Virtumonde encore et toujours

Titania -  
 Titania -
Bonsoir à tous,
J'ai parcouru le forum pour essayer de voir si je pouvais m'en sortir toute seule mais apparement ce n'est pas possible.
J'ai le fameux virous virtumonde qui s'est invité à la maison. Je sais que c'est sympa chez moi mais franchement j'aimerais beaucoup qu'il aille vers d'autres horizons.
Si quelqu'un pouvait avoir la gentillesse de m'aider dans la procédure à suvre (quelqu'un de patient car je suis totalement néophyte).
Merci d'avance.
Configuration: Windows XP
Internet Explorer 7.0

4 réponses

  1. !^^![ME] Messages postés 4767 Statut Contributeur 395
     
    0
    1. Titania
       
      Navifix

      Search Navipromo version 2.0.9 commencé le 2007-08-30 à 11:16:47.28

      !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
      !!! Poster ce rapport sur le forum pour le faire analyser !!!
      !!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!!

      Fix lancé depuis C:\Program Files\navilog1
      Mise a jour le 20.08.2007 a 22h30 by IL-MAFIOSO

      Executé en mode normal

      *** Recherche Programmes installes ***




      *** Recherche dossiers dans C:\WINDOWS ***




      *** Recherche dossiers dans C:\Program Files ***




      *** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***




      *** Recherche dossiers dans C:\Documents and Settings\Madame\Application Data ***



      *** Recherche avec BlackLight Engine/F-secure ***
      BlackLight Engine est un produit de F-secure, pour + d'infos :
      https://www.f-secure.com/en


      F-SECURE BLACKLIGHT ROOTKIT ELIMINATOR
      ======================================

      Copyright 2005-2006 F-Secure Corporation. All rights reserved.
      This is a beta version. It will expire on 1st of October, 2007.
      Version information: 2.2.1064.

      [+] Started on 08/30/07 at 11:16:49.
      [+] Initializing ...
      [+] Starting scan, press Ctrl-C to abort.
      [+] Scanning for hidden items ...........................
      [+] Scan complete.
      [+] Summary: 0 hidden item(s) found, 0 scheduled for renaming.
      [+] Exited on 08/30/07 at 11:21:20 (return code = 0).


      *** Recherche avec GenericNaviSearch ***
      !!! Tous Ces résultats peuvent révéler des fichiers légitimes !!!
      !!! A verifier impérativement avant toute suppression manuelle !!!

      Fichiers trouvés :

      Aucun Fichier trouvé !

      Fichiers suspects :

      Aucun Fichier suspect trouvé !



      *** Recherche fichiers ***




      *** Recherche cles registre ***


      Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs]



      Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage]



      Recherche Clé Magic Control



      *** Module de Recherche complémentaire ***
      (Recherche fichiers spécifiques)

      1)Recherche fichiers connus:


      2)Recherche Heuristique :
      *
      **
      ***
      ****
      *****
      ******
      *******
      ********


      3)Recherche Certificats :

      Certificat Egroup absent !


      *** Analyse Terminé le 2007-08-30 à 11:21:47.12 ***
      0
    2. Titania
       
      et enfin vundo (ma machine rame de plus en plus c'est catastropique)


      VundoFix V6.5.7

      Checking Java version...

      Sun Java not detected
      Scan started at 19:24:27 29/08/2007

      Listing files found while scanning....

      C:\WINDOWS\rtsrss.ini
      C:\WINDOWS\ssrstr.dll
      C:\windows\system32\awvtsrr.dll
      C:\windows\system32\jkhhfcc.dll
      C:\windows\system32\pmnnnkk.dll
      C:\WINDOWS\system32\tmp83.tmp.dll

      Beginning removal...

      Attempting to delete C:\WINDOWS\rtsrss.ini
      C:\WINDOWS\rtsrss.ini Has been deleted!

      Attempting to delete C:\WINDOWS\ssrstr.dll
      C:\WINDOWS\ssrstr.dll Has been deleted!

      Attempting to delete C:\windows\system32\awvtsrr.dll
      C:\windows\system32\awvtsrr.dll Has been deleted!

      Attempting to delete C:\windows\system32\jkhhfcc.dll
      C:\windows\system32\jkhhfcc.dll Could not be deleted.

      Attempting to delete C:\windows\system32\pmnnnkk.dll
      C:\windows\system32\pmnnnkk.dll Has been deleted!

      Attempting to delete C:\WINDOWS\system32\tmp83.tmp.dll
      C:\WINDOWS\system32\tmp83.tmp.dll Has been deleted!

      Performing Repairs to the registry.
      Done!

      VundoFix V6.5.7

      Checking Java version...

      Sun Java not detected
      Scan started at 19:57:09 2007-08-29

      Listing files found while scanning....

      C:\windows\system32\jkhhfcc.dll

      Beginning removal...

      Attempting to delete C:\windows\system32\jkhhfcc.dll
      C:\windows\system32\jkhhfcc.dll Could not be deleted.

      Performing Repairs to the registry.
      Done!

      VundoFix V6.5.7

      Checking Java version...

      Sun Java not detected
      Scan started at 12:02:13 2007-08-30

      Listing files found while scanning....

      C:\WINDOWS\cbxyyx.dll
      C:\WINDOWS\system32\tmp8D.tmp.dll
      C:\WINDOWS\xyyxbc.ini

      Beginning removal...

      Attempting to delete C:\WINDOWS\cbxyyx.dll
      C:\WINDOWS\cbxyyx.dll Has been deleted!

      Attempting to delete C:\WINDOWS\system32\tmp8D.tmp.dll
      C:\WINDOWS\system32\tmp8D.tmp.dll Has been deleted!

      Attempting to delete C:\WINDOWS\xyyxbc.ini
      C:\WINDOWS\xyyxbc.ini Has been deleted!

      Performing Repairs to the registry.
      Done!
      0
  2. Titania
     
    Bonjour,

    Merci de ta réponse.

    Voici le rpport f secure

    Result: 23 malware found
    Tracking Cookie (spyware)
    System (Disinfected)
    System
    System
    System
    System
    System
    System
    System
    System
    System
    System
    System
    System
    System
    System
    System
    System
    System
    System
    Trojan-Downloader.Win32.ConHook.bg (virus)
    C:\WINDOWS\SYSTEM32\C_8MRT.DLL (Renamed & Submitted)
    C:\WINDOWS\SYSTEM32\JKHHFCC.DLL (Renamed & Submitted)
    Trojan.Win32.Agent.bi (virus)
    C:\DOCUMENTS AND SETTINGS\MADAME\LOCAL SETTINGS\TEMP\TEMP.EXE (Renamed & Submitted)
    Win32.Trojan.Agent (spyware)
    System (Disinfected)

    --------------------------------------------------------------------------------

    Statistics
    Scanned:
    Files: 31739
    System: 4569
    Not scanned: 2
    Actions:
    Disinfected: 2
    Renamed: 3
    Deleted: 0
    None: 18
    Submitted: 3
    Files not scanned:
    C:\PAGEFILE.SYS
    C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT

    --------------------------------------------------------------------------------

    Options
    Scanning engines:
    F-Secure Libra: 2.4.2, 2007-08-28
    F-Secure AVP: 7.0.171, 2007-08-30
    F-Secure Orion: 1.2.37, 2007-08-30
    F-Secure Blacklight: 1.0.64
    F-Secure Draco: 1.0.35, 0612-150-72
    F-Secure Pegasus: 1.19.0, 2007-07-20
    Scanning options:
    Scan defined files: COM EXE SYS OV? BIN SCR DLL SHS HTM HTML HTT VBS JS INF VXD DO? XL? RTF CPL WIZ HTA PP? PWZ P?T MSO PIF . ACM ASP AX CNV CSC DRV INI MDB MPD MPP MPT OBD OBT OCX PCI TLB TSP WBK WBT WPC WSH VWP WML BOO HLP TD0 TT6 MSG ASD JSE VBE WSC CHM EML PRC SHB BAT LNK ANI AVB CEO CMD LSP MAP MHT MIF PDF PHP POT WMF NWS TAR TGZ WSF ZL? {* ZIP JAR ARJ LZH TAR TGZ GZ CAB RAR BZ2 HQX
    Use Advanced heuristics

    Je continue la procédure
    0
  3. Titania
     
    Ad-aware

    System Information
    File Version Information
    Ad-Aware 2007 Settings
    Extended Ad-Aware 2007 Settings
    Database Information
    Scan Statistics
    Scan Detailed Statistics
    Infections Found
    Listing of running processes
    System Information
    Number of processors:1
    Processor type:AMD Athlon(tm) XP 3000+
    Memory Available:18%
    Total Physical Memory:536330240 Bytes
    Available Physical Memory:94380032 Bytes
    Total Page File Size:1310765056 Bytes
    Available On Page File:495652864 Bytes
    Total Virtual Memory:2147352576 Bytes
    Available Virtual Memory:1999314944 Bytes
    OS:Microsoft Windows XP 5.1 (Build 2600)
    [to top]
    File Verion Information
    File Version
    CEAPI.dll 7, 0, 2, 1
    aawservice.exe 7, 0, 2, 1
    Ad-Aware2007.exe 7.0.2.1
    [to top]
    Ad-Aware 2007 Settings
    Skipping files larger than:1048576 Bytes
    Ignoring infections with lower TAI than:3
    Safe Mode:False
    [to top]
    Extended Ad-Aware 2007 Settings
    Unload malicious processes and modules
    Unload Modules
    Let Windows remove files at Start-Up
    Deactivate Ad-Watch
    Re-analyze Scan Result
    Update Definitions on startup
    Delete Restored Items
    Permanent Archive Caching
    Write Protect System Files
    Create Log file
    Include basic settings
    Include advanced settings
    Include user and computer name
    Environment information
    Running processes
    Running processes and modules
    Include info about ignored objects in log file
    Consider definitions File Outdated after x days
    Proxy URL
    Proxy Port
    [to top]
    Database Info
    Version number:18
    Build Number:0
    Build Date and Time:2007/08/2713:12:44
    [to top]
    Scan Statistics
    Method:Smart

    Items Scanned:110898
    Infections Detected:14
    Infections Removed:0
    Infections Quarantined:0
    Infections Ignored:0
    [to top]
    Scan Detailed Statistics
    Type Critical Total
    Process Scan 2 2
    Registry Scan 4 4
    Registry PE Scan 0 0
    Hosts Scan 0 0
    File Scan 0 0
    Folder Scan 0 0
    LSP Scan 0 0
    ADS Scan 0 0
    Cookie Scan 7 7
    File Hash Scan 0 0
    [to top]
    Infections Found
    Family Id Name Category TAI
    941 Win32.Trojan.Agent Malware 10
    [100008451] File: c:\documents and settings\madame\application data\tmp82.tmp.exe
    [100008451] Process CSI: c:\documents and settings\madame\application data\tmp82.tmp.exe
    [300028247] Root: HKLM Path: system\controlset001\enum\root\legacy_domainservice
    [300028249] Root: HKLM Path: system\currentcontrolset\enum\root\legacy_domainservice
    [300030459] Root: HKLM Path: software\microsoft\dinf
    [300030461] Root: HKLM Path: software\microsoft\dnngcon

    725 Tracking Cookie DataMiner 3
    [600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\Madame\Cookies\index.dat smartadserver.com TestIfCookieP /
    [600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\Madame\Cookies\index.dat smartadserver.com pbw /
    [600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\Madame\Cookies\index.dat smartadserver.com pid /
    [600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\Madame\Cookies\index.dat smartadserver.com pbwmaj /
    [600000173] Browser: Internet Explorer Cookie: C:\Documents and Settings\Madame\Cookies\index.dat bluestreak.com id /
    [600000144] Browser: Internet Explorer Cookie: C:\Documents and Settings\Madame\Cookies\index.dat doubleclick.net id /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Madame\Cookies\index.dat estat.com e /

