Votre question

Impossible d'afficher pages Https suite à infection

Tags :
  • Internet Explorer
  • Sécurité
Dernière réponse : dans Sécurité et virus
Anonyme
19 Mars 2010 11:37:25

Bonjour.

Suite aux virus ave.exe, je n'arrive plus aller sur le sites sécurisés. J'ai pu neutraliser ce virus avec le logiciel malware. J'ai utliser tous navigateurs : mozilla - opera - internet explorer. Mais en vain

Merci de votre aide

David

Autres pages sur : impossible afficher pages https suite infection

20 Mars 2010 13:54:07

Bonjour dnapoleon,

*Télécharge RSIT (merci random/random) sur le Bureau : Ici
Double-clique sur RSIT.exe, il ne nécessite pas d' installation.
Clique Continue à l' écran Disclaimer si tu acceptes les conditions.
-Si HijackThis est non détecté sur ton Pc, il le téléchargera (autorise l' accès dans ton pare-feu si demandé et accepte la licence).
Lorsque l' analyse sera terminée, deux fichiers texte s' ouvriront.
Poste le contenu de log.txt (celui qui s' ouvre) ainsi que info.txt qui est dans la Barre des Tâches
Tuto : http://forum.pcastuces.com/randoms_system_information_t...

NB : Ces rapports sont enregistrés dans le dossier C:\rsit

A+

23 Mars 2010 11:22:27

Bonjour Frederix.

Merci pour ton aide. Voici le contenu du raaport :

Logfile of random's system information tool 1.06 (written by random/random)
Run by David at 2010-03-23 11:21:08
Microsoft® Windows Vista™ Professionnel Service Pack 2
System drive C: has 15 GB (22%) free of 68 GB
Total RAM: 3060 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:21:10, on 23/03/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v7.00 (7.00.6002.18005)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\David\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R0CV8P6U\RSIT[2].exe
C:\Program Files\trend micro\David.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.nec-computers.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://pagriates.ac-lille.fr/portail/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe"
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: Ajouter à Kaspersky Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\SCIEPlgn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O17 - HKLM\System\CCS\Services\Tcpip\..\{F7B8708F-5C09-468E-8DEA-B34D53A94C08}: NameServer = 10.202.8.210,10.202.1.210
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe
O23 - Service: Kaspersky Network Agent (klnagent) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\NetworkAgent\klnagent.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NetOp Helper ver. 9.21 (2009014) (NetOp Host for NT Service) - Danware Data A/S - C:\Program Files\Danware Data\NetOp Remote Control\Host\NHOSTSVC.EXE
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared Files\RichVideo.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 4869 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Malwarebytes' Scheduled Scan for David.job
C:\Windows\tasks\Malwarebytes' Scheduled Update for David.job
C:\Windows\tasks\User_Feed_Synchronization-{5FB65AD1-4BEF-451F-886A-D8098A6F673C}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2009-05-24 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-05-24 35840]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe [2008-09-25 231952]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2010-01-07 429392]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-10-11 4702208]
"Skytel"=C:\Windows\Skytel.exe [2007-10-11 1826816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeUpdater]
C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe [2008-09-26 2356088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\Windows\system32\hkcmd.exe [2007-09-19 154136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\Windows\system32\igfxtray.exe [2007-09-19 141848]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
C:\Program Files\Cyberlink\PowerDVD\Language\Language.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsgCenterExe]
C:\Program Files\Common Files\Real\Update_OB\RealOneMessageCenter.exe -osboot []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OPSE reminder]
C:\Program Files\ScanSoft\OmniPageSE2.0\EregFre\Ereg.exe [2003-07-07 729088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE2]
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe [2003-05-08 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
C:\Windows\system32\igfxpers.exe [2007-09-19 129560]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
C:\Program Files\Cyberlink\PowerDVD\PDVDServ.exe [2007-01-08 68640]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Windows\RtHDVCpl.exe [2007-10-11 4702208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-10 1233920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre6\bin\jusched.exe [2009-05-24 148888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2010-01-13 37888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2007-09-13 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\Windows\system32\klogon.dll [2007-11-19 219664]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3ad494db-8afd-11dd-aa53-001c25cf8b73}]
shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL copy.exe


======List of files/folders created in the last 1 months======

2010-03-23 11:14:04 ----D---- C:\rsit
2010-03-23 11:14:04 ----D---- C:\Program Files\trend micro
2010-03-22 10:11:49 ----D---- C:\Windows\system32\vi-VN
2010-03-22 10:11:49 ----D---- C:\Windows\system32\eu-ES
2010-03-22 10:11:49 ----D---- C:\Windows\system32\ca-ES
2010-03-22 09:46:02 ----A---- C:\Windows\system32\scavenge.dll
2010-03-22 09:45:52 ----A---- C:\Windows\system32\compcln.exe
2010-03-22 09:44:58 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-03-22 09:44:58 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-03-22 09:44:58 ----A---- C:\Windows\system32\secproc_isv.dll
2010-03-22 09:44:58 ----A---- C:\Windows\system32\secproc.dll
2010-03-22 09:44:57 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2010-03-22 09:44:57 ----A---- C:\Windows\system32\SearchIndexer.exe
2010-03-22 09:44:57 ----A---- C:\Windows\system32\SearchFilterHost.exe
2010-03-22 09:44:57 ----A---- C:\Windows\system32\sdohlp.dll
2010-03-22 09:44:57 ----A---- C:\Windows\system32\sdclt.exe
2010-03-22 09:44:56 ----A---- C:\Windows\system32\rsaenh.dll
2010-03-22 09:44:55 ----A---- C:\Windows\system32\samlib.dll
2010-03-22 09:44:55 ----A---- C:\Windows\system32\rwinsta.exe
2010-03-22 09:44:55 ----A---- C:\Windows\system32\rtutils.dll
2010-03-22 09:44:55 ----A---- C:\Windows\system32\rtffilt.dll
2010-03-22 09:44:55 ----A---- C:\Windows\system32\rpcss.dll
2010-03-22 09:44:55 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-03-22 09:44:55 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-03-22 09:44:55 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-03-22 09:44:55 ----A---- C:\Windows\system32\RMActivate.exe
2010-03-22 09:44:55 ----A---- C:\Windows\system32\riched20.dll
2010-03-22 09:44:54 ----A---- C:\Windows\system32\scrrun.dll
2010-03-22 09:44:54 ----A---- C:\Windows\system32\SCardSvr.dll
2010-03-22 09:44:54 ----A---- C:\Windows\system32\scansetting.dll
2010-03-22 09:44:54 ----A---- C:\Windows\system32\samsrv.dll
2010-03-22 09:44:54 ----A---- C:\Windows\system32\rpchttp.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\scrptadm.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\scrobj.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\scksp.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\schedsvc.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\scesrv.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\scecli.dll
2010-03-22 09:44:50 ----A---- C:\Windows\system32\pdh.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\PNPXAssoc.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\PnPutil.exe
2010-03-22 09:44:49 ----A---- C:\Windows\system32\PnPUnattend.exe
2010-03-22 09:44:49 ----A---- C:\Windows\system32\pnpui.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\pnpsetup.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\pnidui.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\perfdisk.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\pcaui.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\p2psvc.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\P2PGraph.dll
2010-03-22 09:44:48 ----A---- C:\Windows\system32\powercpl.dll
2010-03-22 09:44:48 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2010-03-22 09:44:48 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2010-03-22 09:44:48 ----A---- C:\Windows\system32\photowiz.dll
2010-03-22 09:44:47 ----A---- C:\Windows\system32\pmcsnap.dll
2010-03-22 09:44:47 ----A---- C:\Windows\system32\PkgMgr.exe
2010-03-22 09:44:47 ----A---- C:\Windows\system32\pidgenx.dll
2010-03-22 09:44:47 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2010-03-22 09:44:47 ----A---- C:\Windows\system32\ntdll.dll
2010-03-22 09:44:47 ----A---- C:\Windows\system32\nslookup.exe
2010-03-22 09:44:45 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2010-03-22 09:44:43 ----A---- C:\Windows\system32\offfilt.dll
2010-03-22 09:44:43 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2010-03-22 09:44:43 ----A---- C:\Windows\system32\nlhtml.dll
2010-03-22 09:44:42 ----A---- C:\Windows\system32\oleaut32.dll
2010-03-22 09:44:41 ----A---- C:\Windows\system32\ole32.dll
2010-03-22 09:44:41 ----A---- C:\Windows\system32\odbccp32.dll
2010-03-22 09:44:41 ----A---- C:\Windows\system32\odbcconf.dll
2010-03-22 09:44:41 ----A---- C:\Windows\system32\odbc32.dll
2010-03-22 09:44:40 ----A---- C:\Windows\system32\osk.exe
2010-03-22 09:44:40 ----A---- C:\Windows\system32\oobefldr.dll
2010-03-22 09:44:40 ----A---- C:\Windows\system32\onex.dll
2010-03-22 09:44:40 ----A---- C:\Windows\system32\olepro32.dll
2010-03-22 09:44:40 ----A---- C:\Windows\system32\oleprn.dll
2010-03-22 09:44:39 ----A---- C:\Windows\system32\ocsetup.exe
2010-03-22 09:44:39 ----A---- C:\Windows\system32\occache.dll
2010-03-22 09:44:39 ----A---- C:\Windows\system32\ntprint.dll
2010-03-22 09:44:39 ----A---- C:\Windows\system32\ntmarta.dll
2010-03-22 09:44:38 ----A---- C:\Windows\system32\rasmontr.dll
2010-03-22 09:44:38 ----A---- C:\Windows\system32\rasmans.dll
2010-03-22 09:44:38 ----A---- C:\Windows\system32\rasgcw.dll
2010-03-22 09:44:38 ----A---- C:\Windows\system32\rasdlg.dll
2010-03-22 09:44:38 ----A---- C:\Windows\system32\rasdial.exe
2010-03-22 09:44:37 ----A---- C:\Windows\system32\rastapi.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\rasppp.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\rasplap.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\rasdiag.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\raschap.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\rasapi32.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\query.exe
2010-03-22 09:44:37 ----A---- C:\Windows\system32\Query.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\qprocess.exe
2010-03-22 09:44:37 ----A---- C:\Windows\system32\qedit.dll
2010-03-22 09:44:36 ----A---- C:\Windows\system32\reset.exe
2010-03-22 09:44:36 ----A---- C:\Windows\system32\RelMon.dll
2010-03-22 09:44:36 ----A---- C:\Windows\system32\rekeywiz.exe
2010-03-22 09:44:36 ----A---- C:\Windows\system32\regsvc.dll
2010-03-22 09:44:36 ----A---- C:\Windows\system32\RacEngn.dll
2010-03-22 09:44:36 ----A---- C:\Windows\system32\qmgr.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\regapi.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\reg.exe
2010-03-22 09:44:35 ----A---- C:\Windows\system32\rdpwsx.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\rdpendp.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\rdpencom.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\rdpclip.exe
2010-03-22 09:44:35 ----A---- C:\Windows\system32\PresentationSettings.exe
2010-03-22 09:44:35 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-03-22 09:44:34 ----A---- C:\Windows\system32\prnntfy.dll
2010-03-22 09:44:34 ----A---- C:\Windows\system32\printui.dll
2010-03-22 09:44:34 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2010-03-22 09:44:34 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2010-03-22 09:44:34 ----A---- C:\Windows\system32\PrintBrmUi.exe
2010-03-22 09:44:34 ----A---- C:\Windows\system32\PresentationHost.exe
2010-03-22 09:44:33 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2010-03-22 09:44:33 ----A---- C:\Windows\system32\powrprof.dll
2010-03-22 09:44:31 ----A---- C:\Windows\system32\qdvd.dll
2010-03-22 09:44:31 ----A---- C:\Windows\system32\qappsrv.exe
2010-03-22 09:44:31 ----A---- C:\Windows\system32\QAGENTRT.DLL
2010-03-22 09:44:31 ----A---- C:\Windows\system32\puiapi.dll
2010-03-22 09:44:30 ----A---- C:\Windows\system32\psisdecd.dll
2010-03-22 09:44:30 ----A---- C:\Windows\system32\PSHED.DLL
2010-03-22 09:44:30 ----A---- C:\Windows\system32\propsys.dll
2010-03-22 09:44:30 ----A---- C:\Windows\system32\propdefs.dll
2010-03-22 09:44:30 ----A---- C:\Windows\system32\profsvc.dll
2010-03-22 09:44:27 ----A---- C:\Windows\system32\sendmail.dll
2010-03-22 09:44:26 ----A---- C:\Windows\system32\shell32.dll
2010-03-22 09:44:26 ----A---- C:\Windows\system32\shdocvw.dll
2010-03-22 09:44:25 ----A---- C:\Windows\system32\shlwapi.dll
2010-03-22 09:44:25 ----A---- C:\Windows\system32\shadow.exe
2010-03-22 09:44:25 ----A---- C:\Windows\system32\setupapi.dll
2010-03-22 09:44:25 ----A---- C:\Windows\system32\sethc.exe
2010-03-22 09:44:25 ----A---- C:\Windows\system32\services.exe
2010-03-22 09:44:15 ----A---- C:\Windows\system32\eapphost.dll
2010-03-22 09:44:15 ----A---- C:\Windows\system32\eappgnui.dll
2010-03-22 09:44:09 ----A---- C:\Windows\system32\EhStorAPI.dll
2010-03-22 09:44:09 ----A---- C:\Windows\system32\eappcfg.dll
2010-03-22 09:44:09 ----A---- C:\Windows\system32\eapp3hst.dll
2010-03-22 09:44:08 ----A---- C:\Windows\system32\dsprop.dll
2010-03-22 09:44:08 ----A---- C:\Windows\system32\dsound.dll
2010-03-22 09:44:07 ----A---- C:\Windows\system32\ExplorerFrame.dll
2010-03-22 09:44:07 ----A---- C:\Windows\system32\evr.dll
2010-03-22 09:44:07 ----A---- C:\Windows\system32\eudcedit.exe
2010-03-22 09:44:07 ----A---- C:\Windows\system32\esent.dll
2010-03-22 09:44:07 ----A---- C:\Windows\system32\dwm.exe
2010-03-22 09:44:07 ----A---- C:\Windows\explorer.exe
2010-03-22 09:44:06 ----A---- C:\Windows\system32\f3ahvoas.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\extmgr.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\es.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\EncDec.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\emdmgmt.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\EhStorShell.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\EhStorAuthn.dll
2010-03-22 09:44:05 ----A---- C:\Windows\system32\diskraid.exe
2010-03-22 09:44:05 ----A---- C:\Windows\system32\diskpart.exe
2010-03-22 09:44:05 ----A---- C:\Windows\system32\dimsroam.dll
2010-03-22 09:44:05 ----A---- C:\Windows\system32\diagperf.dll
2010-03-22 09:44:05 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2010-03-22 09:44:05 ----A---- C:\Windows\system32\dfshim.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\drvstore.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dpapimig.exe
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dot3svc.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dot3msm.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dot3cfg.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dhcpcsvc.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dfsr.exe
2010-03-22 09:44:04 ----A---- C:\Windows\system32\devmgr.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\hbaapi.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\gpscript.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\gpresult.exe
2010-03-22 09:44:03 ----A---- C:\Windows\system32\gpprnext.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\drvinst.exe
2010-03-22 09:44:03 ----A---- C:\Windows\system32\drmv2clt.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\drmmgrtn.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\dnsrslvr.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\dnsapi.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\dmusic.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\dmsynth.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\iasnap.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\IasMigReader.exe
2010-03-22 09:44:02 ----A---- C:\Windows\system32\IasMigPlugin.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\iashlpr.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\iasdatastore.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\iasads.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\iasacct.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\hidserv.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\hdwwiz.exe
2010-03-22 09:44:02 ----A---- C:\Windows\system32\gpupdate.exe
2010-03-22 09:44:02 ----A---- C:\Windows\system32\gpsvc.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\gpscript.exe
2010-03-22 09:44:02 ----A---- C:\Windows\system32\fontext.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\gpapi.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\gdi32.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\findstr.exe
2010-03-22 09:44:01 ----A---- C:\Windows\system32\feclient.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdWSD.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdWCN.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdSSDP.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdProxy.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdeploy.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdBthProxy.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdBth.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fc.exe
2010-03-22 09:44:01 ----A---- C:\Windows\system32\Faultrep.dll
2010-03-22 09:44:00 ----A---- C:\Windows\system32\gpedit.dll
2010-03-22 09:44:00 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2010-03-22 09:44:00 ----A---- C:\Windows\system32\fundisc.dll
2010-03-22 09:44:00 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2010-03-22 09:44:00 ----A---- C:\Windows\system32\ftp.exe
2010-03-22 09:43:59 ----A---- C:\Windows\system32\gameux.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2010-03-22 09:43:59 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\autoplay.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\autofmt.exe
2010-03-22 09:43:59 ----A---- C:\Windows\system32\autoconv.exe
2010-03-22 09:43:59 ----A---- C:\Windows\system32\autochk.exe
2010-03-22 09:43:59 ----A---- C:\Windows\system32\authz.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\authui.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\audiosrv.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\AudioSes.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\audiodg.exe
2010-03-22 09:43:57 ----A---- C:\Windows\system32\bthci.dll
2010-03-22 09:43:57 ----A---- C:\Windows\system32\browseui.dll
2010-03-22 09:43:57 ----A---- C:\Windows\system32\brcplsiw.dll
2010-03-22 09:43:57 ----A---- C:\Windows\system32\brcpl.dll
2010-03-22 09:43:57 ----A---- C:\Windows\system32\basecsp.dll
2010-03-22 09:43:57 ----A---- C:\Windows\system32\azroles.dll
2010-03-22 09:43:56 ----A---- C:\Windows\system32\blackbox.dll
2010-03-22 09:43:56 ----A---- C:\Windows\system32\bitsigd.dll
2010-03-22 09:43:56 ----A---- C:\Windows\system32\BFE.DLL
2010-03-22 09:43:56 ----A---- C:\Windows\system32\bcrypt.dll
2010-03-22 09:43:56 ----A---- C:\Windows\system32\accessibilitycpl.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\appmgmts.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\Apphlpdm.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\apphelp.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\apds.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\adsmsext.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\adsldpc.dll
2010-03-22 09:43:54 ----A---- C:\Windows\system32\conime.exe
2010-03-22 09:43:54 ----A---- C:\Windows\system32\comuid.dll
2010-03-22 09:43:54 ----A---- C:\Windows\system32\comsvcs.dll
2010-03-22 09:43:54 ----A---- C:\Windows\system32\advapi32.dll
2010-03-22 09:43:54 ----A---- C:\Windows\system32\adtschema.dll
2010-03-22 09:43:53 ----A---- C:\Windows\system32\crypt32.dll
2010-03-22 09:43:53 ----A---- C:\Windows\system32\credui.dll
2010-03-22 09:43:53 ----A---- C:\Windows\system32\connect.dll
2010-03-22 09:43:52 ----A---- C:\Windows\system32\comdlg32.dll
2010-03-22 09:43:52 ----A---- C:\Windows\system32\cmmon32.exe
2010-03-22 09:43:52 ----A---- C:\Windows\system32\cmdial32.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2010-03-22 09:43:51 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\DevicePairing.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\DeviceEject.exe
2010-03-22 09:43:51 ----A---- C:\Windows\system32\dbgeng.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\davclnt.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\dataclen.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\d3d9.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\cscobj.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\CscMig.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\cscdll.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\cscapi.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\csrstub.exe
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cscui.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cscsvc.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cscript.exe
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cryptui.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cryptsvc.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\certmgr.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\CertEnrollUI.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\CertEnroll.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\certcli.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cdd.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cbsra.exe
2010-03-22 09:43:50 ----A---- C:\Windows\system32\bthudtask.exe
2010-03-22 09:43:50 ----A---- C:\Windows\system32\bthserv.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msihnd.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msiexec.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msftedit.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msfeeds.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msexcl40.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msexch40.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msdtctm.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\cipher.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\ci.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\chtbrkr.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\chsbrkr.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\chgusr.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\chgport.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\chglogon.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\change.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\certutil.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\certreq.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\certprop.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msi.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\mshtmled.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msdtcprx.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msdrm.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msctfui.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msctfp.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msctf.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\msimsg.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\MPSSVC.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\mprapi.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\mpr.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\modemui.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\MMDevAPI.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\NetProjW.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\netplwiz.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\netlogon.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\netcenter.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\netapi32.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\ncryptui.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\ncrypt.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mtxclu.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mscories.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mscorier.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mscoree.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mscms.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mscandui.dll
2010-03-22 09:43:44 ----A---- C:\Windows\system32\NcdProp.dll
2010-03-22 09:43:44 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2010-03-22 09:43:43 ----A---- C:\Windows\system32\newdev.exe
2010-03-22 09:43:43 ----A---- C:\Windows\system32\newdev.dll
2010-03-22 09:43:43 ----A---- C:\Windows\system32\networkexplorer.dll
2010-03-22 09:43:43 ----A---- C:\Windows\system32\netshell.dll
2010-03-22 09:43:42 ----A---- C:\Windows\system32\networkmap.dll
2010-03-22 09:43:42 ----A---- C:\Windows\system32\networkitemfactory.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msscntrs.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msscb.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msrepl40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msrd3x40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msrd2x40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msrating.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\mspbde40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msnetobj.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msltus40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msjtes40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msjter40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msjint40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msjetoledb40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msinfo32.exe
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msimtf.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msxbde40.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\mswstr10.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\mswsock.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\mswdat10.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\MSVidCtl.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msvcrt.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msvcp60.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msutb.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\mssphtb.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\mssph.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msjet40.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msisip.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mstsc.exe
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mstlsapi.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mstime.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mstext40.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mssvp.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\msstrc.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mssrch.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mssprxy.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mssitlb.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\msshsq.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\msshooks.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\msscp.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\inetcomm.dll
2010-03-22 09:43:38 ----A---- C:\Windows\system32\InkEd.dll
2010-03-22 09:43:38 ----A---- C:\Windows\system32\infocardapi.dll
2010-03-22 09:43:38 ----A---- C:\Windows\system32\inetppui.dll
2010-03-22 09:43:38 ----A---- C:\Windows\system32\inetpp.dll
2010-03-22 09:43:37 ----A---- C:\Windows\system32\imm32.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\iscsilog.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\ipsmsnap.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\IPSECSVC.DLL
2010-03-22 09:43:36 ----A---- C:\Windows\system32\ipsecsnp.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\iphlpsvc.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2010-03-22 09:43:36 ----A---- C:\Windows\system32\ipconfig.exe
2010-03-22 09:43:36 ----A---- C:\Windows\system32\input.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\iertutil.dll
2010-03-22 09:43:35 ----A---- C:\Windows\system32\ifmon.dll
2010-03-22 09:43:35 ----A---- C:\Windows\system32\icardres.dll
2010-03-22 09:43:35 ----A---- C:\Windows\system32\icardagt.exe
2010-03-22 09:43:35 ----A---- C:\Windows\system32\iassvcs.dll
2010-03-22 09:43:35 ----A---- C:\Windows\system32\iassdo.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\IMJP10K.DLL
2010-03-22 09:43:34 ----A---- C:\Windows\system32\imapi2.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\imapi.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\iedkcs32.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\ieaksie.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\iassam.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\iasrecst.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\iasrad.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\iaspolcy.dll
2010-03-22 09:43:33 ----A---- C:\Windows\system32\mfplat.dll
2010-03-22 09:43:33 ----A---- C:\Windows\system32\mfc42.dll
2010-03-22 09:43:33 ----A---- C:\Windows\system32\imapi2fs.dll
2010-03-22 09:43:33 ----A---- C:\Windows\system32\IKEEXT.DLL
2010-03-22 09:43:32 ----A---- C:\Windows\system32\milcore.dll
2010-03-22 09:43:32 ----A---- C:\Windows\system32\mfc42u.dll
2010-03-22 09:43:31 ----A---- C:\Windows\system32\mmcndmgr.dll
2010-03-22 09:43:31 ----A---- C:\Windows\system32\mmcico.dll
2010-03-22 09:43:31 ----A---- C:\Windows\system32\mmci.dll
2010-03-22 09:43:31 ----A---- C:\Windows\system32\mimefilt.dll
2010-03-22 09:43:31 ----A---- C:\Windows\system32\midimap.dll
2010-03-22 09:43:30 ----A---- C:\Windows\system32\mmc.exe
2010-03-22 09:43:30 ----A---- C:\Windows\system32\korwbrkr.dll
2010-03-22 09:43:29 ----A---- C:\Windows\system32\l2nacp.dll
2010-03-22 09:43:29 ----A---- C:\Windows\system32\kernel32.dll
2010-03-22 09:43:29 ----A---- C:\Windows\system32\kdusb.dll
2010-03-22 09:43:29 ----A---- C:\Windows\system32\kdcom.dll
2010-03-22 09:43:29 ----A---- C:\Windows\system32\kd1394.dll
2010-03-22 09:43:28 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2010-03-22 09:43:28 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2010-03-22 09:43:28 ----A---- C:\Windows\system32\mblctr.exe
2010-03-22 09:43:28 ----A---- C:\Windows\system32\logman.exe
2010-03-22 09:43:28 ----A---- C:\Windows\system32\logagent.exe
2010-03-22 09:43:27 ----A---- C:\Windows\system32\wercon.exe
2010-03-22 09:43:27 ----A---- C:\Windows\system32\wer.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\WebClnt.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\webcheck.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\wdscore.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\wdc.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\shsetup.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\Magnify.exe
2010-03-22 09:43:27 ----A---- C:\Windows\system32\logoff.exe
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WindowsCodecs.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\win32spl.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\whealogr.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WFS.exe
2010-03-22 09:43:26 ----A---- C:\Windows\system32\wevtutil.exe
2010-03-22 09:43:26 ----A---- C:\Windows\system32\wevtsvc.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\wevtapi.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\wersvc.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WerFaultSecure.exe
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WerFault.exe
2010-03-22 09:43:25 ----A---- C:\Windows\system32\wiaservc.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\wiaaut.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\version.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\vdsutil.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\vdsdyn.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\vds.exe
2010-03-22 09:43:25 ----A---- C:\Windows\system32\vdmdbg.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\vbscript.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\uxsms.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\Utilman.exe
2010-03-22 09:43:25 ----A---- C:\Windows\system32\usp10.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\userenv.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\usercpl.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\user32.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wscisvif.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\WscEapPr.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wscapi.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wcnwiz2.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wcnwiz.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\WcnNetsh.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wcncsvc.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wbengine.exe
2010-03-22 09:43:24 ----A---- C:\Windows\system32\w32time.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\VSSVC.exe
2010-03-22 09:43:24 ----A---- C:\Windows\system32\vssapi.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\WSDMon.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\wsdchngr.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\wscsvc.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\wscript.exe
2010-03-22 09:43:23 ----A---- C:\Windows\system32\wscntfy.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\wow32.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\WMVXENCD.DLL
2010-03-22 09:43:23 ----A---- C:\Windows\system32\WMVSDECD.DLL
2010-03-22 09:43:23 ----A---- C:\Windows\system32\WMVENCOD.DLL
2010-03-22 09:43:22 ----A---- C:\Windows\system32\xmlfilter.dll
2010-03-22 09:43:22 ----A---- C:\Windows\system32\wusa.exe
2010-03-22 09:43:21 ----A---- C:\Windows\system32\wshext.dll
2010-03-22 09:43:21 ----A---- C:\Windows\system32\wshbth.dll
2010-03-22 09:43:21 ----A---- C:\Windows\system32\wsepno.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wsnmp32.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\WsmSvc.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wlgpclnt.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\Wldap32.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wlanui.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wlanpref.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wlangpui.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wisptis.exe
2010-03-22 09:43:20 ----A---- C:\Windows\system32\winrnr.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\winresume.exe
2010-03-22 09:43:19 ----A---- C:\Windows\system32\winsrv.dll
2010-03-22 09:43:19 ----A---- C:\Windows\system32\WinSCard.dll
2010-03-22 09:43:19 ----A---- C:\Windows\system32\WinSAT.exe
2010-03-22 09:43:19 ----A---- C:\Windows\system32\winmm.dll
2010-03-22 09:43:19 ----A---- C:\Windows\system32\winlogon.exe
2010-03-22 09:43:19 ----A---- C:\Windows\system32\winload.exe
2010-03-22 09:43:18 ----A---- C:\Windows\system32\wmpmde.dll
2010-03-22 09:43:18 ----A---- C:\Windows\system32\WMPhoto.dll
2010-03-22 09:43:18 ----A---- C:\Windows\system32\wmpeffects.dll
2010-03-22 09:43:18 ----A---- C:\Windows\system32\WMNetMgr.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\wmicmiplugin.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\wmdrmsdk.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\sud.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\Storprop.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\stobject.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\srcore.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\srchadmin.dll
2010-03-22 09:43:15 ----A---- C:\Windows\system32\sysmain.dll
2010-03-22 09:43:15 ----A---- C:\Windows\system32\sysclass.dll
2010-03-22 09:43:15 ----A---- C:\Windows\system32\swprv.dll
2010-03-22 09:43:15 ----A---- C:\Windows\system32\srvsvc.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\SyncCenter.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\smss.exe
2010-03-22 09:43:14 ----A---- C:\Windows\system32\SmiEngine.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\SMBHelperClass.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\slwmi.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\slcc.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\spp.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\spoolsv.exe
2010-03-22 09:43:13 ----A---- C:\Windows\system32\spoolss.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\spinstall.exe
2010-03-22 09:43:13 ----A---- C:\Windows\system32\spcmsg.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\slwga.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLUINotify.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLUI.exe
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLsvc.exe
2010-03-22 09:43:13 ----A---- C:\Windows\system32\slmgr.vbs
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLLUA.exe
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLCommDlg.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\slcinst.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLCExt.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLC.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\shwebsvc.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\shsvcs.dll
2010-03-22 09:43:10 ----A---- C:\Windows\system32\sperror.dll
2010-03-22 09:43:09 ----A---- C:\Windows\system32\TsWpfWrp.exe
2010-03-22 09:43:09 ----A---- C:\Windows\system32\TSTheme.exe
2010-03-22 09:43:09 ----A---- C:\Windows\system32\sqlsrv32.dll
2010-03-22 09:43:09 ----A---- C:\Windows\system32\spwizui.dll
2010-03-22 09:43:09 ----A---- C:\Windows\system32\spwinsat.dll
2010-03-22 09:43:09 ----A---- C:\Windows\system32\spreview.exe
2010-03-22 09:43:09 ----A---- C:\Windows\system32\softkbd.dll
2010-03-22 09:43:09 ----A---- C:\Windows\system32\SnippingTool.exe
2010-03-22 09:43:09 ----A---- C:\Windows\system32\SndVol.exe
2010-03-22 09:43:08 ----A---- C:\Windows\system32\zipfldr.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\untfs.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\umrdp.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\umpnpmgr.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\ulib.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\uDWM.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\tskill.exe
2010-03-22 09:43:08 ----A---- C:\Windows\system32\tsdiscon.exe
2010-03-22 09:43:08 ----A---- C:\Windows\system32\tscupgrd.exe
2010-03-22 09:43:08 ----A---- C:\Windows\system32\systemcpl.dll
2010-03-22 09:43:05 ----A---- C:\Windows\system32\tscon.exe
2010-03-22 09:43:05 ----A---- C:\Windows\system32\tscfgwmi.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\tquery.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\themeui.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\thawbrkr.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\termsrv.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\tcpmon.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\tcpipcfg.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\taskeng.exe
2010-03-22 09:43:04 ----A---- C:\Windows\system32\taskcomp.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\tapisrv.dll
2010-03-22 09:43:03 ----A---- C:\Windows\system32\themecpl.dll
2010-03-22 09:41:50 ----D---- C:\Windows\system32\EventProviders
2010-03-19 09:09:48 ----D---- C:\Users\David\AppData\Roaming\Opera
2010-03-19 09:08:53 ----D---- C:\Program Files\Opera
2010-03-18 15:25:54 ----D---- C:\Windows\temp
2010-03-18 15:15:08 ----D---- C:\ComboFix
2010-03-18 15:08:25 ----D---- C:\Qoobox
2010-03-18 13:33:52 ----D---- C:\Users\David\AppData\Roaming\TuneUp Software
2010-03-18 13:33:15 ----D---- C:\Program Files\TuneUp Utilities 2010
2010-03-18 13:32:59 ----D---- C:\ProgramData\TuneUp Software
2010-03-18 13:26:11 ----D---- C:\Program Files\Mozilla Firefox(3)
2010-03-18 12:58:16 ----D---- C:\Program Files\JDownloader
2010-03-18 08:17:42 ----D---- C:\Users\David\AppData\Roaming\WinRAR
2010-03-17 10:22:38 ----D---- C:\Program Files\Mozilla Firefox
2010-03-17 08:56:54 ----D---- C:\Users\David\AppData\Roaming\Malwarebytes
2010-03-17 08:56:49 ----D---- C:\ProgramData\Malwarebytes
2010-03-17 08:56:49 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-03-17 08:42:14 ----A---- C:\Windows\ntbtlog.txt
2010-03-16 15:22:44 ----D---- C:\754ebd2f743d5bd8fddb65973a0b
2010-03-12 09:51:29 ----A---- C:\Windows\system32\uxtuneup.dll
2010-03-12 09:51:29 ----A---- C:\Windows\system32\authuitu.dll
2010-03-12 09:50:39 ----SHD---- C:\Config.Msi
2010-03-12 09:47:45 ----A---- C:\Windows\system32\TURegOpt.exe
2010-03-12 09:45:56 ----SHD---- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2010-03-11 03:01:11 ----A---- C:\Windows\system32\nshhttp.dll
2010-03-11 03:01:09 ----A---- C:\Windows\system32\httpapi.dll
2010-03-08 13:24:41 ----A---- C:\Windows\system32\SpoonUninstall.exe
2010-03-08 13:17:16 ----D---- C:\Users\David\AppData\Roaming\Winamp
2010-03-08 13:17:16 ----D---- C:\Program Files\Winamp
2010-03-05 10:55:25 ----D---- C:\Users\David\AppData\Roaming\dvdcss
2010-02-24 07:35:04 ----A---- C:\Windows\system32\tzres.dll

======List of files/folders modified in the last 1 months======

2010-03-23 11:21:07 ----D---- C:\Windows\prefetch
2010-03-23 11:14:04 ----RD---- C:\Program Files
2010-03-23 07:51:25 ----D---- C:\ProgramData\Kaspersky Lab
2010-03-23 03:27:24 ----D---- C:\Windows\Microsoft.NET
2010-03-23 03:27:15 ----RSD---- C:\Windows\assembly
2010-03-23 03:26:00 ----D---- C:\Windows\System32
2010-03-23 03:26:00 ----D---- C:\Windows\inf
2010-03-23 03:26:00 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-03-23 03:01:40 ----D---- C:\Windows\winsxs
2010-03-23 03:01:36 ----D---- C:\Windows\system32\catroot
2010-03-23 03:00:27 ----SHD---- C:\System Volume Information
2010-03-22 10:31:49 ----D---- C:\Windows\rescache
2010-03-22 10:19:19 ----D---- C:\Windows
2010-03-22 10:19:12 ----SHD---- C:\boot
2010-03-22 10:15:46 ----D---- C:\Windows\system32\catroot2
2010-03-22 10:12:08 ----D---- C:\Program Files\Windows Calendar
2010-03-22 10:12:06 ----D---- C:\Windows\servicing
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Sidebar
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Photo Gallery
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Media Player
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Mail
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Journal
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Defender
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Collaboration
2010-03-22 10:12:06 ----D---- C:\Program Files\Movie Maker
2010-03-22 10:12:06 ----D---- C:\Program Files\Internet Explorer
2010-03-22 10:12:06 ----D---- C:\Program Files\Common Files\System
2010-03-22 10:12:04 ----D---- C:\Windows\system32\lv-LV
2010-03-22 10:12:04 ----D---- C:\Windows\PolicyDefinitions
2010-03-22 10:12:04 ----D---- C:\Windows\IME
2010-03-22 10:12:03 ----D---- C:\Windows\system32\XPSViewer
2010-03-22 10:12:03 ----D---- C:\Windows\system32\sk-SK
2010-03-22 10:12:03 ----D---- C:\Windows\system32\oobe
2010-03-22 10:12:03 ----D---- C:\Windows\system32\migration
2010-03-22 10:12:03 ----D---- C:\Windows\system32\ko-KR
2010-03-22 10:12:03 ----D---- C:\Windows\system32\it-IT
2010-03-22 10:12:03 ----D---- C:\Windows\system32\hr-HR
2010-03-22 10:12:03 ----D---- C:\Windows\system32\fr
2010-03-22 10:12:03 ----D---- C:\Windows\system32\et-EE
2010-03-22 10:12:03 ----D---- C:\Windows\system32\en-US
2010-03-22 10:12:03 ----D---- C:\Windows\system32\el-GR
2010-03-22 10:12:03 ----D---- C:\Windows\system32\de-DE
2010-03-22 10:12:03 ----D---- C:\Windows\system32\da-DK
2010-03-22 10:12:02 ----D---- C:\Windows\system32\ru-RU
2010-03-22 10:12:02 ----D---- C:\Windows\system32\fr-FR
2010-03-22 10:12:02 ----D---- C:\Windows\system32\AdvancedInstallers
2010-03-22 10:12:01 ----D---- C:\Windows\system32\zh-TW
2010-03-22 10:12:01 ----D---- C:\Windows\system32\zh-CN
2010-03-22 10:12:01 ----D---- C:\Windows\system32\uk-UA
2010-03-22 10:12:01 ----D---- C:\Windows\system32\tr-TR
2010-03-22 10:12:01 ----D---- C:\Windows\system32\th-TH
2010-03-22 10:12:01 ----D---- C:\Windows\system32\sv-SE
2010-03-22 10:12:01 ----D---- C:\Windows\system32\sr-Latn-CS
2010-03-22 10:12:01 ----D---- C:\Windows\system32\SLUI
2010-03-22 10:12:01 ----D---- C:\Windows\system32\sl-SI
2010-03-22 10:12:01 ----D---- C:\Windows\system32\setup
2010-03-22 10:12:01 ----D---- C:\Windows\system32\ro-RO
2010-03-22 10:12:01 ----D---- C:\Windows\system32\pt-PT
2010-03-22 10:12:01 ----D---- C:\Windows\system32\pl-PL
2010-03-22 10:12:01 ----D---- C:\Windows\system32\manifeststore
2010-03-22 10:12:01 ----D---- C:\Windows\system32\ja-JP
2010-03-22 10:12:01 ----D---- C:\Windows\system32\hu-HU
2010-03-22 10:12:01 ----D---- C:\Windows\system32\he-IL
2010-03-22 10:12:01 ----D---- C:\Windows\system32\fi-FI
2010-03-22 10:12:01 ----D---- C:\Windows\system32\es-ES
2010-03-22 10:12:01 ----D---- C:\Windows\system32\drivers
2010-03-22 10:12:01 ----D---- C:\Windows\system32\cs-CZ
2010-03-22 10:12:01 ----D---- C:\Windows\system32\bg-BG
2010-03-22 10:12:00 ----D---- C:\Windows\system32\wbem
2010-03-22 10:12:00 ----D---- C:\Windows\system32\pt-BR
2010-03-22 10:12:00 ----D---- C:\Windows\system32\nl-NL
2010-03-22 10:12:00 ----D---- C:\Windows\system32\nb-NO
2010-03-22 10:12:00 ----D---- C:\Windows\system32\migwiz
2010-03-22 10:12:00 ----D---- C:\Windows\system32\lt-LT
2010-03-22 10:12:00 ----D---- C:\Windows\system32\ar-SA
2010-03-22 10:11:53 ----RSD---- C:\Windows\Fonts
2010-03-22 10:11:53 ----D---- C:\Windows\AppPatch
2010-03-22 10:11:49 ----D---- C:\Windows\system32\Boot
2010-03-22 10:09:40 ----D---- C:\Windows\system32\RTCOM
2010-03-19 15:54:17 ----D---- C:\Windows\system32\Tasks
2010-03-19 08:49:15 ----D---- C:\Users\David\AppData\Roaming\vlc
2010-03-19 08:07:05 ----D---- C:\Program Files\OpenOffice.org 3
2010-03-18 16:31:38 ----D---- C:\Windows\system32\Msdtc
2010-03-18 16:27:34 ----D---- C:\Windows\system32\config
2010-03-18 16:27:09 ----D---- C:\Windows\system32\spool
2010-03-18 16:27:09 ----D---- C:\Windows\system32\CodeIntegrity
2010-03-18 16:27:09 ----D---- C:\Windows\Minidump
2010-03-18 16:27:08 ----D---- C:\Users\David\AppData\Roaming\Mozilla
2010-03-18 16:26:59 ----SHD---- C:\$Recycle.Bin
2010-03-18 16:26:59 ----D---- C:\Windows\registration
2010-03-18 15:21:47 ----D---- C:\Program Files\Common Files
2010-03-18 15:06:16 ----D---- C:\Windows\Debug
2010-03-18 14:44:43 ----SD---- C:\ProgramData\Microsoft
2010-03-18 11:25:54 ----HD---- C:\Windows\system32\GroupPolicy
2010-03-17 08:34:55 ----D---- C:\Windows\system32\sysprep
2010-03-17 08:34:55 ----D---- C:\Windows\system32\ras
2010-03-17 08:34:55 ----D---- C:\Windows\system
2010-03-17 08:34:49 ----SD---- C:\Windows\Downloaded Program Files
2010-03-17 08:34:49 ----RSD---- C:\Windows\Media
2010-03-17 08:34:49 ----RD---- C:\Windows\Offline Web Pages
2010-03-17 08:34:49 ----D---- C:\Windows\system32\ias
2010-03-17 08:34:49 ----D---- C:\Windows\ShellNew
2010-03-17 08:34:49 ----D---- C:\Program Files\Common Files\Services
2010-03-16 15:15:08 ----HD---- C:\Program Files\InstallShield Installation Information
2010-03-16 15:13:37 ----D---- C:\Windows\system32\Macromed
2010-03-15 09:10:58 ----D---- C:\Program Files\Google
2010-03-12 10:38:05 ----D---- C:\Windows\Tasks
2010-03-12 09:51:41 ----SHD---- C:\Windows\Installer
2010-03-12 09:45:56 ----HD---- C:\ProgramData
2010-03-11 03:03:35 ----D---- C:\ProgramData\Microsoft Help
2010-03-08 13:17:23 ----D---- C:\Program Files\Common Files\PX Storage Engine
2010-03-05 11:11:20 ----D---- C:\Partage Administratif
2010-03-02 06:30:12 ----A---- C:\Windows\system32\mrt.exe
2010-02-24 10:16:06 ----N---- C:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys [2009-04-10 351744]
R1 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2008-09-25 112144]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2009-03-31 148496]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2007-04-04 20760]
R1 NHostNT1;NetOp Driver 1 ver. 9.21 (2009014); C:\Windows\System32\Drivers\NHOSTNT1.SYS [2009-01-14 102544]
R3 dwVSCD;NetOp Virtual Smart Card Driver; C:\Windows\system32\DRIVERS\dwvscd.sys [2009-01-14 16696]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-09-13 1925632]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-10-16 1971928]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2010-01-07 19160]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-10-03 99840]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2009-10-14 10064]
R3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys []
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 RxFilter;RxFilter; C:\Windows\system32\DRIVERS\RxFilter.sys [2008-04-14 57328]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-21 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AVP;Kaspersky Anti-Virus 6.0; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe [2008-09-25 231952]
R2 BcmSqlStartupSvc;Service de démarrage SQL Server pour le Gestionnaire de contacts professionnels; C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [2008-01-16 30312]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 klnagent;Kaspersky Network Agent; C:\Program Files\Kaspersky Lab\NetworkAgent\klnagent.exe [2008-03-17 94608]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-01-07 236368]
R2 NetOp Host for NT Service;NetOp Helper ver. 9.21 (2009014); C:\Program Files\Danware Data\NetOp Remote Control\Host\NHOSTSVC.EXE [2009-01-14 1709992]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\Cyberlink\Shared Files\RichVideo.exe [2007-04-18 171040]
R2 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;Enregistreur VSS SQL Server; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-02-25 1047880]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2008-01-21 523776]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]
S3 TuneUp.Defrag;@C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-03-12 435016]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2009-04-10 918528]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]

-----------------EOF-----------------

@ +
Contenus similaires
23 Mars 2010 11:37:42

Bonjour dnapoleon,

ton Pc est infecté.

Désactive le Contrôle des comptes utilisateurs (UAC, tu le réactiveras après la désinfection) :
- Va dans démarrer>Panneau de configuration
- Double-clique sur l' icône Comptes d' utilisateurs
- Clique ensuite sur désactiver puis valide

Télécharge UsbFix (merci El Desaparecido) : Ici

# Connecte tous tes périphériques externes (clé Usb, disque dur...), sans les ouvrir
# Double-clique sur le raccourci présent sur le Bureau
# Choisis l' option 1 (Recherche) et laisse-le travailler
# Poste le rapport (également sauvegardé à la racine du disque)

process.exe est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus...) comme étant un RiskTool. Il ne s' agit pas d' un virus, mais d' un utilitaire destiné à mettre fin des processus. Mis entre de mauvaises mains cet utilitaire pourrait arrêter des logiciels de sécurité (antivirus, firewall...), d' où l' alerte émise.

A+
23 Mars 2010 11:51:01

ReBonjour Frederix

voici le rapport :

User : David (Administrateurs) # PC-DE-DAVID
Update on 18/03/2010 by El Desaparecido , C_XX & Chimay8
Start at: 11:47:42 | 23/03/2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

Intel(R) Pentium(R) Dual CPU E2200 @ 2.20GHz
Microsoft® Windows Vista™ Professionnel (6.0.6002 32-bit) # Service Pack 2
Internet Explorer 7.0.6002.18005
Windows Firewall Status : Enabled
AV : Kaspersky Anti-Virus 6.0.3.837 [ Enabled | Updated ]
FW : Kaspersky Anti-Virus[ (!) Disabled ]6.0.3.837

A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 66,52 Go (14,51 Go free) [HDD] # NTFS
D:\ -> Disque CD-ROM

################## | Elements infectieux |


################## | Registre |

[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe]

################## | Mountpoints2 |

HKCU\..\..\Explorer\MountPoints2\{3ad494db-8afd-11dd-aa53-001c25cf8b73}
shell\AutoRun\command =C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL copy.exe

################## | Vaccin |

(!) Cet ordinateur n'est pas vacciné !

################## | ! Fin du rapport # UsbFix V6.100 ! |

Merci pour ta rapidité.

@ +
23 Mars 2010 11:52:04

Re,

# Connecte tous tes périphériques externes, sans les ouvrir
# Double-clique sur le raccourci d' UsbFix
# Choisis l' option 2 (Suppression)
# Ton bureau va disparaître et le pc redémarrer
# Laisse-le travailler
# Poste le rapport

;) 
23 Mars 2010 13:23:55

Re,
Voici le rapport,


############################## | UsbFix V6.100 |

User : David (Administrateurs) # PC-DE-DAVID
Update on 18/03/2010 by El Desaparecido , C_XX & Chimay8
Start at: 11:58:39 | 23/03/2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

Intel(R) Pentium(R) Dual CPU E2200 @ 2.20GHz
Microsoft® Windows Vista™ Professionnel (6.0.6002 32-bit) # Service Pack 2
Internet Explorer 7.0.6002.18005
Windows Firewall Status : Enabled
AV : Kaspersky Anti-Virus 6.0.3.837 [ Enabled | Updated ]
FW : Kaspersky Anti-Virus[ (!) Disabled ]6.0.3.837

A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 66,52 Go (14,31 Go free) [HDD] # NTFS
D:\ -> Disque CD-ROM

################## | Elements infectieux |

Supprimé ! C:\$Recycle.Bin\S-1-5-21-3434122577-966209884-263124002-500
Supprimé ! C:\$Recycle.Bin\S-1-5-21-3769618630-1773912028-3060641611-1003

################## | Registre |

Supprimé ! [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe]

################## | Mountpoints2 |

Supprimé ! HKCU\...\Explorer\MountPoints2\{3ad494db-8afd-11dd-aa53-001c25cf8b73}\Shell\AutoRun\Command

################## | Listing des fichiers présent |

[18/09/2006 22:43|--a------|24] C:\autoexec.bat
[10/04/2009 23:36|-rahs----|333257] C:\bootmgr
[23/09/2008 10:41|-ra-s----|8192] C:\BOOTSECT.BAK
[18/09/2006 22:43|--a------|10] C:\config.sys
[?|?|?] C:\hiberfil.sys
[07/01/2010 09:17|-rahs----|0] C:\IO.SYS
[07/01/2010 09:17|-rahs----|0] C:\MSDOS.SYS
[25/09/2008 13:49|--a------|1206] C:\nagent_log.txt
[?|?|?] C:\pagefile.sys
[17/03/2010 09:33|--a------|352] C:\rkill.log
[23/03/2010 12:03|--a------|1709] C:\UsbFix.txt

################## | Vaccination |

# C:\autorun.inf -> Dossier créé par UsbFix (El Desaparecido).

################## | Upload |

Veuillez envoyer le fichier : C:\UsbFix_Upload_Me_PC-de-David.zip : http://chiquitine.changelog.fr/Sample/Upload.php
Merci pour votre contribution .

################## | ! Fin du rapport # UsbFix V6.100 ! |

Merci, @ +
24 Mars 2010 09:17:07

Bonjour.

Voici le rapport :

Malwarebytes' Anti-Malware 1.44
Version de la base de données: 3902
Windows 6.0.6002 Service Pack 2
Internet Explorer 7.0.6002.18005

24/03/2010 08:52:40
mbam-log-2010-03-24 (08-52-40).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 244100
Temps écoulé: 49 minute(s), 26 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

Merci

a +
25 Mars 2010 12:02:10

Bonjour.

Voici le rapport :

BitDefender Online Scanner



Rapport d'analyse g�n�r� �: Thu, Mar 25, 2010 - 11:16:53





Voie d'analyse: A:\;C:\;D:\;C:\Users\Public;C:\Users\David;







Statistiques

Temps
00:21:59

Fichiers
88812

Directoires
20324

Secteurs de boot
0

Archives
752

Paquets programmes
6063




R�sultats

Virus identifi�s
3

Fichiers infect�s
4

Fichiers suspects
0

Avertissements
0

D�sinfect�s
0

Fichiers effac�s
4




Info sur les moteurs

D�finition virus
5554345

Version des moteurs
AVCORE v2.1 Windows/i386 11.0.0.33 (Feb 25 2010)

Analyse des plugins
17

Archive des plugins
44

Unpack des plugins
8

E-mail plugins
6

Syst�me plugins
4




Param�tres d'analyse

Premi�re action
Désinfecté

Seconde Action
Supprimés

Heuristique
Oui

Acceptez les avertissements
Oui

Extensions analys�es
exe;com;dll;ocx;scr;bin;dat;386;vxd;sys;wdm;cla;class;ovl;ole;hlp;doc;dot;xls;ppt;wbk;wiz;pot;ppa;xla;xlt;vbs;vbe;mdb;rtf;htm;hta;html;xml;xtp;php;asp;js;shs;chm;lnk;pif;prc;url;smm;pfd;msi;ini;csc;cmd;bas;

Excludez les extensions


Analyse d'emails
Oui

Analyse des Archives
Oui

Analyser paquets programmes
Oui

Analyse des fichiers
Oui

Analyse de boot
Oui




Fichier analys�
Statut

C:\UsbFix\Tools\KProcess.exe
Infecté par: Trojan.Generic.3313884

C:\UsbFix\Tools\KProcess.exe
Supprimé

C:\Users\David\AppData\Local\23755159.dll
Infecté par: Gen:Heur.Krypt.26

C:\Users\David\AppData\Local\23755159.dll
Echec de la désinfection

C:\Users\David\AppData\Local\23755159.dll
Supprimé

C:\Users\David\Desktop\UsbFix.exe=>(RAR Sfx o)=>Tools\KProcess.exe
Infecté par: Trojan.Generic.3313884

C:\Users\David\Desktop\UsbFix.exe=>(RAR Sfx o)=>Tools\KProcess.exe
Supprimé

C:\Users\David\Desktop\UsbFix.exe=>(RAR Sfx o)
Echec de la mise à jour

C:\Users\David\Desktop\UsbFix.exe=>(RAR Sfx o)=>Tools\KProcess.exe
Infecté par: Trojan.Generic.3313884

C:\Users\David\Desktop\UsbFix.exe=>(RAR Sfx o)=>Tools\KProcess.exe
Supprimé

C:\Users\David\Desktop\UsbFix.exe=>(RAR Sfx o)
Echec de la mise à jour




Merci

a +
25 Mars 2010 12:09:21

Bonjour dnapoleon,

comment va ton Pc?

Poste un nouveau rapport RSIT complet.

A+
25 Mars 2010 13:34:07

frederix a dit :
Bonjour dnapoleon,

comment va ton Pc?

Poste un nouveau rapport RSIT complet.

A+


Re.

Voici le rapport :

Logfile of random's system information tool 1.06 (written by random/random)
Run by David at 2010-03-25 13:32:37
Microsoft® Windows Vista™ Professionnel Service Pack 2
System drive C: has 28 GB (41%) free of 68 GB
Total RAM: 3060 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:32:39, on 25/03/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v7.00 (7.00.6002.18005)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\David\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2KY2HB7S\RSIT[1].exe
C:\Program Files\trend micro\David.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.nec-computers.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\Connexion Internet Orange\SearchURLHook\SearchPageURL.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: Ajouter à Kaspersky Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\SCIEPlgn.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sourc...
O17 - HKLM\System\CCS\Services\Tcpip\..\{F7B8708F-5C09-468E-8DEA-B34D53A94C08}: NameServer = 10.202.8.210,10.202.1.210
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Kaspersky Network Agent (klnagent) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\NetworkAgent\klnagent.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NetOp Helper ver. 9.21 (2009014) (NetOp Host for NT Service) - Danware Data A/S - C:\Program Files\Danware Data\NetOp Remote Control\Host\NHOSTSVC.EXE
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared Files\RichVideo.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 5244 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Malwarebytes' Scheduled Scan for David.job
C:\Windows\tasks\Malwarebytes' Scheduled Update for David.job
C:\Windows\tasks\User_Feed_Synchronization-{5FB65AD1-4BEF-451F-886A-D8098A6F673C}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2009-05-24 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-05-24 35840]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe [2008-09-25 231952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeUpdater]
C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe [2008-09-26 2356088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVP]
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe [2008-09-25 231952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\Windows\system32\hkcmd.exe [2007-09-19 154136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\Windows\system32\igfxtray.exe [2007-09-19 141848]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
C:\Program Files\Cyberlink\PowerDVD\Language\Language.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware]
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2010-01-07 429392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsgCenterExe]
C:\Program Files\Common Files\Real\Update_OB\RealOneMessageCenter.exe -osboot []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OPSE reminder]
C:\Program Files\ScanSoft\OmniPageSE2.0\EregFre\Ereg.exe [2003-07-07 729088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE2]
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe [2003-05-08 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ORAHSSSessionManager]
C:\Program Files\Orange\Connexion Internet Orange\SessionManager\SessionManager.exe [2009-08-24 135920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
C:\Windows\system32\igfxpers.exe [2007-09-19 129560]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
C:\Program Files\Cyberlink\PowerDVD\PDVDServ.exe [2007-01-08 68640]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Windows\RtHDVCpl.exe [2007-10-11 4702208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-10 1233920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre6\bin\jusched.exe [2009-05-24 148888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2010-01-13 37888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2007-09-13 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\Windows\system32\klogon.dll [2007-11-19 219664]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=255
"NoDriveTypeAutoRun"=255
"HonorAutoRunSetting"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Orange\Connexion Internet Orange\Connectivity\ConnectivityManager.exe"="C:\Program Files\Orange\Connexion Internet Orange\Connectivity\ConnectivityManager.exe:*:enabled:CSS"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2010-03-24 11:49:34 ----D---- C:\Windows\BDOSCAN8
2010-03-24 09:48:16 ----D---- C:\Program Files\PhotoScape
2010-03-23 15:29:00 ----A---- C:\UsbFix.txt
2010-03-23 13:54:45 ----A---- C:\Windows\system32\Autodial2000.dll
2010-03-23 13:54:31 ----D---- C:\Program Files\Orange
2010-03-23 13:53:47 ----D---- C:\Program Files\Common Files\France Telecom
2010-03-23 12:03:09 ----RASHD---- C:\autorun.inf
2010-03-23 11:45:58 ----D---- C:\UsbFix
2010-03-23 11:14:04 ----D---- C:\rsit
2010-03-23 11:14:04 ----D---- C:\Program Files\trend micro
2010-03-22 10:11:49 ----D---- C:\Windows\system32\vi-VN
2010-03-22 10:11:49 ----D---- C:\Windows\system32\eu-ES
2010-03-22 10:11:49 ----D---- C:\Windows\system32\ca-ES
2010-03-22 09:46:02 ----A---- C:\Windows\system32\scavenge.dll
2010-03-22 09:45:52 ----A---- C:\Windows\system32\compcln.exe
2010-03-22 09:44:58 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-03-22 09:44:58 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-03-22 09:44:58 ----A---- C:\Windows\system32\secproc_isv.dll
2010-03-22 09:44:58 ----A---- C:\Windows\system32\secproc.dll
2010-03-22 09:44:57 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2010-03-22 09:44:57 ----A---- C:\Windows\system32\SearchIndexer.exe
2010-03-22 09:44:57 ----A---- C:\Windows\system32\SearchFilterHost.exe
2010-03-22 09:44:57 ----A---- C:\Windows\system32\sdohlp.dll
2010-03-22 09:44:57 ----A---- C:\Windows\system32\sdclt.exe
2010-03-22 09:44:56 ----A---- C:\Windows\system32\rsaenh.dll
2010-03-22 09:44:55 ----A---- C:\Windows\system32\samlib.dll
2010-03-22 09:44:55 ----A---- C:\Windows\system32\rwinsta.exe
2010-03-22 09:44:55 ----A---- C:\Windows\system32\rtutils.dll
2010-03-22 09:44:55 ----A---- C:\Windows\system32\rtffilt.dll
2010-03-22 09:44:55 ----A---- C:\Windows\system32\rpcss.dll
2010-03-22 09:44:55 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-03-22 09:44:55 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-03-22 09:44:55 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-03-22 09:44:55 ----A---- C:\Windows\system32\RMActivate.exe
2010-03-22 09:44:55 ----A---- C:\Windows\system32\riched20.dll
2010-03-22 09:44:54 ----A---- C:\Windows\system32\scrrun.dll
2010-03-22 09:44:54 ----A---- C:\Windows\system32\SCardSvr.dll
2010-03-22 09:44:54 ----A---- C:\Windows\system32\scansetting.dll
2010-03-22 09:44:54 ----A---- C:\Windows\system32\samsrv.dll
2010-03-22 09:44:54 ----A---- C:\Windows\system32\rpchttp.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\scrptadm.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\scrobj.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\scksp.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\schedsvc.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\scesrv.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\scecli.dll
2010-03-22 09:44:50 ----A---- C:\Windows\system32\pdh.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\PNPXAssoc.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\PnPutil.exe
2010-03-22 09:44:49 ----A---- C:\Windows\system32\PnPUnattend.exe
2010-03-22 09:44:49 ----A---- C:\Windows\system32\pnpui.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\pnpsetup.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\pnidui.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\perfdisk.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\pcaui.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\p2psvc.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\P2PGraph.dll
2010-03-22 09:44:48 ----A---- C:\Windows\system32\powercpl.dll
2010-03-22 09:44:48 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2010-03-22 09:44:48 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2010-03-22 09:44:48 ----A---- C:\Windows\system32\photowiz.dll
2010-03-22 09:44:47 ----A---- C:\Windows\system32\pmcsnap.dll
2010-03-22 09:44:47 ----A---- C:\Windows\system32\PkgMgr.exe
2010-03-22 09:44:47 ----A---- C:\Windows\system32\pidgenx.dll
2010-03-22 09:44:47 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2010-03-22 09:44:47 ----A---- C:\Windows\system32\ntdll.dll
2010-03-22 09:44:47 ----A---- C:\Windows\system32\nslookup.exe
2010-03-22 09:44:45 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2010-03-22 09:44:43 ----A---- C:\Windows\system32\offfilt.dll
2010-03-22 09:44:43 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2010-03-22 09:44:43 ----A---- C:\Windows\system32\nlhtml.dll
2010-03-22 09:44:42 ----A---- C:\Windows\system32\oleaut32.dll
2010-03-22 09:44:41 ----A---- C:\Windows\system32\ole32.dll
2010-03-22 09:44:41 ----A---- C:\Windows\system32\odbccp32.dll
2010-03-22 09:44:41 ----A---- C:\Windows\system32\odbcconf.dll
2010-03-22 09:44:41 ----A---- C:\Windows\system32\odbc32.dll
2010-03-22 09:44:40 ----A---- C:\Windows\system32\osk.exe
2010-03-22 09:44:40 ----A---- C:\Windows\system32\oobefldr.dll
2010-03-22 09:44:40 ----A---- C:\Windows\system32\onex.dll
2010-03-22 09:44:40 ----A---- C:\Windows\system32\olepro32.dll
2010-03-22 09:44:40 ----A---- C:\Windows\system32\oleprn.dll
2010-03-22 09:44:39 ----A---- C:\Windows\system32\ocsetup.exe
2010-03-22 09:44:39 ----A---- C:\Windows\system32\occache.dll
2010-03-22 09:44:39 ----A---- C:\Windows\system32\ntprint.dll
2010-03-22 09:44:39 ----A---- C:\Windows\system32\ntmarta.dll
2010-03-22 09:44:38 ----A---- C:\Windows\system32\rasmontr.dll
2010-03-22 09:44:38 ----A---- C:\Windows\system32\rasmans.dll
2010-03-22 09:44:38 ----A---- C:\Windows\system32\rasgcw.dll
2010-03-22 09:44:38 ----A---- C:\Windows\system32\rasdlg.dll
2010-03-22 09:44:38 ----A---- C:\Windows\system32\rasdial.exe
2010-03-22 09:44:37 ----A---- C:\Windows\system32\rastapi.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\rasppp.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\rasplap.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\rasdiag.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\raschap.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\rasapi32.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\query.exe
2010-03-22 09:44:37 ----A---- C:\Windows\system32\Query.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\qprocess.exe
2010-03-22 09:44:37 ----A---- C:\Windows\system32\qedit.dll
2010-03-22 09:44:36 ----A---- C:\Windows\system32\reset.exe
2010-03-22 09:44:36 ----A---- C:\Windows\system32\RelMon.dll
2010-03-22 09:44:36 ----A---- C:\Windows\system32\rekeywiz.exe
2010-03-22 09:44:36 ----A---- C:\Windows\system32\regsvc.dll
2010-03-22 09:44:36 ----A---- C:\Windows\system32\RacEngn.dll
2010-03-22 09:44:36 ----A---- C:\Windows\system32\qmgr.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\regapi.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\reg.exe
2010-03-22 09:44:35 ----A---- C:\Windows\system32\rdpwsx.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\rdpendp.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\rdpencom.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\rdpclip.exe
2010-03-22 09:44:35 ----A---- C:\Windows\system32\PresentationSettings.exe
2010-03-22 09:44:35 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-03-22 09:44:34 ----A---- C:\Windows\system32\prnntfy.dll
2010-03-22 09:44:34 ----A---- C:\Windows\system32\printui.dll
2010-03-22 09:44:34 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2010-03-22 09:44:34 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2010-03-22 09:44:34 ----A---- C:\Windows\system32\PrintBrmUi.exe
2010-03-22 09:44:34 ----A---- C:\Windows\system32\PresentationHost.exe
2010-03-22 09:44:33 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2010-03-22 09:44:33 ----A---- C:\Windows\system32\powrprof.dll
2010-03-22 09:44:31 ----A---- C:\Windows\system32\qdvd.dll
2010-03-22 09:44:31 ----A---- C:\Windows\system32\qappsrv.exe
2010-03-22 09:44:31 ----A---- C:\Windows\system32\QAGENTRT.DLL
2010-03-22 09:44:31 ----A---- C:\Windows\system32\puiapi.dll
2010-03-22 09:44:30 ----A---- C:\Windows\system32\psisdecd.dll
2010-03-22 09:44:30 ----A---- C:\Windows\system32\PSHED.DLL
2010-03-22 09:44:30 ----A---- C:\Windows\system32\propsys.dll
2010-03-22 09:44:30 ----A---- C:\Windows\system32\propdefs.dll
2010-03-22 09:44:30 ----A---- C:\Windows\system32\profsvc.dll
2010-03-22 09:44:27 ----A---- C:\Windows\system32\sendmail.dll
2010-03-22 09:44:26 ----A---- C:\Windows\system32\shell32.dll
2010-03-22 09:44:26 ----A---- C:\Windows\system32\shdocvw.dll
2010-03-22 09:44:25 ----A---- C:\Windows\system32\shlwapi.dll
2010-03-22 09:44:25 ----A---- C:\Windows\system32\shadow.exe
2010-03-22 09:44:25 ----A---- C:\Windows\system32\setupapi.dll
2010-03-22 09:44:25 ----A---- C:\Windows\system32\sethc.exe
2010-03-22 09:44:25 ----A---- C:\Windows\system32\services.exe
2010-03-22 09:44:15 ----A---- C:\Windows\system32\eapphost.dll
2010-03-22 09:44:15 ----A---- C:\Windows\system32\eappgnui.dll
2010-03-22 09:44:09 ----A---- C:\Windows\system32\EhStorAPI.dll
2010-03-22 09:44:09 ----A---- C:\Windows\system32\eappcfg.dll
2010-03-22 09:44:09 ----A---- C:\Windows\system32\eapp3hst.dll
2010-03-22 09:44:08 ----A---- C:\Windows\system32\dsprop.dll
2010-03-22 09:44:08 ----A---- C:\Windows\system32\dsound.dll
2010-03-22 09:44:07 ----A---- C:\Windows\system32\ExplorerFrame.dll
2010-03-22 09:44:07 ----A---- C:\Windows\system32\evr.dll
2010-03-22 09:44:07 ----A---- C:\Windows\system32\eudcedit.exe
2010-03-22 09:44:07 ----A---- C:\Windows\system32\esent.dll
2010-03-22 09:44:07 ----A---- C:\Windows\system32\dwm.exe
2010-03-22 09:44:07 ----A---- C:\Windows\explorer.exe
2010-03-22 09:44:06 ----A---- C:\Windows\system32\f3ahvoas.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\extmgr.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\es.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\EncDec.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\emdmgmt.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\EhStorShell.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\EhStorAuthn.dll
2010-03-22 09:44:05 ----A---- C:\Windows\system32\diskraid.exe
2010-03-22 09:44:05 ----A---- C:\Windows\system32\diskpart.exe
2010-03-22 09:44:05 ----A---- C:\Windows\system32\dimsroam.dll
2010-03-22 09:44:05 ----A---- C:\Windows\system32\diagperf.dll
2010-03-22 09:44:05 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2010-03-22 09:44:05 ----A---- C:\Windows\system32\dfshim.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\drvstore.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dpapimig.exe
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dot3svc.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dot3msm.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dot3cfg.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dhcpcsvc.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dfsr.exe
2010-03-22 09:44:04 ----A---- C:\Windows\system32\devmgr.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\hbaapi.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\gpscript.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\gpresult.exe
2010-03-22 09:44:03 ----A---- C:\Windows\system32\gpprnext.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\drvinst.exe
2010-03-22 09:44:03 ----A---- C:\Windows\system32\drmv2clt.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\drmmgrtn.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\dnsrslvr.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\dnsapi.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\dmusic.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\dmsynth.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\iasnap.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\IasMigReader.exe
2010-03-22 09:44:02 ----A---- C:\Windows\system32\IasMigPlugin.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\iashlpr.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\iasdatastore.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\iasads.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\iasacct.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\hidserv.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\hdwwiz.exe
2010-03-22 09:44:02 ----A---- C:\Windows\system32\gpupdate.exe
2010-03-22 09:44:02 ----A---- C:\Windows\system32\gpsvc.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\gpscript.exe
2010-03-22 09:44:02 ----A---- C:\Windows\system32\fontext.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\gpapi.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\gdi32.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\findstr.exe
2010-03-22 09:44:01 ----A---- C:\Windows\system32\feclient.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdWSD.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdWCN.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdSSDP.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdProxy.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdeploy.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdBthProxy.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdBth.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fc.exe
2010-03-22 09:44:01 ----A---- C:\Windows\system32\Faultrep.dll
2010-03-22 09:44:00 ----A---- C:\Windows\system32\gpedit.dll
2010-03-22 09:44:00 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2010-03-22 09:44:00 ----A---- C:\Windows\system32\fundisc.dll
2010-03-22 09:44:00 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2010-03-22 09:44:00 ----A---- C:\Windows\system32\ftp.exe
2010-03-22 09:43:59 ----A---- C:\Windows\system32\gameux.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2010-03-22 09:43:59 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\autoplay.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\autofmt.exe
2010-03-22 09:43:59 ----A---- C:\Windows\system32\autoconv.exe
2010-03-22 09:43:59 ----A---- C:\Windows\system32\autochk.exe
2010-03-22 09:43:59 ----A---- C:\Windows\system32\authz.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\authui.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\audiosrv.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\AudioSes.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\audiodg.exe
2010-03-22 09:43:57 ----A---- C:\Windows\system32\bthci.dll
2010-03-22 09:43:57 ----A---- C:\Windows\system32\browseui.dll
2010-03-22 09:43:57 ----A---- C:\Windows\system32\brcplsiw.dll
2010-03-22 09:43:57 ----A---- C:\Windows\system32\brcpl.dll
2010-03-22 09:43:57 ----A---- C:\Windows\system32\basecsp.dll
2010-03-22 09:43:57 ----A---- C:\Windows\system32\azroles.dll
2010-03-22 09:43:56 ----A---- C:\Windows\system32\blackbox.dll
2010-03-22 09:43:56 ----A---- C:\Windows\system32\bitsigd.dll
2010-03-22 09:43:56 ----A---- C:\Windows\system32\BFE.DLL
2010-03-22 09:43:56 ----A---- C:\Windows\system32\bcrypt.dll
2010-03-22 09:43:56 ----A---- C:\Windows\system32\accessibilitycpl.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\appmgmts.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\Apphlpdm.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\apphelp.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\apds.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\adsmsext.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\adsldpc.dll
2010-03-22 09:43:54 ----A---- C:\Windows\system32\conime.exe
2010-03-22 09:43:54 ----A---- C:\Windows\system32\comuid.dll
2010-03-22 09:43:54 ----A---- C:\Windows\system32\comsvcs.dll
2010-03-22 09:43:54 ----A---- C:\Windows\system32\advapi32.dll
2010-03-22 09:43:54 ----A---- C:\Windows\system32\adtschema.dll
2010-03-22 09:43:53 ----A---- C:\Windows\system32\crypt32.dll
2010-03-22 09:43:53 ----A---- C:\Windows\system32\credui.dll
2010-03-22 09:43:53 ----A---- C:\Windows\system32\connect.dll
2010-03-22 09:43:52 ----A---- C:\Windows\system32\comdlg32.dll
2010-03-22 09:43:52 ----A---- C:\Windows\system32\cmmon32.exe
2010-03-22 09:43:52 ----A---- C:\Windows\system32\cmdial32.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2010-03-22 09:43:51 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\DevicePairing.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\DeviceEject.exe
2010-03-22 09:43:51 ----A---- C:\Windows\system32\dbgeng.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\davclnt.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\dataclen.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\d3d9.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\cscobj.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\CscMig.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\cscdll.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\cscapi.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\csrstub.exe
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cscui.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cscsvc.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cscript.exe
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cryptui.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cryptsvc.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\certmgr.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\CertEnrollUI.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\CertEnroll.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\certcli.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cdd.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cbsra.exe
2010-03-22 09:43:50 ----A---- C:\Windows\system32\bthudtask.exe
2010-03-22 09:43:50 ----A---- C:\Windows\system32\bthserv.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msihnd.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msiexec.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msftedit.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msfeeds.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msexcl40.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msexch40.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msdtctm.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\cipher.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\ci.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\chtbrkr.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\chsbrkr.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\chgusr.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\chgport.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\chglogon.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\change.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\certutil.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\certreq.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\certprop.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msi.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\mshtmled.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msdtcprx.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msdrm.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msctfui.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msctfp.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msctf.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\msimsg.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\MPSSVC.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\mprapi.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\mpr.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\modemui.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\MMDevAPI.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\NetProjW.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\netplwiz.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\netlogon.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\netcenter.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\netapi32.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\ncryptui.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\ncrypt.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mtxclu.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mscories.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mscorier.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mscoree.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mscms.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mscandui.dll
2010-03-22 09:43:44 ----A---- C:\Windows\system32\NcdProp.dll
2010-03-22 09:43:44 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2010-03-22 09:43:43 ----A---- C:\Windows\system32\newdev.exe
2010-03-22 09:43:43 ----A---- C:\Windows\system32\newdev.dll
2010-03-22 09:43:43 ----A---- C:\Windows\system32\networkexplorer.dll
2010-03-22 09:43:43 ----A---- C:\Windows\system32\netshell.dll
2010-03-22 09:43:42 ----A---- C:\Windows\system32\networkmap.dll
2010-03-22 09:43:42 ----A---- C:\Windows\system32\networkitemfactory.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msscntrs.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msscb.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msrepl40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msrd3x40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msrd2x40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msrating.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\mspbde40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msnetobj.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msltus40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msjtes40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msjter40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msjint40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msjetoledb40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msinfo32.exe
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msimtf.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msxbde40.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\mswstr10.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\mswsock.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\mswdat10.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\MSVidCtl.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msvcrt.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msvcp60.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msutb.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\mssphtb.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\mssph.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msjet40.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msisip.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mstsc.exe
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mstlsapi.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mstime.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mstext40.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mssvp.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\msstrc.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mssrch.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mssprxy.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mssitlb.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\msshsq.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\msshooks.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\msscp.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\inetcomm.dll
2010-03-22 09:43:38 ----A---- C:\Windows\system32\InkEd.dll
2010-03-22 09:43:38 ----A---- C:\Windows\system32\infocardapi.dll
2010-03-22 09:43:38 ----A---- C:\Windows\system32\inetppui.dll
2010-03-22 09:43:38 ----A---- C:\Windows\system32\inetpp.dll
2010-03-22 09:43:37 ----A---- C:\Windows\system32\imm32.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\iscsilog.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\ipsmsnap.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\IPSECSVC.DLL
2010-03-22 09:43:36 ----A---- C:\Windows\system32\ipsecsnp.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\iphlpsvc.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2010-03-22 09:43:36 ----A---- C:\Windows\system32\ipconfig.exe
2010-03-22 09:43:36 ----A---- C:\Windows\system32\input.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\iertutil.dll
2010-03-22 09:43:35 ----A---- C:\Windows\system32\ifmon.dll
2010-03-22 09:43:35 ----A---- C:\Windows\system32\icardres.dll
2010-03-22 09:43:35 ----A---- C:\Windows\system32\icardagt.exe
2010-03-22 09:43:35 ----A---- C:\Windows\system32\iassvcs.dll
2010-03-22 09:43:35 ----A---- C:\Windows\system32\iassdo.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\IMJP10K.DLL
2010-03-22 09:43:34 ----A---- C:\Windows\system32\imapi2.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\imapi.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\iedkcs32.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\ieaksie.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\iassam.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\iasrecst.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\iasrad.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\iaspolcy.dll
2010-03-22 09:43:33 ----A---- C:\Windows\system32\mfplat.dll
2010-03-22 09:43:33 ----A---- C:\Windows\system32\mfc42.dll
2010-03-22 09:43:33 ----A---- C:\Windows\system32\imapi2fs.dll
2010-03-22 09:43:33 ----A---- C:\Windows\system32\IKEEXT.DLL
2010-03-22 09:43:32 ----A---- C:\Windows\system32\milcore.dll
2010-03-22 09:43:32 ----A---- C:\Windows\system32\mfc42u.dll
2010-03-22 09:43:31 ----A---- C:\Windows\system32\mmcndmgr.dll
2010-03-22 09:43:31 ----A---- C:\Windows\system32\mmcico.dll
2010-03-22 09:43:31 ----A---- C:\Windows\system32\mmci.dll
2010-03-22 09:43:31 ----A---- C:\Windows\system32\mimefilt.dll
2010-03-22 09:43:31 ----A---- C:\Windows\system32\midimap.dll
2010-03-22 09:43:30 ----A---- C:\Windows\system32\mmc.exe
2010-03-22 09:43:30 ----A---- C:\Windows\system32\korwbrkr.dll
2010-03-22 09:43:29 ----A---- C:\Windows\system32\l2nacp.dll
2010-03-22 09:43:29 ----A---- C:\Windows\system32\kernel32.dll
2010-03-22 09:43:29 ----A---- C:\Windows\system32\kdusb.dll
2010-03-22 09:43:29 ----A---- C:\Windows\system32\kdcom.dll
2010-03-22 09:43:29 ----A---- C:\Windows\system32\kd1394.dll
2010-03-22 09:43:28 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2010-03-22 09:43:28 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2010-03-22 09:43:28 ----A---- C:\Windows\system32\mblctr.exe
2010-03-22 09:43:28 ----A---- C:\Windows\system32\logman.exe
2010-03-22 09:43:28 ----A---- C:\Windows\system32\logagent.exe
2010-03-22 09:43:27 ----A---- C:\Windows\system32\wercon.exe
2010-03-22 09:43:27 ----A---- C:\Windows\system32\wer.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\WebClnt.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\webcheck.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\wdscore.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\wdc.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\shsetup.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\Magnify.exe
2010-03-22 09:43:27 ----A---- C:\Windows\system32\logoff.exe
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WindowsCodecs.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\win32spl.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\whealogr.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WFS.exe
2010-03-22 09:43:26 ----A---- C:\Windows\system32\wevtutil.exe
2010-03-22 09:43:26 ----A---- C:\Windows\system32\wevtsvc.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\wevtapi.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\wersvc.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WerFaultSecure.exe
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WerFault.exe
2010-03-22 09:43:25 ----A---- C:\Windows\system32\wiaservc.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\wiaaut.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\version.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\vdsutil.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\vdsdyn.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\vds.exe
2010-03-22 09:43:25 ----A---- C:\Windows\system32\vdmdbg.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\vbscript.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\uxsms.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\Utilman.exe
2010-03-22 09:43:25 ----A---- C:\Windows\system32\usp10.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\userenv.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\usercpl.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\user32.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wscisvif.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\WscEapPr.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wscapi.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wcnwiz2.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wcnwiz.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\WcnNetsh.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wcncsvc.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wbengine.exe
2010-03-22 09:43:24 ----A---- C:\Windows\system32\w32time.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\VSSVC.exe
2010-03-22 09:43:24 ----A---- C:\Windows\system32\vssapi.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\WSDMon.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\wsdchngr.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\wscsvc.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\wscript.exe
2010-03-22 09:43:23 ----A---- C:\Windows\system32\wscntfy.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\wow32.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\WMVXENCD.DLL
2010-03-22 09:43:23 ----A---- C:\Windows\system32\WMVSDECD.DLL
2010-03-22 09:43:23 ----A---- C:\Windows\system32\WMVENCOD.DLL
2010-03-22 09:43:22 ----A---- C:\Windows\system32\xmlfilter.dll
2010-03-22 09:43:22 ----A---- C:\Windows\system32\wusa.exe
2010-03-22 09:43:21 ----A---- C:\Windows\system32\wshext.dll
2010-03-22 09:43:21 ----A---- C:\Windows\system32\wshbth.dll
2010-03-22 09:43:21 ----A---- C:\Windows\system32\wsepno.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wsnmp32.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\WsmSvc.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wlgpclnt.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\Wldap32.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wlanui.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wlanpref.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wlangpui.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wisptis.exe
2010-03-22 09:43:20 ----A---- C:\Windows\system32\winrnr.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\winresume.exe
2010-03-22 09:43:19 ----A---- C:\Windows\system32\winsrv.dll
2010-03-22 09:43:19 ----A---- C:\Windows\system32\WinSCard.dll
2010-03-22 09:43:19 ----A---- C:\Windows\system32\WinSAT.exe
2010-03-22 09:43:19 ----A---- C:\Windows\system32\winmm.dll
2010-03-22 09:43:19 ----A---- C:\Windows\system32\winlogon.exe
2010-03-22 09:43:19 ----A---- C:\Windows\system32\winload.exe
2010-03-22 09:43:18 ----A---- C:\Windows\system32\wmpmde.dll
2010-03-22 09:43:18 ----A---- C:\Windows\system32\WMPhoto.dll
2010-03-22 09:43:18 ----A---- C:\Windows\system32\wmpeffects.dll
2010-03-22 09:43:18 ----A---- C:\Windows\system32\WMNetMgr.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\wmicmiplugin.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\wmdrmsdk.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\sud.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\Storprop.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\stobject.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\srcore.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\srchadmin.dll
2010-03-22 09:43:15 ----A---- C:\Windows\system32\sysmain.dll
2010-03-22 09:43:15 ----A---- C:\Windows\system32\sysclass.dll
2010-03-22 09:43:15 ----A---- C:\Windows\system32\swprv.dll
2010-03-22 09:43:15 ----A---- C:\Windows\system32\srvsvc.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\SyncCenter.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\smss.exe
2010-03-22 09:43:14 ----A---- C:\Windows\system32\SmiEngine.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\SMBHelperClass.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\slwmi.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\slcc.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\spp.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\spoolsv.exe
2010-03-22 09:43:13 ----A---- C:\Windows\system32\spoolss.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\spinstall.exe
2010-03-22 09:43:13 ----A---- C:\Windows\system32\spcmsg.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\slwga.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLUINotify.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLUI.exe
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLsvc.exe
2010-03-22 09:43:13 ----A---- C:\Windows\system32\slmgr.vbs
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLLUA.exe
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLCommDlg.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\slcinst.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLCExt.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLC.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\shwebsvc.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\shsvcs.dll
2010-03-22 09:43:10 ----A---- C:\Windows\system32\sperror.dll
2010-03-22 09:43:09 ----A---- C:\Windows\system32\TsWpfWrp.exe
2010-03-22 09:43:09 ----A---- C:\Windows\system32\TSTheme.exe
2010-03-22 09:43:09 ----A---- C:\Windows\system32\sqlsrv32.dll
2010-03-22 09:43:09 ----A---- C:\Windows\system32\spwizui.dll
2010-03-22 09:43:09 ----A---- C:\Windows\system32\spwinsat.dll
2010-03-22 09:43:09 ----A---- C:\Windows\system32\spreview.exe
2010-03-22 09:43:09 ----A---- C:\Windows\system32\softkbd.dll
2010-03-22 09:43:09 ----A---- C:\Windows\system32\SnippingTool.exe
2010-03-22 09:43:09 ----A---- C:\Windows\system32\SndVol.exe
2010-03-22 09:43:08 ----A---- C:\Windows\system32\zipfldr.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\untfs.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\umrdp.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\umpnpmgr.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\ulib.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\uDWM.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\tskill.exe
2010-03-22 09:43:08 ----A---- C:\Windows\system32\tsdiscon.exe
2010-03-22 09:43:08 ----A---- C:\Windows\system32\tscupgrd.exe
2010-03-22 09:43:08 ----A---- C:\Windows\system32\systemcpl.dll
2010-03-22 09:43:05 ----A---- C:\Windows\system32\tscon.exe
2010-03-22 09:43:05 ----A---- C:\Windows\system32\tscfgwmi.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\tquery.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\themeui.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\thawbrkr.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\termsrv.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\tcpmon.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\tcpipcfg.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\taskeng.exe
2010-03-22 09:43:04 ----A---- C:\Windows\system32\taskcomp.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\tapisrv.dll
2010-03-22 09:43:03 ----A---- C:\Windows\system32\themecpl.dll
2010-03-22 09:41:50 ----D---- C:\Windows\system32\EventProviders
2010-03-19 09:09:48 ----D---- C:\Users\David\AppData\Roaming\Opera
2010-03-19 09:08:53 ----D---- C:\Program Files\Opera
2010-03-18 15:25:54 ----D---- C:\Windows\temp
2010-03-18 15:15:08 ----D---- C:\ComboFix
2010-03-18 15:08:25 ----D---- C:\Qoobox
2010-03-18 13:33:52 ----D---- C:\Users\David\AppData\Roaming\TuneUp Software
2010-03-18 13:33:15 ----D---- C:\Program Files\TuneUp Utilities 2010
2010-03-18 13:32:59 ----D---- C:\ProgramData\TuneUp Software
2010-03-18 13:26:11 ----D---- C:\Program Files\Mozilla Firefox(3)
2010-03-18 12:58:16 ----D---- C:\Program Files\JDownloader
2010-03-18 08:17:42 ----D---- C:\Users\David\AppData\Roaming\WinRAR
2010-03-17 10:22:38 ----D---- C:\Program Files\Mozilla Firefox
2010-03-17 08:56:54 ----D---- C:\Users\David\AppData\Roaming\Malwarebytes
2010-03-17 08:56:49 ----D---- C:\ProgramData\Malwarebytes
2010-03-17 08:56:49 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-03-17 08:42:14 ----A---- C:\Windows\ntbtlog.txt
2010-03-16 15:22:44 ----D---- C:\754ebd2f743d5bd8fddb65973a0b
2010-03-12 09:51:29 ----A---- C:\Windows\system32\uxtuneup.dll
2010-03-12 09:51:29 ----A---- C:\Windows\system32\authuitu.dll
2010-03-12 09:50:39 ----SHD---- C:\Config.Msi
2010-03-12 09:47:45 ----A---- C:\Windows\system32\TURegOpt.exe
2010-03-12 09:45:56 ----SHD---- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2010-03-11 03:01:11 ----A---- C:\Windows\system32\nshhttp.dll
2010-03-11 03:01:09 ----A---- C:\Windows\system32\httpapi.dll
2010-03-08 13:24:41 ----A---- C:\Windows\system32\SpoonUninstall.exe
2010-03-08 13:17:16 ----D---- C:\Users\David\AppData\Roaming\Winamp
2010-03-08 13:17:16 ----D---- C:\Program Files\Winamp
2010-03-05 10:55:25 ----D---- C:\Users\David\AppData\Roaming\dvdcss

======List of files/folders modified in the last 1 months======

2010-03-25 13:32:39 ----D---- C:\Windows\prefetch
2010-03-25 12:29:16 ----SHD---- C:\System Volume Information
2010-03-25 11:45:53 ----D---- C:\Windows\System32
2010-03-25 11:45:53 ----D---- C:\Windows\inf
2010-03-25 11:45:53 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-03-25 11:41:34 ----D---- C:\ProgramData\Kaspersky Lab
2010-03-24 11:49:36 ----SD---- C:\Windows\Downloaded Program Files
2010-03-24 11:49:34 ----D---- C:\Windows
2010-03-24 11:42:50 ----D---- C:\Windows\system32\catroot2
2010-03-24 09:48:16 ----RD---- C:\Program Files
2010-03-23 14:02:42 ----D---- C:\Windows\Minidump
2010-03-23 13:55:19 ----D---- C:\Windows\system32\drivers
2010-03-23 13:53:47 ----D---- C:\Program Files\Common Files
2010-03-23 12:02:03 ----SHD---- C:\$Recycle.Bin
2010-03-23 03:27:24 ----D---- C:\Windows\Microsoft.NET
2010-03-23 03:27:15 ----RSD---- C:\Windows\assembly
2010-03-23 03:01:40 ----D---- C:\Windows\winsxs
2010-03-23 03:01:36 ----D---- C:\Windows\system32\catroot
2010-03-22 10:31:49 ----D---- C:\Windows\rescache
2010-03-22 10:19:12 ----SHD---- C:\boot
2010-03-22 10:12:08 ----D---- C:\Program Files\Windows Calendar
2010-03-22 10:12:06 ----D---- C:\Windows\servicing
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Sidebar
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Photo Gallery
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Media Player
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Mail
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Journal
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Defender
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Collaboration
2010-03-22 10:12:06 ----D---- C:\Program Files\Movie Maker
2010-03-22 10:12:06 ----D---- C:\Program Files\Internet Explorer
2010-03-22 10:12:06 ----D---- C:\Program Files\Common Files\System
2010-03-22 10:12:04 ----D---- C:\Windows\system32\lv-LV
2010-03-22 10:12:04 ----D---- C:\Windows\PolicyDefinitions
2010-03-22 10:12:04 ----D---- C:\Windows\IME
2010-03-22 10:12:03 ----D---- C:\Windows\system32\XPSViewer
2010-03-22 10:12:03 ----D---- C:\Windows\system32\sk-SK
2010-03-22 10:12:03 ----D---- C:\Windows\system32\oobe
2010-03-22 10:12:03 ----D---- C:\Windows\system32\migration
2010-03-22 10:12:03 ----D---- C:\Windows\system32\ko-KR
2010-03-22 10:12:03 ----D---- C:\Windows\system32\it-IT
2010-03-22 10:12:03 ----D---- C:\Windows\system32\hr-HR
2010-03-22 10:12:03 ----D---- C:\Windows\system32\fr
2010-03-22 10:12:03 ----D---- C:\Windows\system32\et-EE
2010-03-22 10:12:03 ----D---- C:\Windows\system32\en-US
2010-03-22 10:12:03 ----D---- C:\Windows\system32\el-GR
2010-03-22 10:12:03 ----D---- C:\Windows\system32\de-DE
2010-03-22 10:12:03 ----D---- C:\Windows\system32\da-DK
2010-03-22 10:12:02 ----D---- C:\Windows\system32\ru-RU
2010-03-22 10:12:02 ----D---- C:\Windows\system32\fr-FR
2010-03-22 10:12:02 ----D---- C:\Windows\system32\AdvancedInstallers
2010-03-22 10:12:01 ----D---- C:\Windows\system32\zh-TW
2010-03-22 10:12:01 ----D---- C:\Windows\system32\zh-CN
2010-03-22 10:12:01 ----D---- C:\Windows\system32\uk-UA
2010-03-22 10:12:01 ----D---- C:\Windows\system32\tr-TR
2010-03-22 10:12:01 ----D---- C:\Windows\system32\th-TH
2010-03-22 10:12:01 ----D---- C:\Windows\system32\sv-SE
2010-03-22 10:12:01 ----D---- C:\Windows\system32\sr-Latn-CS
2010-03-22 10:12:01 ----D---- C:\Windows\system32\SLUI
2010-03-22 10:12:01 ----D---- C:\Windows\system32\sl-SI
2010-03-22 10:12:01 ----D---- C:\Windows\system32\setup
2010-03-22 10:12:01 ----D---- C:\Windows\system32\ro-RO
2010-03-22 10:12:01 ----D---- C:\Windows\system32\pt-PT
2010-03-22 10:12:01 ----D---- C:\Windows\system32\pl-PL
2010-03-22 10:12:01 ----D---- C:\Windows\system32\manifeststore
2010-03-22 10:12:01 ----D---- C:\Windows\system32\ja-JP
2010-03-22 10:12:01 ----D---- C:\Windows\system32\hu-HU
2010-03-22 10:12:01 ----D---- C:\Windows\system32\he-IL
2010-03-22 10:12:01 ----D---- C:\Windows\system32\fi-FI
2010-03-22 10:12:01 ----D---- C:\Windows\system32\es-ES
2010-03-22 10:12:01 ----D---- C:\Windows\system32\cs-CZ
2010-03-22 10:12:01 ----D---- C:\Windows\system32\bg-BG
2010-03-22 10:12:00 ----D---- C:\Windows\system32\wbem
2010-03-22 10:12:00 ----D---- C:\Windows\system32\pt-BR
2010-03-22 10:12:00 ----D---- C:\Windows\system32\nl-NL
2010-03-22 10:12:00 ----D---- C:\Windows\system32\nb-NO
2010-03-22 10:12:00 ----D---- C:\Windows\system32\migwiz
2010-03-22 10:12:00 ----D---- C:\Windows\system32\lt-LT
2010-03-22 10:12:00 ----D---- C:\Windows\system32\ar-SA
2010-03-22 10:11:53 ----RSD---- C:\Windows\Fonts
2010-03-22 10:11:53 ----D---- C:\Windows\AppPatch
2010-03-22 10:11:49 ----D---- C:\Windows\system32\Boot
2010-03-22 10:09:40 ----D---- C:\Windows\system32\RTCOM
2010-03-19 15:54:17 ----D---- C:\Windows\system32\Tasks
2010-03-19 08:49:15 ----D---- C:\Users\David\AppData\Roaming\vlc
2010-03-19 08:07:05 ----D---- C:\Program Files\OpenOffice.org 3
2010-03-18 16:31:38 ----D---- C:\Windows\system32\Msdtc
2010-03-18 16:27:34 ----D---- C:\Windows\system32\config
2010-03-18 16:27:09 ----D---- C:\Windows\system32\spool
2010-03-18 16:27:09 ----D---- C:\Windows\system32\CodeIntegrity
2010-03-18 16:27:08 ----D---- C:\Users\David\AppData\Roaming\Mozilla
2010-03-18 16:26:59 ----D---- C:\Windows\registration
2010-03-18 15:06:16 ----D---- C:\Windows\Debug
2010-03-18 14:44:43 ----SD---- C:\ProgramData\Microsoft
2010-03-18 11:25:54 ----HD---- C:\Windows\system32\GroupPolicy
2010-03-17 08:34:55 ----D---- C:\Windows\system32\sysprep
2010-03-17 08:34:55 ----D---- C:\Windows\system32\ras
2010-03-17 08:34:55 ----D---- C:\Windows\system
2010-03-17 08:34:49 ----RSD---- C:\Windows\Media
2010-03-17 08:34:49 ----RD---- C:\Windows\Offline Web Pages
2010-03-17 08:34:49 ----D---- C:\Windows\system32\ias
2010-03-17 08:34:49 ----D---- C:\Windows\ShellNew
2010-03-17 08:34:49 ----D---- C:\Program Files\Common Files\Services
2010-03-16 15:15:08 ----HD---- C:\Program Files\InstallShield Installation Information
2010-03-16 15:13:37 ----D---- C:\Windows\system32\Macromed
2010-03-15 09:10:58 ----D---- C:\Program Files\Google
2010-03-12 10:38:05 ----D---- C:\Windows\Tasks
2010-03-12 09:51:41 ----SHD---- C:\Windows\Installer
2010-03-12 09:45:56 ----HD---- C:\ProgramData
2010-03-11 03:03:35 ----D---- C:\ProgramData\Microsoft Help
2010-03-08 13:17:23 ----D---- C:\Program Files\Common Files\PX Storage Engine
2010-03-05 11:11:20 ----D---- C:\Partage Administratif
2010-03-02 06:30:12 ----A---- C:\Windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys [2009-04-10 351744]
R1 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2008-09-25 112144]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2009-03-31 148496]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2007-04-04 20760]
R1 NHostNT1;NetOp Driver 1 ver. 9.21 (2009014); C:\Windows\System32\Drivers\NHOSTNT1.SYS [2009-01-14 102544]
R3 dwVSCD;NetOp Virtual Smart Card Driver; C:\Windows\system32\DRIVERS\dwvscd.sys [2009-01-14 16696]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-09-13 1925632]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-10-16 1971928]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2010-01-07 19160]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-10-03 99840]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2009-10-14 10064]
R3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 PCAMp50;PCAMp50 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCAMp50.sys [2009-08-24 28224]
S3 PCASp50;PCASp50 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCASp50.sys [2009-08-24 27072]
S3 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys []
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 RxFilter;RxFilter; C:\Windows\system32\DRIVERS\RxFilter.sys [2008-04-14 57328]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-21 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AVP;Kaspersky Anti-Virus 6.0; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe [2008-09-25 231952]
R2 BcmSqlStartupSvc;Service de démarrage SQL Server pour le Gestionnaire de contacts professionnels; C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [2008-01-16 30312]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [2009-08-24 69632]
R2 klnagent;Kaspersky Network Agent; C:\Program Files\Kaspersky Lab\NetworkAgent\klnagent.exe [2008-03-17 94608]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-01-07 236368]
R2 NetOp Host for NT Service;NetOp Helper ver. 9.21 (2009014); C:\Program Files\Danware Data\NetOp Remote Control\Host\NHOSTSVC.EXE [2009-01-14 1709992]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\Cyberlink\Shared Files\RichVideo.exe [2007-04-18 171040]
R2 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;Enregistreur VSS SQL Server; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-02-25 1047880]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2008-01-21 523776]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]
S3 TuneUp.Defrag;@C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-03-12 435016]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2009-04-10 918528]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]

-----------------EOF-----------------

Toujours pareil, impossible de me connecter sur les sites HTTPS.

Merci

a +
25 Mars 2010 20:47:19

Bonsoir dnapoleon,

il manque le rapport info.txt de RSIT.

A+
26 Mars 2010 10:38:56

Bonjour.

Voici le rapport :

Logfile of random's system information tool 1.06 (written by random/random)
Run by David at 2010-03-26 10:37:06
Microsoft® Windows Vista™ Professionnel Service Pack 2
System drive C: has 27 GB (39%) free of 68 GB
Total RAM: 3060 MB (46% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:37:11, on 26/03/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v7.00 (7.00.6002.18005)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe
C:\Program Files\Opera\Opera.exe
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\David\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2KY2HB7S\RSIT[1].exe
C:\Program Files\trend micro\David.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.nec-computers.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\Connexion Internet Orange\SearchURLHook\SearchPageURL.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe"
O4 - HKLM\..\RunOnce: [BrowserBallot] browserchoice.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: Ajouter à Kaspersky Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\SCIEPlgn.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sourc...
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie....
O17 - HKLM\System\CCS\Services\Tcpip\..\{F7B8708F-5C09-468E-8DEA-B34D53A94C08}: NameServer = 10.202.8.210,10.202.1.210
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Kaspersky Network Agent (klnagent) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\NetworkAgent\klnagent.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NetOp Helper ver. 9.21 (2009014) (NetOp Host for NT Service) - Danware Data A/S - C:\Program Files\Danware Data\NetOp Remote Control\Host\NHOSTSVC.EXE
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared Files\RichVideo.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 5621 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Malwarebytes' Scheduled Scan for David.job
C:\Windows\tasks\Malwarebytes' Scheduled Update for David.job
C:\Windows\tasks\User_Feed_Synchronization-{5FB65AD1-4BEF-451F-886A-D8098A6F673C}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2009-05-24 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-05-24 35840]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe [2008-09-25 231952]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"BrowserBallot"=C:\Windows\system32\browserchoice.exe [2010-02-12 293376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeUpdater]
C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe [2008-09-26 2356088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVP]
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe [2008-09-25 231952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\Windows\system32\hkcmd.exe [2007-09-19 154136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\Windows\system32\igfxtray.exe [2007-09-19 141848]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
C:\Program Files\Cyberlink\PowerDVD\Language\Language.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware]
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2010-01-07 429392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsgCenterExe]
C:\Program Files\Common Files\Real\Update_OB\RealOneMessageCenter.exe -osboot []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OPSE reminder]
C:\Program Files\ScanSoft\OmniPageSE2.0\EregFre\Ereg.exe [2003-07-07 729088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE2]
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe [2003-05-08 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ORAHSSSessionManager]
C:\Program Files\Orange\Connexion Internet Orange\SessionManager\SessionManager.exe [2009-08-24 135920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
C:\Windows\system32\igfxpers.exe [2007-09-19 129560]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
C:\Program Files\Cyberlink\PowerDVD\PDVDServ.exe [2007-01-08 68640]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Windows\RtHDVCpl.exe [2007-10-11 4702208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-10 1233920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre6\bin\jusched.exe [2009-05-24 148888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2010-01-13 37888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2007-09-13 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\Windows\system32\klogon.dll [2007-11-19 219664]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=255
"NoDriveTypeAutoRun"=255
"HonorAutoRunSetting"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Orange\Connexion Internet Orange\Connectivity\ConnectivityManager.exe"="C:\Program Files\Orange\Connexion Internet Orange\Connectivity\ConnectivityManager.exe:*:enabled:CSS"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2010-03-26 03:00:27 ----A---- C:\Windows\system32\browserchoice.exe
2010-03-25 13:52:31 ----D---- C:\Program Files\Panda Security
2010-03-24 11:49:34 ----D---- C:\Windows\BDOSCAN8
2010-03-24 09:48:16 ----D---- C:\Program Files\PhotoScape
2010-03-23 15:29:00 ----A---- C:\UsbFix.txt
2010-03-23 13:54:45 ----A---- C:\Windows\system32\Autodial2000.dll
2010-03-23 13:54:31 ----D---- C:\Program Files\Orange
2010-03-23 13:53:47 ----D---- C:\Program Files\Common Files\France Telecom
2010-03-23 12:03:09 ----RASHD---- C:\autorun.inf
2010-03-23 11:45:58 ----D---- C:\UsbFix
2010-03-23 11:14:04 ----D---- C:\rsit
2010-03-23 11:14:04 ----D---- C:\Program Files\trend micro
2010-03-22 10:11:49 ----D---- C:\Windows\system32\vi-VN
2010-03-22 10:11:49 ----D---- C:\Windows\system32\eu-ES
2010-03-22 10:11:49 ----D---- C:\Windows\system32\ca-ES
2010-03-22 09:46:02 ----A---- C:\Windows\system32\scavenge.dll
2010-03-22 09:45:52 ----A---- C:\Windows\system32\compcln.exe
2010-03-22 09:44:58 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-03-22 09:44:58 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-03-22 09:44:58 ----A---- C:\Windows\system32\secproc_isv.dll
2010-03-22 09:44:58 ----A---- C:\Windows\system32\secproc.dll
2010-03-22 09:44:57 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2010-03-22 09:44:57 ----A---- C:\Windows\system32\SearchIndexer.exe
2010-03-22 09:44:57 ----A---- C:\Windows\system32\SearchFilterHost.exe
2010-03-22 09:44:57 ----A---- C:\Windows\system32\sdohlp.dll
2010-03-22 09:44:57 ----A---- C:\Windows\system32\sdclt.exe
2010-03-22 09:44:56 ----A---- C:\Windows\system32\rsaenh.dll
2010-03-22 09:44:55 ----A---- C:\Windows\system32\samlib.dll
2010-03-22 09:44:55 ----A---- C:\Windows\system32\rwinsta.exe
2010-03-22 09:44:55 ----A---- C:\Windows\system32\rtutils.dll
2010-03-22 09:44:55 ----A---- C:\Windows\system32\rtffilt.dll
2010-03-22 09:44:55 ----A---- C:\Windows\system32\rpcss.dll
2010-03-22 09:44:55 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-03-22 09:44:55 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-03-22 09:44:55 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-03-22 09:44:55 ----A---- C:\Windows\system32\RMActivate.exe
2010-03-22 09:44:55 ----A---- C:\Windows\system32\riched20.dll
2010-03-22 09:44:54 ----A---- C:\Windows\system32\scrrun.dll
2010-03-22 09:44:54 ----A---- C:\Windows\system32\SCardSvr.dll
2010-03-22 09:44:54 ----A---- C:\Windows\system32\scansetting.dll
2010-03-22 09:44:54 ----A---- C:\Windows\system32\samsrv.dll
2010-03-22 09:44:54 ----A---- C:\Windows\system32\rpchttp.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\scrptadm.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\scrobj.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\scksp.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\schedsvc.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\scesrv.dll
2010-03-22 09:44:53 ----A---- C:\Windows\system32\scecli.dll
2010-03-22 09:44:50 ----A---- C:\Windows\system32\pdh.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\PNPXAssoc.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\PnPutil.exe
2010-03-22 09:44:49 ----A---- C:\Windows\system32\PnPUnattend.exe
2010-03-22 09:44:49 ----A---- C:\Windows\system32\pnpui.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\pnpsetup.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\pnidui.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\perfdisk.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\pcaui.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\p2psvc.dll
2010-03-22 09:44:49 ----A---- C:\Windows\system32\P2PGraph.dll
2010-03-22 09:44:48 ----A---- C:\Windows\system32\powercpl.dll
2010-03-22 09:44:48 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2010-03-22 09:44:48 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2010-03-22 09:44:48 ----A---- C:\Windows\system32\photowiz.dll
2010-03-22 09:44:47 ----A---- C:\Windows\system32\pmcsnap.dll
2010-03-22 09:44:47 ----A---- C:\Windows\system32\PkgMgr.exe
2010-03-22 09:44:47 ----A---- C:\Windows\system32\pidgenx.dll
2010-03-22 09:44:47 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2010-03-22 09:44:47 ----A---- C:\Windows\system32\ntdll.dll
2010-03-22 09:44:47 ----A---- C:\Windows\system32\nslookup.exe
2010-03-22 09:44:45 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2010-03-22 09:44:43 ----A---- C:\Windows\system32\offfilt.dll
2010-03-22 09:44:43 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2010-03-22 09:44:43 ----A---- C:\Windows\system32\nlhtml.dll
2010-03-22 09:44:42 ----A---- C:\Windows\system32\oleaut32.dll
2010-03-22 09:44:41 ----A---- C:\Windows\system32\ole32.dll
2010-03-22 09:44:41 ----A---- C:\Windows\system32\odbccp32.dll
2010-03-22 09:44:41 ----A---- C:\Windows\system32\odbcconf.dll
2010-03-22 09:44:41 ----A---- C:\Windows\system32\odbc32.dll
2010-03-22 09:44:40 ----A---- C:\Windows\system32\osk.exe
2010-03-22 09:44:40 ----A---- C:\Windows\system32\oobefldr.dll
2010-03-22 09:44:40 ----A---- C:\Windows\system32\onex.dll
2010-03-22 09:44:40 ----A---- C:\Windows\system32\olepro32.dll
2010-03-22 09:44:40 ----A---- C:\Windows\system32\oleprn.dll
2010-03-22 09:44:39 ----A---- C:\Windows\system32\ocsetup.exe
2010-03-22 09:44:39 ----A---- C:\Windows\system32\occache.dll
2010-03-22 09:44:39 ----A---- C:\Windows\system32\ntprint.dll
2010-03-22 09:44:39 ----A---- C:\Windows\system32\ntmarta.dll
2010-03-22 09:44:38 ----A---- C:\Windows\system32\rasmontr.dll
2010-03-22 09:44:38 ----A---- C:\Windows\system32\rasmans.dll
2010-03-22 09:44:38 ----A---- C:\Windows\system32\rasgcw.dll
2010-03-22 09:44:38 ----A---- C:\Windows\system32\rasdlg.dll
2010-03-22 09:44:38 ----A---- C:\Windows\system32\rasdial.exe
2010-03-22 09:44:37 ----A---- C:\Windows\system32\rastapi.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\rasppp.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\rasplap.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\rasdiag.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\raschap.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\rasapi32.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\query.exe
2010-03-22 09:44:37 ----A---- C:\Windows\system32\Query.dll
2010-03-22 09:44:37 ----A---- C:\Windows\system32\qprocess.exe
2010-03-22 09:44:37 ----A---- C:\Windows\system32\qedit.dll
2010-03-22 09:44:36 ----A---- C:\Windows\system32\reset.exe
2010-03-22 09:44:36 ----A---- C:\Windows\system32\RelMon.dll
2010-03-22 09:44:36 ----A---- C:\Windows\system32\rekeywiz.exe
2010-03-22 09:44:36 ----A---- C:\Windows\system32\regsvc.dll
2010-03-22 09:44:36 ----A---- C:\Windows\system32\RacEngn.dll
2010-03-22 09:44:36 ----A---- C:\Windows\system32\qmgr.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\regapi.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\reg.exe
2010-03-22 09:44:35 ----A---- C:\Windows\system32\rdpwsx.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\rdpendp.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\rdpencom.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\rdpclip.exe
2010-03-22 09:44:35 ----A---- C:\Windows\system32\PresentationSettings.exe
2010-03-22 09:44:35 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2010-03-22 09:44:35 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-03-22 09:44:34 ----A---- C:\Windows\system32\prnntfy.dll
2010-03-22 09:44:34 ----A---- C:\Windows\system32\printui.dll
2010-03-22 09:44:34 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2010-03-22 09:44:34 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2010-03-22 09:44:34 ----A---- C:\Windows\system32\PrintBrmUi.exe
2010-03-22 09:44:34 ----A---- C:\Windows\system32\PresentationHost.exe
2010-03-22 09:44:33 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2010-03-22 09:44:33 ----A---- C:\Windows\system32\powrprof.dll
2010-03-22 09:44:31 ----A---- C:\Windows\system32\qdvd.dll
2010-03-22 09:44:31 ----A---- C:\Windows\system32\qappsrv.exe
2010-03-22 09:44:31 ----A---- C:\Windows\system32\QAGENTRT.DLL
2010-03-22 09:44:31 ----A---- C:\Windows\system32\puiapi.dll
2010-03-22 09:44:30 ----A---- C:\Windows\system32\psisdecd.dll
2010-03-22 09:44:30 ----A---- C:\Windows\system32\PSHED.DLL
2010-03-22 09:44:30 ----A---- C:\Windows\system32\propsys.dll
2010-03-22 09:44:30 ----A---- C:\Windows\system32\propdefs.dll
2010-03-22 09:44:30 ----A---- C:\Windows\system32\profsvc.dll
2010-03-22 09:44:27 ----A---- C:\Windows\system32\sendmail.dll
2010-03-22 09:44:26 ----A---- C:\Windows\system32\shell32.dll
2010-03-22 09:44:26 ----A---- C:\Windows\system32\shdocvw.dll
2010-03-22 09:44:25 ----A---- C:\Windows\system32\shlwapi.dll
2010-03-22 09:44:25 ----A---- C:\Windows\system32\shadow.exe
2010-03-22 09:44:25 ----A---- C:\Windows\system32\setupapi.dll
2010-03-22 09:44:25 ----A---- C:\Windows\system32\sethc.exe
2010-03-22 09:44:25 ----A---- C:\Windows\system32\services.exe
2010-03-22 09:44:15 ----A---- C:\Windows\system32\eapphost.dll
2010-03-22 09:44:15 ----A---- C:\Windows\system32\eappgnui.dll
2010-03-22 09:44:09 ----A---- C:\Windows\system32\EhStorAPI.dll
2010-03-22 09:44:09 ----A---- C:\Windows\system32\eappcfg.dll
2010-03-22 09:44:09 ----A---- C:\Windows\system32\eapp3hst.dll
2010-03-22 09:44:08 ----A---- C:\Windows\system32\dsprop.dll
2010-03-22 09:44:08 ----A---- C:\Windows\system32\dsound.dll
2010-03-22 09:44:07 ----A---- C:\Windows\system32\ExplorerFrame.dll
2010-03-22 09:44:07 ----A---- C:\Windows\system32\evr.dll
2010-03-22 09:44:07 ----A---- C:\Windows\system32\eudcedit.exe
2010-03-22 09:44:07 ----A---- C:\Windows\system32\esent.dll
2010-03-22 09:44:07 ----A---- C:\Windows\system32\dwm.exe
2010-03-22 09:44:07 ----A---- C:\Windows\explorer.exe
2010-03-22 09:44:06 ----A---- C:\Windows\system32\f3ahvoas.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\extmgr.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\es.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\EncDec.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\emdmgmt.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\EhStorShell.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2010-03-22 09:44:06 ----A---- C:\Windows\system32\EhStorAuthn.dll
2010-03-22 09:44:05 ----A---- C:\Windows\system32\diskraid.exe
2010-03-22 09:44:05 ----A---- C:\Windows\system32\diskpart.exe
2010-03-22 09:44:05 ----A---- C:\Windows\system32\dimsroam.dll
2010-03-22 09:44:05 ----A---- C:\Windows\system32\diagperf.dll
2010-03-22 09:44:05 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2010-03-22 09:44:05 ----A---- C:\Windows\system32\dfshim.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\drvstore.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dpapimig.exe
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dot3svc.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dot3msm.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dot3cfg.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dhcpcsvc.dll
2010-03-22 09:44:04 ----A---- C:\Windows\system32\dfsr.exe
2010-03-22 09:44:04 ----A---- C:\Windows\system32\devmgr.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\hbaapi.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\gpscript.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\gpresult.exe
2010-03-22 09:44:03 ----A---- C:\Windows\system32\gpprnext.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\drvinst.exe
2010-03-22 09:44:03 ----A---- C:\Windows\system32\drmv2clt.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\drmmgrtn.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\dnsrslvr.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\dnsapi.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\dmusic.dll
2010-03-22 09:44:03 ----A---- C:\Windows\system32\dmsynth.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\iasnap.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\IasMigReader.exe
2010-03-22 09:44:02 ----A---- C:\Windows\system32\IasMigPlugin.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\iashlpr.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\iasdatastore.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\iasads.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\iasacct.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\hidserv.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\hdwwiz.exe
2010-03-22 09:44:02 ----A---- C:\Windows\system32\gpupdate.exe
2010-03-22 09:44:02 ----A---- C:\Windows\system32\gpsvc.dll
2010-03-22 09:44:02 ----A---- C:\Windows\system32\gpscript.exe
2010-03-22 09:44:02 ----A---- C:\Windows\system32\fontext.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\gpapi.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\gdi32.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\findstr.exe
2010-03-22 09:44:01 ----A---- C:\Windows\system32\feclient.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdWSD.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdWCN.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdSSDP.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdProxy.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdeploy.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdBthProxy.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fdBth.dll
2010-03-22 09:44:01 ----A---- C:\Windows\system32\fc.exe
2010-03-22 09:44:01 ----A---- C:\Windows\system32\Faultrep.dll
2010-03-22 09:44:00 ----A---- C:\Windows\system32\gpedit.dll
2010-03-22 09:44:00 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2010-03-22 09:44:00 ----A---- C:\Windows\system32\fundisc.dll
2010-03-22 09:44:00 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2010-03-22 09:44:00 ----A---- C:\Windows\system32\ftp.exe
2010-03-22 09:43:59 ----A---- C:\Windows\system32\gameux.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2010-03-22 09:43:59 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\autoplay.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\autofmt.exe
2010-03-22 09:43:59 ----A---- C:\Windows\system32\autoconv.exe
2010-03-22 09:43:59 ----A---- C:\Windows\system32\autochk.exe
2010-03-22 09:43:59 ----A---- C:\Windows\system32\authz.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\authui.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\audiosrv.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\AudioSes.dll
2010-03-22 09:43:59 ----A---- C:\Windows\system32\audiodg.exe
2010-03-22 09:43:57 ----A---- C:\Windows\system32\bthci.dll
2010-03-22 09:43:57 ----A---- C:\Windows\system32\browseui.dll
2010-03-22 09:43:57 ----A---- C:\Windows\system32\brcplsiw.dll
2010-03-22 09:43:57 ----A---- C:\Windows\system32\brcpl.dll
2010-03-22 09:43:57 ----A---- C:\Windows\system32\basecsp.dll
2010-03-22 09:43:57 ----A---- C:\Windows\system32\azroles.dll
2010-03-22 09:43:56 ----A---- C:\Windows\system32\blackbox.dll
2010-03-22 09:43:56 ----A---- C:\Windows\system32\bitsigd.dll
2010-03-22 09:43:56 ----A---- C:\Windows\system32\BFE.DLL
2010-03-22 09:43:56 ----A---- C:\Windows\system32\bcrypt.dll
2010-03-22 09:43:56 ----A---- C:\Windows\system32\accessibilitycpl.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\appmgmts.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\Apphlpdm.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\apphelp.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\apds.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\adsmsext.dll
2010-03-22 09:43:55 ----A---- C:\Windows\system32\adsldpc.dll
2010-03-22 09:43:54 ----A---- C:\Windows\system32\conime.exe
2010-03-22 09:43:54 ----A---- C:\Windows\system32\comuid.dll
2010-03-22 09:43:54 ----A---- C:\Windows\system32\comsvcs.dll
2010-03-22 09:43:54 ----A---- C:\Windows\system32\advapi32.dll
2010-03-22 09:43:54 ----A---- C:\Windows\system32\adtschema.dll
2010-03-22 09:43:53 ----A---- C:\Windows\system32\crypt32.dll
2010-03-22 09:43:53 ----A---- C:\Windows\system32\credui.dll
2010-03-22 09:43:53 ----A---- C:\Windows\system32\connect.dll
2010-03-22 09:43:52 ----A---- C:\Windows\system32\comdlg32.dll
2010-03-22 09:43:52 ----A---- C:\Windows\system32\cmmon32.exe
2010-03-22 09:43:52 ----A---- C:\Windows\system32\cmdial32.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2010-03-22 09:43:51 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\DevicePairing.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\DeviceEject.exe
2010-03-22 09:43:51 ----A---- C:\Windows\system32\dbgeng.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\davclnt.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\dataclen.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\d3d9.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\cscobj.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\CscMig.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\cscdll.dll
2010-03-22 09:43:51 ----A---- C:\Windows\system32\cscapi.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\csrstub.exe
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cscui.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cscsvc.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cscript.exe
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cryptui.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cryptsvc.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\certmgr.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\CertEnrollUI.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\CertEnroll.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\certcli.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cdd.dll
2010-03-22 09:43:50 ----A---- C:\Windows\system32\cbsra.exe
2010-03-22 09:43:50 ----A---- C:\Windows\system32\bthudtask.exe
2010-03-22 09:43:50 ----A---- C:\Windows\system32\bthserv.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msihnd.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msiexec.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msftedit.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msfeeds.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msexcl40.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msexch40.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\msdtctm.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\cipher.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\ci.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\chtbrkr.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\chsbrkr.dll
2010-03-22 09:43:49 ----A---- C:\Windows\system32\chgusr.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\chgport.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\chglogon.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\change.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\certutil.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\certreq.exe
2010-03-22 09:43:49 ----A---- C:\Windows\system32\certprop.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msi.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\mshtmled.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msdtcprx.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msdrm.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msctfui.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msctfp.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2010-03-22 09:43:48 ----A---- C:\Windows\system32\msctf.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\msimsg.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\MPSSVC.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\mprapi.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\mpr.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\modemui.dll
2010-03-22 09:43:47 ----A---- C:\Windows\system32\MMDevAPI.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\NetProjW.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\netplwiz.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\netlogon.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\netcenter.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\netapi32.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\ncryptui.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\ncrypt.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mtxclu.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mscories.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mscorier.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mscoree.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mscms.dll
2010-03-22 09:43:46 ----A---- C:\Windows\system32\mscandui.dll
2010-03-22 09:43:44 ----A---- C:\Windows\system32\NcdProp.dll
2010-03-22 09:43:44 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2010-03-22 09:43:43 ----A---- C:\Windows\system32\newdev.exe
2010-03-22 09:43:43 ----A---- C:\Windows\system32\newdev.dll
2010-03-22 09:43:43 ----A---- C:\Windows\system32\networkexplorer.dll
2010-03-22 09:43:43 ----A---- C:\Windows\system32\netshell.dll
2010-03-22 09:43:42 ----A---- C:\Windows\system32\networkmap.dll
2010-03-22 09:43:42 ----A---- C:\Windows\system32\networkitemfactory.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msscntrs.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msscb.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msrepl40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msrd3x40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msrd2x40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msrating.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\mspbde40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msnetobj.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msltus40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msjtes40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msjter40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msjint40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msjetoledb40.dll
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msinfo32.exe
2010-03-22 09:43:41 ----A---- C:\Windows\system32\msimtf.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msxbde40.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\mswstr10.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\mswsock.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\mswdat10.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\MSVidCtl.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msvcrt.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msvcp60.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msutb.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\mssphtb.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\mssph.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msjet40.dll
2010-03-22 09:43:40 ----A---- C:\Windows\system32\msisip.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mstsc.exe
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mstlsapi.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mstime.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mstext40.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mssvp.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\msstrc.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mssrch.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mssprxy.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\mssitlb.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\msshsq.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\msshooks.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\msscp.dll
2010-03-22 09:43:39 ----A---- C:\Windows\system32\inetcomm.dll
2010-03-22 09:43:38 ----A---- C:\Windows\system32\InkEd.dll
2010-03-22 09:43:38 ----A---- C:\Windows\system32\infocardapi.dll
2010-03-22 09:43:38 ----A---- C:\Windows\system32\inetppui.dll
2010-03-22 09:43:38 ----A---- C:\Windows\system32\inetpp.dll
2010-03-22 09:43:37 ----A---- C:\Windows\system32\imm32.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\iscsilog.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\ipsmsnap.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\IPSECSVC.DLL
2010-03-22 09:43:36 ----A---- C:\Windows\system32\ipsecsnp.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\iphlpsvc.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2010-03-22 09:43:36 ----A---- C:\Windows\system32\ipconfig.exe
2010-03-22 09:43:36 ----A---- C:\Windows\system32\input.dll
2010-03-22 09:43:36 ----A---- C:\Windows\system32\iertutil.dll
2010-03-22 09:43:35 ----A---- C:\Windows\system32\ifmon.dll
2010-03-22 09:43:35 ----A---- C:\Windows\system32\icardres.dll
2010-03-22 09:43:35 ----A---- C:\Windows\system32\icardagt.exe
2010-03-22 09:43:35 ----A---- C:\Windows\system32\iassvcs.dll
2010-03-22 09:43:35 ----A---- C:\Windows\system32\iassdo.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\IMJP10K.DLL
2010-03-22 09:43:34 ----A---- C:\Windows\system32\imapi2.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\imapi.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\iedkcs32.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\ieaksie.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\iassam.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\iasrecst.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\iasrad.dll
2010-03-22 09:43:34 ----A---- C:\Windows\system32\iaspolcy.dll
2010-03-22 09:43:33 ----A---- C:\Windows\system32\mfplat.dll
2010-03-22 09:43:33 ----A---- C:\Windows\system32\mfc42.dll
2010-03-22 09:43:33 ----A---- C:\Windows\system32\imapi2fs.dll
2010-03-22 09:43:33 ----A---- C:\Windows\system32\IKEEXT.DLL
2010-03-22 09:43:32 ----A---- C:\Windows\system32\milcore.dll
2010-03-22 09:43:32 ----A---- C:\Windows\system32\mfc42u.dll
2010-03-22 09:43:31 ----A---- C:\Windows\system32\mmcndmgr.dll
2010-03-22 09:43:31 ----A---- C:\Windows\system32\mmcico.dll
2010-03-22 09:43:31 ----A---- C:\Windows\system32\mmci.dll
2010-03-22 09:43:31 ----A---- C:\Windows\system32\mimefilt.dll
2010-03-22 09:43:31 ----A---- C:\Windows\system32\midimap.dll
2010-03-22 09:43:30 ----A---- C:\Windows\system32\mmc.exe
2010-03-22 09:43:30 ----A---- C:\Windows\system32\korwbrkr.dll
2010-03-22 09:43:29 ----A---- C:\Windows\system32\l2nacp.dll
2010-03-22 09:43:29 ----A---- C:\Windows\system32\kernel32.dll
2010-03-22 09:43:29 ----A---- C:\Windows\system32\kdusb.dll
2010-03-22 09:43:29 ----A---- C:\Windows\system32\kdcom.dll
2010-03-22 09:43:29 ----A---- C:\Windows\system32\kd1394.dll
2010-03-22 09:43:28 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2010-03-22 09:43:28 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2010-03-22 09:43:28 ----A---- C:\Windows\system32\mblctr.exe
2010-03-22 09:43:28 ----A---- C:\Windows\system32\logman.exe
2010-03-22 09:43:28 ----A---- C:\Windows\system32\logagent.exe
2010-03-22 09:43:27 ----A---- C:\Windows\system32\wercon.exe
2010-03-22 09:43:27 ----A---- C:\Windows\system32\wer.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\WebClnt.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\webcheck.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\wdscore.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\wdc.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\shsetup.dll
2010-03-22 09:43:27 ----A---- C:\Windows\system32\Magnify.exe
2010-03-22 09:43:27 ----A---- C:\Windows\system32\logoff.exe
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WindowsCodecs.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\win32spl.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\whealogr.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WFS.exe
2010-03-22 09:43:26 ----A---- C:\Windows\system32\wevtutil.exe
2010-03-22 09:43:26 ----A---- C:\Windows\system32\wevtsvc.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\wevtapi.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\wersvc.dll
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WerFaultSecure.exe
2010-03-22 09:43:26 ----A---- C:\Windows\system32\WerFault.exe
2010-03-22 09:43:25 ----A---- C:\Windows\system32\wiaservc.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\wiaaut.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\version.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\vdsutil.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\vdsdyn.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\vds.exe
2010-03-22 09:43:25 ----A---- C:\Windows\system32\vdmdbg.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\vbscript.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\uxsms.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\Utilman.exe
2010-03-22 09:43:25 ----A---- C:\Windows\system32\usp10.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\userenv.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\usercpl.dll
2010-03-22 09:43:25 ----A---- C:\Windows\system32\user32.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wscisvif.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\WscEapPr.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wscapi.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wcnwiz2.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wcnwiz.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\WcnNetsh.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wcncsvc.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\wbengine.exe
2010-03-22 09:43:24 ----A---- C:\Windows\system32\w32time.dll
2010-03-22 09:43:24 ----A---- C:\Windows\system32\VSSVC.exe
2010-03-22 09:43:24 ----A---- C:\Windows\system32\vssapi.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\WSDMon.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\wsdchngr.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\wscsvc.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\wscript.exe
2010-03-22 09:43:23 ----A---- C:\Windows\system32\wscntfy.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\wow32.dll
2010-03-22 09:43:23 ----A---- C:\Windows\system32\WMVXENCD.DLL
2010-03-22 09:43:23 ----A---- C:\Windows\system32\WMVSDECD.DLL
2010-03-22 09:43:23 ----A---- C:\Windows\system32\WMVENCOD.DLL
2010-03-22 09:43:22 ----A---- C:\Windows\system32\xmlfilter.dll
2010-03-22 09:43:22 ----A---- C:\Windows\system32\wusa.exe
2010-03-22 09:43:21 ----A---- C:\Windows\system32\wshext.dll
2010-03-22 09:43:21 ----A---- C:\Windows\system32\wshbth.dll
2010-03-22 09:43:21 ----A---- C:\Windows\system32\wsepno.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wsnmp32.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\WsmSvc.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wlgpclnt.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\Wldap32.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wlanui.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wlanpref.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wlangpui.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\wisptis.exe
2010-03-22 09:43:20 ----A---- C:\Windows\system32\winrnr.dll
2010-03-22 09:43:20 ----A---- C:\Windows\system32\winresume.exe
2010-03-22 09:43:19 ----A---- C:\Windows\system32\winsrv.dll
2010-03-22 09:43:19 ----A---- C:\Windows\system32\WinSCard.dll
2010-03-22 09:43:19 ----A---- C:\Windows\system32\WinSAT.exe
2010-03-22 09:43:19 ----A---- C:\Windows\system32\winmm.dll
2010-03-22 09:43:19 ----A---- C:\Windows\system32\winlogon.exe
2010-03-22 09:43:19 ----A---- C:\Windows\system32\winload.exe
2010-03-22 09:43:18 ----A---- C:\Windows\system32\wmpmde.dll
2010-03-22 09:43:18 ----A---- C:\Windows\system32\WMPhoto.dll
2010-03-22 09:43:18 ----A---- C:\Windows\system32\wmpeffects.dll
2010-03-22 09:43:18 ----A---- C:\Windows\system32\WMNetMgr.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\wmicmiplugin.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\wmdrmsdk.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\sud.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\Storprop.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\stobject.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\srcore.dll
2010-03-22 09:43:16 ----A---- C:\Windows\system32\srchadmin.dll
2010-03-22 09:43:15 ----A---- C:\Windows\system32\sysmain.dll
2010-03-22 09:43:15 ----A---- C:\Windows\system32\sysclass.dll
2010-03-22 09:43:15 ----A---- C:\Windows\system32\swprv.dll
2010-03-22 09:43:15 ----A---- C:\Windows\system32\srvsvc.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\SyncCenter.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\smss.exe
2010-03-22 09:43:14 ----A---- C:\Windows\system32\SmiEngine.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\SMBHelperClass.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\slwmi.dll
2010-03-22 09:43:14 ----A---- C:\Windows\system32\slcc.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\spp.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\spoolsv.exe
2010-03-22 09:43:13 ----A---- C:\Windows\system32\spoolss.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\spinstall.exe
2010-03-22 09:43:13 ----A---- C:\Windows\system32\spcmsg.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\slwga.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLUINotify.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLUI.exe
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLsvc.exe
2010-03-22 09:43:13 ----A---- C:\Windows\system32\slmgr.vbs
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLLUA.exe
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLCommDlg.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\slcinst.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLCExt.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\SLC.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\shwebsvc.dll
2010-03-22 09:43:13 ----A---- C:\Windows\system32\shsvcs.dll
2010-03-22 09:43:10 ----A---- C:\Windows\system32\sperror.dll
2010-03-22 09:43:09 ----A---- C:\Windows\system32\TsWpfWrp.exe
2010-03-22 09:43:09 ----A---- C:\Windows\system32\TSTheme.exe
2010-03-22 09:43:09 ----A---- C:\Windows\system32\sqlsrv32.dll
2010-03-22 09:43:09 ----A---- C:\Windows\system32\spwizui.dll
2010-03-22 09:43:09 ----A---- C:\Windows\system32\spwinsat.dll
2010-03-22 09:43:09 ----A---- C:\Windows\system32\spreview.exe
2010-03-22 09:43:09 ----A---- C:\Windows\system32\softkbd.dll
2010-03-22 09:43:09 ----A---- C:\Windows\system32\SnippingTool.exe
2010-03-22 09:43:09 ----A---- C:\Windows\system32\SndVol.exe
2010-03-22 09:43:08 ----A---- C:\Windows\system32\zipfldr.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\untfs.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\umrdp.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\umpnpmgr.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\ulib.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\uDWM.dll
2010-03-22 09:43:08 ----A---- C:\Windows\system32\tskill.exe
2010-03-22 09:43:08 ----A---- C:\Windows\system32\tsdiscon.exe
2010-03-22 09:43:08 ----A---- C:\Windows\system32\tscupgrd.exe
2010-03-22 09:43:08 ----A---- C:\Windows\system32\systemcpl.dll
2010-03-22 09:43:05 ----A---- C:\Windows\system32\tscon.exe
2010-03-22 09:43:05 ----A---- C:\Windows\system32\tscfgwmi.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\tquery.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\themeui.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\thawbrkr.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\termsrv.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\tcpmon.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\tcpipcfg.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\taskeng.exe
2010-03-22 09:43:04 ----A---- C:\Windows\system32\taskcomp.dll
2010-03-22 09:43:04 ----A---- C:\Windows\system32\tapisrv.dll
2010-03-22 09:43:03 ----A---- C:\Windows\system32\themecpl.dll
2010-03-22 09:41:50 ----D---- C:\Windows\system32\EventProviders
2010-03-19 09:09:48 ----D---- C:\Users\David\AppData\Roaming\Opera
2010-03-19 09:08:53 ----D---- C:\Program Files\Opera
2010-03-18 15:25:54 ----D---- C:\Windows\temp
2010-03-18 15:15:08 ----D---- C:\ComboFix
2010-03-18 15:08:25 ----D---- C:\Qoobox
2010-03-18 13:33:52 ----D---- C:\Users\David\AppData\Roaming\TuneUp Software
2010-03-18 13:33:15 ----D---- C:\Program Files\TuneUp Utilities 2010
2010-03-18 13:32:59 ----D---- C:\ProgramData\TuneUp Software
2010-03-18 13:26:11 ----D---- C:\Program Files\Mozilla Firefox(3)
2010-03-18 12:58:16 ----D---- C:\Program Files\JDownloader
2010-03-18 08:17:42 ----D---- C:\Users\David\AppData\Roaming\WinRAR
2010-03-17 10:22:38 ----D---- C:\Program Files\Mozilla Firefox
2010-03-17 08:56:54 ----D---- C:\Users\David\AppData\Roaming\Malwarebytes
2010-03-17 08:56:49 ----D---- C:\ProgramData\Malwarebytes
2010-03-17 08:56:49 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-03-17 08:42:14 ----A---- C:\Windows\ntbtlog.txt
2010-03-16 15:22:44 ----D---- C:\754ebd2f743d5bd8fddb65973a0b
2010-03-12 09:51:29 ----A---- C:\Windows\system32\uxtuneup.dll
2010-03-12 09:51:29 ----A---- C:\Windows\system32\authuitu.dll
2010-03-12 09:50:39 ----SHD---- C:\Config.Msi
2010-03-12 09:47:45 ----A---- C:\Windows\system32\TURegOpt.exe
2010-03-12 09:45:56 ----SHD---- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2010-03-11 03:01:11 ----A---- C:\Windows\system32\nshhttp.dll
2010-03-11 03:01:09 ----A---- C:\Windows\system32\httpapi.dll
2010-03-08 13:24:41 ----A---- C:\Windows\system32\SpoonUninstall.exe
2010-03-08 13:17:16 ----D---- C:\Users\David\AppData\Roaming\Winamp
2010-03-08 13:17:16 ----D---- C:\Program Files\Winamp
2010-03-05 10:55:25 ----D---- C:\Users\David\AppData\Roaming\dvdcss

======List of files/folders modified in the last 1 months======

2010-03-26 07:18:20 ----D---- C:\Windows\prefetch
2010-03-26 04:13:10 ----SHD---- C:\System Volume Information
2010-03-26 03:00:45 ----D---- C:\Windows\winsxs
2010-03-26 03:00:42 ----D---- C:\Windows\System32
2010-03-26 03:00:41 ----D---- C:\Windows\system32\catroot
2010-03-25 14:39:53 ----D---- C:\Windows\inf
2010-03-25 14:39:53 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-03-25 14:35:09 ----D---- C:\ProgramData\Kaspersky Lab
2010-03-25 13:54:01 ----D---- C:\Windows\system32\drivers
2010-03-25 13:52:31 ----RD---- C:\Program Files
2010-03-25 13:51:59 ----SD---- C:\Windows\Downloaded Program Files
2010-03-24 11:49:34 ----D---- C:\Windows
2010-03-24 11:42:50 ----D---- C:\Windows\system32\catroot2
2010-03-23 14:02:42 ----D---- C:\Windows\Minidump
2010-03-23 13:53:47 ----D---- C:\Program Files\Common Files
2010-03-23 12:02:03 ----SHD---- C:\$Recycle.Bin
2010-03-23 03:27:24 ----D---- C:\Windows\Microsoft.NET
2010-03-23 03:27:15 ----RSD---- C:\Windows\assembly
2010-03-22 10:31:49 ----D---- C:\Windows\rescache
2010-03-22 10:19:12 ----SHD---- C:\boot
2010-03-22 10:12:08 ----D---- C:\Program Files\Windows Calendar
2010-03-22 10:12:06 ----D---- C:\Windows\servicing
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Sidebar
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Photo Gallery
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Media Player
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Mail
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Journal
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Defender
2010-03-22 10:12:06 ----D---- C:\Program Files\Windows Collaboration
2010-03-22 10:12:06 ----D---- C:\Program Files\Movie Maker
2010-03-22 10:12:06 ----D---- C:\Program Files\Internet Explorer
2010-03-22 10:12:06 ----D---- C:\Program Files\Common Files\System
2010-03-22 10:12:04 ----D---- C:\Windows\system32\lv-LV
2010-03-22 10:12:04 ----D---- C:\Windows\PolicyDefinitions
2010-03-22 10:12:04 ----D---- C:\Windows\IME
2010-03-22 10:12:03 ----D---- C:\Windows\system32\XPSViewer
2010-03-22 10:12:03 ----D---- C:\Windows\system32\sk-SK
2010-03-22 10:12:03 ----D---- C:\Windows\system32\oobe
2010-03-22 10:12:03 ----D---- C:\Windows\system32\migration
2010-03-22 10:12:03 ----D---- C:\Windows\system32\ko-KR
2010-03-22 10:12:03 ----D---- C:\Windows\system32\it-IT
2010-03-22 10:12:03 ----D---- C:\Windows\system32\hr-HR
2010-03-22 10:12:03 ----D---- C:\Windows\system32\fr
2010-03-22 10:12:03 ----D---- C:\Windows\system32\et-EE
2010-03-22 10:12:03 ----D---- C:\Windows\system32\en-US
2010-03-22 10:12:03 ----D---- C:\Windows\system32\el-GR
2010-03-22 10:12:03 ----D---- C:\Windows\system32\de-DE
2010-03-22 10:12:03 ----D---- C:\Windows\system32\da-DK
2010-03-22 10:12:02 ----D---- C:\Windows\system32\ru-RU
2010-03-22 10:12:02 ----D---- C:\Windows\system32\fr-FR
2010-03-22 10:12:02 ----D---- C:\Windows\system32\AdvancedInstallers
2010-03-22 10:12:01 ----D---- C:\Windows\system32\zh-TW
2010-03-22 10:12:01 ----D---- C:\Windows\system32\zh-CN
2010-03-22 10:12:01 ----D---- C:\Windows\system32\uk-UA
2010-03-22 10:12:01 ----D---- C:\Windows\system32\tr-TR
2010-03-22 10:12:01 ----D---- C:\Windows\system32\th-TH
2010-03-22 10:12:01 ----D---- C:\Windows\system32\sv-SE
2010-03-22 10:12:01 ----D---- C:\Windows\system32\sr-Latn-CS
2010-03-22 10:12:01 ----D---- C:\Windows\system32\SLUI
2010-03-22 10:12:01 ----D---- C:\Windows\system32\sl-SI
2010-03-22 10:12:01 ----D---- C:\Windows\system32\setup
2010-03-22 10:12:01 ----D---- C:\Windows\system32\ro-RO
2010-03-22 10:12:01 ----D---- C:\Windows\system32\pt-PT
2010-03-22 10:12:01 ----D---- C:\Windows\system32\pl-PL
2010-03-22 10:12:01 ----D---- C:\Windows\system32\manifeststore
2010-03-22 10:12:01 ----D---- C:\Windows\system32\ja-JP
2010-03-22 10:12:01 ----D---- C:\Windows\system32\hu-HU
2010-03-22 10:12:01 ----D---- C:\Windows\system32\he-IL
2010-03-22 10:12:01 ----D---- C:\Windows\system32\fi-FI
2010-03-22 10:12:01 ----D---- C:\Windows\system32\es-ES
2010-03-22 10:12:01 ----D---- C:\Windows\system32\cs-CZ
2010-03-22 10:12:01 ----D---- C:\Windows\system32\bg-BG
2010-03-22 10:12:00 ----D---- C:\Windows\system32\wbem
2010-03-22 10:12:00 ----D---- C:\Windows\system32\pt-BR
2010-03-22 10:12:00 ----D---- C:\Windows\system32\nl-NL
2010-03-22 10:12:00 ----D---- C:\Windows\system32\nb-NO
2010-03-22 10:12:00 ----D---- C:\Windows\system32\migwiz
2010-03-22 10:12:00 ----D---- C:\Windows\system32\lt-LT
2010-03-22 10:12:00 ----D---- C:\Windows\system32\ar-SA
2010-03-22 10:11:53 ----RSD---- C:\Windows\Fonts
2010-03-22 10:11:53 ----D---- C:\Windows\AppPatch
2010-03-22 10:11:49 ----D---- C:\Windows\system32\Boot
2010-03-22 10:09:40 ----D---- C:\Windows\system32\RTCOM
2010-03-19 15:54:17 ----D---- C:\Windows\system32\Tasks
2010-03-19 08:49:15 ----D---- C:\Users\David\AppData\Roaming\vlc
2010-03-19 08:07:05 ----D---- C:\Program Files\OpenOffice.org 3
2010-03-18 16:31:38 ----D---- C:\Windows\system32\Msdtc
2010-03-18 16:27:34 ----D---- C:\Windows\system32\config
2010-03-18 16:27:09 ----D---- C:\Windows\system32\spool
2010-03-18 16:27:09 ----D---- C:\Windows\system32\CodeIntegrity
2010-03-18 16:27:08 ----D---- C:\Users\David\AppData\Roaming\Mozilla
2010-03-18 16:26:59 ----D---- C:\Windows\registration
2010-03-18 15:06:16 ----D---- C:\Windows\Debug
2010-03-18 14:44:43 ----SD---- C:\ProgramData\Microsoft
2010-03-18 11:25:54 ----HD---- C:\Windows\system32\GroupPolicy
2010-03-17 08:34:55 ----D---- C:\Windows\system32\sysprep
2010-03-17 08:34:55 ----D---- C:\Windows\system32\ras
2010-03-17 08:34:55 ----D---- C:\Windows\system
2010-03-17 08:34:49 ----RSD---- C:\Windows\Media
2010-03-17 08:34:49 ----RD---- C:\Windows\Offline Web Pages
2010-03-17 08:34:49 ----D---- C:\Windows\system32\ias
2010-03-17 08:34:49 ----D---- C:\Windows\ShellNew
2010-03-17 08:34:49 ----D---- C:\Program Files\Common Files\Services
2010-03-16 15:15:08 ----HD---- C:\Program Files\InstallShield Installation Information
2010-03-16 15:13:37 ----D---- C:\Windows\system32\Macromed
2010-03-15 09:10:58 ----D---- C:\Program Files\Google
2010-03-12 10:38:05 ----D---- C:\Windows\Tasks
2010-03-12 09:51:41 ----SHD---- C:\Windows\Installer
2010-03-12 09:45:56 ----HD---- C:\ProgramData
2010-03-11 03:03:35 ----D---- C:\ProgramData\Microsoft Help
2010-03-08 13:17:23 ----D---- C:\Program Files\Common Files\PX Storage Engine
2010-03-05 11:11:20 ----D---- C:\Partage Administratif
2010-03-02 06:30:12 ----A---- C:\Windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys [2009-04-10 351744]
R1 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2008-09-25 112144]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2009-03-31 148496]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2007-04-04 20760]
R1 NHostNT1;NetOp Driver 1 ver. 9.21 (2009014); C:\Windows\System32\Drivers\NHOSTNT1.SYS [2009-01-14 102544]
R3 dwVSCD;NetOp Virtual Smart Card Driver; C:\Windows\system32\DRIVERS\dwvscd.sys [2009-01-14 16696]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-09-13 1925632]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-10-16 1971928]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2010-01-07 19160]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-10-03 99840]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2009-10-14 10064]
R3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 PCAMp50;PCAMp50 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCAMp50.sys [2009-08-24 28224]
S3 PCASp50;PCASp50 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCASp50.sys [2009-08-24 27072]
S3 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys []
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 RxFilter;RxFilter; C:\Windows\system32\DRIVERS\RxFilter.sys [2008-04-14 57328]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-21 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AVP;Kaspersky Anti-Virus 6.0; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations\avp.exe [2008-09-25 231952]
R2 BcmSqlStartupSvc;Service de démarrage SQL Server pour le Gestionnaire de contacts professionnels; C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [2008-01-16 30312]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [2009-08-24 69632]
R2 klnagent;Kaspersky Network Agent; C:\Program Files\Kaspersky Lab\NetworkAgent\klnagent.exe [2008-03-17 94608]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-01-07 236368]
R2 NetOp Host for NT Service;NetOp Helper ver. 9.21 (2009014); C:\Program Files\Danware Data\NetOp Remote Control\Host\NHOSTSVC.EXE [2009-01-14 1709992]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\Cyberlink\Shared Files\RichVideo.exe [2007-04-18 171040]
R2 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;Enregistreur VSS SQL Server; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-02-25 1047880]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2008-01-21 523776]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]
S3 TuneUp.Defrag;@C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-03-12 435016]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2009-04-10 918528]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]

-----------------EOF-----------------

Merci a bientot
26 Mars 2010 10:42:54

Re Bonjour.

Voici la suite :

info.txt logfile of random's system information tool 1.06 2010-03-23 11:14:42

======Uninstall list======

Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8.1.4 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81300000003}
Adobe Reader 8.1-->"C:\Program Files\NEC Computers\Smart Restore\SmartRestore.exe" /MSADDREM *AdobeReader*
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
CDBurnerXP-->MsiExec.exe /X{5932A5C4-BB44-4CFB-AD66-1B826F4D788B}
Cyberlink PowerDVD 7-->"C:\Program Files\NEC Computers\Smart Restore\SmartRestore.exe" /MSADDREM *PDVD*
Doc Online NEC VL280-->"C:\Program Files\NEC Computers\Smart Restore\SmartRestore.exe" /MSADDREM *DOC*
Fichiers de prise en charge de l'installation de Microsoft SQL Server (Français)-->MsiExec.exe /X{3380F354-C5F7-4E71-8F51-EEE6C3F06C62}
GDR 4053 for SQL Server Database Services 2005 ENU (KB970892)-->C:\Windows\SQL9_KB970892_ENU\Hotfix.exe /Uninstall
Gestionnaire de contacts professionnels pour Outlook 2007 SP2-->"C:\Program Files\Microsoft Small Business\Business Contact Manager\SetupBootstrap\Setup.exe" /remove {69ca8988-1c6c-4285-b8af-db780a6e42af}
Gestionnaire de contacts professionnels pour Outlook 2007 SP2-->MsiExec.exe /X{69CA8988-1C6C-4285-B8AF-DB780A6E42AF}
Heredis 11-->"C:\Program Files\BSD Concept\Heredis 11\unins000.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hôte NetOp Remote Control-->MsiExec.exe /I{00000040-E1FD-11DD-9921-0417A1A01290}
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
ImageMagick 6.3.5-8 Q16 (09/15/07)-->"C:\Program Files\ImageMagick-6.3.5-Q16\unins000.exe"
INDEX EDUCATION - Client PRONOTE 2009-->C:\Program Files\InstallShield Installation Information\{B213D0D7-7190-4D49-A72C-5DC57CA70D69}\setup.exe -runfromtemp -l0x040c -uninst -removeonly
INDEX EDUCATION - EDT Monoposte 2009-->C:\Program Files\InstallShield Installation Information\{039A9EBF-782C-40A1-BA18-BCD37E24B8E4}\setup.exe -runfromtemp -l0x040c -uninst -removeonly
Intel(R) Graphics Media Accelerator Driver-->C:\Windows\system32\igxpun.exe -uninstall
Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
Java(TM) SE Runtime Environment 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}
JDownloader-->C:\Program Files\JDownloader\uninstall.exe
JPEG Compression 1.0-->"C:\Program Files\JPEG Compression\unins000.exe"
Kaspersky Anti-Virus 6.0 for Windows Workstations-->MsiExec.exe /I{79B986AD-54D8-4498-AA06-89808829ACC0}
Kaspersky Anti-Virus 6.0 for Windows Workstations-->MsiExec.exe /I{79B986AD-54D8-4498-AA06-89808829ACC0}
Kaspersky Network Agent-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{7C72AAB5-8A7D-4882-950C-A1F26A949DA3}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Professional Plus 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8FAA964C5}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8FAA964C5}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Visio 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0054-040C-0000-0000000FF1CE} /uninstall {7EC87B94-B9A7-4C72-9C55-21C1C9DEE3C5}
Microsoft Office Visio 2007 Service Pack 2 (SP2)-->msiexec /package {91120000-0051-0000-0000-0000000FF1CE} /uninstall {0FD405D3-CAF8-4CA6-8BFD-911D2F8A6585}
Microsoft Office Visio MUI (French) 2007-->MsiExec.exe /X{90120000-0054-040C-0000-0000000FF1CE}
Microsoft Office Visio Professional 2007 Trial-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall VISPROR /dll OSETUP.DLL
Microsoft Office Visio Professional 2007-->MsiExec.exe /X{91120000-0051-0000-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)-->MsiExec.exe /I{480DBB60-F0B6-45F2-B26F-1A2E11197791}
Microsoft SQL Server 2005-->"c:\Program Files\Microsoft SQL Server\90\Setup Bootstrap\ARPWrapper.exe" /Remove
Microsoft SQL Server Native Client-->MsiExec.exe /I{1F24E48F-7692-4E89-8784-68DD4D2712A0}
Microsoft SQL Server VSS Writer-->MsiExec.exe /I{A30179B7-997A-4D47-AA43-57AE59A9C78B}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
OmniPage SE 2.0-->MsiExec.exe /I{79D5997E-BF79-48BB-8B41-9BE59C15C2D7}
Opera 10.50-->MsiExec.exe /X{022F6097-A053-4B1B-BE50-3AADE4116B92}
PDFCreator-->C:\Program Files\PDFCreator\unins000.exe
PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"
PowerDVD-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\Setup.exe" -uninstall
QuickTime-->MsiExec.exe /I{C78EAC6F-7A73-452E-8134-DBB2165C5A68}
Realtek HD Audio R.180 VER 6.0.1.5497-->"C:\Program Files\NEC Computers\Smart Restore\SmartRestore.exe" /MSADDREM *AUDIO_REALTEK*
Realtek High Definition Audio Driver-->RtlUpd.exe -r -m
Roxio BackOnTrack-->MsiExec.exe /I{5A06423A-210C-49FB-950E-CB0EB8C5CEC7}
Roxio Central Audio-->MsiExec.exe /I{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}
Roxio Central Copy-->MsiExec.exe /I{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}
Roxio Central Core-->MsiExec.exe /I{ED439A64-F018-4DD4-8BA5-328D85AB09AB}
Roxio Central Data-->MsiExec.exe /I{08E81ABD-79F7-49C2-881F-FD6CB0975693}
Roxio Central Tools-->MsiExec.exe /I{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}
Roxio Creator 10-->"C:\Program Files\NEC Computers\Smart Restore\SmartRestore.exe" /MSADDREM *CREATOR10*
Roxio Creator LE 10-->C:\ProgramData\Uninstall\{537BF16E-7412-448C-95D8-846E85A1D817}\setup.exe /x {537BF16E-7412-448C-95D8-846E85A1D817}
Roxio Creator LE 10-->MsiExec.exe /I{79AE264A-7DEA-49AF-AFAF-7A2D8F706F51}
Roxio Express Labeler 3-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
Roxio File Backup-->MsiExec.exe /I{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}
Roxio Update Manager-->MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-0051-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
Security Update for 2007 Microsoft Office System (KB978380)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {667A88D1-0369-4070-A62A-70672D68A9BF}
Security Update for Microsoft Office Excel 2007 (KB978382)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {6DE3DABF-0203-426B-B330-7287D1003E86}
Security Update for Microsoft Office Outlook 2007 (KB972363)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {120BE9A0-9B09-4855-9E0C-7DEE45CB03C0}
Security Update for Microsoft Office PowerPoint 2007 (KB957789)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D}
Security Update for Microsoft Office Publisher 2007 (KB969693)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {7BE67088-1EB3-4569-8E75-DDAFBF61BC4E}
Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {91120000-0051-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
Security Update for Microsoft Office system 2007 (KB969613)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C}
Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {91120000-0051-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
Security Update for Microsoft Office Word 2007 (KB969604)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {CF3D6499-709C-43D0-8908-BC5652656050}
TuneUp Utilities-->C:\Program Files\TuneUp Utilities 2010\TUInstallHelper.exe --Trigger-Uninstall
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-0051-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Microsoft Office InfoPath 2007 (KB976416)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {432C5EE4-8096-4FF1-95E1-65219365DFF7}
Update for Outlook 2007 Junk Email Filter (kb979895)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {D45674C6-9127-4C84-8826-93FBC552DF53}
Video Intel(R) Graphics 7.14.10.1329-->"C:\Program Files\NEC Computers\Smart Restore\SmartRestore.exe" /MSADDREM *VIDEO_VL280*
VLC media player 1.0.2-->C:\Program Files\VideoLAN\VLC\uninstall.exe
WBFS Manager 3.0-->C:\Program Files\WBFS\WBFS Manager 3.0\uninstall.exe
Winamp-->"C:\Program Files\Winamp\UninstWA.exe"

======Security center information======

AV: Kaspersky Anti-Virus
FW: Kaspersky Anti-Virus (disabled)
AS: Kaspersky Anti-Virus

======System event log======

Computer Name: PC-de-David
Event Code: 4376
Message: Servicing a requis un redémarrage pour terminer la définition du package KB948609(Update) à l’état Installation demandée(Install Requested)
Record Number: 30822
Source Name: Microsoft-Windows-Servicing
Time Written: 20090825011315.000000-000
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

Computer Name: PC-de-David
Event Code: 4376
Message: Servicing a requis un redémarrage pour terminer la définition du package KB948609(Update) à l’état Installation demandée(Install Requested)
Record Number: 30722
Source Name: Microsoft-Windows-Servicing
Time Written: 20090825011315.000000-000
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

Computer Name: PC-de-David
Event Code: 4376
Message: Servicing a requis un redémarrage pour terminer la définition du package KB948609(Update) à l’état Installation demandée(Install Requested)
Record Number: 30717
Source Name: Microsoft-Windows-Servicing
Time Written: 20090825011315.000000-000
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

Computer Name: PC-de-David
Event Code: 4376
Message: Servicing a requis un redémarrage pour terminer la définition du package KB948609(Update) à l’état Installation demandée(Install Requested)
Record Number: 30714
Source Name: Microsoft-Windows-Servicing
Time Written: 20090825011315.000000-000
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

Computer Name: PC-de-David
Event Code: 4376
Message: Servicing a requis un redémarrage pour terminer la définition du package KB948609(Update) à l’état Installation demandée(Install Requested)
Record Number: 30710
Source Name: Microsoft-Windows-Servicing
Time Written: 20090825011315.000000-000
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

=====Application event log=====

Computer Name: PC-de-David
Event Code: 8194
Message: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005. Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.

Opération :
Données du rédacteur en cours de collecte

Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {7aacc2fd-31f1-4394-be3a-c7e92d2cdf79}
Record Number: 966
Source Name: VSS
Time Written: 20080925124927.000000-000
Event Type: Erreur
User:

Computer Name: PC-de-David
Event Code: 10
Message: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.
Record Number: 953
Source Name: Microsoft-Windows-WMI
Time Written: 20080925122850.000000-000
Event Type: Erreur
User:

Computer Name: PC-de-David
Event Code: 1530
Message: Windows a détecté que votre fichier de Registre est toujours utilisé par d'autres applications ou services. Le fichier va être déchargé. Les applications ou services qui ont accès à votre Registre risquent de ne pas fonctionner correctement après cela.

DÉTAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-3769618630-1773912028-3060641611-1003:
Process 632 (\Device\HarddiskVolume2\Windows\System32\winlogon.exe) has opened key \REGISTRY\USER\S-1-5-21-3769618630-1773912028-3060641611-1003

Record Number: 904
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20080925122549.000000-000
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

Computer Name: PC-de-David
Event Code: 10
Message: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.
Record Number: 847
Source Name: Microsoft-Windows-WMI
Time Written: 20080925180513.000000-000
Event Type: Erreur
User:

Computer Name: PC-de-David
Event Code: 1008
Message: Le service Windows Search tente de supprimer l

Merci à bientot
26 Mars 2010 11:20:08

Bonjour dnapoleon,

il faut mettre à jour Java (faille de sécurité) :
http://java.sun.com/javase/downloads/index.jsp
Clique sur Download Java Runtime Environment (JRE) 6u18 et dans la page suivante, coche I agree puis télécharge Windows Offline Installation, Multi-language/jre-6u18-windows-i586-p.exe/
Adobe (idem) :
http://www.adobe.com/fr/products/acrobat/readstep2.html
Acrobat Reader 9.3.1
Décoche McAfee Security Scan gratuit

De+ mets à jour Internet Explorer (8) : http://www.microsoft.com/france/windows/products/winfam...

A+
26 Mars 2010 14:18:56

Re bonjour.

Mise à jour effectuer. J'ai eu du mal avec java mais j'ai réussi. Pour le spage Https toujours pareil.


Merci

a +
27 Mars 2010 10:40:56

Bonjour dnapoleon,

ton Pc n' est+ infecté, tu devrais poser tes questions au forum Accès Internet et Réseaux : http://www.infos-du-net.com/forum/forum-8.html

* Je te conseille de défragmenter ton PC.
* Il est fortement recommandé d' avoir tous ses logiciels à jour.
* Tu peux supprimer ceux que nous avons utilisés (RSIT, UsbFix...) traitant d' infections spécifiques.
* Garde Malwarebytes' Anti-Malware et CCleaner.

-----------------------------------------------------------------------------------------------------------------------------------

Pour la sécurité de ton PC, prends quelques minutes pour lire :
http://forum.pcastuces.com/prevention_et_protection___c...

-----------------------------------------------------------------------------------------------------------------------------------

Dénonce stv ton infection en postant sur Malware-Complaints :

- Règles du forum : http://www.malwarecomplaints.info/viewtopic.php?t=5
- Enregistre-toi à l' aide du bouton Register
- Choisis I Agree to these terms and am over or exactly 13 years of age

Indique aussi le nom du forum qui t' a aidé, Idn.

A+
Ps : Bon courage
29 Mars 2010 08:33:40

Bonjour.

Merci pour ton aide.

La suite sur le prochain forum

David

17 Juillet 2010 17:36:31

Dans la barre des menus d'internet vous cliquez sur outils ensuite sur options internet puis dans l'onglet avancés dans parametres HTTP 1.1, si la case cochée est Utiliser HTTP 1.1 vous changez et cliquez sur la case Utiliser HTTP 1.1 avec une connexion par proxy ensuite vous faites appliquer puis vous allez sur une page securisée nimporte laquelle et enfin normalement ca devrait marcher !

Je te donne ce qui m'a permis de résoudre ce problème, du jour au lendemain, je ne pouvais plus aller sur un site en particulier !

Dans mon cas j'ai décoché dans Firefox "utiliser proxy du système" et j'ai coché "pas de proxy" et depuis ça fonctionne :)  :lol:  :D  :D  :D  :D  :D 
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS