Sujet Précédent Sujet Suivant

Comment me debaraser d'un rootkit

bigfrantz Messages postés 4 Statut Membre -
pimprenelle27 Messages postés 22182 Statut Contributeur sécurité - 10 sept. 2009 à 12:14

Bonjour,
Logfile of random's system information tool 1.06 (written by random/random)
Run by frantz67 at 2009-09-09 01:13:56
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2
System drive C: has 369 GB (62%) free of 595 GB
Total RAM: 3071 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 01:14:00, on 09/09/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\vVX1000.exe
C:\Program Files\Windows Live\Family Safety\fsui.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\HiYo\Bin\HiYo.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
C:\Program Files\ZyXEL\IEEE802.11b WLAN Card Utility\WLPCCfg.exe
C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
C:\Program Files\DNA\btdna.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\AVG\AVG8\aAvgApi.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Windows\system32\conime.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\frantz67\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\frantz67.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://home.sweetim.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
R3 - URLSearchHook: (no name) - *{EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
R3 - URLSearchHook: (no name) - *{EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: PHPNukeFR Toolbar - {1c491116-c175-45e1-a570-6fb14fea8b7b} - (no file)
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: PHPNukeFR Toolbar - {1c491116-c175-45e1-a570-6fb14fea8b7b} - (no file)
O3 - Toolbar: (no name) - {66886C4D-B307-4ECA-A228-52CA9B9851A4} - (no file)
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [VX1000] C:\Windows\vVX1000.exe
O4 - HKLM\..\Run: [LifeCamSetup] "E:\setupstb.exe"
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [Hiyo] C:\Program Files\HiYo\bin\HiYo.exe /RunFromStartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\frantz67\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] c:\program files\uniblue\registrybooster\StartRegistryBooster.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\Windows\System32\Adobe\Shockwave 11\SwHelper_1103472.exe -Update -1103472 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; GTB6; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.5.30729; .NET CLR 3.0.30618; .NET CLR 1.1.4322)" -"http://www.habbo.fr/client/skip_shockwave_detection"
O4 - Startup: rundll32.lnk = C:\Windows\System32\rundll32.exe
O4 - Global Startup: Assistant Smart Wizard NETGEAR pour WG311v3.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
O4 - Global Startup: IEEE802.11b WLAN Card Utility.lnk = C:\Program Files\ZyXEL\IEEE802.11b WLAN Card Utility\WLPCCfg.exe
O4 - Global Startup: NETGEAR WG111v3 Smart Wizard.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\Microsoft Office\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: C:\Windows\System32\avgrsstx.dll,avgrsstx.dll
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: AVG8 Firewall (avgfws8) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgfws8.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Stardock WindowBlinds (WindowBlinds) - Stardock Corporation - C:\PROGRA~1\Stardock\Object Desktop\WindowBlinds\VistaSrv.exe

--
End of file - 10612 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2751429160-932251314-263082057-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2751429160-932251314-263082057-1000UA.job
C:\Windows\tasks\User_Feed_Synchronization-{87DAD364-8F7A-42F8-86A8-56A22CF43517}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-12 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1c491116-c175-45e1-a570-6fb14fea8b7b}]
PHPNukeFR Toolbar

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-09-06 1111320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2009-02-06 61808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-09-05 1968920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
AVG Security Toolbar BHO - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll [2009-07-24 1062144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-08-27 256112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2009-08-27 761840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-08-27 458736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-31 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-05-20 1258808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
{1c491116-c175-45e1-a570-6fb14fea8b7b} - []
{66886C4D-B307-4ECA-A228-52CA9B9851A4}
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-04-23 937416]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll [2009-07-24 1062144]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-05-20 1258808]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-08-27 256112]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-09-05 1968920]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"VX1000"=C:\Windows\vVX1000.exe [2007-04-10 709992]
"LifeCamSetup"=E:\setupstb.exe []
"LifeCam"=C:\Program Files\Microsoft LifeCam\LifeExp.exe [2007-05-17 279912]
"fssui"=C:\Program Files\Windows Live\Family Safety\fsui.exe [2009-02-06 454000]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2008-12-26 6707744]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-09-18 13580832]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-09-18 92704]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2009-09-06 2007832]
"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2009-05-20 111928]
"Hiyo"=C:\Program Files\HiYo\bin\HiYo.exe [2009-08-18 206192]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-31 149280]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
"BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-03-21 321344]
"Google Update"=C:\Users\frantz67\AppData\Local\Google\Update\GoogleUpdate.exe [2009-05-15 133104]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]
"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe [2009-04-29 3338240]
"Uniblue RegistryBooster 2009"=c:\program files\uniblue\registrybooster\StartRegistryBooster.exe [2008-08-26 99624]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-02-27 39408]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Shockwave Updater"=C:\Windows\System32\Adobe\Shockwave 11\SwHelper_1103472.exe [2009-01-16 460216]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Assistant Smart Wizard NETGEAR pour WG311v3.lnk - C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
IEEE802.11b WLAN Card Utility.lnk - C:\Program Files\ZyXEL\IEEE802.11b WLAN Card Utility\WLPCCfg.exe
NETGEAR WG111v3 Smart Wizard.lnk - C:\Program Files\NETGEAR\WG111v3\WG111v3.exe

C:\Users\frantz67\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
rundll32.lnk - C:\Windows\System32\rundll32.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\Windows\System32\avgrsstx.dll,avgrsstx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WBSrv]
C:\Program Files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll [2008-09-17 222456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2009-09-09 00:52:46 ----D---- C:\ProgramData\Spybot - Search & Destroy
2009-09-09 00:52:46 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-09-09 00:42:35 ----D---- C:\ProgramData\Google
2009-09-09 00:20:29 ----D---- C:\Program Files\QUAD Utilities
2009-09-08 10:51:11 ----D---- C:\ProgramData\Electronic Arts
2009-09-08 10:51:09 ----D---- C:\ProgramData\DAEMON Tools Lite
2009-09-08 10:50:56 ----D---- C:\ProgramData\NVIDIA
2009-09-06 09:14:48 ----A---- C:\Windows\system32\javaws.exe
2009-09-06 09:14:48 ----A---- C:\Windows\system32\javaw.exe
2009-09-06 09:14:48 ----A---- C:\Windows\system32\java.exe
2009-09-05 02:28:47 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-09-05 01:21:36 ----D---- C:\Users\frantz67\AppData\Roaming\Malwarebytes
2009-09-05 01:20:28 ----SHD---- C:\$RECYCLE.BIN
2009-09-05 01:13:33 ----A---- C:\Windows\zip.exe
2009-09-05 01:13:33 ----A---- C:\Windows\SWXCACLS.exe
2009-09-05 01:13:33 ----A---- C:\Windows\SWSC.exe
2009-09-05 01:13:33 ----A---- C:\Windows\SWREG.exe
2009-09-05 01:13:33 ----A---- C:\Windows\sed.exe
2009-09-05 01:13:33 ----A---- C:\Windows\PEV.exe
2009-09-05 01:13:33 ----A---- C:\Windows\NIRCMD.exe
2009-09-05 01:13:33 ----A---- C:\Windows\grep.exe
2009-09-05 01:13:29 ----D---- C:\Windows\ERDNT
2009-09-05 01:13:29 ----A---- C:\Windows\system32\CF2089.exe
2009-09-05 01:13:28 ----A---- C:\Windows\system32\swsc.exe
2009-09-05 01:13:24 ----D---- C:\Qoobox
2009-09-05 00:22:49 ----D---- C:\Program Files\Sophos
2009-09-05 00:07:09 ----A---- C:\Windows\system32\$FFPROFINI$prefs.js
2009-09-04 21:29:23 ----D---- C:\Users\frantz67\AppData\Roaming\vlc
2009-09-04 21:28:47 ----D---- C:\Program Files\VideoLAN
2009-09-04 20:25:40 ----D---- C:\Program Files\IrfanView
2009-09-04 12:54:43 ----A---- C:\Windows\system32\WinFLsrv.exe
2009-09-04 12:54:37 ----D---- C:\Program Files\Folder Lock 6
2009-09-04 12:54:00 ----D---- C:\Users\frantz67\AppData\Roaming\GetRightToGo
2009-09-04 00:59:15 ----D---- C:\Windows\system32\eu-ES
2009-09-04 00:59:15 ----D---- C:\Windows\system32\ca-ES
2009-09-04 00:59:13 ----D---- C:\Windows\system32\vi-VN
2009-09-04 00:49:44 ----D---- C:\Windows\system32\EventProviders
2009-09-04 00:49:32 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2009-09-04 00:49:31 ----A---- C:\Windows\system32\SLsvc.exe
2009-09-04 00:49:31 ----A---- C:\Windows\system32\SLCExt.dll
2009-09-04 00:49:30 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2009-09-04 00:49:30 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2009-09-04 00:49:29 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2009-09-04 00:49:28 ----A---- C:\Windows\system32\mssrch.dll
2009-09-04 00:49:27 ----A---- C:\Windows\system32\tquery.dll
2009-09-04 00:49:26 ----A---- C:\Windows\system32\scavenge.dll
2009-09-04 00:49:26 ----A---- C:\Windows\system32\RMActivate_isv.exe
2009-09-04 00:49:26 ----A---- C:\Windows\system32\RMActivate.exe
2009-09-04 00:49:26 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2009-09-04 00:49:26 ----A---- C:\Windows\system32\msi.dll
2009-09-04 00:49:25 ----A---- C:\Windows\system32\WscEapPr.dll
2009-09-04 00:49:25 ----A---- C:\Windows\system32\wcnwiz2.dll
2009-09-04 00:49:25 ----A---- C:\Windows\system32\sysmain.dll
2009-09-04 00:49:25 ----A---- C:\Windows\system32\secproc_isv.dll
2009-09-04 00:49:25 ----A---- C:\Windows\system32\imapi2fs.dll
2009-09-04 00:49:24 ----A---- C:\Windows\system32\mf.dll
2009-09-04 00:49:24 ----A---- C:\Windows\system32\icardagt.exe
2009-09-04 00:49:24 ----A---- C:\Windows\system32\EhStorShell.dll
2009-09-04 00:49:24 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2009-09-04 00:49:23 ----A---- C:\Windows\system32\spwizui.dll
2009-09-04 00:49:23 ----A---- C:\Windows\system32\spreview.exe
2009-09-04 00:49:23 ----A---- C:\Windows\system32\spinstall.exe
2009-09-04 00:49:23 ----A---- C:\Windows\system32\secproc.dll
2009-09-04 00:49:23 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2009-09-04 00:49:23 ----A---- C:\Windows\system32\drmv2clt.dll
2009-09-04 00:49:21 ----A---- C:\Windows\system32\shell32.dll
2009-09-04 00:49:21 ----A---- C:\Windows\system32\SearchIndexer.exe
2009-09-04 00:49:21 ----A---- C:\Windows\system32\p2psvc.dll
2009-09-04 00:49:20 ----A---- C:\Windows\system32\sdohlp.dll
2009-09-04 00:49:20 ----A---- C:\Windows\system32\mssvp.dll
2009-09-04 00:49:20 ----A---- C:\Windows\system32\mssphtb.dll
2009-09-04 00:49:20 ----A---- C:\Windows\system32\mssph.dll
2009-09-04 00:49:20 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2009-09-04 00:49:20 ----A---- C:\Windows\system32\mscoree.dll
2009-09-04 00:49:20 ----A---- C:\Windows\system32\imapi2.dll
2009-09-04 00:49:19 ----A---- C:\Windows\system32\sperror.dll
2009-09-04 00:49:19 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2009-09-04 00:49:19 ----A---- C:\Windows\system32\ntkrnlpa.exe
2009-09-04 00:49:19 ----A---- C:\Windows\system32\korwbrkr.dll
2009-09-04 00:49:19 ----A---- C:\Windows\system32\IMJP10K.DLL
2009-09-04 00:49:19 ----A---- C:\Windows\system32\esent.dll
2009-09-04 00:49:19 ----A---- C:\Windows\system32\DevicePairing.dll
2009-09-04 00:49:18 ----A---- C:\Windows\system32\wevtsvc.dll
2009-09-04 00:49:18 ----A---- C:\Windows\system32\SLC.dll
2009-09-04 00:49:18 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2009-09-04 00:49:18 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2009-09-04 00:49:18 ----A---- C:\Windows\system32\msshsq.dll
2009-09-04 00:49:18 ----A---- C:\Windows\system32\IasMigReader.exe
2009-09-04 00:49:17 ----A---- C:\Windows\system32\WMVCORE.DLL
2009-09-04 00:49:17 ----A---- C:\Windows\system32\ntoskrnl.exe
2009-09-04 00:49:17 ----A---- C:\Windows\system32\msxml6.dll
2009-09-04 00:49:17 ----A---- C:\Windows\system32\msjet40.dll
2009-09-04 00:49:17 ----A---- C:\Windows\system32\MPSSVC.dll
2009-09-04 00:49:16 ----A---- C:\Windows\system32\Query.dll
2009-09-04 00:49:16 ----A---- C:\Windows\system32\qmgr.dll
