Sujet Précédent Sujet Suivant

Aidez moi svp! Analyse hijackthis

nulle en informatique -  
 jorginho67 -
Bonjour,
j'ai un tres gros probleme avec mon ordi depuis qlq temps. Je ne sais plus quoi faire je commence à en avoir marre. Aidez moi svp.
Il rame à fond, et quand je dis il rame c il rame vraiment genre 5 min pour demarrer windows, l'ecran sacade quand je defile.
J'ai telechargé hijackthis et voila ce que ca donne comme analiyse (je remercie deja tout ce qui pourront m'aider) :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:58:15, on 06.10.2007
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Safe mode with network support

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
c:\whekdwjb.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\tsitra801.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/ie/defaults/sb/ymsgr6/fr/*http://www.yahoo.com/ext/search/search.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.33.210.17:3124
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O3 - Toolbar: (no name) - {55910916-8B4E-4C1E-9253-CCE296EA71EB} - (no file)
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll (file missing)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [startdrv] C:\WINDOWS\Temp\startdrv.exe
O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME\TomTomHOME.exe" -s
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [runner1] C:\WINDOWS\tsitra801.exe 61A847B5BBF7281A329A284503996897C881250221C8670836AC4FA7C8833201749139
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [RavAV] C:\WINDOWS\AdobeR.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
O4 - HKLM\..\Run: [MMTray] C:\PROGRA~1\MUSICM~1\MUSICM~1\mm_tray.exe
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SearchIndexer] rundll32.exe "C:\WINDOWS\System32\ryrkqyhy.dll",sitypnow
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\ypager.exe" -quiet
O4 - HKCU\..\Run: [Words] C:\Program Files\Words\Words.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [WinTouch] C:\Documents and Settings\RHODON\Application Data\WinTouch\WinTouch.exe
O4 - HKCU\..\Run: [Steam] "e:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [SfKg6w] C:\Documents and Settings\RHODON\Application Data\Microsoft\Windows\igfunf.exe
O4 - HKCU\..\Run: [NetAppel] "C:\Program Files\NetAppel\NetAppel.exe" -nosplash -minimized
O4 - HKCU\..\Run: [Insider] C:\Program Files\Insider\Insider.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Metacafe.lnk = C:\Program Files\Metacafe\MetacafeAgent.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Startup: Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Metacafe.lnk = C:\Program Files\Metacafe\MetacafeAgent.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: Tous Télécharger par ReGet Jr. - C:\Program Files\Fichiers communs\ReGet Shared\CC_All.htm
O8 - Extra context menu item: Télécharger avec Re&Get Jr. - C:\Program Files\Fichiers communs\ReGet Shared\CC_Link.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O10 - Unknown file in Winsock LSP: netfilter.dll
O10 - Unknown file in Winsock LSP: netfilter.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{3602FC4E-E008-4BCE-9342-51B4FE9B012B}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\..\{67382936-3076-4712-B707-ACBF9DC59EE5}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\..\{82C8A6AE-44A6-4D00-B05F-01DE33633218}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS4\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS5\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS6\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS7\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS8\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: Creative Service for CDROM Access - Unknown owner - C:\WINDOWS\System32\CTsvcCDA.EXE (file missing)
O23 - Service: DomainService - - C:\WINDOWS\System32\ylkggfbi.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LckFldService - Unknown owner - C:\WINDOWS\System32\LckFldService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
A voir également:

73 réponses

Précédent
Réponse 21 / 73
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
re
tu vas sur ce lien, et tu suis toutes les manips, poste ensuite les rapports

http://www.malekal.com/Worm.Win32.RJump.a.php

0
Réponse 22 / 73
nulle en informatique
 
re,

l'application nettoyage du disque n'avance pas (durant la suppression des clefs du registre dans clean.cmd). ça reste toujours sur 3 barettes pendant 30 min, est ce normale?
j'etai obliger d'annuler le nettoyage. Et je fais quoi maintenant? l'application clean.cmd est interrompu (car j'ai annulé le nettoyage du disque)
0
Réponse 23 / 73
philae83 Messages postés 12854 Statut Contributeur sécurité 206
  
l'application nettoyage du disque n'avance pas (durant la suppression des clefs du registre dans clean.cmd). ça reste toujours sur 3 barettes pendant 30 min, est ce normale?


je ne pense pas

fait la suite on verra à la fin
0
Réponse 24 / 73
nulle en informatique
 
re,

# Afin de supprimer toutes traces du spyware et d'autres élements qu'il aurait pu installer, scannez votre ordinateur avec :
* AVG Antispyware : anti-malware recommandé
veut il dire que je dois faire l'analyse complete du systeme?
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 73
philae83 Messages postés 12854 Statut Contributeur sécurité 206
  
 veut il dire que je dois faire l'analyse complete du systeme?


OUI tout à fait
0
Réponse 26 / 73
nulle en informatique
 
ca te derange pas si on continue ca demain? je suis desolé. Je dois me coucher car je commence tot. Merci en tout cas de ton aide. Tu me donne bcp de courage pour combattre contre ces spyware de m#§!!? ;p
A demain philae83 ok?
0
Réponse 27 / 73
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
pas de soucis, on reprendra demain

bonne nuit
0
Réponse 28 / 73
nulle en informatique
 
bonjour philae83

voici le rapport avg.

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 18:28:13 10.10.2007

+ Résultat de l'analyse:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{944864a5-3916-46e2-96a9-a2e84f3f1208} -> Adware.Accoona : Aucune action entreprise.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1adbcce8-cf84-441e-9b38-afc7a19c06a4} -> Adware.ActivShopper : Aucune action entreprise.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c5af2622-8c75-4dfb-9693-23ab7686a456} -> Adware.Generic : Aucune action entreprise.
C:\qoobox\Quarantine\C\WINDOWS\system32\drivers\secdrv.sys.vir -> Downloader.Agent.acl : Aucune action entreprise.
C:\System Volume Information\_restore{87E1230F-DB28-4142-8044-DD1DB4875C67}\RP802\A0446567.exe -> Downloader.Searcher.d : Aucune action entreprise.
C:\egifulq.exe -> Downloader.Searcher.d : Aucune action entreprise.
C:\wsusupd.exe -> Downloader.Searcher.d : Aucune action entreprise.
C:\WINDOWS\TEMP\exe5.exe -> Downloader.Small.exx : Aucune action entreprise.
C:\qoobox\Quarantine\C\WINDOWS\system32\oembios32.dll.vir -> Downloader.VB.bkb : Aucune action entreprise.
C:\qoobox\Quarantine\C\6.tmp.vir -> Dropper.Small.azk : Aucune action entreprise.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WinOpts -> Proxy.Small : Aucune action entreprise.
C:\WINDOWS\system32\ntio256.sys -> Rootkit.Agent.cf : Aucune action entreprise.
C:\qoobox\Quarantine\C\WINDOWS\system32\drivers\protect.sys.vir -> Rootkit.Agent.jj : Aucune action entreprise.
:mozilla.342:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.51:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.52:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.23:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.93:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.94:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.95:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.96:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.223:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Adviva : Aucune action entreprise.
:mozilla.59:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Atdmt : Aucune action entreprise.
:mozilla.101:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.20:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.21:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.22:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.48:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.233:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Estat : Aucune action entreprise.
:mozilla.259:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Falkag : Aucune action entreprise.
:mozilla.198:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.199:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.200:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.261:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.295:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.296:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.217:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
:mozilla.109:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.110:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.111:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.305:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Paypal : Aucune action entreprise.
C:\Documents and Settings\RHODON\Cookies\rhodon@real[2].txt -> TrackingCookie.Real : Aucune action entreprise.
:mozilla.114:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.115:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.116:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.117:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.89:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.230:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
:mozilla.324:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
C:\qoobox\Quarantine\C\WINDOWS\winh32.exe.vir -> Trojan.Small : Aucune action entreprise.

Fin du rapport
0
Réponse 29 / 73
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
bonsoir,

dans le rapport il est écrit : aucune action entreprise.
N'as tu pas paramétré AVG de manière à mettre en quarantaine ?

0
Réponse 30 / 73
nulle en informatique
 
si.

je suis allé sur parametre et j'ai choisi quarantaine à la question comment reagir.

Et avant de cliquer sur Appliquer toutes les action, la configuration de tous les elements est quarantaine.
0
Réponse 31 / 73
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
donc tu as sauvegardé le rapport avant d'appliquer toutes les actions, ce qui justifierait ce : aucune action entreprise.

comment je fais pour savoir ce qu'il a fait comme action ? a t il tout supprimé ou mis en quarantaine ou non ?

0
Réponse 32 / 73
nulle en informatique
 
Oops je suis desolé, je me suis trompé de LOG.

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 18:44:36 10.10.2007

+ Résultat de l'analyse:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{944864a5-3916-46e2-96a9-a2e84f3f1208} -> Adware.Accoona : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1adbcce8-cf84-441e-9b38-afc7a19c06a4} -> Adware.ActivShopper : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c5af2622-8c75-4dfb-9693-23ab7686a456} -> Adware.Generic : Nettoyé et sauvegardé (mise en quarantaine).
C:\qoobox\Quarantine\C\WINDOWS\system32\drivers\secdrv.sys.vir -> Downloader.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{87E1230F-DB28-4142-8044-DD1DB4875C67}\RP802\A0446567.exe -> Downloader.Searcher.d : Nettoyé et sauvegardé (mise en quarantaine).
C:\egifulq.exe -> Downloader.Searcher.d : Nettoyé et sauvegardé (mise en quarantaine).
C:\wsusupd.exe -> Downloader.Searcher.d : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\TEMP\exe5.exe -> Downloader.Small.exx : Nettoyé et sauvegardé (mise en quarantaine).
C:\qoobox\Quarantine\C\WINDOWS\system32\oembios32.dll.vir -> Downloader.VB.bkb : Nettoyé et sauvegardé (mise en quarantaine).
C:\qoobox\Quarantine\C\6.tmp.vir -> Dropper.Small.azk : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WinOpts -> Proxy.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\ntio256.sys -> Rootkit.Agent.cf : Nettoyé et sauvegardé (mise en quarantaine).
C:\qoobox\Quarantine\C\WINDOWS\system32\drivers\protect.sys.vir -> Rootkit.Agent.jj : Nettoyé et sauvegardé (mise en quarantaine).
:mozilla.342:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.51:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.52:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.23:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.93:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.94:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.95:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.96:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.223:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.59:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.101:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.20:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.21:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.22:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.48:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.233:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.259:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Falkag : Nettoyé.
:mozilla.198:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.199:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.200:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.261:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.295:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.296:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.217:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.109:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.110:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.111:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.305:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Paypal : Nettoyé.
C:\Documents and Settings\RHODON\Cookies\rhodon@real[2].txt -> TrackingCookie.Real : Nettoyé.
:mozilla.114:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.115:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.116:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.117:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.89:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.230:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.
:mozilla.324:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\qoobox\Quarantine\C\WINDOWS\winh32.exe.vir -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).

Fin du rapport
0
Réponse 33 / 73
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
re 

Oops je suis desolé, je me suis trompé de LOG.


pas grave, le principal étant de l'avoir

maintenant reposte un nouveau rapport hijackthis stp exécuté en mode normal

0
Réponse 34 / 73
nulle en informatique
 
ok.

