-08 17:17:32 ----A---- C:\Windows\system32\drivers\mpio.sys
2011-03-08 17:17:32 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2011-03-08 17:17:31 ----A---- C:\Windows\system32\userinit.exe
2011-03-08 17:17:31 ----A---- C:\Windows\system32\sharemediacpl.dll
2011-03-08 17:17:31 ----A---- C:\Windows\system32\puiobj.dll
2011-03-08 17:17:31 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2011-03-08 17:17:31 ----A---- C:\Windows\system32\cscui.dll
2011-03-08 17:17:30 ----A---- C:\Windows\system32\termmgr.dll
2011-03-08 17:17:30 ----A---- C:\Windows\system32\eudcedit.exe
2011-03-08 17:17:30 ----A---- C:\Windows\system32\drivers\winhv.sys
2011-03-08 17:17:30 ----A---- C:\Windows\system32\drivers\scsiport.sys
2011-03-08 17:17:30 ----A---- C:\Windows\system32\DiagCpl.dll
2011-03-08 17:17:29 ----A---- C:\Windows\system32\drivers\vmstorfl.sys
2011-03-08 17:17:28 ----A---- C:\Windows\system32\wiadefui.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\themecpl.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\sppcomapi.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\shsetup.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\SensorsCpl.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\rasppp.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\msdtctm.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\msconfig.exe
2011-03-08 17:17:28 ----A---- C:\Windows\system32\logoncli.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\drivers\storvsc.sys
2011-03-08 17:17:28 ----A---- C:\Windows\system32\cabview.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\biocpl.dll
2011-03-08 17:17:27 ----A---- C:\Windows\system32\wpccpl.dll
2011-03-08 17:17:27 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2011-03-08 17:17:27 ----A---- C:\Windows\system32\dnscmmc.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\winsrv.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\tapisrv.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\scecli.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\hgcpl.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\fontext.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2011-03-08 17:17:26 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2011-03-08 17:17:25 ----A---- C:\Windows\system32\srcore.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\SndVolSSO.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\mscories.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\mscms.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\mprddm.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\localsec.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\iasacct.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-03-08 17:17:25 ----A---- C:\Windows\system32\bcdsrv.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\wpdbusenum.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\wlanui.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\wkssvc.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\wksprt.exe
2011-03-08 17:17:24 ----A---- C:\Windows\system32\w32tm.exe
2011-03-08 17:17:24 ----A---- C:\Windows\system32\VAN.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\usercpl.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\spwizeng.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\SndVol.exe
2011-03-08 17:17:24 ----A---- C:\Windows\system32\qedit.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\qdvd.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\prntvpt.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\netcenter.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\mblctr.exe
2011-03-08 17:17:24 ----A---- C:\Windows\system32\KMSVC.DLL
2011-03-08 17:17:24 ----A---- C:\Windows\system32\batmeter.dll
2011-03-08 17:17:23 ----A---- C:\Windows\system32\zipfldr.dll
2011-03-08 17:17:23 ----A---- C:\Windows\system32\fdeploy.dll
2011-03-08 17:17:23 ----A---- C:\Windows\system32\drivers\ks.sys
2011-03-08 17:17:23 ----A---- C:\Windows\system32\drivers\afd.sys
2011-03-08 17:17:23 ----A---- C:\Windows\system32\azroleui.dll
2011-03-08 17:17:23 ----A---- C:\Windows\system32\accessibilitycpl.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\wusa.exe
2011-03-08 17:17:22 ----A---- C:\Windows\system32\networkmap.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\netjoin.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\mspbda.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2011-03-08 17:17:22 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\Faultrep.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\cryptui.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\cfgmgr32.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\adsldp.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\taskhost.exe
2011-03-08 17:17:21 ----A---- C:\Windows\system32\taskbarcpl.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\sud.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\slui.exe
2011-03-08 17:17:21 ----A---- C:\Windows\system32\prnfldr.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\photowiz.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\msieftp.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\iasrad.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\credssp.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\ActionCenter.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\wpd_ci.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\sisbkup.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\shwebsvc.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\recovery.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\rdpcorekmts.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\odbcjt32.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\iprtrmgr.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\ifsutil.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\ieUnatt.exe
2011-03-08 17:17:20 ----A---- C:\Windows\system32\iesysprep.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\halacpi.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\ftp.exe
2011-03-08 17:17:20 ----A---- C:\Windows\system32\efscore.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\drivers\hidclass.sys
2011-03-08 17:17:20 ----A---- C:\Windows\system32\dot3cfg.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2011-03-08 17:17:19 ----A---- C:\Windows\system32\syncui.dll
2011-03-08 17:17:19 ----A---- C:\Windows\system32\sdcpl.dll
2011-03-08 17:17:19 ----A---- C:\Windows\system32\rdpwsx.dll
2011-03-08 17:17:19 ----A---- C:\Windows\system32\autoplay.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\wmpmde.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\vdsutil.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\sppnp.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\rtutils.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\OobeFldr.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\ntlanman.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\dskquoui.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\DeviceCenter.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\bcdedit.exe
2011-03-08 17:17:17 ----A---- C:\Windows\system32\systemcpl.dll
2011-03-08 17:17:17 ----A---- C:\Windows\system32\recdisc.exe
2011-03-08 17:17:17 ----A---- C:\Windows\system32\ntprint.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\sethc.exe
2011-03-08 17:17:16 ----A---- C:\Windows\system32\rstrui.exe
2011-03-08 17:17:16 ----A---- C:\Windows\system32\riched20.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\nshwfp.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\netplwiz.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\NAPHLPR.DLL
2011-03-08 17:17:16 ----A---- C:\Windows\system32\fms.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\drivers\tdx.sys
2011-03-08 17:17:16 ----A---- C:\Windows\system32\blackbox.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\bcdboot.exe
2011-03-08 17:17:16 ----A---- C:\Windows\system32\AxInstSv.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\activeds.dll
2011-03-08 17:17:15 ----A---- C:\Windows\system32\wmpsrcwp.dll
2011-03-08 17:17:15 ----A---- C:\Windows\system32\migisol.dll
2011-03-08 17:17:15 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\wuwebv.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\wsqmcons.exe
2011-03-08 17:17:14 ----A---- C:\Windows\system32\wlanmsm.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\wavemsp.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\ReAgent.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\provsvc.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\nshipsec.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\nlaapi.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\msftedit.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\isoburn.exe
2011-03-08 17:17:14 ----A---- C:\Windows\system32\httpapi.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2011-03-08 17:17:14 ----A---- C:\Windows\system32\dot3ui.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\dot3svc.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\dfrgui.exe
2011-03-08 17:17:14 ----A---- C:\Windows\system32\cdosys.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\asycfilt.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\wvc.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\wtsapi32.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\wimgapi.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\webcheck.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\tzutil.exe
2011-03-08 17:17:13 ----A---- C:\Windows\system32\twext.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\sysclass.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\ocsetup.exe
2011-03-08 17:17:13 ----A---- C:\Windows\system32\mstask.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\dsuiext.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2011-03-08 17:17:13 ----A---- C:\Windows\system32\certprop.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\appinfo.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\AdmTmpl.dll
2011-03-08 17:17:12 ----A---- C:\Windows\twain_32.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\wwanconn.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\uxlib.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\srrstr.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\slwga.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\shdocvw.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\setupugc.exe
2011-03-08 17:17:12 ----A---- C:\Windows\system32\qcap.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\qasf.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\PresentationSettings.exe
2011-03-08 17:17:12 ----A---- C:\Windows\system32\occache.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\msrating.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\imm32.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\wmdrmsdk.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\nslookup.exe
2011-03-08 17:17:11 ----A---- C:\Windows\system32\msvfw32.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\msscp.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\mciavi32.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\imgutil.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\clusapi.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\audiodev.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2011-03-08 17:17:10 ----A---- C:\Windows\system32\wimserv.exe
2011-03-08 17:17:10 ----A---- C:\Windows\system32\TSpkg.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\sdrsvc.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\remotepg.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\rdpencom.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\raschap.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\QUTIL.DLL
2011-03-08 17:17:10 ----A---- C:\Windows\system32\perfmon.exe
2011-03-08 17:17:10 ----A---- C:\Windows\system32\odbccp32.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\ocsetapi.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\networkexplorer.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2011-03-08 17:17:10 ----A---- C:\Windows\system32\input.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\drmmgrtn.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\diskraid.exe
2011-03-08 17:17:10 ----A---- C:\Windows\system32\browser.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\acppage.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\wpdwcn.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\wmpdxm.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\vpnikeapi.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\vdsbas.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\runonce.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\onexui.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\olepro32.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\nltest.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\Mcx2Svc.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\logagent.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\iTVData.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\inseng.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\dxdiagn.dll
2011-03-08 17:17:09 ----A---- C:\Windows\bfsvc.exe
2011-03-08 17:17:08 ----A---- C:\Windows\system32\sspisrv.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\msvidc32.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\msiexec.exe
2011-03-08 17:17:08 ----A---- C:\Windows\system32\MFPlay.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\eapp3hst.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\drivers\rmcast.sys
2011-03-08 17:17:08 ----A---- C:\Windows\system32\d3d10level9.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\wudriver.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\wmpshell.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\wmdrmdev.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\unimdmat.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\tabcal.exe
2011-03-08 17:17:07 ----A---- C:\Windows\system32\sqlcese30.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\shacct.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\rdpd3d.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\PnPUnattend.exe
2011-03-08 17:17:07 ----A---- C:\Windows\system32\mprapi.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\lsmproxy.dll
2011-03-08 17:17:07 ----A---- C:\Windows
Contenus similaires
10 Mars 2011 12:30:51

Merci encore : voici le rapport :

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 6009

Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514

10/03/2011 15:26:51
mbam-log-2011-03-10 (15-26-51).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 149515
Temps écoulé: 4 minute(s), 8 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
10 Mars 2011 14:16:55

Une coupure de courant... :(  J'y vais... @+
10 Mars 2011 19:00:01

Etonnant : il ne détecte pas le même virus que stinger. Je te mets le rapport. Comme je ne peux pas joindre de fichier, j'essaie de t'envoyer par message une copie d'écran obtenue avec stinger. @+

ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6425
# api_version=3.0.2
# EOSSerial=7bac026abe70f14d9e473dfe56cd7e20
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-03-10 05:56:25
# local_time=2011-03-10 09:56:25 (+0400, Arabie)
# country="France"
# lang=1036
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=512 16777215 100 0 11548 11548 0 0
# compatibility_mode=5893 16776574 100 94 172154 51394690 0 0
# compatibility_mode=8192 67108863 100 0 388 388 0 0
# scanned=187003
# found=4
# cleaned=0
# scan_time=16285
C:\Program Files\Fake Alert Removal Tool\FakeAlertRemovalTool.exe NewHeur_PE virus probablement inconnu (impossible de nettoyer) 00000000000000000000000000000000 I
C:\Users\User\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\77382de2-28c32e8e une variante probable de Java/Rowindal.A cheval de troie (impossible de nettoyer) 00000000000000000000000000000000 I
C:\Users\User\Downloads\FakeAlertRemovalTool.exe NewHeur_PE virus probablement inconnu (impossible de nettoyer) 00000000000000000000000000000000 I
C:\Users\User\Downloads\Infralogs.exe NewHeur_PE virus probablement inconnu (impossible de nettoyer) 00000000000000000000000000000000 I
10 Mars 2011 19:02:10

Peux pas non plus envoyer de fichier joint.

Bonne soirée
10 Mars 2011 19:24:21

1) Télécharge :
CCleaner : Ici
Lance-le puis clique sur Options>Avancé et décoche Effacer uniquement les fichiers Temp de Windows datant de plus de 24 heures. Ferme le programme.

2) Lance CCleaner :
Dans le menu Nettoyeur, clique sur Analyse (laisse-le travailler) puis sur le bouton Lancer le nettoyage.
Fais cela plusieurs fois.

;) 
11 Mars 2011 11:31:55

Bonjour, je n'arrive plus à avoir accès à l'option "répondre" depuis mon PC...

J'ai donc fait comme tu m'as dit et refait une analyse avec Eset mais comme j'avais oublié de décocher la case "supprimer les menaces détectées", il me les a mises en quarantaine... probablement une erreur...:-((
Il les a détectés donc malgré le nettoyage avec CCleaner.

J'avais envisagé un formatage de C ... Qu'en penses-tu ? est-il possible de formater C sans toucher aux autres partitions ?... à moins qu'il y ait un autre moyen de s'en débarrasser...

Pour revenir au PC ( je t'envoie ce message depuis mon portable), quand je clique sur "répondre", rien ne se passe... je ne peux plus également me connecter au site...

Merci et bonne journée
11 Mars 2011 12:01:55

babouck a dit :
1] J'avais envisagé un formatage de C ... Qu'en penses-tu ?

2] Pour revenir au PC ( je t'envoie ce message depuis mon portable), quand je clique sur "répondre", rien ne se passe... je ne peux plus également me connecter au site...


Bonjour,

1] Que c' est inutile.

2] :??: 

(Bis)le rapport de RSIT est incomplet.

A+


11 Mars 2011 13:05:29

je t'envoie à nouveau le rapport RSIT :-((

Logfile of random's system information tool 1.08 (written by random/random)
Run by User at 2011-03-10 14:12:13
Microsoft Windows 7 Professionnel Service Pack 1
System drive C: has 26 GB (33%) free of 80 GB
Total RAM: 2047 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:12:31, on 10/03/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\BitDefender\BitDefender 2011\pchooklaunch32.exe
C:\Program Files\Logitech\SetPoint\LBTWiz.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\explorer.exe
C:\Users\User\Downloads\RSIT.exe
C:\Program Files\trend micro\User.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Bluetooth Connection Assistant] LBTWIZ.EXE -silent
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O16 - DPF: {8FEFF364-6A5F-4966-A917-A3AC28411659} (SopCore Control) - http://download.sopcast.com/download/SOPCORE.CAB
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O17 - HKLM\System\CCS\Services\Tcpip\..\{1A6524E2-6329-4456-B625-D7DED6084332}: NameServer = 213.188.190.1,213.188.172.70
O17 - HKLM\System\CS1\Services\Tcpip\..\{1A6524E2-6329-4456-B625-D7DED6084332}: NameServer = 213.188.190.1,213.188.172.70
O17 - HKLM\System\CS2\Services\Tcpip\..\{1A6524E2-6329-4456-B625-D7DED6084332}: NameServer = 213.188.190.1,213.188.172.70
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\Windows\system32\drivers\pclepci.sys
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: BitDefender Update Server v2 (Update Server) - BitDefender - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
O23 - Service: BitDefender Desktop Update Service (Updatesrv) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\uxtuneup.dll,-4096 (UxTuneUp) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 22742 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-01-30 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-01-05 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{381FFDE8-2394-4F90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll [2011-03-08 160832]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Hardware Abstraction Layer"=C:\Windows\KHALMNPR.EXE [2009-06-17 55824]
"Kernel and Hardware Abstraction Layer"=C:\Windows\KHALMNPR.EXE [2009-06-17 55824]
"Bluetooth Connection Assistant"=LBTWIZ.EXE -silent []
"BitDefender Antiphishing Helper"=C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe [2011-03-08 71216]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2009-07-20 72208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDriveAutoRun"=67108863
"HonorAutorunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-03-10 14:12:13 ----D---- C:\rsit
2011-03-10 14:12:13 ----D---- C:\Program Files\trend micro
2011-03-10 08:30:56 ----A---- C:\Windows\system32\FntCache.dll
2011-03-10 08:30:56 ----A---- C:\Windows\system32\DWrite.dll
2011-03-10 08:30:56 ----A---- C:\Windows\system32\d2d1.dll
2011-03-10 08:30:55 ----A---- C:\Windows\system32\sbe.dll
2011-03-10 08:30:55 ----A---- C:\Windows\system32\EncDec.dll
2011-03-10 08:30:55 ----A---- C:\Windows\system32\CPFilters.dll
2011-03-09 14:54:49 ----D---- C:\ProgramData\Spybot - Search & Destroy
2011-03-09 14:54:49 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-03-08 21:14:15 ----D---- C:\Users\User\AppData\Roaming\Malwarebytes
2011-03-08 21:14:09 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2011-03-08 21:14:08 ----D---- C:\ProgramData\Malwarebytes
2011-03-08 21:14:05 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-03-08 21:14:04 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-03-08 17:21:15 ----D---- C:\Windows\system32\SPReview
2011-03-08 17:20:21 ----D---- C:\Windows\system32\EventProviders
2011-03-08 17:18:37 ----A---- C:\Windows\system32\dfshim.dll
2011-03-08 17:18:34 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2011-03-08 17:18:34 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2011-03-08 17:18:33 ----A---- C:\Windows\system32\mstscax.dll
2011-03-08 17:18:31 ----A---- C:\Windows\system32\d3d10warp.dll
2011-03-08 17:18:30 ----A---- C:\Windows\system32\sysmain.dll
2011-03-08 17:18:30 ----A---- C:\Windows\system32\mfc40u.dll
2011-03-08 17:18:30 ----A---- C:\Windows\system32\mfc40.dll
2011-03-08 17:18:29 ----A---- C:\Windows\system32\secproc_isv.dll
2011-03-08 17:18:28 ----A---- C:\Windows\system32\shell32.dll
2011-03-08 17:18:28 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-03-08 17:18:27 ----A---- C:\Windows\system32\secproc.dll
2011-03-08 17:18:27 ----A---- C:\Windows\system32\RMActivate.exe
2011-03-08 17:18:27 ----A---- C:\Windows\system32\ieframe.dll
2011-03-08 17:18:26 ----A---- C:\Windows\system32\spwizui.dll
2011-03-08 17:18:25 ----A---- C:\Windows\system32\mscoree.dll
2011-03-08 17:18:25 ----A---- C:\Windows\system32\mf.dll
2011-03-08 17:18:24 ----A---- C:\Windows\system32\ntkrnlpa.exe
2011-03-08 17:18:24 ----A---- C:\Windows\system32\mssrch.dll
2011-03-08 17:18:24 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2011-03-08 17:18:24 ----A---- C:\Windows\system32\iertutil.dll
2011-03-08 17:18:24 ----A---- C:\Windows\system32\CertEnroll.dll
2011-03-08 17:18:23 ----A---- C:\Windows\system32\wmp.dll
2011-03-08 17:18:21 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-03-08 17:18:21 ----A---- C:\Windows\system32\PresentationHost.exe
2011-03-08 17:18:21 ----A---- C:\Windows\system32\esent.dll
2011-03-08 17:18:21 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2011-03-08 17:18:20 ----A---- C:\Windows\system32\schedsvc.dll
2011-03-08 17:18:20 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-03-08 17:18:20 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2011-03-08 17:18:19 ----A---- C:\Windows\system32\tquery.dll
2011-03-08 17:18:18 ----A---- C:\Windows\system32\RacEngn.dll
2011-03-08 17:18:18 ----A---- C:\Windows\system32\ntdll.dll
2011-03-08 17:18:18 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2011-03-08 17:18:16 ----A---- C:\Windows\system32\wininet.dll
2011-03-08 17:18:16 ----A---- C:\Windows\system32\rdpdd.dll
2011-03-08 17:18:16 ----A---- C:\Windows\system32\qmgr.dll
2011-03-08 17:18:16 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-03-08 17:18:15 ----A---- C:\Windows\system32\wevtsvc.dll
2011-03-08 17:18:15 ----A---- C:\Windows\system32\urlmon.dll
2011-03-08 17:18:15 ----A---- C:\Windows\system32\ole32.dll
2011-03-08 17:18:14 ----A---- C:\Windows\system32\vssapi.dll
2011-03-08 17:18:14 ----A---- C:\Windows\system32\SearchFolder.dll
2011-03-08 17:18:14 ----A---- C:\Windows\system32\IKEEXT.DLL
2011-03-08 17:18:14 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-03-08 17:18:14 ----A---- C:\Windows\system32\d3d9.dll
2011-03-08 17:18:14 ----A---- C:\Windows\explorer.exe
2011-03-08 17:18:13 ----A---- C:\Windows\system32\taskschd.dll
2011-03-08 17:18:13 ----A---- C:\Windows\system32\kernel32.dll
2011-03-08 17:18:13 ----A---- C:\Windows\system32\crypt32.dll
2011-03-08 17:18:12 ----A---- C:\Windows\system32\spreview.exe
2011-03-08 17:18:12 ----A---- C:\Windows\system32\spinstall.exe
2011-03-08 17:18:12 ----A---- C:\Windows\system32\PushPrinterConnections.exe
2011-03-08 17:18:12 ----A---- C:\Windows\system32\mstsc.exe
2011-03-08 17:18:12 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-03-08 17:18:11 ----A---- C:\Windows\system32\wer.dll
2011-03-08 17:18:11 ----A---- C:\Windows\system32\termsrv.dll
2011-03-08 17:18:11 ----A---- C:\Windows\system32\rpcrt4.dll
2011-03-08 17:18:11 ----A---- C:\Windows\system32\certcli.dll
2011-03-08 17:18:10 ----A---- C:\Windows\system32\msxml6.dll
2011-03-08 17:18:10 ----A---- C:\Windows\system32\lsasrv.dll
2011-03-08 17:18:10 ----A---- C:\Windows\system32\gpsvc.dll
2011-03-08 17:18:10 ----A---- C:\Windows\system32\dwmcore.dll
2011-03-08 17:18:09 ----A---- C:\Windows\system32\WinSAT.exe
2011-03-08 17:18:09 ----A---- C:\Windows\system32\wbengine.exe
2011-03-08 17:18:09 ----A---- C:\Windows\system32\scavengeui.dll
2011-03-08 17:18:09 ----A---- C:\Windows\system32\odbc32.dll
2011-03-08 17:18:09 ----A---- C:\Windows\system32\mstime.dll
2011-03-08 17:18:09 ----A---- C:\Windows\system32\MPSSVC.dll
2011-03-08 17:18:09 ----A---- C:\Windows\system32\diagperf.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\umrdp.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\TSWorkspace.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\tsmf.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\quartz.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\msfeeds.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\localspl.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\iedkcs32.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\dot3api.dll
2011-03-08 17:18:07 ----A---- C:\Windows\system32\winhttp.dll
2011-03-08 17:18:07 ----A---- C:\Windows\system32\setupapi.dll
2011-03-08 17:18:07 ----A---- C:\Windows\system32\MSVidCtl.dll
2011-03-08 17:18:07 ----A---- C:\Windows\system32\drivers\nvstor.sys
2011-03-08 17:18:07 ----A---- C:\Windows\system32\apphelp.dll
2011-03-08 17:18:06 ----A---- C:\Windows\system32\WindowsCodecs.dll
2011-03-08 17:18:06 ----A---- C:\Windows\system32\VSSVC.exe
2011-03-08 17:18:06 ----A---- C:\Windows\system32\netlogon.dll
2011-03-08 17:18:06 ----A---- C:\Windows\system32\dbgeng.dll
2011-03-08 17:18:06 ----A---- C:\Windows\system32\d3d11.dll
2011-03-08 17:18:05 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-03-08 17:18:05 ----A---- C:\Windows\system32\winlogon.exe
2011-03-08 17:18:05 ----A---- C:\Windows\system32\webio.dll
2011-03-08 17:18:05 ----A---- C:\Windows\system32\user32.dll
2011-03-08 17:18:05 ----A---- C:\Windows\system32\netcfgx.dll
2011-03-08 17:18:05 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2011-03-08 17:18:04 ----A---- C:\Windows\system32\WsmSvc.dll
2011-03-08 17:18:04 ----A---- C:\Windows\system32\Query.dll
2011-03-08 17:18:04 ----A---- C:\Windows\system32\gpprefcl.dll
2011-03-08 17:18:04 ----A---- C:\Windows\system32\drivers\srv.sys
2011-03-08 17:18:04 ----A---- C:\Windows\system32\advapi32.dll
2011-03-08 17:18:03 ----A---- C:\Windows\system32\upnp.dll
2011-03-08 17:18:03 ----A---- C:\Windows\system32\schannel.dll
2011-03-08 17:18:03 ----A---- C:\Windows\system32\mmcndmgr.dll
2011-03-08 17:18:03 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2011-03-08 17:18:03 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-03-08 17:18:03 ----A---- C:\Windows\system32\drivers\nvraid.sys
2011-03-08 17:18:02 ----A---- C:\Windows\system32\netfxperf.dll
2011-03-08 17:18:02 ----A---- C:\Windows\system32\msv1_0.dll
2011-03-08 17:18:02 ----A---- C:\Windows\system32\msdrm.dll
2011-03-08 17:18:02 ----A---- C:\Windows\system32\lsm.exe
2011-03-08 17:18:02 ----A---- C:\Windows\system32\imapi2fs.dll
2011-03-08 17:18:02 ----A---- C:\Windows\system32\drivers\csc.sys
2011-03-08 17:18:02 ----A---- C:\Windows\system32\authui.dll
2011-03-08 17:18:01 ----A---- C:\Windows\system32\sppobjs.dll
2011-03-08 17:18:01 ----A---- C:\Windows\system32\shlwapi.dll
2011-03-08 17:18:01 ----A---- C:\Windows\system32\SessEnv.dll
2011-03-08 17:18:01 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2011-03-08 17:18:01 ----A---- C:\Windows\system32\KernelBase.dll
2011-03-08 17:18:00 ----A---- C:\Windows\system32\usp10.dll
2011-03-08 17:18:00 ----A---- C:\Windows\system32\mcbuilder.exe
2011-03-08 17:17:59 ----A---- C:\Windows\system32\xpsservices.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\winload.exe
2011-03-08 17:17:59 ----A---- C:\Windows\system32\WebClnt.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\userenv.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\comdlg32.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\certmgr.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\audiosrv.dll
2011-03-08 17:17:58 ----A---- C:\Windows\system32\sppwinob.dll
2011-03-08 17:17:58 ----A---- C:\Windows\system32\iphlpsvc.dll
2011-03-08 17:17:56 ----A---- C:\Windows\system32\rpcss.dll
2011-03-08 17:17:56 ----A---- C:\Windows\system32\cmd.exe
2011-03-08 17:17:56 ----A---- C:\Windows\system32\BFE.DLL
2011-03-08 17:17:55 ----A---- C:\Windows\system32\wuaueng.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\Wldap32.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\win32spl.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\rdpendp.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\propsys.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\nlasvc.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\mfds.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\framedynos.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\drivers\volsnap.sys
2011-03-08 17:17:55 ----A---- C:\Windows\system32\dnsapi.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\wucltux.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\winresume.exe
2011-03-08 17:17:54 ----A---- C:\Windows\system32\samsrv.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\rdpclip.exe
2011-03-08 17:17:54 ----A---- C:\Windows\system32\profsvc.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\ncsi.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\drivers\netio.sys
2011-03-08 17:17:54 ----A---- C:\Windows\system32\drivers\ndis.sys
2011-03-08 17:17:54 ----A---- C:\Windows\system32\cscsvc.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\azroles.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\werconcpl.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\themeui.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\taskeng.exe
2011-03-08 17:17:53 ----A---- C:\Windows\system32\spp.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\mswsock.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\drivers\storport.sys
2011-03-08 17:17:53 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-03-08 17:17:53 ----A---- C:\Windows\system32\dhcpcore.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\credui.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\appmgr.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\wintrust.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\msxml3.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\inetcomm.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\dxgi.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\drivers\http.sys
2011-03-08 17:17:52 ----A---- C:\Windows\system32\dbghelp.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\basecsp.dll
2011-03-08 17:17:51 ----A---- C:\Windows\system32\WinSATAPI.dll
2011-03-08 17:17:51 ----A---- C:\Windows\system32\taskcomp.dll
2011-03-08 17:17:51 ----A---- C:\Windows\system32\spoolsv.exe
2011-03-08 17:17:51 ----A---- C:\Windows\system32\gdi32.dll
2011-03-08 17:17:51 ----A---- C:\Windows\system32\evr.dll
2011-03-08 17:17:51 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2011-03-08 17:17:51 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2011-03-08 17:17:51 ----A---- C:\Windows\system32\calc.exe
2011-03-08 17:17:50 ----A---- C:\Windows\system32\vpnike.dll
2011-03-08 17:17:50 ----A---- C:\Windows\system32\srvsvc.dll
2011-03-08 17:17:50 ----A---- C:\Windows\system32\sqlsrv32.dll
2011-03-08 17:17:50 ----A---- C:\Windows\system32\QAGENTRT.DLL
2011-03-08 17:17:50 ----A---- C:\Windows\system32\drivers\amdsata.sys
2011-03-08 17:17:49 ----A---- C:\Windows\system32\UIRibbon.dll
2011-03-08 17:17:49 ----A---- C:\Windows\system32\sxs.dll
2011-03-08 17:17:49 ----A---- C:\Windows\system32\netshell.dll
2011-03-08 17:17:49 ----A---- C:\Windows\system32\lpksetup.exe
2011-03-08 17:17:49 ----A---- C:\Windows\system32\ie4uinit.exe
2011-03-08 17:17:49 ----A---- C:\Windows\system32\fveapi.dll
2011-03-08 17:17:49 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-03-08 17:17:49 ----A---- C:\Windows\system32\cryptsvc.dll
2011-03-08 17:17:48 ----A---- C:\Windows\system32\ws2_32.dll
2011-03-08 17:17:48 ----A---- C:\Windows\system32\stobject.dll
2011-03-08 17:17:48 ----A---- C:\Windows\system32\hgprint.dll
2011-03-08 17:17:48 ----A---- C:\Windows\system32\drivers\rdbss.sys
2011-03-08 17:17:48 ----A---- C:\Windows\system32\drivers\msdsm.sys
2011-03-08 17:17:48 ----A---- C:\Windows\system32\comctl32.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\WSDApi.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\wmpeffects.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\rpchttp.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\prncache.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\printui.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\net1.exe
2011-03-08 17:17:47 ----A---- C:\Windows\system32\msi.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\inetpp.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\dps.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\ci.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\aitagent.exe
2011-03-08 17:17:47 ----A---- C:\Windows\system32\aepdu.dll
2011-03-08 17:17:46 ----A---- C:\Windows\system32\WMVCORE.DLL
2011-03-08 17:17:46 ----A---- C:\Windows\system32\vds.exe
2011-03-08 17:17:46 ----A---- C:\Windows\system32\scansetting.dll
2011-03-08 17:17:46 ----A---- C:\Windows\system32\MMDevAPI.dll
2011-03-08 17:17:46 ----A---- C:\Windows\system32\mfc42u.dll
2011-03-08 17:17:46 ----A---- C:\Windows\system32\FXSSVC.exe
2011-03-08 17:17:46 ----A---- C:\Windows\system32\drivers\vmbus.sys
2011-03-08 17:17:46 ----A---- C:\Windows\system32\drivers\pci.sys
2011-03-08 17:17:46 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-03-08 17:17:46 ----A---- C:\Windows\system32\davclnt.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\wpdshext.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\wlangpui.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\t2embed.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\scrptadm.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\QSHVHOST.DLL
2011-03-08 17:17:45 ----A---- C:\Windows\system32\pnidui.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\IPSECSVC.DLL
2011-03-08 17:17:45 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-03-08 17:17:45 ----A---- C:\Windows\system32\consent.exe
2011-03-08 17:17:45 ----A---- C:\Windows\system32\aaclient.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\webservices.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\tscfgwmi.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\SyncCenter.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\netdiagfx.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\fde.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\drivers\termdd.sys
2011-03-08 17:17:44 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2011-03-08 17:17:44 ----A---- C:\Windows\system32\drivers\rdpdr.sys
2011-03-08 17:17:44 ----A---- C:\Windows\system32\drivers\amdxata.sys
2011-03-08 17:17:43 ----A---- C:\Windows\system32\wuapi.dll
2011-03-08 17:17:43 ----A---- C:\Windows\system32\wscapi.dll
2011-03-08 17:17:43 ----A---- C:\Windows\system32\WinSCard.dll
2011-03-08 17:17:43 ----A---- C:\Windows\system32\WFS.exe
2011-03-08 17:17:43 ----A---- C:\Windows\system32\vmicsvc.exe
2011-03-08 17:17:43 ----A---- C:\Windows\system32\sdengin2.dll
2011-03-08 17:17:43 ----A---- C:\Windows\system32\pla.dll
2011-03-08 17:17:43 ----A---- C:\Windows\system32\cscobj.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\WUDFSvc.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\wisptis.exe
2011-03-08 17:17:42 ----A---- C:\Windows\system32\winsta.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\wiaservc.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\setupcl.exe
2011-03-08 17:17:42 ----A---- C:\Windows\system32\rdpcore.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\ntshrui.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2011-03-08 17:17:42 ----A---- C:\Windows\system32\msasn1.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\mcmde.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\imapi2.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\iepeers.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2011-03-08 17:17:42 ----A---- C:\Windows\system32\drivers\msahci.sys
2011-03-08 17:17:42 ----A---- C:\Windows\system32\conhost.exe
2011-03-08 17:17:41 ----A---- C:\Windows\system32\WMPEncEn.dll
2011-03-08 17:17:41 ----A---- C:\Windows\system32\onex.dll
2011-03-08 17:17:41 ----A---- C:\Windows\system32\gameux.dll
2011-03-08 17:17:41 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2011-03-08 17:17:41 ----A---- C:\Windows\system32\dwmredir.dll
2011-03-08 17:17:41 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-03-08 17:17:41 ----A---- C:\Windows\system32\aeinv.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\winmm.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\TabSvc.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\shsvcs.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\rasmans.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\mssvp.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\drivers\udfs.sys
2011-03-08 17:17:40 ----A---- C:\Windows\system32\drivers\acpi.sys
2011-03-08 17:17:39 ----A---- C:\Windows\system32\vaultsvc.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\thumbcache.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\samcli.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\proquota.exe
2011-03-08 17:17:39 ----A---- C:\Windows\system32\netiohlp.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\Narrator.exe
2011-03-08 17:17:39 ----A---- C:\Windows\system32\msutb.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2011-03-08 17:17:39 ----A---- C:\Windows\system32\hbaapi.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\halmacpi.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\hal.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\bootres.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\autofmt.exe
2011-03-08 17:17:39 ----A---- C:\Windows\system32\autoconv.exe
2011-03-08 17:17:39 ----A---- C:\Windows\system32\autochk.exe
2011-03-08 17:17:39 ----A---- C:\Windows\system32\AudioSes.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\audiodg.exe
2011-03-08 17:17:38 ----A---- C:\Windows\system32\srchadmin.dll
2011-03-08 17:17:38 ----A---- C:\Windows\system32\schtasks.exe
2011-03-08 17:17:38 ----A---- C:\Windows\system32\regapi.dll
2011-03-08 17:17:38 ----A---- C:\Windows\system32\msinfo32.exe
2011-03-08 17:17:38 ----A---- C:\Windows\system32\mimefilt.dll
2011-03-08 17:17:38 ----A---- C:\Windows\system32\ipsmsnap.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\wcncsvc.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\tcpipcfg.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\sspicli.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\QAGENT.DLL
2011-03-08 17:17:37 ----A---- C:\Windows\system32\powercpl.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\netid.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\msihnd.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\mscorier.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-03-08 17:17:37 ----A---- C:\Windows\system32\framedyn.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\eapphost.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\drivers\winusb.sys
2011-03-08 17:17:37 ----A---- C:\Windows\system32\drivers\volmgr.sys
2011-03-08 17:17:37 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-03-08 17:17:37 ----A---- C:\Windows\system32\drivers\partmgr.sys
2011-03-08 17:17:37 ----A---- C:\Windows\system32\drivers\netbt.sys
2011-03-08 17:17:37 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2011-03-08 17:17:36 ----A---- C:\Windows\system32\umpo.dll
2011-03-08 17:17:36 ----A---- C:\Windows\system32\DXP.dll
2011-03-08 17:17:36 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-03-08 17:17:36 ----A---- C:\Windows\system32\actxprxy.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\wdc.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\Vault.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\untfs.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\StructuredQuery.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\sppsvc.exe
2011-03-08 17:17:35 ----A---- C:\Windows\system32\sdclt.exe
2011-03-08 17:17:35 ----A---- C:\Windows\system32\scesrv.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\rastls.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\oleaut32.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\nci.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\drivers\ataport.sys
2011-03-08 17:17:34 ----A---- C:\Windows\system32\WMNetMgr.dll
2011-03-08 17:17:34 ----A---- C:\Windows\system32\wlanpref.dll
2011-03-08 17:17:34 ----A---- C:\Windows\system32\RpcRtRemote.dll
2011-03-08 17:17:34 ----A---- C:\Windows\system32\Robocopy.exe
2011-03-08 17:17:34 ----A---- C:\Windows\system32\ListSvc.dll
2011-03-08 17:17:34 ----A---- C:\Windows\system32\licmgr10.dll
2011-03-08 17:17:34 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2011-03-08 17:17:33 ----A---- C:\Windows\system32\taskmgr.exe
2011-03-08 17:17:33 ----A---- C:\Windows\system32\mtxclu.dll
2011-03-08 17:17:33 ----A---- C:\Windows\system32\DxpTaskSync.dll
2011-03-08 17:17:33 ----A---- C:\Windows\system32\Display.dll
2011-03-08 17:17:32 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-03-08 17:17:32 ----A---- C:\Windows\system32\mssphtb.dll
2011-03-08 17:17:32 ----A---- C:\Windows\system32\msdri.dll
2011-03-08 17:17:32 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2011-03-08 17:17:32 ----A---- C:\Windows\system32\drivers\mpio.sys
2011-03-08 17:17:32 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2011-03-08 17:17:31 ----A---- C:\Windows\system32\userinit.exe
2011-03-08 17:17:31 ----A---- C:\Windows\system32\sharemediacpl.dll
2011-03-08 17:17:31 ----A---- C:\Windows\system32\puiobj.dll
2011-03-08 17:17:31 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2011-03-08 17:17:31 ----A---- C:\Windows\system32\cscui.dll
2011-03-08 17:17:30 ----A---- C:\Windows\system32\termmgr.dll
2011-03-08 17:17:30 ----A---- C:\Windows\system32\eudcedit.exe
2011-03-08 17:17:30 ----A---- C:\Windows\system32\drivers\winhv.sys
2011-03-08 17:17:30 ----A---- C:\Windows\system32\drivers\scsiport.sys
2011-03-08 17:17:30 ----A---- C:\Windows\system32\DiagCpl.dll
2011-03-08 17:17:29 ----A---- C:\Windows\system32\drivers\vmstorfl.sys
2011-03-08 17:17:28 ----A---- C:\Windows\system32\wiadefui.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\themecpl.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\sppcomapi.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\shsetup.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\SensorsCpl.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\rasppp.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\msdtctm.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\msconfig.exe
2011-03-08 17:17:28 ----A---- C:\Windows\system32\logoncli.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\drivers\storvsc.sys
2011-03-08 17:17:28 ----A---- C:\Windows\system32\cabview.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\biocpl.dll
2011-03-08 17:17:27 ----A---- C:\Windows\system32\wpccpl.dll
2011-03-08 17:17:27 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2011-03-08 17:17:27 ----A---- C:\Windows\system32\dnscmmc.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\winsrv.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\tapisrv.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\scecli.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\hgcpl.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\fontext.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2011-03-08 17:17:26 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2011-03-08 17:17:25 ----A---- C:\Windows\system32\srcore.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\SndVolSSO.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\mscories.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\mscms.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\mprddm.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\localsec.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\iasacct.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-03-08 17:17:25 ----A---- C:\Windows\system32\bcdsrv.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\wpdbusenum.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\wlanui.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\wkssvc.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\wksprt.exe
2011-03-08 17:17:24 ----A---- C:\Windows\system32\w32tm.exe
2011-03-08 17:17:24 ----A---- C:\Windows\system32\VAN.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\usercpl.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\spwizeng.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\SndVol.exe
2011-03-08 17:17:24 ----A---- C:\Windows\system32\qedit.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\qdvd.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\prntvpt.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\netcenter.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\mblctr.exe
2011-03-08 17:17:24 ----A---- C:\Windows\system32\KMSVC.DLL
2011-03-08 17:17:24 ----A---- C:\Windows\system32\batmeter.dll
2011-03-08 17:17:23 ----A---- C:\Windows\system32\zipfldr.dll
2011-03-08 17:17:23 ----A---- C:\Windows\system32\fdeploy.dll
2011-03-08 17:17:23 ----A---- C:\Windows\system32\drivers\ks.sys
2011-03-08 17:17:23 ----A---- C:\Windows\system32\drivers\afd.sys
2011-03-08 17:17:23 ----A---- C:\Windows\system32\azroleui.dll
2011-03-08 17:17:23 ----A---- C:\Windows\system32\accessibilitycpl.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\wusa.exe
2011-03-08 17:17:22 ----A---- C:\Windows\system32\networkmap.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\netjoin.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\mspbda.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2011-03-08 17:17:22 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\Faultrep.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\cryptui.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\cfgmgr32.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\adsldp.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\taskhost.exe
2011-03-08 17:17:21 ----A---- C:\Windows\system32\taskbarcpl.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\sud.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\slui.exe
2011-03-08 17:17:21 ----A---- C:\Windows\system32\prnfldr.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\photowiz.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\msieftp.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\iasrad.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\credssp.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\ActionCenter.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\wpd_ci.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\sisbkup.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\shwebsvc.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\recovery.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\rdpcorekmts.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\odbcjt32.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\iprtrmgr.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\ifsutil.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\ieUnatt.exe
2011-03-08 17:17:20 ----A---- C:\Windows\system32\iesysprep.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\halacpi.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\ftp.exe
2011-03-08 17:17:20 ----A---- C:\Windows\system32\efscore.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\drivers\hidclass.sys
2011-03-08 17:17:20 ----A---- C:\Windows\system32\dot3cfg.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2011-03-08 17:17:19 ----A---- C:\Windows\system32\syncui.dll
2011-03-08 17:17:19 ----A---- C:\Windows\system32\sdcpl.dll
2011-03-08 17:17:19 ----A---- C:\Windows\system32\rdpwsx.dll
2011-03-08 17:17:19 ----A---- C:\Windows\system32\autoplay.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\wmpmde.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\vdsutil.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\sppnp.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\rtutils.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\OobeFldr.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\ntlanman.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\dskquoui.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\DeviceCenter.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\bcdedit.exe
2011-03-08 17:17:17 ----A---- C:\Windows\system32\systemcpl.dll
2011-03-08 17:17:17 ----A---- C:\Windows\system32\recdisc.exe
2011-03-08 17:17:17 ----A---- C:\Windows\system32\ntprint.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\sethc.exe
2011-03-08 17:17:16 ----A---- C:\Windows\system32\rstrui.exe
2011-03-08 17:17:16 ----A---- C:\Windows\system32\riched20.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\nshwfp.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\netplwiz.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\NAPHLPR.DLL
2011-03-08 17:17:16 ----A---- C:\Windows\system32\fms.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\drivers\tdx.sys
2011-03-08 17:17:16 ----A---- C:\Windows\system32\blackbox.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\bcdboot.exe
2011-03-08 17:17:16 ----A---- C:\Windows\system32\AxInstSv.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\activeds.dll
2011-03-08 17:17:15 ----A---- C:\Windows\system32\wmpsrcwp.dll
2011-03-08 17:17:15 ----A---- C:\Windows\system32\migisol.dll
2011-03-08 17:17:15 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\wuwebv.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\wsqmcons.exe
2011-03-08 17:17:14 ----A---- C:\Windows\system32\wlanmsm.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\wavemsp.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\ReAgent.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\provsvc.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\nshipsec.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\nlaapi.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\msftedit.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\isoburn.exe
2011-03-08 17:17:14 ----A---- C:\Windows\system32\httpapi.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2011-03-08 17:17:14 ----A---- C:\Windows\system32\dot3ui.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\dot3svc.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\dfrgui.exe
2011-03-08 17:17:14 ----A---- C:\Windows\system32\cdosys.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\asycfilt.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\wvc.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\wtsapi32.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\wimgapi.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\webcheck.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\tzutil.exe
2011-03-08 17:17:13 ----A---- C:\Windows\system32\twext.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\sysclass.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\ocsetup.exe
2011-03-08 17:17:13 ----A---- C:\Windows\system32\mstask.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\dsuiext.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2011-03-08 17:17:13 ----A---- C:\Windows\system32\certprop.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\appinfo.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\AdmTmpl.dll
2011-03-08 17:17:12 ----A---- C:\Windows\twain_32.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\wwanconn.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\uxlib.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\srrstr.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\slwga.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\shdocvw.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\setupugc.exe
2011-03-08 17:17:12 ----A---- C:\Windows\system32\qcap.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\qasf.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\PresentationSettings.exe
2011-03-08 17:17:12 ----A---- C:\Windows\system32\occache.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\msrating.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\imm32.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\wmdrmsdk.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\nslookup.exe
2011-03-08 17:17:11 ----A---- C:\Windows\system32\msvfw32.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\msscp.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\mciavi32.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\imgutil.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\clusapi.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\audiodev.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2011-03-08 17:17:10 ----A---- C:\Windows\system32\wimserv.exe
2011-03-08 17:17:10 ----A---- C:\Windows\system32\TSpkg.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\sdrsvc.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\remotepg.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\rdpencom.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\raschap.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\QUTIL.DLL
2011-03-08 17:17:10 ----A---- C:\Windows\system32\perfmon.exe
2011-03-08 17:17:10 ----A---- C:\Windows\system32\odbccp32.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\ocsetapi.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\networkexplorer.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2011-03-08 17:17:10 ----A---- C:\Windows\system32\input.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\drmmgrtn.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\diskraid.exe
2011-03-08 17:17:10 ----A---- C:\Windows\system32\browser.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\acppage.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\wpdwcn.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\wmpdxm.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\vpnikeapi.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\vdsbas.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\runonce.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\onexui.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\olepro32.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\nltest.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\Mcx2Svc.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\logagent.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\iTVData.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\inseng.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\dxdiagn.dll
2011-03-08 17:17:09 ----A---- C:\Windows\bfsvc.exe
2011-03-08 17:17:08 ----A---- C:\Windows\system32\sspisrv.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\msvidc32.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\msiexec.exe
2011-03-08 17:17:08 ----A---- C:\Windows\system32\MFPlay.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\eapp3hst.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\drivers\rmcast.sys
2011-03-08 17:17:08 ----A---- C:\Windows\system32\d3d10level9.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\wudriver.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\wmpshell.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\wmdrmdev.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\unimdmat.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\tabcal.exe
2011-03-08 17:17:07 ----A---- C:\Windows\system32\sqlcese30.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\shacct.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\rdpd3d.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\PnPUnattend.exe
2011-03-08 17:17:07 ----A---- C:\Windows\system32\mprapi.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\lsmproxy.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\iscsium.dll
2011-03-08 17:17:07 -
11 Mars 2011 13:08:39

2011-03-08 17:17:10 ----A---- C:\Windows\system32\acppage.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\wpdwcn.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\wmpdxm.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\vpnikeapi.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\vdsbas.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\runonce.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\onexui.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\olepro32.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\nltest.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\Mcx2Svc.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\logagent.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\iTVData.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\inseng.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\dxdiagn.dll
2011-03-08 17:17:09 ----A---- C:\Windows\bfsvc.exe
2011-03-08 17:17:08 ----A---- C:\Windows\system32\sspisrv.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\msvidc32.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\msiexec.exe
2011-03-08 17:17:08 ----A---- C:\Windows\system32\MFPlay.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\eapp3hst.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\drivers\rmcast.sys
2011-03-08 17:17:08 ----A---- C:\Windows\system32\d3d10level9.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\wudriver.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\wmpshell.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\wmdrmdev.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\unimdmat.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\tabcal.exe
2011-03-08 17:17:07 ----A---- C:\Windows\system32\sqlcese30.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\shacct.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\rdpd3d.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\PnPUnattend.exe
2011-03-08 17:17:07 ----A---- C:\Windows\system32\mprapi.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\lsmproxy.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\iscsium.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\cscapi.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\bitsadmin.exe
2011-03-08 17:17:06 ----A---- C:\Windows\system32\wwanprotdim.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\WUDFPlatform.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\WPDSp.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\tsgqec.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\srvcli.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2011-03-08 17:17:06 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\pdh.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\OpcServices.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\olethk32.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\odbctrac.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\ncryptui.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\MdSched.exe
2011-03-08 17:17:06 ----A---- C:\Windows\system32\lpremove.exe
2011-03-08 17:17:06 ----A---- C:\Windows\system32\logman.exe
2011-03-08 17:17:06 ----A---- C:\Windows\system32\djoin.exe
2011-03-08 17:17:06 ----A---- C:\Windows\system32\CscMig.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\ActionQueue.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\WMPhoto.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\WMADMOD.DLL
2011-03-08 17:17:05 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
2011-03-08 17:17:05 ----A---- C:\Windows\system32\wiavideo.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\utildll.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2011-03-08 17:17:05 ----A---- C:\Windows\system32\takeown.exe
2011-03-08 17:17:05 ----A---- C:\Windows\system32\mshtmled.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\mapistub.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\mapi32.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\fphc.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2011-03-08 17:17:05 ----A---- C:\Windows\system32\dot3msm.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\avifil32.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\WMVSDECD.DLL
2011-03-08 17:17:04 ----A---- C:\Windows\system32\wmdrmnet.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\sqmapi.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\sppinst.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\qdv.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\msnetobj.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\iyuv_32.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\imagehlp.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\EhStorAPI.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\WUDFx.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\WUDFHost.exe
2011-03-08 17:17:03 ----A---- C:\Windows\system32\wsnmp32.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2011-03-08 17:17:03 ----A---- C:\Windows\system32\vfwwdm32.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\unattend.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\setupcln.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\RelPost.exe
2011-03-08 17:17:03 ----A---- C:\Windows\system32\qprocess.exe
2011-03-08 17:17:03 ----A---- C:\Windows\system32\QCLIPROV.DLL
2011-03-08 17:17:03 ----A---- C:\Windows\system32\pdhui.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\MuiUnattend.exe
2011-03-08 17:17:03 ----A---- C:\Windows\system32\msyuv.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\msrle32.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\cmstp.exe
2011-03-08 17:17:03 ----A---- C:\Windows\system32\cca.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\basesrv.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\wuauclt.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\wkscli.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\WavDest.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\umb.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\tsbyuv.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\sppuinotify.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\spbcd.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\relog.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\qwinsta.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\quser.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\netiougc.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\mydocs.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\msorcl32.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\msg.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\iscsicli.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\iasrecst.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2011-03-08 17:17:02 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2011-03-08 17:17:02 ----A---- C:\Windows\system32\chglogon.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\AzSqlExt.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\amstream.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\wuapp.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\wmpps.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\tsdiscon.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\tscon.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\syssetup.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\setbcdlocale.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\secur32.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\resutils.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\rastapi.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\qappsrv.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\PrintBrmUi.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\nrpsrv.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\netbtugc.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\MultiDigiMon.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\itircl.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\FXSTIFF.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2011-03-08 17:17:01 ----A---- C:\Windows\system32\diskpart.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\chgusr.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\chgport.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\CertPolEng.dll
2011-03-08 17:17:00 ----A---- C:\Windows\system32\wiarpc.dll
2011-03-08 17:17:00 ----A---- C:\Windows\system32\WerFaultSecure.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\tskill.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\tlscsp.dll
2011-03-08 17:17:00 ----A---- C:\Windows\system32\rwinsta.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\ReAgentc.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\netutils.dll
2011-03-08 17:17:00 ----A---- C:\Windows\system32\mciqtz32.dll
2011-03-08 17:17:00 ----A---- C:\Windows\system32\logoff.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\findstr.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\eappgnui.dll
2011-03-08 17:17:00 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-03-08 17:16:59 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\sppc.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\spopk.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\shimgvw.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\shadow.exe
2011-03-08 17:16:59 ----A---- C:\Windows\system32\prevhost.exe
2011-03-08 17:16:59 ----A---- C:\Windows\system32\netapi32.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\muifontsetup.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\mobsync.exe
2011-03-08 17:16:59 ----A---- C:\Windows\system32\luainstall.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\iccvid.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2011-03-08 17:16:59 ----A---- C:\Windows\system32\drivers\tdi.sys
2011-03-08 17:16:59 ----A---- C:\Windows\system32\dosx.exe
2011-03-08 17:16:59 ----A---- C:\Windows\system32\cabinet.dll
2011-03-08 17:16:58 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2011-03-08 17:16:58 ----A---- C:\Windows\system32\vmstorfltres.dll
2011-03-08 17:16:58 ----A---- C:\Windows\system32\vmicres.dll
2011-03-08 17:16:58 ----A---- C:\Windows\system32\unlodctr.exe
2011-03-08 17:16:58 ----A---- C:\Windows\system32\reset.exe
2011-03-08 17:16:58 ----A---- C:\Windows\system32\repair-bde.exe
2011-03-08 17:16:58 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2011-03-08 17:16:58 ----A---- C:\Windows\system32\query.exe
2011-03-08 17:16:58 ----A---- C:\Windows\system32\netcfg.exe
2011-03-08 17:16:58 ----A---- C:\Windows\system32\msdmo.dll
2011-03-08 17:16:58 ----A---- C:\Windows\system32\manage-bde.exe
2011-03-08 17:16:58 ----A---- C:\Windows\system32\inetmib1.dll
2011-03-08 17:16:58 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2011-03-08 17:16:58 ----A---- C:\Windows\system32\change.exe
2011-03-08 17:16:57 ----A---- C:\Windows\system32\wups.dll
2011-03-08 17:16:57 ----A---- C:\Windows\system32\vmbusres.dll
2011-03-08 17:16:57 ----A---- C:\Windows\system32\UIRibbonRes.dll
2011-03-08 17:16:57 ----A---- C:\Windows\system32\profprov.dll
2011-03-08 17:16:57 ----A---- C:\Windows\system32\perfts.dll
2011-03-08 17:16:57 ----A---- C:\Windows\system32\odbcconf.dll
2011-03-08 17:16:57 ----A---- C:\Windows\system32\drivers\cdrom.sys
2011-03-08 17:16:57 ----A---- C:\Windows\system32\browcli.dll
2011-03-08 17:16:56 ----A---- C:\Windows\system32\TRAPI.dll
2011-03-08 17:16:56 ----A---- C:\Windows\system32\msfeedssync.exe
2011-03-08 17:16:56 ----A---- C:\Windows\system32\icaapi.dll
2011-03-08 17:16:56 ----A---- C:\Windows\system32\FXSMON.dll
2011-03-08 17:16:56 ----A---- C:\Windows\system32\elsTrans.dll
2011-03-08 17:16:56 ----A---- C:\Windows\system32\drivers\tunnel.sys
2011-03-08 17:16:56 ----A---- C:\Windows\system32\drivers\dfsc.sys
2011-03-08 17:16:55 ----A---- C:\Windows\system32\wshbth.dll
2011-03-08 17:16:55 ----A---- C:\Windows\system32\schedcli.dll
2011-03-08 17:16:55 ----A---- C:\Windows\system32\RDPENCDD.dll
2011-03-08 17:16:55 ----A---- C:\Windows\system32\napdsnap.dll
2011-03-08 17:16:55 ----A---- C:\Windows\system32\dsauth.dll
2011-03-08 17:16:55 ----A---- C:\Windows\system32\bitsperf.dll
2011-03-08 17:16:54 ----A---- C:\Windows\system32\sscore.dll
2011-03-08 17:16:54 ----A---- C:\Windows\system32\LogonUI.exe
2011-03-08 17:16:54 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2011-03-08 17:16:54 ----A---- C:\Windows\system32\cscdll.dll
2011-03-08 17:16:53 ----A---- C:\Windows\system32\wups2.dll
2011-03-08 17:16:53 ----A---- C:\Windows\system32\wsdchngr.dll
2011-03-08 17:16:53 ----A---- C:\Windows\system32\shgina.dll
2011-03-08 17:16:53 ----A---- C:\Windows\system32\riched32.dll
2011-03-08 17:16:53 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2011-03-08 17:16:52 ----A---- C:\Windows\system32\rdpcfgex.dll
2011-03-08 17:16:52 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2011-03-08 17:16:52 ----A---- C:\Windows\system32\drivers\VMBusHID.sys
2011-03-08 17:16:52 ----A---- C:\Windows\system32\drivers\hidusb.sys
2011-03-08 17:16:52 ----A---- C:\Windows\system32\drivers\appid.sys
2011-03-08 17:16:51 ----A---- C:\Windows\system32\wshirda.dll
2011-03-08 17:16:51 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2011-03-08 17:16:50 ----A---- C:\Windows\system32\vmictimeprovider.dll
2011-03-08 17:16:50 ----A---- C:\Windows\system32\vmbuspipe.dll
2011-03-08 17:16:50 ----A---- C:\Windows\system32\VmbusCoinstaller.dll
2011-03-08 17:16:50 ----A---- C:\Windows\system32\spwmp.dll
2011-03-08 17:16:50 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2011-03-08 17:16:50 ----A---- C:\Windows\system32\drivers\USBCAMD.sys
2011-03-08 17:16:50 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2011-03-08 17:16:50 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2011-03-08 17:16:50 ----A---- C:\Windows\system32\drivers\Dot4Prt.sys
2011-03-08 17:16:50 ----A---- C:\Windows\system32\browseui.dll
2011-03-08 17:16:49 ----A---- C:\Windows\system32\VmdCoinstall.dll
2011-03-08 17:16:49 ----A---- C:\Windows\system32\RDPREFDD.dll
2011-03-08 17:16:49 ----A---- C:\Windows\system32\IcCoinstall.dll
2011-03-08 17:16:49 ----A---- C:\Windows\system32\dxmasf.dll
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\wanarp.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\umbus.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\tdpipe.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\scfilter.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\RDPCDD.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\C_ISCII.DLL
2011-03-08 17:16:48 ----A---- C:\Windows\system32\shunimpl.dll
2011-03-08 17:16:47 ----A---- C:\Windows\system32\wmploc.DLL
2011-03-08 17:16:47 ----A---- C:\Windows\system32\KBDUS.DLL
2011-03-08 17:16:47 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2011-03-08 17:16:47 ----A---- C:\Windows\system32\KBDTURME.DLL
2011-03-08 17:16:47 ----A---- C:\Windows\system32\KBDINTEL.DLL
2011-03-08 17:16:47 ----A---- C:\Windows\system32\KBDINKAN.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDTUQ.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDTUF.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDSG.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDSF.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDPO.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDNEPR.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDMON.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDMAORI.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDLT1.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\kbdlk41a.dll
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDINTAM.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDINORI.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDINMAR.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDINHIN.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDINBEN.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDGR1.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDGEO.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDBULG.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDBLR.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDBASH.DLL
2011-03-08 17:16:45 ----A---- C:\Windows\system32\tzres.dll
2011-03-08 17:16:45 ----A---- C:\Windows\system32\spwizres.dll
2011-03-08 17:16:45 ----A---- C:\Windows\system32\pifmgr.dll
2011-03-08 17:16:45 ----A---- C:\Windows\system32\nlsbres.dll
2011-03-08 17:16:45 ----A---- C:\Windows\system32\KBDGKL.DLL
2011-03-08 17:16:45 ----A---- C:\Windows\system32\KBDCZ1.DLL
2011-03-08 17:16:45 ----A---- C:\Windows\system32\drivers\vms3cap.sys
2011-03-08 17:16:45 ----A---- C:\Windows\system32\dpnaddr.dll
2011-03-08 17:16:45 ----A---- C:\Windows\system32\BlbEvents.dll
2011-03-08 17:16:05 ----A---- C:\Windows\system32\wmicmiplugin.dll
2011-03-08 17:16:05 ----A---- C:\Windows\system32\wbemcomn.dll
2011-03-08 17:15:55 ----A---- C:\Windows\system32\SmiEngine.dll
2011-03-08 17:15:49 ----A---- C:\Windows\system32\wdscore.dll
2011-03-08 17:15:49 ----A---- C:\Windows\system32\PkgMgr.exe
2011-03-08 17:15:03 ----A---- C:\Windows\system32\drvstore.dll
2011-03-08 17:15:03 ----A---- C:\Windows\system32\dpx.dll
2011-03-08 17:10:02 ----A---- C:\Windows\system32\d3d10_1.dll
2011-03-08 17:02:28 ----A---- C:\Windows\eSellerateEngine.dll
2011-03-08 17:02:28 ----A---- C:\Windows\eSellerateControl350.dll
2011-03-08 17:02:26 ----D---- C:\Program Files\Fake Alert Removal Tool
2011-03-08 11:07:46 ----A---- C:\Windows\system32\drivers\trufos.sys
2011-03-08 11:05:55 ----A---- C:\Windows\system32\drivers\bdhv.sys
2011-03-06 09:10:25 ----D---- C:\ProgramData\McAfee Security Scan
2011-03-06 09:10:25 ----D---- C:\ProgramData\McAfee
2011-03-06 09:10:24 ----D---- C:\Program Files\McAfee Security Scan
2011-03-02 13:04:12 ----D---- C:\Program Files\Conduit
2011-02-26 19:25:17 ----D---- C:\Program Files\Veetle
2011-02-23 08:00:39 ----A---- C:\Windows\system32\XpsPrint.dll
2011-02-23 08:00:39 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-02-17 10:24:44 ----D---- C:\Users\User\AppData\Roaming\GSplit
2011-02-17 10:24:43 ----D---- C:\Program Files\Common Files\GSplit
2011-02-17 10:24:42 ----D---- C:\Program Files\GSplit
2011-02-14 11:37:39 ----A---- C:\Windows\system32\javaws.exe
2011-02-14 11:37:39 ----A---- C:\Windows\system32\javaw.exe
2011-02-14 11:37:39 ----A---- C:\Windows\system32\java.exe
2011-02-12 14:01:04 ----A---- C:\bdlog.txt
2011-02-12 13:59:40 ----D---- C:\ProgramData\bdch
2011-02-12 11:02:12 ----A---- C:\Windows\system32\drivers\bdfndisf6.sys
2011-02-12 10:53:28 ----D---- C:\Users\User\AppData\Roaming\BitDefender
2011-02-12 10:53:15 ----D---- C:\Program Files\BitDefender
2011-02-12 10:43:55 ----D---- C:\Users\User\AppData\Roaming\QuickScan
2011-02-12 10:43:26 ----D---- C:\ProgramData\BitDefender
2011-02-12 10:43:26 ----D---- C:\Program Files\Common Files\BitDefender
2011-02-12 10:42:59 ----A---- C:\Windows\system32\drivers\bdfsfltr.sys