2009-09-04 00:49:16 ----A---- C:\Windows\system32\P2PGraph.dll
2009-09-04 00:49:16 ----A---- C:\Windows\system32\ole32.dll
2009-09-04 00:49:16 ----A---- C:\Windows\system32\msexch40.dll
2009-09-04 00:49:16 ----A---- C:\Windows\system32\diagperf.dll
2009-09-04 00:49:15 ----A---- C:\Windows\system32\winload.exe
2009-09-04 00:49:15 ----A---- C:\Windows\system32\uDWM.dll
2009-09-04 00:49:15 ----A---- C:\Windows\system32\srchadmin.dll
2009-09-04 00:49:15 ----A---- C:\Windows\system32\riched20.dll
2009-09-04 00:49:15 ----A---- C:\Windows\system32\ntdll.dll
2009-09-04 00:49:15 ----A---- C:\Windows\system32\msxml3.dll
2009-09-04 00:49:15 ----A---- C:\Windows\system32\mmc.exe
2009-09-04 00:49:15 ----A---- C:\Windows\system32\mblctr.exe
2009-09-04 00:49:15 ----A---- C:\Windows\system32\IasMigPlugin.dll
2009-09-04 00:49:15 ----A---- C:\Windows\system32\EncDec.dll
2009-09-04 00:49:15 ----A---- C:\Windows\system32\dfsr.exe
2009-09-04 00:49:14 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2009-09-04 00:49:14 ----A---- C:\Windows\system32\SearchFilterHost.exe
2009-09-04 00:49:14 ----A---- C:\Windows\system32\RacEngn.dll
2009-09-04 00:49:14 ----A---- C:\Windows\system32\milcore.dll
2009-09-04 00:49:14 ----A---- C:\Windows\system32\kernel32.dll
2009-09-04 00:49:14 ----A---- C:\Windows\system32\fdBth.dll
2009-09-04 00:49:13 ----A---- C:\Windows\system32\spoolss.dll
2009-09-04 00:49:13 ----A---- C:\Windows\system32\schedsvc.dll
2009-09-04 00:49:13 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2009-09-04 00:49:13 ----A---- C:\Windows\system32\msvcp60.dll
2009-09-04 00:49:13 ----A---- C:\Windows\system32\msjtes40.dll
2009-09-04 00:49:13 ----A---- C:\Windows\system32\infocardapi.dll
2009-09-04 00:49:13 ----A---- C:\Windows\system32\gpedit.dll
2009-09-04 00:49:13 ----A---- C:\Windows\system32\EhStorAPI.dll
2009-09-04 00:49:13 ----A---- C:\Windows\system32\CertEnroll.dll
2009-09-04 00:49:13 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2009-09-04 00:49:12 ----A---- C:\Windows\system32\WinSAT.exe
2009-09-04 00:49:12 ----A---- C:\Windows\system32\PresentationSettings.exe
2009-09-04 00:49:12 ----A---- C:\Windows\system32\mstext40.dll
2009-09-04 00:49:12 ----A---- C:\Windows\system32\Magnify.exe
2009-09-04 00:49:12 ----A---- C:\Windows\system32\es.dll
2009-09-04 00:49:12 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2009-09-04 00:49:12 ----A---- C:\Windows\system32\advapi32.dll
2009-09-04 00:49:11 ----A---- C:\Windows\system32\WMPhoto.dll
2009-09-04 00:49:11 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2009-09-04 00:49:11 ----A---- C:\Windows\system32\WebClnt.dll
2009-09-04 00:49:11 ----A---- C:\Windows\system32\vssapi.dll
2009-09-04 00:49:11 ----A---- C:\Windows\system32\slwmi.dll
2009-09-04 00:49:11 ----A---- C:\Windows\system32\msxbde40.dll
2009-09-04 00:49:11 ----A---- C:\Windows\system32\msexcl40.dll
2009-09-04 00:49:11 ----A---- C:\Windows\system32\comsvcs.dll
2009-09-04 00:49:10 ----A---- C:\Windows\system32\propsys.dll
2009-09-04 00:49:10 ----A---- C:\Windows\system32\PresentationHost.exe
2009-09-04 00:49:10 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-09-04 00:49:10 ----A---- C:\Windows\system32\newdev.dll
2009-09-04 00:49:10 ----A---- C:\Windows\system32\NetProjW.dll
2009-09-04 00:49:10 ----A---- C:\Windows\system32\msrepl40.dll
2009-09-04 00:49:10 ----A---- C:\Windows\system32\iasrecst.dll
2009-09-04 00:49:10 ----A---- C:\Windows\system32\gpsvc.dll
2009-09-04 00:49:10 ----A---- C:\Windows\system32\eudcedit.exe
2009-09-04 00:49:10 ----A---- C:\Windows\system32\crypt32.dll
2009-09-04 00:49:10 ----A---- C:\Windows\system32\authui.dll
2009-09-04 00:49:10 ----A---- C:\Windows\explorer.exe
2009-09-04 00:49:09 ----A---- C:\Windows\system32\shlwapi.dll
2009-09-04 00:49:09 ----A---- C:\Windows\system32\setupapi.dll
2009-09-04 00:49:09 ----A---- C:\Windows\system32\rpcss.dll
2009-09-04 00:49:09 ----A---- C:\Windows\system32\msrd3x40.dll
2009-09-04 00:49:09 ----A---- C:\Windows\system32\mspbde40.dll
2009-09-04 00:49:09 ----A---- C:\Windows\system32\msltus40.dll
2009-09-04 00:49:09 ----A---- C:\Windows\system32\mfc42.dll
2009-09-04 00:49:09 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2009-09-04 00:49:09 ----A---- C:\Windows\system32\EhStorAuthn.dll
2009-09-04 00:49:09 ----A---- C:\Windows\system32\davclnt.dll
2009-09-04 00:49:09 ----A---- C:\Windows\system32\d3d9.dll
2009-09-04 00:49:08 ----A---- C:\Windows\system32\wevtapi.dll
2009-09-04 00:49:08 ----A---- C:\Windows\system32\user32.dll
2009-09-04 00:49:08 ----A---- C:\Windows\system32\samsrv.dll
2009-09-04 00:49:08 ----A---- C:\Windows\system32\photowiz.dll
2009-09-04 00:49:08 ----A---- C:\Windows\system32\nlhtml.dll
2009-09-04 00:49:08 ----A---- C:\Windows\system32\msdtctm.dll
2009-09-04 00:49:08 ----A---- C:\Windows\system32\ci.dll
2009-09-04 00:49:08 ----A---- C:\Windows\system32\browseui.dll
2009-09-04 00:49:07 ----A---- C:\Windows\system32\win32spl.dll
2009-09-04 00:49:07 ----A---- C:\Windows\system32\WcnNetsh.dll
2009-09-04 00:49:07 ----A---- C:\Windows\system32\SLCommDlg.dll
2009-09-04 00:49:07 ----A---- C:\Windows\system32\quartz.dll
2009-09-04 00:49:07 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2009-09-04 00:49:07 ----A---- C:\Windows\system32\oleaut32.dll
2009-09-04 00:49:07 ----A---- C:\Windows\system32\IKEEXT.DLL
2009-09-04 00:49:06 ----A---- C:\Windows\system32\xmlfilter.dll
2009-09-04 00:49:06 ----A---- C:\Windows\system32\winhttp.dll
2009-09-04 00:49:06 ----A---- C:\Windows\system32\netshell.dll
2009-09-04 00:49:06 ----A---- C:\Windows\system32\mswstr10.dll
2009-09-04 00:49:06 ----A---- C:\Windows\system32\compcln.exe
2009-09-04 00:49:06 ----A---- C:\Windows\system32\audiosrv.dll
2009-09-04 00:49:06 ----A---- C:\Windows\system32\apds.dll
2009-09-04 00:49:05 ----A---- C:\Windows\system32\VSSVC.exe
2009-09-04 00:49:05 ----A---- C:\Windows\system32\QAGENTRT.DLL
2009-09-04 00:49:05 ----A---- C:\Windows\system32\msvcrt.dll
2009-09-04 00:49:05 ----A---- C:\Windows\system32\msctf.dll
2009-09-04 00:49:05 ----A---- C:\Windows\system32\mfc42u.dll
2009-09-04 00:49:05 ----A---- C:\Windows\system32\iphlpsvc.dll
2009-09-04 00:49:05 ----A---- C:\Windows\system32\gdi32.dll
2009-09-04 00:49:05 ----A---- C:\Windows\system32\emdmgmt.dll
2009-09-04 00:49:04 ----A---- C:\Windows\system32\winresume.exe
