Bonjour, j'ai chopé un gros virus qui bloque tous les exe de windows et les antivirus. Au début je pouvais même plus démarrer windows, puis j'ai reussi en me loggant sous un autre nom d'utilisateur. Impossible de démarrer les antivirus, impossible de les réinstaller (j'ai tout essayé, antivir, avast, avg), j'ai fais un scan en ligne avec bitdefender, il a trouvé pas mal de choses, mais le problème persiste. Les autres programmes comme Hijack This, CCcleaner, MSN et autres ne marchent pas non plus, ni leur installation. Merci de m'aider. C'est gentil !!

Virus bloque tous les exe window et antivirus

Réponse 1 / 5

Utilisateur anonyme
28 mars 2009 à 22:37

Télécharge FindyKill de Chiquitine29 :

http://sd-1.archive-host.com/membres/up/116615172019703188/FindyKill.exe

->Enregistre-le sur ton bureau et pas ailleurs !

!! Déconnecte toi et ferme toutes les applications en cours !!

( Si ton anti-virus s'affolle au moment de l'enregistrement ou de l'utilisation de l'outil , ignore l'alerte ...)

-> Clique sur "FindyKill.exe" pour lancer l'installe de l'outil . Ne touche surtout pas aux paramètres d'installation.

Tuto : https://www.malekal.com/tutorial-findykill/

--> Double-clique sur le raccourci " FindyKill " qui est sur ton bureau .

-->choisis l'option 1 ( recherche ). Puis laisse travailler l'outil sans rien toucher ...

Une fois terminé, poste le rapport FindyKill.txt qui est généré ...

( Note : le rapport est sauvegardé à la racine du disque -> C:\FindyKill.txt )

PS : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.

airquest
28 mars 2009 à 22:40

ok je te poste le rapport après...

Réponse 2 / 5

airquest
28 mars 2009 à 22:38

Précisions :
- J'ai déjà essayé de renommer les fichiers genre Hijack This, mais ne marche pas quand même ("application win 32 non valide").
- Eliblaga, combofix, killbox et atf cleaner ne marchent pas non plus !!!

Utilisateur anonyme
28 mars 2009 à 22:40

c'est une infection bagle essaye findykill

airquest > Utilisateur anonyme
28 mars 2009 à 22:44

J'ai le rapport Findykill et j'ai fais un sdfix aussi.

Le findy kill :

############################## [ FindyKill V4.720 ]

# User : nsq#02 (Administrateurs) # WALTER
# Update on 22/03/09 by Chiquitine29
# Start at: 22:42:08 | 28.03.2009
# Website : http://pagesperso-orange.fr/FindyKill.Ad.Remover/

# AMD Turion(tm) 64 X2 Mobile Technology TL-60
# Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Disabled
# AV : Avira AntiVir PersonalEdition Classic 8.0.1.30 [ (!) Disabled | (!) Outdated ]

# C:\ # Disque fixe local # 126.29 Go (19.37 Go free) # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM

############################## [ Processus actifs ]

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\SCardSvr.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\stsystra.exe
C:\WINDOWS\system32\KADxMain.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\Wave Systems Corp\Services Manager\DocMgr\bin\docmgr.exe
C:\Program Files\Wave Systems Corp\SecureUpgrade.exe
C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe
C:\Program Files\Apoint\ApMsgFwd.exe
C:\Program Files\Apoint\HidFind.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe
C:\Program Files\HP\HP Software Update\HPWuSchd.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files\HP\HP Share-to-Web\hpgs2wnd.exe
C:\Program Files\ScanSoft\OmniPage15.0\Opware15.exe
c:\Program Files\HP\HP Share-to-Web\hpgs2wnf.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MySpace\IM\MySpaceIM.exe
C:\Program Files\ScanSoft\OmniPage15.0\OpAgent.exe
C:\Documents and Settings\nsq#02\Application Data\drivers\winupgro.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\Olympus\DeviceDetector\DevDtct2.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\ToshibaBTServer.exe
C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe
C:\WINDOWS\system32\dlbucoms.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Sunrise\bin\sprtsvc.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\StacSV.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Documents and Settings\nsq#02\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
C:\Documents and Settings\nsq#02\Application Data\m\flec006.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wintems.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

################## [ Processus infectieux stoppés ]

"C:\Documents and Settings\nsq#02\Application Data\drivers\winupgro.exe" (2276)
"C:\Documents and Settings\nsq#02\Application Data\m\flec006.exe" (4876)
"C:\WINDOWS\system32\wintems.exe" (4808)

################## [ Fichiers / Dossiers infectieux C:\ ]

Found ! - "C:\Muestras"
Found ! - C:\InfoSat.txt

################## [ C:\WINDOWS ]

################## [ C:\WINDOWS\system32 ]

Found ! - C:\WINDOWS\system32\mdelk.exe
Found ! - C:\WINDOWS\system32\wintems.exe
Found ! - C:\WINDOWS\system32\ban_list.txt

################## [ C:\WINDOWS\system32\drivers ]

################## [ C:\.. Application Data ... ]

Found ! - "C:\Documents and Settings\nsq#02\Application Data\m\flec006.exe"
Found ! - "C:\Documents and Settings\nsq#02\Application Data\m\list.oct"
Found ! - "C:\Documents and Settings\nsq#02\Application Data\m\data.oct"
Found ! - "C:\Documents and Settings\nsq#02\Application Data\m\srvlist.oct"
Found ! - "C:\Documents and Settings\nsq#02\Application Data\m\shared"
Found ! - "C:\Documents and Settings\nsq#02\Application Data\m"
Found ! - "C:\Documents and Settings\nsq#02\Application Data\drivers"
Found ! - "C:\Documents and Settings\nsq#02\Application Data\drivers\srosa2.sys"
Found ! - "C:\Documents and Settings\nsq#02\Application Data\drivers\wfsintwq.sys"
Found ! - "C:\Documents and Settings\nsq#02\Application Data\drivers\winupgro.exe"
Found ! - "C:\Documents and Settings\nsq#02\Application Data\drivers\downld"

################## [ Registre / Clés infectieuses ]

Found ! - HKEY_USERS\S-1-5-21-299502267-1060284298-682003330-1006\Software\Local AppWizard-Generated Applications\msnmsgr
Found ! - HKEY_USERS\S-1-5-21-299502267-1060284298-682003330-1006\Software\Local AppWizard-Generated Applications\run
Found ! - HKEY_USERS\S-1-5-21-299502267-1060284298-682003330-1006\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_USERS\S-1-5-21-299502267-1060284298-682003330-1006\Software\bisoft
Found ! - HKEY_USERS\S-1-5-21-299502267-1060284298-682003330-1006\Software\DateTime4
Found ! - HKEY_USERS\S-1-5-21-299502267-1060284298-682003330-1006\Software\FirtR
Found ! - HKEY_USERS\S-1-5-21-299502267-1060284298-682003330-1006\Software\MuleAppData
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\msnmsgr
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\run
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_CURRENT_USER\Software\bisoft
Found ! - HKEY_CURRENT_USER\Software\DateTime4
Found ! - HKEY_CURRENT_USER\Software\FirtR
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\"drvsyskit"
Found ! - HKEY_USERS\S-1-5-21-299502267-1060284298-682003330-1006\Software\Microsoft\Windows\CurrentVersion\Run\\"drvsyskit"
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\"german.exe"
Found ! - HKEY_USERS\S-1-5-21-299502267-1060284298-682003330-1006\Software\Microsoft\Windows\CurrentVersion\Run\\"german.exe"
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\"mule_st_key"
Found ! - HKEY_USERS\S-1-5-21-299502267-1060284298-682003330-1006\Software\Microsoft\Windows\CurrentVersion\Run\\"mule_st_key"

# Infection active : HKLM\SYSTEM\...\Services\srosa -> Start = 0x1
# Infection active : HKLM\SYSTEM\...\Services\sK9Ou0s -> Start = 0x1

################## [ Recherche dans supports amovibles]

# Presence des fichiers :

################## [ Registre / Mountpoint2 ]

# -> Not found !

################## [ ! Fin du rapport # FindyKill V4.720 ! ]

Le SDFIX

[b]System Report/b
*************

Run on 28.03.2009 at 22:37

Microsoft Windows XP [version 5.1.2600]

Current user is an administrator

[b]Running Processes/b:

\SystemRoot\System32\smss.exe [1244]
\??\C:\WINDOWS\system32\csrss.exe [1312]
\??\C:\WINDOWS\system32\winlogon.exe [1344]
C:\WINDOWS\system32\services.exe [1392]
C:\WINDOWS\system32\lsass.exe [1404]
C:\WINDOWS\system32\svchost.exe [1632]
C:\WINDOWS\system32\svchost.exe [1720]
C:\WINDOWS\System32\svchost.exe [1928]
C:\WINDOWS\system32\svchost.exe [196]
C:\WINDOWS\system32\svchost.exe [468]
C:\WINDOWS\System32\WLTRYSVC.EXE [496]
C:\WINDOWS\System32\bcmwltry.exe [512]
C:\WINDOWS\system32\spoolsv.exe [564]
C:\WINDOWS\System32\SCardSvr.exe [668]
C:\WINDOWS\Explorer.EXE [108]
C:\WINDOWS\stsystra.exe [136]
C:\WINDOWS\system32\KADxMain.exe [184]
C:\WINDOWS\system32\WLTRAY.exe [180]
C:\Program Files\Dell\QuickSet\quickset.exe [240]
C:\Program Files\Apoint\Apoint.exe [404]
C:\Program Files\Wave Systems Corp\Services Manager\DocMgr\bin\docmgr.exe [412]
C:\Program Files\Wave Systems Corp\SecureUpgrade.exe [440]
C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe [552]
C:\Program Files\Apoint\ApMsgFwd.exe [1448]
C:\Program Files\Apoint\HidFind.exe [1068]
C:\Program Files\Apoint\Apntex.exe [1112]
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe [1156]
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe [1196]
C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe [1808]
C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe [856]
C:\Program Files\HP\HP Software Update\HPWuSchd.exe [1060]
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [1308]
C:\Program Files\Sunrise\bin\sprtcmd.exe [1912]
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2056]
C:\Program Files\HP\HP Share-to-Web\hpgs2wnd.exe [2072]
C:\Program Files\ScanSoft\OmniPage15.0\Opware15.exe [2100]
c:\Program Files\HP\HP Share-to-Web\hpgs2wnf.exe [2140]
C:\WINDOWS\system32\ctfmon.exe [2180]
C:\Program Files\MySpace\IM\MySpaceIM.exe [2220]
C:\Program Files\ScanSoft\OmniPage15.0\OpAgent.exe [2256]
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2444]
C:\Program Files\Olympus\DeviceDetector\DevDtct2.exe [2452]
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2724]
C:\Program Files\OpenOffice.org 3\program\soffice.exe [2776]
C:\Program Files\OpenOffice.org 3\program\soffice.bin [2784]
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe [2824]
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe [2932]
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe [2944]
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe [3104]
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe [3256]
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\ToshibaBTServer.exe [3352]
C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe [3424]
C:\WINDOWS\system32\dlbucoms.exe [3468]
C:\Program Files\Java\jre6\bin\jqs.exe [3604]
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe [3652]
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe [3668]
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [3744]
C:\Program Files\Sunrise\bin\sprtsvc.exe [3992]
C:\Program Files\SigmaTel\C-Major Audio\WDM\StacSV.exe [4016]
C:\WINDOWS\system32\svchost.exe [776]
C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe [788]
C:\WINDOWS\system32\dllhost.exe [868]
C:\WINDOWS\system32\dllhost.exe [2720]
C:\WINDOWS\system32\wbem\wmiapsrv.exe [2920]
C:\WINDOWS\system32\wbem\wmiprvse.exe [1896]
C:\Documents and Settings\nsq#02\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe [5516]
C:\Program Files\eMule\eMule.exe [540]
C:\Program Files\Mozilla Firefox\firefox.exe [836]

[b]Drivers - Running/b:

ACPI
AFD
AmdK8
ApfiltrService
APPDRV
Arp1394
atapi
ati2mtag
audstub
avgio
avipbb
b57w2k
BASFND
BCM43XX
BCMTPM
Beep
Cdfs
Cdrom
CLEDX
CmBatt
Compbatt
Disk
DLABMFSM
DLABOIOM
DLACDBHM
DLADResM
DLAIFS_M
DLAOPIOM
DLAPoolM
DLARTL_M
DLAUDFAM
DLAUDF_M
DRVMCDB
DRVNDDM
DXEC01
ElbyCDIO
ElbyDelay
Fips
FltMgr
fssfltr
Ftdisk
Gpc
guardian2
HDAudBus
HidUsb
HSFHWAZL
HSF_DPV
HTTP
i8042prt
Imapi
IPSec
isapnp
Kbdclass
kmixer
KSecDD
mdmxsdk
mnmdd
Modem
Mouclass
mouhid
MountMgr
MRxDAV
MRxSmb
Msfs
Mup
NDIS
NdisTapi
NdisWan
NDProxy
NetBIOS
NetBT
NIC1394
Npfs
Ntfs
Null
NwlnkIpx
NwlnkNb
NwlnkSpx
NWRDR
ohci1394
PartMgr
PBADRV
PCI
PCIIde
Pcmcia
pfc
PptpMiniport
PSched
Ptilink
PxHelp20
RasAcd
Rasl2tp
RasPppoe
Raspti
Rdbss
RDPCDD
rdpdr
redbook
ROOTMODEM
sK9Ou0s
sr
Srv
ssmdrv
STHDA
swenum
sysaudio
Tcpip
TcUsb
TermDD
tosporte
Tosrfcom
usbehci
usbhub
usbohci
VClone
VgaSave
vmm
VolSnap
VPCNetS2
Wanarp
wdmaud
winachsf
WmiAcpi
WS2IFSL
srosa
AvgTdiX
AvgRkx86

[b]Drivers - Stopped/b:

Aavmker4
Abiosdsk
abp480n5
ACPIEC
adpu160m
aec
Aha154x
aic78u2
aic78xx
AliIde
amsint
asc
asc3350p
asc3550
aswFsBlk
aswMon2
aswRdr
aswSP
aswTdi
AsyncMac
Atdisk
Atdwdnfio
Atmarpc
Avgfwdx
Avgfwfd
avgntflt
BEHRINGER_2902
cbidf2k
cd20xrnt
Cdaudio
cercsr6
Changer
CmdIde
Cpqarray
CSRBC
dac960nt
dmboot
dmio
dmload
DMusic
dpti2o
drmkaud
Fastfat
Fdc
Flpydisk
hpn
HPZid412
HPZipr12
HPZius12
i2omgmt
i2omp
ini910u
IntelIde
Ip6Fw
IpFilterDriver
IpInIp
IpNat
IRENUM
kbdhid
lbrtfdc
mraid35x
MSKSSRV
MSPCLOCK
MSPQM
mssmbios
Ndisuio
Nsynas32
NwlnkFlt
NwlnkFwd
Parport
ParVdm
PCIDump
PDCOMP
PDFRAME
PDRELI
PDRFRAME
perc2
perc2hib
Processor
ql1080
Ql10wnt
ql12160
ql1240
ql1280
RDPWD
sea1bus
sea1mdfl
sea1mdm
sea1mgmt
sea1nd5
sea1obex
sea1unic
Secdrv
serenum
Serial
Sfloppy
Simbad
Sparrow
splitter
SunkFilt
swmidi
symc810
symc8xx
sym_hi
sym_u3
TDPIPE
TDTCP
TosIde
tosrfbd
tosrfbnp
Tosrfhid
tosrfnds
Tosrfusb
Udfs
UIUSys
ultra
Update
usbaudio
usbccgp
usbprint
usbscan
USBSTOR
ViaIde
VNUSB
WDICA
WudfPf
WudfRd

[b]Services - Running/b:

ASFIPmon
AudioSrv
BITS
Browser
COMSysApp
CryptSvc
DcomLaunch
Dhcp
dlbu_device
Dnscache
ERSvc
Eventlog
EventSystem
FastUserSwitchingCompatibility
helpsvc
HidServ
JavaQuickStarterService
lanmanserver
lanmanworkstation
LmHosts
MDM
Netman
NICCONFIGSVC
Nla
NWCWorkstation
PlugPlay
PolicyAgent
ProtectedStorage
RasMan
RemoteRegistry
RpcSs
SamSs
SCardSvr
Schedule
SeaPort
seclogon
SENS
ShellHWDetection
Spooler
sprtsvc_sunrise
srservice
SSDPSRV
STacSV
stisvc
TapiSrv
tcsd_win32.exe
TermService
Themes
TrkWks
upnphost
W32Time
Wave
WebClient
winmgmt
wltrysvc
WmiApSrv

[b]Services - Stopped/b:

Adobe
Alerter
ALG
AntiVirScheduler
AntiVirService
AppMgmt
aspnet_state
aswUpdSv
Ati
avast!
avast!
avast!
CiSvc
ClipSrv
clr_optimization_v2.0.50727_32
dmadmin
dmserver
Dot3svc
EapHost
fsssvc
gupdate1c98be021f84a28
gusvc
hkmsvc
HTTPFilter
IDriverT
ImapiService
Messenger
mnmsrvc
MSDTC
MSIServer
MSSQL$SONY_MEDIAMGR
MSSQLServerADHelper
napagent
NetDDE
NetDDEdsdm
Netlogon
NtLmSsp
NtmsSvc
odserv
ose
Pml
RasAuto
RDSessMgr
RemoteAccess
RpcLocator
RSVP
SecureStorageService
SharedAccess
SQLAgent$SONY_MEDIAMGR
stllssvr
SupportSoft
SwPrv
SysmonLog
TlntSvr
UPS
VSS
WmdmPmSN
Wmi
WMPNetworkSvc
wscsvc
wuauserv
WudfSvc
WZCSVC
xmlprov

[b]Files Created/Modified - 60 Days/b:

C:\

28 Mar 2009 22:21:58 401'720 A.... "C:\ii.exe"
28 Mar 2009 13:25:26 3'221'225'472 A.SH. "C:\pagefile.sys"

C:\WINDOWS\

28 Mar 2009 13:25:38 2'048 A.S.. "C:\WINDOWS\bootstat.dat"
28 Mar 2009 1:09:06 91'744 A.... "C:\WINDOWS\BPMNT.dll"
28 Mar 2009 1:09:06 71'749 A.... "C:\WINDOWS\hcextoutput.dll"
9 Mar 2009 22:55:54 32 A.... "C:\WINDOWS\msocreg32.dat"
28 Mar 2009 1:08:16 286'720 A.... "C:\WINDOWS\PATCH.EXE"
28 Mar 2009 1:08:18 507'904 A.... "C:\WINDOWS\TMUPDATE.DLL"
28 Mar 2009 1:09:06 348'741 A.... "C:\WINDOWS\tsc.exe"
28 Mar 2009 1:08:16 69'689 A.... "C:\WINDOWS\UNZIP.DLL"
28 Mar 2009 1:09:06 1'213'784 A.... "C:\WINDOWS\vsapi32.dll"
28 Mar 2009 2:54:40 70'656 A.... "C:\WINDOWS\$NtServicePackUninstall$\sysinfo.exe"
27 Mar 2009 21:55:36 45'056 A.... "C:\WINDOWS\BDOSCAN8\avxdisk.dll"
27 Mar 2009 21:55:36 10'240 A.... "C:\WINDOWS\BDOSCAN8\avxs.dll"
27 Mar 2009 21:55:36 27'136 A.... "C:\WINDOWS\BDOSCAN8\avxt.dll"
27 Mar 2009 21:55:38 102'400 A.... "C:\WINDOWS\BDOSCAN8\bdcore.dll"
27 Mar 2009 21:55:38 142'848 A.... "C:\WINDOWS\BDOSCAN8\libfn.dll"
27 Mar 2009 21:55:36 86'016 A.... "C:\WINDOWS\BDOSCAN8\librtvr.dll"
27 Mar 2009 22:10:24 3'924 A.... "C:\WINDOWS\BDOSCAN8\plugins.htm"
27 Mar 2009 21:55:36 254 A.... "C:\WINDOWS\BDOSCAN8\rtvr2.html"
27 Mar 2009 23:47:46 7'059 A.... "C:\WINDOWS\BDOSCAN8\rtvr_rep.html"
27 Mar 2009 21:55:36 4'656 A.... "C:\WINDOWS\BDOSCAN8\rtvr.html"
27 Mar 2009 21:55:36 195 A.... "C:\WINDOWS\BDOSCAN8\scanres2.html"
27 Mar 2009 21:55:36 17'091 A.... "C:\WINDOWS\BDOSCAN8\scanres.html"
27 Mar 2009 23:34:04 33'880 A.... "C:\WINDOWS\BDOSCAN8\scanrep.html"
5 Feb 2009 22:11:36 1'256'296 A.... "C:\WINDOWS\system32\aswBoot.exe"
27 Mar 2009 23:49:12 50'968 A.... "C:\WINDOWS\system32\avgfwdx.dll"
13 Mar 2009 2:42:44 20 A.... "C:\WINDOWS\system32\csvtosh.dll"
19 Mar 2009 1:24:12 290'888 A.... "C:\WINDOWS\system32\FNTCACHE.DAT"
25 Feb 2009 12:55:00 24'768'960 A.... "C:\WINDOWS\system32\MRT.exe"
9 Mar 2009 22:55:54 32 A.... "C:\WINDOWS\system32\msvcsv60.dll"
28 Mar 2009 3:36:14 72'758 A.... "C:\WINDOWS\system32\perfc009.dat"
28 Mar 2009 3:36:14 86'856 A.... "C:\WINDOWS\system32\perfc00C.dat"
28 Mar 2009 3:36:14 427'130 A.... "C:\WINDOWS\system32\perfh009.dat"
28 Mar 2009 3:36:14 496'282 A.... "C:\WINDOWS\system32\perfh00C.dat"
3 Feb 2009 4:09:10 368'640 A.... "C:\WINDOWS\system32\ReWire.dll"
6 Feb 2009 18:52:40 49'504 A.... "C:\WINDOWS\system32\sirenacm.dll"
9 Feb 2009 15:05:54 1'846'912 A.... "C:\WINDOWS\system32\win32k.sys"
28 Mar 2009 13:25:46 6 A..H. "C:\WINDOWS\Tasks\SA.DAT"
27 Mar 2009 20:46:04 0 A.... "C:\WINDOWS\Temp\GUR1.tmp"
28 Mar 2009 0:50:26 0 A.... "C:\WINDOWS\Temp\GUR10.tmp"
28 Mar 2009 3:38:32 0 A.... "C:\WINDOWS\Temp\GUR11.tmp"
28 Mar 2009 13:25:52 0 A.... "C:\WINDOWS\Temp\GUR12.tmp"
28 Mar 2009 13:27:52 0 A.... "C:\WINDOWS\Temp\GUR13.tmp"
27 Mar 2009 20:48:08 0 A.... "C:\WINDOWS\Temp\GUR2.tmp"
27 Mar 2009 21:13:14 0 A.... "C:\WINDOWS\Temp\GUR3.tmp"
28 Mar 2009 1:41:20 0 A.... "C:\WINDOWS\Temp\GUR3C.tmp"
27 Mar 2009 21:15:06 0 A.... "C:\WINDOWS\Temp\GUR4.tmp"
27 Mar 2009 21:18:46 0 A.... "C:\WINDOWS\Temp\GUR5.tmp"
27 Mar 2009 21:27:28 0 A.... "C:\WINDOWS\Temp\GUR6.tmp"
27 Mar 2009 21:29:20 0 A.... "C:\WINDOWS\Temp\GUR7.tmp"
27 Mar 2009 22:02:56 0 A.... "C:\WINDOWS\Temp\GUR8.tmp"
27 Mar 2009 22:04:54 0 A.... "C:\WINDOWS\Temp\GUR9.tmp"
28 Mar 2009 0:08:10 0 A.... "C:\WINDOWS\Temp\GURA.tmp"
28 Mar 2009 0:13:50 0 A.... "C:\WINDOWS\Temp\GURB.tmp"
28 Mar 2009 0:47:08 0 A.... "C:\WINDOWS\Temp\GURC.tmp"
28 Mar 2009 0:48:28 0 A.... "C:\WINDOWS\Temp\GURD.tmp"
28 Mar 2009 0:10:14 0 A.... "C:\WINDOWS\Temp\GURE.tmp"
28 Mar 2009 0:15:54 0 A.... "C:\WINDOWS\Temp\GURF.tmp"
28 Mar 2009 3:33:20 2'178 A.... "C:\WINDOWS\Temp\MAN2DF.tmp"
28 Mar 2009 22:36:06 2'045 A.... "C:\WINDOWS\Temp\scsBF.tmp"
28 Mar 2009 3:33:20 1'390 A.... "C:\WINDOWS\Temp\VWL2E0.tmp"
28 Mar 2009 3:33:20 138'648 A.... "C:\WINDOWS\Temp\WLF2E1.tmp"
5 Mar 2009 21:12:00 421'888 ..... "C:\WINDOWS\usb-audio.deBehringer2902\Setup.exe"
27 Mar 2009 23:19:08 155'417 A.... "C:\WINDOWS\BricoPacks\Vista Inspirat 2\Update.exe"
27 Mar 2009 23:28:46 74'240 A.... "C:\WINDOWS\ServicePackFiles\i386\sysinfo.exe"
27 Mar 2009 23:30:14 15'360 A.... "C:\WINDOWS\system32\dllcache\register.exe"
9 Feb 2009 15:05:54 1'846'912 ..... "C:\WINDOWS\system32\dllcache\win32k.sys"
5 Feb 2009 22:08:20 93'296 A.... "C:\WINDOWS\system32\drivers\aswmon.sys"
5 Feb 2009 22:06:10 23'152 A.... "C:\WINDOWS\system32\drivers\aswRdr.sys"
27 Mar 2009 23:49:12 29'208 A.... "C:\WINDOWS\system32\drivers\avgfwdx.sys"
6 Feb 2009 18:08:42 55'152 A.... "C:\WINDOWS\system32\drivers\fssfltr_tdi.sys"
24 Mar 2009 3:40:48 32'768 A.SH. "C:\WINDOWS\Temp\Cookies\index.dat"
26 Mar 2009 2:10:36 183'280 A.... "C:\WINDOWS\Temp\gis240d599f\GoogleUpdaterService.exe"
26 Mar 2009 2:10:36 161'776 A.... "C:\WINDOWS\Temp\gis240d599f\GoogleUpdater.exe"
28 Mar 2009 3:35:36 8'192 A.... "C:\WINDOWS\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll"
18 Mar 2009 4:00:08 1'230'336 A.... "C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.1.0.0_x-ww_b319d8da\msxml4.dll"
28 Mar 2009 3:35:44 258'048 A.... "C:\WINDOWS\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll"
28 Mar 2009 3:35:44 113'664 A.... "C:\WINDOWS\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll"
25 Mar 2009 6:47:52 71'749 A.... "C:\WINDOWS\AU_Temp\1\27\hcextoutput.dll"
25 Mar 2009 6:47:52 348'741 A.... "C:\WINDOWS\AU_Temp\1\27\tsc.exe"
28 Mar 2009 1:08:50 669'168 A.... "C:\WINDOWS\AU_Temp\AU_Down\engine\engv87_nt386.zip"
28 Mar 2009 1:08:48 15'296'936 A.... "C:\WINDOWS\AU_Temp\AU_Down\pattern\vsapi925.zip"
28 Mar 2009 1:08:56 42'650 A.... "C:\WINDOWS\AU_Temp\AU_Down\product\auhccup1.zip"
28 Mar 2009 1:08:54 2'323'396 A.... "C:\WINDOWS\AU_Temp\AU_Down\product\hctsc.zip"
24 Mar 2009 3:40:48 49'152 A.SH. "C:\WINDOWS\Temp\Fichiers Internet temporaires\Content.IE5\index.dat"
26 Mar 2009 2:10:36 1'204'208 A.... "C:\WINDOWS\Temp\gis240d599f\2.4.1536.6592\ci.dll"
26 Mar 2009 2:10:36 100'848 A.... "C:\WINDOWS\Temp\gis240d599f\2.4.1536.6592\cires.dll"
26 Mar 2009 2:10:36 227'824 A.... "C:\WINDOWS\Temp\gis240d599f\2.4.1536.6592\GoogleUpdaterAdminPrefs.exe"
26 Mar 2009 2:10:36 169'968 A.... "C:\WINDOWS\Temp\gis240d599f\2.4.1536.6592\GoogleUpdaterInstallMgr.exe"
26 Mar 2009 2:10:36 176'112 A.... "C:\WINDOWS\Temp\gis240d599f\2.4.1536.6592\GoogleUpdaterSetup.exe"
26 Mar 2009 2:10:36 99'824 A.... "C:\WINDOWS\Temp\gis240d599f\2.4.1536.6592\npCIDetect13.dll"
24 Mar 2009 3:40:48 32'768 A.SH. "C:\WINDOWS\Temp\History\History.IE5\index.dat"
24 Mar 2009 3:40:48 29'708 A.... "C:\WINDOWS\Temp\Fichiers Internet temporaires\Content.IE5\V1A7DTJ7\threats[1].htm"
26 Mar 2009 2:10:36 1'410 A.... "C:\WINDOWS\Temp\gis240d599f\2.4.1536.6592\HTML\confirm.htm"
26 Mar 2009 2:10:36 2'786 A.... "C:\WINDOWS\Temp\gis240d599f\2.4.1536.6592\HTML\history.htm"
26 Mar 2009 2:10:36 8'184 A.... "C:\WINDOWS\Temp\gis240d599f\2.4.1536.6592\HTML\installer.htm"
26 Mar 2009 2:10:36 1'343 A.... "C:\WINDOWS\Temp\gis240d599f\2.4.1536.6592\HTML\lm.htm"
26 Mar 2009 2:10:36 5'319 A.... "C:\WINDOWS\Temp\gis240d599f\2.4.1536.6592\HTML\maintainer.htm"
26 Mar 2009 2:10:36 6'904 A.... "C:\WINDOWS\Temp\gis240d599f\2.4.1536.6592\HTML\preferences.htm"
26 Mar 2009 2:10:36 733 A.... "C:\WINDOWS\Temp\gis240d599f\2.4.1536.6592\HTML\progress.htm"
26 Mar 2009 2:10:36 2'392 A.... "C:\WINDOWS\Temp\gis240d599f\2.4.1536.6592\HTML\proxy.htm"
26 Mar 2009 2:10:36 5'165 A.... "C:\WINDOWS\Temp\gis240d599f\2.4.1536.6592\HTML\updates.htm"