    9999 MRU Object MRU Object 0
    [1] MRU Path: C:\Documents and Settings\Madame\Recent Count: 4

    Quarantined Objects
    Family Id Name Category TAI

    Removed Objects
    Family Id Name Category TAI
    [to top]
    Listing of Running Processes
    C:\WINDOWS\SYSTEM32\SMSS.EXE
    c:\windows\system32\smss.exe
    c:\windows\system32\ntdll.dll
    C:\WINDOWS\SYSTEM32\CSRSS.EXE
    c:\windows\system32\csrss.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\csrsrv.dll
    c:\windows\system32\basesrv.dll
    c:\windows\system32\winsrv.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\sxs.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\apphelp.dll
    c:\windows\system32\version.dll
    C:\WINDOWS\SYSTEM32\WINLOGON.EXE
    c:\windows\system32\winlogon.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\authz.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\nddeapi.dll
    c:\windows\system32\profmap.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\psapi.dll
    c:\windows\system32\regapi.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\setupapi.dll
    c:\windows\system32\version.dll
    c:\windows\system32\winsta.dll
    c:\windows\system32\wintrust.dll
    c:\windows\system32\imagehlp.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\ntmarta.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\samlib.dll
    c:\windows\system32\msgina.dll
    c:\windows\system32\odbc32.dll
    c:\windows\system32\comdlg32.dll
    c:\windows\system32\odbcint.dll
    c:\windows\system32\shsvcs.dll
    c:\windows\system32\sfc.dll
    c:\windows\system32\sfc_os.dll
    c:\windows\system32\apphelp.dll
    c:\windows\system32\msctfime.ime
    c:\windows\system32\winscard.dll
    c:\windows\system32\wtsapi32.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ati2evxx.dll
    c:\windows\system32\cscdll.dll
    c:\windows\system32\c_8mrt.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\rsaenh.dll
    c:\windows\system32\sxs.dll
    c:\windows\system32\wlnotify.dll
    c:\windows\system32\winspool.drv
    c:\windows\system32\mpr.dll
    c:\windows\system32\wgalogon.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\cscui.dll
    c:\windows\system32\msv1_0.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\mprapi.dll
    c:\windows\system32\activeds.dll
    c:\windows\system32\adsldpc.dll
    c:\windows\system32\atl.dll
    c:\windows\system32\rtutils.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\wdmaud.drv
    c:\windows\system32\msacm32.drv
    c:\windows\system32\msacm32.dll
    c:\windows\system32\midimap.dll
    c:\windows\system32\wbem\wbemprox.dll
    c:\windows\system32\wbem\wbemcomn.dll
    c:\windows\system32\wbem\wbemsvc.dll
    c:\windows\system32\wbem\fastprox.dll
    c:\windows\system32\msvcp60.dll
    c:\windows\system32\ntdsapi.dll
    c:\windows\system32\dnsapi.dll
    c:\windows\system32\rasapi32.dll
    c:\windows\system32\rasman.dll
    c:\windows\system32\tapi32.dll
    c:\windows\system32\sensapi.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\rasadhlp.dll
    c:\windows\system32\urlmon.dll
    c:\windows\system32\hnetcfg.dll
    c:\windows\system32\wshtcpip.dll
    c:\windows\system32\msi.dll
    C:\WINDOWS\SYSTEM32\SERVICES.EXE
    c:\windows\system32\services.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\scesrv.dll
    c:\windows\system32\authz.dll
    c:\windows\system32\umpnpmgr.dll
    c:\windows\system32\winsta.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\ncobjapi.dll
    c:\windows\system32\msvcp60.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\apphelp.dll
    c:\windows\system32\eventlog.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\psapi.dll
    c:\windows\system32\wtsapi32.dll
    C:\WINDOWS\SYSTEM32\LSASS.EXE
    c:\windows\system32\lsass.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\lsasrv.dll
    c:\windows\system32\mpr.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\ntdsapi.dll
    c:\windows\system32\dnsapi.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\samlib.dll
    c:\windows\system32\samsrv.dll
    c:\windows\system32\cryptdll.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\msprivs.dll
    c:\windows\system32\kerberos.dll
    c:\windows\system32\msv1_0.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\netlogon.dll
    c:\windows\system32\w32time.dll
    c:\windows\system32\msvcp60.dll
    c:\windows\system32\schannel.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\wdigest.dll
    c:\windows\system32\rsaenh.dll
    c:\windows\system32\scecli.dll
    c:\windows\system32\setupapi.dll
    c:\windows\system32\ipsecsvc.dll
    c:\windows\system32\authz.dll
    c:\windows\system32\oakley.dll
    c:\windows\system32\winipsec.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\hnetcfg.dll
    c:\windows\system32\wshtcpip.dll
    c:\windows\system32\pstorsvc.dll
    c:\windows\system32\psbase.dll
    c:\windows\system32\dssenh.dll
    C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
    c:\windows\system32\ati2evxx.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\msctfime.ime
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\uxtheme.dll
    C:\WINDOWS\SYSTEM32\SVCHOST.EXE
    c:\windows\system32\svchost.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\ntmarta.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\samlib.dll
    c:\windows\system32\rpcss.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\wtsapi32.dll
    c:\windows\system32\winsta.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\msv1_0.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\termsrv.dll
    c:\windows\system32\icaapi.dll
    c:\windows\system32\setupapi.dll
    c:\windows\system32\wintrust.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\imagehlp.dll
    c:\windows\system32\authz.dll
    c:\windows\system32\mstlsapi.dll
    c:\windows\system32\activeds.dll
    c:\windows\system32\adsldpc.dll
    c:\windows\system32\atl.dll
    c:\windows\system32\regapi.dll
    c:\windows\system32\apphelp.dll
    c:\windows\system32\rsaenh.dll
    c:\windows\system32\svchost.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\rpcss.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\rsaenh.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\hnetcfg.dll
    c:\windows\system32\wshtcpip.dll
    c:\windows\system32\dnsapi.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\winrnr.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\rasadhlp.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\svchost.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\ntmarta.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\samlib.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\shsvcs.dll
    c:\windows\system32\winsta.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\dhcpcsvc.dll
    c:\windows\system32\dnsapi.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\rsaenh.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\hnetcfg.dll
    c:\windows\system32\wshtcpip.dll
    c:\windows\system32\wzcsvc.dll
    c:\windows\system32\rtutils.dll
    c:\windows\system32\wmi.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\wtsapi32.dll
    c:\windows\system32\esent.dll
    c:\windows\system32\atl.dll
    c:\windows\system32\rastls.dll
    c:\windows\system32\cryptui.dll
    c:\windows\system32\wintrust.dll
    c:\windows\system32\imagehlp.dll
    c:\windows\system32\mprapi.dll
    c:\windows\system32\activeds.dll
    c:\windows\system32\adsldpc.dll
    c:\windows\system32\setupapi.dll
    c:\windows\system32\rasapi32.dll
    c:\windows\system32\rasman.dll
    c:\windows\system32\tapi32.dll
    c:\windows\system32\schannel.dll
    c:\windows\system32\winscard.dll
    c:\windows\system32\raschap.dll
    c:\windows\system32\msv1_0.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\schedsvc.dll
    c:\windows\system32\ntdsapi.dll
    c:\windows\system32\msidle.dll
    c:\windows\system32\audiosrv.dll
    c:\windows\system32\wkssvc.dll
    c:\windows\system32\cryptsvc.dll
    c:\windows\system32\certcli.dll
    c:\windows\system32\dmserver.dll
    c:\windows\system32\ersvc.dll
    c:\windows\system32\es.dll
    c:\windows\pchealth\helpctr\binaries\pchsvc.dll
    c:\windows\system32\srvsvc.dll
    c:\windows\system32\netman.dll
    c:\windows\system32\netshell.dll
    c:\windows\system32\credui.dll
    c:\windows\system32\wzcsapi.dll
    c:\windows\system32\seclogon.dll
    c:\windows\system32\sens.dll
    c:\windows\system32\srsvc.dll
    c:\windows\system32\powrprof.dll
    c:\windows\system32\sxs.dll
    c:\windows\system32\upnp.dll
    c:\windows\system32\winhttp.dll
    c:\windows\system32\ssdpapi.dll
    c:\windows\system32\msi.dll
    c:\windows\system32\trkwks.dll
    c:\windows\system32\w32time.dll
    c:\windows\system32\msvcp60.dll
    c:\windows\system32\wbem\wmisvc.dll
    c:\windows\system32\vssapi.dll
    c:\windows\system32\wuauserv.dll
    c:\windows\system32\wuaueng.dll
    c:\windows\system32\winspool.drv
    c:\windows\system32\cabinet.dll
    c:\windows\system32\mspatcha.dll
    c:\windows\system32\browser.dll
    c:\windows\system32\ipnathlp.dll
    c:\windows\system32\authz.dll
    c:\windows\system32\wscsvc.dll
    c:\windows\system32\wbem\wbemcomn.dll
    c:\windows\system32\wbem\wbemcore.dll
    c:\windows\system32\wbem\esscli.dll
    c:\windows\system32\wbem\fastprox.dll
    c:\windows\system32\sfc.dll
    c:\windows\system32\sfc_os.dll
    c:\windows\system32\wbem\wmiutils.dll
    c:\windows\system32\wbem\repdrvfs.dll
    c:\windows\system32\wbem\wmiprvsd.dll
    c:\windows\system32\ncobjapi.dll
    c:\windows\system32\wbem\wbemess.dll
    c:\windows\system32\comsvcs.dll
    c:\windows\system32\colbact.dll
    c:\windows\system32\mtxclu.dll
    c:\windows\system32\wsock32.dll
    c:\windows\system32\clusapi.dll
    c:\windows\system32\resutils.dll
    c:\windows\system32\wbem\ncprov.dll
    c:\windows\system32\netcfgx.dll
    c:\windows\system32\rasmans.dll
    c:\windows\system32\winipsec.dll
    c:\windows\system32\rasadhlp.dll
    c:\windows\system32\tapisrv.dll
    c:\windows\system32\psapi.dll
    c:\windows\system32\rastapi.dll
    c:\windows\system32\unimdm.tsp
    c:\windows\system32\uniplat.dll
    c:\windows\system32\kmddsp.tsp
    c:\windows\system32\ndptsp.tsp
    c:\windows\system32\ipconf.tsp
    c:\windows\system32\h323.tsp
    c:\windows\system32\hidphone.tsp
    c:\windows\system32\hid.dll
    c:\windows\system32\rasppp.dll
    c:\windows\system32\ntlsapi.dll
    c:\windows\system32\msxml3.dll
    c:\windows\system32\kerberos.dll
    c:\windows\system32\cryptdll.dll
    c:\windows\system32\urlmon.dll
    c:\windows\system32\rasdlg.dll
    c:\windows\system32\apphelp.dll
    c:\windows\system32\winrnr.dll
    c:\windows\system32\advpack.dll
    c:\windows\system32\dssenh.dll
    c:\windows\system32\wbem\wbemsvc.dll
    c:\windows\system32\svchost.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\dnsrslvr.dll
    c:\windows\system32\dnsapi.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\hnetcfg.dll
    c:\windows\system32\wshtcpip.dll
    c:\windows\system32\svchost.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\ntmarta.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\samlib.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\lmhsvc.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\webclnt.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\regsvc.dll
    c:\windows\system32\ssdpsrv.dll
    c:\windows\system32\hnetcfg.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\wshtcpip.dll
    c:\windows\system32\upnphost.dll
    c:\windows\system32\winhttp.dll
    c:\windows\system32\ssdpapi.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\rsaenh.dll
    c:\windows\system32\httpapi.dll
    C:\PROGRAM FILES\LAVASOFT\AD-AWARE 2007\AAWSERVICE.EXE
    c:\program files\lavasoft\ad-aware 2007\aawservice.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\program files\lavasoft\ad-aware 2007\ceapi.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\program files\lavasoft\ad-aware 2007\pkarchive84cb.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\psapi.dll
    c:\windows\system32\version.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\program files\lavasoft\ad-aware 2007\update.dll
    c:\windows\system32\wsock32.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\rsaenh.dll
    C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
    c:\windows\system32\spoolsv.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\spoolss.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\dnsapi.dll
    c:\windows\system32\rasadhlp.dll
    c:\windows\system32\localspl.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\sfc_os.dll
    c:\windows\system32\wintrust.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\imagehlp.dll
    c:\windows\system32\winspool.drv
    c:\windows\system32\netapi32.dll
    c:\windows\system32\cnbjmon.dll
    c:\windows\system32\cnmlm84.dll
    c:\windows\system32\psapi.dll
    c:\windows\system32\pjlmon.dll
    c:\windows\system32\tcpmon.dll
    c:\windows\system32\usbmon.dll
    c:\windows\system32\spool\prtprocs\w32x86\cnmpd84.dll
    c:\windows\system32\spool\prtprocs\w32x86\ppbipr.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\winrnr.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\win32spl.dll
    c:\windows\system32\netrap.dll
    c:\windows\system32\ntdsapi.dll
    c:\windows\system32\inetpp.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\xpsp2res.dll
    C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
    c:\windows\system32\ati2evxx.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\msctfime.ime
    c:\windows\system32\ole32.dll
    c:\windows\system32\msctf.dll
    C:\WINDOWS\EXPLORER.EXE
    c:\windows\explorer.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\browseui.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\shdocvw.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\cryptui.dll
    c:\windows\system32\wintrust.dll
    c:\windows\system32\imagehlp.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\setupapi.dll
    c:\windows\system32\ntmarta.dll
    c:\windows\system32\samlib.dll
    c:\windows\system32\msctfime.ime
    c:\windows\system32\apphelp.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\cscui.dll
    c:\windows\system32\cscdll.dll
    c:\windows\system32\themeui.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\msimg32.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\actxprxy.dll
    c:\windows\system32\ieframe.dll
    c:\windows\system32\psapi.dll
    c:\windows\system32\urlmon.dll
    c:\windows\system32\mlang.dll
    c:\windows\system32\msi.dll
    c:\windows\system32\linkinfo.dll
    c:\windows\system32\ntshrui.dll
    c:\windows\system32\atl.dll
    c:\windows\system32\c_8mrt.dll
    c:\windows\system32\sxs.dll
    c:\windows\system32\netshell.dll
    c:\windows\system32\rtutils.dll
    c:\windows\system32\credui.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\winsta.dll
    c:\windows\system32\webcheck.dll
    c:\windows\system32\stobject.dll
    c:\windows\system32\batmeter.dll
    c:\windows\system32\powrprof.dll
    c:\windows\system32\wtsapi32.dll
    c:\windows\system32\rsaenh.dll
    c:\windows\system32\msctf.dll
    c:\windows\system32\mpr.dll
    c:\windows\system32\drprov.dll
    c:\windows\system32\ntlanman.dll
    c:\windows\system32\netui0.dll
    c:\windows\system32\netui1.dll
    c:\windows\system32\netrap.dll
    c:\windows\system32\davclnt.dll
    c:\windows\system32\dnsapi.dll
    c:\program files\fichiers communs\adobe\acrobat\activex\pdfshell.dll
    c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcr80.dll
    c:\program files\fichiers communs\adobe\acrobat\activex\pdfshell.fra
    c:\windows\system32\mshtml.dll
    c:\windows\system32\msls31.dll
    c:\windows\system32\rasapi32.dll
    c:\windows\system32\rasman.dll
    c:\windows\system32\tapi32.dll
    c:\windows\system32\sensapi.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\msv1_0.dll
    c:\windows\system32\rasadhlp.dll
    c:\windows\system32\hnetcfg.dll
    c:\windows\system32\wshtcpip.dll
    c:\windows\system32\winrnr.dll
    c:\windows\system32\mprapi.dll
    c:\windows\system32\activeds.dll
    c:\windows\system32\adsldpc.dll
    c:\windows\system32\msisip.dll
    c:\windows\system32\wshext.dll
    c:\windows\system32\mfc42.dll
    c:\windows\system32\comdlg32.dll
    c:\windows\system32\mfc42loc.dll
    c:\windows\system32\wshfr.dll
    C:\DOCUMENTS AND SETTINGS\MADAME\APPLICATION DATA\TMP82.TMP.EXE
    c:\documents and settings\madame\application data\tmp82.tmp.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\dnsapi.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\version.dll
    c:\windows\system32\urlmon.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\rasapi32.dll
    c:\windows\system32\rasman.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\tapi32.dll
    c:\windows\system32\rtutils.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\msv1_0.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\sensapi.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\rasadhlp.dll
    c:\windows\system32\hnetcfg.dll
    c:\windows\system32\wshtcpip.dll
    C:\PROGRA~1\TRENDM~1\INTERN~1\PCCTLCOM.EXE
    c:\progra~1\trendm~1\intern~1\pcctlcom.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\progra~1\trendm~1\intern~1\pccnfc.dll
    c:\progra~1\trendm~1\intern~1\tmdbg.dll
    c:\progra~1\trendm~1\intern~1\tmpxcfg.dll
    c:\progra~1\trendm~1\intern~1\tmproxy.dll
    c:\windows\system32\version.dll
    c:\progra~1\trendm~1\intern~1\tmoacfg.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\progra~1\trendm~1\intern~1\pcctlspy.dll
    c:\progra~1\trendm~1\intern~1\pcsse.dll
    c:\progra~1\trendm~1\intern~1\ssapi32.dll
    c:\windows\system32\psapi.dll
    c:\windows\system32\apphelp.dll
    c:\progra~1\trendm~1\intern~1\pcctlps.dll
    c:\progra~1\trendm~1\intern~1\pccscan.dll
    c:\progra~1\trendm~1\intern~1\pewnt2.dll
    c:\progra~1\trendm~1\intern~1\tmpfwapi.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\hnetcfg.dll
    c:\windows\system32\wshtcpip.dll
    c:\windows\system32\security.dll
    c:\windows\system32\msi.dll
    c:\windows\system32\occache.dll
    c:\progra~1\trendm~1\intern~1\pcssrvps.dll
    c:\windows\system32\pdh.dll
    c:\windows\system32\comdlg32.dll
    c:\windows\system32\odbc32.dll
    c:\windows\system32\odbcbcp.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\odbcint.dll
    c:\windows\system32\query.dll
    c:\windows\system32\msdtcuiu.dll
    c:\windows\system32\atl.dll
    c:\windows\system32\mfc42u.dll
    c:\windows\system32\mpr.dll
    c:\windows\system32\msdtcprx.dll
    c:\windows\system32\msvcp60.dll
    c:\windows\system32\mtxclu.dll
    c:\windows\system32\wsock32.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\mfc42loc.dll
    c:\windows\system32\clusapi.dll
    c:\windows\system32\resutils.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\ntmarta.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\samlib.dll
    c:\windows\system32\perfdisk.dll
    c:\windows\system32\perfnet.dll
    c:\windows\system32\perfos.dll
    c:\windows\system32\shfolder.dll
    c:\windows\system32\perfproc.dll
    c:\windows\system32\pschdprf.dll
    c:\windows\system32\traffic.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\wmi.dll
    c:\windows\system32\rasctrs.dll
    c:\windows\system32\rasman.dll
    c:\windows\system32\msv1_0.dll
    c:\progra~1\trendm~1\intern~1\tmdp.dll
    c:\windows\system32\rsvpperf.dll
    c:\windows\system32\winspool.drv
    c:\windows\system32\tapiperf.dll
    c:\windows\system32\tapi32.dll
    c:\windows\system32\rtutils.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\perfctrs.dll
    c:\windows\system32\mprapi.dll
    c:\windows\system32\activeds.dll
    c:\windows\system32\adsldpc.dll
    c:\windows\system32\setupapi.dll
    c:\windows\system32\winsta.dll
    c:\windows\system32\perfts.dll
    c:\windows\system32\utildll.dll
    c:\windows\system32\wbem\wmiaprpl.dll
    c:\windows\system32\loadperf.dll
    c:\windows\system32\wbem\wbemcomn.dll
    c:\windows\system32\dnsapi.dll
    c:\windows\system32\winrnr.dll
    c:\windows\system32\rasadhlp.dll
    c:\progra~1\trendm~1\intern~1\tmufeng.dll
    c:\progra~1\trendm~1\intern~1\tmcfwapi.dll
    c:\progra~1\trendm~1\intern~1\tmhash.dll
    C:\WINDOWS\SYSTEM32\SVCHOST.EXE
    c:\windows\system32\svchost.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\wiaservc.dll
    c:\windows\system32\cfgmgr32.dll
    c:\windows\system32\setupapi.dll
    c:\windows\system32\mscms.dll
    c:\windows\system32\winspool.drv
    c:\windows\system32\winsta.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\wintrust.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\imagehlp.dll
    c:\windows\system32\brwia06a.dll
    c:\windows\system32\brusi06a.dll
    c:\windows\system32\actxprxy.dll
    c:\windows\system32\sti.dll
    C:\PROGRA~1\TRENDM~1\INTERN~1\TMNTSRV.EXE
    c:\progra~1\trendm~1\intern~1\tmntsrv.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\version.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\progra~1\trendm~1\intern~1\tmdbg.dll
    c:\progra~1\trendm~1\intern~1\pccscan.dll
    c:\progra~1\trendm~1\intern~1\pewnt2.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\xpsp2res.dll
    C:\PROGRA~1\TRENDM~1\INTERN~1\TMPFW.EXE
    c:\progra~1\trendm~1\intern~1\tmpfw.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\wsock32.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\comdlg32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\winspool.drv
    c:\windows\system32\ole32.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\uxtheme.dll
    c:\progra~1\trendm~1\intern~1\tmdbg.dll
    c:\windows\system32\secur32.dll
    c:\progra~1\trendm~1\intern~1\tmpfwhlp.dll
    c:\windows\system32\iphlpapi.dll
    c:\progra~1\trendm~1\intern~1\tmcfwapi.dll
    c:\progra~1\trendm~1\intern~1\tmhash.dll
    c:\progra~1\trendm~1\intern~1\tmmbd.dll
    c:\windows\system32\psapi.dll
    c:\progra~1\trendm~1\intern~1\tmmbdrul.dll
    c:\progra~1\trendm~1\intern~1\tmpfwrul.dll
    c:\progra~1\trendm~1\intern~1\tmpfwlog.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\hnetcfg.dll
    c:\windows\system32\wshtcpip.dll
    c:\windows\system32\msctfime.ime
    c:\windows\system32\rasapi32.dll
    c:\windows\system32\rasman.dll
    c:\windows\system32\tapi32.dll
    c:\windows\system32\rtutils.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\msv1_0.dll
    C:\PROGRAM FILES\TREND MICRO\INTERNET SECURITY 2007\PCCGUIDE.EXE
    c:\program files\trend micro\internet security 2007\pccguide.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\version.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\comdlg32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\winspool.drv
    c:\windows\system32\oledlg.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\riched20.dll
    c:\program files\trend micro\internet security 2007\tmdbg.dll
    c:\windows\system32\msctfime.ime
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\xpsp2res.dll
    c:\progra~1\trendm~1\intern~1\pcctlps.dll
    c:\windows\system32\msctf.dll
    c:\progra~1\trendm~1\intern~1\pccaltui.dll
    c:\windows\system32\msvfw32.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\msi.dll
    c:\windows\system32\apphelp.dll
    C:\PROGRAM FILES\SCANSOFT\PAPERPORT\PPTD40NT.EXE
    c:\program files\scansoft\paperport\pptd40nt.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\program files\scansoft\paperport\maxutil.dll
    c:\program files\scansoft\paperport\pperr.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\shfolder.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\version.dll
    c:\windows\system32\comdlg32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\msvcp60.dll
    c:\program files\scansoft\paperport\blicectr.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\msctfime.ime
    c:\windows\system32\ole32.dll
    c:\windows\system32\msctf.dll
    C:\PROGRAM FILES\BROTHER\BRMFCMON\BRMFCWND.EXE
    c:\program files\brother\brmfcmon\brmfcwnd.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\mfc42.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\comdlg32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\winspool.drv
    c:\windows\system32\ole32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\mfc42loc.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\program files\brother\brmfcmon\brmfcwndfre.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\msctfime.ime
    c:\windows\system32\msctf.dll
    c:\windows\system32\oleaut32.dll
    C:\PROGRAM FILES\QUICKTIME\QTTASK.EXE
    c:\program files\quicktime\qttask.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\version.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\msctfime.ime
    c:\windows\system32\ole32.dll
    c:\windows\system32\msctf.dll
    C:\PROGRAM FILES\LAVASOFT\AD-AWARE 2007\AAWTRAY.EXE
    c:\program files\lavasoft\ad-aware 2007\aawtray.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\msctfime.ime
    c:\windows\system32\ole32.dll
    c:\windows\system32\msctf.dll
    C:\PROGRAM FILES\BROTHER\CONTROLCENTER3\BRCCMCTL.EXE
    c:\program files\brother\controlcenter3\brccmctl.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\program files\brother\controlcenter3\brccdctl.dll
    c:\windows\system32\version.dll
    c:\windows\system32\mfc42.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\ole32.dll
    c:\program files\brother\controlcenter3\brccfctl.dll
    c:\windows\system32\setupapi.dll
    c:\windows\system32\comdlg32.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\winspool.drv
    c:\program files\brother\controlcenter3\ltdis12n.dll
    c:\program files\brother\controlcenter3\ltkrn12n.dll
    c:\program files\brother\controlcenter3\ltfil12n.dll
    c:\program files\brother\controlcenter3\brimgpdf.dll
    c:\windows\system32\msvcp60.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\mfc42loc.dll
    c:\program files\brother\controlcenter3\brccfre.dll
    c:\program files\brother\controlcenter3\brccimg.dll
    c:\windows\system32\shfolder.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\msctf.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\linkinfo.dll
    c:\windows\system32\ntshrui.dll
    c:\windows\system32\atl.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\apphelp.dll
    c:\windows\system32\msctfime.ime
    c:\windows\system32\macromed\flash\flash9c.ocx
    c:\windows\system32\winmm.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\urlmon.dll
    c:\windows\system32\wsock32.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\wintrust.dll
    c:\windows\system32\imagehlp.dll
    c:\windows\system32\wdmaud.drv
    c:\windows\system32\msacm32.drv
    c:\windows\system32\msacm32.dll
    c:\windows\system32\midimap.dll
    c:\windows\system32\ieframe.dll
    c:\windows\system32\psapi.dll
    c:\windows\system32\olepro32.dll
    c:\windows\system32\sxs.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\mlang.dll
    c:\windows\system32\schannel.dll
    C:\PROGRAM FILES\MESSENGER\MSMSGS.EXE
    c:\program files\messenger\msmsgs.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\wsock32.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\comdlg32.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\winmm.dll
    c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll
    c:\windows\system32\msimg32.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\system32\cryptdll.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\xpob2res.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\msctfime.ime
    c:\windows\system32\sxs.dll
    c:\windows\system32\msctf.dll
    c:\windows\system32\es.dll
    c:\windows\system32\wtsapi32.dll
    c:\windows\system32\winsta.dll
    c:\windows\system32\credui.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\dnsapi.dll
    c:\windows\system32\winrnr.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\rasadhlp.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\hnetcfg.dll
    c:\windows\system32\wshtcpip.dll
    c:\windows\system32\msi.dll
    c:\windows\system32\rasapi32.dll
    c:\windows\system32\rasman.dll
    c:\windows\system32\tapi32.dll
    c:\windows\system32\rtutils.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\sensapi.dll
    c:\windows\system32\msv1_0.dll
    c:\windows\system32\wintrust.dll
    c:\windows\system32\imagehlp.dll
    c:\windows\system32\schannel.dll
    c:\windows\system32\mprapi.dll
    c:\windows\system32\activeds.dll
    c:\windows\system32\adsldpc.dll
    c:\windows\system32\atl.dll
    c:\windows\system32\samlib.dll
    c:\windows\system32\setupapi.dll
    c:\windows\system32\rsaenh.dll
    c:\windows\system32\dssenh.dll
    c:\windows\system32\wdmaud.drv
    c:\windows\system32\msacm32.drv
    c:\windows\system32\msacm32.dll
    c:\windows\system32\midimap.dll
    C:\PROGRAM FILES\TREND MICRO\INTERNET SECURITY 2007\TMAS_OE\TMAS_OEMON.EXE
    c:\program files\trend micro\internet security 2007\tmas_oe\tmas_oemon.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\comdlg32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\winspool.drv
    c:\windows\system32\ole32.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\msctfime.ime
    c:\program files\trend micro\internet security 2007\tmas_oe\tmas_oehook.dll
    c:\windows\system32\msctf.dll
    C:\WINDOWS\SYSTEM32\CTFMON.EXE
    c:\windows\system32\ctfmon.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\msctf.dll
    c:\windows\system32\msutb.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\msctfime.ime
    C:\PROGRAM FILES\SHAREAZA\SHAREAZA.EXE
    c:\program files\shareaza\shareaza.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\msi.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\urlmon.dll
    c:\windows\system32\winspool.drv
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\version.dll
    c:\windows\system32\powrprof.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\msctf.dll
    c:\windows\system32\msctfime.ime
    c:\windows\system32\hnetcfg.dll
    c:\program files\shareaza\plugins\imageviewer.dll
    c:\windows\system32\apphelp.dll
    c:\windows\system32\setupapi.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\wshtcpip.dll
    c:\windows\system32\rasapi32.dll
    c:\windows\system32\rasman.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\tapi32.dll
    c:\windows\system32\rtutils.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\msv1_0.dll
    c:\windows\system32\sensapi.dll
    c:\program files\shareaza\plugins\mediaimageservices.dll
    C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBARNOTIFIER\1.2.1128.5462\GOOGLETOOLBARNOTIFIER.EXE
    c:\program files\google\googletoolbarnotifier\1.2.1128.5462\googletoolbarnotifier.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\system32\psapi.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\version.dll
    c:\windows\system32\xpsp2res.dll
    c:\program files\google\googletoolbarnotifier\1.2.1128.5462\res_fr.dll
    c:\windows\system32\msctf.dll
    c:\windows\system32\msctfime.ime
    c:\windows\system32\sxs.dll
    c:\program files\google\googletoolbarnotifier\1.2.1128.5462\swg.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\wintrust.dll
    c:\windows\system32\imagehlp.dll
    c:\windows\system32\msi.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\rasapi32.dll
    c:\windows\system32\rasman.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\tapi32.dll
    c:\windows\system32\rtutils.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\msv1_0.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\sensapi.dll
    C:\PROGRAM FILES\CLUB-INTERNET\DR CLUB INTERNET\BIN\MPBTN.EXE
    c:\program files\club-internet\dr club internet\bin\mpbtn.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\oleaut32.dll
    c:\program files\club-internet\dr club internet\bin\clientutil52.dll
    c:\windows\system32\wsock32.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\version.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\program files\club-internet\dr club internet\bin\asstcatalog.dll
    c:\program files\club-internet\dr club internet\bin\resource.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\msctf.dll
    c:\windows\system32\msctfime.ime
    C:\WINDOWS\SYSTEM32\ALG.EXE
    c:\windows\system32\alg.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\atl.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\wsock32.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\jkhhfcc.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\hnetcfg.dll
    c:\windows\system32\wshtcpip.dll
    C:\WINDOWS\SYSTEM32\SVCHOST.EXE
    c:\windows\system32\svchost.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\
    0
  4. Titania
     
    spybot

    --- Search result list ---
    Virtumonde: Bibliothèque (Fichier, nothing done)
    C:\WINDOWS\system32\c_8MRT.dll

    Virtumonde: Réglages (Clé du registre, nothing done)
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DInf

    Virtumonde: Réglages (Clé du registre, nothing done)
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DnngCon

    Virtumonde: Service Système (Clé du registre, nothing done)
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\DomainService

    BlueStreak: Cookie traceur (Internet Explorer: Madame) (Cookie, nothing done)

    DoubleClick: Cookie traceur (Internet Explorer: Madame) (Cookie, nothing done)

    MediaPlex: Cookie traceur (Internet Explorer: Madame) (Cookie, nothing done)

    Winsoftware.WinAntiVirusPro2006: Cookie traceur (Internet Explorer: Madame) (Cookie, nothing done)

    --- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---

    2005-05-31 blindman.exe (1.0.0.1)
    2005-05-31 SpybotSD.exe (1.4.0.3)
    2005-05-31 TeaTimer.exe (1.4.0.2)
    2007-08-29 unins000.exe (51.41.0.0)
    2005-05-31 Update.exe (1.4.0.0)
    2007-05-23 advcheck.dll (1.5.3.0)
    2005-05-31 aports.dll (2.1.0.0)
    2005-05-31 borlndmm.dll (7.0.4.453)
    2005-05-31 delphimm.dll (7.0.4.453)
    2005-05-31 SDHelper.dll (1.4.0.0)
    2007-07-31 Tools.dll (2.1.2.0)
    2005-05-31 UnzDll.dll (1.73.1.1)
    2005-05-31 ZipDll.dll (1.73.2.0)
    2007-08-29 Includes\Cookies.sbi (*)
    2007-07-25 Includes\Dialer.sbi (*)
    2007-08-29 Includes\DialerC.sbi (*)
    2007-08-29 Includes\Hijackers.sbi (*)
    2007-08-29 Includes\HijackersC.sbi (*)
    2007-07-25 Includes\Keyloggers.sbi (*)
    2007-08-29 Includes\KeyloggersC.sbi (*)
    2007-08-29 Includes\Malware.sbi (*)
    2007-08-29 Includes\MalwareC.sbi (*)
    2007-08-29 Includes\PUPS.sbi (*)
    2007-08-29 Includes\PUPSC.sbi (*)
    2007-08-29 Includes\Revision.sbi (*)
    2007-05-30 Includes\Security.sbi (*)
    2007-08-29 Includes\SecurityC.sbi (*)
    2007-08-01 Includes\Spybots.sbi (*)
    2007-08-29 Includes\SpybotsC.sbi (*)
    2007-08-21 Includes\Tracks.uti
    2007-08-29 Includes\Trojans.sbi (*)
    2007-08-29 Includes\TrojansC.sbi (*)
    2007-06-06 Plugins\TCPIPAddress.dll

    --- System information ---
    Windows XP (Build: 2600) Service Pack 2
    / Internet Explorer 6 / SP1: Correctif Windows XP - KB918439
    / Internet Explorer 6 / SP1: Correctif Windows XP - KB918899
    / Internet Explorer 6 / SP1: Correctif Windows XP - KB925486
    / Outlook Express 6 / SP1: Correctif Windows XP - KB911567
    / Windows / SP1: Microsoft Internationalized Domain Names Mitigation APIs
    / Windows / SP1: Microsoft National Language Support Downlevel APIs
    / Windows Media Player 6.4: Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
    / Windows Media Player 8: Mise à jour de sécurité pour Lecteur Windows Media 8 (KB917734)
    / Windows Media Player 9: Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)
    / Windows Media Player 9: Mise à jour de sécurité pour Lecteur Windows Media 9 (KB936782)
    / Windows XP: Mise à jour de sécurité pour Windows XP (KB923689)
    / Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)
    / Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)
    / Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)
    / Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)
    / Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)
    / Windows XP / SP0: Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)
    / Windows XP / SP2: Windows XP Service Pack 2
    / Windows XP / SP3: Correctif Windows XP - KB873339
    / Windows XP / SP3: Correctif Windows XP - KB885835
    / Windows XP / SP3: Correctif Windows XP - KB885836
    / Windows XP / SP3: Correctif Windows XP - KB886185
    / Windows XP / SP3: Correctif Windows XP - KB887472
    / Windows XP / SP3: Correctif Windows XP - KB888302
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB890046)
    / Windows XP / SP3: Correctif Windows XP - KB890859
    / Windows XP / SP3: Correctif Windows XP - KB891781
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893756)
    / Windows XP / SP3: Windows Installer 3.1 (KB893803)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896358)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896423)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896424)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896428)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB898461)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899587)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899589)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899591)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB900485)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB900725)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901017)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901190)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901214)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB902400)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB904706)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB904942)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905414)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905749)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB908519)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB908531)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB910437)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB911280)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911562)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911927)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB912919)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913580)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914388)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914389)
    / Windows XP / SP3: Correctif pour Windows XP (KB914440)
    / Windows XP / SP3: Hotfix for Windows XP (KB915865)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB916595)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917344)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917422)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917953)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918118)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB919007)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920213)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920670)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920683)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920685)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB920872)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921398)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921503)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921883)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB922582)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922616)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922819)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923191)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923414)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923694)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB923980)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924191)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924270)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924496)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB924667)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB925902)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB926255)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB926436)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB927779)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB927802)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB927891)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB928090)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB928255)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB928843)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB929123)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB929969)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB930178)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB930916)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB931261)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB931784)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB931836)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB932168)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB933360)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB935839)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB935840)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB936021)
    / Windows XP / SP3: Mise à jour pour Windows XP (KB938828)
    / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB938829)

    --- Startup entries list ---
    Located: HK_LM:Run, AAWTray
    command: C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
    file: C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
    size: 88024
    MD5: 4659f02259d1b628b360ef4b092ccf01

    Located: HK_LM:Run, Adobe Reader Speed Launcher
    command: "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    file: C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
    size: 40048
    MD5: 66d4456c920e21bd2188f8cc33680df5

    Located: HK_LM:Run, BrMfcWnd
    command: C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
    file:

    Located: HK_LM:Run, Cmaudio
    command: RunDll32 cmicnfg.cpl,CMICtrlWnd
    file:

    Located: HK_LM:Run, ControlCenter3
    command: C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
    file:

    Located: HK_LM:Run, IndexSearch
    command: C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
    file: C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
    size: 40960
    MD5: 3ca11f2a1b30c2246081efa892eea295

    Located: HK_LM:Run, NeroFilterCheck
    command: C:\WINDOWS\system32\NeroCheck.exe
    file: C:\WINDOWS\system32\NeroCheck.exe
    size: 155648
    MD5: 3e4c03cefad8de135263236b61a49c90

    Located: HK_LM:Run, PaperPort PTD
    command: C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
    file: C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
    size: 57393
    MD5: 4400c3143778c1df92d46c98688a9925

    Located: HK_LM:Run, pccguide.exe
    command: "C:\Program Files\Trend Micro\Internet Security 2007\pccguide.exe"
    file: C:\Program Files\Trend Micro\Internet Security 2007\pccguide.exe
    size: 3121152
    MD5: daa7f9818ef7a629f01eb2c933281ac7

    Located: HK_LM:Run, QuickTime Task
    command: "C:\Program Files\QuickTime\qttask.exe" -atboottime
    file: C:\Program Files\QuickTime\qttask.exe
    size: 98304
    MD5: 76a3a30b58405c2c6d833895253a51a9

    Located: HK_LM:Run, SetDefPrt
    command: C:\Program Files\Brother\Brmfl06a\BrStDvPt.exe
    file: C:\Program Files\Brother\Brmfl06a\BrStDvPt.exe
    size: 49152
    MD5: 0c6dc7f88df16a6851bd11a48a03da1b

    Located: HK_LM:Run, SSBkgdUpdate
    command: "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
    file: C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe
    size: 155648
    MD5: 1c3ca3e7807f915933bb4e08e599ddab

    Located: HK_LM:RunOnce, Spybot - Search & Destroy
    command: "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck
    file: C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
    size: 4393096
    MD5: 09ca174a605b480318731e691dc98539

    Located: HK_CU:Run, ctfmon.exe
    command: C:\WINDOWS\system32\ctfmon.exe
    file: C:\WINDOWS\system32\ctfmon.exe
    size: 15360
    MD5: 64e41e8fee655b03e3f19ded21ba5118

    Located: HK_CU:Run, MSMSGS
    command: "C:\Program Files\Messenger\MSMSGS.EXE" /background
    file: C:\Program Files\Messenger\MSMSGS.EXE
    size: 1694208
    MD5: 74e6e96c6f0e2eca4edbb7f7a468f259

    Located: HK_CU:Run, OE
    command: "C:\Program Files\Trend Micro\Internet Security 2007\TMAS_OE\TMAS_OEMon.exe"
    file: C:\Program Files\Trend Micro\Internet Security 2007\TMAS_OE\TMAS_OEMon.exe
    size: 315392
    MD5: a03acd4e48dac23d99e9b570a43af373

    Located: HK_CU:Run, Shareaza
    command: "C:\Program Files\Shareaza\Shareaza.exe" -tray
    file: C:\Program Files\Shareaza\Shareaza.exe
    size: 4354048
    MD5: 58da6d8b55fedff760fa3980bdbddb7e

    Located: HK_CU:Run, swg
    command: C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    file: C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    size: 171448
    MD5: 0fa44ea8b03aba3e1d240b5a333d8e6a

    Located: Démarrage (tous utilisateurs), Docteur Club Internet.lnk
    command: C:\Program Files\Club-Internet\Dr Club Internet\bin\matcli.exe
    file: C:\Program Files\Club-Internet\Dr Club Internet\bin\matcli.exe
    size: 217088
    MD5: 90aebccb2e6ab9180113f21792d11c32

    Located: Démarrage (tous utilisateurs), Microsoft Office.lnk
    command: C:\Program Files\Microsoft Office\Office\OSA9.EXE
    file: C:\Program Files\Microsoft Office\Office\OSA9.EXE
    size: 65588
    MD5: 7d8574aea59cd232e923a9d2e02582a1

    Located: System.ini, AtiExtEvent
    command: Ati2evxx.dll
    file: Ati2evxx.dll

    Located: System.ini, crypt32chain
    command: crypt32.dll
    file: crypt32.dll

    Located: System.ini, cryptnet
    command: cryptnet.dll
    file: cryptnet.dll

    Located: System.ini, cscdll
    command: cscdll.dll
    file: cscdll.dll

    Located: System.ini, c_8MRT
    command: c_8MRT.dll
    file: c_8MRT.dll

    Located: System.ini, ScCertProp
    command: wlnotify.dll
    file: wlnotify.dll

    Located: System.ini, Schedule
    command: wlnotify.dll
    file: wlnotify.dll

    Located: System.ini, sclgntfy
    command: sclgntfy.dll
    file: sclgntfy.dll

    Located: System.ini, SensLogn
    command: WlNotify.dll
    file: WlNotify.dll

    Located: System.ini, termsrv
    command: wlnotify.dll
    file: wlnotify.dll

    Located: System.ini, WgaLogon
    command: WgaLogon.dll
    file: WgaLogon.dll

    Located: System.ini, wlballoon
    command: wlnotify.dll
    file: wlnotify.dll

    --- Browser helper object list ---
    {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Aide pour le lien d'Adobe PDF Reader)
    BHO name:
    CLSID name: Aide pour le lien d'Adobe PDF Reader
    description: Adobe Acrobat reader
    classification: Legitimate
    known filename: AcroIEhelper.ocx<br>AcroIEhelper.dll
    info link: https://get2.adobe.com/reader/otherversions/
    info source: TonyKlein
    Path: C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\
    Long name: AcroIEHelper.dll
    Short name: ACROIE~1.DLL
    Date (created): 2006-10-22 23:08:42
    Date (last access): 2007-08-30 10:01:16
    Date (last write): 2006-10-22 23:08:42
    Filesize: 62080
    Attributes: archive
    MD5: C11F6A1F61481E24BE3FDC06EA6F7D2A
    CRC32: E388508F
    Version: 8.0.0.456

    {53707962-6F74-2D53-2644-206D7942484F} ()
    BHO name:
    CLSID name:
    description: Spybot-S&D IE Browser plugin
    classification: Legitimate
    known filename: SDhelper.dll
    info link: http://spybot.eon.net.au/
    info source: Patrick M. Kolla
    Path: C:\PROGRA~1\SPYBOT~1\
    Long name: SDHelper.dll
    Short name:
    Date (created): 2007-08-29 17:08:26
    Date (last access): 2007-08-30 09:57:36
    Date (last write): 2005-05-31 01:04:00
    Filesize: 853672
    Attributes: archive
    MD5: 250D787A5712D7768DDC133B3E477759
    CRC32: D4589A41
    Version: 1.4.0.0

    {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)
    BHO name:
    CLSID name: Google Toolbar Helper
    description: Google toolbar
    classification: Open for discussion
    known filename: googletoolbar.dll<br>googletoolbar*.dll<br>(* = number)<br>googletoolbar_en_*.**-big.dll<br>Googletoolbar_en_*.*.**-deleon.dll
    info link: http://www.google.com/intl/fr/toolbar/ie/index.html
    info source: TonyKlein
    Path: c:\program files\google\
    Long name: GoogleToolbar2.dll
    Short name: GOOGLE~2.DLL
    Date (created): 2007-08-29 16:29:14
    Date (last access): 2007-08-30 10:08:46
    Date (last write): 2007-01-19 23:56:04
    Filesize: 2436160
    Attributes: readonly archive
    MD5: 6D44E0C3B43D27484FBB355E470C4188
    CRC32: 2DE875CD
    Version: 4.0.1601.4978

    --- ActiveX list ---
    Microsoft XML Parser for Java (Microsoft XML Parser for Java)
    DPF name: Microsoft XML Parser for Java
    CLSID name:
    Installer:
    Codebase: file:///C:/WINDOWS/Java/classes/xmldso.cab
    description:
    classification: Legitimate
    known filename: %WINDIR%\Java\classes\xmldso.cab
    info link:
    info source: Patrick M. Kolla

    {0B79F48A-E8D6-11DB-9283-E25056D89593} (F-Secure Online Scanner 3.1)
    DPF name:
    CLSID name: F-Secure Online Scanner 3.1
    Installer: C:\WINDOWS\Downloaded Program Files\fscax.inf
    Codebase: https://www.f-secure.com/en/home/support
    description:
    classification: Legitimate
    known filename: fscax.dll
    info link:
    info source: Safer Networking Ltd.
    Path: C:\WINDOWS\Downloaded Program Files\
    Long name: fscax.dll
    Short name:
    Date (created): 2007-05-07 16:39:24
    Date (last access): 2007-08-30 09:13:48
    Date (last write): 2007-05-07 16:39:24
    Filesize: 254360
    Attributes: archive
    MD5: D5199825510E4C4F97DC93B7BC3B1A8A
    CRC32: 9FA45099
    Version: 3.1.0.5

    {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool)
    DPF name:
    CLSID name: Windows Genuine Advantage Validation Tool
    Installer: C:\WINDOWS\Downloaded Program Files\LegitCheckControl.inf
    Codebase: http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
    description:
    classification: Legitimate
    known filename: LegitCheckControl.DLL
    info link:
    info source: Safer Networking Ltd.
    Path: C:\WINDOWS\system32\
    Long name: LegitCheckControl.dll
    Short name: LEGITC~1.DLL
    Date (created): 2006-12-12 10:45:04
    Date (last access): 2007-08-30 08:34:02
    Date (last write): 2007-04-24 11:32:06
    Filesize: 1485696
    Attributes: archive
    MD5: F41FA54CD85AF8AACF8C7E084F6742F4
    CRC32: 6328586B
    Version: 1.7.36.0

    {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class)
    DPF name:
    CLSID name: WUWebControl Class
    Installer: C:\WINDOWS\Downloaded Program Files\wuweb.inf
    Codebase: http://update.microsoft.com/...
    description:
    classification: Legitimate
    known filename: wuweb.dll
    info link:
    info source: Safer Networking Ltd.
    Path: C:\WINDOWS\system32\
    Long name: wuweb.dll
    Short name:
    Date (created): 2005-05-26 04:19:32
    Date (last access): 2007-08-30 09:54:38
    Date (last write): 2007-07-30 19:19:28
    Filesize: 203096
    Attributes: archive
    MD5: 5C9A003E7C6BA03F04DC2D9C82A7E6E0
    CRC32: E29E0153
    Version: 7.0.6000.381

    {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class)
    DPF name:
    CLSID name: MUWebControl Class
    Installer: C:\WINDOWS\Downloaded Program Files\muweb.inf
    Codebase: http://www.update.microsoft.com/...
    description:
    classification: Legitimate
    known filename: muweb.dll
    info link:
    info source: Safer Networking Ltd.
    Path: C:\WINDOWS\system32\
    Long name: muweb.dll
    Short name:
    Date (created): 2007-04-16 22:43:40
    Date (last access): 2007-08-30 09:54:38
    Date (last write): 2007-07-30 19:19:04
    Filesize: 207736
    Attributes: archive
    MD5: 2DEE560CCEF55353EB62FDA870446393
    CRC32: 5AA71F7B
    Version: 7.0.6000.381

    {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host)
    DPF name:
    CLSID name: Oberon Flash Game Host
    Installer: C:\WINDOWS\Downloaded Program Files\OberonGameHost_dbg.inf
    Codebase: http://jeuxmultijoueurs.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
    Path: C:\WINDOWS\Downloaded Program Files\
    Long name: OberonGameHost.dll
    Short name: OBERON~1.DLL
    Date (created): 2007-06-15 09:02:06
    Date (last access): 2007-08-30 09:46:18
    Date (last write): 2007-06-15 09:02:06
    Filesize: 632392
    Attributes: archive
    MD5: 4305F843E38ABB2186D0CD07982EBECD
    CRC32: B97C2B72
    Version: 1.0.4.3881

    {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object)
    DPF name:
    CLSID name: Shockwave Flash Object
    Installer: C:\WINDOWS\Downloaded Program Files\swflash.inf
    Codebase: https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    description: Macromedia Shockwave Flash Player
    classification: Legitimate
    known filename:
    info link:
    info source: Patrick M. Kolla
    Path: C:\WINDOWS\system32\Macromed\Flash\
    Long name: Flash9c.ocx
    Short name:
    Date (created): 2007-03-26 18:34:38
    Date (last access): 2007-08-30 08:36:44
    Date (last write): 2007-03-26 18:34:38
    Filesize: 2267368
    Attributes: archive
    MD5: 82FCE4AC7EC2D077A8DD3C14EDEAD219
    CRC32: 7167E898
    Version: 9.0.45.0

    --- Process list ---
    PID: 0 ( 0) [System]
    PID: 712 ( 4) \SystemRoot\System32\smss.exe
    PID: 768 ( 712) \??\C:\WINDOWS\system32\csrss.exe
    PID: 792 ( 712) \??\C:\WINDOWS\system32\winlogon.exe
    PID: 844 ( 792) C:\WINDOWS\system32\services.exe
    size: 108544
    MD5: 63DCDE1A0D86EEB8924D6738FF616EAD
    PID: 856 ( 792) C:\WINDOWS\system32\lsass.exe
    size: 13312
    MD5: 259AF82A0932EEA4F316F92DB94707B6
    PID: 1048 ( 844) C:\WINDOWS\system32\Ati2evxx.exe
    size: 376832
    MD5: 5CCA7DF290D82D1048F217E3C6272384
    PID: 1060 ( 844) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 1140 ( 844) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 1236 ( 844) C:\WINDOWS\System32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 1288 ( 844) C:\WINDOWS\System32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 1472 ( 844) C:\WINDOWS\System32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 1552 ( 844) C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    size: 566616
    MD5: C7572C802FEC8F539253C2D52BC2972C
    PID: 1768 ( 844) C:\WINDOWS\system32\spoolsv.exe
    size: 57856
    MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9F
    PID: 1956 ( 792) C:\WINDOWS\system32\Ati2evxx.exe
    size: 376832
    MD5: 5CCA7DF290D82D1048F217E3C6272384
    PID: 2024 (1992) C:\WINDOWS\Explorer.EXE
    size: 1037312
    MD5: D0288319660EDCFED07C7E74C4EA38A5
    PID: 172 ( 844) C:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
    size: 1544192
    MD5: 77C44F60ACE7D979B28CAB0C1DD6541F
    PID: 620 ( 844) C:\WINDOWS\System32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 976 ( 844) C:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe
    size: 503808
    MD5: 236321F946C71AB50A176D119311709F
    PID: 1220 ( 844) C:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
    size: 933952
    MD5: 512FE51999EC83234C8052691FAB7613
    PID: 1304 (2024) C:\Program Files\Trend Micro\Internet Security 2007\pccguide.exe
    size: 3121152
    MD5: DAA7F9818EF7A629F01EB2C933281AC7
    PID: 1380 (2024) C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
    size: 57393
    MD5: 4400C3143778C1DF92D46C98688A9925
    PID: 1440 (2024) C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
    size: 622592
    MD5: 28D28D75BD4C4A4738E2C5F1B596A48E
    PID: 1632 (2024) C:\Program Files\QuickTime\qttask.exe
    size: 98304
    MD5: 76A3A30B58405C2C6D833895253A51A9
    PID: 1604 (2024) C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
    size: 88024
    MD5: 4659F02259D1B628B360EF4B092CCF01
    PID: 1648 (1512) C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
    size: 339968
    MD5: 332F3987FFE814F0510BC8254FECF9A5
    PID: 1688 (2024) C:\Program Files\Messenger\MSMSGS.EXE
    size: 1694208
    MD5: 74E6E96C6F0E2ECA4EDBB7F7A468F259
    PID: 1696 (2024) C:\Program Files\Trend Micro\Internet Security 2007\TMAS_OE\TMAS_OEMon.exe
    size: 315392
    MD5: A03ACD4E48DAC23D99E9B570A43AF373
    PID: 1740 (2024) C:\WINDOWS\system32\ctfmon.exe
    size: 15360
    MD5: 64E41E8FEE655B03E3F19DED21BA5118
    PID: 1844 (2024) C:\Program Files\Shareaza\Shareaza.exe
    size: 4354048
    MD5: 58DA6D8B55FEDFF760FA3980BDBDDB7E
    PID: 1932 (2024) C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
    size: 171448
    MD5: 0FA44EA8B03ABA3E1D240B5A333D8E6A
    PID: 2972 (2224) C:\Program Files\Club-Internet\Dr Club Internet\bin\mpbtn.exe
    size: 192512
    MD5: 056B62587DCCE5E9480745BE84A0B765
    PID: 3304 ( 844) C:\WINDOWS\System32\alg.exe
    size: 44544
    MD5: B43CC0F07752D456038CD0268E4D84E9
    PID: 1524 ( 844) C:\WINDOWS\System32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 2480 ( 844) C:\PROGRA~1\TRENDM~1\INTERN~1\PcScnSrv.exe
    size: 196608
    MD5: 8DF8D7DDF85B045D1A376B72A417C99F
    PID: 3680 (1060) C:\Program Files\Internet Explorer\IEXPLORE.EXE
    size: 625152
    MD5: 275CEE268B9E5D82474C43D5D249D111
    PID: 3140 ( 844) C:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe
    size: 561223
    MD5: 8B126B168E841F4E4E27C49277538755
    PID: 4080 (1060) C:\Program Files\Internet Explorer\IEXPLORE.EXE
    size: 625152
    MD5: 275CEE268B9E5D82474C43D5D249D111
    PID: 3264 (2024) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
    size: 4393096
    MD5: 09CA174A605B480318731E691DC98539
    PID: 4 ( 0) System

    --- Browser start & search pages list ---
    Spybot - Search & Destroy browser pages report, 2007-08-30 10:10:07

    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
    C:\WINDOWS\system32\blank.htm
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
    http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
    https://actus.sfr.fr
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
    %SystemRoot%\system32\blank.htm
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
    https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
    https://www.msn.com/fr-fr/?ocid=iehp
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
    https://www.msn.com/fr-fr/?ocid=iehp
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
    https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
    https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
    https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm

    --- Winsock Layered Service Provider list ---
    Protocol 0: MSAFD Tcpip [TCP/IP]
    GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IP protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip [*]

    Protocol 1: MSAFD Tcpip [UDP/IP]
    GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IP protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip [*]

    Protocol 2: MSAFD Tcpip [RAW/IP]
    GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP IP protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD Tcpip [*]

    Protocol 3: RSVP UDP Service Provider
    GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
    Filename: %SystemRoot%\system32\rsvpsp.dll
    Description: Microsoft Windows NT/2k/XP RVSP
    DB filename: %SystemRoot%\system32\rsvpsp.dll
    DB protocol: RSVP * Service Provider

    Protocol 4: RSVP TCP Service Provider
    GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
    Filename: %SystemRoot%\system32\rsvpsp.dll
    Description: Microsoft Windows NT/2k/XP RVSP
    DB filename: %SystemRoot%\system32\rsvpsp.dll
    DB protocol: RSVP * Service Provider

    Protocol 5: MSAFD NetBIOS [\Device\NetBT_Tcpip_{C60F0DE8-2B9B-471C-9B5B-C2C94C592838}] SEQPACKET 3
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 6: MSAFD NetBIOS [\Device\NetBT_Tcpip_{C60F0DE8-2B9B-471C-9B5B-C2C94C592838}] DATAGRAM 3
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 7: MSAFD NetBIOS [\Device\NetBT_Tcpip_{7557EBFB-594F-4477-887D-DBBC59127925}] SEQPACKET 0
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 8: MSAFD NetBIOS [\Device\NetBT_Tcpip_{7557EBFB-594F-4477-887D-DBBC59127925}] DATAGRAM 0
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 9: MSAFD NetBIOS [\Device\NetBT_Tcpip_{E2156D90-2F91-499F-90DC-A4C9FF01F26B}] SEQPACKET 1
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 10: MSAFD NetBIOS [\Device\NetBT_Tcpip_{E2156D90-2F91-499F-90DC-A4C9FF01F26B}] DATAGRAM 1
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 11: MSAFD NetBIOS [\Device\NetBT_Tcpip_{2527FD05-D6BA-4E3D-884B-E5AA810D9CED}] SEQPACKET 2
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Protocol 12: MSAFD NetBIOS [\Device\NetBT_Tcpip_{2527FD05-D6BA-4E3D-884B-E5AA810D9CED}] DATAGRAM 2
    GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
    Filename: %SystemRoot%\system32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP NetBios protocol
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: MSAFD NetBIOS *

    Namespace Provider 0: TCP/IP
    GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B}
    Filename: %SystemRoot%\System32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP TCP/IP name space provider
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: TCP/IP

    Namespace Provider 1: NTDS
    GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC}
    Filename: %SystemRoot%\System32\winrnr.dll
    Description: Microsoft Windows NT/2k/XP name space provider
    DB filename: %SystemRoot%\system32\winrnr.dll
    DB protocol: NTDS

    Namespace Provider 2: Espace de noms NLA (Network Location Awareness)
    GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83}
    Filename: %SystemRoot%\System32\mswsock.dll
    Description: Microsoft Windows NT/2k/XP name space provider
    DB filename: %SystemRoot%\system32\mswsock.dll
    DB protocol: NLA-Namespace

    --- Uninstall list ---
    (AddressBook)

    Arc-en-ciel Jr 2 (Arc-en-ciel Jr 2)
    uninstall cmd: C:\emme\Arc en ciel Jr 2\Desinst.exe

    Arctic Quest 2 (remove only) (Arctic Quest 2)
    uninstall cmd: C:\Program Files\Arctic Quest 2\Uninstall.exe

    ATI Display Driver 8.03-040610a-015462C-Asus (ATI Display Driver)
    uninstall cmd: rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean

    Belle`s Beauty Boutique (remove only) (Belle`s Beauty Boutique)
    uninstall cmd: C:\Program Files\Belle`s Beauty Boutique\Uninstall.exe

    Alice Greenfingers (remove only) (BFG-Alice Greenfingers)
    uninstall cmd: "C:\Program Files\Alice Greenfingers\Uninstall.exe"

    Burger Island (remove only) (BFG-Burger Island)
    uninstall cmd: "C:\Program Files\Burger Island\Uninstall.exe"

    Dream Day Wedding (remove only) (BFG-Dream Day Wedding)
    uninstall cmd: "C:\Program Files\Dream Day Wedding\Uninstall.exe"

    Escape From Paradise (remove only) (BFG-Escape From Paradise)
    uninstall cmd: "C:\Program Files\Escape From Paradise\Uninstall.exe"

    Lottso! Deluxe (remove only) (BFG-Lottso! Deluxe)
    uninstall cmd: "C:\Program Files\Lottso! Deluxe\Uninstall.exe"

    Miss Management (remove only) (BFG-Miss Management)
    uninstall cmd: "C:\Program Files\Miss Management\Uninstall.exe"

    Nanny Mania (remove only) (BFG-Nanny Mania)
    uninstall cmd: "C:\Program Files\Nanny Mania\Uninstall.exe"

    Shopmania (remove only) (BFG-Shopmania)
    uninstall cmd: "C:\Program Files\Shopmania\Uninstall.exe"

    Slingo Quest (remove only) (BFG-Slingo Quest)
    uninstall cmd: "C:\Program Files\Slingo Quest\Uninstall.exe"

    Big Fish Games Client (BFGC)
    uninstall cmd: C:\Program Files\bfgclient\Uninstall.exe

    (Branding)

    C-Media WDM Audio Driver (C-Media Audio Driver)
    uninstall cmd: C:\WINDOWS\system32\cmirmdrv.exe

    (Connection Manager)

    (DirectAnimation)

    (DirectDrawEx)

    DivX Content Uploader 1.2.1 (DivX Content Uploader)
    install location: C:\Program Files\DivX
    uninstall cmd: C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
    publisher: DivX, Inc.

    5.8.0.asst_classic.asst_install (Docteur Club Internet)
    uninstall cmd: C:\PROGRA~1\CLUB-I~1\DRCLUB~1\Uninstall.exe TONLFR
    publisher: Motive Communications, Inc.

    (DXM_Runtime)

    (Fontcore)

    HijackThis 2.0.2 2.0.2 (HijackThis)
    uninstall cmd: "C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
    publisher: TrendMicro

    (ICW)

    Microsoft Internationalized Domain Names Mitigation APIs (IDNMitigationAPIs)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation

    (IE40)

    (IE4Data)

    (IE5BAKEX)

    Windows Internet Explorer 7 20061107.210142 (ie7)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\ie7\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/office/internet-explorer-help-23360e49-9cd3-4dda-ba52-705336cc0de2?ui=en-US&rs=en-001&ad=US

    (IEData)

    (InstallShield Uninstall Information)

    Correctif Windows XP - KB873339 20041117.092459 (KB873339)
    uninstall cmd: C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/873339

    (KB884016)

    Correctif Windows XP - KB885835 20041027.181713 (KB885835)
    uninstall cmd: C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/885835/ms04-044-vulnerabilities-in-windows-kernel-and-lsass-could-allow-eleva

    Correctif Windows XP - KB885836 20041028.173203 (KB885836)
    uninstall cmd: C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/885836/ms04-041-a-vulnerability-in-wordpad-could-allow-code-execution

    Correctif Windows XP - KB886185 20041021.090540 (KB886185)
    uninstall cmd: C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/886185

    Correctif Windows XP - KB887472 20041014.162858 (KB887472)
    uninstall cmd: C:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/887472

    Correctif Windows XP - KB888302 20041207.111426 (KB888302)
    uninstall cmd: C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/888302

    Mise à jour de sécurité pour Windows XP (KB890046) 1 (KB890046)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/890046

    Correctif Windows XP - KB890859 1 (KB890859)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/890859

    Correctif Windows XP - KB891781 20050110.165439 (KB891781)
    uninstall cmd: C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/891781

    Windows Genuine Advantage Validation Tool (KB892130) (KB892130)
    install date: 20070629
    publisher: Microsoft Corporation
    help link: https://www.microsoft.com/en-us/howtotell/default.aspx

    Mise à jour de sécurité pour Windows XP (KB893756) 1 (KB893756)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/893756

    (KB893803)

    Windows Installer 3.1 (KB893803) 3.1 (KB893803v2)
    uninstall cmd: "C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/893803/windows-installer-3-1-v2-3-1-4000-2435-is-available

    Mise à jour de sécurité pour Windows XP (KB896358) 1 (KB896358)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/896358/ms05-026-a-vulnerability-in-html-help-could-allow-remote-code-executio

    Mise à jour de sécurité pour Windows XP (KB896423) 1 (KB896423)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/windows?ui=en-US&rs=en-001&ad=US

    Mise à jour de sécurité pour Windows XP (KB896424) 1 (KB896424)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB896424$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/896424

    Mise à jour de sécurité pour Windows XP (KB896428) 1 (KB896428)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/896428

    Mise à jour pour Windows XP (KB898461) 1 (KB898461)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/898461/

    Mise à jour de sécurité pour Windows XP (KB899587) 1 (KB899587)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/899587

    Mise à jour de sécurité pour Windows XP (KB899589) 1 (KB899589)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB899589$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/899589

    Mise à jour de sécurité pour Windows XP (KB899591) 1 (KB899591)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB899591$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/899591

    Mise à jour pour Windows XP (KB900485) 2 (KB900485)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB900485$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/900485

    Mise à jour de sécurité pour Windows XP (KB900725) 1 (KB900725)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/900725

    Mise à jour de sécurité pour Windows XP (KB901017) 1 (KB901017)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB901017$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/901017

    Mise à jour de sécurité pour Windows XP (KB901190) 1 (KB901190)
    install date: 20070629
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB901190$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/901190

    Mise à jour de sécurité pour Windows XP (KB901214) 1 (KB901214)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB901214$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/901214

    Mise à jour de sécurité pour Windows XP (KB902400) 1 (KB902400)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/902400/ms05-051-vulnerabilities-in-ms-dtc-and-com-could-allow-remote-code-exe

    Mise à jour de sécurité pour Windows XP (KB904706) 2 (KB904706)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB904706$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/904706

    Mise à jour pour Windows XP (KB904942) 2 (KB904942)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/904942/authentication-fails-when-you-use-outlook-or-outlook-express-to-try-to

    Mise à jour de sécurité pour Windows XP (KB905414) 1 (KB905414)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/905414

    Mise à jour de sécurité pour Windows XP (KB905749) 1 (KB905749)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/905749

    Mise à jour de sécurité pour Windows XP (KB908519) 1 (KB908519)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/908519

    Mise à jour pour Windows XP (KB908531) 2 (KB908531)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB908531$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/908531

    Mise à jour pour Windows XP (KB910437) 1 (KB910437)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB910437$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/910437

    Mise à jour pour Windows XP (KB911280) 2 (KB911280)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB911280$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/911280

    Mise à jour de sécurité pour Windows XP (KB911562) 1 (KB911562)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB911562$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/911562

    Mise à jour de sécurité pour Lecteur Windows Media (KB911564) (KB911564)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB911564$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/911564

    Mise à jour de sécurité pour Windows XP (KB911927) 1 (KB911927)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/911927

    Mise à jour de sécurité pour Windows XP (KB912919) 1 (KB912919)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB912919$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/912919

    Mise à jour de sécurité pour Windows XP (KB913580) 1 (KB913580)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/913580

    Mise à jour de sécurité pour Windows XP (KB914388) 1 (KB914388)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB914388$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/914388

    Mise à jour de sécurité pour Windows XP (KB914389) 1 (KB914389)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/914389

    Correctif pour Windows XP (KB914440) 12 (KB914440)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/914440

    Hotfix for Windows XP (KB915865) 10 (KB915865)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/915865

    Mise à jour pour Windows XP (KB916595) 1 (KB916595)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB916595$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/916595

    Mise à jour de sécurité pour Windows XP (KB917344) 1 (KB917344)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB917344$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/917344

    Mise à jour de sécurité pour Windows XP (KB917422) 1 (KB917422)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB917422$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/917422

    Mise à jour de sécurité pour Lecteur Windows Media 8 (KB917734) (KB917734_WMP8)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB917734_WMP8$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/917734

    Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734) (KB917734_WMP9)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB917734_WMP9$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/917734

    Mise à jour de sécurité pour Windows XP (KB917953) 1 (KB917953)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/917953

    Mise à jour de sécurité pour Windows XP (KB918118) 1 (KB918118)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB918118$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/918118

    Mise à jour de sécurité pour Windows XP (KB919007) 1 (KB919007)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB919007$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/919007/ms06-052-vulnerability-in-pragmatic-general-multicast-pgm-could-result

    Mise à jour de sécurité pour Windows XP (KB920213) 1 (KB920213)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB920213$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/920213

    Mise à jour de sécurité pour Windows XP (KB920670) 1 (KB920670)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB920670$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/920670

    Mise à jour de sécurité pour Windows XP (KB920683) 1 (KB920683)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB920683$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/920683

    Mise à jour de sécurité pour Windows XP (KB920685) 1 (KB920685)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB920685$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/920685

    Mise à jour pour Windows XP (KB920872) 1 (KB920872)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB920872$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/920872

    Mise à jour de sécurité pour Windows XP (KB921398) 1 (KB921398)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB921398$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/921398

    Mise à jour de sécurité pour Windows XP (KB921503) 1 (KB921503)
    install date: 20070815
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB921503$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/921503

    Mise à jour de sécurité pour Windows XP (KB921883) 1 (KB921883)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB921883$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/921883/ms06-040-vulnerability-in-server-service-could-allow-remote-code-execu

    Mise à jour pour Windows XP (KB922582) 1 (KB922582)
    install date: 20070420
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB922582$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link:
    0