2009-09-04 00:49:04 ----A---- C:\Windows\system32\sqlsrv32.dll
2009-09-04 00:49:04 ----A---- C:\Windows\system32\SLUI.exe
2009-09-04 00:49:04 ----A---- C:\Windows\system32\shdocvw.dll
2009-09-04 00:49:04 ----A---- C:\Windows\system32\propdefs.dll
2009-09-04 00:49:04 ----A---- C:\Windows\system32\odbc32.dll
2009-09-04 00:49:04 ----A---- C:\Windows\system32\msrd2x40.dll
2009-09-04 00:49:04 ----A---- C:\Windows\system32\eapphost.dll
2009-09-04 00:49:03 ----A---- C:\Windows\system32\wevtutil.exe
2009-09-04 00:49:03 ----A---- C:\Windows\system32\mssitlb.dll
2009-09-04 00:49:03 ----A---- C:\Windows\system32\dbgeng.dll
2009-09-04 00:49:02 ----A---- C:\Windows\system32\WsmSvc.dll
2009-09-04 00:49:02 ----A---- C:\Windows\system32\vds.exe
2009-09-04 00:49:02 ----A---- C:\Windows\system32\usp10.dll
2009-09-04 00:49:02 ----A---- C:\Windows\system32\swprv.dll
2009-09-04 00:49:02 ----A---- C:\Windows\system32\mmcndmgr.dll
2009-09-04 00:49:02 ----A---- C:\Windows\system32\drvinst.exe
2009-09-04 00:49:02 ----A---- C:\Windows\system32\devmgr.dll
2009-09-04 00:49:01 ----A---- C:\Windows\system32\wcnwiz.dll
2009-09-04 00:49:01 ----A---- C:\Windows\system32\netlogon.dll
2009-09-04 00:49:01 ----A---- C:\Windows\system32\msscb.dll
2009-09-04 00:49:01 ----A---- C:\Windows\system32\msctfp.dll
2009-09-04 00:49:01 ----A---- C:\Windows\system32\fdBthProxy.dll
2009-09-04 00:49:01 ----A---- C:\Windows\system32\evr.dll
2009-09-04 00:49:01 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2009-09-04 00:49:01 ----A---- C:\Windows\system32\BFE.DLL
2009-09-04 00:49:01 ----A---- C:\Windows\system32\adsldpc.dll
2009-09-04 00:49:00 ----A---- C:\Windows\system32\WSDApi.dll
2009-09-04 00:49:00 ----A---- C:\Windows\system32\WMVSDECD.DLL
2009-09-04 00:49:00 ----A---- C:\Windows\system32\Wldap32.dll
2009-09-04 00:49:00 ----A---- C:\Windows\system32\WindowsCodecs.dll
2009-09-04 00:49:00 ----A---- C:\Windows\system32\wercon.exe
2009-09-04 00:49:00 ----A---- C:\Windows\system32\wcncsvc.dll
2009-09-04 00:49:00 ----A---- C:\Windows\system32\services.exe
2009-09-04 00:49:00 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2009-09-04 00:49:00 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2009-09-04 00:49:00 ----A---- C:\Windows\system32\mimefilt.dll
2009-09-04 00:49:00 ----A---- C:\Windows\system32\comdlg32.dll
2009-09-04 00:49:00 ----A---- C:\Windows\system32\adtschema.dll
2009-09-04 00:48:59 ----A---- C:\Windows\system32\WMNetMgr.dll
2009-09-04 00:48:59 ----A---- C:\Windows\system32\w32time.dll
2009-09-04 00:48:59 ----A---- C:\Windows\system32\umpnpmgr.dll
2009-09-04 00:48:59 ----A---- C:\Windows\system32\taskeng.exe
2009-09-04 00:48:59 ----A---- C:\Windows\system32\rtffilt.dll
2009-09-04 00:48:59 ----A---- C:\Windows\system32\reg.exe
2009-09-04 00:48:59 ----A---- C:\Windows\system32\mswdat10.dll
2009-09-04 00:48:59 ----A---- C:\Windows\system32\msjter40.dll
2009-09-04 00:48:59 ----A---- C:\Windows\system32\msdtcprx.dll
2009-09-04 00:48:59 ----A---- C:\Windows\system32\msdrm.dll
2009-09-04 00:48:59 ----A---- C:\Windows\system32\ipsmsnap.dll
2009-09-04 00:48:59 ----A---- C:\Windows\system32\IPSECSVC.DLL
2009-09-04 00:48:59 ----A---- C:\Windows\system32\dnsapi.dll
2009-09-04 00:48:59 ----A---- C:\Windows\system32\certutil.exe
2009-09-04 00:48:59 ----A---- C:\Windows\system32\certcli.dll
2009-09-04 00:48:58 ----A---- C:\Windows\system32\TsWpfWrp.exe
2009-09-04 00:48:58 ----A---- C:\Windows\system32\rsaenh.dll
2009-09-04 00:48:58 ----A---- C:\Windows\system32\msstrc.dll
2009-09-04 00:48:58 ----A---- C:\Windows\system32\msshooks.dll
2009-09-04 00:48:58 ----A---- C:\Windows\system32\msscntrs.dll
2009-09-04 00:48:58 ----A---- C:\Windows\system32\msihnd.dll
2009-09-04 00:48:58 ----A---- C:\Windows\system32\MMDevAPI.dll
2009-09-04 00:48:58 ----A---- C:\Windows\system32\bthserv.dll
2009-09-04 00:48:58 ----A---- C:\Windows\system32\bcrypt.dll
2009-09-04 00:48:57 ----A---- C:\Windows\system32\wmicmiplugin.dll
2009-09-04 00:48:57 ----A---- C:\Windows\system32\termsrv.dll
2009-09-04 00:48:57 ----A---- C:\Windows\system32\profsvc.dll
2009-09-04 00:48:57 ----A---- C:\Windows\system32\netapi32.dll
2009-09-04 00:48:57 ----A---- C:\Windows\system32\mtxclu.dll
2009-09-04 00:48:57 ----A---- C:\Windows\system32\mscories.dll
2009-09-04 00:48:57 ----A---- C:\Windows\system32\inetpp.dll
2009-09-04 00:48:57 ----A---- C:\Windows\system32\inetcomm.dll
2009-09-04 00:48:57 ----A---- C:\Windows\system32\hidserv.dll
2009-09-04 00:48:57 ----A---- C:\Windows\system32\fundisc.dll
2009-09-04 00:48:57 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2009-09-04 00:48:57 ----A---- C:\Windows\system32\dfshim.dll
2009-09-04 00:48:57 ----A---- C:\Windows\system32\cryptsvc.dll
2009-09-04 00:48:56 ----A---- C:\Windows\system32\wdc.dll
2009-09-04 00:48:56 ----A---- C:\Windows\system32\shsvcs.dll
2009-09-04 00:48:56 ----A---- C:\Windows\system32\rasmans.dll
2009-09-04 00:48:56 ----A---- C:\Windows\system32\msiexec.exe
2009-09-04 00:48:56 ----A---- C:\Windows\system32\imapi.dll
2009-09-04 00:48:56 ----A---- C:\Windows\system32\iassdo.dll
2009-09-04 00:48:56 ----A---- C:\Windows\system32\chsbrkr.dll
2009-09-04 00:48:55 ----A---- C:\Windows\system32\spoolsv.exe
2009-09-04 00:48:55 ----A---- C:\Windows\system32\pnidui.dll
2009-09-04 00:48:55 ----A---- C:\Windows\system32\icardres.dll
2009-09-04 00:48:55 ----A---- C:\Windows\system32\autofmt.exe
2009-09-04 00:48:54 ----A---- C:\Windows\system32\wmpmde.dll
2009-09-04 00:48:54 ----A---- C:\Windows\system32\wersvc.dll
2009-09-04 00:48:54 ----A---- C:\Windows\system32\slmgr.vbs
2009-09-04 00:48:54 ----A---- C:\Windows\system32\scrrun.dll
2009-09-04 00:48:54 ----A---- C:\Windows\system32\PSHED.DLL
2009-09-04 00:48:54 ----A---- C:\Windows\system32\pidgenx.dll
2009-09-04 00:48:54 ----A---- C:\Windows\system32\pdh.dll
2009-09-04 00:48:54 ----A---- C:\Windows\system32\dhcpcsvc.dll
2009-09-04 00:48:54 ----A---- C:\Windows\system32\CertEnrollUI.dll
2009-09-04 00:48:54 ----A---- C:\Windows\system32\azroles.dll
2009-09-04 00:48:53 ----A---- C:\Windows\system32\winlogon.exe
2009-09-04 00:48:53 ----A---- C:\Windows\system32\SyncCenter.dll
2009-09-04 00:48:53 ----A---- C:\Windows\system32\SLUINotify.dll
2009-09-04 00:48:53 ----A---- C:\Windows\system32\sethc.exe
2009-09-04 00:48:53 ----A---- C:\Windows\system32\ncrypt.dll
2009-09-04 00:48:53 ----A---- C:\Windows\system32\msjetoledb40.dll
2009-09-04 00:48:53 ----A---- C:\Windows\system32\kd1394.dll
2009-09-04 00:48:53 ----A---- C:\Windows\system32\comuid.dll
2009-09-04 00:48:53 ----A---- C:\Windows\system32\certmgr.dll
2009-09-04 00:48:52 ----A---- C:\Windows\system32\wisptis.exe
2009-09-04 00:48:52 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2009-09-04 00:48:52 ----A---- C:\Windows\system32\untfs.dll
2009-09-04 00:48:52 ----A---- C:\Windows\system32\taskcomp.dll
2009-09-04 00:48:52 ----A---- C:\Windows\system32\spp.dll
2009-09-04 00:48:52 ----A---- C:\Windows\system32\scrobj.dll
2009-09-04 00:48:52 ----A---- C:\Windows\system32\rtutils.dll
2009-09-04 00:48:52 ----A---- C:\Windows\system32\printui.dll
2009-09-04 00:48:52 ----A---- C:\Windows\system32\iassam.dll
2009-09-04 00:48:52 ----A---- C:\Windows\system32\iasnap.dll
2009-09-04 00:48:52 ----A---- C:\Windows\system32\dwm.exe
2009-09-04 00:48:52 ----A---- C:\Windows\system32\autoconv.exe
2009-09-04 00:48:52 ----A---- C:\Windows\system32\autochk.exe
2009-09-04 00:48:51 ----A---- C:\Windows\system32\wow32.dll
2009-09-04 00:48:51 ----A---- C:\Windows\system32\winsrv.dll
2009-09-04 00:48:51 ----A---- C:\Windows\system32\userenv.dll
2009-09-04 00:48:51 ----A---- C:\Windows\system32\osk.exe
2009-09-04 00:48:51 ----A---- C:\Windows\system32\onex.dll
2009-09-04 00:48:51 ----A---- C:\Windows\system32\mswsock.dll
2009-09-04 00:48:51 ----A---- C:\Windows\system32\kdcom.dll
2009-09-04 00:48:51 ----A---- C:\Windows\system32\cscript.exe
2009-09-04 00:48:51 ----A---- C:\Windows\system32\basecsp.dll
2009-09-04 00:48:51 ----A---- C:\Windows\system32\audiodg.exe
2009-09-04 00:48:50 ----A---- C:\Windows\system32\WinSCard.dll
2009-09-04 00:48:50 ----A---- C:\Windows\system32\winmm.dll
2009-09-04 00:48:50 ----A---- C:\Windows\system32\WerFaultSecure.exe
2009-09-04 00:48:50 ----A---- C:\Windows\system32\spcmsg.dll
2009-09-04 00:48:50 ----A---- C:\Windows\system32\RelMon.dll
2009-09-04 00:48:50 ----A---- C:\Windows\system32\rdpencom.dll
2009-09-04 00:48:50 ----A---- C:\Windows\system32\offfilt.dll
2009-09-04 00:48:50 ----A---- C:\Windows\system32\msftedit.dll
2009-09-04 00:48:50 ----A---- C:\Windows\system32\kdusb.dll
2009-09-04 00:48:50 ----A---- C:\Windows\system32\dnsrslvr.dll
2009-09-04 00:48:49 ----A---- C:\Windows\system32\wsepno.dll
2009-09-04 00:48:49 ----A---- C:\Windows\system32\WerFault.exe
2009-09-04 00:48:49 ----A---- C:\Windows\system32\Utilman.exe
2009-09-04 00:48:49 ----A---- C:\Windows\system32\stobject.dll
2009-09-04 00:48:49 ----A---- C:\Windows\system32\SndVol.exe
2009-09-04 00:48:49 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2009-09-04 00:48:49 ----A---- C:\Windows\system32\secproc_ssp.dll
2009-09-04 00:48:49 ----A---- C:\Windows\system32\msnetobj.dll
2009-09-04 00:48:49 ----A---- C:\Windows\system32\mscms.dll
2009-09-04 00:48:49 ----A---- C:\Windows\system32\mfplat.dll
2009-09-04 00:48:49 ----A---- C:\Windows\system32\mcmde.dll
2009-09-04 00:48:49 ----A---- C:\Windows\system32\diskraid.exe
2009-09-04 00:48:49 ----A---- C:\Windows\system32\apphelp.dll
2009-09-04 00:48:49 ----A---- C:\Windows\system32\adsmsext.dll
2009-09-04 00:48:48 ----A---- C:\Windows\system32\wscript.exe
2009-09-04 00:48:48 ----A---- C:\Windows\system32\wscntfy.dll
2009-09-04 00:48:48 ----A---- C:\Windows\system32\wlansvc.dll
2009-09-04 00:48:48 ----A---- C:\Windows\system32\wiaservc.dll
2009-09-04 00:48:48 ----A---- C:\Windows\system32\ulib.dll
2009-09-04 00:48:48 ----A---- C:\Windows\system32\sysclass.dll
2009-09-04 00:48:48 ----A---- C:\Windows\system32\rastapi.dll
2009-09-04 00:48:48 ----A---- C:\Windows\system32\prnntfy.dll
2009-09-04 00:48:48 ----A---- C:\Windows\system32\pnpsetup.dll
2009-09-04 00:48:48 ----A---- C:\Windows\system32\odbccp32.dll
2009-09-04 00:48:48 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2009-09-04 00:48:48 ----A---- C:\Windows\system32\iasdatastore.dll
2009-09-04 00:48:48 ----A---- C:\Windows\system32\fdProxy.dll
2009-09-04 00:48:48 ----A---- C:\Windows\system32\dsound.dll
2009-09-04 00:48:48 ----A---- C:\Windows\system32\cryptui.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\zipfldr.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\wusa.exe
2009-09-04 00:48:47 ----A---- C:\Windows\system32\wshext.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\wscsvc.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\wpccpl.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\WMVENCOD.DLL
2009-09-04 00:48:47 ----A---- C:\Windows\system32\wlangpui.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\vdsdyn.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\regsvc.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\rastls.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\rasapi32.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\ntprint.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\netiohlp.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\mscorier.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\logman.exe
2009-09-04 00:48:47 ----A---- C:\Windows\system32\ipsecsnp.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\iasrad.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\iashlpr.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\gpapi.dll
2009-09-04 00:48:47 ----A---- C:\Windows\system32\findstr.exe
2009-09-04 00:48:47 ----A---- C:\Windows\system32\diskpart.exe
2009-09-04 00:48:47 ----A---- C:\Windows\system32\brcpl.dll
2009-09-04 00:48:46 ----A---- C:\Windows\system32\wsnmp32.dll
2009-09-04 00:48:46 ----A---- C:\Windows\system32\wer.dll
2009-09-04 00:48:46 ----A---- C:\Windows\system32\themecpl.dll
2009-09-04 00:48:46 ----A---- C:\Windows\system32\rasdlg.dll
2009-09-04 00:48:46 ----A---- C:\Windows\system32\netcenter.dll
2009-09-04 00:48:46 ----A---- C:\Windows\system32\iassvcs.dll
2009-09-04 00:48:45 ----A---- C:\Windows\system32\uxsms.dll
2009-09-04 00:48:45 ----A---- C:\Windows\system32\srvsvc.dll
2009-09-04 00:48:45 ----A---- C:\Windows\system32\mssprxy.dll
2009-09-04 00:48:44 ----A---- C:\Windows\system32\tsbyuv.dll
2009-09-04 00:48:44 ----A---- C:\Windows\system32\slcc.dll
2009-09-04 00:48:44 ----A---- C:\Windows\system32\scansetting.dll
2009-09-04 00:48:44 ----A---- C:\Windows\system32\powrprof.dll
2009-09-04 00:48:44 ----A---- C:\Windows\system32\ntmarta.dll
2009-09-04 00:48:44 ----A---- C:\Windows\system32\msutb.dll
2009-09-04 00:48:44 ----A---- C:\Windows\system32\mstsc.exe
2009-09-04 00:48:44 ----A---- C:\Windows\system32\mstlsapi.dll
2009-09-04 00:48:44 ----A---- C:\Windows\system32\iasads.dll
2009-09-04 00:48:44 ----A---- C:\Windows\system32\iasacct.dll
2009-09-04 00:48:43 ----A---- C:\Windows\system32\wlanhlp.dll
2009-09-04 00:48:43 ----A---- C:\Windows\system32\systemcpl.dll
2009-09-04 00:48:43 ----A---- C:\Windows\system32\sud.dll
2009-09-04 00:48:43 ----A---- C:\Windows\system32\powercpl.dll
2009-09-04 00:48:43 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2009-09-04 00:48:43 ----A---- C:\Windows\system32\newdev.exe
2009-09-04 00:48:43 ----A---- C:\Windows\system32\networkmap.dll
2009-09-04 00:48:43 ----A---- C:\Windows\system32\dot3svc.dll
2009-09-04 00:48:43 ----A---- C:\Windows\system32\connect.dll
2009-09-04 00:48:43 ----A---- C:\Windows\system32\authz.dll
2009-09-04 00:48:42 ----A---- C:\Windows\system32\wlanpref.dll
2009-09-04 00:48:42 ----A---- C:\Windows\system32\usercpl.dll
2009-09-04 00:48:42 ----A---- C:\Windows\system32\themeui.dll
2009-09-04 00:48:42 ----A---- C:\Windows\system32\samlib.dll
2009-09-04 00:48:42 ----A---- C:\Windows\system32\qdvd.dll
2009-09-04 00:48:42 ----A---- C:\Windows\system32\pcaui.dll
2009-09-04 00:48:42 ----A---- C:\Windows\system32\mmci.dll
2009-09-04 00:48:42 ----A---- C:\Windows\system32\autoplay.dll
2009-09-04 00:48:42 ----A---- C:\Windows\system32\accessibilitycpl.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\wscisvif.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\wpcao.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\vdsutil.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\tapisrv.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\scksp.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\scesrv.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\rpchttp.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\rekeywiz.exe
2009-09-04 00:48:41 ----A---- C:\Windows\system32\regapi.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\psisdecd.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\oleprn.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\msinfo32.exe
2009-09-04 00:48:41 ----A---- C:\Windows\system32\mpr.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\imm32.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\feclient.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\Faultrep.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\dot3msm.dll
2009-09-04 00:48:41 ----A---- C:\Windows\system32\AudioSes.dll
2009-09-04 00:48:40 ----A---- C:\Windows\system32\TSTheme.exe
2009-09-04 00:48:40 ----A---- C:\Windows\system32\spwinsat.dll
2009-09-04 00:48:40 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2009-09-04 00:48:40 ----A---- C:\Windows\system32\sdclt.exe
2009-09-04 00:48:40 ----A---- C:\Windows\system32\scecli.dll
2009-09-04 00:48:40 ----A---- C:\Windows\system32\rasplap.dll
2009-09-04 00:48:40 ----A---- C:\Windows\system32\rasgcw.dll
2009-09-04 00:48:40 ----A---- C:\Windows\system32\qedit.dll
2009-09-04 00:48:40 ----A---- C:\Windows\system32\pnpui.dll
2009-09-04 00:48:40 ----A---- C:\Windows\system32\perfdisk.dll
2009-09-04 00:48:40 ----A---- C:\Windows\system32\ncryptui.dll
2009-09-04 00:48:40 ----A---- C:\Windows\system32\iaspolcy.dll
2009-09-04 00:48:40 ----A---- C:\Windows\system32\hdwwiz.exe
2009-09-04 00:48:40 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2009-09-04 00:48:40 ----A---- C:\Windows\system32\dpapimig.exe
2009-09-04 00:48:40 ----A---- C:\Windows\system32\DeviceEject.exe
2009-09-04 00:48:40 ----A---- C:\Windows\system32\certreq.exe
2009-09-04 00:48:39 ----A---- C:\Windows\system32\whealogr.dll
2009-09-04 00:48:39 ----A---- C:\Windows\system32\tcpmon.dll
2009-09-04 00:48:39 ----A---- C:\Windows\system32\tcpipcfg.dll
2009-09-04 00:48:39 ----A---- C:\Windows\system32\srcore.dll
2009-09-04 00:48:39 ----A---- C:\Windows\system32\SnippingTool.exe
2009-09-04 00:48:39 ----A---- C:\Windows\system32\SCardSvr.dll
2009-09-04 00:48:39 ----A---- C:\Windows\system32\raschap.dll
2009-09-04 00:48:39 ----A---- C:\Windows\system32\PnPUnattend.exe
2009-09-04 00:48:39 ----A---- C:\Windows\system32\MSVidCtl.dll
2009-09-04 00:48:39 ----A---- C:\Windows\system32\fontext.dll
2009-09-04 00:48:39 ----A---- C:\Windows\system32\fdWSD.dll
2009-09-04 00:48:39 ----A---- C:\Windows\system32\conime.exe
2009-09-04 00:48:39 ----A---- C:\Windows\system32\cmmon32.exe
2009-09-04 00:48:39 ----A---- C:\Windows\system32\cmdial32.dll
2009-09-04 00:48:38 ----A---- C:\Windows\system32\WMVXENCD.DLL
2009-09-04 00:48:38 ----A---- C:\Windows\system32\wlanui.dll
2009-09-04 00:48:38 ----A---- C:\Windows\system32\wlanmsm.dll
2009-09-04 00:48:38 ----A---- C:\Windows\system32\wiaaut.dll
2009-09-04 00:48:38 ----A---- C:\Windows\system32\shwebsvc.dll
2009-09-04 00:48:38 ----A---- C:\Windows\system32\shsetup.dll
2009-09-04 00:48:38 ----A---- C:\Windows\system32\rasppp.dll
2009-09-04 00:48:38 ----A---- C:\Windows\system32\PnPutil.exe
2009-09-04 00:48:38 ----A---- C:\Windows\system32\oobefldr.dll
2009-09-04 00:48:38 ----A---- C:\Windows\system32\modemui.dll
2009-09-04 00:48:38 ----A---- C:\Windows\system32\dsprop.dll
2009-09-04 00:48:38 ----A---- C:\Windows\system32\dimsroam.dll
2009-09-04 00:48:37 ----A---- C:\Windows\system32\wmdrmsdk.dll
2009-09-04 00:48:37 ----A---- C:\Windows\system32\wlgpclnt.dll
2009-09-04 00:48:37 ----A---- C:\Windows\system32\smss.exe
2009-09-04 00:48:37 ----A---- C:\Windows\system32\rdpwsx.dll
2009-09-04 00:48:37 ----A---- C:\Windows\system32\rasmontr.dll
2009-09-04 00:48:37 ----A---- C:\Windows\system32\netplwiz.dll
2009-09-04 00:48:37 ----A---- C:\Windows\system32\mscandui.dll
2009-09-04 00:48:37 ----A---- C:\Windows\system32\dataclen.dll
2009-09-04 00:48:37 ----A---- C:\Windows\system32\credui.dll
2009-09-04 00:48:37 ----A---- C:\Windows\system32\chtbrkr.dll
2009-09-04 00:48:37 ----A---- C:\Windows\system32\blackbox.dll
2009-09-04 00:48:36 ----A---- C:\Windows\system32\WSDMon.dll
2009-09-04 00:48:36 ----A---- C:\Windows\system32\wscapi.dll
2009-09-04 00:48:36 ----A---- C:\Windows\system32\wpcsvc.dll
2009-09-04 00:48:36 ----A---- C:\Windows\system32\wmpeffects.dll
2009-09-04 00:48:36 ----A---- C:\Windows\system32\thawbrkr.dll
2009-09-04 00:48:36 ----A---- C:\Windows\system32\networkexplorer.dll
2009-09-04 00:48:36 ----A---- C:\Windows\system32\msscp.dll
2009-09-04 00:48:36 ----A---- C:\Windows\system32\msimtf.dll
2009-09-04 00:48:36 ----A---- C:\Windows\system32\logagent.exe
2009-09-04 00:48:36 ----A---- C:\Windows\system32\InkEd.dll
2009-09-04 00:48:36 ----A---- C:\Windows\system32\ifmon.dll
2009-09-04 00:48:36 ----A---- C:\Windows\system32\gpresult.exe
2009-09-04 00:48:36 ----A---- C:\Windows\system32\cipher.exe
2009-09-04 00:48:36 ----A---- C:\Windows\system32\certprop.dll
2009-09-04 00:48:35 ----A---- C:\Windows\system32\softkbd.dll
2009-09-04 00:48:35 ----A---- C:\Windows\system32\sendmail.dll
2009-09-04 00:48:35 ----A---- C:\Windows\system32\msctfui.dll
2009-09-04 00:48:35 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2009-09-04 00:48:34 ----A---- C:\Windows\system32\wshbth.dll
2009-09-04 00:48:34 ----A---- C:\Windows\system32\version.dll
2009-09-04 00:48:34 ----A---- C:\Windows\system32\SLLUA.exe
2009-09-04 00:48:34 ----A---- C:\Windows\system32\puiapi.dll
2009-09-04 00:48:34 ----A---- C:\Windows\system32\olepro32.dll
2009-09-04 00:48:34 ----A---- C:\Windows\system32\msisip.dll
2009-09-04 00:48:34 ----A---- C:\Windows\system32\mprapi.dll
2009-09-04 00:48:34 ----A---- C:\Windows\system32\input.dll
2009-09-04 00:48:34 ----A---- C:\Windows\system32\fc.exe
2009-09-04 00:48:34 ----A---- C:\Windows\system32\ExplorerFrame.dll
2009-09-04 00:48:34 ----A---- C:\Windows\system32\drmmgrtn.dll
2009-09-04 00:48:34 ----A---- C:\Windows\system32\dmsynth.dll
2009-09-04 00:48:34 ----A---- C:\Windows\system32\cdd.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\wsdchngr.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\Storprop.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\SMBHelperClass.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\rrinstaller.exe
2009-09-04 00:48:33 ----A---- C:\Windows\system32\rasdial.exe
2009-09-04 00:48:33 ----A---- C:\Windows\system32\rasdiag.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\msjint40.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\l2nacp.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\ftp.exe
2009-09-04 00:48:33 ----A---- C:\Windows\system32\fdWCN.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\fdSSDP.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\eapp3hst.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\dot3cfg.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\dmusic.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\cscdll.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\cscapi.dll
2009-09-04 00:48:33 ----A---- C:\Windows\system32\bthudtask.exe
2009-09-04 00:48:33 ----A---- C:\Windows\system32\bthci.dll
2009-09-04 00:48:32 ----A---- C:\Windows\system32\tscupgrd.exe
2009-09-04 00:48:32 ----A---- C:\Windows\system32\slcinst.dll
2009-09-04 00:48:32 ----A---- C:\Windows\system32\ocsetup.exe
2009-09-04 00:48:32 ----A---- C:\Windows\system32\nslookup.exe
2009-09-04 00:48:32 ----A---- C:\Windows\system32\networkitemfactory.dll
2009-09-04 00:48:32 ----A---- C:\Windows\system32\mfps.dll
2009-09-04 00:48:32 ----A---- C:\Windows\system32\ipconfig.exe
2009-09-04 00:48:32 ----A---- C:\Windows\system32\hbaapi.dll
2009-09-04 00:48:32 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2009-09-04 00:48:32 ----A---- C:\Windows\system32\fdeploy.dll
2009-09-04 00:48:32 ----A---- C:\Windows\system32\eappgnui.dll
2009-09-04 00:48:32 ----A---- C:\Windows\system32\eappcfg.dll
2009-09-04 00:48:32 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2009-09-04 00:48:31 ----A---- C:\Windows\system32\PNPXAssoc.dll
2009-09-04 00:48:31 ----A---- C:\Windows\system32\mmcico.dll
2009-09-04 00:48:31 ----A---- C:\Windows\system32\mfpmp.exe
2009-09-04 00:48:31 ----A---- C:\Windows\system32\gpupdate.exe
2009-09-04 00:48:31 ----A---- C:\Windows\system32\csrstub.exe
2009-09-04 00:48:31 ----A---- C:\Windows\system32\cbsra.exe
2009-09-04 00:48:31 ----A---- C:\Windows\system32\bitsigd.dll
2009-09-04 00:48:30 ----A---- C:\Windows\system32\NcdProp.dll
2009-09-04 00:48:30 ----A---- C:\Windows\system32\iscsilog.dll
2009-09-04 00:48:29 ----A---- C:\Windows\system32\winrnr.dll
2009-09-04 00:48:29 ----A---- C:\Windows\system32\vdmdbg.dll
2009-09-04 00:48:29 ----A---- C:\Windows\system32\slwga.dll
2009-09-04 00:48:29 ----A---- C:\Windows\system32\odbcconf.dll
2009-09-04 00:48:29 ----A---- C:\Windows\system32\midimap.dll
2009-09-04 00:48:29 ----A---- C:\Windows\system32\inetppui.dll
2009-09-04 00:48:28 ----A---- C:\Windows\system32\msimsg.dll
2009-09-04 00:48:28 ----A---- C:\Windows\system32\mferror.dll
2009-09-04 00:48:28 ----A---- C:\Windows\system32\f3ahvoas.dll
2009-09-04 00:48:14 ----A---- C:\Windows\system32\SmiEngine.dll
2009-09-04 00:48:10 ----A---- C:\Windows\system32\wdscore.dll
2009-09-04 00:48:10 ----A---- C:\Windows\system32\PkgMgr.exe
2009-09-04 00:48:02 ----A---- C:\Windows\system32\drvstore.dll
2009-09-03 01:15:25 ----A---- C:\Windows\system32\Apphlpdm.dll
2009-09-03 01:15:24 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2009-09-02 02:47:28 ----D---- C:\rsit
2009-09-02 02:39:53 ----D---- C:\Rooter$
2009-08-29 18:30:27 ----D---- C:\Program Files\Search Guard PlusU
2009-08-29 18:30:27 ----D---- C:\Program Files\Search Guard Plus
2009-08-26 09:46:40 ----A---- C:\Windows\system32\tzres.dll
2009-08-26 06:20:58 ----A---- C:\Windows\system32\gameux.dll
2009-08-25 13:45:57 ----D---- C:\Program Files\ZyXEL
2009-08-25 13:45:57 ----A---- C:\Windows\system32\W32N50.dll
2009-08-24 18:20:01 ----D---- C:\Program Files\FileZilla FTP Client
2009-08-13 17:36:28 ----A---- C:\Windows\system32\lsasrv.dll
2009-08-13 17:36:27 ----A---- C:\Windows\system32\wdigest.dll
2009-08-13 17:36:27 ----A---- C:\Windows\system32\secur32.dll
2009-08-13 17:36:27 ----A---- C:\Windows\system32\schannel.dll
2009-08-13 17:36:27 ----A---- C:\Windows\system32\msv1_0.dll
2009-08-13 17:36:27 ----A---- C:\Windows\system32\lsass.exe
2009-08-13 17:36:27 ----A---- C:\Windows\system32\kerberos.dll
2009-08-13 10:15:06 ----D---- C:\Users\frantz67\AppData\Roaming\FileZilla
2009-08-12 14:50:40 ----A---- C:\Windows\system32\atl.dll
2009-08-12 14:50:39 ----A---- C:\Windows\system32\wkssvc.dll
2009-08-12

Afficher la suite

A voir également:

Comment me debaraser d'un rootkit
Anti rootkit gratuit - Télécharger - Antivirus & Antimalwares
Sophos anti rootkit - Télécharger - Antivirus & Antimalwares
AVG Anti-Rootkit - Télécharger - Antivirus & Antimalwares
Rootkit hunter - Télécharger - Antivirus & Antimalwares
Panda rootkit - Télécharger - Antivirus & Antimalwares

1 réponse

Réponse 1 / 1

pimprenelle27 Messages postés 22182 Statut Contributeur sécurité 2 503

Bonjour,

Le rapport Rapport RSIT n'est pas complet, tu peux le faire comme ci dessous :

Me faire ceci pour un examen complet de ton PC.

▶ Télécharge Random's System Information Tool (RSIT).

▶ Un tutoriel est à ta disposition pour l'installer et l'utiliser correctement ici

▶ Double clique sur RSIT.exe pour lancer l'outil.

▶ Clique sur 'Continue' à l'écran Disclaimer.

▶ Si l'outil Hijackthis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.

▶ Une fois le scan fini , 2 rapports vont apparaitre. ▶ Héberge le contenu des 2 rapports.

( C:\RSIT\log.txt et C:\RSIT\info.txt )

CTRL A pour sélectionner tout, CTRL C pour copier et puis CTRL V pour coller

Petite chose à faire pour les rapports générés par RSIT avant de continuer

▶ Vous devez fusionner les deux rapports.
▶ C'est-à-dire, copier/coller le contenu du rapport info.txt à la suite du rapport log.txt dans un bloc note pour ne faire qu'un seul rapport.
▶ Ensuite enregistrer le rapport log.txt.

Ensuite :

▶ Rendez-vous à cette adresse d'hébergement gratuit : http://www.cijoint.fr/

▶ Cliquez sur parcourir, puis sur créer le lien cjoint

▶ Une fois le lien crée, faite un clique droit dessus et copier l'adresse du lien pour venir le coller dans votre réponse

Discussions similaires

comment se débaraser totalement de babylon

Rootkit sur pc windows 10

win32 Rootkit

Discussions similaires

Newsletters