======List of files/folders modified in the last 1 months======

2011-03-10 14:12:32 ----D---- C:\Windows\Temp
2011-03-10 14:12:31 ----D---- C:\Windows\Prefetch
2011-03-10 14:12:13 ----RD---- C:\Program Files
2011-03-10 13:45:38 ----D---- C:\Windows\system32\config
2011-03-10 13:37:10 ----D---- C:\Windows\System32
2011-03-10 13:36:21 ----D---- C:\Windows\inf
2011-03-10 13:36:21 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-03-10 13:32:12 ----D---- C:\Windows\winsxs
2011-03-10 08:32:35 ----D---- C:\Windows\debug
2011-03-10 08:32:34 ----A---- C:\Windows\system32\MRT.exe
2011-03-10 08:32:25 ----SHD---- C:\Windows\Installer
2011-03-10 08:32:24 ----HD---- C:\Config.Msi
2011-03-10 08:32:24 ----D---- C:\ProgramData\Microsoft Help
2011-03-10 08:31:34 ----SHD---- C:\System Volume Information
2011-03-10 08:30:48 ----D---- C:\Windows\system32\catroot
2011-03-10 08:29:00 ----D---- C:\Windows\system32\catroot2
2011-03-09 17:33:46 ----D---- C:\Windows\rescache
2011-03-09 14:54:49 ----HD---- C:\ProgramData
2011-03-08 21:14:09 ----D---- C:\Windows\system32\drivers
2011-03-08 18:20:29 ----D---- C:\Windows\Microsoft.NET
2011-03-08 18:19:41 ----RSD---- C:\Windows\assembly
2011-03-08 17:40:55 ----SHD---- C:\Boot
2011-03-08 17:39:59 ----D---- C:\Windows
2011-03-08 17:39:24 ----D---- C:\Windows\system32\DriverStore
2011-03-08 17:35:50 ----D---- C:\Program Files\Windows Sidebar
2011-03-08 17:35:50 ----D---- C:\Program Files\Windows Portable Devices
2011-03-08 17:35:50 ----D---- C:\Program Files\Windows Photo Viewer
2011-03-08 17:35:50 ----D---- C:\Program Files\Windows Media Player
2011-03-08 17:35:50 ----D---- C:\Program Files\Windows Mail
2011-03-08 17:35:50 ----D---- C:\Program Files\Windows Journal
2011-03-08 17:35:50 ----D---- C:\Program Files\Internet Explorer
2011-03-08 17:35:50 ----D---- C:\Program Files\DVD Maker
2011-03-08 17:35:45 ----D---- C:\Windows\servicing
2011-03-08 17:35:45 ----D---- C:\Windows\ehome
2011-03-08 17:35:45 ----D---- C:\Program Files\Windows Defender
2011-03-08 17:35:39 ----D---- C:\Windows\PolicyDefinitions
2011-03-08 17:35:38 ----D---- C:\Windows\system32\sysprep
2011-03-08 17:35:38 ----D---- C:\Windows\system32\oobe
2011-03-08 17:35:38 ----D---- C:\Windows\system32\migration
2011-03-08 17:35:38 ----D---- C:\Windows\system32\da-DK
2011-03-08 17:35:38 ----D---- C:\Windows\system32\AdvancedInstallers
2011-03-08 17:35:36 ----D---- C:\Windows\system32\fr-FR
2011-03-08 17:35:34 ----D---- C:\Windows\system32\sppui
2011-03-08 17:35:34 ----D---- C:\Windows\system32\Setup
2011-03-08 17:35:34 ----D---- C:\Windows\system32\manifeststore
2011-03-08 17:35:34 ----D---- C:\Windows\system32\es-ES
2011-03-08 17:35:34 ----D---- C:\Windows\system32\cs-CZ
2011-03-08 17:35:33 ----D---- C:\Windows\system32\drivers\fr-FR
2011-03-08 17:35:32 ----D---- C:\Windows\system32\wbem
2011-03-08 17:35:31 ----D---- C:\Windows\system32\migwiz
2011-03-08 17:35:31 ----D---- C:\Windows\system32\Dism
2011-03-08 17:35:01 ----RSD---- C:\Windows\Fonts
2011-03-08 17:35:01 ----D---- C:\Windows\AppPatch
2011-03-08 17:33:01 ----D---- C:\Windows\system32\Boot
2011-03-08 17:27:42 ----A---- C:\Windows\system32\msclmd.dll
2011-03-08 11:05:31 ----D---- C:\Windows\system32\drivers\UMDF
2011-03-07 06:37:02 ----D---- C:\ProgramData\Adobe
2011-03-06 09:21:22 ----SD---- C:\Users\User\AppData\Roaming\Microsoft
2011-03-06 09:21:22 ----D---- C:\Users\User\AppData\Roaming\Adobe
2011-03-06 09:17:35 ----D---- C:\Program Files\Common Files\Adobe
2011-03-06 09:17:30 ----D---- C:\Program Files\Adobe
2011-03-03 08:56:44 ----D---- C:\Program Files\TuneUp Utilities 2011
2011-03-03 08:51:48 ----D---- C:\Windows\system32\NDF
2011-03-01 12:01:56 ----D---- C:\Program Files\Microsoft Silverlight
2011-02-24 10:40:32 ----D---- C:\Windows\system32\Tasks
2011-02-23 18:01:21 ----D---- C:\ProgramData\CyberLink
2011-02-23 16:48:46 ----A---- C:\Windows\system32\TURegOpt.exe
2011-02-23 16:44:16 ----A---- C:\Windows\system32\authuitu.dll
2011-02-23 16:44:08 ----A---- C:\Windows\system32\uxtuneup.dll
2011-02-17 10:24:43 ----D---- C:\Program Files\Common Files
2011-02-15 14:51:57 ----A---- C:\Windows\win.ini
2011-02-14 12:48:53 ----D---- C:\Program Files\HP
2011-02-14 11:37:34 ----D---- C:\Program Files\Java
2011-02-12 19:48:28 ----D---- C:\Windows\system32\wdi
2011-02-12 14:23:57 ----D---- C:\Program Files\Common Files\PX Storage Engine

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 bdfsfltr;bdfsfltr; C:\Windows\system32\DRIVERS\bdfsfltr.sys [2010-07-27 327368]
R0 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys [2009-08-04 213024]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2009-04-17 44944]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 Si3531;SiI-3531 SATA Controller; C:\Windows\system32\DRIVERS\Si3531.sys [2009-02-05 212520]
R0 SiFilter;SATALink driver accelerator; C:\Windows\system32\DRIVERS\SiWinAcc.sys [2009-02-05 17064]
R0 SiRemFil;SATALink External Device Filter; C:\Windows\system32\DRIVERS\SiRemFil.sys [2009-02-05 12200]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 Bdfndisf;BitDefender Firewall NDIS 6 Filter Driver; \??\c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2011-02-12 72784]
R1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys [2011-02-12 88144]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
11 Mars 2011 13:54:01

Excuse, je me rends compte que tout n'est pas passé ... manque ceci :

R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/04/26 15:25:49]; \??\C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-03-13 87536]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 Trufos;Trufos; C:\Windows\system32\DRIVERS\Trufos.sys [2011-03-08 308152]
R3 BDFM;BDFM; C:\Windows\system32\DRIVERS\bdfm.sys [2010-05-13 152528]
R3 bdselfpr;bdselfpr; \??\C:\Program Files\BitDefender\BitDefender 2011\bdselfpr.sys [2011-03-08 91328]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\Windows\system32\DRIVERS\L8042Kbd.sys [2009-06-17 20240]
R3 L8042mou;SetPoint PS/2 Mouse Filter Driver; C:\Windows\system32\DRIVERS\L8042mou.Sys [2009-06-17 63248]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2009-06-17 35472]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2009-06-17 37392]
R3 LMouKE;SetPoint Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouKE.Sys [2009-06-17 79248]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6232.sys [2009-07-30 287392]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [2010-11-29 10064]
R3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 61883;Pilote d'unité 61883; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 46976]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Pilote de filtre du bus AMD AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 Avc;Périphérique AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 40320]
S3 AVCSTRM;AVC Streaming Filter Driver; C:\Windows\system32\DRIVERS\avcstrm.sys [2009-07-14 14464]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 131072]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\drivers\Dot4Prt.sys [2010-11-20 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 36864]
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [2010-05-01 14336]
S3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2007-01-04 171520]
S3 mbr;mbr; \??\C:\Users\User\AppData\Local\Temp\mbr.sys []
S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\Windows\system32\DRIVERS\mstape.sys [2009-07-14 50048]
S3 NVENETFD;Pilote du contrôleur de réseau NVIDIA nForce; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-14 347264]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtre de bus AGP SIS; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;Filtre de bus AGP VIA; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S4 avc3;avc3; C:\Windows\system32\DRIVERS\avc3.sys [2010-06-28 633424]
S4 avckf;avckf; C:\Windows\system32\DRIVERS\avckf.sys [2010-06-28 970320]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [2009-08-10 387616]
R2 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2009-07-20 121360]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [2009-08-10 178720]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-07-09 129640]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2011-02-23 1517376]
R2 Updatesrv;BitDefender Desktop Update Service; C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe [2011-03-08 43936]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 VSSERV;BitDefender Virus Shield; C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe [2011-03-08 2050864]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 PCLEPCI;PCLEPCI; C:\Windows\system32\drivers\pclepci.sys [2005-02-09 14165]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-04-27 654848]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2010-06-10 253808]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Update Server;BitDefender Update Server v2; C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2011-03-08 307544]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-04-27 1343400]

-----------------EOF-----------------
11 Mars 2011 14:18:02

info.txt logfile of random's system information tool 1.08 2011-03-10 14:12:38

======Uninstall list======

-->MsiExec /X{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}
32 Bit HP CIO Components Installer-->MsiExec.exe /I{92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D}
46 Jeux de Cartes-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B84986B5-35DA-406A-BBDC-6B65E3ECDE04}\Setup.exe" -l0x40c
Adobe AIR-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Anchor Service CS3-->MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
Adobe Asset Services CS3-->MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
Adobe Bridge CS3-->MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394}
Adobe Bridge Start Meeting-->MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
Adobe Camera Raw 4.0-->MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}
Adobe CMaps-->MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}
Adobe Color - Photoshop Specific-->MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E}
Adobe Color Common Settings-->C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\Setup.exe
Adobe Color Common Settings-->MsiExec.exe /I{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}
Adobe Color EU Recommended Settings-->MsiExec.exe /I{73B5D990-04EA-4751-B10F-5534770B91F2}
Adobe Color JA Extra Settings-->MsiExec.exe /I{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}
Adobe Color NA Extra Settings-->MsiExec.exe /I{FF29A7E2-FF40-4D07-B7E4-2093DE59E10A}
Adobe Community Help-->msiexec /qb /x {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
Adobe Community Help-->MsiExec.exe /I{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
Adobe Default Language CS3-->MsiExec.exe /I{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}
Adobe Device Central CS3-->MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
Adobe ExtendScript Toolkit 2-->C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\Setup.exe
Adobe ExtendScript Toolkit 2-->MsiExec.exe /I{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}
Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\FlashUtil10m_Plugin.exe -maintain plugin
Adobe Fonts All-->MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B}
Adobe Help Viewer CS3-->MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
Adobe Linguistics CS3-->MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
Adobe PDF Library Files-->MsiExec.exe /I{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}
Adobe Photoshop CS3-->C:\Program Files\Common Files\Adobe\Installers\32e9033392a51340b32fdc6ad893ab7\Setup.exe
Adobe Photoshop CS3-->MsiExec.exe /I{BF794769-8875-4E01-B7BE-E00104604F4A}
Adobe Photoshop CS5-->C:\Program Files\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="1.0" --mode="Uninstall" --mediaSignature="{15FEDA5F-141C-4127-8D7E-B962D1742728}"
Adobe Photoshop Lightroom 3.3-->MsiExec.exe /I{8C1D4735-84E4-41E2-A1DB-70EADE27633C}
Adobe Reader X (10.0.1) - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-AA0000000001}
Adobe Setup-->MsiExec.exe /I{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}
Adobe Setup-->MsiExec.exe /I{926DEB4E-2B0A-4C5C-AE4A-BF6C06949702}
Adobe Setup-->MsiExec.exe /I{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}
Adobe Stock Photos CS3-->MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
Adobe Type Support-->MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}
Adobe Update Manager CS3-->MsiExec.exe /I{E69AE897-9E0B-485C-8552-7841F48D42D8}
Adobe Version Cue CS3 Client-->MsiExec.exe /I{D0DFF92A-492E-4C40-B862-A74A173C25C5}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
Adobe XMP Panels CS3-->MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
BitDefender Internet Security 2011-->C:\Program Files\Common Files\BitDefender\SetupInformation\{8679822F-D7A6-490C-BAD6-F910AA09C061}\setup.exe /repair
BitDefender Internet Security 2011-->MsiExec.exe /I{8679822F-D7A6-490C-BAD6-F910AA09C061}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
CDDRV_Installer-->MsiExec.exe /I{0C826C5B-B131-423A-A229-C71B3CACCD6A}
ConvertMovie 6-->MsiExec.exe /I{CD1E9AF3-3251-4F4B-98AB-1B029CCEFE9C}
ConvertXtoDVD 4.1.2.336-->"D:\Programmes\4\unins000.exe"
CyberLink PowerDVD 10-->"C:\Program Files\InstallShield Installation Information\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\setup.exe" /z-uninstall
CyberLink PowerDVD 10-->"C:\Program Files\InstallShield Installation Information\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\setup.exe" /z-uninstall
D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
DVD Shrink 3.2-->"C:\Program Files\DVD Shrink\unins000.exe"
EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r
erLT-->MsiExec.exe /I{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}
Fake Alert Removal Tool-->"C:\Program Files\Fake Alert Removal Tool\unins000.exe"
Galerie de photos Windows Live-->MsiExec.exe /X{488F0347-C4A7-4374-91A7-30818BEDA710}
GSplit 3-->C:\Program Files\GSplit\Uninst.exe
IncrediMail 2.0-->C:\Program Files\IncrediMail\Bin\ImSetup.exe /uninstallProduct /addon:incredimail
IncrediMail-->MsiExec.exe /X{5E97F3BD-CDDC-4188-9D98-532E14FABB5D}
Internet TV pour Windows Media Center-->MsiExec.exe /X{9D318C86-AF4C-409F-A6AC-7183FF4CF424}
Java(TM) 6 Update 23-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020FF}
Junk Mail filter update-->MsiExec.exe /I{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
KhalInstallWrapper-->MsiExec.exe /I{3101CB58-3482-4D21-AF1A-7057FC935355}
Knoll Light Factory EZ Studio-->C:\Windows\unvise32.exe C:\Program Files\Pinnacle\Studio 14\Plugins\RTFx\klfezstudio.log
LauncherMA-->MsiExec.exe /X{C06EFB22-B5DB-46C5-9215-BCB5C19C0858}
Logitech SetPoint-->"C:\Program Files\InstallShield Installation Information\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}\setup.exe" -runfromtemp -l0x040c -removeonly
Ma-Config.com-->MsiExec.exe /X{62008929-7F3E-4565-A3DF-F55F35009021}
Magic Bullet Looks Studio-->C:\Windows\unvise32.exe C:\Program Files\Pinnacle\Studio 14\Plugins\RTFx\mblooksstudio.log
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
McAfee Security Scan Plus-->"C:\Program Files\McAfee Security Scan\uninstall.exe"
Micro Application - Belote et Coinche/Contrée-->C:\Windows\IsUn040c.exe -fd:\Uninst.isu
Microsoft .NET Framework 4 Client Profile FRA Language Pack-->MsiExec.exe /X{0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft Default Manager-->MsiExec.exe /X{1CAC7A41-583B-4483-9FA5-3E5465AFF8C2}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office Live Add-in 1.5-->MsiExec.exe /I{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Professional 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROR /dll OSETUP.DLL
Microsoft Office Professional 2007-->MsiExec.exe /X{91120000-0014-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8FAA964C5}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft_VC80_ATL_x86-->MsiExec.exe /I{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}
Microsoft_VC80_CRT_x86-->MsiExec.exe /I{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}
Microsoft_VC80_MFC_x86-->MsiExec.exe /I{D1A19B02-817E-4296-A45B-07853FD74D57}
Microsoft_VC80_MFCLOC_x86-->MsiExec.exe /I{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}
Microsoft_VC90_ATL_x86-->MsiExec.exe /I{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}
Microsoft_VC90_CRT_x86-->MsiExec.exe /I{08D2E121-7F6A-43EB-97FD-629B44903403}
Microsoft_VC90_MFC_x86-->MsiExec.exe /I{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}
Mise à jour Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {B761869A-B85C-40E2-994C-A1CE78AC8F2C}
Mise à jour Microsoft Office Outlook 2007 Help (KB963677)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {51EFB347-1F3D-4BAC-8B79-F056B904FE21}
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {C3DCA38E-005E-41BA-A52A-7C3429F351C3}
Mise à jour Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {81536A04-DBFB-4DB3-978F-0F284590C223}
Module linguistique Microsoft .NET Framework 4 Client Profile FRA-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /lcid 1036 /parameterfolder ClientLP
Mozilla Firefox (3.6.13)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Nero 7 Lite 7.9.6.0-->"C:\Program Files\Nero\unins000.exe"
NVIDIA Display Control Panel-->C:\Program Files\NVIDIA Corporation\Uninstall\nvuninst.exe DisplayControlPanel
NVIDIA Drivers-->C:\Program Files\NVIDIA Corporation\Uninstall\nvuninst.exe UninstallGUI
NVIDIA ForceWare Network Access Manager-->"C:\Program Files\InstallShield Installation Information\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}\setup.exe" -runfromtemp -l0x040c -removeonly
NVIDIA ForceWare Network Access Manager-->MsiExec.exe /I{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}
NVIDIA PhysX-->MsiExec.exe /X{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}
ODS-->C:\Program Files\ODS\Uninstal.exe
PDF Settings CS5-->MsiExec.exe /I{A78FE97A-C0C8-49CE-89D0-EDD524A17392}
PDF Settings-->MsiExec.exe /I{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}
Photorécit 3 pour Windows-->MsiExec.exe /I{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}
Pinnacle Studio 14-->MsiExec.exe /I{AADD1C8F-D59F-4D55-A726-768C71A205A8}
Pinnacle Studio Ultimate Collection Plugins-->MsiExec.exe /I{F5C372A1-40F3-49DA-A049-F75CDE9177DC}
proDAD Heroglyph 2.5-->"C:\Program Files\proDAD\Heroglyph-2.5\uninstall.exe" uninstall spcp PATHVERSION 2.5 MAINNAME Heroglyph
proDAD Vitascene 1.0-->"C:\Program Files\proDAD\Vitascene-1.0\uninstall.exe" uninstall spcp PATHVERSION 1.0 MAINNAME Vitascene
PVSonyDll-->MsiExec.exe /I{3D3E663D-4E7E-4577-A560-7ECDDD45548A}
Red Giant ToonIt Studio-->C:\Windows\unvise32.exe C:\Program Files\Pinnacle\Studio 14\Plugins\RTFx\rgtoonitstudio.log
Security Update for 2007 Microsoft Office System (KB2288621)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {5C497F0B-2061-4CC9-A61C-6B45B867354D}
Security Update for 2007 Microsoft Office System (KB2288931)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {CD769337-C8AC-46DB-A7DC-643E50089263}
Security Update for 2007 Microsoft Office System (KB2289158)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {210B16C0-CEBD-4DE9-B474-04A7E8735E16}
Security Update for 2007 Microsoft Office System (KB2344875)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {6FC5C4C1-D7AE-44C3-94B7-6424FC3E752F}
Security Update for 2007 Microsoft Office System (KB2345043)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {536FB502-775F-4494-BACE-C02CC90B7A5B}
Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
Security Update for 2007 Microsoft Office System (KB976321)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {7F207DCA-3399-40CB-A968-6E5991B1421A}
Security Update for Microsoft Office Access 2007 (KB979440)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {1142CCEC-ACA9-484B-BA90-C3A5CA1988C5}
Security Update for Microsoft Office Access 2007 (KB979440)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {5A4E43D5-858F-49BD-BA72-8F30E1793060}
Security Update for Microsoft Office Excel 2007 (KB2345035)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {B23002DD-34EC-4988-B810-A5E2A0BF04F1}
Security Update for Microsoft Office InfoPath 2007 (KB979441)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}
Security Update for Microsoft Office PowerPoint 2007 (KB982158)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {F5B70033-E79C-4569-90BF-BC9B4E4F3F46}
Security Update for Microsoft Office PowerPoint Viewer (KB2413381)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {3DED0A62-44C8-4E00-A785-5212F297A9D9}
Security Update for Microsoft Office Publisher 2007 (KB2284697)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {3A4CDE54-2403-483D-8D9A-15E3264410DF}
Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
Security Update for Microsoft Office Word 2007 (KB2344993)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}
SopCast 2.0.4-->C:\Program Files\SopCast\uninst.exe
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Studio 11 Bonus DVD-->C:\Program Files\InstallShield Installation Information\{45A1BF92-700A-4408-B95E-79F462E3D67D}\setup.exe -runfromtemp -l0x040c UNINSTALL -removeonly
SuperCopier2-->"C:\Program Files\SuperCopier2\SC2Uninst.exe"
Trapcode 3DStroke Studio-->C:\Windows\unvise32.exe C:\Program Files\Pinnacle\Studio 14\Plugins\RTFx\tc3dstrokestudio.log
Trapcode Particular Studio-->C:\Windows\unvise32.exe C:\Program Files\Pinnacle\Studio 14\Plugins\RTFx\tcparticularstudio.log
Trapcode Shine Studio-->C:\Windows\unvise32.exe C:\Program Files\Pinnacle\Studio 14\Plugins\RTFx\tcshinestudio.log
TuneUp Utilities 2011-->C:\Program Files\TuneUp Utilities 2011\TUInstallHelper.exe --Trigger-Uninstall
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft Office Outlook 2007 (KB2412171)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {752A0B7C-BD24-4362-AC86-AB63FEE6F46F}
Update for Outlook 2007 Junk Email Filter (KB2508979)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {D2137BBA-250B-4548-BC1C-19E5009893D7}
Veetle TV 0.9.18-->C:\Program Files\Veetle\UninstallVeetleTV.exe
VLC media player 1.1.6-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live Communications Platform-->MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066}
Windows Live FolderShare-->MsiExec.exe /X{76810709-A7D3-468D-9167-A1780C1E766C}
Windows Live ID Sign-in Assistant-->MsiExec.exe /I{61AD15B2-50DB-4686-A739-14FE180D4429}
Windows Live Installer-->MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917}
Windows Live Mail-->MsiExec.exe /I{9D56775A-93F3-44A3-8092-840E3826DE30}
Windows Live Mail-->MsiExec.exe /I{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
Windows Live Messenger-->MsiExec.exe /X{6057E21C-ABE9-4059-AE3E-3BEB9925E660}
Windows Live Messenger-->MsiExec.exe /X{EB4DF488-AAEF-406F-A341-CB2AAA315B90}
Windows Live MIME IFilter-->MsiExec.exe /I{AF844339-2F8A-4593-81B3-9F4C54038C4E}
Windows Live Movie Maker-->MsiExec.exe /X{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
Windows Live Movie Maker-->MsiExec.exe /X{92EA4134-10D1-418A-91E1-5A0453131A38}
Windows Live Photo Common-->MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
Windows Live Photo Common-->MsiExec.exe /X{C893D8C0-1BA0-4517-B11C-E89B65E72F70}
Windows Live Photo Gallery-->MsiExec.exe /X{3336F667-9049-4D46-98B6-4C743EEBC5B1}
Windows Live PIMT Platform-->MsiExec.exe /I{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}
Windows Live SOXE Definitions-->MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F}
Windows Live SOXE-->MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{09F56A49-A7B1-4AAB-95B9-D13094254AD1}
Windows Live UX Platform-->MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
Windows Live Writer Resources-->MsiExec.exe /X{62687B11-58B5-4A18-9BC3-9DF4CE03F194}
Windows Live Writer-->MsiExec.exe /X{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Windows Live-->MsiExec.exe /I{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}

======System event log======

Computer Name: User-PC
Event Code: 6
Message: Certaines fonctionnalités de gestion de l’alimentation relatives aux performances du processeur ont été désactivées en raison d’un problème connu avec le microprogramme. Contactez le fabricant de l’ordinateur pour obtenir la mise à jour du microprogramme.
Record Number: 38004
Source Name: Microsoft-Windows-Kernel-Processor-Power
Time Written: 20100727075227.492000-000
Event Type: Erreur
User: AUTORITE NT\Système

Computer Name: User-PC
Event Code: 6
Message: Certaines fonctionnalités de gestion de l’alimentation relatives aux performances du processeur ont été désactivées en raison d’un problème connu avec le microprogramme. Contactez le fabricant de l’ordinateur pour obtenir la mise à jour du microprogramme.
Record Number: 37858
Source Name: Microsoft-Windows-Kernel-Processor-Power
Time Written: 20100727061121.648000-000
Event Type: Erreur
User: AUTORITE NT\Système

Computer Name: User-PC
Event Code: 6
Message: Certaines fonctionnalités de gestion de l’alimentation relatives aux performances du processeur ont été désactivées en raison d’un problème connu avec le microprogramme. Contactez le fabricant de l’ordinateur pour obtenir la mise à jour du microprogramme.
Record Number: 37691
Source Name: Microsoft-Windows-Kernel-Processor-Power
Time Written: 20100727051759.804000-000
Event Type: Erreur
User: AUTORITE NT\Système

Computer Name: User-PC
Event Code: 6
Message: Certaines fonctionnalités de gestion de l’alimentation relatives aux performances du processeur ont été désactivées en raison d’un problème connu avec le microprogramme. Contactez le fabricant de l’ordinateur pour obtenir la mise à jour du microprogramme.
Record Number: 37518
Source Name: Microsoft-Windows-Kernel-Processor-Power
Time Written: 20100726123037.616800-000
Event Type: Erreur
User: AUTORITE NT\Système

Computer Name: User-PC
Event Code: 6
Message: Certaines fonctionnalités de gestion de l’alimentation relatives aux performances du processeur ont été désactivées en raison d’un problème connu avec le microprogramme. Contactez le fabricant de l’ordinateur pour obtenir la mise à jour du microprogramme.
Record Number: 37366
Source Name: Microsoft-Windows-Kernel-Processor-Power
Time Written: 20100726025435.694800-000
Event Type: Erreur
User: AUTORITE NT\Système

=====Application event log=====

Computer Name: User-PC
Event Code: 11500
Message: Produit : Adobe Reader 9.1 - Français -- Erreur 1500. Une autre installation est en cours. Vous devez la terminer avant de poursuivre cette installation.
Record Number: 256
Source Name: MsiInstaller
Time Written: 20100426112819.000000-000
Event Type: Erreur
User: User-PC\User

Computer Name: User-PC
Event Code: 33
Message: La création du contexte d’activation a échoué pour « C:\Users\User\AppData\Local\Temp\RarSFX0\redist.dll ». Assembly dépendant Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.4148" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé.
Record Number: 246
Source Name: SideBySide
Time Written: 20100426112732.000000-000
Event Type: Erreur
User:

Computer Name: User-PC
Event Code: 33
Message: La création du contexte d’activation a échoué pour « C:\Users\User\AppData\Local\Temp\RarSFX0\redist.dll ». Assembly dépendant Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.4148" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé.
Record Number: 228
Source Name: SideBySide
Time Written: 20100426112709.000000-000
Event Type: Erreur
User:

Computer Name: User-PC
Event Code: 33
Message: La création du contexte d’activation a échoué pour « C:\Program Files\CyberLink\PowerDVD10\Activate.exe ». Assembly dépendant Microsoft.VC80.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé.
Record Number: 227
Source Name: SideBySide
Time Written: 20100426112603.000000-000
Event Type: Erreur
User:

Computer Name: User-PC
Event Code: 1008
Message: Le service Windows Search démarre et tente de supprimer l’ancien index de recherche {Raison : Réinitialisation totale de l’index}.

Record Number: 122
Source Name: Microsoft-Windows-Search
Time Written: 20100426112113.000000-000
Event Type: Avertissement
User:

=====Security event log=====

Computer Name: User-PC
Event Code: 5058
Message: Opération sur un fichier de clé.

Sujet :
ID de sécurité : S-1-5-19
Nom du compte : SERVICE LOCAL
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e5

Paramètres de chiffrement :
Nom du fournisseur : Microsoft Software Key Storage Provider
Nom de l’algorithme : Non disponible.
Nom de la clé : 1050637c-2285-4da3-b8bd-1c651fee7719
Type de clé : Clé ordinateur.

Informations concernant une opération sur un fichier de clé :
Chemin d’accès au fichier : C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\51a01c71e6ca94c77aae7ac5544b512c_e2fe880f-9085-479c-94eb-e211c54cf864
Opération : Lire la clé persistante dans le fichier.
Code de retour : 0x0
Record Number: 4685
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100523211820.875200-000
Event Type: Succès de l’audit
User:

Computer Name: User-PC
Event Code: 4672
Message: Privilèges spéciaux attribués à la nouvelle ouverture de session.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : Système
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7

Privilèges : SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 4684
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100523211808.159200-000
Event Type: Succès de l’audit
User:

Computer Name: User-PC
Event Code: 4624
Message: L’ouverture de session d’un compte s’est correctement déroulée.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : USER-PC$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Type d’ouverture de session : 5

Nouvelle ouverture de session :
ID de sécurité : S-1-5-18
Nom du compte : Système
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Informations sur le processus :
ID du processus : 0x208
Nom du processus : C:\Windows\System32\services.exe

Informations sur le réseau :
Nom de la station de travail :
Adresse du réseau source : -
Port source : -

Informations détaillées sur l’authentification :
Processus d’ouverture de session : Advapi
Package d’authentification : Negotiate
Services en transit : -
Nom du package (NTLM uniquement) : -
Longueur de la clé : 0

Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
- Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
- Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
- Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
- La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
Record Number: 4683
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100523211808.159200-000
Event Type: Succès de l’audit
User:

Computer Name: User-PC
Event Code: 4624
Message: L’ouverture de session d’un compte s’est correctement déroulée.

Sujet :
ID de sécurité : S-1-0-0
Nom du compte : -
Domaine du compte : -
ID d’ouverture de session : 0x0

Type d’ouverture de session : 3

Nouvelle ouverture de session :
ID de sécurité : S-1-5-7
Nom du compte : ANONYMOUS LOGON
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x38896
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Informations sur le processus :
ID du processus : 0x0
Nom du processus : -

Informations sur le réseau :
Nom de la station de travail :
Adresse du réseau source : -
Port source : -

Informations détaillées sur l’authentification :
Processus d’ouverture de session : NtLmSsp
Package d’authentification : NTLM
Services en transit : -
Nom du package (NTLM uniquement) : NTLM V1
Longueur de la clé : 0

Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
- Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
- Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
- Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
- La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
Record Number: 4682
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100523211808.069200-000
Event Type: Succès de l’audit
User:

Computer Name: User-PC
Event Code: 5038
Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

Nom du fichier : \Device\HarddiskVolume1\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl
Record Number: 4681
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100523211800.753600-000
Event Type: Échec de l’audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Pinnacle\Shared Files\C:\Program Files\MaxTV\MaxTV4\plugins;C:\Program Files\Windows Live\Shared
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 11, GenuineIntel
"PROCESSOR_REVISION"=0f0b

-----------------EOF-----------------
11 Mars 2011 16:31:48

Gwada ? Connais pas :-( Je poste depuis la Réunion ;) 

J'ai pu mettre java à jour ms pour adobe on me dit que c'est déjà installé


12 Mars 2011 12:24:03

babouck a dit :
> ...ms pour adobe on me dit que c'est déjà installé


Bonjour,

> Mea culpa.

Comment va ton Pc?

A+
12 Mars 2011 12:59:53

Bonjour, suis justement en train de refaire un scan avec stinger.... apparemment ça ne s'arrange pas : il détecte le même trojan et le même virus dans un autre fichier :

C:/Program Files/ Common Files/Oberon Media/OberonBroker/OberonBroker.exe

je ne sais pas du tout à quoi ça correspond...

@ +

je viens de voir sur le web que ça correspond à une plateforme de jeu.... j'ai donc viré le dossier
12 Mars 2011 13:20:07

Re,

¤ Télécharge Ad-Remover (merci C_XX) sur ton Bureau : Ici
- Double-clique dessus pour le démarrer (Vista/7, clic-droit>Exécuter en tant qu' Administrateur)
- Lance la recherche et poste le rapport généré
12 Mars 2011 13:48:37

Merci mais je ne peux plus poster depuis mon PC. Le clic sur répondre ou sur connexion ne donne rien.... "erreur sur la page" et je ne peux pas me connecter... j'ai essayé sur firefox et sur IE même problème :-((
12 Mars 2011 14:00:30

Je vais le scanner et te l'envoyer à partir de mon portable

@+
12 Mars 2011 14:08:40

En fait je me retrouve avec un fichier jpg et je ne sais pas comment le joindre :-((
12 Mars 2011 14:23:00

" alt="" class="imgLz frmImg " />



" alt="" class="imgLz frmImg " />
12 Mars 2011 16:05:55

Apparemment le ver se balade de fichier en fichier, je pense que je vais réinstaller windows. J'ai 3 partitions sur mon disque dur. Est-ce que je peux réinstaller windows sur C sans toucher aux 2 autres partitions ? Y-at-il une chance pour que l'infection atteigne les autres partitions ? Je pensais sauvegarder les partitions D et E sur un disque dur externe, mais je crains de déplacer le virus. Est-ce possible ?

Suis pas très douée :-((

Merci @+
12 Mars 2011 17:50:29

babouck a dit :
> Suis pas très douée :-((


> Non, mais tu es trop pessimiste.

- Double-clique sur Ad-Remover pour l' exécuter
- Lance le nettoyage et poste le rapport
13 Mars 2011 13:43:51

Bonjour, excuse j'ai dû m'absenter 2 journées... et merci pour ta patience...:) )

======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 01/03/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files\Ad-Remover\main.exe (CLEAN [2]) -> Lancé à 16:36:50 le 13/03/2011, Mode normal

Microsoft Windows 7 Professionnel Service Pack 1 (X86)
User@USER-PC (MSI MS-7350)

============== ACTION(S) ==============



(!) -- Fichiers temporaires supprimés.




============== SCAN ADDITIONNEL ==============

**** Mozilla Firefox Version [3.6.15 (fr)] ****

HKLM_Extensions|FFToolbar@bitdefender.com - C:\Program Files\BitDefender\BitDefender 2011\bdaphffext\

-- C:\Users\User\AppData\Roaming\Mozilla\FireFox\Profiles\08xor4sx.default --
Searchplugins\MyStart Search.xml (?)
Prefs.js - browser.download.lastDir, C:\\Users\\User\\Desktop
Prefs.js - browser.search.defaultenginename, MyStart Search
Prefs.js - browser.search.selectedEngine, MyStart Search
Prefs.js - browser.startup.homepage, hxxp://www.google.fr/
Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.15
Prefs.js - keyword.URL, hxxp://mystart.incredimail.com/?loc=ff_address_bar_im2_test_v2&search=
Prefs.js - privacy.popups.showBrowserMessage, false

========================================

**** Internet Explorer Version [8.0.7601.17514] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKLM_Toolbar|{381FFDE8-2394-4F90-B10D-FC6124A40F8C} (C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll)
HKCU_ElevationPolicy\{6052BF20-EA23-4A04-B3C1-A20EFE01A95A} - C:\Program Files\Veetle\Player\vtl_hfs.exe (x)
HKCU_ElevationPolicy\{680FA47E-AB59-46BE-B594-7358726E108B} - C:\Program Files\Veetle\Player\player.exe (x)
HKCU_ElevationPolicy\{E8BC6C2B-DD90-4397-96EB-2AAF0E48ABE6} - C:\Program Files\Veetle\Player\vtl_hfax.exe (x)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\System32\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\System32\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{6052BF20-EA23-4A04-B3C1-A20EFE01A95A} - C:\Program Files\Veetle\Player\vtl_hfs.exe (x)
HKLM_ElevationPolicy\{680FA47E-AB59-46BE-B594-7358726E108B} - C:\Program Files\Veetle\Player\player.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{80B84A0A-EDA4-47FD-8BE1-6B49F4197BE6} - C:\Program Files\BitDefender\BitDefender 2011\about.exe\about.ex (x)
HKLM_ElevationPolicy\{A6E2003F-95C5-4591-BA9A-0093080FDB5C} - C:\Program Files\Common Files\Oberon Media\OberonBroker\1.0.0.63\OberonBroker.exe (x)
HKLM_ElevationPolicy\{E8BC6C2B-DD90-4397-96EB-2AAF0E48ABE6} - C:\Program Files\Veetle\Player\vtl_hfax.exe (x)

========================================

C:\Program Files\Ad-Remover\Quarantine: 2 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 31 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 12/03/2011 21:40:59 (4948 Octet(s))
C:\Ad-Report-CLEAN[2].txt - 13/03/2011 16:38:24 (3608 Octet(s))
C:\Ad-Report-SCAN[1].txt - 12/03/2011 16:42:41 (4672 Octet(s))

Fin à: 16:39:17, 13/03/2011

============== E.O.F ==============
14 Mars 2011 11:49:52

Bonjour,

(bis)comment va ton Pc?

Poste un dernier rapport RSIT.