Je suis deja sur mode normal, et j'ai pas redemarré mon ordi

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:46:25, on 10.10.2007
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\LckFldService.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\TomTom HOME\TomTomHOME.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/ie/defaults/sb/ymsgr6/fr/*http://www.yahoo.com/ext/search/search.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.33.210.17:3124
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {00000000-d9e3-4bc6-a0bd-3d0ca4be5271} - (no file)
O2 - BHO: (no name) - {00000012-890e-4aac-afd9-eff6954a34dd} - (no file)
O2 - BHO: (no name) - {029e02f0-a0e5-4b19-b958-7bf2db29fb13} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {06dfedaa-6196-11d5-bfc8-00508b4a487d} - (no file)
O2 - BHO: (no name) - {12F02779-6D88-4958-8AD3-83C12D86ADC7} - (no file)
O2 - BHO: ClickCatcher MSIE handler - {16664845-0E00-11D2-8059-000000000000} - C:\Program Files\Fichiers communs\ReGet Shared\Catcher.dll
O2 - BHO: (no name) - {2d7cb618-cc1c-4126-a7e3-f5b12d3bcf71} - (no file)
O2 - BHO: Flash Module - {43621FA4-9E25-4bcf-A5F4-5934E3838EC1} - btasv.dll (file missing)
O2 - BHO: (no name) - {49E0E0F0-5C30-11D4-945D-000000000000} - C:\WINDOWS\system32\iehelper3.dll
O2 - BHO: (no name) - {4E5E044D-598C-4E20-9F22-ECFC22F01FAF} - (no file)
O2 - BHO: (no name) - {51641ef3-8a7a-4d84-8659-b0911e947cc8} - (no file)
O2 - BHO: (no name) - {53C330D6-A4AB-419B-B45D-FD4411C1FEF4} - (no file)
O2 - BHO: (no name) - {54645654-2225-4455-44A1-9F4543D34546} - (no file)
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezoBHO.dll
O2 - BHO: (no name) - {669695bc-a811-4a9d-8cdf-ba8c795f261e} - (no file)
O2 - BHO: (no name) - {6abc861a-31e7-4d91-b43b-d3c98f22a5c0} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {919EAE7A-1FCB-1F3B-EE2C-4B761C3404C6} - C:\WINDOWS\System32\paplzqt.dll (file missing)
O2 - BHO: Her - {971D5B7B-F7DF-43ee-B771-6B7FA09975C3} - C:\WINDOWS\system32\tcprp.dll
O2 - BHO: (no name) - {a4a435cf-3583-11d4-91bd-0048546a1450} - (no file)
O2 - BHO: (no name) - {b8875bfe-b021-11d4-bfa8-00508b8e9bd3} - (no file)
O2 - BHO: (no name) - {c2680e10-1655-4a0e-87f8-4259325a84b7} - (no file)
O2 - BHO: (no name) - {c4ca6559-2cf1-48b6-96b2-8340a06fd129} - (no file)
O2 - BHO: (no name) - {ca1d1b05-9c66-11d5-a009-000103c1e50b} - (no file)
O2 - BHO: (no name) - {d8efadf1-9009-11d6-8c73-608c5dc19089} - (no file)
O2 - BHO: (no name) - {e9147a0a-a866-4214-b47c-da821891240f} - (no file)
O2 - BHO: (no name) - {e9306072-417e-43e3-81d5-369490beef7c} - (no file)
O3 - Toolbar: (no name) - {55910916-8B4E-4C1E-9253-CCE296EA71EB} - (no file)
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll (file missing)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME\TomTomHOME.exe" -s
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
O4 - HKLM\..\Run: [MMTray] C:\PROGRA~1\MUSICM~1\MUSICM~1\mm_tray.exe
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\ypager.exe" -quiet
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [Steam] "e:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [NetAppel] "C:\Program Files\NetAppel\NetAppel.exe" -nosplash -minimized
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Metacafe.lnk = C:\Program Files\Metacafe\MetacafeAgent.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Startup: Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: Metacafe.lnk = C:\Program Files\Metacafe\MetacafeAgent.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: Tous Télécharger par ReGet Jr. - C:\Program Files\Fichiers communs\ReGet Shared\CC_All.htm
O8 - Extra context menu item: Télécharger avec Re&Get Jr. - C:\Program Files\Fichiers communs\ReGet Shared\CC_Link.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O10 - Unknown file in Winsock LSP: netfilter.dll
O10 - Unknown file in Winsock LSP: netfilter.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{3602FC4E-E008-4BCE-9342-51B4FE9B012B}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\..\{67382936-3076-4712-B707-ACBF9DC59EE5}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\..\{82C8A6AE-44A6-4D00-B05F-01DE33633218}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: XÀ - XÀ (file missing)
O20 - Winlogon Notify: °À - °À (file missing)
O20 - Winlogon Notify: èÐÿ - èÐÿ (file missing)
O20 - Winlogon Notify: ÀÐ - ÀÐ (file missing)
O20 - Winlogon Notify: øÈÿ - øÈÿ (file missing)
O20 - Winlogon Notify: (xà - (xà (file missing)
O20 - Winlogon Notify: 08(ÿ - 08(ÿ (file missing)
O20 - Winlogon Notify: 0˜(ÿ - 0˜(ÿ (file missing)
O20 - Winlogon Notify: crehcjid - C:\WINDOWS\SYSTEM32\crehcjid.dll
O20 - Winlogon Notify: md5hsh - C:\WINDOWS\SYSTEM32\md5hsh.dll
O20 - Winlogon Notify: X - X (file missing)
O20 - Winlogon Notify: Xhÿ - Xhÿ (file missing)
O20 - Winlogon Notify: x ˆÿ - x ˆÿ (file missing)
O20 - Winlogon Notify: x 0 - x 0 (file missing)
O20 - Winlogon Notify: `Ðÿ - `Ðÿ (file missing)
O20 - Winlogon Notify: 8H - 8H (file missing)
O20 - Winlogon Notify: XÐÿ - XÐÿ (file missing)
O20 - Winlogon Notify: ÀØÈÿ - ÀØÈÿ (file missing)
O20 - Winlogon Notify: àˆ˜ - àˆ˜ (file missing)
O20 - Winlogon Notify: ø0Èÿ - ø0Èÿ (file missing)
O20 - Winlogon Notify: ø ° - ø ° (file missing)
O20 - Winlogon Notify: ø¨° - ø¨° (file missing)
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe (file missing)
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe (file missing)
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: Creative Service for CDROM Access - Unknown owner - C:\WINDOWS\System32\CTsvcCDA.EXE (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LckFldService - Unknown owner - C:\WINDOWS\System32\LckFldService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
0
Réponse 35 / 73
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
ok

je te prépare la suite dans un petit moment
0
Réponse 36 / 73
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
voici :

* lance hijackthis puis coche ces lignes :

O2 - BHO: (no name) - {00000000-d9e3-4bc6-a0bd-3d0ca4be5271} - (no file)
O2 - BHO: (no name) - {00000012-890e-4aac-afd9-eff6954a34dd} - (no file)
O2 - BHO: (no name) - {029e02f0-a0e5-4b19-b958-7bf2db29fb13} - (no file)
O2 - BHO: (no name) - {06dfedaa-6196-11d5-bfc8-00508b4a487d} - (no file)
O2 - BHO: (no name) - {12F02779-6D88-4958-8AD3-83C12D86ADC7} - (no file)
O2 - BHO: (no name) - {2d7cb618-cc1c-4126-a7e3-f5b12d3bcf71} - (no file)
O2 - BHO: Flash Module - {43621FA4-9E25-4bcf-A5F4-5934E3838EC1} - btasv.dll (file missing)
O2 - BHO: (no name) - {49E0E0F0-5C30-11D4-945D-000000000000} - C:\WINDOWS\system32\iehelper3.dll
O2 - BHO: (no name) - {4E5E044D-598C-4E20-9F22-ECFC22F01FAF} - (no file)
O2 - BHO: (no name) - {51641ef3-8a7a-4d84-8659-b0911e947cc8} - (no file)
O2 - BHO: (no name) - {53C330D6-A4AB-419B-B45D-FD4411C1FEF4} - (no file)
O2 - BHO: (no name) - {54645654-2225-4455-44A1-9F4543D34546} - (no file)
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezoBHO.dll
O2 - BHO: (no name) - {669695bc-a811-4a9d-8cdf-ba8c795f261e} - (no file)
O2 - BHO: (no name) - {6abc861a-31e7-4d91-b43b-d3c98f22a5c0} - (no file)
O2 - BHO: (no name) - {919EAE7A-1FCB-1F3B-EE2C-4B761C3404C6} - C:\WINDOWS\System32\paplzqt.dll (file missing)
O2 - BHO: Her - {971D5B7B-F7DF-43ee-B771-6B7FA09975C3} - C:\WINDOWS\system32\tcprp.dll
O2 - BHO: (no name) - {a4a435cf-3583-11d4-91bd-0048546a1450} - (no file)
O2 - BHO: (no name) - {b8875bfe-b021-11d4-bfa8-00508b8e9bd3} - (no file)
O2 - BHO: (no name) - {c2680e10-1655-4a0e-87f8-4259325a84b7} - (no file)
O2 - BHO: (no name) - {c4ca6559-2cf1-48b6-96b2-8340a06fd129} - (no file)
O2 - BHO: (no name) - {ca1d1b05-9c66-11d5-a009-000103c1e50b} - (no file)
O2 - BHO: (no name) - {d8efadf1-9009-11d6-8c73-608c5dc19089} - (no file)
O2 - BHO: (no name) - {e9147a0a-a866-4214-b47c-da821891240f} - (no file)
O2 - BHO: (no name) - {e9306072-417e-43e3-81d5-369490beef7c} - (no file)
O3 - Toolbar: (no name) - {55910916-8B4E-4C1E-9253-CCE296EA71EB} - (no file)
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll (file missing)
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MMTray] C:\PROGRA~1\MUSICM~1\MUSICM~1\mm_tray.exe
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O20 - Winlogon Notify: XÀ - XÀ (file missing)
O20 - Winlogon Notify: °À - °À (file missing)
O20 - Winlogon Notify: èÐÿ - èÐÿ (file missing)
O20 - Winlogon Notify: ÀÐ - ÀÐ (file missing)
O20 - Winlogon Notify: øÈÿ - øÈÿ (file missing)
O20 - Winlogon Notify: crehcjid - C:\WINDOWS\SYSTEM32\crehcjid.dll
O20 - Winlogon Notify: md5hsh - C:\WINDOWS\SYSTEM32\md5hsh.dll
O20 - Winlogon Notify: (xà - (xà (file missing)
O20 - Winlogon Notify: 08(ÿ - 08(ÿ (file missing)
O20 - Winlogon Notify: 0˜(ÿ - 0˜(ÿ (file missing)
O20 - Winlogon Notify: X - X (file missing)
O20 - Winlogon Notify: Xhÿ - Xhÿ (file missing)
O20 - Winlogon Notify: x ˆÿ - x ˆÿ (file missing)
O20 - Winlogon Notify: x 0 - x 0 (file missing)
O20 - Winlogon Notify: `Ðÿ - `Ðÿ (file missing)
O20 - Winlogon Notify: 8H - 8H (file missing)
O20 - Winlogon Notify: XÐÿ - XÐÿ (file missing)
O20 - Winlogon Notify: ÀØÈÿ - ÀØÈÿ (file missing)
O20 - Winlogon Notify: àˆ˜ - àˆ˜ (file missing)
O20 - Winlogon Notify: ø0Èÿ - ø0Èÿ (file missing)
O20 - Winlogon Notify: ø ° - ø ° (file missing)
O20 - Winlogon Notify: ø¨° - ø¨° (file missing)

* ferme toutes les applications ouvertes et HORS CONNEXION, clique sur fix checked

* relance AVG AS et poste le rapport généré
ainsi qu'un nouveau rapport hijackthis