C:\Program Files\

28 Mar 2009 0:24:02 114'658 A.... "C:\Program Files\CCleaner\uninst.exe"
20 Feb 2009 4:09:24 17'400 A.... "C:\Program Files\Mozilla Firefox\AccessibleMarshal.dll"
20 Feb 2009 4:09:24 185'848 A.... "C:\Program Files\Mozilla Firefox\crashreporter.exe"
20 Feb 2009 4:09:24 307'704 A.... "C:\Program Files\Mozilla Firefox\firefox.exe"
19 Feb 2009 20:33:06 233'472 A.... "C:\Program Files\Mozilla Firefox\freebl3.dll"
20 Feb 2009 4:09:24 696'312 A.... "C:\Program Files\Mozilla Firefox\js3250.dll"
20 Feb 2009 4:09:24 710'136 A.... "C:\Program Files\Mozilla Firefox\mozcrt19.dll"
20 Feb 2009 4:09:24 198'136 A.... "C:\Program Files\Mozilla Firefox\nspr4.dll"
20 Feb 2009 4:09:24 718'328 A.... "C:\Program Files\Mozilla Firefox\nss3.dll"
20 Feb 2009 4:09:24 292'344 A.... "C:\Program Files\Mozilla Firefox\nssckbi.dll"
20 Feb 2009 4:09:24 103'928 A.... "C:\Program Files\Mozilla Firefox\nssdbm3.dll"
20 Feb 2009 4:09:24 87'544 A.... "C:\Program Files\Mozilla Firefox\nssutil3.dll"
20 Feb 2009 4:09:24 20'472 A.... "C:\Program Files\Mozilla Firefox\plc4.dll"
20 Feb 2009 4:09:24 17'400 A.... "C:\Program Files\Mozilla Firefox\plds4.dll"
20 Feb 2009 4:09:24 103'928 A.... "C:\Program Files\Mozilla Firefox\smime3.dll"
19 Feb 2009 20:33:06 151'552 A.... "C:\Program Files\Mozilla Firefox\softokn3.dll"
20 Feb 2009 4:09:24 395'768 A.... "C:\Program Files\Mozilla Firefox\sqlite3.dll"
20 Feb 2009 4:09:26 136'696 A.... "C:\Program Files\Mozilla Firefox\ssl3.dll"
20 Feb 2009 4:09:26 242'168 A.... "C:\Program Files\Mozilla Firefox\updater.exe"
20 Feb 2009 4:09:26 17'912 A.... "C:\Program Files\Mozilla Firefox\xpcom.dll"
20 Feb 2009 4:09:26 9'742'840 A.... "C:\Program Files\Mozilla Firefox\xul.dll"
3 Feb 2009 4:10:02 369'277 A.... "C:\Program Files\REAPER\cdrecord.exe"
16 Mar 2009 21:38:06 425'984 A.... "C:\Program Files\REAPER\reamote.exe"
16 Mar 2009 21:40:48 3'759'104 A.... "C:\Program Files\REAPER\reaper.exe"
3 Feb 2009 4:10:06 2'239 A.... "C:\Program Files\REAPER\reaper-to-usb.bat"
16 Mar 2009 21:37:22 12'288 A.... "C:\Program Files\REAPER\REAPERReWireDev.dll"
16 Mar 2009 21:36:56 20'480 A.... "C:\Program Files\REAPER\rearoute.dll"
20 Mar 2009 23:37:16 51'062 A.... "C:\Program Files\REAPER\Uninstall.exe"
5 Feb 2009 22:05:08 225'280 A.... "C:\Program Files\Alwil Software\Avast4\Aavm4h.dll"
5 Feb 2009 22:09:00 188'416 A.... "C:\Program Files\Alwil Software\Avast4\AavmGuih.dll"
5 Feb 2009 22:05:02 20'992 A.... "C:\Program Files\Alwil Software\Avast4\AavmRpch.dll"
5 Feb 2009 22:05:20 35'840 A.... "C:\Program Files\Alwil Software\Avast4\AhResMai.dll"
5 Feb 2009 22:06:54 32'768 A.... "C:\Program Files\Alwil Software\Avast4\ahResMes.dll"
5 Feb 2009 22:06:32 35'840 A.... "C:\Program Files\Alwil Software\Avast4\AhResNS.dll"
5 Feb 2009 22:08:34 29'696 A.... "C:\Program Files\Alwil Software\Avast4\AhResOut.dll"
5 Feb 2009 22:06:48 33'280 A.... "C:\Program Files\Alwil Software\Avast4\ahResP2P.dll"
5 Feb 2009 22:09:10 43'008 A.... "C:\Program Files\Alwil Software\Avast4\AhResStd.dll"
5 Feb 2009 22:05:36 53'248 A.... "C:\Program Files\Alwil Software\Avast4\AhResWS.dll"
5 Feb 2009 22:07:48 94'208 A.... "C:\Program Files\Alwil Software\Avast4\AhRuiMai.dll"
5 Feb 2009 22:06:52 57'344 A.... "C:\Program Files\Alwil Software\Avast4\ahRuiMes.dll"
5 Feb 2009 22:06:30 57'344 A.... "C:\Program Files\Alwil Software\Avast4\AhRuiNS.dll"
5 Feb 2009 22:08:02 118'784 A.... "C:\Program Files\Alwil Software\Avast4\AhRuiOut.dll"
5 Feb 2009 22:06:46 22'528 A.... "C:\Program Files\Alwil Software\Avast4\ahRuiP2P.dll"
5 Feb 2009 22:09:08 57'344 A.... "C:\Program Files\Alwil Software\Avast4\AhRuiStd.dll"
5 Feb 2009 22:05:44 49'152 A.... "C:\Program Files\Alwil Software\Avast4\AhRuiWS.dll"
28 Mar 2009 22:21:00 274'640 A.... "C:\Program Files\Alwil Software\Avast4\ashAvast.exe"
5 Feb 2009 22:00:48 225'280 A.... "C:\Program Files\Alwil Software\Avast4\ashBase.dll"
5 Feb 2009 22:03:34 130'440 A.... "C:\Program Files\Alwil Software\Avast4\ashBug.exe"
5 Feb 2009 22:03:02 98'304 A.... "C:\Program Files\Alwil Software\Avast4\ashCfgP.dll"
5 Feb 2009 22:02:50 131'072 A.... "C:\Program Files\Alwil Software\Avast4\ashCfgT.dll"
5 Feb 2009 22:02:38 151'552 A.... "C:\Program Files\Alwil Software\Avast4\ashChest.dll"
28 Mar 2009 0:21:30 68'640 A.... "C:\Program Files\Alwil Software\Avast4\ashChest.exe"
5 Feb 2009 22:04:20 39'872 A.... "C:\Program Files\Alwil Software\Avast4\ashCnsnt.exe"
28 Mar 2009 19:40:58 81'000 A.... "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
28 Mar 2009 0:21:30 50'184 A.... "C:\Program Files\Alwil Software\Avast4\ashLogV.exe"
28 Mar 2009 16:03:56 254'040 A.... "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe"
5 Feb 2009 22:08:32 204'600 A.... "C:\Program Files\Alwil Software\Avast4\ashOutXt.dll"
28 Mar 2009 15:16:54 208'720 A.... "C:\Program Files\Alwil Software\Avast4\ashPopWz.exe"
28 Mar 2009 15:16:54 262'280 A.... "C:\Program Files\Alwil Software\Avast4\ashQuick.exe"
28 Mar 2009 16:03:52 138'680 A.... "C:\Program Files\Alwil Software\Avast4\ashServ.exe"
5 Feb 2009 22:13:46 81'072 A.... "C:\Program Files\Alwil Software\Avast4\ashShA64.dll"
5 Feb 2009 22:04:36 76'880 A.... "C:\Program Files\Alwil Software\Avast4\ashShell.dll"
28 Mar 2009 0:21:30 126'320 A.... "C:\Program Files\Alwil Software\Avast4\ashSimp2.exe"
28 Mar 2009 15:17:08 159'280 A.... "C:\Program Files\Alwil Software\Avast4\ashSimpl.exe"
28 Mar 2009 0:39:42 17'920 A.... "C:\Program Files\Alwil Software\Avast4\ashSkPcc.exe"
28 Mar 2009 0:21:30 61'440 A.... "C:\Program Files\Alwil Software\Avast4\ashSkPck.exe"
5 Feb 2009 22:00:54 53'248 A.... "C:\Program Files\Alwil Software\Avast4\ashSODBC.dll"
5 Feb 2009 22:01:18 233'472 A.... "C:\Program Files\Alwil Software\Avast4\ashSSqlt.dll"
5 Feb 2009 22:01:34 48'128 A.... "C:\Program Files\Alwil Software\Avast4\ashSXML.dll"
5 Feb 2009 22:01:00 118'784 A.... "C:\Program Files\Alwil Software\Avast4\ashTask.dll"
5 Feb 2009 22:02:32 331'776 A.... "C:\Program Files\Alwil Software\Avast4\ashUInt.dll"
28 Mar 2009 0:39:34 52'160 A.... "C:\Program Files\Alwil Software\Avast4\ashUpd.exe"
28 Mar 2009 16:05:08 352'920 A.... "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe"
5 Feb 2009 22:06:08 49'152 A.... "C:\Program Files\Alwil Software\Avast4\ashWsFtr.dll"
5 Feb 2009 22:00:54 659'456 A.... "C:\Program Files\Alwil Software\Avast4\aswAux.dll"
2 Feb 2009 23:42:04 31'552 A.... "C:\Program Files\Alwil Software\Avast4\aswChLic.exe"
5 Feb 2009 21:58:18 131'072 A.... "C:\Program Files\Alwil Software\Avast4\aswCmnB.dll"
5 Feb 2009 21:58:16 86'016 A.... "C:\Program Files\Alwil Software\Avast4\aswCmnOS.dll"
5 Feb 2009 21:58:26 192'512 A.... "C:\Program Files\Alwil Software\Avast4\aswCmnS.dll"
5 Feb 2009 22:00:40 1'302'528 A.... "C:\Program Files\Alwil Software\Avast4\aswEngin.dll"
5 Feb 2009 22:01:22 11'584 A.... "C:\Program Files\Alwil Software\Avast4\aswIdle.dll"
5 Feb 2009 22:00:32 23'040 A.... "C:\Program Files\Alwil Software\Avast4\aswInteg.dll"
5 Feb 2009 21:58:40 327'680 A.... "C:\Program Files\Alwil Software\Avast4\aswRawFS.dll"
28 Mar 2009 0:39:42 22'016 A.... "C:\Program Files\Alwil Software\Avast4\aswRegSvr.exe"
5 Feb 2009 21:58:06 147'456 A.... "C:\Program Files\Alwil Software\Avast4\aswRes.dll"
5 Feb 2009 21:59:06 86'016 A.... "C:\Program Files\Alwil Software\Avast4\aswScan.dll"
28 Mar 2009 16:03:52 18'752 A.... "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"
5 Feb 2009 22:06:42 106'496 A.... "C:\Program Files\Alwil Software\Avast4\avCommEx.dll"
5 Feb 2009 22:02:54 13'656 A.... "C:\Program Files\Alwil Software\Avast4\AVSSHOOK.dll"
28 Mar 2009 0:22:26 52'160 A.... "C:\Program Files\Alwil Software\Avast4\sched.exe"
5 Feb 2009 22:03:52 52'160 A.... "C:\Program Files\Alwil Software\Avast4\VisthAux.exe"
28 Mar 2009 0:39:40 38'848 A.... "C:\Program Files\Alwil Software\Avast4\VisthLic.exe"
28 Mar 2009 0:22:26 38'848 A.... "C:\Program Files\Alwil Software\Avast4\VisthUpd.exe"
5 Feb 2009 22:02:12 917'504 A.... "C:\Program Files\Alwil Software\Avast4\XT1922.dll"
28 Mar 2009 0:52:48 266'497 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\a.exe"
28 Mar 2009 0:06:50 176'501 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aecore.dll"
28 Mar 2009 0:06:50 340'341 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aegen.dll"
28 Mar 2009 0:06:50 119'158 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aehelp.dll"
28 Mar 2009 0:06:52 1'679'736 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aeheur.dll"
28 Mar 2009 0:06:52 196'987 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aeoffice.dll"
28 Mar 2009 0:06:52 397'687 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aepack.dll"
28 Mar 2009 0:06:54 127'346 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aescn.dll"
28 Mar 2009 0:06:54 369'019 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aescript.dll"
28 Mar 2009 0:06:54 2'162 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aeset.dat"
28 Mar 2009 0:06:56 106'868 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aevdf.dll"
28 Mar 2009 16:03:54 151'297 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe"
28 Mar 2009 0:52:58 315'649 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\b.exe"
28 Mar 2009 0:53:22 446'721 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\d.exe"
28 Mar 2009 0:53:36 184'577 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\e.exe"
28 Mar 2009 0:53:50 241'921 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\f.exe"
28 Mar 2009 0:54:00 123'137 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\g.exe"
28 Mar 2009 0:56:46 53'505 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\guardgui.exe"
28 Mar 2009 0:54:20 156'992 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\i.exe"
28 Mar 2009 0:54:32 95'552 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\j.exe"
28 Mar 2009 0:54:46 356'609 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\l.exe"
28 Mar 2009 16:05:16 98'561 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\preupd.exe"
28 Mar 2009 16:03:56 68'865 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe"
28 Mar 2009 0:06:56 77'312 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\unacev2.dll"
19 Feb 2009 18:25:20 22'528 A.... "C:\Program Files\CCleaner\Lang\lang-1058.dll"
24 Feb 2009 4:15:18 29'491 A.... "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\vcd-uninst.exe"
27 Mar 2009 21:08:22 548 A.... "C:\Program Files\eMule\Config\AC_SearchStrings.dat"
27 Mar 2009 21:08:22 237 A.... "C:\Program Files\eMule\Config\gui.dat"
27 Mar 2009 21:08:22 5 A.... "C:\Program Files\eMule\Config\partperm.dat"
27 Mar 2009 21:08:22 61 A.... "C:\Program Files\eMule\Config\preferences.dat"
27 Mar 2009 21:08:22 0 A.... "C:\Program Files\eMule\Config\shareddir.dat"
27 Mar 2009 21:08:22 0 A.... "C:\Program Files\eMule\Config\tempdir.dat"
27 Mar 2009 21:08:22 20'324 A.... "C:\Program Files\eMule\Config\traffic.dat"
27 Mar 2009 21:08:22 16 A.... "C:\Program Files\eMule\Config\userhash.dat"
29 Jan 2009 12:04:36 49'152 A.... "C:\Program Files\Google\Google Earth\earthflashsol.exe"
29 Jan 2009 11:37:50 55'296 A.... "C:\Program Files\Google\Google Earth\earthps.dll"
29 Jan 2009 12:04:16 18'213'888 A.... "C:\Program Files\Google\Google Earth\googleearth.exe"
29 Jan 2009 11:33:42 487'424 A.... "C:\Program Files\Google\Google Earth\gpsbabel.exe"
29 Jan 2009 11:33:50 151'552 A.... "C:\Program Files\Google\Google Earth\libexpatw.dll"
29 Jan 2009 11:33:52 548'864 A.... "C:\Program Files\Google\Google Earth\msvcp80.dll"
29 Jan 2009 11:33:52 626'688 A.... "C:\Program Files\Google\Google Earth\msvcr80.dll"
26 Mar 2009 2:10:36 161'776 A.... "C:\Program Files\Google\Google Updater\GoogleUpdater.exe"
11 Feb 2009 1:31:48 133'104 A.... "C:\Program Files\Google\Update\GoogleUpdate.exe"
2 Feb 2009 0:39:30 3'609'392 A.... "C:\Program Files\Microsoft Office\OFFICE11\OUTLFLTR.DAT"
3 Feb 2009 18:32:18 3'671'344 A.... "C:\Program Files\Microsoft Office\Office12\OUTLFLTR.DAT"
20 Feb 2009 4:09:26 23'032 A.... "C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll"
20 Feb 2009 4:09:26 134'648 A.... "C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll"
20 Feb 2009 4:09:26 65'528 A.... "C:\Program Files\Mozilla Firefox\plugins\npnul32.dll"
19 Feb 2009 20:33:06 117 A.... "C:\Program Files\Mozilla Firefox\res\hiddenWindow.html"
28 Mar 2009 15:16:34 510'592 A.... "C:\Program Files\Mozilla Firefox\uninstall\helper.exe"
11 Mar 2009 13:46:30 78'043 A.... "C:\Program Files\MySpace\IM\Uninstall.exe"
28 Mar 2009 15:28:30 48'670 A.... "C:\Program Files\O Imaging Corporation\ScanToPDF\uninst.exe"
3 Feb 2009 4:09:56 274'432 A.... "C:\Program Files\REAPER\Plugins\DiracLE.dll"
3 Feb 2009 4:09:56 420'864 A.... "C:\Program Files\REAPER\Plugins\elastique2.dll"
3 Feb 2009 4:09:56 380'928 A.... "C:\Program Files\REAPER\Plugins\elastique.dll"
16 Mar 2009 21:39:02 146'944 A.... "C:\Program Files\REAPER\Plugins\jsfx.dll"
16 Mar 2009 21:38:54 76'288 A.... "C:\Program Files\REAPER\Plugins\reaper_csurf.dll"
16 Mar 2009 21:36:52 244'736 A.... "C:\Program Files\REAPER\Plugins\reaper_wavpack.dll"
16 Mar 2009 21:37:32 91'136 A.... "C:\Program Files\REAPER\Plugins\reaper_video.dll"
16 Mar 2009 21:39:04 98'304 A.... "C:\Program Files\REAPER\Plugins\reaper_rex.dll"
16 Mar 2009 21:37:26 161'280 A.... "C:\Program Files\REAPER\Plugins\reaper_flac.dll"
16 Mar 2009 21:37:34 39'424 A.... "C:\Program Files\REAPER\Plugins\reaper_cd.dll"
16 Mar 2009 21:36:16 76'800 A.... "C:\Program Files\REAPER\Plugins\reaper_wave.dll"
16 Mar 2009 21:36:42 268'288 A.... "C:\Program Files\REAPER\Plugins\reaper_midi.dll"
16 Mar 2009 21:36:34 160'768 A.... "C:\Program Files\REAPER\Plugins\reaper_mp3dec.dll"
16 Mar 2009 21:36:26 1'222'144 A.... "C:\Program Files\REAPER\Plugins\reaper_ogg.dll"
16 Mar 2009 21:36:42 40'960 A.... "C:\Program Files\REAPER\Plugins\reaper_explorer.dll"
16 Mar 2009 21:38:46 120'832 A.... "C:\Program Files\REAPER\Plugins\reaper_ape.dll"
16 Mar 2009 21:36:46 15'872 A.... "C:\Program Files\REAPER\Plugins\soundtouch.dll"
18 Mar 2009 4:01:00 94'208 A.... "C:\Program Files\ScanSoft\OmniPage15.0\HTMLHost.exe"
18 Mar 2009 4:01:00 331'776 A.... "C:\Program Files\ScanSoft\OmniPage15.0\userax.dll"
6 Feb 2009 17:07:50 532'872 A.... "C:\Program Files\Windows Live\Contacts\abssm.dll"
6 Feb 2009 17:07:50 59'768 A.... "C:\Program Files\Windows Live\Contacts\conproxy.dll"
6 Feb 2009 17:07:46 129'400 A.... "C:\Program Files\Windows Live\Contacts\consync.dll"
6 Feb 2009 17:07:52 647'048 A.... "C:\Program Files\Windows Live\Contacts\contact.dll"
6 Feb 2009 17:07:48 581'496 A.... "C:\Program Files\Windows Live\Contacts\lmcdata.dll"
6 Feb 2009 17:07:48 27'512 A.... "C:\Program Files\Windows Live\Contacts\wlcomm.exe"
6 Feb 2009 17:07:50 32'648 A.... "C:\Program Files\Windows Live\Contacts\wldlog.dll"
6 Feb 2009 18:08:42 34'160 A.... "C:\Program Files\Windows Live\Family Safety\fsapi.dll"
6 Feb 2009 18:08:44 61'808 A.... "C:\Program Files\Windows Live\Family Safety\fssbho.dll"
6 Feb 2009 18:08:58 533'360 A.... "C:\Program Files\Windows Live\Family Safety\fsssvc.exe"
6 Feb 2009 18:08:38 22'384 A.... "C:\Program Files\Windows Live\Family Safety\fsssvcps.dll"
6 Feb 2009 18:11:02 33'152 A.... "C:\Program Files\Windows Live\Family Safety\fsui.dll"
6 Feb 2009 18:08:58 454'000 A.... "C:\Program Files\Windows Live\Family Safety\fsui.exe"
6 Feb 2009 18:08:38 21'888 A.... "C:\Program Files\Windows Live\Family Safety\fsuihc.dll"
6 Feb 2009 18:08:56 395'120 A.... "C:\Program Files\Windows Live\Family Safety\fsuires.dll"
6 Feb 2009 18:09:00 2'392'432 A.... "C:\Program Files\Windows Live\Family Safety\uxcore.dll"
6 Feb 2009 18:08:36 50'048 A.... "C:\Program Files\Windows Live\Family Safety\wldcore.dll"
6 Feb 2009 18:04:48 719'720 A.... "C:\Program Files\Windows Live\installer\wlarp.exe"
6 Feb 2009 18:04:48 373'608 A.... "C:\Program Files\Windows Live\installer\wloobe.exe"
6 Feb 2009 18:06:08 206'184 A.... "C:\Program Files\Windows Live\installer\wlsres.dll"
6 Feb 2009 18:53:04 165'208 A.... "C:\Program Files\Windows Live\Mail\ABImport.dll"
6 Feb 2009 18:52:42 109'408 A.... "C:\Program Files\Windows Live\Mail\actorbas.dll"
6 Feb 2009 18:52:40 103'776 A.... "C:\Program Files\Windows Live\Mail\adorner.dll"
6 Feb 2009 18:53:08 192'352 A.... "C:\Program Files\Windows Live\Mail\aimg.dll"
6 Feb 2009 18:53:08 176'480 A.... "C:\Program Files\Windows Live\Mail\alayout.dll"
6 Feb 2009 18:52:36 89'432 A.... "C:\Program Files\Windows Live\Mail\canproxy.dll"
6 Feb 2009 18:53:36 321'888 A.... "C:\Program Files\Windows Live\Mail\canvas.dll"
6 Feb 2009 18:52:36 107'864 A.... "C:\Program Files\Windows Live\Mail\cnvsshrd.dll"
6 Feb 2009 18:52:40 93'528 A.... "C:\Program Files\Windows Live\Mail\dgeneral.dll"
6 Feb 2009 18:53:08 187'744 A.... "C:\Program Files\Windows Live\Mail\mailacct.dll"
6 Feb 2009 18:53:40 791'392 A.... "C:\Program Files\Windows Live\Mail\mailcomm.dll"
6 Feb 2009 18:52:38 102'752 A.... "C:\Program Files\Windows Live\Mail\mailimp.dll"
6 Feb 2009 18:51:24 2'202'464 A.... "C:\Program Files\Windows Live\Mail\maillang.dll"
6 Feb 2009 18:53:54 11'716'448 A.... "C:\Program Files\Windows Live\Mail\mailres2.dll"
6 Feb 2009 18:53:04 131'928 A.... "C:\Program Files\Windows Live\Mail\mailrt2.dll"
6 Feb 2009 18:53:52 2'744'672 A.... "C:\Program Files\Windows Live\Mail\msmail.dll"
6 Feb 2009 18:52:40 18'784 A.... "C:\Program Files\Windows Live\Mail\piBase.dll"
6 Feb 2009 18:53:06 121'184 A.... "C:\Program Files\Windows Live\Mail\piOrg.dll"
6 Feb 2009 18:52:34 71'512 A.... "C:\Program Files\Windows Live\Mail\smapi.dll"
6 Feb 2009 18:53:06 131'424 A.... "C:\Program Files\Windows Live\Mail\ucspell.dll"
6 Feb 2009 18:52:40 104'280 A.... "C:\Program Files\Windows Live\Mail\uxcalendar.dll"
6 Feb 2009 18:53:38 542'048 A.... "C:\Program Files\Windows Live\Mail\uxcontacts.dll"
6 Feb 2009 18:53:54 2'392'416 A.... "C:\Program Files\Windows Live\Mail\uxcore.dll"
6 Feb 2009 18:51:02 302'936 A.... "C:\Program Files\Windows Live\Mail\wab32res.dll"
6 Feb 2009 18:53:36 315'744 A.... "C:\Program Files\Windows Live\Mail\wabapi.dll"
6 Feb 2009 18:53:04 169'816 A.... "C:\Program Files\Windows Live\Mail\wcics.dll"
6 Feb 2009 18:53:04 175'960 A.... "C:\Program Files\Windows Live\Mail\wcstore.dll"
6 Feb 2009 18:52:42 22'880 A.... "C:\Program Files\Windows Live\Mail\wcstoreproxy.dll"
6 Feb 2009 18:53:08 169'824 A.... "C:\Program Files\Windows Live\Mail\wcsync.dll"
6 Feb 2009 18:52:38 50'016 A.... "C:\Program Files\Windows Live\Mail\wldcore.dll"
6 Feb 2009 18:52:38 32'608 A.... "C:\Program Files\Windows Live\Mail\wldlog.dll"
6 Feb 2009 18:50:54 115'032 A.... "C:\Program Files\Windows Live\Mail\wlmail.exe"
29 Jan 2009 18:06:54 3'611'448 A.... "C:\Program Files\Windows Live\Mail\wlmfilter.dat"
6 Feb 2009 18:53:08 225'632 A.... "C:\Program Files\Windows Live\Messenger\liveNatTrav.dll"
6 Feb 2009 18:53:38 554'848 A.... "C:\Program Files\Windows Live\Messenger\livetransport.dll"
6 Feb 2009 18:52:44 62'304 A.... "C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll"
6 Feb 2009 18:53:08 222'560 A.... "C:\Program Files\Windows Live\Messenger\msgsc.14.0.8064.0206.dll"
6 Feb 2009 18:51:12 368'480 A.... "C:\Program Files\Windows Live\Messenger\msgslang.14.0.8064.0206.dll"
6 Feb 2009 18:53:54 11'410'784 A.... "C:\Program Files\Windows Live\Messenger\msgsres.dll"
6 Feb 2009 18:53:38 442'208 A.... "C:\Program Files\Windows Live\Messenger\msgswcam.dll"
6 Feb 2009 18:53:34 424'800 A.... "C:\Program Files\Windows Live\Messenger\PresenceIM.dll"
6 Feb 2009 18:52:42 56'160 A.... "C:\Program Files\Windows Live\Messenger\psmsong.14.0.8064.0206.dll"
29 Jan 2009 18:08:08 6'153'552 A.... "C:\Program Files\Windows Live\Messenger\rtmpltfm.dll"
29 Jan 2009 18:09:20 144'416 A.... "C:\Program Files\Windows Live\Messenger\sqmapi.dll"
29 Jan 2009 18:08:08 4'752'200 A.... "C:\Program Files\Windows Live\Messenger\uccapi.dll"
29 Jan 2009 18:08:06 639'824 A.... "C:\Program Files\Windows Live\Messenger\uccapires.dll"
6 Feb 2009 18:52:40 104'280 A.... "C:\Program Files\Windows Live\Messenger\uxcalendar.dll"
6 Feb 2009 18:53:38 542'048 A.... "C:\Program Files\Windows Live\Messenger\uxcontacts.dll"
6 Feb 2009 18:53:54 2'392'416 A.... "C:\Program Files\Windows Live\Messenger\uxcore.dll"
6 Feb 2009 18:53:36 439'648 A.... "C:\Program Files\Windows Live\Messenger\vvpltfrm.dll"
6 Feb 2009 18:21:00 73'072 A.... "C:\Program Files\Windows Live\Messenger\wlchtc.dll"
6 Feb 2009 18:21:00 583'024 A.... "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"
6 Feb 2009 18:17:44 62'304 A.... "C:\Program Files\Windows Live\Messenger\wlcstart.exe"
6 Feb 2009 18:17:46 876'896 A.... "C:\Program Files\Windows Live\Messenger\wlcui.dll"
6 Feb 2009 18:20:58 76'144 A.... "C:\Program Files\Windows Live\Messenger\wlcuires.dll"
6 Feb 2009 18:52:38 50'016 A.... "C:\Program Files\Windows Live\Messenger\wldcore.dll"
6 Feb 2009 18:52:38 32'608 A.... "C:\Program Files\Windows Live\Messenger\wldlog.dll"
6 Feb 2009 19:01:28 216'456 A.... "C:\Program Files\Windows Live\Photo Gallery\ImagingDevice.dll"
6 Feb 2009 19:01:28 427'912 A.... "C:\Program Files\Windows Live\Photo Gallery\ImagingServices.dll"
6 Feb 2009 19:01:26 128'904 A.... "C:\Program Files\Windows Live\Photo Gallery\MetadataSys.dll"
6 Feb 2009 19:06:16 12'664 A.... "C:\Program Files\Windows Live\Photo Gallery\Microsoft.WindowsLive.PublishPlugins.dll"
6 Feb 2009 19:01:32 2'149'256 A.... "C:\Program Files\Windows Live\Photo Gallery\MicrosoftEffects.dll"
6 Feb 2009 19:01:16 14'728 A.... "C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll"
6 Feb 2009 19:01:16 43'912 A.... "C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll"
6 Feb 2009 19:06:16 98'680 A.... "C:\Program Files\Windows Live\Photo Gallery\PublishPluginsInterop.dll"
6 Feb 2009 19:39:28 10'616 A.... "C:\Program Files\Windows Live\Photo Gallery\RegRes.dll"
6 Feb 2009 19:01:28 141'192 A.... "C:\Program Files\Windows Live\Photo Gallery\sqmapi.dll"
6 Feb 2009 19:01:24 104'328 A.... "C:\Program Files\Windows Live\Photo Gallery\UXCalendar.dll"
6 Feb 2009 19:01:28 542'088 A.... "C:\Program Files\Windows Live\Photo Gallery\UXContacts.dll"
6 Feb 2009 19:01:32 2'392'456 A.... "C:\Program Files\Windows Live\Photo Gallery\UXCore.dll"
6 Feb 2009 19:01:30 621'448 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoLibraryDatabase.dll"
6 Feb 2009 19:39:26 89'976 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoLibraryDuiResourcesLocalized.dll"
6 Feb 2009 19:01:20 71'560 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoSqm.dll"
6 Feb 2009 19:01:32 2'184'584 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoLibraryMain.dll"
6 Feb 2009 19:01:34 9'254'792 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoLibraryDuiResources.dll"
6 Feb 2009 19:39:26 1'812'344 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoLibraryResources.dll"
6 Feb 2009 19:01:32 1'260'936 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoViewer.dll"
6 Feb 2009 19:01:16 50'056 A.... "C:\Program Files\Windows Live\Photo Gallery\WLDCore.dll"
6 Feb 2009 19:01:32 1'247'624 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoVoyager.dll"
6 Feb 2009 19:39:28 549'240 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXAlbumDownloadWizard.exe"
6 Feb 2009 19:39:26 281'976 A.... "C:\Program Files\Windows Live\Photo Gallery\wlxclip.dll"
6 Feb 2009 19:01:28 191'368 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXDSPA.dll"
6 Feb 2009 19:01:24 127'368 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXGrinderScheduler.dll"
6 Feb 2009 19:01:20 79'240 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXImageTranscode.dll"
6 Feb 2009 19:39:28 1'103'224 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXMediaPublishSubscribe.dll"
6 Feb 2009 19:39:26 1'825'656 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoAcq.dll"
6 Feb 2009 19:01:28 231'304 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe"
6 Feb 2009 19:01:16 19'848 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoBase.dll"
6 Feb 2009 19:39:24 139'144 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe"
6 Feb 2009 19:01:24 83'336 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoCinematic.dll"
6 Feb 2009 19:01:16 16'776 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGalleryRepair.exe"
6 Feb 2009 19:01:20 80'264 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoClassic.dll"
6 Feb 2009 19:01:32 750'984 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPipeline.dll"
6 Feb 2009 19:01:32 732'040 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXPipetran.dll"
6 Feb 2009 19:01:14 18'312 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXQuickTimeControlHostPS.dll"
6 Feb 2009 19:01:26 117'128 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXQuickTimeControlHost.exe"
6 Feb 2009 19:01:18 51'080 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXQuickTimeShellExt.dll"
6 Feb 2009 19:39:28 71'032 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXSendMail.dll"
6 Feb 2009 19:39:26 508'792 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXSlideshow.dll"
6 Feb 2009 19:01:22 81'800 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXThumbCache.dll"
6 Feb 2009 19:01:28 142'216 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXVAFilt.dll"
6 Feb 200

Utilisateur anonyme > airquest
28 mars 2009 à 22:53

Procédons dans l'ordre
il faudrai SUPPRIMER LES CRACKS/KEYGEN car l'infection va revenir
Branches toute tes sources externes( clé USB, disque dur externe, lecteurMP3) sans les ouvrir
--> Double-clique sur le raccourci FindyKill sur ton Bureau.

--> Au menu principal, choisis l'option 2 (Suppression).

/!\ Il y aura un redémarrage, laisse travailler l'outil jusqu'à l'apparition du message "nettoyage effectué" /!\

--> Ensuite, poste le rapport FindyKill.txt

Note : le rapport FindyKill.txt est sauvegardé à la racine du disque

Réponse 3 / 5

kevin05 Messages postés 3636 Date d'inscription samedi 29 novembre 2008 Statut Contributeur sécurité Dernière intervention 13 mai 2010 147
28 mars 2009 à 22:40

Bonsoir

tu lien est cassé nathandre ;)

Réponse 4 / 5

Utilisateur anonyme
28 mars 2009 à 22:41

Bonsoir,

Pour aider:

Télécharge FindyKill de Chiquitine29

Utilisateur anonyme
28 mars 2009 à 22:42

j'ai vu mais il était trop tard, mille excuses

airquest > Utilisateur anonyme
28 mars 2009 à 22:54

rapport sdfix pas complet, voilà la fin :
je sais pas si c'est utile ...

6 Feb 2009 19:01:26 117'128 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXQuickTimeControlHost.exe"
6 Feb 2009 19:01:18 51'080 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXQuickTimeShellExt.dll"
6 Feb 2009 19:39:28 71'032 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXSendMail.dll"
6 Feb 2009 19:39:26 508'792 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXSlideshow.dll"
6 Feb 2009 19:01:22 81'800 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXThumbCache.dll"
6 Feb 2009 19:01:28 142'216 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXVAFilt.dll"
6 Feb 2009 19:01:28 521'096 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXVideoTrim.dll"
6 Feb 2009 19:39:26 764'280 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXVideoAcquireWizard.exe"
6 Feb 2009 19:01:18 69'512 A.... "C:\Program Files\Windows Live\Photo Gallery\WLXVideoCameraAutoPlayManager.exe"
6 Feb 2009 18:19:30 463'200 A.... "C:\Program Files\Windows Live\Sync\WindowsLiveSync.Resource.dll"
6 Feb 2009 18:23:32 1'170'272 A.... "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"
30 Jan 2009 15:58:50 144'416 A.... "C:\Program Files\Windows Live\Toolbar\sqmapi.dll"
6 Feb 2009 18:17:46 1'068'904 A.... "C:\Program Files\Windows Live\Toolbar\wltcore.dll"
6 Feb 2009 18:21:00 224'632 A.... "C:\Program Files\Windows Live\Toolbar\wltuser.exe"
6 Feb 2009 18:03:12 97'128 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Client.dll"
6 Feb 2009 17:59:24 953'192 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.CoreServices.dll"
6 Feb 2009 18:03:18 64'360 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.FileDestinations.dll"
6 Feb 2009 18:03:16 68'456 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.HtmlParser.dll"
6 Feb 2009 18:06:38 346'984 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.Localization.dll"
6 Feb 2009 18:06:08 244'584 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.HtmlEditor.dll"
6 Feb 2009 17:59:22 404'328 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.Controls.dll"
6 Feb 2009 18:03:12 129'896 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.Interop.dll"
6 Feb 2009 18:03:12 56'168 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.Passport.dll"
6 Feb 2009 18:03:26 166'768 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.Interop.Mshtml.dll"
6 Feb 2009 18:06:46 351'080 A.... "C:\Program Files\Windows Live\Writer\WindowsLiveLocal.WriterPlugin.dll"
6 Feb 2009 18:03:12 113'512 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.Mshtml.dll"
6 Feb 2009 18:03:12 43'888 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.Instrumentation.dll"
6 Feb 2009 18:07:54 141'680 A.... "C:\Program Files\Windows Live\Writer\WindowsLiveWriter.Application.dll"
6 Feb 2009 18:03:12 133'992 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.Interop.SHDocVw.dll"
6 Feb 2009 18:07:54 127'344 A.... "C:\Program Files\Windows Live\Writer\WindowsLiveWriter.Filter.dll"
6 Feb 2009 18:03:12 56'168 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.Extensibility.dll"
6 Feb 2009 18:03:22 129'896 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.SpellChecker.dll"
6 Feb 2009 17:59:22 3'140'456 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.PostEditor.dll"
6 Feb 2009 18:03:12 52'080 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.Api.dll"
6 Feb 2009 18:01:22 101'224 A.... "C:\Program Files\Windows Live\Writer\WindowsLiveWriter.exe"
6 Feb 2009 17:59:24 588'648 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.ApplicationFramework.dll"
6 Feb 2009 18:06:38 334'696 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.BlogClient.dll"
6 Feb 2009 18:03:26 72'552 A.... "C:\Program Files\Windows Live\Writer\WindowsLive.Writer.BrowserControl.dll"
6 Feb 2009 18:07:52 31'088 A.... "C:\Program Files\Windows Live\Writer\wlsqm.dll"
6 Feb 2009 18:07:54 187'248 A.... "C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll"
28 Mar 2009 0:15:30 7'010 A.... "C:\Program Files\Alwil Software\Avast4\DATA\iNews.htm"
5 Feb 2009 21:57:18 98'304 A.... "C:\Program Files\Alwil Software\Avast4\FRENCH\Base.dll"
5 Feb 2009 21:56:30 17'920 A.... "C:\Program Files\Alwil Software\Avast4\FRENCH\Boot.dll"
5 Feb 2009 21:57:18 2'572'288 A.... "C:\Program Files\Alwil Software\Avast4\FRENCH\Lang.dll"
5 Feb 2009 21:57:16 61'440 A.... "C:\Program Files\Alwil Software\Avast4\FRENCH\LangMai.dll"
28 Mar 2009 0:15:22 159'792 A.... "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll"
28 Mar 2009 0:06:50 176'501 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aecore.dll"
28 Mar 2009 0:06:50 340'341 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aegen.dll"
28 Mar 2009 0:06:50 119'158 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aehelp.dll"
28 Mar 2009 0:06:52 1'679'736 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aeheur.dll"
28 Mar 2009 0:06:52 196'987 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aeoffice.dll"
28 Mar 2009 0:06:52 397'687 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aepack.dll"
28 Mar 2009 0:06:54 127'346 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aescn.dll"
28 Mar 2009 0:06:54 369'019 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aescript.dll"
28 Mar 2009 0:06:54 2'162 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aeset.dat"
28 Mar 2009 0:06:56 106'868 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aevdf.dll"
28 Mar 2009 0:06:56 77'312 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\unacev2.dll"
17 Feb 2009 16:09:00 236'936 A.... "C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\HWDeviceLogin.dll"
17 Feb 2009 16:09:02 95'128 A.... "C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\LogicalDevice.dll"
17 Feb 2009 16:09:00 1'141'640 A.... "C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\msidcrl40.dll"
17 Feb 2009 16:11:04 408'440 A.... "C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll"
17 Feb 2009 16:14:40 117'640 A.... "C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe"
11 Mar 2009 5:38:10 36'218'232 A.... "C:\Program Files\Fichiers communs\Windows Live\.cache\wlc99.tmp"
26 Mar 2009 2:10:40 183'280 A.... "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"
26 Mar 2009 2:10:52 10'736 A.... "C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\gth.dll"
26 Mar 2009 2:10:50 119'280 A.... "C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\gtn.dll"
26 Mar 2009 2:10:50 668'656 A.... "C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll"
26 Mar 2009 2:10:36 1'204'208 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\ci.dll"
26 Mar 2009 2:10:36 100'848 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\cires.dll"
26 Mar 2009 2:10:36 227'824 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\GoogleUpdaterAdminPrefs.exe"
26 Mar 2009 2:10:36 169'968 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\GoogleUpdaterInstallMgr.exe"
26 Mar 2009 2:10:36 176'112 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\GoogleUpdaterSetup.exe"
26 Mar 2009 2:10:36 161'776 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\GoogleUpdaterRestartManager.exe"
26 Mar 2009 2:10:36 99'824 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll"
11 Feb 2009 1:31:48 25'584 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_fa.dll"
11 Feb 2009 1:31:48 23'024 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_ja.dll"
11 Feb 2009 1:31:48 20'976 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_zh-CN.dll"
11 Feb 2009 1:31:48 27'120 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_da.dll"
11 Feb 2009 1:31:48 27'632 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_ta.dll"
11 Feb 2009 1:31:48 138'224 A.... "C:\Program Files\Google\Update\1.2.141.5\GoopdateBho.dll"
11 Feb 2009 1:31:48 26'608 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_id.dll"
11 Feb 2009 1:31:48 26'096 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_en-GB.dll"
11 Feb 2009 1:31:48 27'120 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_pt-BR.dll"
11 Feb 2009 1:31:48 28'144 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_de.dll"
11 Feb 2009 1:31:48 27'632 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_te.dll"
11 Feb 2009 1:31:48 27'120 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_uk.dll"
11 Feb 2009 1:31:48 26'608 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_fi.dll"
11 Feb 2009 1:31:48 26'096 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_vi.dll"
11 Feb 2009 1:31:48 27'120 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_sk.dll"
11 Feb 2009 1:31:48 27'632 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_fil.dll"
11 Feb 2009 1:31:48 20'976 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_zh-TW.dll"
11 Feb 2009 1:31:48 26'608 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_hi.dll"
11 Feb 2009 1:31:48 26'096 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_th.dll"
11 Feb 2009 1:31:48 25'584 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_en.dll"
11 Feb 2009 1:31:48 28'656 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_el.dll"
11 Feb 2009 1:31:48 29'168 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_ml.dll"
11 Feb 2009 1:31:48 27'120 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_pt-PT.dll"
11 Feb 2009 1:31:48 27'120 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_no.dll"
11 Feb 2009 1:31:48 27'632 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_nl.dll"
11 Feb 2009 1:31:48 27'632 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_ro.dll"
11 Feb 2009 1:31:48 26'608 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_kn.dll"
11 Feb 2009 1:31:48 22'512 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_ko.dll"
11 Feb 2009 1:31:48 27'120 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_sl.dll"
11 Feb 2009 1:31:48 28'144 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_pl.dll"
11 Feb 2009 1:31:48 28'656 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_es.dll"
11 Feb 2009 1:31:48 26'608 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_is.dll"
11 Feb 2009 1:31:48 26'608 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_mr.dll"
11 Feb 2009 1:31:48 26'608 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_ms.dll"
11 Feb 2009 1:31:48 26'608 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_ur.dll"
11 Feb 2009 1:31:48 28'144 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_fr.dll"
11 Feb 2009 1:31:48 27'120 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_cs.dll"
11 Feb 2009 1:31:48 27'120 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_or.dll"
11 Feb 2009 1:31:48 27'120 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_sr.dll"
11 Feb 2009 1:31:48 27'120 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_hr.dll"
11 Feb 2009 1:31:48 27'120 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_tr.dll"
11 Feb 2009 1:31:48 26'608 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_et.dll"
11 Feb 2009 1:31:48 24'048 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_iw.dll"
11 Feb 2009 1:31:48 27'632 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_it.dll"
11 Feb 2009 1:31:48 26'608 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_ru.dll"
11 Feb 2009 1:31:48 27'120 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_gu.dll"
11 Feb 2009 1:31:48 26'608 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_sv.dll"
11 Feb 2009 1:31:48 27'632 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_hu.dll"
11 Feb 2009 1:31:48 27'632 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_lv.dll"
11 Feb 2009 1:31:48 26'608 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_lt.dll"
11 Feb 2009 1:31:48 27'120 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_es-419.dll"
11 Feb 2009 1:31:48 133'104 A.... "C:\Program Files\Google\Update\1.2.141.5\GoogleUpdate.exe"
11 Feb 2009 1:31:48 655'344 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdate.dll"
11 Feb 2009 1:31:48 25'072 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_ar.dll"
11 Feb 2009 1:31:48 28'144 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_bg.dll"
11 Feb 2009 1:31:48 26'608 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_bn.dll"
11 Feb 2009 1:31:48 27'632 A.... "C:\Program Files\Google\Update\1.2.141.5\goopdateres_ca.dll"
11 Feb 2009 1:31:48 232'432 A.... "C:\Program Files\Google\Update\1.2.141.5\npGoogleOneClick7.dll"
27 Mar 2009 22:54:54 53'248 A.... "C:\Program Files\Java\jre1.6.0_07\bin\helper.exe"
16 Mar 2009 21:37:00 179'712 A.... "C:\Program Files\REAPER\Plugins\FX\reacomp.dll"
16 Mar 2009 21:38:48 28'160 A.... "C:\Program Files\REAPER\Plugins\FX\readelay.dll"
16 Mar 2009 21:38:14 95'744 A.... "C:\Program Files\REAPER\Plugins\FX\reaeq.dll"
16 Mar 2009 21:37:04 226'304 A.... "C:\Program Files\REAPER\Plugins\FX\reafir.dll"
16 Mar 2009 21:37:08 173'056 A.... "C:\Program Files\REAPER\Plugins\FX\reagate.dll"
16 Mar 2009 21:38:10 59'392 A.... "C:\Program Files\REAPER\Plugins\FX\reainsert.dll"
16 Mar 2009 21:38:30 166'912 A.... "C:\Program Files\REAPER\Plugins\FX\reaninjam.dll"
16 Mar 2009 21:38:46 37'376 A.... "C:\Program Files\REAPER\Plugins\FX\reapitch.dll"
16 Mar 2009 21:37:22 66'048 A.... "C:\Program Files\REAPER\Plugins\FX\reasamplomatic.dll"
16 Mar 2009 21:38:36 62'976 A.... "C:\Program Files\REAPER\Plugins\FX\reastream.dll"
16 Mar 2009 21:37:18 11'264 A.... "C:\Program Files\REAPER\Plugins\FX\reasyndr.dll"
16 Mar 2009 21:37:18 18'432 A.... "C:\Program Files\REAPER\Plugins\FX\reasynth.dll"
16 Mar 2009 21:37:38 287'744 A.... "C:\Program Files\REAPER\Plugins\FX\reatune.dll"
16 Mar 2009 21:37:16 287'232 A.... "C:\Program Files\REAPER\Plugins\FX\reaverb.dll"
16 Mar 2009 21:38:44 45'056 A.... "C:\Program Files\REAPER\Plugins\FX\reaverbate.dll"
16 Mar 2009 21:38:52 41'472 A.... "C:\Program Files\REAPER\Plugins\FX\reavocode.dll"
16 Mar 2009 21:38:48 24'576 A.... "C:\Program Files\REAPER\Plugins\FX\reavoice.dll"
16 Mar 2009 21:38:40 222'720 A.... "C:\Program Files\REAPER\Plugins\FX\reaxcomp.dll"
3 Feb 2009 4:09:56 271'360 A.... "C:\Program Files\REAPER\Plugins\FX\Spectro_ReaperSpecial.dll"
6 Feb 2009 18:08:42 55'152 A.... "C:\Program Files\Windows Live\Family Safety\TDI\fssfltr_tdi.sys"
29 Jan 2009 18:06:52 278 A.... "C:\Program Files\Windows Live\Mail\Stationery\Mosaic1.htm"
29 Jan 2009 18:06:52 277 A.... "C:\Program Files\Windows Live\Mail\Stationery\Mosaic2.htm"
6 Feb 2009 18:05:36 203'624 A.... "C:\Program Files\Windows Live\Writer\fr\WindowsLive.Writer.Localization.resources.dll"
5 Feb 2009 22:05:12 26'944 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\Aavmker4.sys"
5 Feb 2009 22:07:12 20'560 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\aswFsBlk.sys"
5 Feb 2009 22:08:20 93'296 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\aswMon.sys"
5 Feb 2009 22:07:00 51'792 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\aswMonFlt.sys"
5 Feb 2009 22:06:10 23'152 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AswRdr.sys"
5 Feb 2009 22:06:20 51'376 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AswTdi.sys"
26 Mar 2009 2:10:36 1'410 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\HTML\confirm.htm"
26 Mar 2009 2:10:36 2'786 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\HTML\history.htm"
26 Mar 2009 2:10:36 8'184 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\HTML\installer.htm"
26 Mar 2009 2:10:36 1'343 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\HTML\lm.htm"
26 Mar 2009 2:10:36 5'319 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\HTML\maintainer.htm"
26 Mar 2009 2:10:36 6'904 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\HTML\preferences.htm"
26 Mar 2009 2:10:36 733 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\HTML\progress.htm"
26 Mar 2009 2:10:36 2'392 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\HTML\proxy.htm"
26 Mar 2009 2:10:36 5'165 A.... "C:\Program Files\Google\Google Updater\2.4.1536.6592\HTML\updates.htm"
13 Mar 2009 0:20:50 1 A.... "C:\Program Files\OpenOffice.org 3\share\uno_packages\cache\stamp.sys"
5 Feb 2009 22:05:18 25'168 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AMD64\Aavmker4.sys"
5 Feb 2009 22:07:18 22'096 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AMD64\aswFsBlk.sys"
5 Feb 2009 22:13:36 98'064 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AMD64\aswMem64.exe"
5 Feb 2009 22:08:16 75'856 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AMD64\aswMon2.sys"
5 Feb 2009 22:07:08 64'592 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AMD64\aswMonFlt.sys"
5 Feb 2009 22:06:14 27'216 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AMD64\aswRdr.sys"
5 Feb 2009 22:07:36 89'680 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AMD64\aswSP.sys"
5 Feb 2009 22:06:24 58'448 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\AMD64\aswTdi.sys"
5 Feb 2009 22:07:14 37'968 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\IA64\aswFsBlk.sys"
5 Feb 2009 22:07:04 139'344 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\IA64\aswMonFlt.sys"
5 Feb 2009 22:06:16 55'376 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\IA64\aswRdr.sys"
5 Feb 2009 22:07:30 169'040 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\IA64\aswSP.sys"
5 Feb 2009 22:06:24 127'568 A.... "C:\Program Files\Alwil Software\Avast4\Setup\INF\IA64\aswTdi.sys"
27 Mar 2009 22:50:52 147'456 A.... "C:\Program Files\Fichiers communs\Roxio Shared\9.0\Roxio Central33\Audio\Launch.exe"
29 Jan 2009 18:09:16 625'528 A.... "C:\Program Files\Windows Live\Mail\Proof\prf0009\7\mssp7en.DLL"

[b]Files with hidden attributes/b:

Mon 15 Dec 2008 399,872 ...H. --- "C:\Documents and Settings\nsq#02\Bureau\~WRL1833.tmp"
Mon 15 Sep 2008 426 A..H. --- "C:\Program Files\InterActual\InterActual Player\iti28A.tmp"
Fri 8 Aug 2008 53 A..H. --- "C:\Program Files\InterActual\InterActual Player\iti7.tmp"
Wed 2 Jan 2008 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp"
Mon 9 Jun 2008 101,352,837 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\a6f36bca80076bc7b8770a1b1fa57c6b\BIT6A.tmp"
Thu 19 Jun 2008 611,880 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\b31cf4664f48c912f25623330f59f1e0\BITAA.tmp"
Mon 9 Jun 2008 95,315,977 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\f8e4c50bd1c41feac24607e18c5505bd\BIT69.tmp"
Sat 28 Mar 2009 165,232 A..H. --- "C:\Documents and Settings\nsq#02\Application Data\Microsoft\Virtual PC\VPCKeyboard.dll"
Sat 2 Aug 2008 165,232 A..H. --- "C:\Documents and Settings\walter\Application Data\Microsoft\Virtual PC\VPCKeyboard.dll"
Sun 12 Oct 2008 165,232 A..H. --- "C:\Documents and Settings\Wolf\Application Data\Microsoft\Virtual PC\VPCKeyboard.dll"
Wed 14 May 2008 34,304 A..H. --- "C:\Documents and Settings\Wolf\Bureau\burau\TP\~WRL0001.tmp"
Wed 14 May 2008 80,384 A..H. --- "C:\Documents and Settings\Wolf\Bureau\burau\TP\~WRL2352.tmp"
Wed 14 May 2008 31,744 A..H. --- "C:\Documents and Settings\Wolf\Bureau\burau\TP\~WRL2416.tmp"
Wed 14 May 2008 34,304 A..H. --- "C:\Documents and Settings\Wolf\Mes documents\Fran‡ois Blodinet\TP\~WRL0001.tmp"
Wed 14 May 2008 80,384 A..H. --- "C:\Documents and Settings\Wolf\Mes documents\Fran‡ois Blodinet\TP\~WRL2352.tmp"
Wed 14 May 2008 31,744 A..H. --- "C:\Documents and Settings\Wolf\Mes documents\Fran‡ois Blodinet\TP\~WRL2416.tmp"

[b]Program Folders/b:

C:\Program Files\

AAS
Ableton
Acro Software
Adobe
Alwil Software
AMD
Apoint
Apple Software Update
ARAR
ATI Technologies
Audacity
Audacity 1.3 Beta (Unicode)
AVG
Avira
BitComet
Broadcom
Canon
CCleaner
CoffeeCup Software
Common Files
ComPlus Applications
CONEXANT
Cooledit
CyberLink
CyberLink DVD Solution
Dell
Dell Photo AIO Printer 942
DIFX
Digidesign
Digital Line Detect
Digital Photo Navigator 1.5
DivX
dl_Cats
ectsoft
Elaborate Bytes
eMule
EngAdven
Evrsoft First Page 2006
FairUse Wizard 2
Fichiers communs
Gaa Moa's Plugins for Cool Edit Pro
Google
GPLGS
Hemera Products
Hewlett-Packard
HP
IK Multimedia
InstallShield Installation Information
InterActual
Internet Explorer
Java
JRE
LUXONIX
Macromedia
MCK3
Messenger
Microsoft
Microsoft ActiveSync
Microsoft CAPICOM 2.1.0.2
microsoft frontpage
Microsoft Office
Microsoft Office Outlook Connector
Microsoft Silverlight
Microsoft SQL Server
Microsoft SQL Server Compact Edition
Microsoft Sync Framework
Microsoft Virtual PC
Microsoft Visual Studio
Microsoft Visual Studio 8
Microsoft Works
Microsoft.NET
Monkey's Audio
Movie Maker
Mozilla Firefox
MSBuild
MSECache
MSN
MSN Gaming Zone
MSXML 4.0
MSXML 6.0
Multimedia Card Reader
MySpace
MyWorks
NASA
NetMeeting
Netscape
NTRU Cryptosystems
O Imaging Corporation
O2Micro OZ776 SCR Driver
Olympus
Ontrack
OpenOffice.org 3
Outlook Express
QuickTime
Readiris Pro 11 Demo
Real
REAPER
RocketDock
Roxio
ScanSoft
Services en ligne
SigmaTel
SimpleOCR
Skyline
SlySoft
Sonic Foundry
Sonic Foundry Setup
Sony
Sony Ericsson
Sony Setup
Steinberg
Sunrise
Syncrosoft
Toshiba
Uninstall Information
Veoh Networks
VideoLAN
Viewpoint
VST-DX Adapter SE 3.203
Wave Systems Corp
Waves
Winamp
Windows Live
Windows Live Favorites
Windows Live Safety Center
Windows Live SkyDrive
Windows Live Toolbar
Windows Media Connect 2
Windows Media Player
Windows NT
WindowsUpdate
WinDriveGuard
Winrar
xerox
Yahoo!

C:\Program Files\Fichiers communs\

Adobe
Adobe Systems Shared
DESIGNER
digidesign
Hewlett-Packard
HP
InstallShield
Java
L&H
Macromedia
Microsoft Shared
MSSoap
ODBC
Real
Roxio Shared
ScanSoft Shared
Services
Sonic Shared
Sony Ericsson Shared
SpeechEngines
SupportSoft
SureThing Shared
System
Teleca Shared
Windows Live
WindowsLiveInstaller
xing shared

[b]Add/Remove Programs/b:

Windows Driver Package - O2Micro (guardian2) SmartCardReader (02/05/2007 1.1.3.7)
Windows Driver Package - Dell Inc. PBADRV System (09/25/2006 6.0.0.0)
Adobe Flash Player ActiveX
Adobe Flash Player 10 Plugin
Advanced RAR Repair v1.2
ATI - Utilitaire de désinstallation du logiciel
ATI Display Driver
Atti-TUBE
Audacity 1.3.6 (Unicode)
avast! Antivirus
BitComet 0.99
Bovbjerg Piano Module
Dell Wireless WLAN Card
CCleaner (remove only)
CloneDVD2
Conexant HDA D330 MDC V.92 Modem
Compteur de volume sunrise
Cool Edit Pro v1.2a
CutePDF Writer 2.7
Steinberg DeClicker v1.21
EGOSYS FX-Pack
eMule Plus 1.2c
Evrsoft First Page 2006
FairUse Wizard 2
Fxpansion VST-DX Adapter Standard Edition v3.203
Gaa Moa's Plugins for Cool Edit Pro
getPlus(R)_ocx
Outil de mise à jour Google
Hemera Products
Photo et imagerie HP 3.1
Microsoft Internationalized Domain Names Mitigation APIs
Windows Internet Explorer 7
VeohTV BETA
Wave Support Software
Multimedia Card Reader
Private Information Manager
EasyRecovery Professional
OZ776 SCR Driver V1.1.3.9
Document Manager Lite
EMBASSY Security Setup
ETS Upgrade
Secure Update
ESC Home Page Plugin
Security Wizards
EMBASSY Security Center
InterActual Player
Java Web Start
Kaspersky Online Scanner
Windows Genuine Advantage Validation Tool (KB892130)
Security Update for CAPICOM (KB931906)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)
Mise à jour de sécurité pour Windows XP (KB938464)
Mise à jour de sécurité pour Windows XP (KB938464-v2)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)
Mise à jour de sécurité pour Windows XP (KB946648)
Correctif pour Windows Internet Explorer 7 (KB947864)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)
Mise à jour pour Windows XP (KB951978)
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)
Mise à jour de sécurité pour Windows XP (KB954211)
Mise à jour de sécurité pour Windows XP (KB954459)
Mise à jour de sécurité pour Windows XP (KB954600)
Mise à jour de sécurité pour Windows XP (KB955069)
Mise à jour pour Windows XP (KB955839)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)
Mise à jour de sécurité pour Windows XP (KB956391)
Mise à jour de sécurité pour Windows XP (KB956802)
Mise à jour de sécurité pour Windows XP (KB956803)
Mise à jour de sécurité pour Windows XP (KB956841)
Mise à jour de sécurité pour Windows XP (KB957095)
Mise à jour de sécurité pour Windows XP (KB957097)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)
Mise à jour de sécurité pour Windows XP (KB958644)
Mise à jour de sécurité pour Windows XP (KB958687)
Mise à jour de sécurité pour Windows XP (KB958690)
Mise à jour critique pour Lecteur Windows Media 11 (KB959772)
Mise à jour de sécurité pour Windows XP (KB960225)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)
Mise à jour de sécurité pour Windows XP (KB960715)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)
Mise à jour pour Windows XP (KB967715)
LADSPA_plugins-win-0.4.15
LUXONIX LFX-1310
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Multimedia Construction Kit 3.4.2 - Build 040.308
Microsoft .NET Framework 1.1
Monkey's Audio
Mozilla Firefox (3.0.7)
Microsoft Compression Client Pack 1.0 for Windows XP
MSN
MySpaceIM
NASA World Wind 1.4
Microsoft National Language Support Downlevel APIs
Pack Vista Inspirat 2 1.0
Microsoft Office Professional Plus 2007
RealPlayer
REAPER
ScanToPDF 3.1.4
SimpleOCR 3.1
Steinberg Cubase SX v3.0.2.623
Steinberg Denoiser v1.51
Steinberg Magneto VST v1.5
Steinberg Nuendo v2.1.1.25
Sunrise internet assistant
SyncroSoft Emu (Remove only)
Le Centre de Contrôle de Licences de Syncrosoft
T-RackS 24 v2.0.1
TerraExplorer
BEHRINGER USB AUDIO DRIVER
Viewpoint Media Player (Remove Only)
VirtualCloneDrive
VLC media player 0.9.6
VST to DirectX Plug-in Adapter
VST Bridge 1.1
Waves Diamond Bundle v5.2
Waves L3 v5.2
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Notifications (KB905474)
Windows Imaging Component
Windows Live OneCare safety scanner
Windows Media Format 11 runtime
Lecteur Windows Media 11
Windows XP Service Pack 3
Installation Windows Live
Windows Media Format 11 runtime
Windows Media Player 11
Microsoft User-Mode Driver Framework Feature Pack 1.0
Yahoo! Toolbar avec bloqueur de fenêtres pop-up
Yahoo! Toolbar
Yahoo! Widgets
Apple Software Update
Roxio Creator Tools
VeohTV BETA
Windows Live Messenger
Wave Support Software
AiO_Scan
MSXML 6.0 Parser (KB933579)
Multimedia Card Reader
Private Information Manager
ScanSoft OmniPage 15.0
Extension de Windows Live Toolbar (Windows Live Toolbar)
Menus intelligents (Windows Live Toolbar)
Roxio Creator Data
Security Update for CAPICOM (KB931906)
QuickTime
AutoUpdate
Outil de téléchargement Windows Live
Windows Live Writer
MSVCRT
Google Toolbar for Internet Explorer
tsp patch
HPpromotions
EasyRecovery Professional
Java(TM) 6 Update 11
Broadcom ASF Management Applications
Sonic Foundry CD Architect 5.0
OpenOffice.org 3.0 Language Pack (French)
DocProc
Roxio Drag-to-Disc
Roxio Update Manager
Java(TM) 6 Update 3
Java(TM) 6 Update 5
Java(TM) 6 Update 7
OZ776 SCR Driver V1.1.3.9
Broadcom TPM Driver Installer
Sonic Activation Module
T-RackS 1.x
Preboot Manager
Windows Live Communications Platform
Macromedia Extension Manager
HPSystemDiagnostics
Sony DVD Architect 3.0
T-RackS 3 Deluxe
Galerie de photos Windows Live
Junk Mail filter update
SkinsHP1
Document Manager Lite
EMBASSY Security Setup
Google Earth
Readme
neroxml
Microsoft Office Live Add-in 1.3
ShareIns
QuickProjects
Sony Vegas 6.0
Macromedia Dreamweaver 8
ScanSoft PDF Converter 3.0
5500_Help
Roxio Creator Copy
Adobe After Effects 6.5
Windows Live Mail
Roxio Express Labeler
Sony Ericsson PC Suite
PowerDVD
OpenOffice.org 3.0
Windows Media Player Firefox Plugin
Adobe Encore DVD 1.5
HP Photo and Imaging 2.0 - Scanners
Sonic Foundry Sound Forge 6.0a
Microsoft Visual C++ 2005 Redistributable
ETS Upgrade
Installation Windows Live
InstantShare
Windows Live Favorites pour Windows Live Toolbar
DivX Codec
Surligneur (Windows Live Toolbar)
Director
Windows Live Call
Roxio Creator Audio
MSXML 4.0 SP2 (KB954430)
Adobe Audition 1.5
QFolder
Microsoft Silverlight
Microsoft Sync Framework Runtime Native v1.0 (x86)
Microsoft Virtual PC 2007
DivX Player
Choice Guard
Microsoft Office Professional Edition 2003
Microsoft Software Update for Web Folders (French) 12
Microsoft Office Professional Plus 2007
Update for Outlook 2007 Junk Email Filter (kb962871)
Security Update for Microsoft Office Word 2007 (KB956358)
Update for Microsoft Office Outlook 2007 (KB952142)
Security Update for Microsoft Office PowerPoint 2007 (KB951338)
Security Update for Microsoft Office system 2007 (KB954326)
Security Update for Microsoft Office Excel 2007 (KB958437)
Security Update for 2007 Microsoft Office System (KB958439)
Security Update for Visio 2007 (KB947590)
Security Update for 2007 Microsoft Office System (KB951944)
Security Update for Microsoft Office system 2007 (KB956828)
Update for Office 2007 (KB946691)
Security Update for 2007 Microsoft Office System (KB951550)
2007 Microsoft Office Suite Service Pack 1 (SP1)
Security Update for Microsoft Office Publisher 2007 (KB950114)
Microsoft Office Access MUI (French) 2007
2007 Microsoft Office Suite Service Pack 1 (SP1)
Microsoft Office Excel MUI (French) 2007
2007 Microsoft Office Suite Service Pack 1 (SP1)
Microsoft Office PowerPoint MUI (French) 2007
2007 Microsoft Office Suite Service Pack 1 (SP1)
Microsoft Office Publisher MUI (French) 2007
2007 Microsoft Office Suite Service Pack 1 (SP1)
Microsoft Office Outlook MUI (French) 2007
2007 Microsoft Office Suite Service Pack 1 (SP1)
Microsoft Office Word MUI (French) 2007
2007 Microsoft Office Suite Service Pack 1 (SP1)
Microsoft Office Proof (Arabic) 2007
2007 Microsoft Office Suite Service Pack 1 (SP1)
Microsoft Office Proof (German) 2007
2007 Microsoft Office Suite Service Pack 1 (SP1)
Microsoft Office Proof (English) 2007
2007 Microsoft Office Suite Service Pack 1 (SP1)
Microsoft Office Proof (French) 2007
2007 Microsoft Office Suite Service Pack 1 (SP1)
Microsoft Office Proof (Dutch) 2007
2007 Microsoft Office Suite Service Pack 1 (SP1)
Microsoft Office Proof (Spanish) 2007
2007 Microsoft Office Suite Service Pack 1 (SP1)
Microsoft Office Proofing (French) 2007
Microsoft Office InfoPath MUI (French) 2007
2007 Microsoft Office Suite Service Pack 1 (SP1)
Microsoft Office Shared MUI (French) 2007
Microsoft Office Language Pack 2007 Service Pack 1 (SP1)
Microsoft Office FrontPage 2003
Microsoft Office Standard Edition 2003
Scan
5500Trb
Microsoft Office Outlook Connector
O2Micro USB Smart Card Reader
Microsoft .NET Framework 1.1 French Language Pack
Windows Live Sync
Microsoft Search Enhancement Pack
Dell Touchpad
Adobe Premiere Pro 1.5
Segoe UI
CreativeProjects
SigmaTel Audio
NTRU TCG Software Stack
Google Update Helper
Dell Embassy Trust Suite by Wave Systems
Adobe Reader 8.1.3 - Français
ScanSoft PDF Create! 3.0
Tassman ESI Edition
Readiris Pro 11 Demo
DivX Converter
Disque de souvenirs HP
DivX Web Player
PowerProducer
Digital Photo Navigator 1.5
DVD Solution
Digidesign Pro Tools® FREE
CanoScan Toolbox 4.1
Microsoft Sync Framework Services Native v1.0 (x86)
MSXML 4.0 SP2 (KB936181)
Microsoft .NET Framework 2.0 Service Pack 2
AMD Processor Driver
AiOSoftware
PhotoGallery
QuickSet
Sony Media Manager 2.0
Roxio Creator DE
HP Product Detection
Microsoft .NET Framework 1.1
HP Software Update
5500Tour
TrayApp
Bluetooth Stack for Windows by Toshiba
PrintScreen
Copy
Secure Update
Assistant de connexion Windows Live
Wave Infrastructure Installer
Broadcom Gigabit Integrated Controller
Fax
SkinsHP2
Windows Live Contrôle parental
5500
IntelliSonic Speech Enhancement
Sony Vegas 4.0e
Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR)
Unload
biolsp patch
Digital Line Detect
ESC Home Page Plugin
AIOMinimal
Security Wizards
PowerDirector Express
EMBASSY Security Center
Adobe Photoshop CS
Java 2 Runtime Environment, SE v1.4.1_02
Microsoft SQL Server 2005 Compact Edition [ENU]
EMBASSY Trust Suite by Wave Systems
HP PSC & OfficeJet 3.0
Windows Live Toolbar
Compteur de volume sunrise
Olympus Digital Wave Player
WebReg
upekmsi
Notification de cadeaux MSN

[b]Run Values/b:

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"SigmatelSysTrayApp"="stsystra.exe"
"KADxMain"="C:\\WINDOWS\\system32\\KADxMain.exe"
"Broadcom Wireless Manager UI"="C:\\WINDOWS\\system32\\WLTRAY.exe"
"Dell QuickSet"="C:\\Program Files\\Dell\\QuickSet\\quickset.exe"
"Apoint"="C:\\Program Files\\Apoint\\Apoint.exe"
"Document Manager"="C:\\Program Files\\Wave Systems Corp\\Services Manager\\DocMgr\\bin\\docmgr.exe"
"SecureUpgrade"="C:\\Program Files\\Wave Systems Corp\\SecureUpgrade.exe"
"EmbassySecurityCheck"="\"C:\\Program Files\\Wave Systems Corp\\EMBASSY Security Setup\\EMBASSYSecurityCheck.exe\""
"RoxioDragToDisc"="\"C:\\Program Files\\Roxio\\Drag-to-Disc\\DrgToDsc.exe\""
"ISUSPM Startup"="C:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\UPDATE~1\\ISUSPM.exe -startup"
"ISUSScheduler"="\"C:\\Program Files\\Fichiers communs\\InstallShield\\UpdateService\\issch.exe\" -start"
"PDVDDXSrv"="\"C:\\Program Files\\CyberLink\\PowerDVD DX\\PDVDDXSrv.exe\""
"H2O"="C:\\Program Files\\SyncroSoft\\Pos\\H2O\\cledx.exe"
"RemoteControl"="\"C:\\Program Files\\CyberLink DVD Solution\\PowerDVD\\PDVDServ.exe\""
"SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre6\\bin\\jusched.exe\""
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"DLBUCATS"="rundll32 C:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\DLBUtime.dll,_RunDLLEntry@16"
"HP Software Update"="\"C:\\Program Files\\HP\\HP Software Update\\HPWuSchd.exe\""
"DXDllRegExe"="dxdllreg.exe"
"Sony Ericsson PC Suite"="\"C:\\Program Files\\Sony Ericsson\\Mobile2\\Application Launcher\\Application Launcher.exe\" /startoptions"
"TkBellExe"="\"C:\\Program Files\\Fichiers communs\\Real\\Update_OB\\realsched.exe\" -osboot"
"Sunrise"="\"C:\\Program Files\\Sunrise\\bin\\sprtcmd.exe\" /P Sunrise"
"Adobe Reader Speed Launcher"="\"C:\\Program Files\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\""
"VirtualCloneDrive"="\"C:\\Program Files\\Elaborate Bytes\\VirtualCloneDrive\\VCDDaemon.exe\" /s"
"Share-to-Web Namespace Daemon"="c:\\Program Files\\HP\\HP Share-to-Web\\hpgs2wnd.exe"
"SSBkgdUpdate"="\"C:\\Program Files\\Fichiers communs\\Scansoft Shared\\SSBkgdUpdate\\SSBkgdupdate.exe\" -Embedding -boot"
"Opware15"="\"C:\\Program Files\\ScanSoft\\OmniPage15.0\\Opware15.exe\""
"PDF3 Registry Controller"="\"C:\\Program Files\\ScanSoft\\OmniPage15.0\\PDFConverter3\\\\RegistryController.exe\""
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]
@=""

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"
@=""

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"NoChange"="1"
"Installed"="1"
@=""

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"
@=""

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe"
"msnmsgr"="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\" /background"
"MySpaceIM"="C:\\Program Files\\MySpace\\IM\\MySpaceIM.exe"
"OpAgent"="\"C:\\Program Files\\ScanSoft\\OmniPage15.0\\OpAgent.exe\" /agent"

[b]Bot Check/b:

SERVICE_NAME: wscsvc
DISPLAY_NAME : Centre de sécurité
START_TYPE : 4 DISABLED

SERVICE_NAME: sharedaccess
DISPLAY_NAME : Pare-feu Windows / Partage de connexion Internet
START_TYPE : 4 DISABLED

SERVICE_NAME: wuauserv
DISPLAY_NAME : Mises à jour automatiques
START_TYPE : 4 DISABLED

SERVICE_NAME: srservice
DISPLAY_NAME : Service de restauration système
START_TYPE : 2 AUTO_START

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole]
"EnableDCOM"="Y"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"restrictanonymous"=dword:00000000

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update]
"AUOptions"=dword:00000003

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify"=dword:00000000
"FirewallDisableNotify"=dword:00000000
"UpdatesDisableNotify"=dword:00000000
"AntiVirusOverride"=dword:00000000
"FirewallOverride"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"WaitToKillServiceTimeout"="20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"SFCDisable"=dword:00000000
"SfcScan"=dword:00000000
"Shell"="Explorer.exe"
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shell extensions]

@=""

@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetBT\Parameters]
"TransportBindName"="\\Device\\"

[b]ShellExecuteHooks/b:

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""

[b]Environment/b:

HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager\environment
ComSpec REG_EXPAND_SZ %SystemRoot%\system32\cmd.exe
Path REG_EXPAND_SZ %SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\;C:\Program Files\Wave Systems Corp\Dell Preboot Manager\Access Client\v5\;C:\Program Files\Fichiers communs\Roxio Shared\DLLShared\;C:\Program Files\Microsoft SQL Server\80\Tools\Binn\;C:\Program Files\QuickTime\QTSystem\;C:\Program Files\Fichiers communs\Teleca Shared
windir REG_EXPAND_SZ %SystemRoot%
OS REG_SZ Windows_NT
PATHEXT REG_SZ .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
TEMP REG_EXPAND_SZ %SystemRoot%\TEMP
TMP REG_EXPAND_SZ %SystemRoot%\TEMP
RoxioCentral REG_SZ C:\Program Files\Fichiers communs\Roxio Shared\9.0\Roxio Central33\
CLASSPATH REG_SZ .;C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
QTJAVA REG_SZ C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip

[b]SecurityProviders/b:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders
SecurityProviders REG_SZ msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll

[b]Authentication Packages/b:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
Authentication Packages REG_MULTI_SZ msv1_0\0wvauth\0nwprovau\0\0

[b]Subsystem Startup/b:

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems]
"Windows"="%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16"

[b]Midi Drivers/b:

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midi"="wdmaud.drv"
"midi1"="wdmaud.drv"
"midi2"="wdmaud.drv"
"midi3"="wdmaud.drv"
"midi4"="wdmaud.drv"

[b]Non-Default IFEO Debugger/b:

[b]Non-Default Installed Components/b:

[b]Non-Default Safeboot Minimal/b:

[b]File Associations/b:

[HKEY_CLASSES_ROOT\batfile\shell\open\command]
@="\"%1\" %*"

[HKEY_CLASSES_ROOT\cmdfile\shell\open\command]
@="\"%1\" %*"

[HKEY_CLASSES_ROOT\comfile\shell\open\command]
@="\"%1\" %*"

[HKEY_CLASSES_ROOT\exefile\shell\open\command]
@="\"%1\" %*"

[HKEY_CLASSES_ROOT\htafile\shell\open\command]
@="C:\\WINDOWS\\system32\\mshta.exe \"%1\" %*"

[HKEY_CLASSES_ROOT\http\shell\open\command]
@="\"C:\\Program Files\\Mozilla Firefox\\firefox.exe\" -requestPending -osint -url \"%1\""

[HKEY_CLASSES_ROOT\htmlfile\shell\open\command]
@="\"C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE\" -nohome"

[HKEY_CLASSES_ROOT\regedit\shell\open\command]
@="regedit.exe %1"

[HKEY_CLASSES_ROOT\regfile\shell\open\command]
@="regedit.exe \"%1\""

[HKEY_CLASSES_ROOT\scrfile\shell\open\command]
@="\"%1\" /S"

[HKEY_CLASSES_ROOT\txtfile\shell\open\command]
@="%SystemRoot%\system32\NOTEPAD.EXE %1"

[b]Finished!/b

Utilisateur anonyme > airquest
28 mars 2009 à 22:59

Est-ce que le pc a redémarré lors de l'exécution de SDFIX ?

airquest > Utilisateur anonyme
28 mars 2009 à 23:00

non pas du tout. j'ai réussi a lancer elblaga si jamais, je suis en train de faire le scan.

Utilisateur anonyme > airquest
28 mars 2009 à 23:08

il me faudrai plutot le rapport de l'option 2 de findykill qui a trouvé plein de saletés

Réponse 5 / 5

airquest
28 mars 2009 à 23:38

Ok, je vais supprimer tous les cracks téléchargés. Mais est-ce que tu penses que le problème est résolu ??

Utilisateur anonyme
28 mars 2009 à 23:42

les cracks poubelle et faut la vider, il faudra purger le pc car les nuisibles se cachent dans les points de restauration

airquest > Utilisateur anonyme
28 mars 2009 à 23:43

ok. ça a l'air de marcher, j'ai pu installer antivir.
MErci !!!

Utilisateur anonyme > airquest
28 mars 2009 à 23:50

Malwarebytes' Anti-malware: Ce logiciel supprime les malwares, et détecte les
trojans, les rogues, les adwares.
Le télécharger [ http://www.clubic.com/telecharger-fiche215092-malwarebytes-
anti-malware.html
S'il te manque "COMCTL32.OCX" lors de l'installation, le télécharger
http://www.malekal.com/download/comclt32.ocx
L'enregistrer sur le bureau
Double-clic sur l'icône "Download_mbam-setup.exe" pour lancer le processus d'installation
Si la pare-feu demande l'autorisation de se connecter pour malwarebytes, accepter
Il va se mettre à jour une fois faite
Se rendre dans l'onglet "recherche"
Sélectionner "exécuter un examen complet"
Cliquer sur "rechercher"
Le scan démarre
A la fin de l'analyse, le message s'affiche: L'examen s'est terminé normalement.
Cliquer sur "afficher les résultats" pour afficher les objets trouvés
Cliquer sur OK pour pousuivre
Si des malwares ont été détectés, cliquer sur "afficher les résultats"
Sélectionner tout (ou laisser coché)
Cliquer sur "supprimer la sélection"
Malwarebytes va détruire les fichiers et les clés de registre et en mettre une
copie dans la quarantaine
Malewarebytes va ouvrir le bloc-note et y copier le rapport
Redémarrer le PC
Une fois redémarré, double-cliquer sur Malewarebytes
Se rendre dans l'onglet rapport/log
Cliquer dessus pour l'afficher une fois affiché, cliquer sur "édition" en haut du
bloc-note puis sur "sélectionner tout"
Recliquer sur "édition", puis sur "copier" et revenir sur le forum et dans ta réponse
Clic droit dans le cadre de la réponse et coller

Utilisateur anonyme > Utilisateur anonyme
28 mars 2009 à 23:54

je vais poursuivre demain, mais il faudra penser à la purge du pc, je t'expliquerai cela, mais fait d'abord
malwarebytes. Le pc doit etre bien désinfecté avant la purge.

Virus bloque tous les exe window et antivirus

5 réponses

Discussions similaires

Newsletters