A+
15 Mars 2011 09:31:18

Bonjour

Il me semble plus stable.... je te poste les 2 rapports :) 

Logfile of random's system information tool 1.08 (written by random/random)
Run by User at 2011-03-15 12:22:33
Microsoft Windows 7 Professionnel Service Pack 1
System drive C: has 25 GB (31%) free of 80 GB
Total RAM: 2047 MB (52% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:22:55, on 15/03/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\BitDefender\BitDefender 2011\pchooklaunch32.exe
C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
C:\Program Files\Logitech\SetPoint\LBTWiz.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Internet Explorer\IELowutil.exe
C:\Windows\explorer.exe
C:\Users\User\Downloads\RSIT.exe
C:\Program Files\trend micro\User.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Bluetooth Connection Assistant] LBTWIZ.EXE -silent
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{1A6524E2-6329-4456-B625-D7DED6084332}: NameServer = 213.188.190.1,213.188.172.70
O17 - HKLM\System\CS1\Services\Tcpip\..\{1A6524E2-6329-4456-B625-D7DED6084332}: NameServer = 213.188.190.1,213.188.172.70
O17 - HKLM\System\CS2\Services\Tcpip\..\{1A6524E2-6329-4456-B625-D7DED6084332}: NameServer = 213.188.190.1,213.188.172.70
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\Windows\system32\drivers\pclepci.sys
O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: BitDefender Update Server v2 (Update Server) - BitDefender - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
O23 - Service: BitDefender Desktop Update Service (Updatesrv) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\uxtuneup.dll,-4096 (UxTuneUp) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 21954 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-01-30 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{381FFDE8-2394-4F90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll [2011-03-08 160832]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Hardware Abstraction Layer"=C:\Windows\KHALMNPR.EXE [2009-06-17 55824]
"Kernel and Hardware Abstraction Layer"=C:\Windows\KHALMNPR.EXE [2009-06-17 55824]
"Bluetooth Connection Assistant"=LBTWIZ.EXE -silent []
"BitDefender Antiphishing Helper"=C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe [2011-03-08 71216]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2011-01-30 35736]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-10 932288]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2011-02-24 2251064]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2009-07-20 72208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDriveAutoRun"=67108863
"HonorAutorunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-03-15 12:22:33 ----D---- C:\rsit
2011-03-13 11:27:10 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2011-03-13 11:27:05 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-03-13 11:27:05 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-03-12 20:12:53 ----RASHD---- C:\Autorun.inf
2011-03-11 19:22:35 ----D---- C:\Windows\Sun
2011-03-11 19:22:28 ----D---- C:\Program Files\Common Files\Java
2011-03-11 19:21:58 ----A---- C:\Windows\system32\javaws.exe
2011-03-11 19:21:58 ----A---- C:\Windows\system32\javaw.exe
2011-03-11 19:21:58 ----A---- C:\Windows\system32\java.exe
2011-03-10 14:12:13 ----D---- C:\Program Files\trend micro
2011-03-10 08:30:56 ----A---- C:\Windows\system32\FntCache.dll
2011-03-10 08:30:56 ----A---- C:\Windows\system32\DWrite.dll
2011-03-10 08:30:56 ----A---- C:\Windows\system32\d2d1.dll
2011-03-10 08:30:55 ----A---- C:\Windows\system32\sbe.dll
2011-03-10 08:30:55 ----A---- C:\Windows\system32\EncDec.dll
2011-03-10 08:30:55 ----A---- C:\Windows\system32\CPFilters.dll
2011-03-09 14:54:49 ----D---- C:\ProgramData\Spybot - Search & Destroy
2011-03-08 21:14:15 ----D---- C:\Users\User\AppData\Roaming\Malwarebytes
2011-03-08 21:14:08 ----D---- C:\ProgramData\Malwarebytes
2011-03-08 17:21:15 ----D---- C:\Windows\system32\SPReview
2011-03-08 17:20:21 ----D---- C:\Windows\system32\EventProviders
2011-03-08 17:18:37 ----A---- C:\Windows\system32\dfshim.dll
2011-03-08 17:18:34 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2011-03-08 17:18:34 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2011-03-08 17:18:33 ----A---- C:\Windows\system32\mstscax.dll
2011-03-08 17:18:31 ----A---- C:\Windows\system32\d3d10warp.dll
2011-03-08 17:18:30 ----A---- C:\Windows\system32\sysmain.dll
2011-03-08 17:18:30 ----A---- C:\Windows\system32\mfc40u.dll
2011-03-08 17:18:30 ----A---- C:\Windows\system32\mfc40.dll
2011-03-08 17:18:29 ----A---- C:\Windows\system32\secproc_isv.dll
2011-03-08 17:18:28 ----A---- C:\Windows\system32\shell32.dll
2011-03-08 17:18:28 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-03-08 17:18:27 ----A---- C:\Windows\system32\secproc.dll
2011-03-08 17:18:27 ----A---- C:\Windows\system32\RMActivate.exe
2011-03-08 17:18:27 ----A---- C:\Windows\system32\ieframe.dll
2011-03-08 17:18:26 ----A---- C:\Windows\system32\spwizui.dll
2011-03-08 17:18:25 ----A---- C:\Windows\system32\mscoree.dll
2011-03-08 17:18:25 ----A---- C:\Windows\system32\mf.dll
2011-03-08 17:18:24 ----A---- C:\Windows\system32\ntkrnlpa.exe
2011-03-08 17:18:24 ----A---- C:\Windows\system32\mssrch.dll
2011-03-08 17:18:24 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2011-03-08 17:18:24 ----A---- C:\Windows\system32\iertutil.dll
2011-03-08 17:18:24 ----A---- C:\Windows\system32\CertEnroll.dll
2011-03-08 17:18:23 ----A---- C:\Windows\system32\wmp.dll
2011-03-08 17:18:21 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-03-08 17:18:21 ----A---- C:\Windows\system32\PresentationHost.exe
2011-03-08 17:18:21 ----A---- C:\Windows\system32\esent.dll
2011-03-08 17:18:21 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2011-03-08 17:18:20 ----A---- C:\Windows\system32\schedsvc.dll
2011-03-08 17:18:20 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-03-08 17:18:20 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2011-03-08 17:18:19 ----A---- C:\Windows\system32\tquery.dll
2011-03-08 17:18:18 ----A---- C:\Windows\system32\RacEngn.dll
2011-03-08 17:18:18 ----A---- C:\Windows\system32\ntdll.dll
2011-03-08 17:18:18 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2011-03-08 17:18:16 ----A---- C:\Windows\system32\wininet.dll
2011-03-08 17:18:16 ----A---- C:\Windows\system32\rdpdd.dll
2011-03-08 17:18:16 ----A---- C:\Windows\system32\qmgr.dll
2011-03-08 17:18:16 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-03-08 17:18:15 ----A---- C:\Windows\system32\wevtsvc.dll
2011-03-08 17:18:15 ----A---- C:\Windows\system32\urlmon.dll
2011-03-08 17:18:15 ----A---- C:\Windows\system32\ole32.dll
2011-03-08 17:18:14 ----A---- C:\Windows\system32\vssapi.dll
2011-03-08 17:18:14 ----A---- C:\Windows\system32\SearchFolder.dll
2011-03-08 17:18:14 ----A---- C:\Windows\system32\IKEEXT.DLL
2011-03-08 17:18:14 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-03-08 17:18:14 ----A---- C:\Windows\system32\d3d9.dll
2011-03-08 17:18:14 ----A---- C:\Windows\explorer.exe
2011-03-08 17:18:13 ----A---- C:\Windows\system32\taskschd.dll
2011-03-08 17:18:13 ----A---- C:\Windows\system32\kernel32.dll
2011-03-08 17:18:13 ----A---- C:\Windows\system32\crypt32.dll
2011-03-08 17:18:12 ----A---- C:\Windows\system32\spreview.exe
2011-03-08 17:18:12 ----A---- C:\Windows\system32\spinstall.exe
2011-03-08 17:18:12 ----A---- C:\Windows\system32\PushPrinterConnections.exe
2011-03-08 17:18:12 ----A---- C:\Windows\system32\mstsc.exe
2011-03-08 17:18:12 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-03-08 17:18:11 ----A---- C:\Windows\system32\wer.dll
2011-03-08 17:18:11 ----A---- C:\Windows\system32\termsrv.dll
2011-03-08 17:18:11 ----A---- C:\Windows\system32\rpcrt4.dll
2011-03-08 17:18:11 ----A---- C:\Windows\system32\certcli.dll
2011-03-08 17:18:10 ----A---- C:\Windows\system32\msxml6.dll
2011-03-08 17:18:10 ----A---- C:\Windows\system32\lsasrv.dll
2011-03-08 17:18:10 ----A---- C:\Windows\system32\gpsvc.dll
2011-03-08 17:18:10 ----A---- C:\Windows\system32\dwmcore.dll
2011-03-08 17:18:09 ----A---- C:\Windows\system32\WinSAT.exe
2011-03-08 17:18:09 ----A---- C:\Windows\system32\wbengine.exe
2011-03-08 17:18:09 ----A---- C:\Windows\system32\scavengeui.dll
2011-03-08 17:18:09 ----A---- C:\Windows\system32\odbc32.dll
2011-03-08 17:18:09 ----A---- C:\Windows\system32\mstime.dll
2011-03-08 17:18:09 ----A---- C:\Windows\system32\MPSSVC.dll
2011-03-08 17:18:09 ----A---- C:\Windows\system32\diagperf.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\umrdp.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\TSWorkspace.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\tsmf.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\quartz.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\msfeeds.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\localspl.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\iedkcs32.dll
2011-03-08 17:18:08 ----A---- C:\Windows\system32\dot3api.dll
2011-03-08 17:18:07 ----A---- C:\Windows\system32\winhttp.dll
2011-03-08 17:18:07 ----A---- C:\Windows\system32\setupapi.dll
2011-03-08 17:18:07 ----A---- C:\Windows\system32\MSVidCtl.dll
2011-03-08 17:18:07 ----A---- C:\Windows\system32\drivers\nvstor.sys
2011-03-08 17:18:07 ----A---- C:\Windows\system32\apphelp.dll
2011-03-08 17:18:06 ----A---- C:\Windows\system32\WindowsCodecs.dll
2011-03-08 17:18:06 ----A---- C:\Windows\system32\VSSVC.exe
2011-03-08 17:18:06 ----A---- C:\Windows\system32\netlogon.dll
2011-03-08 17:18:06 ----A---- C:\Windows\system32\dbgeng.dll
2011-03-08 17:18:06 ----A---- C:\Windows\system32\d3d11.dll
2011-03-08 17:18:05 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-03-08 17:18:05 ----A---- C:\Windows\system32\winlogon.exe
2011-03-08 17:18:05 ----A---- C:\Windows\system32\webio.dll
2011-03-08 17:18:05 ----A---- C:\Windows\system32\user32.dll
2011-03-08 17:18:05 ----A---- C:\Windows\system32\netcfgx.dll
2011-03-08 17:18:05 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2011-03-08 17:18:04 ----A---- C:\Windows\system32\WsmSvc.dll
2011-03-08 17:18:04 ----A---- C:\Windows\system32\Query.dll
2011-03-08 17:18:04 ----A---- C:\Windows\system32\gpprefcl.dll
2011-03-08 17:18:04 ----A---- C:\Windows\system32\drivers\srv.sys
2011-03-08 17:18:04 ----A---- C:\Windows\system32\advapi32.dll
2011-03-08 17:18:03 ----A---- C:\Windows\system32\upnp.dll
2011-03-08 17:18:03 ----A---- C:\Windows\system32\schannel.dll
2011-03-08 17:18:03 ----A---- C:\Windows\system32\mmcndmgr.dll
2011-03-08 17:18:03 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2011-03-08 17:18:03 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-03-08 17:18:03 ----A---- C:\Windows\system32\drivers\nvraid.sys
2011-03-08 17:18:02 ----A---- C:\Windows\system32\netfxperf.dll
2011-03-08 17:18:02 ----A---- C:\Windows\system32\msv1_0.dll
2011-03-08 17:18:02 ----A---- C:\Windows\system32\msdrm.dll
2011-03-08 17:18:02 ----A---- C:\Windows\system32\lsm.exe
2011-03-08 17:18:02 ----A---- C:\Windows\system32\imapi2fs.dll
2011-03-08 17:18:02 ----A---- C:\Windows\system32\drivers\csc.sys
2011-03-08 17:18:02 ----A---- C:\Windows\system32\authui.dll
2011-03-08 17:18:01 ----A---- C:\Windows\system32\sppobjs.dll
2011-03-08 17:18:01 ----A---- C:\Windows\system32\shlwapi.dll
2011-03-08 17:18:01 ----A---- C:\Windows\system32\SessEnv.dll
2011-03-08 17:18:01 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2011-03-08 17:18:01 ----A---- C:\Windows\system32\KernelBase.dll
2011-03-08 17:18:00 ----A---- C:\Windows\system32\usp10.dll
2011-03-08 17:18:00 ----A---- C:\Windows\system32\mcbuilder.exe
2011-03-08 17:17:59 ----A---- C:\Windows\system32\xpsservices.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\winload.exe
2011-03-08 17:17:59 ----A---- C:\Windows\system32\WebClnt.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\userenv.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\comdlg32.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\certmgr.dll
2011-03-08 17:17:59 ----A---- C:\Windows\system32\audiosrv.dll
2011-03-08 17:17:58 ----A---- C:\Windows\system32\sppwinob.dll
2011-03-08 17:17:58 ----A---- C:\Windows\system32\iphlpsvc.dll
2011-03-08 17:17:56 ----A---- C:\Windows\system32\rpcss.dll
2011-03-08 17:17:56 ----A---- C:\Windows\system32\cmd.exe
2011-03-08 17:17:56 ----A---- C:\Windows\system32\BFE.DLL
2011-03-08 17:17:55 ----A---- C:\Windows\system32\wuaueng.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\Wldap32.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\win32spl.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\rdpendp.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\propsys.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\nlasvc.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\mfds.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\framedynos.dll
2011-03-08 17:17:55 ----A---- C:\Windows\system32\drivers\volsnap.sys
2011-03-08 17:17:55 ----A---- C:\Windows\system32\dnsapi.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\wucltux.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\winresume.exe
2011-03-08 17:17:54 ----A---- C:\Windows\system32\samsrv.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\rdpclip.exe
2011-03-08 17:17:54 ----A---- C:\Windows\system32\profsvc.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\ncsi.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\drivers\netio.sys
2011-03-08 17:17:54 ----A---- C:\Windows\system32\drivers\ndis.sys
2011-03-08 17:17:54 ----A---- C:\Windows\system32\cscsvc.dll
2011-03-08 17:17:54 ----A---- C:\Windows\system32\azroles.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\werconcpl.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\themeui.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\taskeng.exe
2011-03-08 17:17:53 ----A---- C:\Windows\system32\spp.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\mswsock.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\drivers\storport.sys
2011-03-08 17:17:53 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-03-08 17:17:53 ----A---- C:\Windows\system32\dhcpcore.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\credui.dll
2011-03-08 17:17:53 ----A---- C:\Windows\system32\appmgr.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\wintrust.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\msxml3.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\inetcomm.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\dxgi.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\drivers\http.sys
2011-03-08 17:17:52 ----A---- C:\Windows\system32\dbghelp.dll
2011-03-08 17:17:52 ----A---- C:\Windows\system32\basecsp.dll
2011-03-08 17:17:51 ----A---- C:\Windows\system32\WinSATAPI.dll
2011-03-08 17:17:51 ----A---- C:\Windows\system32\taskcomp.dll
2011-03-08 17:17:51 ----A---- C:\Windows\system32\spoolsv.exe
2011-03-08 17:17:51 ----A---- C:\Windows\system32\gdi32.dll
2011-03-08 17:17:51 ----A---- C:\Windows\system32\evr.dll
2011-03-08 17:17:51 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2011-03-08 17:17:51 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2011-03-08 17:17:51 ----A---- C:\Windows\system32\calc.exe
2011-03-08 17:17:50 ----A---- C:\Windows\system32\vpnike.dll
2011-03-08 17:17:50 ----A---- C:\Windows\system32\srvsvc.dll
2011-03-08 17:17:50 ----A---- C:\Windows\system32\sqlsrv32.dll
2011-03-08 17:17:50 ----A---- C:\Windows\system32\QAGENTRT.DLL
2011-03-08 17:17:50 ----A---- C:\Windows\system32\drivers\amdsata.sys
2011-03-08 17:17:49 ----A---- C:\Windows\system32\UIRibbon.dll
2011-03-08 17:17:49 ----A---- C:\Windows\system32\sxs.dll
2011-03-08 17:17:49 ----A---- C:\Windows\system32\netshell.dll
2011-03-08 17:17:49 ----A---- C:\Windows\system32\lpksetup.exe
2011-03-08 17:17:49 ----A---- C:\Windows\system32\ie4uinit.exe
2011-03-08 17:17:49 ----A---- C:\Windows\system32\fveapi.dll
2011-03-08 17:17:49 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-03-08 17:17:49 ----A---- C:\Windows\system32\cryptsvc.dll
2011-03-08 17:17:48 ----A---- C:\Windows\system32\ws2_32.dll
2011-03-08 17:17:48 ----A---- C:\Windows\system32\stobject.dll
2011-03-08 17:17:48 ----A---- C:\Windows\system32\hgprint.dll
2011-03-08 17:17:48 ----A---- C:\Windows\system32\drivers\rdbss.sys
2011-03-08 17:17:48 ----A---- C:\Windows\system32\drivers\msdsm.sys
2011-03-08 17:17:48 ----A---- C:\Windows\system32\comctl32.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\WSDApi.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\wmpeffects.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\rpchttp.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\prncache.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\printui.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\net1.exe
2011-03-08 17:17:47 ----A---- C:\Windows\system32\msi.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\inetpp.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\dps.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\ci.dll
2011-03-08 17:17:47 ----A---- C:\Windows\system32\aitagent.exe
2011-03-08 17:17:47 ----A---- C:\Windows\system32\aepdu.dll
2011-03-08 17:17:46 ----A---- C:\Windows\system32\WMVCORE.DLL
2011-03-08 17:17:46 ----A---- C:\Windows\system32\vds.exe
2011-03-08 17:17:46 ----A---- C:\Windows\system32\scansetting.dll
2011-03-08 17:17:46 ----A---- C:\Windows\system32\MMDevAPI.dll
2011-03-08 17:17:46 ----A---- C:\Windows\system32\mfc42u.dll
2011-03-08 17:17:46 ----A---- C:\Windows\system32\FXSSVC.exe
2011-03-08 17:17:46 ----A---- C:\Windows\system32\drivers\vmbus.sys
2011-03-08 17:17:46 ----A---- C:\Windows\system32\drivers\pci.sys
2011-03-08 17:17:46 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-03-08 17:17:46 ----A---- C:\Windows\system32\davclnt.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\wpdshext.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\wlangpui.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\t2embed.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\scrptadm.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\QSHVHOST.DLL
2011-03-08 17:17:45 ----A---- C:\Windows\system32\pnidui.dll
2011-03-08 17:17:45 ----A---- C:\Windows\system32\IPSECSVC.DLL
2011-03-08 17:17:45 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-03-08 17:17:45 ----A---- C:\Windows\system32\consent.exe
2011-03-08 17:17:45 ----A---- C:\Windows\system32\aaclient.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\webservices.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\tscfgwmi.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\SyncCenter.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\netdiagfx.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\fde.dll
2011-03-08 17:17:44 ----A---- C:\Windows\system32\drivers\termdd.sys
2011-03-08 17:17:44 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2011-03-08 17:17:44 ----A---- C:\Windows\system32\drivers\rdpdr.sys
2011-03-08 17:17:44 ----A---- C:\Windows\system32\drivers\amdxata.sys
2011-03-08 17:17:43 ----A---- C:\Windows\system32\wuapi.dll
2011-03-08 17:17:43 ----A---- C:\Windows\system32\wscapi.dll
2011-03-08 17:17:43 ----A---- C:\Windows\system32\WinSCard.dll
2011-03-08 17:17:43 ----A---- C:\Windows\system32\WFS.exe
2011-03-08 17:17:43 ----A---- C:\Windows\system32\vmicsvc.exe
2011-03-08 17:17:43 ----A---- C:\Windows\system32\sdengin2.dll
2011-03-08 17:17:43 ----A---- C:\Windows\system32\pla.dll
2011-03-08 17:17:43 ----A---- C:\Windows\system32\cscobj.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\WUDFSvc.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\wisptis.exe
2011-03-08 17:17:42 ----A---- C:\Windows\system32\winsta.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\wiaservc.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\setupcl.exe
2011-03-08 17:17:42 ----A---- C:\Windows\system32\rdpcore.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\ntshrui.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2011-03-08 17:17:42 ----A---- C:\Windows\system32\msasn1.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\mcmde.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\imapi2.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\iepeers.dll
2011-03-08 17:17:42 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2011-03-08 17:17:42 ----A---- C:\Windows\system32\drivers\msahci.sys
