Sujet Précédent Sujet Suivant

Virus dance dec.jpg

Fermé
clem - 19 nov. 2007 à 09:41
 jlpjlp - 19 nov. 2007 à 19:24
Bonjour,
j'ai attrapé le virus dance dec.jpg
j'ai suivi les conseils que j'ai trouvé sur le forum
Je n'ai pas réussis à obtenir le rapport de msnfix, en revanche j'ai ce hisjackthis que voila
pouvez vous m'aider?


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:40:48, on 19/11/2007
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16546)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Spyware Doctor\SDTrayApp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Windows\System32\rundll32.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Users\Clément\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://runonce.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [PowerForPhone] C:\Program Files\PowerForPhone\PowerForPhone.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\Windows\System32\StkCSrv.exe

12 réponses

Réponse 1 / 12
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
19 nov. 2007 à 09:49
c'est effectivement msnfix qu'il te faut:

Télécharge MSNFix de Laurent
http://sosvirus.changelog.fr/MSNFix.zip

Décompresse-le et double clic sur le fichier MSNFix.bat.
- Exécute l'option R.
--Si l'infection est détectée, exécute l'option N
- Sauvegarde ce rapport puis fais un copier/coller de ce rapport sur le forum.

Note :
Si une erreur de suppression est détectée un message s'affichera demandant de redémarrer l'ordinateur afin de terminer les opérations. Dans ce cas il suffit de redémarrer l'ordinateur en mode normal
Sauvegarder et fermer le rapport pour que Windows termine de se lancer normalement.

----------------------

si tu ne peux pas colle un rapport sdfix

Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.
http://downloads.andymanchesta.com/RemovalTools/SDFix.exe
Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau. Redémarre ton ordinateur en mode sans échec en suivant la procédure que voici :
• Redémarre ton ordinateur
• Après avoir entendu l'ordinateur biper lors du démarrage, mais avant que l'icône Windows apparaisse, tapote la touche F8 (une pression par seconde).
• A la place du chargement normal de Windows, un menu avec différentes options devrait apparaître.
• Choisis la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée".
• Choisis ton compte.
Déroule la liste des instructions ci-dessous :
• Ouvre le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.bat pour lancer le script.
• Appuie sur Y pour commencer le processus de nettoyage.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Appuie sur une touche pour redémarrer le PC.
• Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
• Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum
0
Réponse 2 / 12
BikeXC13
19 nov. 2007 à 09:50
Moi aprés avoir téléchargé MSNFix,je l'ai excuté avec la touche R puis Q pour quitter ensuite j'ai cliqué sur tout les fichier qui avec MSNFix
et il faut pas oublier de supprimer le Dance_Dec qui est dans C:\Windows
0
Réponse 3 / 12
cindy
19 nov. 2007 à 09:51
Salut ,
A quoi va te servir le rapport msnfix?As-tu reussi a mettre le virus en quarantaine?
0
Réponse 4 / 12
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
19 nov. 2007 à 10:01
le rapport msnfix
permettra de voir si tout a été viré
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 12
clem
19 nov. 2007 à 11:11
j'ai de telecharger sdfix, puis suivis la procedure que tu m'as indiquée.
cependant dans le mode sans echec, quand je lance le fichier run this une fenetre bleue apparait puis disparait aussitot que dois je faire afin de le lancer réellement?
merci d'avance.
0
Réponse 6 / 12
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
19 nov. 2007 à 11:18
si tu ne peux le faire en mode sans échec lance le en mode normal
0
Réponse 7 / 12
clem
19 nov. 2007 à 11:33
voila le seul rapport que j'ai pu obtenir j'espere que c'est le bon
merci pour ta rapiditer de réponse

System Report
*************

Run on 19/11/2007 at 11:28

Microsoft Windows [version 6.0.6000]

Current user is not an administrator

Running Processes:

C:\Windows\system32\Dwm.exe [2088]
C:\Windows\Explorer.EXE [2116]
C:\Program Files\Windows Defender\MSASCui.exe [2288]
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2312]
C:\Windows\System32\rundll32.exe [2412]
C:\Windows\RtHDVCpl.exe [2444]
C:\Program Files\ASUS\ATK Media\DMedia.exe [2452]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2468]
C:\Program Files\Alwil Software\Avast4\ashDisp.exe [2488]
C:\Program Files\QuickTime\QTTask.exe [2496]
C:\Program Files\iTunes\iTunesHelper.exe [2504]
C:\Program Files\Spyware Doctor\SDTrayApp.exe [2512]
C:\Program Files\Windows Sidebar\sidebar.exe [2524]
C:\Windows\ehome\ehtray.exe [2532]
C:\Program Files\Skype\Phone\Skype.exe [2608]
C:\Program Files\Google\Google Updater\GoogleUpdater.exe [2648]
C:\Windows\ehome\ehmsas.exe [2708]
C:\Program Files\Skype\Plugin Manager\skypePM.exe [3072]
C:\Windows\system32\taskeng.exe [1248]
C:\Windows\system32\conime.exe [3776]


Files Created/Modified - 60 Days :


C:\

19 Nov 2007 11:15:16 2 146 721 792 A.SH. "C:\hiberfil.sys"
19 Nov 2007 11:15:14 2 460 647 424 A.SH. "C:\pagefile.sys"


C:\Windows\

19 Nov 2007 11:15:22 67 584 A.S.. "C:\Windows\bootstat.dat"
19 Nov 2007 11:15:22 67 584 A.S.. "C:\Windows\bootstat.dat"
19 Nov 2007 11:14:32 12 A.... "C:\Windows\bthservsdp.dat"
17 Nov 2007 16:30:04 559 764 A.... "C:\Windows\Dance_dec_jpg.zip"
3 Oct 2007 10:04:34 10 978 A.... "C:\Windows\DPINST.LOG"
15 Nov 2007 8:42:16 2 923 520 A.... "C:\Windows\explorer.exe"
4 Oct 2007 15:57:14 550 A.... "C:\Windows\mozver.dat"
3 Oct 2007 8:48:56 258 710 A.... "C:\Windows\msxml4-KB936181-enu.LOG"
10 Oct 2007 18:20:24 258 286 A.... "C:\Windows\msxml4-KB941833-enu.LOG"
2 Oct 2007 21:01:26 0 A.... "C:\Windows\nsreg.dat"
19 Nov 2007 11:03:30 248 592 A.... "C:\Windows\ntbtlog.txt"
10 Oct 2007 20:16:50 44 156 A.... "C:\Windows\PFRO.log"
8 Nov 2007 16:45:48 1 409 A.... "C:\Windows\QTFont.for"
8 Nov 2007 16:45:48 54 156 A..H. "C:\Windows\QTFont.qfn"
13 Nov 2007 18:06:42 600 A.... "C:\Windows\Rtcw.INI"
21 Oct 2007 17:19:20 47 347 A.... "C:\Windows\setupact.log"
2 Oct 2007 20:55:10 160 A.... "C:\Windows\SpywareDoctor505Installation.log"
19 Nov 2007 11:19:14 1 516 777 A.... "C:\Windows\WindowsUpdate.log"
3 Oct 2007 9:40:38 749 A..HR "C:\Windows\WindowsShell.Manifest"


C:\Windows\system\



C:\Windows\system32\



C:\Windows\system32\drivers\

15 Nov 2007 8:42:16 258 232 A.... "C:\Windows\System32\drivers\acpi.sys"
15 Nov 2007 8:42:16 28 344 A.... "C:\Windows\System32\drivers\battc.sys"
15 Nov 2007 8:42:16 14 208 A.... "C:\Windows\System32\drivers\CmBatt.sys"
15 Nov 2007 8:42:18 20 920 A.... "C:\Windows\System32\drivers\compbatt.sys"
3 Oct 2007 9:02:58 619 008 A.... "C:\Windows\System32\drivers\dxgkrnl.sys"
3 Oct 2007 8:52:00 53 760 A.... "C:\Windows\System32\drivers\hdaudbus.sys"
4 Oct 2007 17:10:52 41 288 A.... "C:\Windows\System32\drivers\ikfilesec.sys"
4 Oct 2007 17:10:54 62 280 A.... "C:\Windows\System32\drivers\iksysflt.sys"
4 Oct 2007 17:10:58 79 688 A.... "C:\Windows\System32\drivers\iksyssec.sys"
4 Oct 2007 17:11:00 29 000 A.... "C:\Windows\System32\drivers\kcom.sys"
3 Oct 2007 9:00:08 63 488 A.... "C:\Windows\System32\drivers\mpsdrv.sys"
3 Oct 2007 9:03:04 20 480 A.... "C:\Windows\System32\drivers\ndistapi.sys"
3 Oct 2007 9:03:04 48 640 A.... "C:\Windows\System32\drivers\ndproxy.sys"
3 Oct 2007 9:03:00 70 144 A.... "C:\Windows\System32\drivers\pacer.sys"
3 Oct 2007 9:00:08 15 360 A.... "C:\Windows\System32\drivers\TUNMP.SYS"
3 Oct 2007 9:00:08 23 040 A.... "C:\Windows\System32\drivers\tunnel.sys"
3 Oct 2007 9:03:02 61 952 A.... "C:\Windows\System32\drivers\wanarp.sys"


C:\Windows\system32\dllcache\



C:\Program Files\

5 Oct 2007 11:20:44 74 329 A.... "C:\Program Files\eMule\Uninstall.exe"
10 Oct 2007 18:18:38 250 368 A.... "C:\Program Files\Internet Explorer\ieinstal.exe"
10 Oct 2007 18:18:42 294 912 A.... "C:\Program Files\Internet Explorer\ieuser.exe"
10 Oct 2007 18:18:40 625 152 A.... "C:\Program Files\Internet Explorer\iexplore.exe"
2 Nov 2007 18:36:32 438 272 A.... "C:\Program Files\iTunes\CDDBControlApple.dll"
2 Nov 2007 18:36:32 643 072 A.... "C:\Program Files\iTunes\iPodUpdaterExt.dll"
2 Nov 2007 18:36:34 17 152 808 A.... "C:\Program Files\iTunes\iTunes.exe"
2 Nov 2007 18:36:42 132 392 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.dll"
2 Nov 2007 18:36:42 267 048 A.... "C:\Program Files\iTunes\iTunesHelper.exe"
2 Nov 2007 18:36:42 108 328 A.... "C:\Program Files\iTunes\iTunesAdmin.dll"
2 Nov 2007 18:36:44 170 496 A.... "C:\Program Files\iTunes\iTunesPhotoSupport.dll"
2 Nov 2007 18:36:44 232 960 A.... "C:\Program Files\iTunes\iTunesOutlookAddIn.dll"
9 Nov 2007 11:13:48 13 688 A.... "C:\Program Files\Mozilla Firefox\AccessibleMarshal.dll"
9 Nov 2007 11:14:08 7 649 128 A.... "C:\Program Files\Mozilla Firefox\firefox.exe"
9 Nov 2007 11:14:08 200 829 A.... "C:\Program Files\Mozilla Firefox\freebl3.dll"
9 Nov 2007 11:14:08 456 032 A.... "C:\Program Files\Mozilla Firefox\js3250.dll"
9 Nov 2007 11:14:08 161 128 A.... "C:\Program Files\Mozilla Firefox\nspr4.dll"
9 Nov 2007 11:14:08 378 208 A.... "C:\Program Files\Mozilla Firefox\nss3.dll"
9 Nov 2007 11:14:08 271 720 A.... "C:\Program Files\Mozilla Firefox\nssckbi.dll"
9 Nov 2007 11:14:08 34 160 A.... "C:\Program Files\Mozilla Firefox\plc4.dll"
9 Nov 2007 11:14:08 30 056 A.... "C:\Program Files\Mozilla Firefox\plds4.dll"
9 Nov 2007 11:14:08 111 968 A.... "C:\Program Files\Mozilla Firefox\smime3.dll"
9 Nov 2007 11:14:08 254 060 A.... "C:\Program Files\Mozilla Firefox\softokn3.dll"
9 Nov 2007 11:14:08 132 448 A.... "C:\Program Files\Mozilla Firefox\ssl3.dll"
9 Nov 2007 11:14:10 131 968 A.... "C:\Program Files\Mozilla Firefox\updater.exe"
9 Nov 2007 11:14:10 13 152 A.... "C:\Program Files\Mozilla Firefox\xpcom.dll"
9 Nov 2007 11:14:10 73 584 A.... "C:\Program Files\Mozilla Firefox\xpcom_compat.dll"
9 Nov 2007 11:14:10 421 736 A.... "C:\Program Files\Mozilla Firefox\xpcom_core.dll"
9 Nov 2007 11:14:10 73 072 A.... "C:\Program Files\Mozilla Firefox\xpicleanup.exe"
9 Nov 2007 11:14:10 12 136 A.... "C:\Program Files\Mozilla Firefox\xpistub.dll"
19 Oct 2007 20:16:06 483 328 A.... "C:\Program Files\QuickTime\PictureViewer.exe"
19 Oct 2007 20:17:02 618 496 A.... "C:\Program Files\QuickTime\QTInfo.exe"
19 Oct 2007 20:17:04 749 568 A.... "C:\Program Files\QuickTime\QTOControl.dll"
19 Oct 2007 20:17:04 684 032 A.... "C:\Program Files\QuickTime\QTOLibrary.dll"
19 Oct 2007 20:16:26 286 720 A.... "C:\Program Files\QuickTime\QTTask.exe"
19 Oct 2007 20:17:46 303 104 A.... "C:\Program Files\QuickTime\QTUIPanelControl.dll"
19 Oct 2007 20:17:52 6 948 144 A.... "C:\Program Files\QuickTime\QuickTimePlayer.exe"
19 Oct 2007 20:16:50 10 965 A.... "C:\Program Files\QuickTime\QuickTime Read Me.htm"
2 Oct 2007 16:27:18 233 800 A.... "C:\Program Files\Spyware Doctor\BH.dll"
2 Oct 2007 16:27:22 651 080 A.... "C:\Program Files\Spyware Doctor\cdialogs.dll"
2 Oct 2007 16:27:24 82 248 A.... "C:\Program Files\Spyware Doctor\commhlpr.dll"
2 Oct 2007 15:54:32 914 720 A.... "C:\Program Files\Spyware Doctor\commom.dll"
2 Oct 2007 16:26:52 27 464 A.... "C:\Program Files\Spyware Doctor\drvctl.exe"
2 Oct 2007 16:27:26 140 616 A.... "C:\Program Files\Spyware Doctor\filehlpr.dll"
4 Oct 2007 17:11:44 124 232 A.... "C:\Program Files\Spyware Doctor\ikdll.dll"
2 Oct 2007 16:27:36 139 080 A.... "C:\Program Files\Spyware Doctor\inethlpr.dll"
2 Oct 2007 16:27:46 169 288 A.... "C:\Program Files\Spyware Doctor\PCTWSC.dll"
2 Oct 2007 16:27:48 126 280 A.... "C:\Program Files\Spyware Doctor\PWindow.dll"
2 Oct 2007 16:27:50 108 360 A.... "C:\Program Files\Spyware Doctor\RegHelper.dll"
2 Oct 2007 16:27:52 117 064 A.... "C:\Program Files\Spyware Doctor\sdcore.dll"
2 Oct 2007 16:26:58 196 424 A.... "C:\Program Files\Spyware Doctor\sdinvoker.exe"
2 Oct 2007 16:27:00 601 928 A.... "C:\Program Files\Spyware Doctor\sdloader.exe"
2 Oct 2007 16:27:04 1 065 288 A.... "C:\Program Files\Spyware Doctor\SDTrayApp.exe"
2 Oct 2007 16:27:54 58 696 A.... "C:\Program Files\Spyware Doctor\sdwvhlp.dll"
2 Oct 2007 16:27:56 211 272 A.... "C:\Program Files\Spyware Doctor\SH.dll"
2 Oct 2007 16:27:58 143 176 A.... "C:\Program Files\Spyware Doctor\smumhook.dll"
4 Oct 2007 17:12:12 14 152 A.... "C:\Program Files\Spyware Doctor\sporder.dll"
2 Oct 2007 16:27:06 742 216 A.... "C:\Program Files\Spyware Doctor\svcntaux.exe"
2 Oct 2007 16:27:10 2 510 664 A.... "C:\Program Files\Spyware Doctor\swdoctor.exe"
2 Oct 2007 16:27:12 1 415 496 A.... "C:\Program Files\Spyware Doctor\swdsvc.exe"
2 Oct 2007 15:22:12 126 976 A.... "C:\Program Files\Spyware Doctor\SysAccess.dll"
15 Nov 2007 11:56:34 223 358 A.... "C:\Program Files\Spyware Doctor\unins000.dat"
15 Nov 2007 11:56:12 709 169 A.... "C:\Program Files\Spyware Doctor\unins000.exe"
2 Oct 2007 16:27:16 1 902 408 A.... "C:\Program Files\Spyware Doctor\Update.exe"
9 Nov 2007 12:11:28 219 952 A.... "C:\Program Files\uTorrent\uTorrent.exe"
10 Oct 2007 18:20:32 168 960 A.... "C:\Program Files\Windows Media Player\wmplayer.exe"
10 Oct 2007 18:20:32 107 520 A.... "C:\Program Files\Windows Media Player\wmpshare.exe"
3 Oct 2007 9:02:58 967 680 A.... "C:\Program Files\Windows Calendar\WinCal.exe"
18 Nov 2007 19:19:26 2 258 A.... "C:\Program Files\Commandos II\OUTPUT\PERFILES.DAT"
18 Nov 2007 19:19:26 2 258 A.... "C:\Program Files\Commandos II\OUTPUT\PERFILES.DAT"
2 Oct 2007 20:50:56 126 136 A.... "C:\Program Files\Google\Google Updater\GoogleUpdater.exe"
2 Oct 2007 20:51:06 68 856 A.... "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
27 Oct 2007 18:13:32 118 736 A.... "C:\Program Files\InstallShield Installation Information\{FD347316-609E-4149-983C-84B40338D38A}\setup.exe"
27 Oct 2007 18:13:34 380 928 A.... "C:\Program Files\InstallShield Installation Information\{FD347316-609E-4149-983C-84B40338D38A}\_setup.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\Internet Explorer\Plugins\npqtplugin5.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\Internet Explorer\Plugins\npqtplugin6.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\Internet Explorer\Plugins\npqtplugin7.dll"
8 Nov 2007 16:42:22 131 072 A.... "C:\Program Files\Internet Explorer\Plugins\npqtplugin.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\Internet Explorer\Plugins\npqtplugin2.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\Internet Explorer\Plugins\npqtplugin3.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\Internet Explorer\Plugins\npqtplugin4.dll"
2 Nov 2007 18:36:32 504 104 A.... "C:\Program Files\iPod\bin\iPodService.exe"
2 Nov 2007 18:36:44 129 536 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll"
2 Nov 2007 18:36:42 150 528 A.... "C:\Program Files\iTunes\iTunes.Resources\iTunes.dll"
2 Nov 2007 18:36:48 96 768 A.... "C:\Program Files\iTunes\iTunes.Resources\iTunesRegistry.dll"
2 Nov 2007 18:36:42 42 496 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll"
2 Nov 2007 18:36:28 69 632 A.... "C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll"
9 Nov 2007 11:13:50 66 408 A.... "C:\Program Files\Mozilla Firefox\components\jar50.dll"
9 Nov 2007 11:13:50 54 112 A.... "C:\Program Files\Mozilla Firefox\components\jsd3250.dll"
9 Nov 2007 11:13:50 34 688 A.... "C:\Program Files\Mozilla Firefox\components\myspell.dll"
9 Nov 2007 11:13:52 46 456 A.... "C:\Program Files\Mozilla Firefox\components\spellchk.dll"
9 Nov 2007 11:13:52 171 880 A.... "C:\Program Files\Mozilla Firefox\components\xpinstal.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll"
9 Nov 2007 11:14:08 22 400 A.... "C:\Program Files\Mozilla Firefox\plugins\npnul32.dll"
8 Nov 2007 16:42:22 131 072 A.... "C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll"
9 Nov 2007 11:14:10 451 608 A.... "C:\Program Files\Mozilla Firefox\uninstall\helper.exe"
19 Oct 2007 20:16:08 59 904 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\PictureViewer.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\QuickTime\Plugins\npqtplugin5.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\QuickTime\Plugins\npqtplugin6.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\QuickTime\Plugins\npqtplugin7.dll"
8 Nov 2007 16:42:22 131 072 A.... "C:\Program Files\QuickTime\Plugins\npqtplugin.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\QuickTime\Plugins\npqtplugin2.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\QuickTime\Plugins\npqtplugin3.dll"
8 Nov 2007 16:42:24 131 072 A.... "C:\Program Files\QuickTime\Plugins\npqtplugin4.dll"
19 Oct 2007 20:16:12 21 784 A.... "C:\Program Files\QuickTime\QTSystem\CFUniCharPropertyDatabase.data"
19 Oct 2007 20:16:14 37 376 A.... "C:\Program Files\QuickTime\QTSystem\ExportControllerPS.dll"
19 Oct 2007 20:16:14 106 496 A.... "C:\Program Files\QuickTime\QTSystem\ExportController.exe"
19 Oct 2007 20:16:14 120 320 A.... "C:\Program Files\QuickTime\QTSystem\Ir41_qc.dll"
19 Oct 2007 20:16:14 338 432 A.... "C:\Program Files\QuickTime\QTSystem\Ir41_qcx.dll"
19 Oct 2007 20:16:14 935 546 A.... "C:\Program Files\QuickTime\QTSystem\QTJava.zip"
19 Oct 2007 20:17:06 466 944 A.... "C:\Program Files\QuickTime\QTSystem\QTJavaNative.dll"
19 Oct 2007 20:16:14 659 456 A.... "C:\Program Files\QuickTime\QTSystem\QTJNative.dll"
19 Oct 2007 20:16:14 311 296 A.... "C:\Program Files\QuickTime\QTSystem\QTMLClient.dll"
19 Oct 2007 20:16:24 77 824 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeUpdateHelper.exe"
3 Oct 2007 9:37:52 0 A.... "C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat"
19 Nov 2007 11:15:26 391 216 A.... "C:\Program Files\Alwil Software\Avast4\DATA\clnr0.dll"
19 Nov 2007 11:15:26 284 728 A.... "C:\Program Files\Alwil Software\Avast4\DATA\dllcc0.dat"
19 Nov 2007 11:15:26 9 080 A.... "C:\Program Files\Alwil Software\Avast4\DATA\exts0.dll"
10 Oct 2007 21:35:44 70 766 A.... "C:\Program Files\Alwil Software\Avast4\DATA\iNews.htm"
10 Oct 2007 21:35:44 90 160 A.... "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll"
3 Oct 2007 9:37:52 0 A.... "C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat"
19 Nov 2007 11:15:26 391 216 A.... "C:\Program Files\Alwil Software\Avast4\DATA\clnr0.dll"
19 Nov 2007 11:15:26 284 728 A.... "C:\Program Files\Alwil Software\Avast4\DATA\dllcc0.dat"
19 Nov 2007 11:15:26 9 080 A.... "C:\Program Files\Alwil Software\Avast4\DATA\exts0.dll"
10 Oct 2007 21:35:44 70 766 A.... "C:\Program Files\Alwil Software\Avast4\DATA\iNews.htm"
10 Oct 2007 21:35:44 90 160 A.... "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll"
3 Oct 2007 8:49:00 765 952 A.... "C:\Program Files\Common Files\microsoft shared\vgx\VGX.dll"
3 Oct 2007 16:27:00 6 252 A.... "C:\Program Files\Common Files\Symantec Shared\CCPD-LC\ez_log.html"
3 Oct 2007 15:53:16 474 040 A.... "C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcrst.dll"
11 Nov 2007 11:59:26 112 A.... "C:\Program Files\Electronic Arts\D‚mo de Battlefield 2142\pb\pbns.dat"
11 Nov 2007 11:59:26 112 A.... "C:\Program Files\Electronic Arts\D‚mo de Battlefield 2142\pb\pbns.dat"
2 Oct 2007 20:51:02 138 680 A.... "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"
2 Oct 2007 20:50:56 912 384 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\ci.dll"
2 Oct 2007 20:50:56 136 192 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\cires_fr.dll"
2 Oct 2007 20:50:56 126 136 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\GoogleUpdaterRestartManager.exe"
2 Oct 2007 20:50:56 125 624 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\GoogleUpdaterSetup.exe"
2 Oct 2007 20:50:56 669 880 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\GoogleUpdaterInstallMgr.exe"
2 Oct 2007 20:50:56 187 064 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\GoogleUpdaterAdminPrefs.exe"
2 Oct 2007 20:50:56 83 968 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\npCIDetect11.dll"
2 Oct 2007 20:51:06 127 472 A.... "C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\gtn.dll"
2 Oct 2007 20:51:06 654 832 A.... "C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll"
2 Nov 2007 18:36:32 42 496 A.... "C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\da.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\de.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:44 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\en.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\es.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\fi.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\fr.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\it.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\ja.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\ko.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\nb.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\nl.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\pl.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\pt_PT.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\ru.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\sv.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\zh_CN.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:50 43 008 A.... "C:\Program Files\iTunes\iTunesMiniPlayer.Resources\zh_TW.lproj\iTunesMiniPlayerLocalized.dll"
2 Nov 2007 18:36:48 116 736 A.... "C:\Program Files\iTunes\iTunes.Resources\da.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:48 124 416 A.... "C:\Program Files\iTunes\iTunes.Resources\de.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:42 115 200 A.... "C:\Program Files\iTunes\iTunes.Resources\en.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:48 122 368 A.... "C:\Program Files\iTunes\iTunes.Resources\es.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:48 116 224 A.... "C:\Program Files\iTunes\iTunes.Resources\fi.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:48 122 880 A.... "C:\Program Files\iTunes\iTunes.Resources\fr.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:48 119 808 A.... "C:\Program Files\iTunes\iTunes.Resources\it.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:48 115 200 A.... "C:\Program Files\iTunes\iTunes.Resources\ja.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:48 100 352 A.... "C:\Program Files\iTunes\iTunes.Resources\ko.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:48 117 248 A.... "C:\Program Files\iTunes\iTunes.Resources\nb.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:48 120 320 A.... "C:\Program Files\iTunes\iTunes.Resources\nl.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:48 118 272 A.... "C:\Program Files\iTunes\iTunes.Resources\pl.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:48 122 368 A.... "C:\Program Files\iTunes\iTunes.Resources\pt_PT.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:48 121 856 A.... "C:\Program Files\iTunes\iTunes.Resources\ru.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:48 116 224 A.... "C:\Program Files\iTunes\iTunes.Resources\sv.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:50 115 200 A.... "C:\Program Files\iTunes\iTunes.Resources\zh_CN.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:50 115 200 A.... "C:\Program Files\iTunes\iTunes.Resources\zh_TW.lproj\iTunesLocalized.dll"
2 Nov 2007 18:36:50 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\da.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:50 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\de.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:42 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:50 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\es.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:50 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\fi.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:50 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\fr.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:50 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\it.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:50 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\ja.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:50 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\ko.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:50 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\nb.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:50 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\nl.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:50 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\pl.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:50 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\pt_PT.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:50 44 032 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\ru.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:50 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\sv.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:50 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\zh_CN.lproj\iTunesHelperLocalized.dll"
2 Nov 2007 18:36:50 43 520 A.... "C:\Program Files\iTunes\iTunesHelper.Resources\zh_TW.lproj\iTunesHelperLocalized.dll"
19 Oct 2007 20:16:56 27 648 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\da.lproj\PictureViewerLocalized.dll"
19 Oct 2007 20:16:56 28 160 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\de.lproj\PictureViewerLocalized.dll"
19 Oct 2007 20:16:08 27 648 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\en.lproj\PictureViewerLocalized.dll"
19 Oct 2007 20:16:56 28 160 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\es.lproj\PictureViewerLocalized.dll"
19 Oct 2007 20:16:56 27 648 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\fi.lproj\PictureViewerLocalized.dll"
19 Oct 2007 20:16:56 28 160 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\fr.lproj\PictureViewerLocalized.dll"
19 Oct 2007 20:16:56 28 160 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\it.lproj\PictureViewerLocalized.dll"
19 Oct 2007 20:16:56 27 648 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\ja.lproj\PictureViewerLocalized.dll"
19 Oct 2007 20:16:56 27 648 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\ko.lproj\PictureViewerLocalized.dll"
19 Oct 2007 20:16:56 28 160 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\nb.lproj\PictureViewerLocalized.dll"
19 Oct 2007 20:16:58 28 160 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\nl.lproj\PictureViewerLocalized.dll"
19 Oct 2007 20:16:58 28 160 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\ru.lproj\PictureViewerLocalized.dll"
19 Oct 2007 20:16:58 28 160 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\sv.lproj\PictureViewerLocalized.dll"
19 Oct 2007 20:16:58 27 648 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\zh_CN.lproj\PictureViewerLocalized.dll"
19 Oct 2007 20:16:58 27 648 A.... "C:\Program Files\QuickTime\PictureViewer.Resources\zh_TW.lproj\PictureViewerLocalized.dll"
19 Oct 2007 20:16:26 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\QuickTimeWebHelper.dll"
19 Oct 2007 20:16:16 46 080 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\QuickTime.dll"
31 Oct 2007 14:21:56 187 768 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileBackup.exe"
31 Oct 2007 14:21:58 138 408 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe"
31 Oct 2007 14:22:00 255 912 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileSync.exe"
31 Oct 2007 14:11:46 815 104 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\CFNetwork.dll"
31 Oct 2007 14:09:18 1 203 025 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\CoreFoundation.dll"
31 Oct 2007 14:22:00 45 544 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\defaults.exe"
31 Oct 2007 14:09:20 135 090 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\DeviceLink.dll"
31 Oct 2007 14:22:34 14 864 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\distnoted.exe"
31 Oct 2007 14:09:22 2 360 097 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\Foundation.dll"
31 Oct 2007 14:11:50 7 348 094 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\icudt36.dll"
31 Oct 2007 14:11:50 863 707 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\icuin36.dll"
31 Oct 2007 14:11:50 985 379 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\icuuc36.dll"
31 Oct 2007 14:22:36 124 592 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\IESyncClient.exe"
31 Oct 2007 14:09:46 1 105 920 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\iTunesMobileDevice.dll"
31 Oct 2007 14:12:00 645 744 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\libobjc.i386.A.dll"
31 Oct 2007 14:11:58 1 030 291 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\libxml2.dll"
31 Oct 2007 14:11:58 151 040 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\libxslt.dll"
31 Oct 2007 14:11:04 217 357 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\MDCrashReportTool.exe"
31 Oct 2007 14:09:44 218 333 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\MobileDevice.dll"
31 Oct 2007 14:09:48 379 527 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\OutlookSyncClientHelper.dll"
31 Oct 2007 14:21:56 95 560 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\OutlookSyncClient.exe"
31 Oct 2007 14:22:40 107 752 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\SafariSyncClient.exe"
31 Oct 2007 14:12:04 321 536 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\sqlite3.dll"
31 Oct 2007 14:11:24 1 398 850 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\SyncServices.dll"
31 Oct 2007 14:22:42 497 552 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\SyncServer.exe"
31 Oct 2007 14:11:24 176 585 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\SyncServicesUI.dll"
31 Oct 2007 14:22:46 1 059 472 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\upgradedb.exe"
31 Oct 2007 14:22:48 139 248 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\WindowsContactsSync.exe"
31 Oct 2007 14:22:50 97 304 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\WindowsMailSync.exe"
31 Oct 2007 14:22:52 1 864 592 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\YahooSync.exe"
31 Oct 2007 14:11:46 18 267 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\YSFileShim.dll"
31 Oct 2007 14:09:14 30 464 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\Drivers\usbaapl.sys"
11 Nov 2007 12:07:54 56 684 A.... "C:\Program Files\Electronic Arts\D‚mo de Battlefield 2142\pb\htm\wa001375.htm"
11 Nov 2007 12:07:54 56 684 A.... "C:\Program Files\Electronic Arts\D‚mo de Battlefield 2142\pb\htm\wa001375.htm"
2 Oct 2007 20:50:56 5 021 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\HTML\eula.htm"
2 Oct 2007 20:50:56 2 857 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\HTML\history.htm"
2 Oct 2007 20:50:56 7 895 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\HTML\installer.htm"
2 Oct 2007 20:50:56 1 365 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\HTML\lm.htm"
2 Oct 2007 20:50:56 33 187 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\HTML\localized_eula.htm"
2 Oct 2007 20:50:56 5 088 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\HTML\maintainer.htm"
2 Oct 2007 20:50:56 6 735 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\HTML\preferences.htm"
2 Oct 2007 20:50:56 2 470 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\HTML\proxy.htm"
2 Oct 2007 20:50:56 5 084 A.... "C:\Program Files\Google\Google Updater\2.2.969.23408\HTML\updates.htm"
2 Nov 2007 18:36:46 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\da.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:46 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\de.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:32 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:46 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\es.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:46 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\fi.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:46 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\fr.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:46 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\it.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:46 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\ja.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:46 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\ko.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:46 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\nb.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:46 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\nl.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:46 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\pl.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:46 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\pt_PT.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:46 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\ru.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:46 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\sv.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:46 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\zh_CN.lproj\iPodServiceLocalized.dll"
2 Nov 2007 18:36:48 43 520 A.... "C:\Program Files\iPod\bin\iPodService.Resources\zh_TW.lproj\iPodServiceLocalized.dll"
9 Nov 2007 11:13:52 99 576 A.... "C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org\components\BrandRes.dll"
9 Nov 2007 11:13:52 156 280 A.... "C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org\components\fullsoft.dll"
9 Nov 2007 11:13:52 14 192 A.... "C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org\components\qfaservices.dll"
9 Nov 2007 11:13:54 406 776 A.... "C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org\components\talkback.exe"
19 Oct 2007 20:17:16 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAuthoring.Resources\da.lproj\QuickTimeAuthoringLocalized.dll"
19 Oct 2007 20:17:16 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAuthoring.Resources\de.lproj\QuickTimeAuthoringLocalized.dll"
19 Oct 2007 20:16:18 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAuthoring.Resources\en.lproj\QuickTimeAuthoringLocalized.dll"
19 Oct 2007 20:17:16 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAuthoring.Resources\es.lproj\QuickTimeAuthoringLocalized.dll"
19 Oct 2007 20:17:16 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAuthoring.Resources\fi.lproj\QuickTimeAuthoringLocalized.dll"
19 Oct 2007 20:17:16 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAuthoring.Resources\fr.lproj\QuickTimeAuthoringLocalized.dll"
19 Oct 2007 20:17:16 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAuthoring.Resources\it.lproj\QuickTimeAuthoringLocalized.dll"
19 Oct 2007 20:17:16 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAuthoring.Resources\ja.lproj\QuickTimeAuthoringLocalized.dll"
19 Oct 2007 20:17:16 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAuthoring.Resources\ko.lproj\QuickTimeAuthoringLocalized.dll"
19 Oct 2007 20:17:16 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAuthoring.Resources\nb.lproj\QuickTimeAuthoringLocalized.dll"
19 Oct 2007 20:17:16 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAuthoring.Resources\nl.lproj\QuickTimeAuthoringLocalized.dll"
19 Oct 2007 20:17:18 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAuthoring.Resources\ru.lproj\QuickTimeAuthoringLocalized.dll"
19 Oct 2007 20:17:18 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAuthoring.Resources\sv.lproj\QuickTimeAuthoringLocalized.dll"
19 Oct 2007 20:17:18 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAuthoring.Resources\zh_CN.lproj\QuickTimeAuthoringLocalized.dll"
19 Oct 2007 20:17:18 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAuthoring.Resources\zh_TW.lproj\QuickTimeAuthoringLocalized.dll"
19 Oct 2007 20:17:44 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\da.lproj\QuickTimeWebHelperLocalized.dll"
19 Oct 2007 20:17:44 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\de.lproj\QuickTimeWebHelperLocalized.dll"
19 Oct 2007 20:16:26 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\en.lproj\QuickTimeWebHelperLocalized.dll"
19 Oct 2007 20:17:44 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\es.lproj\QuickTimeWebHelperLocalized.dll"
19 Oct 2007 20:17:44 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\fi.lproj\QuickTimeWebHelperLocalized.dll"
19 Oct 2007 20:17:44 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\fr.lproj\QuickTimeWebHelperLocalized.dll"
19 Oct 2007 20:17:44 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\it.lproj\QuickTimeWebHelperLocalized.dll"
19 Oct 2007 20:17:44 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\ja.lproj\QuickTimeWebHelperLocalized.dll"
19 Oct 2007 20:17:46 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\ko.lproj\QuickTimeWebHelperLocalized.dll"
19 Oct 2007 20:17:46 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\nb.lproj\QuickTimeWebHelperLocalized.dll"
19 Oct 2007 20:17:46 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\nl.lproj\QuickTimeWebHelperLocalized.dll"
19 Oct 2007 20:17:46 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\ru.lproj\QuickTimeWebHelperLocalized.dll"
19 Oct 2007 20:17:46 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\sv.lproj\QuickTimeWebHelperLocalized.dll"
19 Oct 2007 20:17:46 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\zh_CN.lproj\QuickTimeWebHelperLocalized.dll"
19 Oct 2007 20:17:46 25 600 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeWebHelper.Resources\zh_TW.lproj\QuickTimeWebHelperLocalized.dll"
19 Oct 2007 20:17:34 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeStreaming.Resources\da.lproj\QuickTimeStreamingLocalized.dll"
19 Oct 2007 20:17:34 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeStreaming.Resources\de.lproj\QuickTimeStreamingLocalized.dll"
19 Oct 2007 20:16:24 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeStreaming.Resources\en.lproj\QuickTimeStreamingLocalized.dll"
19 Oct 2007 20:17:34 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeStreaming.Resources\es.lproj\QuickTimeStreamingLocalized.dll"
19 Oct 2007 20:17:34 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeStreaming.Resources\fi.lproj\QuickTimeStreamingLocalized.dll"
19 Oct 2007 20:17:34 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeStreaming.Resources\fr.lproj\QuickTimeStreamingLocalized.dll"
19 Oct 2007 20:17:34 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeStreaming.Resources\it.lproj\QuickTimeStreamingLocalized.dll"
19 Oct 2007 20:17:34 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeStreaming.Resources\ja.lproj\QuickTimeStreamingLocalized.dll"
19 Oct 2007 20:17:34 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeStreaming.Resources\ko.lproj\QuickTimeStreamingLocalized.dll"
19 Oct 2007 20:17:36 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeStreaming.Resources\nb.lproj\QuickTimeStreamingLocalized.dll"
19 Oct 2007 20:17:36 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeStreaming.Resources\nl.lproj\QuickTimeStreamingLocalized.dll"
19 Oct 2007 20:17:36 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeStreaming.Resources\ru.lproj\QuickTimeStreamingLocalized.dll"
19 Oct 2007 20:17:36 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeStreaming.Resources\sv.lproj\QuickTimeStreamingLocalized.dll"
19 Oct 2007 20:17:36 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeStreaming.Resources\zh_CN.lproj\QuickTimeStreamingLocalized.dll"
19 Oct 2007 20:17:36 26 112 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeStreaming.Resources\zh_TW.lproj\QuickTimeStreamingLocalized.dll"
19 Oct 2007 20:17:06 51 712 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\da.lproj\QuickTimeLocalized.dll"
19 Oct 2007 20:17:06 52 224 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\de.lproj\QuickTimeLocalized.dll"
19 Oct 2007 20:16:16 51 712 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\en.lproj\QuickTimeLocalized.dll"
19 Oct 2007 20:17:06 51 712 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\es.lproj\QuickTimeLocalized.dll"
19 Oct 2007 20:17:06 51 712 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\fi.lproj\QuickTimeLocalized.dll"
19 Oct 2007 20:17:06 52 224 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\fr.lproj\QuickTimeLocalized.dll"
19 Oct 2007 20:17:06 52 224 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\it.lproj\QuickTimeLocalized.dll"
19 Oct 2007 20:17:06 51 712 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\ja.lproj\QuickTimeLocalized.dll"
19 Oct 2007 20:17:06 51 712 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\ko.lproj\QuickTimeLocalized.dll"
19 Oct 2007 20:17:06 51 712 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\nb.lproj\QuickTimeLocalized.dll"
19 Oct 2007 20:17:06 52 224 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\nl.lproj\QuickTimeLocalized.dll"
19 Oct 2007 20:17:06 52 224 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\ru.lproj\QuickTimeLocalized.dll"
19 Oct 2007 20:17:08 51 712 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\sv.lproj\QuickTimeLocalized.dll"
19 Oct 2007 20:17:08 51 712 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\zh_CN.lproj\QuickTimeLocalized.dll"
19 Oct 2007 20:17:08 51 712 A.... "C:\Program Files\QuickTime\QTSystem\QuickTime.Resources\zh_TW.lproj\QuickTimeLocalized.dll"
19 Oct 2007 20:17:14 41 472 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAudioSupport.Resources\da.lproj\QuickTimeAudioSupportLocalized.dll"
19 Oct 2007 20:17:14 41 472 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAudioSupport.Resources\de.lproj\QuickTimeAudioSupportLocalized.dll"
19 Oct 2007 20:16:18 40 960 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAudioSupport.Resources\en.lproj\QuickTimeAudioSupportLocalized.dll"
19 Oct 2007 20:17:14 43 008 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAudioSupport.Resources\es.lproj\QuickTimeAudioSupportLocalized.dll"
19 Oct 2007 20:17:14 41 472 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAudioSupport.Resources\fi.lproj\QuickTimeAudioSupportLocalized.dll"
19 Oct 2007 20:17:14 41 984 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAudioSupport.Resources\fr.lproj\QuickTimeAudioSupportLocalized.dll"
19 Oct 2007 20:17:14 42 496 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAudioSupport.Resources\it.lproj\QuickTimeAudioSupportLocalized.dll"
19 Oct 2007 20:17:14 40 960 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAudioSupport.Resources\ja.lproj\QuickTimeAudioSupportLocalized.dll"
19 Oct 2007 20:17:14 36 864 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAudioSupport.Resources\ko.lproj\QuickTimeAudioSupportLocalized.dll"
19 Oct 2007 20:17:14 40 960 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAudioSupport.Resources\nb.lproj\QuickTimeAudioSupportLocalized.dll"
19 Oct 2007 20:17:14 41 984 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAudioSupport.Resources\nl.lproj\QuickTimeAudioSupportLocalized.dll"
19 Oct 2007 20:17:14 41 472 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAudioSupport.Resources\ru.lproj\QuickTimeAudioSupportLocalized.dll"
19 Oct 2007 20:17:14 41 472 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAudioSupport.Resources\sv.lproj\QuickTimeAudioSupportLocalized.dll"
19 Oct 2007 20:17:14 40 960 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAudioSupport.Resources\zh_CN.lproj\QuickTimeAudioSupportLocalized.dll"
19 Oct 2007 20:17:14 40 960 A.... "C:\Program Files\QuickTime\QTSystem\QuickTimeAudioSupport.Resources\zh_TW.lproj\QuickTimeAudioSupportLocalized.dll"
27 Oct 2007 18:13:34 192 644 A.... "C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iGdi.dll"
27 Oct 2007 18:13:32 323 716 A.... "C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\setup.dll"
31 Oct 2007 14:22:54 60 688 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Schemas\Bookmarks.syncschema\Contents\Windows\Bookmarks.exe"
31 Oct 2007 14:22:56 161 016 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Schemas\Calendars.syncschema\Contents\Windows\Calendars.exe"
31 Oct 2007 14:22:56 122 496 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Schemas\Contacts.syncschema\Contents\Windows\Contacts.exe"
31 Oct 2007 14:22:52 719 240 A.... "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\YahooSync.app\Contents\Resources\Formatter.bundle\Contents\Windows\Formatter.exe"


Files with hidden attributes:

Mon 19 Nov 2007 6,656 A..H. --- "C:\SDFix\dummy.exe"
Fri 9 Feb 2007 524,288 A.SH. --- "C:\Users\Cl‚ment\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms"
Fri 9 Feb 2007 524,288 A.SH. --- "C:\Users\Cl‚ment\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms"
Thu 2 Nov 2006 524,288 A.SH. --- "C:\Users\Default\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms"
Thu 2 Nov 2006 524,288 A.SH. --- "C:\Users\Default\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms"
Wed 21 Jun 2000 0 A.SH. --- "C:\Windows\ConfigSetRoot\DOS\EBD.SYS"
Fri 5 Oct 2007 4,348 A.SH. --- "C:\ProgramData\Microsoft\Windows\DRM\DRMv1.bak"
Sun 24 Jul 2005 262,144 A.SH. --- "C:\Users\Cl‚ment\Desktop\pauline\SIVAB.tmp"
Thu 28 Jun 2007 4,529,048 A..H. --- "C:\Windows\SoftwareDistribution\Download\c35015a317788182120ab31e6f9c823e\BIT7F9B.tmp"
Mon 19 Nov 2007 5,242,880 A.SH. --- "C:\Windows\System32\config\TxR\{250834b7-750c-494d-bdc3-da86b6e2101a}.TxR.2.regtrans-ms"
Sun 18 Nov 2007 524,288 A.SH. --- "C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000001.regtrans-ms"
Mon 19 Nov 2007 524,288 A.SH. --- "C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000002.regtrans-ms"
Mon 12 Feb 2007 5,242,880 A.SH. --- "C:\Windows\System32\config\TxR\{250834b7-750c-494d-bdc3-da86b6e2101a}.TxR.0.regtrans-ms"
Tue 2 Oct 2007 5,242,880 A.SH. --- "C:\Windows\System32\config\TxR\{250834b7-750c-494d-bdc3-da86b6e2101a}.TxR.1.regtrans-ms"
Thu 28 Jun 2007 5,242,880 A.SH. --- "C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101A}.TxR.3.regtrans-ms"
Sun 18 Nov 2007 524,288 A.SH. --- "C:\Windows\System32\SMI\Store\Machine\SCHEMA.DAT{3a53986d-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms"
Thu 2 Nov 2006 524,288 A.SH. --- "C:\Windows\System32\SMI\Store\Machine\SCHEMA.DAT{3a53986d-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms"
Fri 9 Feb 2007 524,288 A.SH. --- "C:\Users\Cl‚ment\AppData\Local\Microsoft\Windows\UsrClass.dat{a6e2d5e2-b833-11db-b738-0018debab17a}.TMContainer00000000000000000001.regtrans-ms"
Fri 9 Feb 2007 524,288 A.SH. --- "C:\Users\Cl‚ment\AppData\Local\Microsoft\Windows\UsrClass.dat{a6e2d5e2-b833-11db-b738-0018debab17a}.TMContainer00000000000000000002.regtrans-ms"


Program Folders:

C:\Program Files\

1964
Adobe
Alcohol Soft
Alwil Software
Apple Software Update
ASUS
ATK Hotkey
ATKOSD2
Commandos II
Common Files
Electronic Arts
eMule
Google
InstallShield Installation Information
Intel
Internet Explorer
iPod
iTunes
Maxis
Messenger Plus! Live
Microsoft Games
Microsoft Office
Microsoft Visual Studio
Microsoft Works
Microsoft.NET
Motorola
Movie Maker
Mozilla Firefox
MSBuild
MSN
MSN Messenger
MSXML 4.0
P4G
PowerForPhone
QuickTime
Radical Games
Realtek
Reference Assemblies
Sierra On-Line
Skype
Spyware Doctor
Synaptics
Uninstall Information
uTorrent
VideoLAN
Windows Calendar
Windows Collaboration
Windows Defender
Windows Journal
Windows Live
Windows Mail
Windows Media Player
Windows NT
Windows Photo Gallery
Windows Sidebar
WinRAR
Wireless Console 2

C:\Program Files\Common Files\

Adobe
Apple
DESIGNER
InstallShield
microsoft shared
Services
Skype
SpeechEngines
Symantec Shared
System


Add/Remove Programs:

Adobe Flash Player Plugin
avast! Antivirus
Caesar 3
eMule
Outil de mise à jour Google
Theme Hospital
Messenger Plus! Live
Mozilla Firefox (2.0.0.9)
NVIDIA Drivers
Adobe Flash Player 9 ActiveX
Motorola SM56 Speakerphone Modem
Spyware Doctor 5.1
Synaptics Pointing Device Driver
USB2.0 1.3M WebCam
Utilitaires Sierra
VideoLAN VLC media player 0.8.6c
WinRAR archiver
Les Sims Deluxe
ATK Media
LifeFrame2
Google Earth
MSXML 4.0 SP2 (KB927978)
ATK Hotkey
Windows Live Sign-in Assistant
ASUS InstantFun
QuickTime
ATKOSD2
Skype™ 3.5
NB Probe
Windows Media Player Firefox Plugin
Wireless Console 2
Power4Gear eXtreme
Microsoft Office Professional Edition 2003
Net4Switch
Adobe Reader 7.0
Apple Mobile Device Support
Apple Software Update
MSXML 4.0 SP2 (KB936181)
ASUS Splendid Video Enhancement Technology
MSXML 4.0 SP2 (KB941833)
WinFlash
iTunes
ASUS Live Update
Realtek High Definition Audio Driver
Windows Live Messenger
Commandos 2: Men of Courage
PowerForPhone
Démo de Battlefield 2142
µTorrent


Run Values:

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"Windows Defender"=hex(2):25,00,50,00,72,00,6f,00,67,00,72,00,61,00,6d,00,46,\
00,69,00,6c,00,65,00,73,00,25,00,5c,00,57,00,69,00,6e,00,64,00,6f,00,77,00,\
73,00,20,00,44,00,65,00,66,00,65,00,6e,00,64,00,65,00,72,00,5c,00,4d,00,53,\
00,41,00,53,00,43,00,75,00,69,00,2e,00,65,00,78,00,65,00,20,00,2d,00,68,00,\
69,00,64,00,65,00,00,00
"SMSERIAL"="C:\\Program Files\\Motorola\\SMSERIAL\\sm56hlpr.exe"
"NvSvc"="RUNDLL32.EXE C:\\Windows\\system32\\nvsvc.dll,nvsvcStart"
"NvCplDaemon"="RUNDLL32.EXE C:\\Windows\\system32\\NvCpl.dll,NvStartup"
"NvMediaCenter"="RUNDLL32.EXE C:\\Windows\\system32\\NvMcTray.dll,NvTaskbarInit"
"RtHDVCpl"="RtHDVCpl.exe"
"ATKMEDIA"="C:\\Program Files\\ASUS\\ATK Media\\DMEDIA.EXE"
"SynTPEnh"="C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe"
"PowerForPhone"="C:\\Program Files\\PowerForPhone\\PowerForPhone.exe"
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime"
"iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""
"SDTray"="\"C:\\Program Files\\Spyware Doctor\\SDTrayApp.exe\""

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"Sidebar"="C:\\Program Files\\Windows Sidebar\\sidebar.exe /autoRun"
"ehTray.exe"="C:\\Windows\\ehome\\ehTray.exe"
"swg"="C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe"
"Skype"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /nosplash /minimized"


Bot Check:

SERVICE_NAME: wscsvc
DISPLAY_NAME : Centre de sécurité
START_TYPE : 2 AUTO_START

SERVICE_NAME: sharedaccess
DISPLAY_NAME : Partage de connexion Internet (ICS)
START_TYPE : 4 DISABLED

SERVICE_NAME: wuauserv
DISPLAY_NAME : Windows Update
START_TYPE : 2 AUTO_START

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole]
"EnableDCOM"="Y"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"restrictanonymous"=dword:00000000

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update]
"AUOptions"=dword:00000004

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"UacDisableNotify"=dword:00000000
"InternetSettingsDisableNotify"=dword:00000000
"AutoUpdateDisableNotify"=dword:00000000
"AntiVirusOverride"=dword:00000000
"AntiSpywareOverride"=dword:00000000
"FirewallOverride"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Shell"="explorer.exe"
"Userinit"="C:\\Windows\\system32\\userinit.exe,"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shell extensions]


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetBT\Parameters]
"TransportBindName"="\\Device\\"


ShellExecuteHooks:


Environment:


HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager\environment
ComSpec REG_EXPAND_SZ %SystemRoot%\system32\cmd.exe
OS REG_SZ Windows_NT
Path REG_EXPAND_SZ %SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
PATHEXT REG_SZ .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
TEMP REG_EXPAND_SZ %SystemRoot%\TEMP
TMP REG_EXPAND_SZ %SystemRoot%\TEMP
USERNAME REG_SZ SYSTEM
windir REG_EXPAND_SZ %SystemRoot%
configsetroot REG_EXPAND_SZ %SystemRoot%\ConfigSetRoot
CLASSPATH REG_SZ .;C:\Program Files\QuickTime\QTSystem\QTJava.zip
QTJAVA REG_S
0
Réponse 8 / 12
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
19 nov. 2007 à 11:45
non c'est pas ca...

______________

essaye de faire msnfix ou sdfix puis fais ceci pour etre sur qu'il ne reste rien


scan avec :

spybot :

https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/26157.html

voir demo d utilisation (merci Balltrap)
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
----------

AVG antispyxare

https://www.01net.com/telecharger/

Tuto :
http://www.kachouri.com/tuto/tuto-161-avg-anti-spyware-75-pour-votre-securite.html

->Relance AVG AS -> "Analyse" ->"Paramètres"

Sous la question "Comment réagir ?" :

-> clique sur "Actions recommandées" et choisis "Quarantaines"
-> Re-clique sur l'onglet "Analyse" puis réalise une "Analyse complète du système"

Si un fichier est infecté en fin d'analyse

->Clique sur "Appliquer toutes les actions "

->Clique sur "Enregistrer le rapport" puis sur "Enregistrer le rapport sous".

->Enregistre ce fichier texte sur ton bureau ensuite colle le rapport ici

_____________


utilise pour supprimer tes traces

CCLEANER: (lance un nettoyage et répare 3 fois les erreurs) sans installer la barre yahoo

https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
------------

colle le rapport d'un scan en ligne
avec un des suivants:


bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html

Panda en ligne :
http://pandasoftware.fr
0
Réponse 9 / 12
clem
19 nov. 2007 à 14:53
voila les deux rapports

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 12:59:12 19/11/2007

+ Résultat de l'analyse:



HKU\S-1-5-21-3309565326-3362137938-13686832-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\205\Shell\{B3690E58-E961-423B-B687-386EBFD83239}\\MaxPos1280x720(1).x -> Adware.CometCursor : Nettoyé et sauvegardé (mise en quarantaine).
:mozilla.192:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.195:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.394:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.398:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.399:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.403:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.468:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.558:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\clément@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\clément@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.341:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.343:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.264:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.112:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.113:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.114:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.115:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.116:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.147:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.209:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\clément@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.51:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.273:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Com : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@com[1].txt -> TrackingCookie.Com : Nettoyé.
:mozilla.266:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.267:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.268:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.52:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.81:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.231:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.233:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.284:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.288:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.307:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.324:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.387:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.391:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.458:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.532:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.552:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.611:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.84:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.253:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.254:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.255:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.604:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.741:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.270:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.271:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.72:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.79:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@overture[1].txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.416:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Paypal : Nettoyé.
:mozilla.210:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Planetactive : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\clément@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.144:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.145:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.59:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.60:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.61:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.62:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.63:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.64:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.65:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\clément@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\clément@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.695:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.696:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\clément@site.skype[1].txt -> TrackingCookie.Skype : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\clément@skype[2].txt -> TrackingCookie.Skype : Nettoyé.
:mozilla.21:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.22:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.23:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.24:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.25:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\clément@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.538:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé.
:mozilla.539:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé.
:mozilla.540:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé.
:mozilla.541:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@specificclick[2].txt -> TrackingCookie.Specificclick : Nettoyé.
:mozilla.617:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.618:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.14:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.15:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.16:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.26:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.27:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.28:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.29:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\clément@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.736:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Webtrends : Nettoyé.
:mozilla.331:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.332:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.333:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.334:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.335:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.336:C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.


Fin du rapport



;***********************************************************************************************************************************************************************************
ANALYSIS: 2007-11-19 14:47:18
PROTECTIONS: 1
MALWARE: 7
SUSPECTS: 0
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
avast! antivirus 4.7.1043 [VPS 071119-0] 4.7.1043 No Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt[.doubleclick.net/]
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@doubleclick[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt[.atdmt.com/]
00139535 Application/Processor HackTools No 0 Yes No C:\Users\Clément\Desktop\MSNFix(2).zip[MSNFix/incl/Process.exe]
00139535 Application/Processor HackTools No 0 Yes No C:\SDFix\apps\Process.exe
00139535 Application/Processor HackTools No 0 Yes No C:\MSNFix\incl\Process.exe
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt[.xiti.com/]
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\clément@xiti[1].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@xiti[1].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt[.weborama.fr/]
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@weborama[1].txt
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Users\Clément\AppData\Roaming\Mozilla\Firefox\Profiles\dki595ad.default\cookies.txt[.bluestreak.com/]
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Users\Clément\AppData\Roaming\Microsoft\Windows\Cookies\Low\clément@bluestreak[2].txt
02690944 W32/Sdbot.LJF.worm Virus/Trojan No 1 Yes No C:\Users\Clément\AppData\Local\VirtualStore\Windows\Dance_dec_jpg.zip[www.Dance_dec_jpg_Msn.com]
;===================================================================================================================================================================================
SUSPECTS
Location
;===================================================================================================================================================================================
;===================================================================================================================================================================================
0
Réponse 10 / 12
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
19 nov. 2007 à 18:57
vire ce fichier Dance_dec_jpg.zip en allant dans poste de travail puis C...

C:\Users\Clément\AppData\Local\VirtualStore\Windows\Dance_dec_jpg.zip
0
Réponse 11 / 12
clem
19 nov. 2007 à 19:12
ok je viens de le faire y a t'il d'autres choses à faire

sinon j'ai avast comme antivirus du coup des diverses procédures pour éliminer le virus j'ai téléchargez pas mal de chose lequel dois je garder?

merci pour tous ces conseils
0
Réponse 12 / 12
jlpjlp
19 nov. 2007 à 19:24
je te conseille de remplacer avast par antivir car plus efficace:

https://www.malekal.com/avira-free-security-antivirus-gratuit/ (merci Malekal)











sinon a garder:



pour protéger gratos ton ordi

http://www.commentcamarche.net/telecharger/logiciel 4 securite

mettre un antivirus

AVAST en français ou ANTIVIR (en anglais mais très efficace)
https://www.malekal.com/avira-free-security-antivirus-gratuit/ (merci Malekal)
-------------
des anti-espions :
AD AWARE + SPYBOT + si tea timer non active de spybot: WINDOWS DEFENDER
+
SPYWAREBLASTER pour immuniser le système contre vundo notamment mais en anglais (mais facile d'utilisation : il suffit de faire "update" pour mettre à jour tous les mois et ensuite" enable all protection" pour immuniser)...

Rq : spybot et ad-aware on sorti de nouvelles versions cette année vérifiez que vous avez la dernière version
--------
un pare feu :
celui de Windows ou mieux KERIO ou JETICO ou ZONE ALARM (mettre que le parefeu gratuit)

https://www.clubic.com/telecharger-fiche11071-sunbelt-personal-firewall-ex-kerio.html
https://manuelsdaide.com/contact/
http://www.open-files.com/forum/index.php?showtopic=29277
http://www.commentcamarche.net/telecharger/telecharger 157 zonealarm

-----------

CCLEANER pour effacer les traces de surf




voila bonne continuation
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Comment savoir si j'ai attrapé un virus sur mon téléphone ?
Infolock -
bell -

66 réponses
Virus Altruistic
Mael03250 -
MisteryBean -

11 réponses
je viens de recevoir une alerte aux virus sur mon iphone
Hugoboss23 -
zoulou33 -

6 réponses
problême Opéra est ce un virus??
sand2504 -
sand2504 -

85 réponses