0
Réponse 37 / 73
nulle en informatique
 
Bonjour,

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 01:25:53 11.10.2007

+ Résultat de l'analyse:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WinOpts -> Proxy.Small : Nettoyé et sauvegardé (mise en quarantaine).
:mozilla.203:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.413:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.98:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.33:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.81:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.82:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.83:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.84:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.324:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.210:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.67:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.29:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.31:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.32:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.64:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.164:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.303:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.304:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.356:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.377:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.378:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.45:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.46:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.253:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.254:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.255:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.386:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Paypal : Nettoyé.
:mozilla.68:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.69:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.70:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.71:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.72:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.73:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.104:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Skype : Nettoyé.
:mozilla.42:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Skype : Nettoyé.
:mozilla.43:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Skype : Nettoyé.
C:\Documents and Settings\RHODON\Cookies\rhodon@skype[1].txt -> TrackingCookie.Skype : Nettoyé.
:mozilla.74:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.75:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.76:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.77:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.105:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.109:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.125:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.126:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.86:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.
:mozilla.401:C:\Documents and Settings\RHODON\Application Data\Mozilla\Firefox\Profiles\n79daaq0.Utilisateur par défaut\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

Fin du rapport

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 01:26:20, on 11.10.2007
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\LckFldService.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\TomTom HOME\TomTomHOME.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\System32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/ie/defaults/sb/ymsgr6/fr/*http://www.yahoo.com/ext/search/search.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.33.210.17:3124
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: ClickCatcher MSIE handler - {16664845-0E00-11D2-8059-000000000000} - C:\Program Files\Fichiers communs\ReGet Shared\Catcher.dll
O2 - BHO: (no name) - {2d7cb618-cc1c-4126-a7e3-f5b12d3bcf71} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME\TomTomHOME.exe" -s
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\ypager.exe" -quiet
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [Steam] "e:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [NetAppel] "C:\Program Files\NetAppel\NetAppel.exe" -nosplash -minimized
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Metacafe.lnk = C:\Program Files\Metacafe\MetacafeAgent.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Startup: Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: Metacafe.lnk = C:\Program Files\Metacafe\MetacafeAgent.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: Tous Télécharger par ReGet Jr. - C:\Program Files\Fichiers communs\ReGet Shared\CC_All.htm
O8 - Extra context menu item: Télécharger avec Re&Get Jr. - C:\Program Files\Fichiers communs\ReGet Shared\CC_Link.htm
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O10 - Unknown file in Winsock LSP: netfilter.dll
O10 - Unknown file in Winsock LSP: netfilter.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{3602FC4E-E008-4BCE-9342-51B4FE9B012B}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\..\{67382936-3076-4712-B707-ACBF9DC59EE5}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\..\{82C8A6AE-44A6-4D00-B05F-01DE33633218}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: (xà - (xà (file missing)
O20 - Winlogon Notify: 08(ÿ - 08(ÿ (file missing)
O20 - Winlogon Notify: 0˜(ÿ - 0˜(ÿ (file missing)
O20 - Winlogon Notify: crehcjid - C:\WINDOWS\SYSTEM32\crehcjid.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe (file missing)
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe (file missing)
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: Creative Service for CDROM Access - Unknown owner - C:\WINDOWS\System32\CTsvcCDA.EXE (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LckFldService - Unknown owner - C:\WINDOWS\System32\LckFldService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
0
Réponse 38 / 73
nulle en informatique
 
je revien demain philae. Merci pour tout. Je vais me coucher. Bonne nuit.
0
Réponse 39 / 73
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
relance combofix et poste le rapport

ainsi qu'un nouveau rapport hijackthis que tu auras au préalable renommé en nulle en informatique.exe

on verra la suite demain soir, je vais "dodo"
0
Réponse 40 / 73
nulle en informatique
 
Bonjour,
ComboFix 07-10-09.3 - RHODON 2007-10-11 17:33:42.2 - NTFSx86
Running from: C:\Documents and Settings\RHODON\Bureau\ComboFix.exe
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\d.exe
C:\WINDOWS\bck1.dat
C:\WINDOWS\regedit.com
C:\WINDOWS\system32\ldcore.dll
C:\WINDOWS\system32\ldinfo.ldr
C:\WINDOWS\system32\n.ini
C:\WINDOWS\system32\protector.exe
C:\WINDOWS\system32\taskmgr.com

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

-------\LEGACY_ASC3550O
-------\LEGACY_ASC3550U
-------\LEGACY_RUNTIME
-------\LEGACY_RUNTIME2
-------\LEGACY_SMTPDRV

((((((((((((((((((((((((((((( Fichiers créés 2007-09-11 to 2007-10-11 ))))))))))))))))))))))))))))))))))))
.

2007-10-11 17:40 102,912 --a------ C:\nwnpdtrr.exe
2007-10-11 17:40 25,600 --a------ C:\WINDOWS\system32\drivers\738b0907.sys
2007-10-11 17:40 15,872 --a------ C:\d.exe
2007-10-11 17:39 158,432 --a------ C:\WINDOWS\system32\d7e91864.sys
2007-10-11 17:29 <REP> d-------- C:\WINDOWS\LastGood
2007-10-11 17:16 784,896 --a------ C:\WINDOWS\system32\dllcache\helpctr.exe
2007-10-11 17:10 498,688 --a------ C:\WINDOWS\system32\winlogon.exe
2007-10-11 17:10 154,112 --a------ C:\WINDOWS\system32\netdde.exe
2007-10-11 17:06 161,280 --a------ C:\WINDOWS\system32\schedsvc.dll
2007-10-11 17:06 22,016 --a------ C:\WINDOWS\system32\mstinit.exe
2007-10-11 17:04 25,600 --a------ C:\WINDOWS\system32\drivers\36db2d02.sys
2007-10-11 16:59 <REP> d-------- C:\WINDOWS\system32\vMW06a
2007-10-11 16:59 <REP> d-------- C:\temp\xOe
2007-10-11 14:17 25,600 --a------ C:\WINDOWS\system32\drivers\62c5e075.sys
2007-10-11 11:20 102,912 --a------ C:\WINDOWS\FreeFrMail.exe
2007-10-11 11:20 25,600 --a------ C:\WINDOWS\system32\drivers\66dde653.sys
2007-10-10 20:10 <REP> d-------- C:\Program Files\Fichiers communs\Skype
2007-10-10 17:07 1,006,592 --a------ C:\WINDOWS\system32\esent.dll
2007-10-10 13:52 158,432 --a------ C:\WINDOWS\system32\eee44174.sys
2007-10-10 13:52 158,432 --a------ C:\WINDOWS\system32\d2ab31d0.sys
2007-10-10 13:52 158,432 --a------ C:\WINDOWS\system32\3fdb3ae0.sys
2007-10-09 23:41 158,432 --a------ C:\WINDOWS\system32\f180b568.sys
2007-10-09 23:41 158,432 --a------ C:\WINDOWS\system32\e23927f4.sys
2007-10-09 23:41 158,432 --a------ C:\WINDOWS\system32\b3ef14c8.sys
2007-10-09 23:10 104,988 --a------ C:\uuuj.exe
2007-10-09 23:06 62,464 --a------ C:\WINDOWS\nircmd.exe
2007-10-09 20:58 158,432 --a------ C:\WINDOWS\system32\eb9bd6e4.sys
2007-10-09 20:58 158,432 --a------ C:\WINDOWS\system32\c685fa18.sys
2007-10-09 13:44 158,432 --a------ C:\WINDOWS\system32\fa212d3c.sys
2007-10-09 13:27 158,432 --a------ C:\WINDOWS\system32\59d6d7f8.sys
2007-10-08 18:26 <REP> d-------- C:\VundoFix Backups
2007-10-08 17:57 158,432 --a------ C:\WINDOWS\system32\8589d938.sys
2007-10-08 16:32 <REP> d-------- C:\Program Files\Navilog1
2007-10-08 16:17 158,432 --a------ C:\WINDOWS\system32\8de83530.sys
2007-10-08 16:17 158,432 --a------ C:\WINDOWS\system32\2542ac88.sys
2007-10-08 00:51 158,432 --a------ C:\WINDOWS\system32\d3e894dc.sys
2007-10-07 19:20 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Avira
2007-10-07 18:42 <REP> d-------- C:\WINDOWS\system32\acespy
2007-10-07 18:42 15,616 --a------ C:\WINDOWS\system32\ace16win.dll
2007-10-07 16:50 <REP> d-------- C:\Program Files\RegCleaner
2007-10-07 14:44 1 --a------ C:\WINDOWS\system32\rc.dat
2007-10-07 14:44 1 --a------ C:\WINDOWS\system32\ps1.dat
2007-10-07 14:44 1 --a------ C:\WINDOWS\system32\cookie1.dat
2007-10-07 14:13 158,432 --a------ C:\WINDOWS\system32\6dbb28e8.sys
2007-10-07 14:09 158,432 --a------ C:\WINDOWS\system32\de5ff964.sys
2007-10-07 14:09 158,432 --a------ C:\WINDOWS\system32\c1d3cd04.sys
2007-10-07 14:09 158,432 --a------ C:\WINDOWS\system32\c0747fa4.sys
2007-10-07 12:47 158,432 --a------ C:\WINDOWS\system32\fcb91cc4.sys
2007-10-07 12:40 158,432 --a------ C:\WINDOWS\system32\b98ea774.sys
2007-10-07 12:26 158,432 --a------ C:\WINDOWS\system32\fde921d8.sys
2007-10-07 12:26 158,432 --a------ C:\WINDOWS\system32\bc8d02a0.sys
2007-10-07 12:26 158,432 --a------ C:\WINDOWS\system32\9c276034.sys
2007-10-07 12:26 158,432 --a------ C:\WINDOWS\system32\28c3b4a4.sys
2007-10-07 12:26 158,432 --a------ C:\WINDOWS\system32\217a639e.sys
2007-10-07 12:26 25,600 --a------ C:\WINDOWS\system32\drivers\19ad154d.sys
2007-10-07 12:09 158,432 --a------ C:\WINDOWS\system32\e19fcac8.sys
2007-10-07 11:58 50,176 --a------ C:\WINDOWS\system32\btasv.dll
2007-10-07 11:56 158,432 --a------ C:\WINDOWS\system32\fba17f34.sys
2007-10-07 11:56 158,432 --a------ C:\WINDOWS\system32\28ea500.sys
2007-10-07 11:56 158,432 --a------ C:\WINDOWS\system32\1b8f4d88.sys
2007-10-07 11:55 158,432 --a------ C:\WINDOWS\system32\a50e6ae4.sys
2007-10-07 11:49 158,432 --a------ C:\WINDOWS\system32\af1c6f6c.sys
2007-10-07 11:49 158,432 --a------ C:\WINDOWS\system32\ab68d11c.sys
2007-10-07 11:49 158,432 --a------ C:\WINDOWS\system32\59043fe8.sys
2007-10-07 11:49 158,432 --a------ C:\WINDOWS\system32\4605e2f4.sys
2007-10-07 02:07 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2007-10-07 02:01 203,264 --a------ C:\WINDOWS\R.COM
2007-10-07 02:01 147,456 --a------ C:\WINDOWS\system32\T.COM
2007-10-06 21:22 158,432 --a------ C:\WINDOWS\system32\2397664.sys
2007-10-06 21:18 158,432 --a------ C:\WINDOWS\system32\c0dbbf9c.sys
2007-10-06 21:18 158,432 --a------ C:\WINDOWS\system32\9da94838.sys
2007-10-06 21:18 158,432 --a------ C:\WINDOWS\system32\19b984d8.sys
2007-10-06 21:08 <REP> d-------- C:\Program Files\CCleaner
2007-10-06 20:37 158,432 --a------ C:\WINDOWS\system32\f73c55c8.sys
2007-10-06 20:36 158,432 --a------ C:\WINDOWS\system32\813c3f68.sys
2007-10-06 20:31 158,432 --a------ C:\WINDOWS\system32\2d5f22c0.sys
2007-10-06 20:30 158,432 --a------ C:\WINDOWS\system32\4782ce20.sys
2007-10-06 20:08 <REP> d-------- C:\Program Files\Trend Micro
2007-10-06 19:34 158,432 --a------ C:\WINDOWS\system32\7da685ac.sys
2007-10-06 19:23 158,432 --a------ C:\WINDOWS\system32\e126f9f0.sys
2007-10-06 19:22 158,432 --a------ C:\WINDOWS\system32\8f8a4b58.sys
2007-10-06 19:21 49,664 --a------ C:\WINDOWS\tsitra801.exe
2007-10-06 19:03 35,328 --a------ C:\WINDOWS\system32\olecnv32.dll
2007-10-06 19:01 149,248 --a------ C:\WINDOWS\system32\drivers\netbt.sys
2007-10-06 19:01 149,248 --a--c--- C:\WINDOWS\system32\dllcache\netbt.sys
2007-10-06 18:28 120,320 --a------ C:\WINDOWS\system32\dllcache\netdde.exe
2007-10-06 18:28 16,896 --a------ C:\WINDOWS\system32\nddenb32.dll
2007-10-06 18:28 16,896 --a------ C:\WINDOWS\system32\dllcache\nddenb32.dll
2007-10-06 17:34 322,048 --a------ C:\WINDOWS\system32\drivers\srv.sys
2007-10-06 17:34 322,048 --a--c--- C:\WINDOWS\system32\dllcache\srv.sys
2007-10-06 16:02 307,200 --a--c--- C:\WINDOWS\system32\dllcache\netapi32.dll
2007-10-06 16:02 261,632 --a------ C:\WINDOWS\system32\dllcache\mstask.dll
2007-10-06 16:02 256,512 --a------ C:\WINDOWS\system32\mstask.dll
2007-10-06 16:02 161,280 --a------ C:\WINDOWS\system32\dllcache\schedsvc.dll
2007-10-06 16:02 53,760 --a------ C:\WINDOWS\system32\dllcache\mstinit.exe
2007-10-06 15:23 25,600 --a------ C:\WINDOWS\system32\drivers\a3007d0f.sys
2007-10-06 15:21 25,088 --a------ C:\WINDOWS\system32\sipov.dll
2007-10-05 18:30 81,920 --a------ C:\WINDOWS\system32\dllcache\grpconv.exe
2007-10-05 18:30 49,152 --a------ C:\WINDOWS\system32\grpconv.exe
2007-10-05 18:30 16,384 --a------ C:\WINDOWS\system32\dllcache\linkinfo.dll

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-10-10 18:44 --------- d-----w C:\Documents and Settings\RHODON\Application Data\Skype
2007-10-10 18:10 --------- d-----w C:\Documents and Settings\All Users\Application Data\Skype
2007-10-09 23:19 --------- d-----w C:\Program Files\Winamp
2007-10-09 23:14 --------- d-----w C:\Program Files\QuickTime
2007-10-09 23:11 --------- d-----w C:\Program Files\LimeWire
2007-10-09 23:08 --------- d-----w C:\Program Files\GoldWave
2007-10-09 23:08 --------- d-----w C:\Program Files\FileZilla
2007-10-09 23:07 --------- d-----w C:\Program Files\Fichiers communs\ReGet Shared
2007-10-09 23:05 --------- d-----w C:\Program Files\CamStudio
2007-10-09 23:05 --------- d-----w C:\Program Files\BitTorrent
2007-10-09 22:48 --------- d-----w C:\Program Files\3D Flash Animator 4 Release 5
2007-10-08 22:10 --------- d-----w C:\Documents and Settings\RHODON\Application Data\EoRezo
2007-10-07 23:04 --------- d-----w C:\Program Files\Hewlett-Packard
2007-10-06 21:52 --------- d-----w C:\Program Files\MSN Messenger
2007-10-04 15:13 --------- d-----w C:\Program Files\Music
2007-10-01 21:16 --------- d-----w C:\Program Files\TomTom HOME
2007-10-01 15:16 --------- d-----w C:\Program Files\Google
2007-10-01 14:54 --------- d-----w C:\Program Files\Common Files
2007-10-01 13:46 --------- d-----w C:\Program Files\MP3 Player Utilities 3.57
2007-09-27 15:48 10 ----a-w C:\Program Files\.autoreg
2007-09-26 20:15 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2007-09-23 17:42 --------- d-----w C:\Program Files\Fichiers communs\Teleca Shared
2007-09-18 14:03 --------- d-----w C:\Documents and Settings\RHODON\Application Data\BitTorrent
2007-09-09 19:32 --------- d-----w C:\Program Files\TomTom DesktopSuite
2007-09-07 21:05 --------- d-----w C:\Documents and Settings\All Users\Application Data\TomTom
2007-09-07 18:07 --------- d--h--w C:\Program Files\InstallShield Installation Information
2007-09-07 18:07 --------- d-----w C:\Documents and Settings\RHODON\Application Data\InstallShield
2007-09-05 17:07 --------- d-----w C:\Documents and Settings\RHODON\Application Data\Jasc
2007-09-05 16:58 --------- d-----w C:\Program Files\Jasc Software Inc
2007-09-05 16:58 --------- d-----w C:\Documents and Settings\RHODON\Application Data\Jasc Software Inc
2007-09-05 16:57 --------- d-----w C:\Program Files\Corel
2007-09-04 14:27 --------- d-----w C:\Program Files\KaraFun
2007-08-29 18:23 --------- d-----w C:\Documents and Settings\RHODON\Application Data\Rainlendar
2007-08-27 23:14 --------- d-----w C:\Program Files\Script Font Samples
2007-08-27 22:52 --------- d-----w C:\Program Files\Image-Line
2007-08-27 22:52 --------- d-----w C:\Program Files\Fichiers communs\GTK
2007-08-27 22:48 --------- d-----w C:\Program Files\Fichiers communs\PCSuite
2007-08-26 22:16 --------- d-----w C:\Program Files\Lame
2007-08-22 21:27 --------- d-----w C:\Program Files\ArKaos VJ 3.5.1 FC1
2007-08-21 21:37 --------- d-----w C:\Program Files\Yahoo!
2007-08-21 21:35 --------- d-----w C:\Program Files\eMule
2007-08-21 21:34 --------- d-----w C:\Program Files\Fichiers communs\AVSMedia
2007-08-21 21:34 --------- d-----w C:\Program Files\adslTV
2007-08-18 19:18 --------- d-----w C:\Program Files\Total Video Converter
2007-08-17 20:59 --------- d-----w C:\Program Files\mIRC
2007-07-28 17:41 1,738 ----a-w C:\sccfg.sys
2006-10-16 00:52 1,657,856 -c----w C:\Program Files\CaptureFlux_51fr.exe
2006-05-09 12:09 17 -c--a-w C:\Program Files\stinger.opt
2005-08-27 12:38 128,648 -c--a-w C:\Program Files\GetFlash.exe
2005-08-27 12:38 1,435,272 ----a-w C:\Program Files\Flash8.ocx
2005-08-27 12:30 5,065 -c--a-w C:\Program Files\swflash.inf
2005-08-27 12:29 601 -c--a-w C:\Program Files\GetFlash.man
2005-04-30 17:44 1,050,631 -c--a-w C:\Program Files\stinger.exe
2005-04-30 17:27 1,380,352 -c--a-w C:\Program Files\mirc616.exe
2003-11-07 13:36 249,856 -c----w C:\Program Files\MvLangUS.dll
2003-10-29 10:20 1,532 ------w C:\Program Files\consolevol.vco
2003-09-11 19:41 46,484 -c--a-w C:\Program Files\Mv5skin2.ini
2003-08-25 15:44 81,920 -c----w C:\Program Files\akrip32.dll
2003-06-28 05:41 131,072 -c--a-w C:\Program Files\reset.exe
.

((((((((((((((((((((((((((((( snapshot@2007-10-09_22.02.00.21 )))))))))))))))))))))))))))))))))))))))))
.
----a-w 149,504 2007-09-28 07:06:08 C:\WINDOWS\catchme.exe
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB908519\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$hf_mig$\KB908519\spuninst.exe
----a-w 80,896 2005-10-17 21:21:08 C:\WINDOWS\$hf_mig$\KB908519\SP2GDR\fontsub.dll
----a-w 118,272 2005-10-17 21:21:08 C:\WINDOWS\$hf_mig$\KB908519\SP2GDR\t2embed.dll
----a-w 80,896 2005-10-17 21:26:30 C:\WINDOWS\$hf_mig$\KB908519\SP2QFE\fontsub.dll
----a-w 117,760 2005-10-17 21:26:30 C:\WINDOWS\$hf_mig$\KB908519\SP2QFE\t2embed.dll
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB908519\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\$hf_mig$\KB908519\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$hf_mig$\KB908519\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB908531\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$hf_mig$\KB908531\spuninst.exe
----a-w 8,508,416 2006-03-17 04:07:40 C:\WINDOWS\$hf_mig$\KB908531\SP2GDR\shell32.dll
----a-w 39,936 2006-03-17 00:38:01 C:\WINDOWS\$hf_mig$\KB908531\SP2GDR\verclsid.exe
----a-w 8,510,976 2006-03-17 04:49:25 C:\WINDOWS\$hf_mig$\KB908531\SP2QFE\shell32.dll
----a-w 25,088 2006-03-22 01:51:44 C:\WINDOWS\$hf_mig$\KB908531\SP2QFE\spru040c.dll
----a-w 39,936 2006-03-17 01:05:35 C:\WINDOWS\$hf_mig$\KB908531\SP2QFE\verclsid.exe
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB908531\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\$hf_mig$\KB908531\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$hf_mig$\KB908531\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:23 C:\WINDOWS\$hf_mig$\KB910437\spmsg.dll
----a-w 216,800 2005-10-12 23:15:24 C:\WINDOWS\$hf_mig$\KB910437\spuninst.exe
----a-w 1,097,728 2005-10-20 22:25:53 C:\WINDOWS\$hf_mig$\KB910437\SP2GDR\esent.dll
----a-w 1,097,728 2005-10-20 22:32:17 C:\WINDOWS\$hf_mig$\KB910437\SP2QFE\esent.dll
----a-w 22,752 2005-10-12 23:15:23 C:\WINDOWS\$hf_mig$\KB910437\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:26 C:\WINDOWS\$hf_mig$\KB910437\update\update.exe
----a-w 394,976 2005-10-12 23:15:43 C:\WINDOWS\$hf_mig$\KB910437\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB911562\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$hf_mig$\KB911562\spuninst.exe
----a-w 143,360 2006-03-23 05:46:11 C:\WINDOWS\$hf_mig$\KB911562\SP2GDR\msadco.dll
----a-w 143,360 2006-03-23 05:53:24 C:\WINDOWS\$hf_mig$\KB911562\SP2QFE\msadco.dll
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB911562\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\$hf_mig$\KB911562\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$hf_mig$\KB911562\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB912919\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$hf_mig$\KB912919\spuninst.exe
----a-w 280,064 2005-12-29 02:56:04 C:\WINDOWS\$hf_mig$\KB912919\SP2GDR\gdi32.dll
----a-w 280,064 2005-12-29 03:08:43 C:\WINDOWS\$hf_mig$\KB912919\SP2QFE\gdi32.dll
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB912919\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\$hf_mig$\KB912919\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$hf_mig$\KB912919\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB913580\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$hf_mig$\KB913580\spuninst.exe
----a-w 426,496 2006-03-01 19:43:50 C:\WINDOWS\$hf_mig$\KB913580\SP2GDR\msdtcprx.dll
----a-w 956,416 2006-03-01 19:43:50 C:\WINDOWS\$hf_mig$\KB913580\SP2GDR\msdtctm.dll
----a-w 161,280 2006-03-01 19:43:51 C:\WINDOWS\$hf_mig$\KB913580\SP2GDR\msdtcuiu.dll
----a-w 66,560 2006-03-01 19:43:51 C:\WINDOWS\$hf_mig$\KB913580\SP2GDR\mtxclu.dll
----a-w 91,136 2006-03-01 19:43:51 C:\WINDOWS\$hf_mig$\KB913580\SP2GDR\mtxoci.dll
----a-w 11,776 2006-03-01 19:43:51 C:\WINDOWS\$hf_mig$\KB913580\SP2GDR\xolehlp.dll
----a-w 426,496 2006-03-01 19:42:12 C:\WINDOWS\$hf_mig$\KB913580\SP2QFE\msdtcprx.dll
----a-w 956,416 2006-03-01 19:42:12 C:\WINDOWS\$hf_mig$\KB913580\SP2QFE\msdtctm.dll
----a-w 161,280 2006-03-01 19:42:12 C:\WINDOWS\$hf_mig$\KB913580\SP2QFE\msdtcuiu.dll
----a-w 66,560 2006-03-01 19:42:12 C:\WINDOWS\$hf_mig$\KB913580\SP2QFE\mtxclu.dll
----a-w 91,136 2006-03-01 19:42:12 C:\WINDOWS\$hf_mig$\KB913580\SP2QFE\mtxoci.dll
----a-w 11,776 2006-03-01 19:42:12 C:\WINDOWS\$hf_mig$\KB913580\SP2QFE\xolehlp.dll
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB913580\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\$hf_mig$\KB913580\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$hf_mig$\KB913580\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB914388\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$hf_mig$\KB914388\spuninst.exe
----a-w 112,128 2006-05-19 13:23:35 C:\WINDOWS\$hf_mig$\KB914388\SP2GDR\dhcpcsvc.dll
----a-w 148,480 2006-05-19 13:23:35 C:\WINDOWS\$hf_mig$\KB914388\SP2GDR\dnsapi.dll
----a-w 95,744 2006-05-19 13:23:35 C:\WINDOWS\$hf_mig$\KB914388\SP2GDR\iphlpapi.dll
----a-w 112,640 2006-05-19 14:16:50 C:\WINDOWS\$hf_mig$\KB914388\SP2QFE\dhcpcsvc.dll
----a-w 147,456 2006-05-19 14:16:51 C:\WINDOWS\$hf_mig$\KB914388\SP2QFE\dnsapi.dll
----a-w 95,744 2006-05-19 14:16:51 C:\WINDOWS\$hf_mig$\KB914388\SP2QFE\iphlpapi.dll
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB914388\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\$hf_mig$\KB914388\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$hf_mig$\KB914388\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB914389\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$hf_mig$\KB914389\spuninst.exe
----a-w 453,120 2006-05-05 09:41:45 C:\WINDOWS\$hf_mig$\KB914389\SP2GDR\mrxsmb.sys
----a-w 174,592 2006-05-05 09:47:57 C:\WINDOWS\$hf_mig$\KB914389\SP2GDR\rdbss.sys
----a-w 454,400 2006-05-05 10:16:39 C:\WINDOWS\$hf_mig$\KB914389\SP2QFE\mrxsmb.sys
----a-w 174,592 2006-05-05 10:22:52 C:\WINDOWS\$hf_mig$\KB914389\SP2QFE\rdbss.sys
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB914389\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\$hf_mig$\KB914389\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$hf_mig$\KB914389\update\updspapi.dll
----a-w 15,072 2005-10-12 23:18:45 C:\WINDOWS\$hf_mig$\KB917344\spmsg.dll
----a-w 216,800 2005-10-12 23:18:45 C:\WINDOWS\$hf_mig$\KB917344\spuninst.exe
----a-w 450,560 2006-05-18 05:31:21 C:\WINDOWS\$hf_mig$\KB917344\SP2GDR\jscript.dll
----a-w 450,560 2006-05-18 05:49:55 C:\WINDOWS\$hf_mig$\KB917344\SP2QFE\jscript.dll
----a-w 22,752 2005-10-12 23:18:45 C:\WINDOWS\$hf_mig$\KB917344\update\spcustom.dll
----a-w 727,776 2005-10-12 23:18:46 C:\WINDOWS\$hf_mig$\KB917344\update\update.exe
----a-w 394,976 2005-10-12 23:18:49 C:\WINDOWS\$hf_mig$\KB917344\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB917953\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$hf_mig$\KB917953\spuninst.exe
----a-w 359,808 2006-04-20 11:51:50 C:\WINDOWS\$hf_mig$\KB917953\SP2GDR\tcpip.sys
----a-w 360,576 2006-04-20 12:18:35 C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\tcpip.sys
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB917953\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\$hf_mig$\KB917953\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$hf_mig$\KB917953\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB920683\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$hf_mig$\KB920683\spuninst.exe
----a-w 148,480 2006-06-26 17:41:32 C:\WINDOWS\$hf_mig$\KB920683\SP2GDR\dnsapi.dll
----a-w 8,192 2006-06-26 17:41:32 C:\WINDOWS\$hf_mig$\KB920683\SP2GDR\rasadhlp.dll
----a-w 147,456 2006-06-26 17:47:08 C:\WINDOWS\$hf_mig$\KB920683\SP2QFE\dnsapi.dll
----a-w 7,680 2006-06-26 17:47:08 C:\WINDOWS\$hf_mig$\KB920683\SP2QFE\rasadhlp.dll
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB920683\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\$hf_mig$\KB920683\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$hf_mig$\KB920683\update\updspapi.dll
----a-w 15,072 2005-10-12 23:18:45 C:\WINDOWS\$hf_mig$\KB921883\spmsg.dll
----a-w 216,800 2005-10-12 23:18:45 C:\WINDOWS\$hf_mig$\KB921883\spuninst.exe
----a-w 332,288 2006-07-14 15:41:05 C:\WINDOWS\$hf_mig$\KB921883\SP2GDR\netapi32.dll
----a-w 336,896 2006-07-14 15:42:01 C:\WINDOWS\$hf_mig$\KB921883\SP2QFE\netapi32.dll
----a-w 22,752 2005-10-12 23:18:45 C:\WINDOWS\$hf_mig$\KB921883\update\spcustom.dll
----a-w 727,776 2005-10-12 23:18:46 C:\WINDOWS\$hf_mig$\KB921883\update\update.exe
----a-w 394,976 2005-10-12 23:18:49 C:\WINDOWS\$hf_mig$\KB921883\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB922616\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$hf_mig$\KB922616\spuninst.exe
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB922616\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\$hf_mig$\KB922616\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$hf_mig$\KB922616\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB923191\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$hf_mig$\KB923191\spuninst.exe
----a-w 617,472 2006-08-25 15:51:14 C:\WINDOWS\$hf_mig$\KB923191\SP2QFE\comctl32.dll
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\$hf_mig$\KB923191\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\$hf_mig$\KB923191\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$hf_mig$\KB923191\update\updspapi.dll
-c--a-w 6,638 2007-10-11 15:08:33 C:\WINDOWS\$NtUninstallKB810217$\spuninst\spuninst.bat
-c----w 101,888 2003-08-01 19:15:00 C:\WINDOWS\$NtUninstallKB810217$\spuninst\spuninst.exe
-c----w 34,304 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB828035$\msgsvc.dll
-c----w 120,832 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB828035$\wkssvc.dll
-c----w 141,824 2003-10-14 06:50:19 C:\WINDOWS\$NtUninstallKB828035$\spuninst\spuninst.exe
-c----w 141,824 2004-01-10 05:11:16 C:\WINDOWS\$NtUninstallKB833987$\spuninst\spuninst.exe
-c----w 228,864 2002-08-29 09:45:06 C:\WINDOWS\$NtUninstallKB835409$\srrstr.dll
-c----w 216,800 2005-10-12 23:18:45 C:\WINDOWS\$NtUninstallKB835409$\spuninst\spuninst.exe
-c----w 394,976 2005-10-12 23:18:49 C:\WINDOWS\$NtUninstallKB835409$\spuninst\updspapi.dll
-c----w 557,128 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB837001$\dao360.dll
-c----w 380,445 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB837001$\expsrv.dll
-c----w 512,031 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB837001$\msexch40.dll
-c----w 319,519 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB837001$\msexcl40.dll
-c----w 1,503,262 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB837001$\msjet40.dll
-c----w 348,195 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB837001$\msjetol1.dll
-c----w 348,195 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB837001$\msjetoledb40.dll
-c----w 184,592 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB837001$\msjint40.dll
-c----w 53,322 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB837001$\msjter40.dll
-c----w 241,695 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB837001$\msjtes40.dll
-c----w 213,023 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB837001$\msltus40.dll
-c----w 348,191 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB837001$\mspbde40.dll
-c----w 421,919 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB837001$\msrd2x40.dll
-c----w 315,466 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB837001$\msrd3x40.dll
-c----w 552,991 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB837001$\msrepl40.dll
-c----w 253,983 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB837001$\mstext40.dll
-c----w 831,562 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB837001$\mswdat10.dll
-c----w 614,672 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB837001$\mswstr10.dll
-c----w 344,095 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB837001$\msxbde40.dll
-c----w 30,992 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB837001$\vbajet32.dll
-c----w 159,744 2004-04-10 19:24:49 C:\WINDOWS\$NtUninstallKB837001$\spuninst\spuninst.exe
-c----w 141,824 2004-01-10 05:11:16 C:\WINDOWS\$NtUninstallKB839645$\spuninst\spuninst.exe
-c----w 784,896 2004-04-14 15:50:06 C:\WINDOWS\$NtUninstallKB840374$\helpctr.exe
-c----w 159,744 2004-04-10 10:24:50 C:\WINDOWS\$NtUninstallKB840374$\spuninst\spuninst.exe
-c----w 79,360 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB908519$\fontsub.dll
-c----w 198,656 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB908519$\t2embed.dll
-c----w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe
-c----w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$NtUninstallKB908519$\spuninst\updspapi.dll
-c----w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$NtUninstallKB908531$\spuninst\spuninst.exe
-c----w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$NtUninstallKB908531$\spuninst\updspapi.dll
-c----w 1,034,240 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB910437$\esent.dll
-c----w 216,800 2005-10-12 23:15:24 C:\WINDOWS\$NtUninstallKB910437$\spuninst\spuninst.exe
-c----w 394,976 2005-10-12 23:15:43 C:\WINDOWS\$NtUninstallKB910437$\spuninst\updspapi.dll
-c----w 131,072 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB911562$\msadco.dll
-c----w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$NtUninstallKB911562$\spuninst\spuninst.exe
-c----w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$NtUninstallKB911562$\spuninst\updspapi.dll
-c----w 260,608 2005-10-06 03:21:29 C:\WINDOWS\$NtUninstallKB912919$\gdi32.dll
-c----w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$NtUninstallKB912919$\spuninst\spuninst.exe
-c----w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$NtUninstallKB912919$\spuninst\updspapi.dll
-c----w 368,640 2005-07-26 04:38:28 C:\WINDOWS\$NtUninstallKB913580$\msdtcprx.dll
-c----w 973,824 2005-07-26 04:38:29 C:\WINDOWS\$NtUninstallKB913580$\msdtctm.dll
-c----w 150,528 2005-07-26 04:38:30 C:\WINDOWS\$NtUninstallKB913580$\msdtcuiu.dll
-c----w 64,512 2005-07-26 04:38:30 C:\WINDOWS\$NtUninstallKB913580$\mtxclu.dll
-c----w 83,456 2005-07-26 04:38:30 C:\WINDOWS\$NtUninstallKB913580$\mtxoci.dll
-c----w 11,776 2005-07-26 04:38:32 C:\WINDOWS\$NtUninstallKB913580$\xolehlp.dll
-c----w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe
-c----w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$NtUninstallKB913580$\spuninst\updspapi.dll
-c----w 59,392 2002-08-29 09:44:48 C:\WINDOWS\$NtUninstallKB914388$\6to4svc.dll
-c----w 100,352 2002-08-29 09:44:50 C:\WINDOWS\$NtUninstallKB914388$\dhcpcsvc.dll
-c----w 31,232 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB914388$\inetmib1.dll
-c----w 83,968 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB914388$\iphlpapi.dll
-c----w 74,240 2002-08-29 09:45:10 C:\WINDOWS\$NtUninstallKB914388$\ipv6.exe
-c----w 74,240 2002-08-29 09:45:10 C:\WINDOWS\$NtUninstallKB914388$\ipv6.exe.000
-c----w 139,264 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB914388$\ipv6mon.dll
-c----w 162,304 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB914388$\netsh.exe
-c----w 196,288 2002-08-28 23:37:54 C:\WINDOWS\$NtUninstallKB914388$\tcpip6.sys
-c----w 9,856 2002-08-29 10:17:04 C:\WINDOWS\$NtUninstallKB914388$\tunmp.sys
-c----w 75,264 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB914388$\ws2_32.dll
-c----w 13,312 2002-08-29 09:45:08 C:\WINDOWS\$NtUninstallKB914388$\wship6.dll
-c----w 185,344 2004-06-30 15:00:00 C:\WINDOWS\$NtUninstallKB914388$\xpob2res.dll
-c----w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$NtUninstallKB914388$\spuninst\spuninst.exe
-c----w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$NtUninstallKB914388$\spuninst\updspapi.dll
-c----w 90,624 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB914389$\cscdll.dll
-c----w 392,576 2002-11-18 09:27:40 C:\WINDOWS\$NtUninstallKB914389$\mrxsmb.sys
-c----w 163,328 2002-08-28 23:58:50 C:\WINDOWS\$NtUninstallKB914389$\rdbss.sys
-c----w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe
-c----w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$NtUninstallKB914389$\spuninst\updspapi.dll
-c----w 593,948 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB917344$\jscript.dll
-c----w 216,800 2005-10-12 23:18:45 C:\WINDOWS\$NtUninstallKB917344$\spuninst\spuninst.exe
-c----w 394,976 2005-10-12 23:18:49 C:\WINDOWS\$NtUninstallKB917344$\spuninst\updspapi.dll
-c----w 332,928 2002-08-28 23:58:12 C:\WINDOWS\$NtUninstallKB917953$\tcpip.sys
-c----w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe
-c----w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$NtUninstallKB917953$\spuninst\updspapi.dll
-c----w 139,264 2002-08-29 09:44:50 C:\WINDOWS\$NtUninstallKB920683$\dnsapi.dll
-c----w 6,144 2001-08-28 12:00:00 C:\WINDOWS\$NtUninstallKB920683$\rasadhlp.dll
-c----w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$NtUninstallKB920683$\spuninst\spuninst.exe
-c----w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$NtUninstallKB920683$\spuninst\updspapi.dll
-c----w 309,248 2002-08-29 09:44:52 C:\WINDOWS\$NtUninstallKB921883$\netapi32.dll
-c----w 216,800 2005-10-12 23:18:45 C:\WINDOWS\$NtUninstallKB921883$\spuninst\spuninst.exe
-c----w 394,976 2005-10-12 23:18:49 C:\WINDOWS\$NtUninstallKB921883$\spuninst\updspapi.dll
-c----w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$NtUninstallKB922616$\spuninst\spuninst.exe
-c----w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$NtUninstallKB922616$\spuninst\updspapi.dll
-c----w 557,056 2002-08-29 09:44:50 C:\WINDOWS\$NtUninstallKB923191$\comctl32.dll
-c----w 613,888 2006-07-13 08:51:13 C:\WINDOWS\$NtUninstallKB923191$\xpsp2res.dll
-c----w 216,800 2005-10-12 23:15:26 C:\WINDOWS\$NtUninstallKB923191$\spuninst\spuninst.exe
-c----w 394,976 2005-10-12 23:15:45 C:\WINDOWS\$NtUninstallKB923191$\spuninst\updspapi.dll
-c----w 101,888 2003-08-02 04:14:59 C:\WINDOWS\$NtUninstallQ329441$\spuninst\spuninst.exe
-c----w 37,888 2003-01-10 12:44:32 C:\WINDOWS\$NtUninstallQ810565$\hhsetup.dll
-c----w 88,064 2002-11-14 08:04:56 C:\WINDOWS\$NtUninstallQ810565$\spuninst\spuninst.exe
-c----w 88,064 2002-11-14 08:04:56 C:\WINDOWS\$NtUninstallQ810833$\spuninst\spuninst.exe
-c----w 263,680 2002-12-17 11:32:18 C:\WINDOWS\$NtUninstallQ814033$\spuninst\spuninst.exe
----a-w 433,152 2006-05-05 09:31:04 C:\WINDOWS\Driver Cache\i386\mrxsmb.sys
------w 11,776 2006-05-19 08:44:15 C:\WINDOWS\Driver Cache\i386\tunmp.sys
----a-w 178,176 2007-03-13 08:57:10 C:\WINDOWS\erdnt\subs\ERDNT.EXE
-c--a-w 880,640 2003-02-21 08:20:38 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\vbc.exe
-c--a-w 335,872 2002-08-29 09:45:14 C:\WINDOWS\RegisteredPackages\{3FDF25EE-E592-4495-8391-6E9C504DAC2B}$BACKUP$\System\setup_wm.exe
-c--a-w 630,784 2002-08-29 09:45:16 C:\WINDOWS\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmplayer.exe
-c--a-w 188,416 2005-04-27 13:09:02 C:\WINDOWS\Resources\ScreenSavers\Flocks.scr
----a-w 15,072 2005-10-12 23:15:23 C:\WINDOWS\SoftwareDistribution\Download\08d0a20cdcff767d3668ec361fefcdfa\spmsg.dll
----a-w 216,800 2005-10-12 23:15:24 C:\WINDOWS\SoftwareDistribution\Download\08d0a20cdcff767d3668ec361fefcdfa\spuninst.exe
----a-w 1,006,592 2005-10-20 22:34:04 C:\WINDOWS\SoftwareDistribution\Download\08d0a20cdcff767d3668ec361fefcdfa\sp1qfe\esent.dll
----a-w 1,097,728 2005-10-20 22:25:53 C:\WINDOWS\SoftwareDistribution\Download\08d0a20cdcff767d3668ec361fefcdfa\sp2gdr\esent.dll
----a-w 1,097,728 2005-10-20 22:32:17 C:\WINDOWS\SoftwareDistribution\Download\08d0a20cdcff767d3668ec361fefcdfa\sp2qfe\esent.dll
----a-w 22,752 2005-10-12 23:15:23 C:\WINDOWS\SoftwareDistribution\Download\08d0a20cdcff767d3668ec361fefcdfa\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:26 C:\WINDOWS\SoftwareDistribution\Download\08d0a20cdcff767d3668ec361fefcdfa\update\update.exe
----a-w 394,976 2005-10-12 23:15:43 C:\WINDOWS\SoftwareDistribution\Download\08d0a20cdcff767d3668ec361fefcdfa\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\2c6d52ba0f80dbc95d02e87e35b2f6c6\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\SoftwareDistribution\Download\2c6d52ba0f80dbc95d02e87e35b2f6c6\spuninst.exe
----a-w 135,168 2006-03-23 06:06:15 C:\WINDOWS\SoftwareDistribution\Download\2c6d52ba0f80dbc95d02e87e35b2f6c6\sp1qfe\msadco.dll
----a-w 143,360 2006-03-23 05:46:11 C:\WINDOWS\SoftwareDistribution\Download\2c6d52ba0f80dbc95d02e87e35b2f6c6\sp2gdr\msadco.dll
----a-w 143,360 2006-03-23 05:53:24 C:\WINDOWS\SoftwareDistribution\Download\2c6d52ba0f80dbc95d02e87e35b2f6c6\sp2qfe\msadco.dll
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\2c6d52ba0f80dbc95d02e87e35b2f6c6\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\SoftwareDistribution\Download\2c6d52ba0f80dbc95d02e87e35b2f6c6\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\SoftwareDistribution\Download\2c6d52ba0f80dbc95d02e87e35b2f6c6\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\2ddd87bec6ea0d3870758aca072e3e8a\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\SoftwareDistribution\Download\2ddd87bec6ea0d3870758aca072e3e8a\spuninst.exe
----a-w 77,824 2005-10-17 21:30:33 C:\WINDOWS\SoftwareDistribution\Download\2ddd87bec6ea0d3870758aca072e3e8a\sp1qfe\fontsub.dll
----a-w 111,616 2005-10-17 21:30:33 C:\WINDOWS\SoftwareDistribution\Download\2ddd87bec6ea0d3870758aca072e3e8a\sp1qfe\t2embed.dll
----a-w 80,896 2005-10-17 21:21:08 C:\WINDOWS\SoftwareDistribution\Download\2ddd87bec6ea0d3870758aca072e3e8a\sp2gdr\fontsub.dll
----a-w 118,272 2005-10-17 21:21:08 C:\WINDOWS\SoftwareDistribution\Download\2ddd87bec6ea0d3870758aca072e3e8a\sp2gdr\t2embed.dll
----a-w 80,896 2005-10-17 21:26:30 C:\WINDOWS\SoftwareDistribution\Download\2ddd87bec6ea0d3870758aca072e3e8a\sp2qfe\fontsub.dll
----a-w 117,760 2005-10-17 21:26:30 C:\WINDOWS\SoftwareDistribution\Download\2ddd87bec6ea0d3870758aca072e3e8a\sp2qfe\t2embed.dll
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\2ddd87bec6ea0d3870758aca072e3e8a\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\SoftwareDistribution\Download\2ddd87bec6ea0d3870758aca072e3e8a\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\SoftwareDistribution\Download\2ddd87bec6ea0d3870758aca072e3e8a\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\3b9bbc7d361970b826a6eb88174757a3\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\SoftwareDistribution\Download\3b9bbc7d361970b826a6eb88174757a3\spuninst.exe
----a-w 561,664 2006-08-25 15:54:04 C:\WINDOWS\SoftwareDistribution\Download\3b9bbc7d361970b826a6eb88174757a3\sp1qfe\comctl32.dll
----a-w 613,888 2006-08-25 09:14:54 C:\WINDOWS\SoftwareDistribution\Download\3b9bbc7d361970b826a6eb88174757a3\sp1qfe\sprt040c.dll
----a-w 925,184 2006-08-25 15:54:02 C:\WINDOWS\SoftwareDistribution\Download\3b9bbc7d361970b826a6eb88174757a3\sp1qfe\asms\60\msft\windows\common\controls\comctl32.dll
----a-w 617,472 2006-08-25 15:51:14 C:\WINDOWS\SoftwareDistribution\Download\3b9bbc7d361970b826a6eb88174757a3\sp2qfe\comctl32.dll
----a-w 1,054,208 2006-08-25 15:51:12 C:\WINDOWS\SoftwareDistribution\Download\3b9bbc7d361970b826a6eb88174757a3\sp2qfe\asms\60\msft\windows\common\controls\comctl32.dll
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\3b9bbc7d361970b826a6eb88174757a3\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\SoftwareDistribution\Download\3b9bbc7d361970b826a6eb88174757a3\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\SoftwareDistribution\Download\3b9bbc7d361970b826a6eb88174757a3\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\40a97f6c0856bba0c9f3849f8b3ef44f\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\SoftwareDistribution\Download\40a97f6c0856bba0c9f3849f8b3ef44f\spuninst.exe
----a-w 93,184 2004-10-28 01:31:14 C:\WINDOWS\SoftwareDistribution\Download\40a97f6c0856bba0c9f3849f8b3ef44f\sp1qfe\cscdll.dll
----a-w 433,152 2006-05-05 09:31:04 C:\WINDOWS\SoftwareDistribution\Download\40a97f6c0856bba0c9f3849f8b3ef44f\sp1qfe\mrxsmb.sys
----a-w 166,656 2006-05-05 09:40:31 C:\WINDOWS\SoftwareDistribution\Download\40a97f6c0856bba0c9f3849f8b3ef44f\sp1qfe\rdbss.sys
----a-w 453,120 2006-05-05 09:41:45 C:\WINDOWS\SoftwareDistribution\Download\40a97f6c0856bba0c9f3849f8b3ef44f\sp2gdr\mrxsmb.sys
----a-w 174,592 2006-05-05 09:47:57 C:\WINDOWS\SoftwareDistribution\Download\40a97f6c0856bba0c9f3849f8b3ef44f\sp2gdr\rdbss.sys
----a-w 454,400 2006-05-05 10:16:39 C:\WINDOWS\SoftwareDistribution\Download\40a97f6c0856bba0c9f3849f8b3ef44f\sp2qfe\mrxsmb.sys
----a-w 174,592 2006-05-05 10:22:52 C:\WINDOWS\SoftwareDistribution\Download\40a97f6c0856bba0c9f3849f8b3ef44f\sp2qfe\rdbss.sys
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\40a97f6c0856bba0c9f3849f8b3ef44f\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\SoftwareDistribution\Download\40a97f6c0856bba0c9f3849f8b3ef44f\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\SoftwareDistribution\Download\40a97f6c0856bba0c9f3849f8b3ef44f\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\507067b70cd6d949aad91fc738213e69\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\SoftwareDistribution\Download\507067b70cd6d949aad91fc738213e69\spuninst.exe
----a-w 340,480 2006-04-20 11:38:44 C:\WINDOWS\SoftwareDistribution\Download\507067b70cd6d949aad91fc738213e69\sp1qfe\tcpip.sys
----a-w 359,808 2006-04-20 11:51:50 C:\WINDOWS\SoftwareDistribution\Download\507067b70cd6d949aad91fc738213e69\sp2gdr\tcpip.sys
----a-w 360,576 2006-04-20 12:18:35 C:\WINDOWS\SoftwareDistribution\Download\507067b70cd6d949aad91fc738213e69\sp2qfe\tcpip.sys
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\507067b70cd6d949aad91fc738213e69\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\SoftwareDistribution\Download\507067b70cd6d949aad91fc738213e69\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\SoftwareDistribution\Download\507067b70cd6d949aad91fc738213e69\update\updspapi.dll
----a-w 15,072 2005-10-12 23:18:45 C:\WINDOWS\SoftwareDistribution\Download\551a37fe97d22cfc1a735a1ac3cad362\spmsg.dll
----a-w 216,800 2005-10-12 23:18:45 C:\WINDOWS\SoftwareDistribution\Download\551a37fe97d22cfc1a735a1ac3cad362\spuninst.exe
----a-w 321,536 2006-08-14 08:59:20 C:\WINDOWS\SoftwareDistribution\Download\551a37fe97d22cfc1a735a1ac3cad362\sp1qfe\srv.sys
----a-w 332,928 2006-08-14 10:34:41 C:\WINDOWS\SoftwareDistribution\Download\551a37fe97d22cfc1a735a1ac3cad362\sp2gdr\srv.sys
----a-w 332,928 2006-08-14 12:00:42 C:\WINDOWS\SoftwareDistribution\Download\551a37fe97d22cfc1a735a1ac3cad362\sp2qfe\srv.sys
----a-w 22,752 2005-10-12 23:18:45 C:\WINDOWS\SoftwareDistribution\Download\551a37fe97d22cfc1a735a1ac3cad362\update\spcustom.dll
----a-w 727,776 2005-10-12 23:18:46 C:\WINDOWS\SoftwareDistribution\Download\551a37fe97d22cfc1a735a1ac3cad362\update\update.exe
----a-w 394,976 2005-10-12 23:18:49 C:\WINDOWS\SoftwareDistribution\Download\551a37fe97d22cfc1a735a1ac3cad362\update\updspapi.dll
----a-w 15,072 2005-10-12 23:18:45 C:\WINDOWS\SoftwareDistribution\Download\57b73c1d468af127bec1550cd5016b8e\spmsg.dll
----a-w 216,800 2005-10-12 23:18:45 C:\WINDOWS\SoftwareDistribution\Download\57b73c1d468af127bec1550cd5016b8e\spuninst.exe
----a-w 229,376 2005-10-27 19:07:56 C:\WINDOWS\SoftwareDistribution\Download\57b73c1d468af127bec1550cd5016b8e\sp1qfe\srrstr.dll
----a-w 22,752 2005-10-12 23:18:45 C:\WINDOWS\SoftwareDistribution\Download\57b73c1d468af127bec1550cd5016b8e\update\spcustom.dll
----a-w 727,776 2005-10-12 23:18:46 C:\WINDOWS\SoftwareDistribution\Download\57b73c1d468af127bec1550cd5016b8e\update\update.exe
----a-w 394,976 2005-10-12 23:18:49 C:\WINDOWS\SoftwareDistribution\Download\57b73c1d468af127bec1550cd5016b8e\update\updspapi.dll
-c--a-w 173,568 2004-08-19 23:09:51 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\asr_fmt.exe
-c--a-w 143,360 2004-08-19 23:09:51 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\clipsrv.exe
-c--a-w 119,296 2004-08-19 23:09:51 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\comrepl.exe
-c--a-w 241,664 2004-08-19 23:09:51 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\cscript.exe
-c--a-w 193,024 2004-08-19 23:09:51 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\dpvsetup.exe
----a-w 1,178,624 2004-08-19 23:09:53 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\explorer.exe
-c--a-w 124,688 2004-08-19 23:09:54 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\fp98sadm.exe
-c--a-w 120,320 2004-08-19 23:09:54 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\hh.exe
-c--a-w 360,960 2004-08-19 23:09:54 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\icwconn1.exe
-c--a-w 195,072 2004-08-19 23:09:54 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\makecab.exe
-c--a-w 286,720 2004-08-19 23:09:56 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\mobsync.exe
-c--a-w 234,496 2004-08-19 23:09:58 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\mplay32.exe
-c--a-w 303,616 2004-08-19 23:09:58 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\msconfig.exe
-c--a-w 1,777,152 2004-08-19 23:09:59 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\msmsgs.exe
-c--a-w 198,144 2004-08-19 23:09:59 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\netsh.exe
-c--a-w 530,432 2004-08-19 23:09:59 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ntvdm.exe
-c--a-w 166,912 2004-08-19 23:10:02 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\rasphone.exe
-c--a-w 139,264 2004-07-20 01:54:15 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\regasm.exe
-c--a-w 295,424 2004-08-19 23:10:02 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\regedit.exe
-c--a-w 494,080 2004-08-19 23:10:02 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\rstrui.exe
-c--a-w 168,960 2004-08-19 23:10:02 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\skeys.exe
-c--a-w 128,512 2004-08-19 23:10:07 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ssmyst.scr
-c--a-w 176,193 2004-08-19 23:10:03 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\stub_fpsrvwin.exe
-c--a-w 176,187 2004-08-19 23:10:03 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\tcptest.exe
-c--a-w 187,392 2004-08-19 22:52:05 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\tscupgrd.exe
-c--a-w 319,488 2004-08-19 23:10:03 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\unregmp2.exe
-c--a-w 229,376 2004-08-19 23:10:04 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wbemtest.exe
-c--a-w 615,936 2004-08-19 23:10:04 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\winlogon.exe
-c--a-w 236,032 2004-08-19 23:10:04 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wmiapsrv.exe
-c--a-w 114,688 2004-08-19 14:09:56 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\update\fixccs.exe
-c--a-w 149,504 2004-08-19 14:10:00 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\update\nv4prep.exe
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\7328bb12a28c2abd8207c95c11745fb3\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\SoftwareDistribution\Download\7328bb12a28c2abd8207c95c11745fb3\spuninst.exe
----a-w 1,027,584 2006-09-04 06:24:39 C:\WINDOWS\SoftwareDistribution\Download\7328bb12a28c2abd8207c95c11745fb3\sp1qfe\browseui.dll
----a-w 1,351,680 2006-09-04 06:24:39 C:\WINDOWS\SoftwareDistribution\Download\7328bb12a28c2abd8207c95c11745fb3\sp1qfe\shdocvw.dll
----a-w 1,494,528 2006-09-04 06:12:53 C:\WINDOWS\SoftwareDistribution\Download\7328bb12a28c2abd8207c95c11745fb3\sp2gdr\shdocvw.dll
----a-w 1,497,088 2006-09-04 06:14:50 C:\WINDOWS\SoftwareDistribution\Download\7328bb12a28c2abd8207c95c11745fb3\sp2qfe\shdocvw.dll
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\7328bb12a28c2abd8207c95c11745fb3\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\SoftwareDistribution\Download\7328bb12a28c2abd8207c95c11745fb3\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\SoftwareDistribution\Download\7328bb12a28c2abd8207c95c11745fb3\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:23 C:\WINDOWS\SoftwareDistribution\Download\87c99317ba6ad2b75fba4ba419f26eab\spmsg.dll
----a-w 216,800 2005-10-12 23:15:24 C:\WINDOWS\SoftwareDistribution\Download\87c99317ba6ad2b75fba4ba419f26eab\spuninst.exe
----a-w 22,752 2005-10-12 23:15:23 C:\WINDOWS\SoftwareDistribution\Download\87c99317ba6ad2b75fba4ba419f26eab\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:26 C:\WINDOWS\SoftwareDistribution\Download\87c99317ba6ad2b75fba4ba419f26eab\update\update.exe
----a-w 394,976 2005-10-12 23:15:43 C:\WINDOWS\SoftwareDistribution\Download\87c99317ba6ad2b75fba4ba419f26eab\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\8856aa14afb203f3b064d549ad24677e\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\SoftwareDistribution\Download\8856aa14afb203f3b064d549ad24677e\spuninst.exe
----a-w 260,608 2006-01-02 22:39:04 C:\WINDOWS\SoftwareDistribution\Download\8856aa14afb203f3b064d549ad24677e\sp1qfe\gdi32.dll
----a-w 280,064 2005-12-29 02:56:04 C:\WINDOWS\SoftwareDistribution\Download\8856aa14afb203f3b064d549ad24677e\sp2gdr\gdi32.dll
----a-w 280,064 2005-12-29 03:08:43 C:\WINDOWS\SoftwareDistribution\Download\8856aa14afb203f3b064d549ad24677e\sp2qfe\gdi32.dll
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\8856aa14afb203f3b064d549ad24677e\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\SoftwareDistribution\Download\8856aa14afb203f3b064d549ad24677e\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\SoftwareDistribution\Download\8856aa14afb203f3b064d549ad24677e\update\updspapi.dll
----a-w 8,192 2004-07-20 22:03:03 C:\WINDOWS\SoftwareDistribution\Download\9028e61a10a1d0dd5d6f94f91cb84f91\spmsg.dll
----a-w 172,032 2004-09-19 20:22:09 C:\WINDOWS\SoftwareDistribution\Download\9028e61a10a1d0dd5d6f94f91cb84f91\spuninst.exe
----a-w 30,720 2004-09-19 05:31:50 C:\WINDOWS\SoftwareDistribution\Download\9028e61a10a1d0dd5d6f94f91cb84f91\rtmqfe\xpsp1hfm.exe
----a-w 21,504 2004-09-19 20:22:08 C:\WINDOWS\SoftwareDistribution\Download\9028e61a10a1d0dd5d6f94f91cb84f91\update\spcustom.dll
----a-w 666,112 2004-07-20 22:03:03 C:\WINDOWS\SoftwareDistribution\Download\9028e61a10a1d0dd5d6f94f91cb84f91\update\update.exe
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\90e71ccf083d4636c615101d20c96448\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\SoftwareDistribution\Download\90e71ccf083d4636c615101d20c96448\spuninst.exe
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\90e71ccf083d4636c615101d20c96448\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\SoftwareDistribution\Download\90e71ccf083d4636c615101d20c96448\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\SoftwareDistribution\Download\90e71ccf083d4636c615101d20c96448\update\updspapi.dll
----a-w 15,072 2005-10-12 23:18:45 C:\WINDOWS\SoftwareDistribution\Download\9e4b335e3070524b6d5466da3c0c52ee\spmsg.dll
----a-w 216,800 2005-10-12 23:18:45 C:\WINDOWS\SoftwareDistribution\Download\9e4b335e3070524b6d5466da3c0c52ee\spuninst.exe
----a-w 458,752 2006-05-18 06:16:58 C:\WINDOWS\SoftwareDistribution\Download\9e4b335e3070524b6d5466da3c0c52ee\sp1qfe\jscript.dll
----a-w 450,560 2006-05-18 05:31:21 C:\WINDOWS\SoftwareDistribution\Download\9e4b335e3070524b6d5466da3c0c52ee\sp2gdr\jscript.dll
----a-w 450,560 2006-05-18 05:49:55 C:\WINDOWS\SoftwareDistribution\Download\9e4b335e3070524b6d5466da3c0c52ee\sp2qfe\jscript.dll
----a-w 22,752 2005-10-12 23:18:45 C:\WINDOWS\SoftwareDistribution\Download\9e4b335e3070524b6d5466da3c0c52ee\update\spcustom.dll
----a-w 727,776 2005-10-12 23:18:46 C:\WINDOWS\SoftwareDistribution\Download\9e4b335e3070524b6d5466da3c0c52ee\update\update.exe
----a-w 394,976 2005-10-12 23:18:49 C:\WINDOWS\SoftwareDistribution\Download\9e4b335e3070524b6d5466da3c0c52ee\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\a124f301bc107cfa919de4d98c0ac25b\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\SoftwareDistribution\Download\a124f301bc107cfa919de4d98c0ac25b\spuninst.exe
----a-w 36,864 2006-03-17 00:49:30 C:\WINDOWS\SoftwareDistribution\Download\a124f301bc107cfa919de4d98c0ac25b\sp1qfe\verclsid.exe
----a-w 925,184 2006-03-17 05:04:56 C:\WINDOWS\SoftwareDistribution\Download\a124f301bc107cfa919de4d98c0ac25b\sp1qfe\asms\60\msft\windows\common\controls\comctl32.dll
----a-w 8,508,416 2006-03-17 04:07:40 C:\WINDOWS\SoftwareDistribution\Download\a124f301bc107cfa919de4d98c0ac25b\sp2gdr\shell32.dll
----a-w 39,936 2006-03-17 00:38:01 C:\WINDOWS\SoftwareDistribution\Download\a124f301bc107cfa919de4d98c0ac25b\sp2gdr\verclsid.exe
----a-w 8,510,976 2006-03-17 04:49:25 C:\WINDOWS\SoftwareDistribution\Download\a124f301bc107cfa919de4d98c0ac25b\sp2qfe\shell32.dll
----a-w 25,088 2006-03-22 01:51:44 C:\WINDOWS\SoftwareDistribution\Download\a124f301bc107cfa919de4d98c0ac25b\sp2qfe\spru040c.dll
----a-w 39,936 2006-03-17 01:05:35 C:\WINDOWS\SoftwareDistribution\Download\a124f301bc107cfa919de4d98c0ac25b\sp2qfe\verclsid.exe
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\a124f301bc107cfa919de4d98c0ac25b\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\SoftwareDistribution\Download\a124f301bc107cfa919de4d98c0ac25b\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\SoftwareDistribution\Download\a124f301bc107cfa919de4d98c0ac25b\update\updspapi.dll
----a-w 15,072 2005-10-12 23:18:45 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\spmsg.dll
----a-w 216,800 2005-10-12 23:18:45 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\spuninst.exe
----a-w 95,232 2006-08-16 12:16:05 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\sp1qfe\6to4svc.dll
----a-w 31,232 2006-08-16 12:16:05 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\sp1qfe\inetmib1.dll
----a-w 84,480 2006-08-16 12:16:05 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\sp1qfe\iphlpapi.dll
----a-w 49,152 2006-08-16 12:12:34 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\sp1qfe\ipv6.exe
----a-w 54,272 2006-08-16 12:16:05 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\sp1qfe\ipv6mon.dll
----a-w 86,016 2006-08-16 12:12:31 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\sp1qfe\netsh.exe
----a-w 185,856 2006-08-16 09:42:46 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\sp1qfe\obrs040c.dll
----a-w 205,120 2006-08-16 09:28:57 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\sp1qfe\tcpip6.sys
----a-w 11,776 2006-08-16 09:27:12 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\sp1qfe\tunmp.sys
----a-w 70,656 2006-08-16 12:16:05 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\sp1qfe\ws2_32.dll
----a-w 13,312 2006-08-16 12:16:05 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\sp1qfe\wship6.dll
----a-w 100,352 2006-08-16 11:59:27 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\sp2gdr\6to4svc.dll
----a-w 225,664 2006-08-16 09:37:30 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\sp2gdr\tcpip6.sys
----a-w 100,352 2006-08-16 12:13:24 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\sp2qfe\6to4svc.dll
----a-w 225,664 2006-08-16 10:13:39 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\sp2qfe\tcpip6.sys
----a-w 22,752 2005-10-12 23:18:45 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\update\spcustom.dll
----a-w 727,776 2005-10-12 23:18:46 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\update\update.exe
----a-w 394,976 2005-10-12 23:18:49 C:\WINDOWS\SoftwareDistribution\Download\b3d62539e3338b3e6aca7b80247f201f\update\updspapi.dll
----a-w 15,072 2005-10-12 23:18:45 C:\WINDOWS\SoftwareDistribution\Download\bc24e464c7b59ee6bebeb19a20199d5d\spmsg.dll
----a-w 216,800 2005-10-12 23:18:45 C:\WINDOWS\SoftwareDistribution\Download\bc24e464c7b59ee6bebeb19a20199d5d\spuninst.exe
----a-w 307,200 2006-07-14 15:56:54 C:\WINDOWS\SoftwareDistribution\Download\bc24e464c7b59ee6bebeb19a20199d5d\sp1qfe\netapi32.dll
----a-w 332,288 2006-07-14 15:41:05 C:\WINDOWS\SoftwareDistribution\Download\bc24e464c7b59ee6bebeb19a20199d5d\sp2gdr\netapi32.dll
----a-w 336,896 2006-07-14 15:42:01 C:\WINDOWS\SoftwareDistribution\Download\bc24e464c7b59ee6bebeb19a20199d5d\sp2qfe\netapi32.dll
----a-w 22,752 2005-10-12 23:18:45 C:\WINDOWS\SoftwareDistribution\Download\bc24e464c7b59ee6bebeb19a20199d5d\update\spcustom.dll
----a-w 727,776 2005-10-12 23:18:46 C:\WINDOWS\SoftwareDistribution\Download\bc24e464c7b59ee6bebeb19a20199d5d\update\update.exe
----a-w 394,976 2005-10-12 23:18:49 C:\WINDOWS\SoftwareDistribution\Download\bc24e464c7b59ee6bebeb19a20199d5d\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\spuninst.exe
----a-w 95,232 2006-05-19 12:14:13 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp1qfe\6to4svc.dll
----a-w 104,448 2006-05-19 12:14:13 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp1qfe\dhcpcsvc.dll
----a-w 140,288 2006-05-19 12:14:13 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp1qfe\dnsapi.dll
----a-w 31,232 2006-05-19 12:14:13 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp1qfe\inetmib1.dll
----a-w 84,480 2006-05-19 12:14:13 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp1qfe\iphlpapi.dll
----a-w 60,416 2006-05-19 12:02:50 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp1qfe\ipv6.exe
----a-w 54,272 2006-05-19 12:14:14 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp1qfe\ipv6mon.dll
----a-w 163,328 2006-05-19 12:01:26 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp1qfe\netsh.exe
----a-w 185,856 2006-05-19 08:51:32 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp1qfe\obrs040c.dll
----a-w 203,008 2006-05-19 08:46:02 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp1qfe\tcpip6.sys
----a-w 11,776 2006-05-19 08:44:15 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp1qfe\tunmp.sys
----a-w 70,656 2006-05-19 12:14:14 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp1qfe\ws2_32.dll
----a-w 13,312 2006-05-19 12:14:14 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp1qfe\wship6.dll
----a-w 112,128 2006-05-19 13:23:35 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp2gdr\dhcpcsvc.dll
----a-w 148,480 2006-05-19 13:23:35 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp2gdr\dnsapi.dll
----a-w 95,744 2006-05-19 13:23:35 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp2gdr\iphlpapi.dll
----a-w 112,640 2006-05-19 14:16:50 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp2qfe\dhcpcsvc.dll
----a-w 147,456 2006-05-19 14:16:51 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp2qfe\dnsapi.dll
----a-w 95,744 2006-05-19 14:16:51 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\sp2qfe\iphlpapi.dll
----a-w 22,752 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\update\spcustom.dll
----a-w 727,776 2005-10-12 23:15:28 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\update\update.exe
----a-w 394,976 2005-10-12 23:15:45 C:\WINDOWS\SoftwareDistribution\Download\be96031e349de0228a58a3a562a48caf\update\updspapi.dll
----a-w 15,072 2005-10-12 23:15:25 C:\WINDOWS\SoftwareDistribution\Download\c9781664ee26c3812b79c248accba913\spmsg.dll
----a-w 216,800 2005-10-12 23:15:26 C:\WINDOWS\SoftwareDistribution\Download\c9781664ee26c3812b79c248accba913\spuninst.exe
----a-w 140,288 2006-06-26 17:48:42 C:\WINDOWS\SoftwareDistribution\Download\c9781664ee26c3812b79c248accba913\sp1qfe\dnsapi.dll
----a-w 6,144 2006-06-26 17:48:42 C:\WINDOWS\SoftwareDistribution\Download\c9781664ee26c3812b79c248accba913\sp1qfe\ras
0

Discussions similaires

Google Chrome "  Échec de l'analyse antivirus "
jmpower -
RBmoon -

18 réponses
Huawei P8 Lite "nouveau tag ajouté"
ArianeKathleen -
Mn -

25 réponses
Nouveau tag ajouté - Utilité
Eerfers -
madmyke -

1 réponse
" Échec de l'analyse antivirus " la solution.
bazfile -
bazfile -

0 réponse
Page qui s’ouvre toute seule
Dolphie -
Manon -

5 réponses