2011-03-08 17:17:42 ----A---- C:\Windows\system32\conhost.exe
2011-03-08 17:17:41 ----A---- C:\Windows\system32\WMPEncEn.dll
2011-03-08 17:17:41 ----A---- C:\Windows\system32\onex.dll
2011-03-08 17:17:41 ----A---- C:\Windows\system32\gameux.dll
2011-03-08 17:17:41 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2011-03-08 17:17:41 ----A---- C:\Windows\system32\dwmredir.dll
2011-03-08 17:17:41 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-03-08 17:17:41 ----A---- C:\Windows\system32\aeinv.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\winmm.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\TabSvc.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\shsvcs.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\rasmans.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\mssvp.dll
2011-03-08 17:17:40 ----A---- C:\Windows\system32\drivers\udfs.sys
2011-03-08 17:17:40 ----A---- C:\Windows\system32\drivers\acpi.sys
2011-03-08 17:17:39 ----A---- C:\Windows\system32\vaultsvc.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\thumbcache.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\samcli.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\proquota.exe
2011-03-08 17:17:39 ----A---- C:\Windows\system32\netiohlp.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\Narrator.exe
2011-03-08 17:17:39 ----A---- C:\Windows\system32\msutb.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2011-03-08 17:17:39 ----A---- C:\Windows\system32\hbaapi.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\halmacpi.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\hal.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\bootres.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\autofmt.exe
2011-03-08 17:17:39 ----A---- C:\Windows\system32\autoconv.exe
2011-03-08 17:17:39 ----A---- C:\Windows\system32\autochk.exe
2011-03-08 17:17:39 ----A---- C:\Windows\system32\AudioSes.dll
2011-03-08 17:17:39 ----A---- C:\Windows\system32\audiodg.exe
2011-03-08 17:17:38 ----A---- C:\Windows\system32\srchadmin.dll
2011-03-08 17:17:38 ----A---- C:\Windows\system32\schtasks.exe
2011-03-08 17:17:38 ----A---- C:\Windows\system32\regapi.dll
2011-03-08 17:17:38 ----A---- C:\Windows\system32\msinfo32.exe
2011-03-08 17:17:38 ----A---- C:\Windows\system32\mimefilt.dll
2011-03-08 17:17:38 ----A---- C:\Windows\system32\ipsmsnap.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\wcncsvc.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\tcpipcfg.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\sspicli.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\QAGENT.DLL
2011-03-08 17:17:37 ----A---- C:\Windows\system32\powercpl.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\netid.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\msihnd.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\mscorier.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-03-08 17:17:37 ----A---- C:\Windows\system32\framedyn.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\eapphost.dll
2011-03-08 17:17:37 ----A---- C:\Windows\system32\drivers\winusb.sys
2011-03-08 17:17:37 ----A---- C:\Windows\system32\drivers\volmgr.sys
2011-03-08 17:17:37 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-03-08 17:17:37 ----A---- C:\Windows\system32\drivers\partmgr.sys
2011-03-08 17:17:37 ----A---- C:\Windows\system32\drivers\netbt.sys
2011-03-08 17:17:37 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2011-03-08 17:17:36 ----A---- C:\Windows\system32\umpo.dll
2011-03-08 17:17:36 ----A---- C:\Windows\system32\DXP.dll
2011-03-08 17:17:36 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-03-08 17:17:36 ----A---- C:\Windows\system32\actxprxy.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\wdc.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\Vault.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\untfs.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\StructuredQuery.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\sppsvc.exe
2011-03-08 17:17:35 ----A---- C:\Windows\system32\sdclt.exe
2011-03-08 17:17:35 ----A---- C:\Windows\system32\scesrv.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\rastls.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\oleaut32.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\nci.dll
2011-03-08 17:17:35 ----A---- C:\Windows\system32\drivers\ataport.sys
2011-03-08 17:17:34 ----A---- C:\Windows\system32\WMNetMgr.dll
2011-03-08 17:17:34 ----A---- C:\Windows\system32\wlanpref.dll
2011-03-08 17:17:34 ----A---- C:\Windows\system32\RpcRtRemote.dll
2011-03-08 17:17:34 ----A---- C:\Windows\system32\Robocopy.exe
2011-03-08 17:17:34 ----A---- C:\Windows\system32\ListSvc.dll
2011-03-08 17:17:34 ----A---- C:\Windows\system32\licmgr10.dll
2011-03-08 17:17:34 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2011-03-08 17:17:33 ----A---- C:\Windows\system32\taskmgr.exe
2011-03-08 17:17:33 ----A---- C:\Windows\system32\mtxclu.dll
2011-03-08 17:17:33 ----A---- C:\Windows\system32\DxpTaskSync.dll
2011-03-08 17:17:33 ----A---- C:\Windows\system32\Display.dll
2011-03-08 17:17:32 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-03-08 17:17:32 ----A---- C:\Windows\system32\mssphtb.dll
2011-03-08 17:17:32 ----A---- C:\Windows\system32\msdri.dll
2011-03-08 17:17:32 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2011-03-08 17:17:32 ----A---- C:\Windows\system32\drivers\mpio.sys
2011-03-08 17:17:32 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2011-03-08 17:17:31 ----A---- C:\Windows\system32\userinit.exe
2011-03-08 17:17:31 ----A---- C:\Windows\system32\sharemediacpl.dll
2011-03-08 17:17:31 ----A---- C:\Windows\system32\puiobj.dll
2011-03-08 17:17:31 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2011-03-08 17:17:31 ----A---- C:\Windows\system32\cscui.dll
2011-03-08 17:17:30 ----A---- C:\Windows\system32\termmgr.dll
2011-03-08 17:17:30 ----A---- C:\Windows\system32\eudcedit.exe
2011-03-08 17:17:30 ----A---- C:\Windows\system32\drivers\winhv.sys
2011-03-08 17:17:30 ----A---- C:\Windows\system32\drivers\scsiport.sys
2011-03-08 17:17:30 ----A---- C:\Windows\system32\DiagCpl.dll
2011-03-08 17:17:29 ----A---- C:\Windows\system32\drivers\vmstorfl.sys
2011-03-08 17:17:28 ----A---- C:\Windows\system32\wiadefui.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\themecpl.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\sppcomapi.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\shsetup.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\SensorsCpl.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\rasppp.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\msdtctm.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\msconfig.exe
2011-03-08 17:17:28 ----A---- C:\Windows\system32\logoncli.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\drivers\storvsc.sys
2011-03-08 17:17:28 ----A---- C:\Windows\system32\cabview.dll
2011-03-08 17:17:28 ----A---- C:\Windows\system32\biocpl.dll
2011-03-08 17:17:27 ----A---- C:\Windows\system32\wpccpl.dll
2011-03-08 17:17:27 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2011-03-08 17:17:27 ----A---- C:\Windows\system32\dnscmmc.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\winsrv.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\tapisrv.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\scecli.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\hgcpl.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\fontext.dll
2011-03-08 17:17:26 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2011-03-08 17:17:26 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2011-03-08 17:17:25 ----A---- C:\Windows\system32\srcore.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\SndVolSSO.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\mscories.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\mscms.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\mprddm.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\localsec.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\iasacct.dll
2011-03-08 17:17:25 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-03-08 17:17:25 ----A---- C:\Windows\system32\bcdsrv.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\wpdbusenum.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\wlanui.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\wkssvc.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\wksprt.exe
2011-03-08 17:17:24 ----A---- C:\Windows\system32\w32tm.exe
2011-03-08 17:17:24 ----A---- C:\Windows\system32\VAN.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\usercpl.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\spwizeng.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\SndVol.exe
2011-03-08 17:17:24 ----A---- C:\Windows\system32\qedit.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\qdvd.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\prntvpt.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\netcenter.dll
2011-03-08 17:17:24 ----A---- C:\Windows\system32\mblctr.exe
2011-03-08 17:17:24 ----A---- C:\Windows\system32\KMSVC.DLL
2011-03-08 17:17:24 ----A---- C:\Windows\system32\batmeter.dll
2011-03-08 17:17:23 ----A---- C:\Windows\system32\zipfldr.dll
2011-03-08 17:17:23 ----A---- C:\Windows\system32\fdeploy.dll
2011-03-08 17:17:23 ----A---- C:\Windows\system32\drivers\ks.sys
2011-03-08 17:17:23 ----A---- C:\Windows\system32\drivers\afd.sys
2011-03-08 17:17:23 ----A---- C:\Windows\system32\azroleui.dll
2011-03-08 17:17:23 ----A---- C:\Windows\system32\accessibilitycpl.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\wusa.exe
2011-03-08 17:17:22 ----A---- C:\Windows\system32\networkmap.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\netjoin.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\mspbda.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2011-03-08 17:17:22 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\Faultrep.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\cryptui.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\cfgmgr32.dll
2011-03-08 17:17:22 ----A---- C:\Windows\system32\adsldp.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\taskhost.exe
2011-03-08 17:17:21 ----A---- C:\Windows\system32\taskbarcpl.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\sud.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\slui.exe
2011-03-08 17:17:21 ----A---- C:\Windows\system32\prnfldr.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\photowiz.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\msieftp.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\iasrad.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\credssp.dll
2011-03-08 17:17:21 ----A---- C:\Windows\system32\ActionCenter.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\wpd_ci.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\sisbkup.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\shwebsvc.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\recovery.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\rdpcorekmts.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\odbcjt32.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\iprtrmgr.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\ifsutil.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\ieUnatt.exe
2011-03-08 17:17:20 ----A---- C:\Windows\system32\iesysprep.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\halacpi.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\ftp.exe
2011-03-08 17:17:20 ----A---- C:\Windows\system32\efscore.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\drivers\hidclass.sys
2011-03-08 17:17:20 ----A---- C:\Windows\system32\dot3cfg.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2011-03-08 17:17:20 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2011-03-08 17:17:19 ----A---- C:\Windows\system32\syncui.dll
2011-03-08 17:17:19 ----A---- C:\Windows\system32\sdcpl.dll
2011-03-08 17:17:19 ----A---- C:\Windows\system32\rdpwsx.dll
2011-03-08 17:17:19 ----A---- C:\Windows\system32\autoplay.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\wmpmde.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\vdsutil.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\sppnp.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\rtutils.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\OobeFldr.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\ntlanman.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\dskquoui.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\DeviceCenter.dll
2011-03-08 17:17:18 ----A---- C:\Windows\system32\bcdedit.exe
2011-03-08 17:17:17 ----A---- C:\Windows\system32\systemcpl.dll
2011-03-08 17:17:17 ----A---- C:\Windows\system32\recdisc.exe
2011-03-08 17:17:17 ----A---- C:\Windows\system32\ntprint.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\sethc.exe
2011-03-08 17:17:16 ----A---- C:\Windows\system32\rstrui.exe
2011-03-08 17:17:16 ----A---- C:\Windows\system32\riched20.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\nshwfp.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\netplwiz.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\NAPHLPR.DLL
2011-03-08 17:17:16 ----A---- C:\Windows\system32\fms.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\drivers\tdx.sys
2011-03-08 17:17:16 ----A---- C:\Windows\system32\blackbox.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\bcdboot.exe
2011-03-08 17:17:16 ----A---- C:\Windows\system32\AxInstSv.dll
2011-03-08 17:17:16 ----A---- C:\Windows\system32\activeds.dll
2011-03-08 17:17:15 ----A---- C:\Windows\system32\wmpsrcwp.dll
2011-03-08 17:17:15 ----A---- C:\Windows\system32\migisol.dll
2011-03-08 17:17:15 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\wuwebv.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\wsqmcons.exe
2011-03-08 17:17:14 ----A---- C:\Windows\system32\wlanmsm.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\wavemsp.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\ReAgent.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\provsvc.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\nshipsec.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\nlaapi.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\msftedit.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\isoburn.exe
2011-03-08 17:17:14 ----A---- C:\Windows\system32\httpapi.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2011-03-08 17:17:14 ----A---- C:\Windows\system32\dot3ui.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\dot3svc.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\dfrgui.exe
2011-03-08 17:17:14 ----A---- C:\Windows\system32\cdosys.dll
2011-03-08 17:17:14 ----A---- C:\Windows\system32\asycfilt.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\wvc.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\wtsapi32.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\wimgapi.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\webcheck.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\tzutil.exe
2011-03-08 17:17:13 ----A---- C:\Windows\system32\twext.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\sysclass.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\ocsetup.exe
2011-03-08 17:17:13 ----A---- C:\Windows\system32\mstask.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\dsuiext.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2011-03-08 17:17:13 ----A---- C:\Windows\system32\certprop.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\appinfo.dll
2011-03-08 17:17:13 ----A---- C:\Windows\system32\AdmTmpl.dll
2011-03-08 17:17:12 ----A---- C:\Windows\twain_32.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\wwanconn.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\uxlib.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\srrstr.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\slwga.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\shdocvw.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\setupugc.exe
2011-03-08 17:17:12 ----A---- C:\Windows\system32\qcap.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\qasf.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\PresentationSettings.exe
2011-03-08 17:17:12 ----A---- C:\Windows\system32\occache.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\msrating.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-03-08 17:17:12 ----A---- C:\Windows\system32\imm32.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\wmdrmsdk.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\nslookup.exe
2011-03-08 17:17:11 ----A---- C:\Windows\system32\msvfw32.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\msscp.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\mciavi32.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\imgutil.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\clusapi.dll
2011-03-08 17:17:11 ----A---- C:\Windows\system32\audiodev.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2011-03-08 17:17:10 ----A---- C:\Windows\system32\wimserv.exe
2011-03-08 17:17:10 ----A---- C:\Windows\system32\TSpkg.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\sdrsvc.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\remotepg.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\rdpencom.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\raschap.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\QUTIL.DLL
2011-03-08 17:17:10 ----A---- C:\Windows\system32\perfmon.exe
2011-03-08 17:17:10 ----A---- C:\Windows\system32\odbccp32.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\ocsetapi.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\networkexplorer.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2011-03-08 17:17:10 ----A---- C:\Windows\system32\input.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\drmmgrtn.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\diskraid.exe
2011-03-08 17:17:10 ----A---- C:\Windows\system32\browser.dll
2011-03-08 17:17:10 ----A---- C:\Windows\system32\acppage.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\wpdwcn.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\wmpdxm.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\vpnikeapi.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\vdsbas.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\runonce.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\onexui.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\olepro32.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\nltest.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\Mcx2Svc.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\logagent.exe
2011-03-08 17:17:09 ----A---- C:\Windows\system32\iTVData.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\inseng.dll
2011-03-08 17:17:09 ----A---- C:\Windows\system32\dxdiagn.dll
2011-03-08 17:17:09 ----A---- C:\Windows\bfsvc.exe
2011-03-08 17:17:08 ----A---- C:\Windows\system32\sspisrv.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\msvidc32.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\msiexec.exe
2011-03-08 17:17:08 ----A---- C:\Windows\system32\MFPlay.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\eapp3hst.dll
2011-03-08 17:17:08 ----A---- C:\Windows\system32\drivers\rmcast.sys
2011-03-08 17:17:08 ----A---- C:\Windows\system32\d3d10level9.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\wudriver.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\wmpshell.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\wmdrmdev.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\unimdmat.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\tabcal.exe
2011-03-08 17:17:07 ----A---- C:\Windows\system32\sqlcese30.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\shacct.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\rdpd3d.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\PnPUnattend.exe
2011-03-08 17:17:07 ----A---- C:\Windows\system32\mprapi.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\lsmproxy.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\iscsium.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\cscapi.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\bitsadmin.exe
2011-03-08 17:17:06 ----
15 Mars 2011 09:39:04

Et la suite :

2011-03-08 17:17:07 ----A---- C:\Windows\system32\iscsium.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\cscapi.dll
2011-03-08 17:17:07 ----A---- C:\Windows\system32\bitsadmin.exe
2011-03-08 17:17:06 ----A---- C:\Windows\system32\wwanprotdim.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\WUDFPlatform.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\WPDSp.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\tsgqec.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\srvcli.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2011-03-08 17:17:06 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\pdh.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\OpcServices.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\olethk32.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\odbctrac.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\ncryptui.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\MdSched.exe
2011-03-08 17:17:06 ----A---- C:\Windows\system32\lpremove.exe
2011-03-08 17:17:06 ----A---- C:\Windows\system32\logman.exe
2011-03-08 17:17:06 ----A---- C:\Windows\system32\djoin.exe
2011-03-08 17:17:06 ----A---- C:\Windows\system32\CscMig.dll
2011-03-08 17:17:06 ----A---- C:\Windows\system32\ActionQueue.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\WMPhoto.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\WMADMOD.DLL
2011-03-08 17:17:05 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
2011-03-08 17:17:05 ----A---- C:\Windows\system32\wiavideo.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\utildll.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2011-03-08 17:17:05 ----A---- C:\Windows\system32\takeown.exe
2011-03-08 17:17:05 ----A---- C:\Windows\system32\mshtmled.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\mapistub.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\mapi32.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\fphc.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2011-03-08 17:17:05 ----A---- C:\Windows\system32\dot3msm.dll
2011-03-08 17:17:05 ----A---- C:\Windows\system32\avifil32.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\WMVSDECD.DLL
2011-03-08 17:17:04 ----A---- C:\Windows\system32\wmdrmnet.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\sqmapi.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\sppinst.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\qdv.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\msnetobj.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\iyuv_32.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\imagehlp.dll
2011-03-08 17:17:04 ----A---- C:\Windows\system32\EhStorAPI.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\WUDFx.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\WUDFHost.exe
2011-03-08 17:17:03 ----A---- C:\Windows\system32\wsnmp32.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2011-03-08 17:17:03 ----A---- C:\Windows\system32\vfwwdm32.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\unattend.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\setupcln.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\RelPost.exe
2011-03-08 17:17:03 ----A---- C:\Windows\system32\qprocess.exe
2011-03-08 17:17:03 ----A---- C:\Windows\system32\QCLIPROV.DLL
2011-03-08 17:17:03 ----A---- C:\Windows\system32\pdhui.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\MuiUnattend.exe
2011-03-08 17:17:03 ----A---- C:\Windows\system32\msyuv.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\msrle32.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\cmstp.exe
2011-03-08 17:17:03 ----A---- C:\Windows\system32\cca.dll
2011-03-08 17:17:03 ----A---- C:\Windows\system32\basesrv.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\wuauclt.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\wkscli.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\WavDest.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\umb.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\tsbyuv.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\sppuinotify.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\spbcd.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\relog.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\qwinsta.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\quser.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\netiougc.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\mydocs.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\msorcl32.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\msg.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\iscsicli.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\iasrecst.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2011-03-08 17:17:02 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2011-03-08 17:17:02 ----A---- C:\Windows\system32\chglogon.exe
2011-03-08 17:17:02 ----A---- C:\Windows\system32\AzSqlExt.dll
2011-03-08 17:17:02 ----A---- C:\Windows\system32\amstream.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\wuapp.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\wmpps.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\tsdiscon.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\tscon.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\syssetup.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\setbcdlocale.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\secur32.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\resutils.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\rastapi.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\qappsrv.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\PrintBrmUi.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\nrpsrv.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\netbtugc.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\MultiDigiMon.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\itircl.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\FXSTIFF.dll
2011-03-08 17:17:01 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2011-03-08 17:17:01 ----A---- C:\Windows\system32\diskpart.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\chgusr.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\chgport.exe
2011-03-08 17:17:01 ----A---- C:\Windows\system32\CertPolEng.dll
2011-03-08 17:17:00 ----A---- C:\Windows\system32\wiarpc.dll
2011-03-08 17:17:00 ----A---- C:\Windows\system32\WerFaultSecure.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\tskill.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\tlscsp.dll
2011-03-08 17:17:00 ----A---- C:\Windows\system32\rwinsta.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\ReAgentc.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\netutils.dll
2011-03-08 17:17:00 ----A---- C:\Windows\system32\mciqtz32.dll
2011-03-08 17:17:00 ----A---- C:\Windows\system32\logoff.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\findstr.exe
2011-03-08 17:17:00 ----A---- C:\Windows\system32\eappgnui.dll
2011-03-08 17:17:00 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-03-08 17:16:59 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\sppc.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\spopk.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\shimgvw.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\shadow.exe
2011-03-08 17:16:59 ----A---- C:\Windows\system32\prevhost.exe
2011-03-08 17:16:59 ----A---- C:\Windows\system32\netapi32.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\muifontsetup.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\mobsync.exe
2011-03-08 17:16:59 ----A---- C:\Windows\system32\luainstall.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\iccvid.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2011-03-08 17:16:59 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2011-03-08 17:16:59 ----A---- C:\Windows\system32\drivers\tdi.sys
2011-03-08 17:16:59 ----A---- C:\Windows\system32\dosx.exe
2011-03-08 17:16:59 ----A---- C:\Windows\system32\cabinet.dll
2011-03-08 17:16:58 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2011-03-08 17:16:58 ----A---- C:\Windows\system32\vmstorfltres.dll
2011-03-08 17:16:58 ----A---- C:\Windows\system32\vmicres.dll
2011-03-08 17:16:58 ----A---- C:\Windows\system32\unlodctr.exe
2011-03-08 17:16:58 ----A---- C:\Windows\system32\reset.exe
2011-03-08 17:16:58 ----A---- C:\Windows\system32\repair-bde.exe
2011-03-08 17:16:58 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2011-03-08 17:16:58 ----A---- C:\Windows\system32\query.exe
2011-03-08 17:16:58 ----A---- C:\Windows\system32\netcfg.exe
2011-03-08 17:16:58 ----A---- C:\Windows\system32\msdmo.dll
2011-03-08 17:16:58 ----A---- C:\Windows\system32\manage-bde.exe
2011-03-08 17:16:58 ----A---- C:\Windows\system32\inetmib1.dll
2011-03-08 17:16:58 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2011-03-08 17:16:58 ----A---- C:\Windows\system32\change.exe
2011-03-08 17:16:57 ----A---- C:\Windows\system32\wups.dll
2011-03-08 17:16:57 ----A---- C:\Windows\system32\vmbusres.dll
2011-03-08 17:16:57 ----A---- C:\Windows\system32\UIRibbonRes.dll
2011-03-08 17:16:57 ----A---- C:\Windows\system32\profprov.dll
2011-03-08 17:16:57 ----A---- C:\Windows\system32\perfts.dll
2011-03-08 17:16:57 ----A---- C:\Windows\system32\odbcconf.dll
2011-03-08 17:16:57 ----A---- C:\Windows\system32\drivers\cdrom.sys
2011-03-08 17:16:57 ----A---- C:\Windows\system32\browcli.dll
2011-03-08 17:16:56 ----A---- C:\Windows\system32\TRAPI.dll
2011-03-08 17:16:56 ----A---- C:\Windows\system32\msfeedssync.exe
2011-03-08 17:16:56 ----A---- C:\Windows\system32\icaapi.dll
2011-03-08 17:16:56 ----A---- C:\Windows\system32\FXSMON.dll
2011-03-08 17:16:56 ----A---- C:\Windows\system32\elsTrans.dll
2011-03-08 17:16:56 ----A---- C:\Windows\system32\drivers\tunnel.sys
2011-03-08 17:16:56 ----A---- C:\Windows\system32\drivers\dfsc.sys
2011-03-08 17:16:55 ----A---- C:\Windows\system32\wshbth.dll
2011-03-08 17:16:55 ----A---- C:\Windows\system32\schedcli.dll
2011-03-08 17:16:55 ----A---- C:\Windows\system32\RDPENCDD.dll
2011-03-08 17:16:55 ----A---- C:\Windows\system32\napdsnap.dll
2011-03-08 17:16:55 ----A---- C:\Windows\system32\dsauth.dll
2011-03-08 17:16:55 ----A---- C:\Windows\system32\bitsperf.dll
2011-03-08 17:16:54 ----A---- C:\Windows\system32\sscore.dll
2011-03-08 17:16:54 ----A---- C:\Windows\system32\LogonUI.exe
2011-03-08 17:16:54 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2011-03-08 17:16:54 ----A---- C:\Windows\system32\cscdll.dll
2011-03-08 17:16:53 ----A---- C:\Windows\system32\wups2.dll
2011-03-08 17:16:53 ----A---- C:\Windows\system32\wsdchngr.dll
2011-03-08 17:16:53 ----A---- C:\Windows\system32\shgina.dll
2011-03-08 17:16:53 ----A---- C:\Windows\system32\riched32.dll
2011-03-08 17:16:53 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2011-03-08 17:16:52 ----A---- C:\Windows\system32\rdpcfgex.dll
2011-03-08 17:16:52 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2011-03-08 17:16:52 ----A---- C:\Windows\system32\drivers\VMBusHID.sys
2011-03-08 17:16:52 ----A---- C:\Windows\system32\drivers\hidusb.sys
2011-03-08 17:16:52 ----A---- C:\Windows\system32\drivers\appid.sys
2011-03-08 17:16:51 ----A---- C:\Windows\system32\wshirda.dll
2011-03-08 17:16:51 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2011-03-08 17:16:50 ----A---- C:\Windows\system32\vmictimeprovider.dll
2011-03-08 17:16:50 ----A---- C:\Windows\system32\vmbuspipe.dll
2011-03-08 17:16:50 ----A---- C:\Windows\system32\VmbusCoinstaller.dll
2011-03-08 17:16:50 ----A---- C:\Windows\system32\spwmp.dll
2011-03-08 17:16:50 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2011-03-08 17:16:50 ----A---- C:\Windows\system32\drivers\USBCAMD.sys
2011-03-08 17:16:50 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2011-03-08 17:16:50 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2011-03-08 17:16:50 ----A---- C:\Windows\system32\drivers\Dot4Prt.sys
2011-03-08 17:16:50 ----A---- C:\Windows\system32\browseui.dll
2011-03-08 17:16:49 ----A---- C:\Windows\system32\VmdCoinstall.dll
2011-03-08 17:16:49 ----A---- C:\Windows\system32\RDPREFDD.dll
2011-03-08 17:16:49 ----A---- C:\Windows\system32\IcCoinstall.dll
2011-03-08 17:16:49 ----A---- C:\Windows\system32\dxmasf.dll
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\wanarp.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\umbus.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\tdpipe.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\scfilter.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\RDPCDD.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2011-03-08 17:16:49 ----A---- C:\Windows\system32\C_ISCII.DLL
2011-03-08 17:16:48 ----A---- C:\Windows\system32\shunimpl.dll
2011-03-08 17:16:47 ----A---- C:\Windows\system32\wmploc.DLL
2011-03-08 17:16:47 ----A---- C:\Windows\system32\KBDUS.DLL
2011-03-08 17:16:47 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2011-03-08 17:16:47 ----A---- C:\Windows\system32\KBDTURME.DLL
2011-03-08 17:16:47 ----A---- C:\Windows\system32\KBDINTEL.DLL
2011-03-08 17:16:47 ----A---- C:\Windows\system32\KBDINKAN.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDTUQ.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDTUF.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDSG.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDSF.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDPO.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDNEPR.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDMON.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDMAORI.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDLT1.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\kbdlk41a.dll
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDINTAM.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDINORI.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDINMAR.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDINHIN.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDINBEN.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDGR1.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDGEO.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDBULG.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDBLR.DLL
2011-03-08 17:16:46 ----A---- C:\Windows\system32\KBDBASH.DLL
2011-03-08 17:16:45 ----A---- C:\Windows\system32\tzres.dll
2011-03-08 17:16:45 ----A---- C:\Windows\system32\spwizres.dll
2011-03-08 17:16:45 ----A---- C:\Windows\system32\pifmgr.dll
2011-03-08 17:16:45 ----A---- C:\Windows\system32\nlsbres.dll
2011-03-08 17:16:45 ----A---- C:\Windows\system32\KBDGKL.DLL
2011-03-08 17:16:45 ----A---- C:\Windows\system32\KBDCZ1.DLL
2011-03-08 17:16:45 ----A---- C:\Windows\system32\drivers\vms3cap.sys
2011-03-08 17:16:45 ----A---- C:\Windows\system32\dpnaddr.dll
2011-03-08 17:16:45 ----A---- C:\Windows\system32\BlbEvents.dll
2011-03-08 17:16:05 ----A---- C:\Windows\system32\wmicmiplugin.dll
2011-03-08 17:16:05 ----A---- C:\Windows\system32\wbemcomn.dll
2011-03-08 17:15:55 ----A---- C:\Windows\system32\SmiEngine.dll
2011-03-08 17:15:49 ----A---- C:\Windows\system32\wdscore.dll
2011-03-08 17:15:49 ----A---- C:\Windows\system32\PkgMgr.exe
2011-03-08 17:15:03 ----A---- C:\Windows\system32\drvstore.dll
2011-03-08 17:15:03 ----A---- C:\Windows\system32\dpx.dll
2011-03-08 17:10:02 ----A---- C:\Windows\system32\d3d10_1.dll
2011-03-08 11:07:46 ----A---- C:\Windows\system32\drivers\trufos.sys
2011-03-08 11:05:55 ----A---- C:\Windows\system32\drivers\bdhv.sys
2011-03-06 09:10:25 ----D---- C:\ProgramData\McAfee
2011-02-23 08:00:39 ----A---- C:\Windows\system32\XpsPrint.dll
2011-02-23 08:00:39 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-02-17 10:24:44 ----D---- C:\Users\User\AppData\Roaming\GSplit
2011-02-17 10:24:43 ----D---- C:\Program Files\Common Files\GSplit

======List of files/folders modified in the last 1 months======

2011-03-15 12:22:56 ----D---- C:\Windows\Temp
2011-03-15 12:22:51 ----D---- C:\Windows\Prefetch
2011-03-15 12:20:50 ----D---- C:\Windows\System32
2011-03-15 12:19:23 ----D---- C:\Windows\system32\config
2011-03-15 12:17:11 ----D---- C:\Windows
2011-03-14 16:28:59 ----A---- C:\bdlog.txt
2011-03-14 15:39:27 ----HD---- C:\ProgramData
2011-03-14 15:39:27 ----D---- C:\Program Files
2011-03-14 14:52:29 ----SHD---- C:\Windows\Installer
2011-03-14 14:52:28 ----D---- C:\Config.Msi
2011-03-14 14:51:59 ----D---- C:\Program Files\Common Files\Adobe
2011-03-14 14:51:55 ----D---- C:\ProgramData\Adobe
2011-03-14 14:51:52 ----D---- C:\Program Files\Adobe
2011-03-14 14:51:41 ----SHD---- C:\System Volume Information
2011-03-14 14:00:22 ----D---- C:\Users\User\AppData\Roaming\vlc
2011-03-14 12:42:02 ----D---- C:\Program Files\CCleaner
2011-03-13 16:41:21 ----D---- C:\Windows\system32\catroot2
2011-03-13 11:27:10 ----D---- C:\Windows\system32\drivers
2011-03-13 07:36:40 ----RSD---- C:\Windows\Fonts
2011-03-13 07:36:39 ----D---- C:\Program Files\Common Files
2011-03-12 20:12:47 ----SHD---- C:\$Recycle.Bin
2011-03-12 18:30:36 ----D---- C:\Windows\Downloaded Program Files
2011-03-12 18:11:44 ----D---- C:\Program Files\Mozilla Firefox
2011-03-12 07:15:02 ----D---- C:\Windows\inf
2011-03-12 07:15:02 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-03-11 19:23:13 ----D---- C:\Windows\system32\Tasks
2011-03-11 19:21:52 ----D---- C:\Program Files\Java
2011-03-11 06:58:29 ----D---- C:\Windows\debug
2011-03-10 13:32:12 ----D---- C:\Windows\winsxs
2011-03-10 08:32:34 ----A---- C:\Windows\system32\MRT.exe
2011-03-10 08:32:24 ----D---- C:\ProgramData\Microsoft Help
2011-03-10 08:30:48 ----D---- C:\Windows\system32\catroot
2011-03-09 17:33:46 ----D---- C:\Windows\rescache
2011-03-08 18:20:29 ----D---- C:\Windows\Microsoft.NET
2011-03-08 18:19:41 ----RSD---- C:\Windows\assembly
2011-03-08 17:40:55 ----D---- C:\Boot
2011-03-08 17:39:24 ----D---- C:\Windows\system32\DriverStore
2011-03-08 17:35:50 ----D---- C:\Program Files\Windows Sidebar
2011-03-08 17:35:50 ----D---- C:\Program Files\Windows Portable Devices
2011-03-08 17:35:50 ----D---- C:\Program Files\Windows Photo Viewer
2011-03-08 17:35:50 ----D---- C:\Program Files\Windows Media Player
2011-03-08 17:35:50 ----D---- C:\Program Files\Windows Mail
2011-03-08 17:35:50 ----D---- C:\Program Files\Windows Journal
2011-03-08 17:35:50 ----D---- C:\Program Files\Internet Explorer
2011-03-08 17:35:50 ----D---- C:\Program Files\DVD Maker
2011-03-08 17:35:45 ----D---- C:\Windows\servicing
2011-03-08 17:35:45 ----D---- C:\Windows\ehome
2011-03-08 17:35:45 ----D---- C:\Program Files\Windows Defender
2011-03-08 17:35:39 ----D---- C:\Windows\PolicyDefinitions
2011-03-08 17:35:38 ----D---- C:\Windows\system32\sysprep
2011-03-08 17:35:38 ----D---- C:\Windows\system32\oobe
2011-03-08 17:35:38 ----D---- C:\Windows\system32\migration
2011-03-08 17:35:38 ----D---- C:\Windows\system32\da-DK
2011-03-08 17:35:38 ----D---- C:\Windows\system32\AdvancedInstallers
2011-03-08 17:35:36 ----D---- C:\Windows\system32\fr-FR
2011-03-08 17:35:34 ----D---- C:\Windows\system32\sppui
2011-03-08 17:35:34 ----D---- C:\Windows\system32\Setup
2011-03-08 17:35:34 ----D---- C:\Windows\system32\manifeststore
2011-03-08 17:35:34 ----D---- C:\Windows\system32\es-ES
2011-03-08 17:35:34 ----D---- C:\Windows\system32\cs-CZ
2011-03-08 17:35:33 ----D---- C:\Windows\system32\drivers\fr-FR
2011-03-08 17:35:32 ----D---- C:\Windows\system32\wbem
2011-03-08 17:35:31 ----D---- C:\Windows\system32\migwiz
2011-03-08 17:35:31 ----D---- C:\Windows\system32\Dism
2011-03-08 17:35:01 ----D---- C:\Windows\AppPatch
2011-03-08 17:33:01 ----D---- C:\Windows\system32\Boot
2011-03-08 17:27:42 ----A---- C:\Windows\system32\msclmd.dll
2011-03-08 11:05:31 ----D---- C:\Windows\system32\drivers\UMDF
2011-03-06 09:21:22 ----SD---- C:\Users\User\AppData\Roaming\Microsoft
2011-03-06 09:21:22 ----D---- C:\Users\User\AppData\Roaming\Adobe
2011-03-03 08:56:44 ----D---- C:\Program Files\TuneUp Utilities 2011
2011-03-03 08:51:48 ----D---- C:\Windows\system32\NDF
2011-03-01 12:01:56 ----D---- C:\Program Files\Microsoft Silverlight
2011-02-23 18:01:21 ----D---- C:\ProgramData\CyberLink
2011-02-23 16:48:46 ----A---- C:\Windows\system32\TURegOpt.exe
2011-02-23 16:44:16 ----A---- C:\Windows\system32\authuitu.dll
2011-02-23 16:44:08 ----A---- C:\Windows\system32\uxtuneup.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 bdfsfltr;bdfsfltr; C:\Windows\system32\DRIVERS\bdfsfltr.sys [2010-07-27 327368]
R0 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys [2009-08-04 213024]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2009-04-17 44944]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 Si3531;SiI-3531 SATA Controller; C:\Windows\system32\DRIVERS\Si3531.sys [2009-02-05 212520]
R0 SiFilter;SATALink driver accelerator; C:\Windows\system32\DRIVERS\SiWinAcc.sys [2009-02-05 17064]
R0 SiRemFil;SATALink External Device Filter; C:\Windows\system32\DRIVERS\SiRemFil.sys [2009-02-05 12200]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 Bdfndisf;BitDefender Firewall NDIS 6 Filter Driver; \??\c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2011-02-12 72784]
R1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys [2011-02-12 88144]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/04/26 15:25:49]; \??\C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-03-13 87536]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 Trufos;Trufos; C:\Windows\system32\DRIVERS\Trufos.sys [2011-03-08 308152]
R3 BDFM;BDFM; C:\Windows\system32\DRIVERS\bdfm.sys [2010-05-13 152528]
R3 bdselfpr;bdselfpr; \??\C:\Program Files\BitDefender\BitDefender 2011\bdselfpr.sys [2011-03-08 91328]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\Windows\system32\DRIVERS\L8042Kbd.sys [2009-06-17 20240]
R3 L8042mou;SetPoint PS/2 Mouse Filter Driver; C:\Windows\system32\DRIVERS\L8042mou.Sys [2009-06-17 63248]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2009-06-17 35472]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2009-06-17 37392]
R3 LMouKE;SetPoint Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouKE.Sys [2009-06-17 79248]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6232.sys [2009-07-30 287392]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [2010-11-29 10064]
R3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 61883;Pilote d'unité 61883; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 46976]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Pilote de filtre du bus AMD AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 Avc;Périphérique AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 40320]
S3 AVCSTRM;AVC Streaming Filter Driver; C:\Windows\system32\DRIVERS\avcstrm.sys [2009-07-14 14464]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 131072]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\drivers\Dot4Prt.sys [2010-11-20 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 36864]
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [2010-05-01 14336]
S3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2007-01-04 171520]
S3 mbr;mbr; \??\C:\Users\User\AppData\Local\Temp\mbr.sys []
S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\Windows\system32\DRIVERS\mstape.sys [2009-07-14 50048]
S3 NVENETFD;Pilote du contrôleur de réseau NVIDIA nForce; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-14 347264]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtre de bus AGP SIS; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;Filtre de bus AGP VIA; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S4 avc3;avc3; C:\Windows\system32\DRIVERS\avc3.sys [2010-06-28 633424]
S4 avckf;avckf; C:\Windows\system32\DRIVERS\avckf.sys [2010-06-28 970320]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [2009-08-10 387616]
R2 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2009-07-20 121360]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [2009-08-10 178720]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-07-09 129640]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2011-02-23 1517376]
R2 Updatesrv;BitDefender Desktop Update Service; C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe [2011-03-08 43936]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 VSSERV;BitDefender Virus Shield; C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe [2011-03-08 2050864]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 PCLEPCI;PCLEPCI; C:\Windows\system32\drivers\pclepci.sys [2005-02-09 14165]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-04-27 654848]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2010-06-10 253808]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Update Server;BitDefender Update Server v2; C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2011-03-08 307544]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-04-27 1343400]

-----------------EOF-----------------
15 Mars 2011 12:02:27

Bonjour,

télécharge UsbFix (merci El Desaparecido) : Ici

# Connecte tous tes périphériques externes (clé Usb, disque dur...), sans les ouvrir
# Double-clique sur le raccourci présent sur le Bureau
# Choisis l' option 1 (Recherche) et laisse-le travailler
# Poste le rapport (également sauvegardé à la racine de C)

process.exe est détecté par certains antivirus (AntiVir, Dr. Web, Kaspersky Anti-Virus...) comme étant un RiskTool. Il ne s' agit pas d' un virus, mais d' un utilitaire destiné à mettre fin des processus. Mis entre de mauvaises mains il pourrait arrêter des logiciels de sécurité (antivirus, firewall...), d' où l' alerte émise.

A+
18 Mars 2011 11:49:59

Bonjour,

où en es-tu?

A+
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS