Se connecter / S'enregistrer
Votre question

[Résolu] Avcenter.exe n'est pas une application win32 valide

Tags :
  • Acer
  • Sécurité
Dernière réponse : dans Sécurité et virus
5 Mars 2009 17:41:59

Bonjour,

En fait hier j'ai téléchargé un fichier et il y avait un virus et je l'ai ouvert bêtement. Donc maintenant le wifi ne veut pas le lancer et la plus part des application pareil, dont mon antivirus.

quelqu'un avait le même problème ici je vais poster le rapport pareil, non ?

Merci de votre aide

Autres pages sur : resolu avcenter exe application win32 valide

a c 267 8 Sécurité
5 Mars 2009 18:57:10

Salut,

Tu as l'infection Bagle.

XP ou Vista ?
5 Mars 2009 19:49:03

Vista, qu'est-ce que je dois faire ?
au fait j'ai réussi à remettre le wifi mais toujours pas d'antivirus

merci de ton aide
Contenus similaires
a c 267 8 Sécurité
5 Mars 2009 19:53:29

  • Désactive l'UAC le temps de la désinfection.

  • Télécharge FindyKill (par Chiquitine29) sur ton Bureau.
  • Lance l'installation avec les paramètres par défaut.
  • Double-clique sur le raccourci FindyKill sur ton Bureau.
    (Sous Vista, il faut cliquer droit sur le raccourci FindyKill et choisir Exécuter en tant qu'administrateur)
  • Choisis F pour Français.
  • Au menu principal, choisis l'option 1 (Recherche).
  • Poste le rapport FindyKill.txt

    Note : le rapport FindyKill.txt est sauvegardé à la racine du disque.
    5 Mars 2009 20:05:34


    ############################## [ FindyKill V4.718 ]

    # User : Simon (Administrateurs) # PC-SIM
    # Update on 01/03/09
    # Start at: 20:03:25 | 05/03/2009

    # Intel(R) Pentium(R) Dual CPU T2310 @ 1.46GHz
    # Microsoft© Windows VistaT dition Familiale Premium (6.0.6001 32-bit) # Service Pack 1
    # Internet Explorer 7.0.6001.18000
    # Windows Firewall Status : Disabled
    # AV : Avira AntiVir PersonalEdition Classic 8.0.1.30 [ Enabled | Updated ]

    # C:\ # Disque fixe local # 69,77 Go (9,31 Go free) [ACER] # NTFS
    # D:\ # Disque fixe local # 69,51 Go (69,35 Go free) [ACER D] # NTFS
    # E:\ # Disque CD-ROM

    ############################## [ Processus actifs ]

    C:\Windows\System32\smss.exe
    C:\Windows\system32\csrss.exe
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\csrss.exe
    C:\Windows\system32\services.exe
    C:\Windows\system32\lsass.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\winlogon.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\System32\svchost.exe
    C:\Windows\System32\svchost.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\SLsvc.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\taskeng.exe
    C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
    C:\Windows\system32\Dwm.exe
    C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
    C:\Windows\Explorer.EXE
    C:\Acer\Empowering Technology\eNet\eNet Service.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
    C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    C:\Acer\Mobility Center\MobilityService.exe
    C:\Windows\system32\svchost.exe
    C:\Program Files\CyberLink\Shared Files\RichVideo.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\System32\svchost.exe
    C:\Program Files\Live Mesh\Remote Desktop\wlcrasvc.exe
    C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\system32\DRIVERS\xaudio.exe
    C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
    C:\Windows\RtHDVCpl.exe
    C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
    C:\Acer\Empowering Technology\eDataSecurity\eDSLoader.exe
    C:\Windows\BR040286.exe
    C:\Acer\Empowering Technology\eAudio\eAudio.exe
    C:\Program Files\Launch Manager\LManager.exe
    C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
    C:\Program Files\Apoint2K\Apoint.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Apoint2K\ApMsgFwd.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files\eMule\emule.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Program Files\Apoint2K\Apntex.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Windows\system32\conime.exe
    C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
    C:\Windows\explorer.exe

    ################## [ Fichiers / Dossiers infectieux C:\ ]

    Found ! - C:\InfoSat.txt

    ################## [ C:\Windows ]


    ################## [ C:\Windows\system32 ]

    Found ! - C:\Windows\system32\mdelk.exe
    Found ! - C:\Windows\system32\wintems.exe

    ################## [ C:\Windows\system32\drivers ]

    Found ! - C:\Windows\system32\drivers\winfilse.exe

    ################## [ C:\.. Application Data ... ]

    Found ! - "C:\Users\Simon\AppData\Roaming\m\flec006.exe"
    Found ! - "C:\Users\Simon\AppData\Roaming\m\shared"
    Found ! - "C:\Users\Simon\AppData\Roaming\m"
    Found ! - "C:\Users\Simon\AppData\Roaming\drivers"
    Found ! - "C:\Users\Simon\AppData\Roaming\drivers\wfsintwq.sys"
    Found ! - "C:\Users\Simon\AppData\Roaming\drivers\winupgro.exe"
    Found ! - "C:\Users\Simon\AppData\Roaming\drivers\downld"

    ################## [ Registre / Clés infectieuses ]

    Found ! - HKEY_USERS\S-1-5-21-2774351156-724662568-2712564888-1000\Software\Local AppWizard-Generated Applications\key_gen
    Found ! - HKEY_USERS\S-1-5-21-2774351156-724662568-2712564888-1000\Software\Local AppWizard-Generated Applications\msnmsgr
    Found ! - HKEY_USERS\S-1-5-21-2774351156-724662568-2712564888-1000\Software\Local AppWizard-Generated Applications\winfilse
    Found ! - HKEY_USERS\S-1-5-21-2774351156-724662568-2712564888-1000\Software\Local AppWizard-Generated Applications\winupgro
    Found ! - HKEY_USERS\S-1-5-21-2774351156-724662568-2712564888-1000\Software\FirtR
    Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\key_gen
    Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\msnmsgr
    Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winfilse
    Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winupgro
    Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa
    Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa
    Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\srosa
    Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
    Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
    Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SROSA
    Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sK9Ou0s
    Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sK9Ou0s
    Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sK9Ou0s
    Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S
    Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SK9OU0S
    Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SK9OU0S
    Found ! - HKEY_CURRENT_USER\Software\FirtR
    Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\"drvsyskit"
    Found ! - HKEY_USERS\S-1-5-21-2774351156-724662568-2712564888-1000\Software\Microsoft\Windows\CurrentVersion\Run\\"drvsyskit"
    Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\"german.exe"
    Found ! - HKEY_USERS\S-1-5-21-2774351156-724662568-2712564888-1000\Software\Microsoft\Windows\CurrentVersion\Run\\"german.exe"
    Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\"mule_st_key"
    Found ! - HKEY_USERS\S-1-5-21-2774351156-724662568-2712564888-1000\Software\Microsoft\Windows\CurrentVersion\Run\\"mule_st_key"

    # Infection active : HKLM\SYSTEM\...\Services\srosa -> Start = 0x1
    # Infection active : HKLM\SYSTEM\...\Services\sK9Ou0s -> Start = 0x1

    ################## [ Recherche dans supports amovibles]

    # Presence des fichiers :


    ################## [ Registre / Mountpoint2 ]

    # -> Not found !

    ################## [ ! Fin du rapport # FindyKill V4.718 ! ]

    a c 267 8 Sécurité
    5 Mars 2009 20:07:53

  • Supprime le fichier qui t'a infecté (Crack par exemple).
  • Double-clique sur le raccourci FindyKill sur ton Bureau.
    (Sous Vista, il faut cliquer droit sur le raccourci FindyKill et choisir Exécuter en tant qu'administrateur)
  • Au menu principal, choisis l'option 2 (Suppression).

    /!\ Il y aura un redémarrage, laisse travailler l'outil jusqu'à l'apparition du message "nettoyage effectué" /!\

  • Ensuite, poste le rapport FindyKill.txt

    Note : le rapport FindyKill.txt est sauvegardé à la racine du disque.
    5 Mars 2009 20:21:59

    Voila :

    ############################## [ FindyKill V4.718 ]

    # User : Simon (Administrateurs) # PC-SIM
    # Update on 01/03/09
    # Start at: 20:07:13 | 05/03/2009

    # Intel(R) Pentium(R) Dual CPU T2310 @ 1.46GHz
    # Microsoft© Windows VistaT dition Familiale Premium (6.0.6001 32-bit) # Service Pack 1
    # Internet Explorer 7.0.6001.18000
    # Windows Firewall Status : Disabled
    # AV : Avira AntiVir PersonalEdition Classic 8.0.1.30 [ Enabled | Updated ]

    # C:\ # Disque fixe local # 69,77 Go (9,31 Go free) [ACER] # NTFS
    # D:\ # Disque fixe local # 69,51 Go (69,35 Go free) [ACER D] # NTFS
    # E:\ # Disque CD-ROM

    ############################## [ Active Processes ]

    C:\Windows\System32\smss.exe
    C:\Windows\system32\csrss.exe
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\csrss.exe
    C:\Windows\system32\services.exe
    C:\Windows\system32\lsass.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\winlogon.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\System32\svchost.exe
    C:\Windows\System32\svchost.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\SLsvc.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\system32\taskeng.exe
    C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
    C:\Windows\system32\Dwm.exe
    C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
    C:\Acer\Empowering Technology\eNet\eNet Service.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
    C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    C:\Acer\Mobility Center\MobilityService.exe
    C:\Windows\system32\svchost.exe
    C:\Program Files\CyberLink\Shared Files\RichVideo.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\svchost.exe
    C:\Windows\System32\svchost.exe
    C:\Program Files\Live Mesh\Remote Desktop\wlcrasvc.exe
    C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\system32\DRIVERS\xaudio.exe
    C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
    C:\Windows\RtHDVCpl.exe
    C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
    C:\Acer\Empowering Technology\eDataSecurity\eDSLoader.exe
    C:\Windows\BR040286.exe
    C:\Acer\Empowering Technology\eAudio\eAudio.exe
    C:\Program Files\Launch Manager\LManager.exe
    C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
    C:\Program Files\Apoint2K\Apoint.exe
    C:\Windows\System32\rundll32.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Apoint2K\ApMsgFwd.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files\eMule\emule.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Program Files\Apoint2K\Apntex.exe
    C:\Windows\system32\conime.exe
    C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\SearchFilterHost.exe

    ################## [ Infected Files / Folders C:\ ]

    Deleted ! - C:\InfoSat.txt

    ################## [ C:\Windows ]


    ################## [ C:\Windows\system32 ]

    Deleted ! - C:\Windows\system32\mdelk.exe
    Deleted ! - C:\Windows\system32\wintems.exe

    ################## [ C:\Windows\system32\drivers ]

    Deleted ! - C:\Windows\system32\drivers\winfilse.exe

    ################## [ C:\.. Application Data ... ]

    Deleted ! - "C:\Users\Simon\AppData\Roaming\m\flec006.exe"
    Deleted ! - "C:\Users\Simon\AppData\Roaming\m\shared"
    Deleted ! - "C:\Users\Simon\AppData\Roaming\m"
    Deleted ! - "C:\Users\Simon\AppData\Roaming\drivers\wfsintwq.sys"
    Deleted ! - "C:\Users\Simon\AppData\Roaming\drivers\winupgro.exe"
    Deleted ! - "C:\Users\Simon\AppData\Roaming\drivers\downld"
    Deleted ! - "C:\Users\Simon\AppData\Roaming\drivers"

    ################## [ Registry / Infected keys ]

    Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
    Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
    Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SROSA
    Deleted ! - HKEY_CURRENT_USER\Software\FirtR
    Deleted ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\msnmsgr
    Deleted ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winfilse
    Deleted ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winupgro
    Deleted ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\"drvsyskit"
    Deleted ! - HKEY_USERS\S-1-5-21-2774351156-724662568-2712564888-1000\Software\Microsoft\Windows\CurrentVersion\Run\\"drvsyskit"
    Deleted ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\"german.exe"
    Deleted ! - HKEY_USERS\S-1-5-21-2774351156-724662568-2712564888-1000\Software\Microsoft\Windows\CurrentVersion\Run\\"german.exe"
    Deleted ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\"mule_st_key"
    Deleted ! - HKEY_USERS\S-1-5-21-2774351156-724662568-2712564888-1000\Software\Microsoft\Windows\CurrentVersion\Run\\"mule_st_key"

    ################## [ Cleaning Removable drives ]

    # Deleting files :


    ################## [ Registry / Mountpoint2 ]

    # -> Not found !

    ################## [ Searching Other Infections ]

    # Références de comparaison Bagle MD5 :

    2144df1c C:\Windows\System32\drivers\winfilse.exe
    578854c0e5d0e9b8cf5b8aafaa269d64 C:\Windows\System32\drivers\winfilse.exe

    45f99e31 C:\Users\Simon\AppData\Roaming\drivers\winupgro.exe
    160fa0e8069f9ff6e4a2ac4737f074a3 C:\Users\Simon\AppData\Roaming\drivers\winupgro.exe

    Suspect ! "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"
    # Taille : 815104 # MD5 : 160FA0E8069F9FF6E4A2AC4737F074A3


    ################## [ PEH Corrupted ]

    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avcenter.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\licmgr.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    C:\Program Files\Unlocker\UnlockerAssistant.exe
    C:\Users\Simon\Downloads\CCM.exe

    ################## [ ! End of Report # FindyKill V4.718 ! ]

    a c 267 8 Sécurité
    5 Mars 2009 20:29:29

  • Réinstalle Antivir.

  • Télécharge OTMoveIt3 (OldTimer) sur ton Bureau.
  • Clique droit sur OTMoveIt3.exe et choisis Exécuter en tant qu'administrateur.
  • Copie (Ctrl+C) le texte suivant ci-dessous :

    :processes
    explorer.exe

    :files
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Unlocker\UnlockerAssistant.exe
    C:\Users\Simon\Downloads\CCM.exe

    :commands
    [purity]
    [emptytemp]
    [reboot]


  • Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
  • Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

    ---> Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.

  • Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
    ---> Le nom du rapport correspond au moment de sa création : date_heure.log
    5 Mars 2009 21:35:30

    ========== PROCESSES ==========
    Process explorer.exe killed successfully.
    ========== FILES ==========
    File/Folder C:\Program Files\Windows Live\Messenger\msnmsgr.exe not found.
    File/Folder C:\Program Files\Unlocker\UnlockerAssistant.exe not found.
    File/Folder C:\Users\Simon\Downloads\CCM.exe not found.
    ========== COMMANDS ==========
    File delete failed. C:\Users\Simon\AppData\Local\Temp\etilqs_dHnQ8ldwoT3DMIrQ48eH scheduled to be deleted on reboot.
    File delete failed. C:\Users\Simon\AppData\Local\Temp\RtkBtMnt.exe scheduled to be deleted on reboot.
    User's Temp folder emptied.
    User's Temporary Internet Files folder emptied.
    User's Internet Explorer cache folder emptied.
    Local Service Temp folder emptied.
    Local Service Temporary Internet Files folder emptied.
    Windows Temp folder emptied.
    File delete failed. C:\Users\Simon\AppData\Local\Mozilla\Firefox\Profiles\8up16nlh.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
    File delete failed. C:\Users\Simon\AppData\Local\Mozilla\Firefox\Profiles\8up16nlh.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
    File delete failed. C:\Users\Simon\AppData\Local\Mozilla\Firefox\Profiles\8up16nlh.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
    File delete failed. C:\Users\Simon\AppData\Local\Mozilla\Firefox\Profiles\8up16nlh.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
    File delete failed. C:\Users\Simon\AppData\Local\Mozilla\Firefox\Profiles\8up16nlh.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
    FireFox cache emptied.
    Temp folders emptied.

    OTMoveIt3 by OldTimer - Version 1.0.8.0 log created on 03052009_213030

    Files moved on Reboot...
    File C:\Users\Simon\AppData\Local\Temp\etilqs_dHnQ8ldwoT3DMIrQ48eH not found!
    C:\Users\Simon\AppData\Local\Temp\RtkBtMnt.exe moved successfully.
    C:\Users\Simon\AppData\Local\Mozilla\Firefox\Profiles\8up16nlh.default\Cache\_CACHE_001_ moved successfully.
    C:\Users\Simon\AppData\Local\Mozilla\Firefox\Profiles\8up16nlh.default\Cache\_CACHE_002_ moved successfully.
    C:\Users\Simon\AppData\Local\Mozilla\Firefox\Profiles\8up16nlh.default\Cache\_CACHE_003_ moved successfully.
    C:\Users\Simon\AppData\Local\Mozilla\Firefox\Profiles\8up16nlh.default\Cache\_CACHE_MAP_ moved successfully.
    C:\Users\Simon\AppData\Local\Mozilla\Firefox\Profiles\8up16nlh.default\urlclassifier3.sqlite moved successfully.
    5 Mars 2009 21:42:42

    Si je ne me trompe pas le problème est résolus là non ?
    mon antivirus remarche en tout cas
    si c'est finis merci beaucoup pour ton aide =)
    a c 267 8 Sécurité
    5 Mars 2009 23:35:42

    On va vérifier qu'il n'y a pas autre chose.

  • Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
  • Double-clique sur RSIT.exe afin de lancer le programme.
  • Clique sur Continue à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

    Note : les rapports sont sauvegardés dans le dossier C:\rsit.
    7 Mars 2009 21:51:32

    info.txt logfile of random's system information tool 1.05 2009-03-07 21:48:13

    ======Uninstall list======

    -->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{31403E22-2FDB-452F-AE9E-20854633226D}\Setup.EXE" -uninst
    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A450831D-25F6-4F42-9662-D000B25E0D82}\setup.exe" -uninstall
    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AA4BF92B-2AAF-11DA-9D78-000129760D75}\setup.exe" -uninstall
    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B145EC69-66F5-11D8-9D75-000129760D75}\setup.exe" -uninstall
    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B804C424-B66D-447A-84BD-C6B88C392C3A}\setup.exe" -uninstall
    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F79A208D-D929-11D9-9D77-000129760D75}\setup.exe" -uninstall
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    Acer Arcade Deluxe-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37}\setup.exe" -uninstall
    Acer Crystal Eye webcam-->C:\Program Files\InstallShield Installation Information\{DD1DED37-2486-4F56-8F89-56AA814003F5}\setup.exe -runfromtemp -l0x040c -removeonly
    Acer Crystal Eye-->C:\Program Files\InstallShield Installation Information\{4BB1DCED-84D3-47F9-B718-5947E904593E}\setup.exe -runfromtemp -l0x040c -removeonly
    Acer eAudio Management-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{57265292-228A-41FA-9AEC-4620CBCC2739}\Setup.exe" -uninstall
    Acer eDataSecurity Management-->C:\Acer\Empowering Technology\eDataSecurity\eDSnstHelper.exe -Operation UNINSTALL
    Acer eLock Management-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{116FF17B-1A30-4FC2-9B01-5BC5BD46B0B3}\setup.exe" -l0x40c -removeonly
    Acer Empowering Technology-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AB6097D9-D722-4987-BD9E-A076E2848EE2}\setup.exe" -l0x40c -removeonly
    Acer eNet Management-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C06554A1-2C1E-4D20-B613-EE62C79927CC}\setup.exe" -l0x40c -removeonly
    Acer ePower Management-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{58E5844B-7CE2-413D-83D1-99294BF6C74F}\setup.exe" -l0x40c -removeonly
    Acer ePresentation Management-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BF839132-BD43-4056-ACBF-4377F4A88E2A}\setup.exe" -l0x40c -removeonly
    Acer eSettings Management-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CE65A9A0-9686-45C6-9098-3C9543A412F0}\setup.exe" -l0x40c -removeonly
    Acer GridVista-->C:\Windows\UnInst32.exe GridV.UNI
    Acer Mobility Center Plug-In-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{11316260-6666-467B-AC34-183FCB5D4335}\setup.exe" -l0x40c -removeonly
    Acer ScreenSaver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}\setup.exe" -l0x9 -removeonly
    Acer Tour-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{94389919-B0AA-4882-9BE8-9F0B004ECA35}\setup.exe" -l0x40c -removeonly
    Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Flash Player 9 ActiveX-->C:\Windows\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
    Adobe Reader 8.1.0-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81000000003}
    ALPS Touch Pad Driver-->C:\Program Files\Apoint2K\Uninstap.exe ADDREMOVE
    Antidote RX v8-->MsiExec.exe /X{A474EA56-5DBD-4181-8230-806A4762EA7F}
    Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
    Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
    Atheros for Acer Driver v7.3.1.42_Foxconn Installation Program-->C:\Program Files\InstallShield Installation Information\{28006915-2739-4EBE-B5E8-49B25D32EB33}\Setup.exe -runfromtemp -l0x0009 -removeonly
    Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
    CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
    Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
    Condition Zero-->"C:\Program Files\Steam\steam.exe" steam://uninstall/80
    CubeDesktop 1.3.1-->C:\Program Files\CubeDesktop\uninst.exe
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    eMule-->"C:\Program Files\eMule\Uninstall.exe"
    FindyKill-->C:\Program Files\FindyKill\Uninstal.exe
    HDAUDIO Soft Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFAOR2C06_118\UIU32m.exe -U -IAcrZUn32z.inf
    HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
    Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
    Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
    Intel(R) Matrix Storage Manager-->C:\Windows\System32\Imsmudlg.exe
    Java(TM) 6 Update 12-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216012FF}
    Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
    Launch Manager-->C:\Windows\UnInst32.exe LManager.UNI
    Live Mesh-->MsiExec.exe /X{DCB4E1D9-B187-4B54-971E-1478485C9A53}
    Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
    Microsoft .NET Framework 1.1 Hotfix (KB929729)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M929729\M929729Uninstall.msp"
    Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
    Microsoft .NET Framework 3.5 SP1-->C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
    Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
    Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
    Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
    Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
    Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB}
    Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
    Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
    Microsoft Office Professional Plus 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
    Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
    Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
    Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
    Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
    Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
    Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
    Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
    Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
    Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
    Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
    Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Microsoft Works-->MsiExec.exe /I{6B1CB38D-E2E4-4A30-933D-EFDEBA76AD9C}
    Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
    MorphVOX Pro-->MsiExec.exe /I{F9DCA418-8563-4677-B4B1-D1AF976A87F6}
    Mozilla Firefox (3.0.7)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    NTI Backup NOW! 4.7-->"C:\Program Files\InstallShield Installation Information\{67ADE9AF-5CD9-4089-8825-55DE4B366799}\setup.exe" -removeonly
    NTI CD & DVD-Maker-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2} /l1036 CDM7
    NVIDIA Drivers-->C:\Windows\system32\NVUNINST.EXE UninstallGUI
    Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
    PowerProducer 3.72-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\Setup.EXE" -uninstall
    QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
    RealPlayer-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
    Realtek High Definition Audio Driver-->RtlUpd.exe -r -m
    RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{59F6A514-9813-47A3-948C-8A155460CC2A}\setup.exe" -l0x40c anything
    Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85}
    Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
    Security Update for 2007 Microsoft Office System (KB958439)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {6491B8AA-D11C-4648-A461-6234B31EB7E2}
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Security Update for Microsoft Office Excel 2007 (KB958437)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {648FC016-2D6B-4A16-8D87-404533642F4B}
    Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}
    Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85}
    Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
    Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC}
    Security Update for Microsoft Office Word 2007 (KB956358)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2E64517C}
    Steam-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
    TI Connect 1.6-->MsiExec.exe /I{A8B94669-8654-4126-BD28-D0D2412CDED6}
    TI NoteFolio Creator-->MsiExec.exe /I{F07AE5AB-516C-4CEB-A0AA-AD083B9182C6}
    TypingMaster Pro-->"C:\Program Files\TypingMaster\unins000.exe"
    Unlocker 1.8.7-->C:\Program Files\Unlocker\uninst.exe
    Update for Microsoft Office Excel 2007 Help (KB957242)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {49E314EE-81FA-4007-8F1A-8D39BDBB4498}
    Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756}
    Update for Microsoft Office Outlook 2007 Help (KB957246)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {80E46078-C1C5-4AE8-8744-3EAFC812E118}
    Update for Office 2007 (KB946691)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278}
    Update for Outlook 2007 Junk Email Filter (kb959634)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {50C77E2F-5C1C-467D-9BC8-3CA07D28C9F2}
    VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}
    VeryPDF PDF2TXT v3.2-->"C:\Program Files\VeryPDF PDF2TXT v3.2\unins000.exe"
    Virtual DJ - Atomix Productions-->C:\PROGRA~1\VIRTUA~2\UNWISE.EXE C:\PROGRA~1\VIRTUA~2\INSTALL.LOG
    VirtualDubMOD 1.5.10.3 Fr-->"C:\Program Files\VirtualDubMOD\unins000.exe"
    VLC media player 0.9.8a-->C:\Program Files\VideoLAN\VLC\uninstall.exe
    Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
    Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
    Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
    Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
    Windows Live OneCare safety scanner-->"C:\Program Files\Windows Live Safety Center\UnInstall.exe"
    Windows Live OneCare safety scanner-->MsiExec.exe /X{FE0646A7-19D0-41B4-A2BB-2C35D644270D}
    Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
    WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
    Xvid 1.2.1 final uninstall-->"C:\Program Files\Xvid\unins000.exe"

    ======Security center information======

    AS: Windows Defender

    System event log

    Computer Name: PC-SiM
    Event Code: 33
    Message: L'ancien cliché instantané du volume C: a été abandonné pour conserver l'utilisation d'espace disque pour les clichés instantanés de volume C: sous la limite définie par l'utilisateur.
    Record Number: 43093
    Source Name: volsnap
    Time Written: 20090307200711.642700-000
    Event Type: Information
    User:

    Computer Name: PC-SiM
    Event Code: 7036
    Message: Le service Cliché instantané de volume est entré dans l'état : arrêté.
    Record Number: 43094
    Source Name: Service Control Manager
    Time Written: 20090307200839.000000-000
    Event Type: Information
    User:

    Computer Name: PC-SiM
    Event Code: 7036
    Message: Le service Fournisseur de cliché instantané de logiciel Microsoft est entré dans l'état : arrêté.
    Record Number: 43095
    Source Name: Service Control Manager
    Time Written: 20090307201139.000000-000
    Event Type: Information
    User:

    Computer Name: PC-SiM
    Event Code: 7036
    Message: Le service Windows Installer est entré dans l'état : arrêté.
    Record Number: 43096
    Source Name: Service Control Manager
    Time Written: 20090307201602.000000-000
    Event Type: Information
    User:

    Computer Name: PC-SiM
    Event Code: 7036
    Message: Le service Service de découverte automatique de Proxy Web pour les services HTTP Windows est entré dans l'état : arrêté.
    Record Number: 43097
    Source Name: Service Control Manager
    Time Written: 20090307202216.000000-000
    Event Type: Information
    User:

    Application event log

    Computer Name: PC-SiM
    Event Code: 10001
    Message: Fin de session 1 avec démarrage 2009-03-07T20:05:20.293Z.
    Record Number: 3395
    Source Name: Microsoft-Windows-RestartManager
    Time Written: 20090307200548.483100-000
    Event Type: Information
    User: PC-SiM\Simon

    Computer Name: PC-SiM
    Event Code: 11707
    Message: Product: MorphVOX Pro -- Installation completed successfully.
    Record Number: 3396
    Source Name: MsiInstaller
    Time Written: 20090307200602.000000-000
    Event Type: Information
    User: PC-SiM\Simon

    Computer Name: PC-SiM
    Event Code: 1033
    Message: Windows Installer a installé le produit. Nom du produit : MorphVOX Pro. Version du produit : 4.1.0. Langue du produit : 1033. Réussite de l’installation ou état d’erreur : 0.
    Record Number: 3397
    Source Name: MsiInstaller
    Time Written: 20090307200602.000000-000
    Event Type: Information
    User: PC-SiM\Simon

    Computer Name: PC-SiM
    Event Code: 8224
    Message: Le service VSS s’arrête, car le délai d’inactivité est dépassé.
    Record Number: 3398
    Source Name: VSS
    Time Written: 20090307200838.000000-000
    Event Type: Information
    User:

    Computer Name: PC-SiM
    Event Code: 5
    Message: Unsupported service control request (see data below)
    Record Number: 3399
    Source Name: LightScribeService
    Time Written: 20090307204811.000000-000
    Event Type: Information
    User:

    Security event log

    Computer Name: PC-SiM
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys
    Record Number: 9061
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090307204804.606100-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-SiM
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys
    Record Number: 9062
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090307204804.643100-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-SiM
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys
    Record Number: 9063
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090307204804.679100-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-SiM
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys
    Record Number: 9064
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090307204804.717100-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-SiM
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys
    Record Number: 9065
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090307204804.758100-000
    Event Type: Échec de l'audit
    User:

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
    "PROCESSOR_ARCHITECTURE"=x86
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "USERNAME"=SYSTEM
    "windir"=%SystemRoot%
    "PROCESSOR_LEVEL"=6
    "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 13, GenuineIntel
    "PROCESSOR_REVISION"=0f0d
    "NUMBER_OF_PROCESSORS"=2
    "CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
    "QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

    -----------------EOF-----------------
    7 Mars 2009 21:52:41

    Logfile of random's system information tool 1.05 (written by random/random)
    Run by Simon at 2009-03-07 21:47:44
    Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
    System drive C: has 8 GB (12%) free of 71 GB
    Total RAM: 2045 MB (46% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 21:48:06, on 07/03/2009
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18000)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\RtHDVCpl.exe
    C:\Acer\Empowering Technology\eDataSecurity\eDSLoader.exe
    C:\Windows\BR040286.exe
    C:\Acer\Empowering Technology\eAudio\eAudio.exe
    C:\Program Files\Launch Manager\LManager.exe
    C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
    C:\Program Files\Apoint2K\Apoint.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Windows\System32\rundll32.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Apoint2K\ApMsgFwd.exe
    C:\Program Files\Apoint2K\Apntex.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Users\Simon\AppData\Local\Temp\RtkBtMnt.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Users\Simon\Downloads\USDownloader135\USDownloader.exe
    C:\Program Files\CubeDesktop\CubeDesktop.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Users\Simon\Downloads\RSIT.exe
    C:\Program Files\trend micro\Simon.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ycomp/defaults/su/*http://fr.yahoo.com
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O1 - Hosts: ::1 localhost
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\system32\ActiveToolBand.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
    O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
    O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [BisonInst0402] C:\Windows\BR040286.exe
    O4 - HKLM\..\Run: [eAudio] "C:\Acer\Empowering Technology\eAudio\eAudio.exe"
    O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
    O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe"
    O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
    O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKUS\S-1-5-18\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe (User 'SYSTEM')
    O4 - HKUS\S-1-5-18\..\Run: [Gestionnaire Antidote.exe] C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe (User 'Default user')
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O13 - Gopher Prefix:
    O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
    O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
    O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
    O23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exe
    O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
    O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
    O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
    O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
    O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
    O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

    --
    End of file - 7017 bytes

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}]
    ShowBarObj Class - C:\Windows\system32\ActiveToolBand.dll [2007-04-25 299008]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-02-18 35840]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - Acer eDataSecurity Management - C:\Windows\system32\eDStoolbar.dll [2007-04-25 151552]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-07-06 4669440]
    "eDataSecurity Loader"=C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe [2007-04-25 457216]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-03-08 40048]
    "BisonInst0402"=C:\Windows\BR040286.exe [2007-05-08 53248]
    "eAudio"=C:\Acer\Empowering Technology\eAudio\eAudio.exe [2007-06-11 1286144]
    "LManager"=C:\PROGRA~1\LAUNCH~1\LManager.exe [2007-06-27 752136]
    "PlayMovie"=C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe [2007-05-24 206952]
    "IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-03-21 174872]
    "WarReg_PopUp"=C:\Acer\WR_PopUp\WarReg_PopUp.exe [2006-11-05 57344]
    "Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2007-06-06 159744]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-02-18 148888]
    "NvSvc"=C:\Windows\system32\nvsvc.dll [2007-07-25 86016]
    "NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2007-07-25 8470528]
    "NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2007-07-25 81920]
    "avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-19 1233920]
    "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
    "CubeDesktop"= []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acer Tour Reminder]
    C:\Acer\AcerTour\Reminder.exe [2007-05-22 151552]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MoeMonitor.exe]
    C:\Users\Simon\AppData\Local\Microsoft\Live Mesh\Bin\Servicing\0.9.3424.14\MoeMonitor.exe [2009-03-01 1224016]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    C:\Program Files\QuickTime\QTTask.exe [2009-01-05 413696]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2009-02-28 198160]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
    igfxdev.dll []

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "EnableUIADesktopToggle"=0

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDrives"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDrives"=
    "AllowLegacyWebView"=
    "AllowUnhashedWebView"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    ======List of files/folders created in the last 1 months======

    2009-03-07 21:47:44 ----D---- C:\rsit
    2009-03-07 21:47:44 ----D---- C:\Program Files\trend micro
    2009-03-07 21:41:48 ----D---- C:\Users\Simon\AppData\Roaming\Thinking Minds Budiling Bytes
    2009-03-07 21:41:39 ----D---- C:\Program Files\CubeDesktop
    2009-03-07 21:07:48 ----A---- C:\fftoutput.txt
    2009-03-07 21:06:01 ----D---- C:\Users\Simon\AppData\Roaming\Screaming Bee
    2009-03-07 21:05:42 ----D---- C:\Windows\LastGood
    2009-03-07 21:05:24 ----D---- C:\ProgramData\Screaming Bee
    2009-03-07 21:05:24 ----D---- C:\Program Files\Screaming Bee
    2009-03-05 22:00:28 ----D---- C:\Program Files\Windows Live Safety Center
    2009-03-05 21:29:17 ----D---- C:\ProgramData\Avira
    2009-03-05 20:32:37 ----D---- C:\_OTMoveIt
    2009-03-05 20:29:46 ----D---- C:\Windows\temp
    2009-03-05 20:29:45 ----A---- C:\ComboFix.txt
    2009-03-05 20:25:51 ----A---- C:\Windows\zip.exe
    2009-03-05 20:25:51 ----A---- C:\Windows\VFIND.exe
    2009-03-05 20:25:51 ----A---- C:\Windows\SWXCACLS.exe
    2009-03-05 20:25:51 ----A---- C:\Windows\SWSC.exe
    2009-03-05 20:25:51 ----A---- C:\Windows\SWREG.exe
    2009-03-05 20:25:51 ----A---- C:\Windows\sed.exe
    2009-03-05 20:25:51 ----A---- C:\Windows\NIRCMD.exe
    2009-03-05 20:25:51 ----A---- C:\Windows\grep.exe
    2009-03-05 20:25:51 ----A---- C:\Windows\fdsv.exe
    2009-03-05 20:25:49 ----D---- C:\Windows\ERDNT
    2009-03-05 20:25:48 ----D---- C:\lolipop
    2009-03-05 20:24:29 ----D---- C:\Qoobox
    2009-03-05 20:20:25 ----A---- C:\FindyKilkey.txt
    2009-03-05 20:18:30 ----A---- C:\FindyKill.txt
    2009-03-05 20:00:03 ----D---- C:\Program Files\FindyKill
    2009-03-05 17:55:30 ----A---- C:\Windows\system32\PressCancel.exe
    2009-03-05 17:55:29 ----D---- C:\Program Files\Atheros
    2009-03-05 17:53:24 ----D---- C:\ProgramData\Atheros
    2009-03-05 17:53:23 ----D---- C:\Users\Simon\AppData\Roaming\InstallShield
    2009-03-04 23:56:50 ----D---- C:\Program Files\VeryPDF PDF2TXT v3.2
    2009-03-03 19:34:37 ----D---- C:\Program Files\Common Files\SpellEx
    2009-03-03 19:18:43 ----D---- C:\Windows\system32\URTTEMP
    2009-03-03 18:31:41 ----D---- C:\Program Files\TI Education
    2009-03-03 18:31:41 ----D---- C:\Program Files\Common Files\TI Shared
    2009-03-02 22:52:40 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
    2009-03-01 23:33:12 ----A---- C:\Windows\system32\rdpdispd.dll
    2009-03-01 23:33:11 ----D---- C:\Program Files\Live Mesh
    2009-03-01 14:55:33 ----D---- C:\Program Files\Common Files\Steam
    2009-03-01 14:55:31 ----D---- C:\Program Files\Steam
    2009-02-28 22:22:34 ----D---- C:\Windows\Sun
    2009-02-28 22:01:31 ----D---- C:\Program Files\Common Files\xing shared
    2009-02-28 22:01:22 ----A---- C:\Windows\system32\rmoc3260.dll
    2009-02-28 22:01:09 ----A---- C:\Windows\system32\pndx5032.dll
    2009-02-28 22:01:09 ----A---- C:\Windows\system32\pndx5016.dll
    2009-02-28 22:01:07 ----D---- C:\Program Files\Real
    2009-02-28 22:01:07 ----A---- C:\Windows\system32\pncrt.dll
    2009-02-28 22:01:03 ----D---- C:\Program Files\Common Files\Real
    2009-02-28 22:01:01 ----D---- C:\Users\Simon\AppData\Roaming\Real
    2009-02-28 17:31:00 ----D---- C:\Program Files\VirtualDJ
    2009-02-27 14:50:43 ----D---- C:\Program Files\QuickTime
    2009-02-27 14:50:42 ----D---- C:\ProgramData\Apple Computer
    2009-02-27 14:50:08 ----D---- C:\ProgramData\Apple
    2009-02-27 14:50:08 ----D---- C:\Program Files\Apple Software Update
    2009-02-26 17:39:22 ----D---- C:\Program Files\Download Direct
    2009-02-26 15:40:49 ----D---- C:\Program Files\Xvid
    2009-02-26 15:40:49 ----A---- C:\Windows\system32\xvidvfw.dll
    2009-02-26 15:40:49 ----A---- C:\Windows\system32\xvidcore.dll
    2009-02-26 15:33:14 ----D---- C:\Program Files\VirtualDubMOD
    2009-02-26 15:01:44 ----A---- C:\mpeg.txt
    2009-02-26 14:53:15 ----D---- C:\Program Files\AviSynth 2.5
    2009-02-26 14:49:33 ----D---- C:\Program Files\Ripp-it_AM
    2009-02-26 14:37:23 ----D---- C:\Program Files\DAMN NFO Viewer
    2009-02-25 18:48:55 ----D---- C:\Users\Simon\AppData\Roaming\TypingMaster7
    2009-02-25 18:48:44 ----A---- C:\Windows\system32\BASSMOD.dll
    2009-02-25 18:46:33 ----RD---- C:\Program Files\TypingMaster
    2009-02-23 19:03:32 ----D---- C:\Users\Simon\AppData\Roaming\Druide
    2009-02-23 18:55:09 ----A---- C:\Windows\Antidote.ini
    2009-02-23 18:53:56 ----D---- C:\Program Files\Druide
    2009-02-22 19:37:22 ----A---- C:\Windows\system32\msshooks.dll
    2009-02-22 19:37:22 ----A---- C:\Windows\system32\msscb.dll
    2009-02-22 19:37:19 ----A---- C:\Windows\system32\thawbrkr.dll
    2009-02-22 19:37:19 ----A---- C:\Windows\system32\srchadmin.dll
    2009-02-22 19:37:19 ----A---- C:\Windows\system32\SearchFilterHost.exe
    2009-02-22 19:37:19 ----A---- C:\Windows\system32\propsys.dll
    2009-02-22 19:37:19 ----A---- C:\Windows\system32\propdefs.dll
    2009-02-22 19:37:19 ----A---- C:\Windows\system32\msstrc.dll
    2009-02-22 19:37:19 ----A---- C:\Windows\system32\mssprxy.dll
    2009-02-22 19:37:19 ----A---- C:\Windows\system32\mssitlb.dll
    2009-02-22 19:37:19 ----A---- C:\Windows\system32\msshsq.dll
    2009-02-22 19:37:19 ----A---- C:\Windows\system32\korwbrkr.dll
    2009-02-22 19:37:18 ----A---- C:\Windows\system32\xmlfilter.dll
    2009-02-22 19:37:18 ----A---- C:\Windows\system32\wsepno.dll
    2009-02-22 19:37:18 ----A---- C:\Windows\system32\SearchProtocolHost.exe
    2009-02-22 19:37:18 ----A---- C:\Windows\system32\SearchIndexer.exe
    2009-02-22 19:37:18 ----A---- C:\Windows\system32\rtffilt.dll
    2009-02-22 19:37:18 ----A---- C:\Windows\system32\offfilt.dll
    2009-02-22 19:37:18 ----A---- C:\Windows\system32\nlhtml.dll
    2009-02-22 19:37:18 ----A---- C:\Windows\system32\msscntrs.dll
    2009-02-22 19:37:18 ----A---- C:\Windows\system32\mimefilt.dll
    2009-02-22 19:37:18 ----A---- C:\Windows\system32\chtbrkr.dll
    2009-02-22 19:37:18 ----A---- C:\Windows\system32\chsbrkr.dll
    2009-02-22 19:37:17 ----A---- C:\Windows\system32\tquery.dll
    2009-02-22 19:37:17 ----A---- C:\Windows\system32\mssvp.dll
    2009-02-22 19:37:17 ----A---- C:\Windows\system32\mssrch.dll
    2009-02-22 19:37:17 ----A---- C:\Windows\system32\mssphtb.dll
    2009-02-22 19:37:17 ----A---- C:\Windows\system32\mssph.dll
    2009-02-21 12:26:53 ----A---- C:\Windows\system32\rpcrt4.dll
    2009-02-21 12:26:51 ----A---- C:\Windows\system32\pacerprf.dll
    2009-02-21 12:26:49 ----A---- C:\Windows\system32\wersvc.dll
    2009-02-21 12:26:49 ----A---- C:\Windows\system32\Faultrep.dll
    2009-02-21 12:26:48 ----A---- C:\Windows\system32\emdmgmt.dll
    2009-02-21 12:26:48 ----A---- C:\Windows\system32\dataclen.dll
    2009-02-21 12:26:48 ----A---- C:\Windows\system32\cdd.dll
    2009-02-21 12:26:46 ----A---- C:\Windows\system32\wshext.dll
    2009-02-21 12:26:46 ----A---- C:\Windows\system32\wscript.exe
    2009-02-21 12:26:46 ----A---- C:\Windows\system32\vbscript.dll
    2009-02-21 12:26:46 ----A---- C:\Windows\system32\scrrun.dll
    2009-02-21 12:26:46 ----A---- C:\Windows\system32\scrobj.dll
    2009-02-21 12:26:46 ----A---- C:\Windows\system32\jscript.dll
    2009-02-21 12:26:46 ----A---- C:\Windows\system32\cscript.exe
    2009-02-20 16:19:39 ----A---- C:\Windows\MegaManager.INI
    2009-02-20 16:14:59 ----D---- C:\Users\Simon\AppData\Roaming\Megaupload
    2009-02-20 13:44:24 ----D---- C:\PerfLogs
    2009-02-20 12:47:50 ----D---- C:\Downloads
    2009-02-20 12:28:02 ----N---- C:\Windows\system32\wbload.dll
    2009-02-20 12:28:01 ----N---- C:\Windows\system32\wbsys.dll
    2009-02-20 12:28:00 ----D---- C:\Program Files\Stardock
    2009-02-20 03:22:59 ----D---- C:\Program Files\IDoser v4
    2009-02-19 15:10:59 ----A---- C:\Windows\system32\infocardapi.dll
    2009-02-19 15:10:58 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2009-02-19 15:10:57 ----A---- C:\Windows\system32\PresentationHostProxy.dll
    2009-02-19 15:10:57 ----A---- C:\Windows\system32\icardres.dll
    2009-02-19 15:10:57 ----A---- C:\Windows\system32\icardagt.exe
    2009-02-19 15:10:54 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
    2009-02-19 15:10:50 ----A---- C:\Windows\system32\PresentationHost.exe
    2009-02-19 15:00:43 ----A---- C:\Windows\system32\dfshim.dll
    2009-02-19 15:00:39 ----A---- C:\Windows\system32\mscoree.dll
    2009-02-19 15:00:38 ----A---- C:\Windows\system32\netfxperf.dll
    2009-02-19 15:00:25 ----A---- C:\Windows\system32\mscorier.dll
    2009-02-19 15:00:20 ----A---- C:\Windows\system32\mscories.dll
    2009-02-18 22:55:50 ----D---- C:\ProgramData\eMule
    2009-02-18 22:54:31 ----D---- C:\Program Files\eMule
    2009-02-18 20:05:41 ----D---- C:\Program Files\RealVNC
    2009-02-18 16:55:35 ----A---- C:\Windows\system32\javaws.exe
    2009-02-18 16:55:35 ----A---- C:\Windows\system32\javaw.exe
    2009-02-18 16:55:35 ----A---- C:\Windows\system32\java.exe
    2009-02-18 16:55:35 ----A---- C:\Windows\system32\deploytk.dll
    2009-02-18 16:55:15 ----D---- C:\Program Files\Java
    2009-02-18 16:45:40 ----A---- C:\Windows\system32\onex.dll
    2009-02-18 16:45:39 ----A---- C:\Windows\system32\SLsvc.exe
    2009-02-18 16:45:27 ----A---- C:\Windows\system32\PSHED.DLL
    2009-02-18 16:45:26 ----A---- C:\Windows\system32\imagesp1.dll
    2009-02-18 16:45:24 ----A---- C:\Windows\system32\dfsr.exe
    2009-02-18 16:45:23 ----A---- C:\Windows\system32\pidgenx.dll
    2009-02-18 16:45:22 ----A---- C:\Windows\system32\sstpsvc.dll
    2009-02-18 16:45:22 ----A---- C:\Windows\system32\mstscax.dll
    2009-02-18 16:45:20 ----A---- C:\Windows\system32\WsmSvc.dll
    2009-02-18 16:45:20 ----A---- C:\Windows\system32\winrscmd.dll
    2009-02-18 16:45:20 ----A---- C:\Windows\system32\sysmain.dll
    2009-02-18 16:45:19 ----A---- C:\Windows\system32\vssapi.dll
    2009-02-18 16:45:19 ----A---- C:\Windows\system32\RMActivate.exe
    2009-02-18 16:45:18 ----A---- C:\Windows\system32\VSSVC.exe
    2009-02-18 16:45:17 ----A---- C:\Windows\system32\secproc.dll
    2009-02-18 16:45:17 ----A---- C:\Windows\system32\RMActivate_isv.exe
    2009-02-18 16:45:17 ----A---- C:\Windows\system32\iesetup.dll
    2009-02-18 16:45:15 ----A---- C:\Windows\system32\secproc_isv.dll
    2009-02-18 16:45:13 ----A---- C:\Windows\system32\drmv2clt.dll
    2009-02-18 16:45:12 ----A---- C:\Windows\system32\xpssvcs.dll
    2009-02-18 16:45:12 ----A---- C:\Windows\system32\blackbox.dll
    2009-02-18 16:45:10 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
    2009-02-18 16:45:10 ----A---- C:\Windows\system32\RMActivate_ssp.exe
    2009-02-18 16:45:10 ----A---- C:\Windows\system32\RacEngn.dll
    2009-02-18 16:45:10 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
    2009-02-18 16:45:09 ----A---- C:\Windows\system32\spwizimg.dll
    2009-02-18 16:45:09 ----A---- C:\Windows\system32\rdpencom.dll
    2009-02-18 16:45:08 ----A---- C:\Windows\system32\lpremove.exe
    2009-02-18 16:45:08 ----A---- C:\Windows\bfsvc.exe
    2009-02-18 16:45:07 ----A---- C:\Windows\system32\ntdll.dll
    2009-02-18 16:45:07 ----A---- C:\Windows\system32\msjet40.dll
    2009-02-18 16:45:06 ----A---- C:\Windows\system32\qmgr.dll
    2009-02-18 16:45:06 ----A---- C:\Windows\system32\lsasrv.dll
    2009-02-18 16:45:06 ----A---- C:\Windows\system32\localspl.dll
    2009-02-18 16:45:05 ----A---- C:\Windows\system32\wevtsvc.dll
    2009-02-18 16:45:05 ----A---- C:\Windows\system32\wcncsvc.dll
    2009-02-18 16:45:05 ----A---- C:\Windows\system32\kernel32.dll
    2009-02-18 16:45:05 ----A---- C:\Windows\system32\IKEEXT.DLL
    2009-02-18 16:45:04 ----A---- C:\Windows\system32\TsWpfWrp.exe
    2009-02-18 16:45:04 ----A---- C:\Windows\system32\recdisc.exe
    2009-02-18 16:45:03 ----A---- C:\Windows\system32\vds.exe
    2009-02-18 16:45:03 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
    2009-02-18 16:45:02 ----A---- C:\Windows\system32\wmp.dll
    2009-02-18 16:45:01 ----A---- C:\Windows\system32\wcnwiz.dll
    2009-02-18 16:45:01 ----A---- C:\Windows\system32\SMBHelperClass.dll
    2009-02-18 16:45:01 ----A---- C:\Windows\system32\msvbvm60.dll
    2009-02-18 16:45:01 ----A---- C:\Windows\system32\mstsc.exe
    2009-02-18 16:45:00 ----A---- C:\Windows\system32\termsrv.dll
    2009-02-18 16:45:00 ----A---- C:\Windows\system32\msdtctm.dll
    2009-02-18 16:45:00 ----A---- C:\Windows\system32\advapi32.dll
    2009-02-18 16:44:59 ----A---- C:\Windows\system32\kerberos.dll
    2009-02-18 16:44:59 ----A---- C:\Windows\system32\IMJP10K.DLL
    2009-02-18 16:44:58 ----A---- C:\Windows\system32\MSMPEG2ADEC.DLL
    2009-02-18 16:44:58 ----A---- C:\Windows\system32\mmcndmgr.dll
    2009-02-18 16:44:58 ----A---- C:\Windows\system32\CertEnroll.dll
    2009-02-18 16:44:57 ----A---- C:\Windows\system32\xolehlp.dll
    2009-02-18 16:44:57 ----A---- C:\Windows\system32\Query.dll
    2009-02-18 16:44:57 ----A---- C:\Windows\system32\msdtcprx.dll
    2009-02-18 16:44:57 ----A---- C:\Windows\system32\MPSSVC.dll
    2009-02-18 16:44:56 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
    2009-02-18 16:44:56 ----A---- C:\Windows\system32\ole32.dll
    2009-02-18 16:44:56 ----A---- C:\Windows\system32\netlogon.dll
    2009-02-18 16:44:55 ----A---- C:\Windows\system32\SSShim.dll
    2009-02-18 16:44:55 ----A---- C:\Windows\system32\nlmgp.dll
    2009-02-18 16:44:55 ----A---- C:\Windows\system32\msvcrt.dll
    2009-02-18 16:44:55 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
    2009-02-18 16:44:55 ----A---- C:\Windows\system32\DfsShlEx.dll
    2009-02-18 16:44:54 ----A---- C:\Windows\system32\shlwapi.dll
    2009-02-18 16:44:54 ----A---- C:\Windows\system32\sdclt.exe
    2009-02-18 16:44:54 ----A---- C:\Windows\system32\schedsvc.dll
    2009-02-18 16:44:54 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
    2009-02-18 16:44:54 ----A---- C:\Windows\system32\IasMigPlugin.dll
    2009-02-18 16:44:53 ----A---- C:\Windows\system32\wer.dll
    2009-02-18 16:44:53 ----A---- C:\Windows\system32\user32.dll
    2009-02-18 16:44:53 ----A---- C:\Windows\system32\milcore.dll
    2009-02-18 16:44:53 ----A---- C:\Windows\system32\clusapi.dll
    2009-02-18 16:44:52 ----A---- C:\Windows\system32\WSDApi.dll
    2009-02-18 16:44:52 ----A---- C:\Windows\system32\vdsdyn.dll
    2009-02-18 16:44:52 ----A---- C:\Windows\system32\QAGENTRT.DLL
    2009-02-18 16:44:52 ----A---- C:\Windows\system32\diagperf.dll
    2009-02-18 16:44:52 ----A---- C:\Windows\system32\d3d9.dll
    2009-02-18 16:44:51 ----A---- C:\Windows\system32\winrsmgr.dll
    2009-02-18 16:44:51 ----A---- C:\Windows\system32\mtxclu.dll
    2009-02-18 16:44:51 ----A---- C:\Windows\system32\mmc.exe
    2009-02-18 16:44:50 ----A---- C:\Windows\system32\vdsbas.dll
    2009-02-18 16:44:50 ----A---- C:\Windows\system32\swprv.dll
    2009-02-18 16:44:50 ----A---- C:\Windows\system32\SLC.dll
    2009-02-18 16:44:50 ----A---- C:\Windows\system32\msi.dll
    2009-02-18 16:44:50 ----A---- C:\Windows\system32\comctl32.dll
    2009-02-18 16:44:49 ----A---- C:\Windows\system32\MSVidCtl.dll
    2009-02-18 16:44:48 ----A---- C:\Windows\system32\XPSSHHDR.dll
    2009-02-18 16:44:48 ----A---- C:\Windows\system32\samsrv.dll
    2009-02-18 16:44:48 ----A---- C:\Windows\system32\msdtckrm.dll
    2009-02-18 16:44:48 ----A---- C:\Windows\system32\gpsvc.dll
    2009-02-18 16:44:48 ----A---- C:\Windows\system32\FWPUCLNT.DLL
    2009-02-18 16:44:47 ----A---- C:\Windows\system32\wecutil.exe
    2009-02-18 16:44:47 ----A---- C:\Windows\system32\usp10.dll
    2009-02-18 16:44:47 ----A---- C:\Windows\system32\sdengin2.dll
    2009-02-18 16:44:47 ----A---- C:\Windows\system32\sbe.dll
    2009-02-18 16:44:47 ----A---- C:\Windows\system32\mfc42u.dll
    2009-02-18 16:44:47 ----A---- C:\Windows\system32\esent.dll
    2009-02-18 16:44:46 ----A---- C:\Windows\system32\mfc42.dll
    2009-02-18 16:44:46 ----A---- C:\Windows\system32\gacinstall.dll
    2009-02-18 16:44:46 ----A---- C:\Windows\system32\comsvcs.dll
    2009-02-18 16:44:46 ----A---- C:\Windows\system32\cmipnpinstall.dll
    2009-02-18 16:44:46 ----A---- C:\Windows\system32\cmicryptinstall.dll
    2009-02-18 16:44:45 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
    2009-02-18 16:44:45 ----A---- C:\Windows\system32\mswsock.dll
    2009-02-18 16:44:45 ----A---- C:\Windows\system32\crypt32.dll
    2009-02-18 16:44:45 ----A---- C:\Windows\system32\certutil.exe
    2009-02-18 16:44:44 ----A---- C:\Windows\system32\wmdrmsdk.dll
    2009-02-18 16:44:44 ----A---- C:\Windows\system32\setupapi.dll
    2009-02-18 16:44:44 ----A---- C:\Windows\system32\oleaut32.dll
    2009-02-18 16:44:44 ----A---- C:\Windows\system32\FirewallAPI.dll
    2009-02-18 16:44:43 ----A---- C:\Windows\system32\wecsvc.dll
    2009-02-18 16:44:43 ----A---- C:\Windows\system32\sqlceqp30.dll
    2009-02-18 16:44:43 ----A---- C:\Windows\system32\sdohlp.dll
    2009-02-18 16:44:43 ----A---- C:\Windows\system32\schannel.dll
    2009-02-18 16:44:43 ----A---- C:\Windows\system32\p2psvc.dll
    2009-02-18 16:44:43 ----A---- C:\Windows\system32\msv1_0.dll
    2009-02-18 16:44:43 ----A---- C:\Windows\system32\lsm.exe
    2009-02-18 16:44:43 ----A---- C:\Windows\system32\iphlpsvc.dll
    2009-02-18 16:44:43 ----A---- C:\Windows\system32\eapp3hst.dll
    2009-02-18 16:44:43 ----A---- C:\Windows\system32\bcrypt.dll
    2009-02-18 16:44:43 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
    2009-02-18 16:44:42 ----A---- C:\Windows\system32\wmpmde.dll
    2009-02-18 16:44:42 ----A---- C:\Windows\system32\vdsutil.dll
    2009-02-18 16:44:42 ----A---- C:\Windows\system32\thumbcache.dll
    2009-02-18 16:44:42 ----A---- C:\Windows\system32\riched20.dll
    2009-02-18 16:44:42 ----A---- C:\Windows\system32\mcmde.dll
    2009-02-18 16:44:42 ----A---- C:\Windows\system32\d3d10_1.dll
    2009-02-18 16:44:42 ----A---- C:\Windows\system32\autofmt.exe
    2009-02-18 16:44:42 ----A---- C:\Windows\system32\autoconv.exe
    2009-02-18 16:44:42 ----A---- C:\Windows\system32\autochk.exe
    2009-02-18 16:44:41 ----A---- C:\Windows\system32\WinSAT.exe
    2009-02-18 16:44:41 ----A---- C:\Windows\system32\imapi2fs.dll
    2009-02-18 16:44:41 ----A---- C:\Windows\system32\browseui.dll
    2009-02-18 16:44:41 ----A---- C:\Windows\system32\authui.dll
    2009-02-18 16:44:41 ----A---- C:\Windows\system32\authfwcfg.dll
    2009-02-18 16:44:40 ----A---- C:\Windows\system32\WSDMon.dll
    2009-02-18 16:44:40 ----A---- C:\Windows\system32\wevtapi.dll
    2009-02-18 16:44:40 ----A---- C:\Windows\system32\eapphost.dll
    2009-02-18 16:44:40 ----A---- C:\Windows\system32\dmvdsitf.dll
    2009-02-18 16:44:40 ----A---- C:\Windows\system32\d3d10_1core.dll
    2009-02-18 16:44:40 ----A---- C:\Windows\system32\comuid.dll
    2009-02-18 16:44:40 ----A---- C:\Windows\system32\comdlg32.dll
    2009-02-18 16:44:39 ----A---- C:\Windows\system32\wevtfwd.dll
    2009-02-18 16:44:39 ----A---- C:\Windows\system32\untfs.dll
    2009-02-18 16:44:39 ----A---- C:\Windows\system32\uexfat.dll
    2009-02-18 16:44:39 ----A---- C:\Windows\system32\sqlcese30.dll
    2009-02-18 16:44:39 ----A---- C:\Windows\system32\rasmans.dll
    2009-02-18 16:44:39 ----A---- C:\Windows\system32\iassam.dll
    2009-02-18 16:44:39 ----A---- C:\Windows\system32\eappcfg.dll
    2009-02-18 16:44:39 ----A---- C:\Windows\system32\DfrgNtfs.exe
    2009-02-18 16:44:38 ----A---- C:\Windows\system32\wlansvc.dll
    2009-02-18 16:44:38 ----A---- C:\Windows\system32\whealogr.dll
    2009-02-18 16:44:38 ----A---- C:\Windows\system32\pcaui.dll
    2009-02-18 16:44:37 ----A---- C:\Windows\system32\dot3svc.dll
    2009-02-18 16:44:33 ----A---- C:\Windows\system32\winhttp.dll
    2009-02-18 16:44:33 ----A---- C:\Windows\system32\rdpwsx.dll
    2009-02-18 16:44:33 ----A---- C:\Windows\system32\mssha.dll
    2009-02-18 16:44:33 ----A---- C:\Windows\system32\msdrm.dll
    2009-02-18 16:44:33 ----A---- C:\Windows\system32\evr.dll
    2009-02-18 16:44:32 ----A---- C:\Windows\system32\zipfldr.dll
    2009-02-18 16:44:32 ----A---- C:\Windows\system32\WsmAuto.dll
    2009-02-18 16:44:32 ----A---- C:\Windows\system32\wmdrmdev.dll
    2009-02-18 16:44:32 ----A---- C:\Windows\system32\rpcss.dll
    2009-02-18 16:44:32 ----A---- C:\Windows\system32\rasppp.dll
    2009-02-18 16:44:32 ----A---- C:\Windows\system32\nlasvc.dll
    2009-02-18 16:44:32 ----A---- C:\Windows\system32\ncrypt.dll
    2009-02-18 16:44:32 ----A---- C:\Windows\system32\msrepl40.dll
    2009-02-18 16:44:32 ----A---- C:\Windows\system32\dfrgui.exe
    2009-02-18 16:44:32 ----A---- C:\Windows\system32\BFE.DLL
    2009-02-18 16:44:32 ----A---- C:\Windows\system32\audiosrv.dll
    2009-02-18 16:44:31 ----A---- C:\Windows\system32\WsmWmiPl.dll
    2009-02-18 16:44:31 ----A---- C:\Windows\system32\WebClnt.dll
    2009-02-18 16:44:31 ----A---- C:\Windows\system32\rastls.dll
    2009-02-18 16:44:31 ----A---- C:\Windows\system32\printui.dll
    2009-02-18 16:44:31 ----A---- C:\Windows\system32\objsel.dll
    2009-02-18 16:44:31 ----A---- C:\Windows\system32\dhcpcsvc6.dll
    2009-02-18 16:44:31 ----A---- C:\Windows\system32\ddraw.dll
    2009-02-18 16:44:30 ----A---- C:\Windows\system32\w32time.dll
    2009-02-18 16:44:30 ----A---- C:\Windows\system32\themecpl.dll
    2009-02-18 16:44:30 ----A---- C:\Windows\system32\sqlsrv32.dll
    2009-02-18 16:44:30 ----A---- C:\Windows\system32\QAGENT.DLL
    2009-02-18 16:44:30 ----A---- C:\Windows\system32\iasnap.dll
    2009-02-18 16:44:30 ----A---- C:\Windows\system32\dbghelp.dll
    2009-02-18 16:44:29 ----A---- C:\Windows\system32\wmdrmnet.dll
    2009-02-18 16:44:29 ----A---- C:\Windows\system32\WerFaultSecure.exe
    2009-02-18 16:44:29 ----A---- C:\Windows\system32\spoolss.dll
    2009-02-18 16:44:29 ----A---- C:\Windows\system32\ncryptui.dll
    2009-02-18 16:44:29 ----A---- C:\Windows\system32\iprtrmgr.dll
    2009-02-18 16:44:29 ----A---- C:\Windows\system32\icm32.dll
    2009-02-18 16:44:29 ----A---- C:\Windows\system32\azroles.dll
    2009-02-18 16:44:28 ----A---- C:\Windows\system32\wlangpui.dll
    2009-02-18 16:44:28 ----A---- C:\Windows\system32\winsrv.dll
    2009-02-18 16:44:28 ----A---- C:\Windows\system32\taskschd.dll
    2009-02-18 16:44:28 ----A---- C:\Windows\system32\scksp.dll
    2009-02-18 16:44:28 ----A---- C:\Windows\system32\mstlsapi.dll
    2009-02-18 16:44:28 ----A---- C:\Windows\system32\msctf.dll
    2009-02-18 16:44:28 ----A---- C:\Windows\system32\bcdedit.exe
    2009-02-18 16:44:28 ----A---- C:\Windows\system32\basecsp.dll
    2009-02-18 16:44:28 ----A---- C:\Windows\system32\AudioEng.dll
    2009-02-18 16:44:27 ----A---- C:\Windows\system32\winsta.dll
    2009-02-18 16:44:27 ----A---- C:\Windows\system32\rsaenh.dll
    2009-02-18 16:44:27 ----A---- C:\Windows\system32\netprofm.dll
    2009-02-18 16:44:27 ----A---- C:\Windows\system32\netcfgx.dll
    2009-02-18 16:44:27 ----A---- C:\Windows\system32\hcrstco.dll
    2009-02-18 16:44:27 ----A---- C:\Windows\system32\dbgeng.dll
    2009-02-18 16:44:26 ----A---- C:\Windows\system32\winlogon.exe
    2009-02-18 16:44:26 ----A---- C:\Windows\system32\wercon.exe
    2009-02-18 16:44:26 ----A---- C:\Windows\system32\taskcomp.dll
    2009-02-18 16:44:26 ----A---- C:\Windows\system32\lpksetup.exe
    2009-02-18 16:44:26 ----A---- C:\Windows\system32\cdosys.dll
    2009-02-18 16:44:25 ----A---- C:\Windows\system32\wlansec.dll
    2009-02-18 16:44:25 ----A---- C:\Windows\system32\msdtcuiu.dll
    2009-02-18 16:44:25 ----A---- C:\Windows\system32\mprddm.dll
    2009-02-18 16:44:25 ----A---- C:\Windows\system32\iasrad.dll
    2009-02-18 16:44:25 ----A---- C:\Windows\system32\certcli.dll
    2009-02-18 16:44:25 ----A---- C:\Windows\system32\AUDIOKSE.dll
    2009-02-18 16:44:25 ----A---- C:\Windows\system32\apds.dll
    2009-02-18 16:44:24 ----A---- C:\Windows\system32\Wldap32.dll
    2009-02-18 16:44:24 ----A---- C:\Windows\system32\uDWM.dll
    2009-02-18 16:44:24 ----A---- C:\Windows\system32\tsgqec.dll
    2009-02-18 16:44:24 ----A---- C:\Windows\system32\shdocvw.dll
    2009-02-18 16:44:24 ----A---- C:\Windows\system32\eapsvc.dll
    2009-02-18 16:44:24 ----A---- C:\Windows\system32\certmgr.dll
    2009-02-18 16:44:24 ----A---- C:\Windows\system32\bcdsrv.dll
    2009-02-18 16:44:24 ----A---- C:\Windows\system32\aaclient.dll
    2009-02-18 16:44:23 ----A---- C:\Windows\system32\WMVDECOD.DLL
    2009-02-18 16:44:23 ----A---- C:\Windows\system32\umpnpmgr.dll
    2009-02-18 16:44:23 ----A---- C:\Windows\system32\pla.dll
    2009-02-18 16:44:23 ----A---- C:\Windows\system32\msidcrl30.dll
    2009-02-18 16:44:23 ----A---- C:\Windows\system32\dnsapi.dll
    2009-02-18 16:44:22 ----A---- C:\Windows\system32\netshell.dll
    2009-02-18 16:44:22 ----A---- C:\Windows\system32\dxgi.dll
    2009-02-18 16:44:22 ----A---- C:\Windows\system32\dot3gpui.dll
    2009-02-18 16:44:21 ----A---- C:\Windows\system32\wmicmiplugin.dll
    2009-02-18 16:44:21 ----A---- C:\Windows\system32\shsvcs.dll
    2009-02-18 16:44:21 ----A---- C:\Windows\system32\ntprint.dll
    2009-02-18 16:44:21 ----A---- C:\Windows\system32\cryptnet.dll
    2009-02-18 16:44:21 ----A---- C:\Windows\system32\comsnap.dll
    2009-02-18 16:44:20 ----A---- C:\Windows\system32\wscsvc.dll
    2009-02-18 16:44:20 ----A---- C:\Windows\system32\winmm.dll
    2009-02-18 16:44:20 ----A---- C:\Windows\system32\synceng.dll
    2009-02-18 16:44:20 ----A---- C:\Windows\system32\services.exe
    2009-02-18 16:44:20 ----A---- C:\Windows\system32\pnidui.dll
    2009-02-18 16:44:20 ----A---- C:\Windows\system32\MMDevAPI.dll
    2009-02-18 16:44:20 ----A---- C:\Windows\system32\cmifw.dll
    2009-02-18 16:44:19 ----A---- C:\Windows\system32\wscisvif.dll
    2009-02-18 16:44:19 ----A---- C:\Windows\system32\taskeng.exe
    2009-02-18 16:44:19 ----A---- C:\Windows\system32\msjtes40.dll
    2009-02-18 16:44:19 ----A---- C:\Windows\system32\msconfig.exe
    2009-02-18 16:44:19 ----A---- C:\Windows\system32\iassdo.dll
    2009-02-18 16:44:19 ----A---- C:\Windows\system32\cipher.exe
    2009-02-18 16:44:18 ----A---- C:\Windows\system32\WMVSDECD.DLL
    2009-02-18 16:44:18 ----A---- C:\Windows\system32\uxtheme.dll
    2009-02-18 16:44:18 ----A---- C:\Windows\system32\tdh.dll
    2009-02-18 16:44:18 ----A---- C:\Windows\system32\SessEnv.dll
    2009-02-18 16:44:18 ----A---- C:\Windows\system32\rasapi32.dll
    2009-02-18 16:44:18 ----A---- C:\Windows\system32\imapi2.dll
    2009-02-18 16:44:18 ----A---- C:\Windows\system32\dot3api.dll
    2009-02-18 16:44:18 ----A---- C:\Windows\system32\dmdskmgr.dll
    2009-02-18 16:44:17 ----A---- C:\Windows\system32\wlanmsm.dll
    2009-02-18 16:44:17 ----A---- C:\Windows\system32\wkssvc.dll
    2009-02-18 16:44:17 ----A---- C:\Windows\system32\wevtutil.exe
    2009-02-18 16:44:17 ----A---- C:\Windows\system32\srvsvc.dll
    2009-02-18 16:44:17 ----A---- C:\Windows\system32\qdvd.dll
    2009-02-18 16:44:17 ----A---- C:\Windows\system32\msscp.dll
    2009-02-18 16:44:17 ----A---- C:\Windows\system32\loadperf.dll
    2009-02-18 16:44:17 ----A---- C:\Windows\system32\cmd.exe
    2009-02-18 16:44:17 ----A---- C:\Windows\system32\cbsra.exe
    2009-02-18 16:44:17 ----A---- C:\Windows\system32\AuthFWSnapin.dll
    2009-02-18 16:44:16 ----A---- C:\Windows\system32\WUDFx.dll
    2009-02-18 16:44:16 ----A---- C:\Windows\system32\wlancfg.dll
    2009-02-18 16:44:16 ----A---- C:\Windows\system32\wlanapi.dll
    2009-02-18 16:44:16 ----A---- C:\Windows\system32\rpchttp.dll
    2009-02-18 16:44:16 ----A---- C:\Windows\system32\rdpdd.dll
    2009-02-18 16:44:16 ----A---- C:\Windows\system32\mshtmled.dll
    2009-02-18 16:44:16 ----A---- C:\Windows\system32\msdtcVSp1res.dll
    2009-02-18 16:44:16 ----A---- C:\Windows\system32\localsec.dll
    2009-02-18 16:44:16 ----A---- C:\Windows\system32\fontext.dll
    2009-02-18 16:44:16 ----A---- C:\Windows\system32\diskpart.exe
    2009-02-18 16:44:16 ----A---- C:\Windows\system32\comres.dll
    2009-02-18 16:44:15 ----A---- C:\Windows\system32\wsqmcons.exe
    2009-02-18 16:44:15 ----A---- C:\Windows\system32\WMADMOD.DLL
    2009-02-18 16:44:15 ----A---- C:\Windows\system32\wlanpref.dll
    2009-02-18 16:44:15 ----A---- C:\Windows\system32\WinSATAPI.dll
    2009-02-18 16:44:15 ----A---- C:\Windows\system32\RDPENCDD.dll
    2009-02-18 16:44:15 ----A---- C:\Windows\system32\profprov.dll
    2009-02-18 16:44:15 ----A---- C:\Windows\system32\NAPMONTR.DLL
    2009-02-18 16:44:15 ----A---- C:\Windows\system32\hnetcfg.dll
    2009-02-18 16:44:15 ----A---- C:\Windows\system32\filemgmt.dll
    2009-02-18 16:44:15 ----A---- C:\Windows\system32\dsound.dll
    2009-02-18 16:44:15 ----A---- C:\Windows\system32\avifil32.dll
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\wsecedit.dll
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\WMSPDMOD.DLL
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\wininit.exe
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\tracerpt.exe
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\spp.dll
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\SLCommDlg.dll
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\QSHVHOST.DLL
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\P2PGraph.dll
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\MuiUnattend.exe
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\iassvcs.dll
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\gpresult.exe
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\dwmredir.dll
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\dwm.exe
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\dnsrslvr.dll
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\dhcpcsvc.dll
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
    2009-02-18 16:44:14 ----A---- C:\Windows\system32\apphelp.dll
    2009-02-18 16:44:13 ----A---- C:\Windows\system32\rasdlg.dll
    2009-02-18 16:44:13 ----A---- C:\Windows\system32\mcbuilder.exe
    2009-02-18 16:44:13 ----A---- C:\Windows\system32\iashost.exe
    2009-02-18 16:44:13 ----A---- C:\Windows\system32\azroleui.dll
    2009-02-18 16:44:13 ----A---- C:\Windows\HelpPane.exe
    2009-02-18 16:44:12 ----A---- C:\Windows\system32\wecapi.dll
    2009-02-18 16:44:12 ----A---- C:\Windows\system32\unbcl.dll
    2009-02-18 16:44:12 ----A---- C:\Windows\system32\tcpmon.dll
    2009-02-18 16:44:12 ----A---- C:\Windows\system32\srrstr.dll
    2009-02-18 16:44:12 ----A---- C:\Windows\system32\spwizeng.dll
    2009-02-18 16:44:12 ----A---- C:\Windows\system32\SLUI.exe
    2009-02-18 16:44:12 ----A---- C:\Windows\system32\shrink.dll
    2009-02-18 16:44:12 ----A---- C:\Windows\system32\rasmontr.dll
    2009-02-18 16:44:12 ----A---- C:\Windows\system32\msra.exe
    2009-02-18 16:44:12 ----A---- C:\Windows\system32\lltdsvc.dll
    2009-02-18 16:44:12 ----A---- C:\Windows\system32\IPHLPAPI.DLL
    2009-02-18 16:44:12 ----A---- C:\Windows\system32\brcpl.dll
    2009-02-18 16:44:11 ----A---- C:\Windows\system32\WMPEncEn.dll
    2009-02-18 16:44:11 ----A---- C:\Windows\system32\raschap.dll
    2009-02-18 16:44:11 ----A---- C:\Windows\system32\oleacc.dll
    2009-02-18 16:44:11 ----A---- C:\Windows\system32\msdri.dll
    2009-02-18 16:44:11 ----A---- C:\Windows\system32\iashlpr.dll
    2009-02-18 16:44:11 ----A---- C:\Windows\system32\gpedit.dll
    2009-02-18 16:44:10 ----A---- C:\Windows\system32\vsstrace.dll
    2009-02-18 16:44:10 ----A---- C:\Windows\system32\regsvc.dll
    2009-02-18 16:44:10 ----A---- C:\Windows\system32\PerfCenterCPL.dll
    2009-02-18 16:44:10 ----A---- C:\Windows\system32\ntvdm.exe
    2009-02-18 16:44:10 ----A---- C:\Windows\system32\ipsmsnap.dll
    2009-02-18 16:44:10 ----A---- C:\Windows\system32\framedynos.dll
    2009-02-18 16:44:10 ----A---- C:\Windows\system32\fdWSD.dll
    2009-02-18 16:44:10 ----A---- C:\Windows\system32\advpack.dll
    2009-02-18 16:44:09 ----A---- C:\Windows\system32\wpdshext.dll
    2009-02-18 16:44:09 ----A---- C:\Windows\system32\wdc.dll
    2009-02-18 16:44:09 ----A---- C:\Windows\system32\Storprop.dll
    2009-02-18 16:44:09 ----A---- C:\Windows\system32\ntlanman.dll
    2009-02-18 16:44:09 ----A---- C:\Windows\system32\NetProjW.dll
    2009-02-18 16:44:09 ----A---- C:\Windows\system32\netman.dll
    2009-02-18 16:44:09 ----A---- C:\Windows\system32\l2nacp.dll
    2009-02-18 16:44:09 ----A---- C:\Windows\system32\iedkcs32.dll
    2009-02-18 16:44:09 ----A---- C:\Windows\system32\ieapfltr.dll
    2009-02-18 16:44:09 ----A---- C:\Windows\system32\framedyn.dll
    2009-02-18 16:44:09 ----A---- C:\Windows\system32\dssenh.dll
    2009-02-18 16:44:08 ----A---- C:\Windows\system32\WsmProv.dll
    2009-02-18 16:44:08 ----A---- C:\Windows\system32\WlanMM.dll
    2009-02-18 16:44:08 ----A---- C:\Windows\system32\wlanhlp.dll
    2009-02-18 16:44:08 ----A---- C:\Windows\system32\WLanConn.dll
    2009-02-18 16:44:08 ----A---- C:\Windows\system32\tcpipcfg.dll
    2009-02-18 16:44:08 ----A---- C:\Windows\system32\sxs.dll
    2009-02-18 16:44:08 ----A---- C:\Windows\system32\profsvc.dll
    2009-02-18 16:44:08 ----A---- C:\Windows\system32\ncsi.dll
    2009-02-18 16:44:08 ----A---- C:\Windows\system32\KMSVC.DLL
    2009-02-18 16:44:08 ----A---- C:\Windows\system32\IPBusEnum.dll
    2009-02-18 16:44:08 ----A---- C:\Windows\system32\certreq.exe
    2009-02-18 16:44:08 ----A---- C:\Windows\system32\adsnt.dll
    2009-02-18 16:44:07 ----A---- C:\Windows\system32\wusa.exe
    2009-02-18 16:44:07 ----A---- C:\Windows\system32\WUDFHost.exe
    2009-02-18 16:44:07 ----A---- C:\Windows\system32\WerFault.exe
    2009-02-18 16:44:07 ----A---- C:\Windows\system32\VAN.dll
    2009-02-18 16:44:07 ----A---- C:\Windows\system32\userenv.dll
    2009-02-18 16:44:07 ----A---- C:\Windows\system32\umb.dll
    2009-02-18 16:44:07 ----A---- C:\Windows\system32\puiobj.dll
    2009-02-18 16:44:07 ----A---- C:\Windows\system32\ie4uinit.exe
    2009-02-18 16:44:07 ----A---- C:\Windows\system32\fundisc.dll
    2009-02-18 16:44:07 ----A---- C:\Windows\system32\cryptui.dll
    2009-02-18 16:44:07 ----A---- C:\Windows\system32\catsrvut.dll
    2009-02-18 16:44:06 ----A---- C:\Windows\system32\photowiz.dll
    2009-02-18 16:44:06 ----A---- C:\Windows\system32\netid.dll
    2009-02-18 16:44:06 ----A---- C:\Windows\system32\netcenter.dll
    2009-02-18 16:44:06 ----A---- C:\Windows\system32\MdSched.exe
    2009-02-18 16:44:06 ----A---- C:\Windows\system32\InkEd.dll
    2009-02-18 16:44:06 ----A---- C:\Windows\system32\dps.dll
    2009-02-18 16:44:05 ----A---- C:\Windows\system32\ws2_32.dll
    2009-02-18 16:44:05 ----A---- C:\Windows\system32\WinSCard.dll
    2009-02-18 16:44:05 ----A---- C:\Windows\system32\winrs.exe
    2009-02-18 16:44:05 ----A---- C:\Windows\system32\spbcd.dll
    2009-02-18 16:44:05 ----A---- C:\Windows\system32\secur32.dll
    2009-02-18 16:44:05 ----A---- C:\Windows\system32\prnntfy.dll
    2009-02-18 16:44:05 ----A---- C:\Windows\system32\odbcjt32.dll
    2009-02-18 16:44:05 ----A---- C:\Windows\system32\ntdsapi.dll
    2009-02-18 16:44:05 ----A---- C:\Windows\system32\NAPSTAT.EXE
    2009-02-18 16:44:05 ----A---- C:\Windows\system32\msinfo32.exe
    2009-02-18 16:44:05 ----A---- C:\Windows\system32\ipsecsnp.dll
    2009-02-18 16:44:04 ----A---- C:\Windows\system32\schtasks.exe
    2009-02-18 16:44:04 ----A---- C:\Windows\system32\RelMon.dll
    2009-02-18 16:44:04 ----A---- C:\Windows\system32\pdh.dll
    2009-02-18 16:44:04 ----A---- C:\Windows\system32\netdiagfx.dll
    2009-02-18 16:44:04 ----A---- C:\Windows\system32\mblctr.exe
    2009-02-18 16:44:04 ----A---- C:\Windows\system32\iasacct.dll
    2009-02-18 16:44:04 ----A---- C:\Windows\system32\dmdlgs.dll
    2009-02-18 16:44:04 ----A---- C:\Windows\system32\dhcpsapi.dll
    2009-02-18 16:44:04 ----A---- C:\Windows\system32\cryptsvc.dll
    2009-02-18 16:44:04 ----A---- C:\Windows\system32\catsrv.dll
    2009-02-18 16:44:04 ----A---- C:\Windows\system32\activeds.dll
    2009-02-18 16:44:03 ----A---- C:\Windows\system32\wvc.dll
    2009-02-18 16:44:03 ----A---- C:\Windows\system32\winrm.vbs
    2009-02-18 16:44:03 ----A---- C:\Windows\system32\TSpkg.dll
    2009-02-18 16:44:03 ----A---- C:\Windows\system32\qwave.dll
    2009-02-18 16:44:03 ----A---- C:\Windows\system32\netcorehc.dll
    2009-02-18 16:44:03 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
    2009-02-18 16:44:03 ----A---- C:\Windows\system32\FirewallControlPanel.exe
    2009-02-18 16:44:03 ----A---- C:\Windows\system32\fdWCN.dll
    2009-02-18 16:44:03 ----A---- C:\Windows\system32\dot3msm.dll
    2009-02-18 16:44:03 ----A---- C:\Windows\system32\dot3cfg.dll
    2009-02-18 16:44:03 ----A---- C:\Windows\system32\dfrgfat.exe
    2009-02-18 16:44:03 ----A---- C:\Windows\system32\AudioSes.dll
    2009-02-18 16:44:02 ----A---- C:\Windows\system32\wscntfy.dll
    2009-02-18 16:44:02 ----A---- C:\Windows\system32\wow32.dll
    2009-02-18 16:44:02 ----A---- C:\Windows\system32\shsetup.dll
    2009-02-18 16:44:02 ----A---- C:\Windows\system32\rastapi.dll
    2009-02-18 16:44:02 ----A---- C:\Windows\system32\ntshrui.dll
    2009-02-18 16:44:02 ----A---- C:\Windows\system32\NAPHLPR.DLL
    2009-02-18 16:44:02 ----A---- C:\Windows\system32\msdt.dll
    2009-02-18 16:44:02 ----A---- C:\Windows\system32\msacm32.dll
    2009-02-18 16:44:02 ----A---- C:\Windows\system32\ifmon.dll
    2009-02-18 16:44:02 ----A---- C:\Windows\system32\els.dll
    2009-02-18 16:44:02 ----A---- C:\Windows\system32\clbcatq.dll
    2009-02-18 16:44:02 ----A---- C:\Windows\system32\adsldp.dll
    2009-02-18 16:44:01 ----A---- C:\Windows\system32\stobject.dll
    2009-02-18 16:44:01 ----A---- C:\Windows\system32\sdrsvc.dll
    2009-02-18 16:44:01 ----A---- C:\Windows\system32\QUTIL.DLL
    2009-02-18 16:44:01 ----A---- C:\Windows\system32\net1.exe
    2009-02-18 16:44:01 ----A---- C:\Windows\system32\ipnathlp.dll
    2009-02-18 16:44:01 ----A---- C:\Windows\system32\iasrecst.dll
    2009-02-18 16:44:01 ----A---- C:\Windows\system32\iasdatastore.dll
    2009-02-18 16:44:01 ----A---- C:\Windows\system32\fdSSDP.dll
    2009-02-18 16:44:00 ----A---- C:\Windows\system32\wlgpclnt.dll
    2009-02-18 16:44:00 ----A---- C:\Windows\system32\wlanui.dll
    2009-02-18 16:44:00 ----A---- C:\Windows\system32\upnphost.dll
    2009-02-18 16:44:00 ----A---- C:\Windows\system32\systemcpl.dll
    2009-02-18 16:44:00 ----A---- C:\Windows\system32\smss.exe
    2009-02-18 16:44:00 ----A---- C:\Windows\system32\rasman.dll
    2009-02-18 16:44:00 ----A---- C:\Windows\system32\nci.dll
    2009-02-18 16:44:00 ----A---- C:\Windows\system32\mprmsg.dll
    2009-02-18 16:44:00 ----A---- C:\Windows\system32\dsprop.dll
    2009-02-18 16:44:00 ----A---- C:\Windows\system32\Defrag.exe
    2009-02-18 16:44:00 ----A---- C:\Windows\system32\adsldpc.dll
    2009-02-18 16:44:00 ----A---- C:\Windows\system32\ActiveContentWizard.dll
    2009-02-18 16:43:59 ----A---- C:\Windows\system32\t2embed.dll
    2009-02-18 16:43:59 ----A---- C:\Windows\system32\rascfg.dll
    2009-02-18 16:43:59 ----A---- C:\Windows\system32\PresentationSettings.exe
    2009-02-18 16:43:59 ----A---- C:\Windows\system32\P2P.dll
    2009-02-18 16:43:59 ----A---- C:\Windows\system32\oleprn.dll
    2009-02-18 16:43:59 ----A---- C:\Windows\system32\msftedit.dll
    2009-02-18 16:43:59 ----A---- C:\Windows\system32\MSAC3ENC.DLL
    2009-02-18 16:43:59 ----A---- C:\Windows\system32\loghours.dll
    2009-02-18 16:43:59 ----A---- C:\Windows\system32\L2SecHC.dll
    2009-02-18 16:43:59 ----A---- C:\Windows\system32\fde.dll
    2009-02-18 16:43:59 ----A---- C:\Windows\system32\CompatUI.dll
    2009-02-18 16:43:58 ----A---- C:\Windows\system32\Wpc.dll
    2009-02-18 16:43:58 ----A---- C:\Windows\system32\wdigest.dll
    2009-02-18 16:43:58 ----A---- C:\Windows\system32\setupcl.exe
    2009-02-18 16:43:58 ----A---- C:\Windows\system32\msutb.dll
    2009-02-18 16:43:58 ----A---- C:\Windows\system32\mprdim.dll
    2009-02-18 16:43:58 ----A---- C:\Windows\system32\MigAutoPlay.exe
    2009-02-18 16:43:58 ----A---- C:\Windows\system32\gpapi.dll
    2009-02-18 16:43:58 ----A---- C:\Windows\system32\dxdiag.exe
    2009-02-18 16:43:58 ----A---- C:\Windows\system32\DFDWiz.exe
    2009-02-18 16:43:58 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
    2009-02-18 16:43:57 ----A---- C:\Windows\system32\wiaservc.dll
    2009-02-18 16:43:57 ----A---- C:\Windows\system32\scansetting.dll
    2009-02-18 16:43:57 ----A---- C:\Windows\system32\rtm.dll
    2009-02-18 16:43:57 ----A---- C:\Windows\system32\NAPCRYPT.DLL
    2009-02-18 16:43:57 ----A---- C:\Windows\system32\devmgr.dll
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\wscapi.dll
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\WinFXDocObj.exe
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\wdi.dll
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\usbmon.dll
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\SyncCenter.dll
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\spoolsv.exe
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\mswmdm.dll
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\msihnd.dll
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\kdusb.dll
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\imagehlp.dll
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\ifsutil.dll
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\dimsroam.dll
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\CertEnrollUI.dll
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\BOOTVID.DLL
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\audiodg.exe
    2009-02-18 16:43:56 ----A---- C:\Windows\system32\actxprxy.dll
    2009-02-18 16:43:55 ----A---- C:\Windows\system32\wlandlg.dll
    2009-02-18 16:43:55 ----A---- C:\Windows\system32\vssadmin.exe
    2009-02-18 16:43:55 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
    2009-02-18 16:43:55 ----A---- C:\Windows\system32\msls31.dll
    2009-02-18 16:43:52 ----A---- C:\Windows\system32\uudf.dll
    2009-02-18 16:43:52 ----A---- C:\Windows\system32\sud.dll
    2009-02-18 16:43:52 ----A---- C:\Windows\system32\scecli.dll
    2009-02-18 16:43:52 ----A---- C:\Windows\system32\SCardSvr.dll
    2009-02-18 16:43:52 ----A---- C:\Windows\system32\regapi.dll
    2009-02-18 16:43:52 ----A---- C:\Windows\system32\newdev.dll
    2009-02-18 16:43:52 ----A---- C:\Windows\system32\mycomput.dll
    2009-02-18 16:43:52 ----A---- C:\Windows\system32\mstask.dll
    2009-02-18 16:43:52 ----A---- C:\Windows\system32\mspaint.exe
    2009-02-18 16:43:52 ----A---- C:\Windows\system32\kdcom.dll
    2009-02-18 16:43:51 ----A---- C:\Windows\system32\termmgr.dll
    2009-02-18 16:43:51 ----A---- C:\Windows\system32\tapisrv.dll
    2009-02-18 16:43:51 ----A---- C:\Windows\system32\ssdpsrv.dll
    2009-02-18 16:43:51 ----A---- C:\Windows\system32\SLUINotify.dll
    2009-02-18 16:43:51 ----A---- C:\Windows\system32\samlib.dll
    2009-02-18 16:43:51 ----A---- C:\Windows\system32\Robocopy.exe
    2009-02-18 16:43:51 ----A---- C:\Windows\system32\puiapi.dll
    2009-02-18 16:43:51 ----A---- C:\Windows\system32\mtxoci.dll
    2009-02-18 16:43:51 ----A---- C:\Windows\system32\input.dll
    2009-02-18 16:43:51 ----A---- C:\Windows\system32\inetpp.dll
    2009-02-18 16:43:51 ----A---- C:\Windows\system32\duser.dll
    2009-02-18 16:43:51 ----A---- C:\Windows\system32\cic.dll
    2009-02-18 16:43:51 ----A---- C:\Windows\system32\AzSqlExt.dll
    2009-02-18 16:43:51 ----A---- C:\Windows\system32\adtschema.dll
    2009-02-18 16:43:50 ----A---- C:\Windows\system32\WUDFPlatform.dll
    2009-02-18 16:43:50 ----A---- C:\Windows\system32\wisptis.exe
    2009-02-18 16:43:50 ----A---- C:\Windows\system32\webcheck.dll
    2009-02-18 16:43:50 ----A---- C:\Windows\system32\verifier.exe
    2009-02-18 16:43:50 ----A---- C:\Windows\system32\sdshext.dll
    2009-02-18 16:43:50 ----A---- C:\Windows\system32\netiohlp.dll
    2009-02-18 16:43:50 ----A---- C:\Windows\system32\msdtclog.dll
    2009-02-18 16:43:50 ----A---- C:\Windows\system32\msdt.exe
    2009-02-18 16:43:50 ----A---- C:\Windows\system32\iasads.dll
    2009-02-18 16:43:50 ----A---- C:\Windows\system32\d3d8.dll
    2009-02-18 16:43:50 ----A---- C:\Windows\system32\cscapi.dll
    2009-02-18 16:43:50 ----A---- C:\Windows\system32\cmdial32.dll
    2009-02-18 16:43:50 ----A---- C:\Windows\system32\authz.dll
    2009-02-18 16:43:49 ----A---- C:\Windows\system32\wpcsvc.dll
    2009-02-18 16:43:49 ----A---- C:\Windows\system32\wintrust.dll
    2009-02-18 16:43:49 ----A---- C:\Windows\system32\themeui.dll
    2009-02-18 16:43:49 ----A---- C:\Windows\system32\slcinst.dll
    2009-02-18 16:43:49 ----A---- C:\Windows\system32\oledlg.dll
    2009-02-18 16:43:49 ----A---- C:\Windows\system32\dxtmsft.dll
    2009-02-18 16:43:49 ----A---- C:\Windows\system32\clfsw32.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\wpd_ci.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\wpccpl.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\WMPhoto.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\vdsldr.exe
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\SnippingTool.exe
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\SndVol.exe
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\slmgr.vbs
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\rasqec.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\rasgcw.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\pnpsetup.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\ntmarta.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\nslookup.exe
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\ncobjapi.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\msrd3x40.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\msaatext.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\mpr.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\mmcbase.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\mlang.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\icfupgd.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\icardie.dll
    2009-02-18 16:43:48 ----A---- C:\Windows\system32\diskraid.exe
    2009-02-18 16:43:47 ----A---- C:\Windows\system32\wtsapi32.dll
    2009-02-18 16:43:47 ----A---- C:\Windows\system32\unlodctr.exe
    2009-02-18 16:43:47 ----A---- C:\Windows\system32\ulib.dll
    2009-02-18 16:43:47 ----A---- C:\Windows\system32\syssetup.dll
    2009-02-18 16:43:47 ----A---- C:\Windows\system32\sethc.exe
    2009-02-18 16:43:47 ----A---- C:\Windows\system32\pnpui.dll
    2009-02-18 16:43:47 ----A---- C:\Windows\system32\oobefldr.dll
    2009-02-18 16:43:47 ----A---- C:\Windows\system32\mscms.dll
    2009-02-18 16:43:47 ----A---- C:\Windows\system32\lodctr.exe
    2009-02-18 16:43:47 ----A---- C:\Windows\system32\iaspolcy.dll
    2009-02-18 16:43:47 ----A---- C:\Windows\system32\fontsub.dll
    2009-02-18 16:43:47 ----A---- C:\Windows\system32\extmgr.dll
    2009-02-18 16:43:47 ----A---- C:\Windows\system32\dxdiagn.dll
    2009-02-18 16:43:47 ----A---- C:\Windows\system32\cabinet.dll
    2009-02-18 16:43:47 ----A---- C:\Windows\system32\accessibilitycpl.dll
    2009-02-18 16:43:46 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
    2009-02-18 16:43:46 ----A---- C:\Windows\system32\Utilman.exe
    2009-02-18 16:43:46 ----A---- C:\Windows\system32\unattend.dll
    2009-02-18 16:43:46 ----A---- C:\Windows\system32\trkwks.dll
    2009-02-18 16:43:46 ----A---- C:\Windows\system32\scesrv.dll
    2009-02-18 16:43:46 ----A---- C:\Windows\system32\Mcx2Svc.dll
    2009-02-18 16:43:46 ----A---- C:\Windows\system32\lnkstub.exe
    2009-02-18 16:43:45 ----A---- C:\Windows\system32\wpcao.dll
    2009-02-18 16:43:45 ----A---- C:\Windows\system32\wermgr.exe
    2009-02-18 16:43:45 ----A---- C:\Windows\system32\ogldrv.dll
    2009-02-18 16:43:45 ----A---- C:\Windows\system32\occache.dll
    2009-02-18 16:43:45 ----A---- C:\Windows\system32\dfdts.dll
    2009-02-18 16:43:45 ----A---- C:\Windows\system32\cabview.dll
    2009-02-18 16:43:45 ----A---- C:\Windows\system32\bthci.dll
    2009-02-18 16:43:44 ----A---- C:\Windows\system32\sdspres.dll
    2009-02-18 16:43:44 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
    2009-02-18 16:43:44 ----A---- C:\Windows\system32\p2pcollab.dll
    2009-02-18 16:43:44 ----A---- C:\Windows\system32\msnetobj.dll
    2009-02-18 16:43:44 ----A---- C:\Windows\system32\iepeers.dll
    2009-02-18 16:43:44 ----A---- C:\Windows\system32\ieaksie.dll
    2009-02-18 16:43:44 ----A---- C:\Windows\system32\eappgnui.dll
    2009-02-18 16:43:44 ----A---- C:\Windows\system32\basesrv.dll
    2009-02-18 16:43:42 ----A---- C:\Windows\system32\drvinst.exe
    2009-02-18 16:43:42 ----A---- C:\Windows\system32\dispdiag.exe
    2009-02-18 16:43:42 ----A---- C:\Windows\system32\DHCPQEC.DLL
    2009-02-18 16:43:40 ----A---- C:\Windows\system32\mmcss.dll
    2009-02-18 16:43:40 ----A---- C:\Windows\system32\dsquery.dll
    2009-02-18 16:43:39 ----A---- C:\Windows\system32\verifier.dll
    2009-02-18 16:43:39 ----A---- C:\Windows\system32\RstrtMgr.dll
    2009-02-18 16:43:39 ----A---- C:\Windows\system32\efsadu.dll
    2009-02-18 16:43:38 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
    2009-02-18 16:43:38 ----A---- C:\Windows\system32\secproc_ssp.dll
    2009-02-18 16:43:38 ----A---- C:\Windows\system32\mprapi.dll
    2009-02-18 16:43:37 ----A---- C:\Windows\system32\WPDSp.dll
    2009-02-18 16:43:37 ----A---- C:\Windows\system32\WPDShServiceObj.dll
    2009-02-18 16:43:37 ----A---- C:\Windows\system32\WMVENCOD.DLL
    2009-02-18 16:43:37 ----A---- C:\Windows\system32\wercplsupport.dll
    2009-02-18 16:43:37 ----A---- C:\Windows\system32\setupugc.exe
    2009-02-18 16:43:37 ----A---- C:\Windows\system32\qedit.dll
    2009-02-18 16:43:37 ----A---- C:\Windows\system32\networkmap.dll
    2009-02-18 16:43:37 ----A---- C:\Windows\system32\msoeacct.dll
    2009-02-18 16:43:37 ----A---- C:\Windows\system32\icacls.exe
    2009-02-18 16:43:37 ----A---- C:\Windows\system32\d3d10core.dll
    2009-02-18 16:43:36 ----A---- C:\Windows\system32\xactsrv.dll
    2009-02-18 16:43:36 ----A---- C:\Windows\system32\wiascanprofiles.dll
    2009-02-18 16:43:36 ----A---- C:\Windows\system32\wiaaut.dll
    2009-02-18 16:43:36 ----A---- C:\Windows\system32\usercpl.dll
    2009-02-18 16:43:36 ----A---- C:\Windows\system32\QSVRMGMT.DLL
    2009-02-18 16:43:36 ----A---- C:\Windows\system32\pnrpnsp.dll
    2009-02-18 16:43:36 ----A---- C:\Windows\system32\PNPXAssocPrx.dll
    2009-02-18 16:43:36 ----A---- C:\Windows\system32\pngfilt.dll
    2009-02-18 16:43:36 ----A---- C:\Windows\system32\p2pnetsh.dll
    2009-02-18 16:43:36 ----A---- C:\Windows\system32\msrdc.dll
    2009-02-18 16:43:36 ----A---- C:\Windows\system32\msdmo.dll
    2009-02-18 16:43:36 ----A---- C:\Windows\system32\lsass.exe
    2009-02-18 16:43:36 ----A---- C:\Windows\system32\iscsiexe.dll
    2009-02-18 16:43:36 ----A---- C:\Windows\system32\consent.exe
    2009-02-18 16:43:36 ----A---- C:\Windows\system32\conime.exe
    2009-02-18 16:43:35 ----A---- C:\Windows\system32\PNPXAssoc.dll
    2009-02-18 16:43:35 ----A---- C:\Windows\system32\autoplay.dll
    2009-02-18 16:43:34 ----A---- C:\Windows\system32\xwizards.dll
    2009-02-18 16:43:34 ----A---- C:\Windows\system32\systeminfo.exe
    2009-02-18 16:43:34 ----A---- C:\Windows\system32\resutils.dll
    2009-02-18 16:43:34 ----A---- C:\Windows\system32\pcadm.dll
    2009-02-18 16:43:34 ----A---- C:\Windows\system32\netcfg.exe
    2009-02-18 16:43:34 ----A---- C:\Windows\system32\msrating.dll
    2009-02-18 16:43:34 ----A---- C:\Windows\system32\mfplat.dll
    2009-02-18 16:43:34 ----A---- C:\Windows\system32\lpk.dll
    2009-02-18 16:43:34 ----A---- C:\Windows\system32\findstr.exe
    2009-02-18 16:43:34 ----A---- C:\Windows\system32\eappprxy.dll
    2009-02-18 16:43:34 ----A---- C:\Windows\system32\DWWIN.EXE
    2009-02-18 16:43:34 ----A---- C:\Windows\system32\drmmgrtn.dll
    2009-02-18 16:43:34 ----A---- C:\Windows\system32\dpapimig.exe
    2009-02-18 16:43:34 ----A---- C:\Windows\system32\cmdl32.exe
    2009-02-18 16:43:33 ----A---- C:\Windows\system32\powercpl.dll
    2009-02-18 16:43:33 ----A---- C:\Windows\system32\odbc32.dll
    2009-02-18 16:43:33 ----A---- C:\Windows\system32\nshhttp.dll
    2009-02-18 16:43:33 ----A---- C:\Windows\system32\netprof.dll
    2009-02-18 16:43:33 ----A---- C:\Windows\system32\MFWMAAEC.DLL
    2009-02-18 16:43:33 ----A---- C:\Windows\system32\imm32.dll
    2009-02-18 16:43:33 ----A---- C:\Windows\system32\dssec.dll
    2009-02-18 16:43:33 ----A---- C:\Windows\system32\dot3ui.dll
    2009-02-18 16:43:33 ----A---- C:\Windows\system32\dfrgifc.exe
    2009-02-18 16:43:33 ----A---- C:\Windows\system32\dbnetlib.dll
    2009-02-18 16:43:33 ----A---- C:\Windows\system32\btpanui.dll
    2009-02-18 16:43:33 ----A---- C:\Windows\system32\alg.exe
    2009-02-18 16:43:33 ----A---- C:\Windows\regedit.exe
    2009-02-18 16:43:32 ----A---- C:\Windows\system32\txflog.dll
    2009-02-18 16:43:32 ----A---- C:\Windows\system32\tbssvc.dll
    2009-02-18 16:43:32 ----A---- C:\Windows\system32\taskkill.exe
    2009-02-18 16:43:32 ----A---- C:\Windows\system32\RASMM.dll
    2009-02-18 16:43:32 ----A---- C:\Windows\system32\msieftp.dll
    2009-02-18 16:43:32 ----A---- C:\Windows\system32\iexpress.exe
    2009-02-18 16:43:32 ----A---- C:\Windows\system32\feclient.dll
    2009-02-18 16:43:32 ----A---- C:\Windows\system32\dxva2.dll
    2009-02-18 16:43:32 ----A---- C:\Windows\system32\dwmapi.dll
    2009-02-18 16:43:32 ----A---- C:\Windows\system32\d3d10.dll
    2009-02-18 16:43:32 ----A---- C:\Windows\system32\bcdprov.dll
    2009-02-18 16:43:32 ----A---- C:\Windows\system32\apircl.dll
    2009-02-18 16:43:32 ----A---- C:\Windows\system32\ActionQueue.dll
    2009-02-18 16:43:31 ----A---- C:\Windows\system32\syncui.dll
    2009-02-18 16:43:31 ----A---- C:\Windows\system32\svchost.exe
    2009-02-18 16:43:31 ----A---- C:\Windows\system32\slwmi.dll
    2009-02-18 16:43:31 ----A---- C:\Windows\system32\SLCExt.dll
    2009-02-18 16:43:31 ----A---- C:\Windows\system32\slcc.dll
    2009-02-18 16:43:31 ----A---- C:\Windows\system32\shwebsvc.dll
    2009-02-18 16:43:31 ----A---- C:\Windows\system32\provthrd.dll
    2009-02-18 16:43:31 ----A---- C:\Windows\system32\networkexplorer.dll
    2009-02-18 16:43:31 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
    2009-02-18 16:43:31 ----A---- C:\Windows\system32\EAPQEC.DLL
    2009-02-18 16:43:31 ----A---- C:\Windows\system32\dmocx.dll
    2009-02-18 16:43:31 ----A---- C:\Windows\system32\aclui.dll
    2009-02-18 16:43:30 ----A---- C:\Windows\system32\xcopy.exe
    2009-02-18 16:43:30 ----A---- C:\Windows\system32\WMASF.DLL
    2009-02-18 16:43:30 ----A---- C:\Windows\system32\uxsms.dll
    2009-02-18 16:43:30 ----A---- C:\Windows\system32\UIHub.dll
    2009-02-18 16:43:30 ----A---- C:\Windows\system32\taskmgr.exe
    2009-02-18 16:43:30 ----A---- C:\Windows\system32\raserver.exe
    2009-02-18 16:43:30 ----A---- C:\Windows\system32\PnPUnattend.exe
    2009-02-18 16:43:30 ----A---- C:\Windows\system32\olepro32.dll
    2009-02-18 16:43:30 ----A---- C:\Windows\system32\ias.dll
    2009-02-18 16:43:30 ----A---- C:\Windows\system32\dnscacheugc.exe
    2009-02-18 16:43:30 ----A---- C:\Windows\system32\brcplsdw.dll
    2009-02-18 16:43:30 ----A---- C:\Windows\system32\audiodev.dll
    2009-02-18 16:43:29 ----A---- C:\Windows\system32\upnp.dll
    2009-02-18 16:43:29 ----A---- C:\Windows\system32\reg.exe
    2009-02-18 16:43:29 ----A---- C:\Windows\system32\QCLIPROV.DLL
    2009-02-18 16:43:29 ----A---- C:\Windows\system32\NapiNSP.dll
    2009-02-18 16:43:29 ----A---- C:\Windows\system32\msoert2.dll
    2009-02-18 16:43:29 ----A---- C:\Windows\system32\msjetoledb40.dll
    2009-02-18 16:43:29 ----A---- C:\Windows\system32\mountvol.exe
    2009-02-18 16:43:29 ----A---- C:\Windows\system32\mmcshext.dll
    2009-02-18 16:43:29 ----A---- C:\Windows\system32\icsfiltr.dll
    2009-02-18 16:43:29 ----A---- C:\Windows\system32\cmstp.exe
    2009-02-18 16:43:29 ----A---- C:\Windows\system32\browser.dll
    2009-02-18 16:43:29 ----A---- C:\Windows\system32\atl.dll
    2009-02-18 16:43:29 ----A---- C:\Windows\system32\appinfo.dll
    2009-02-18 16:43:28 ----A---- C:\Windows\system32\WUDFCoinstall
    a c 267 8 Sécurité
    7 Mars 2009 22:16:12

    Le rapport log n'est pas complet.
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS