Sujet Précédent Sujet Suivant

Virus/ résultats analyses

l'ambigüe -  
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
Bonjour,

je pense que mon pc est infesté de saloperies mais je ne sais pas comment m'en débarraser.
J'ai besoin dans un premier temps de qq qui sait analyser les résultats de hijackthis et bitdefender.
Merci beaucoup

BitDefender Online Scanner

Scan report generated at: Sun, Nov 25, 2007 - 20:27:35

Scan path: C:\;D:\;

Statistics

Time
01:07:33

Files
439071

Folders
10275

Boot Sectors
2

Archives
12395

Packed Files
25397

Results

Identified Viruses
2

Infected Files
2

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
2

Engines Info

Virus Definitions
878826

Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)

Scan plugins
14

Archive plugins
38

Unpack plugins
7

E-mail plugins
6

System plugins
1

Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions

Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes

Scanned File
Status

C:\Documents and Settings\All Users\Documents\My Videos\006.part=>archstored:LOST 3.2.exe
Infected with: Win32.Bagle.196

C:\Documents and Settings\All Users\Documents\My Videos\006.part=>archstored:LOST 3.2.exe
Disinfection failed

C:\Documents and Settings\All Users\Documents\My Videos\006.part=>archstored:LOST 3.2.exe
Deleted

C:\Documents and Settings\All Users\Documents\My Videos\006.part
Update failed

C:\Program Files\LemonWire\Shared\lemonwire_free[1].exe=>(Instyler o)=>(Instyler Module 31)=>(CAB Sfx r)=>ProsperaSoftware_WhenUSave_Installer.exe
Infected with: Generic.Adw.SaveNow.0B6D65B8

C:\Program Files\LemonWire\Shared\lemonwire_free[1].exe=>(Instyler o)=>(Instyler Module 31)=>(CAB Sfx r)=>ProsperaSoftware_WhenUSave_Installer.exe
Disinfection failed

C:\Program Files\LemonWire\Shared\lemonwire_free[1].exe=>(Instyler o)=>(Instyler Module 31)=>(CAB Sfx r)=>ProsperaSoftware_WhenUSave_Installer.exe
Deleted

C:\Program Files\LemonWire\Shared\lemonwire_free[1].exe=>(Instyler o)=>(Instyler Module 31)=>(CAB Sfx r)
Update failed

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:18:07, on 25/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\TPSrv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\pavsrv51.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\AVENGINE.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
c:\program files\panda software\panda titanium 2006 antivirus + antispyware\firewall\PNMSRV.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\PavFnSvr.exe
C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\PsImSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: QUICKfind BHO Object - {C08DF07A-3E49-4E25-9AB0-D3882835F153} - C:\PROGRA~1\TEXTware\QUICKF~1\PlugIns\IEHelp.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SW20] C:\WINDOWS\system32\sw20.exe
O4 - HKLM\..\Run: [SW24] C:\WINDOWS\system32\sw24.exe
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [bdmreg] C:\WINDOWS\system32\bdmreg.exe
O4 - HKLM\..\Run: [WebCam III SetFirst] webc3uns setfirst
O4 - HKLM\..\Run: [WebCam Autolaunch] webc3lch
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [System Updater Machine] system.exe
O4 - HKLM\..\Run: [Office SturtUp] osa9.exe
O4 - HKLM\..\Run: [gfxtray] rundll32 ctccw32.dll,findwnd
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\RunServices: [System Updater Machine] system.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: DeliveryManager.lnk = ?
O4 - Startup: ePrompter.lnk = C:\Program Files\ePrompter\ePrompter.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20070501/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) - https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} - http://a532.g.akamai.net/...
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Panda Function Service (PAVFNSVR) - Panda Software International - C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\PavFnSvr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software International - C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\pavsrv51.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Panda Network Manager (PNMSRV) - Panda Software - c:\program files\panda software\panda titanium 2006 antivirus + antispyware\firewall\PNMSRV.EXE
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software - C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\PsImSvc.exe
O23 - Service: Panda TPSrv (TPSrv) - Panda Software - C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\TPSrv.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe
O24 - Desktop Component 0: (no name) - file:///C:/DOCUME~1/user/LOCALS~1/Temp/msohtml1/03/clip_image001.jpg
A voir également:

14 réponses

Réponse 1 / 14
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
vire ces deux fichiers (lemonwire_free[1].exe, 006.part) en allant dans poste de travail puis C........

C:\Documents and Settings\All Users\Documents\My Videos\006.part

C:\Program Files\LemonWire\Shared\lemonwire_free[1].exe

________________

recolle un scan en ligne
0
Réponse 2 / 14
l'ambigüe
 
Merci pour la réponse...
mais je ne peux plus acceder a mon dd (bloqué par virus j'imagine)et en passant par la recherche de fichiers ne les trouve pas.
0
Réponse 3 / 14
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
télécharge OTMoveIt http://download.bleepingcomputer.com/oldtimer/OTMoveIt.exe (de Old_Timer) sur ton Bureau.
double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.

Citation :

C:\Documents and Settings\All Users\Documents\My Videos\006.part
C:\Program Files\LemonWire\Shared\lemonwire_free[1].exe

clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.

_______________________

Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked".

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: QUICKfind BHO Object - {C08DF07A-3E49-4E25-9AB0-D3882835F153} - C:\PROGRA~1\TEXTware\QUICKF~1\PlugIns\IEHelp.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"

O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"

O4 - HKLM\..\Run: [bdmreg] C:\WINDOWS\system32\bdmreg.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [System Updater Machine] system.exe
O4 - HKLM\..\Run: [Office SturtUp] osa9.exe
O4 - HKLM\..\Run: [gfxtray] rundll32 ctccw32.dll,findwnd
O4 - HKLM\..\RunServices: [System Updater Machine] system.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll

O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} - http://a532.g.akamai.net/

__________________

analyse ce fichier sur virus total et colle moi le rapport; https://www.virustotal.com/gui/

C:\WINDOWS\system32\bdmreg.exe
0
Réponse 4 / 14
ambigüe
 
j'ai fais comme demandé mais je ne peux tjs pas accéder à mon disque dur

j'ai supprimé (je crois) ces 2 fichiers
C:\Documents and Settings\All Users\Documents\My Videos\006.part
C:\Program Files\LemonWire\Shared\lemonwire_free[1].exe
mais je peux pas accéder au rapport de itmoveit.

Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2007.11.27.1 2007.11.27 -
AntiVir 7.6.0.34 2007.11.27 -
Authentium 4.93.8 2007.11.24 -
Avast 4.7.1074.0 2007.11.27 -
AVG 7.5.0.503 2007.11.26 Potentially harmful program Logger.BGR
BitDefender 7.2 2007.11.27 -
CAT-QuickHeal 9.00 2007.11.27 -
ClamAV 0.91.2 2007.11.27 -
DrWeb 4.44.0.09170 2007.11.27 -
eSafe 7.0.15.0 2007.11.21 -
eTrust-Vet 31.3.5329 2007.11.26 -
Ewido 4.0 2007.11.26 -
FileAdvisor 1 2007.11.27 -
Fortinet 3.14.0.0 2007.11.27 -
F-Prot 4.4.2.54 2007.11.27 -
F-Secure 6.70.13030.0 2007.11.27 -
Ikarus T3.1.1.12 2007.11.27 -
Kaspersky 7.0.0.125 2007.11.27 not-a-virus:Monitor.Win32.PowerSpy.h
McAfee 5171 2007.11.26 -
Microsoft 1.3007 2007.11.27 -
NOD32v2 2688 2007.11.27 -
Norman 5.80.02 2007.11.26 -
Panda 9.0.0.4 2007.11.26 Application/PowerSpy
Prevx1 V2 2007.11.27 -
Rising 20.20.12.00 2007.11.27 -
Sophos 4.23.0 2007.11.27 -
Sunbelt 2.2.907.0 2007.11.27 Power Spy
Symantec 10 2007.11.27 Spyware.PowerSpy
TheHacker 6.2.9.142 2007.11.26 -
VBA32 3.12.2.5 2007.11.27 -
VirusBuster 4.3.26:9 2007.11.26 -
Webwasher-Gateway 6.0.1 2007.11.27 -

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:25:12, on 27/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\TPSrv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\pavsrv51.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\AVENGINE.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
c:\program files\panda software\panda titanium 2006 antivirus + antispyware\firewall\PNMSRV.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\APVXDWIN.EXE
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\PavFnSvr.exe
C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\PsImSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\WebProxy.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ACD Systems\Canvas X\canvasX.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SW20] C:\WINDOWS\system32\sw20.exe
O4 - HKLM\..\Run: [SW24] C:\WINDOWS\system32\sw24.exe
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [WebCam III SetFirst] webc3uns setfirst
O4 - HKLM\..\Run: [WebCam Autolaunch] webc3lch
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: DeliveryManager.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20070501/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) - https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Panda Function Service (PAVFNSVR) - Panda Software International - C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\PavFnSvr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software International - C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\pavsrv51.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Panda Network Manager (PNMSRV) - Panda Software - c:\program files\panda software\panda titanium 2006 antivirus + antispyware\firewall\PNMSRV.EXE
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software - C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\PsImSvc.exe
O23 - Service: Panda TPSrv (TPSrv) - Panda Software - C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\TPSrv.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe
O24 - Desktop Component 0: (no name) - file:///C:/DOCUME~1/user/LOCALS~1/Temp/msohtml1/03/clip_image001.jpg
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 14
ambigüe
 
Après tout ça je n'arrive tjs pas à ouvrir mon poste de travail.
C'est grave, non?
0
Réponse 6 / 14
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
vire ce fichier enallant dans poste de travail puis C...

C:\WINDOWS\system32\bdmreg.exe

_________________

Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.
http://downloads.andymanchesta.com/RemovalTools/SDFix.exe
Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau. Redémarre ton ordinateur en mode sans échec en suivant la procédure que voici :
• Redémarre ton ordinateur
• Après avoir entendu l'ordinateur biper lors du démarrage, mais avant que l'icône Windows apparaisse, tapote la touche F8 (une pression par seconde).
• A la place du chargement normal de Windows, un menu avec différentes options devrait apparaître.
• Choisis la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée".
• Choisis ton compte.
Déroule la liste des instructions ci-dessous :
• Ouvre le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.bat pour lancer le script.
• Appuie sur Y pour commencer le processus de nettoyage.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Appuie sur une touche pour redémarrer le PC.
• Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
• Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum
__________________

Colle le rapport :
Clean permettra de faire du nettoyage et supprimer des fichiers que des anti-virus et anti-spywares n'ont pas pu trouver. Le logiciel est régulièrement mis à jour, vous devrez donc le re-téléchargé pour obtenir une version plus récente.

 Téléchargez clean.zip, décompressez-le sur votre bureau (clic droit / extraire tout), vous obtenez alors un dossier clean
 Démarrez Windows en mode sans échec : Guide pour redémarrer en mode sans échec
 Ouvrez le dossier clean qui se trouve sur ton bureau, et double-cliquez sur clean.cmd, une fenêtre noire va apparaître pendant un instant, laissez la ouverte jusqu'à ce qu'elle se ferme.
Manuel de clean :
http://kerio.probb.fr/tuto-Clean-h37.html
0
Réponse 7 / 14
l'ambigüe
 
re et encore merci.
je ne peux tjs pas ouvrir mon poste de travail.

je continue avec clean...

SDFix: Version 1.115

Run by user on 27/11/2007 at 15:43

Microsoft Windows XP [Version 5.1.2600]

Running From: C:\DOCUME~1\user\Desktop\SDFix

Safe Mode:
Checking Services:

Restoring Windows Registry Values
Restoring Windows Default Hosts File

Rebooting...

Normal Mode:
Checking Files:

Trojan Files Found:

C:\202.TMP - Deleted
C:\203.TMP - Deleted
C:\204.TMP - Deleted
C:\205.TMP - Deleted
C:\206.TMP - Deleted
C:\207.TMP - Deleted
C:\208.TMP - Deleted
C:\209.TMP - Deleted
C:\217.TMP - Deleted
C:\218.TMP - Deleted
C:\219.TMP - Deleted
C:\21A.TMP - Deleted
C:\21B.TMP - Deleted
C:\21C.TMP - Deleted
C:\21D.TMP - Deleted
C:\21E.TMP - Deleted
C:\21F.TMP - Deleted
C:\220.TMP - Deleted
C:\221.TMP - Deleted
C:\222.TMP - Deleted
C:\223.TMP - Deleted
C:\224.TMP - Deleted
C:\225.TMP - Deleted
C:\229.TMP - Deleted
C:\WINDOWS\system32\winsys.exe - Deleted

Removing Temp Files...

ADS Check:

C:\WINDOWS
No streams found.

C:\WINDOWS\system32
No streams found.

C:\WINDOWS\system32\svchost.exe
No streams found.

C:\WINDOWS\system32\ntoskrnl.exe
No streams found.

Final Check:

catchme 0.3.1262.1 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-11-27 15:52:28
Windows 5.1.2600 Service Pack 2 NTFS

detected NTDLL code modification:
ZwEnumerateKey, ZwClose, ZwEnumerateValueKey, ZwQueryValueKey, ZwOpenFile

scanning hidden processes ...

scanning hidden services & system hive ...

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg]
"s1"=dword:2df9c43f
"s2"=dword:110480d0
"h0"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000000
"khjeh"=hex:12,b6,38,5c,20,0b,80,3a,32,1c,d8,9c,31,00,ba,c9,a2,81,12,c8,b3,..

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"khjeh"=hex:50,05,74,53,d3,ec,4f,0e,90,e9,9a,6c,4f,76,d4,5d,a9,91,60,d3,95,..
"d0"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:5d,26,3f,b6,12,0e,19,83,a2,fd,3d,2f,8b,76,46,cd,8b,d6,65,23,ec,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000000
"khjeh"=hex:12,b6,38,5c,20,0b,80,3a,32,1c,d8,9c,31,00,ba,c9,a2,81,12,c8,b3,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"khjeh"=hex:50,05,74,53,d3,ec,4f,0e,90,e9,9a,6c,4f,76,d4,5d,a9,91,60,d3,95,..
"d0"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:5d,26,3f,b6,12,0e,19,83,a2,fd,3d,2f,8b,76,46,cd,8b,d6,65,23,ec,..

scanning hidden registry entries ...

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Nero 7 Ultra Edition\\xae\3\x397\3\x38f\3\x392\3]
"Order"=hex:08,00,00,00,02,00,00,00,26,02,00,00,01,00,00,00,04,00,00,00,8a,..
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Nero 7 Ultra Edition\\x2018\3\xbd\3\xb1\3\x390\3\xb1\3\x391\3\xb1\3\xb3\3\x399\3\xb3\3\xae\3]
"Order"=hex:08,00,00,00,02,00,00,00,90,00,00,00,01,00,00,00,01,00,00,00,84,..
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Nero 7 Ultra Edition\\x384\3\xb5\3\x384\3\x38f\3\x38c\3\xad\3\xbd\3\xb1\3]
"Order"=hex:08,00,00,00,02,00,00,00,9c,01,00,00,01,00,00,00,03,00,00,00,84,..
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Nero 7 Ultra Edition\\x2022\3\xb3\3\x397\3\xb5\3\x389\3\x391\3\x2015\3\x384\3\x389\3\xb1\3]
"Order"=hex:08,00,00,00,02,00,00,00,0e,09,00,00,01,00,00,00,0d,00,00,00,b0,..
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Nero 7 Ultra Edition\\x2022\3\x391\3\xb3\3\xb1\3\xbb\3\xb5\3\x2015\3\xb1\3]
"Order"=hex:08,00,00,00,02,00,00,00,2c,02,00,00,01,00,00,00,04,00,00,00,8c,..
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Nero 7 Ultra Edition\\x2022\3\x394\3\x389\3\x38a\3\xad\3\x394\3\xb5\3\x392\3]
"Order"=hex:08,00,00,00,02,00,00,00,9a,00,00,00,01,00,00,00,01,00,00,00,8e,..
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Nero 7 Ultra Edition\\x9a\3\x38f\3\x389\3\xbd\3\xae\3 ]
"Order"=hex:08,00,00,00,02,00,00,00,92,00,00,00,01,00,00,00,01,00,00,00,86,..
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Nero 7 Ultra Edition\\xa6\3\x399\3\x394\3\x38f\3\xb3\3\x391\3\xb1\3\x396\3\x2015\3\xb1\3 ]
"Order"=hex:08,00,00,00,02,00,00,00,26,02,00,00,01,00,00,00,04,00,00,00,86,..

scanning hidden files ...

C:\Documents and Settings\user\Local Settings\Application Data\Microsoft\Messenger\didier_c13@hotmail.com\SharingMetadata\miss_fabich@hotmail.com\DFSR\Staging\CS{DBACA7C5-AE62-F258-31C4-4CA5D1AF10D9}\01\10-{DBACA7C5-AE62-F258-31C4-4CA5D1AF10D9}-v1-{C4E19BED-E0C7-43D6-B3D2-804586A91444}-v10-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS 8 bytes hidden from API

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 1

Remaining Services:
------------------

Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Shareaza\\Shareaza.exe"="C:\\Program Files\\Shareaza\\Shareaza.exe:*:Enabled:Shareaza"
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"="C:\\Program Files\\Bonjour\\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\\Documents and Settings\\user\\Local Settings\\Temporary Internet Files\\Content.IE5\\8E531M8U\\incredimail_install[1].exe"="C:\\Documents and Settings\\user\\Local Settings\\Temporary Internet Files\\Content.IE5\\8E531M8U\\incredimail_install[1].exe:*:Enabled:IncrediMail Installer"
"C:\\Program Files\\IncrediMail\\bin\\ImApp.exe"="C:\\Program Files\\IncrediMail\\bin\\ImApp.exe:*:Enabled:IncrediMail"
"C:\\Program Files\\IncrediMail\\bin\\IncMail.exe"="C:\\Program Files\\IncrediMail\\bin\\IncMail.exe:*:Enabled:IncrediMail"
"C:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"="C:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe:*:Enabled:IncrediMail"
"C:\\Program Files\\BitTorrent_DNA\\dna.exe"="C:\\Program Files\\BitTorrent_DNA\\dna.exe:*:Enabled:BitTorrent DNA"
"C:\\Program Files\\BitTorrent\\bittorrent.exe"="C:\\Program Files\\BitTorrent\\bittorrent.exe:*:Enabled:BitTorrent"
"C:\\Program Files\\Internet Explorer\\iexplore.exe"="C:\\Program Files\\Internet Explorer\\iexplore.exe:*:Enabled:Internet Explorer"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\\Program Files\\utorrent\\utorrent.exe"="C:\\Program Files\\utorrent\\utorrent.exe:*:Enabled:?Torrent"
"C:\\Program Files\\Outlook Express\\msimn.exe"="C:\\Program Files\\Outlook Express\\msimn.exe:*:Enabled:Outlook Express"
"C:\\Program Files\\Adobe\\Photoshop 7.0\\ImageReady.exe"="C:\\Program Files\\Adobe\\Photoshop 7.0\\ImageReady.exe:*:Enabled:Adobe ImageReady 7.0"
"C:\\WINDOWS\\system32\\system.exe"="C:\\WINDOWS\\system32\\system.exe:*:Enabled:system"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

Remaining Files:
---------------

File Backups: - C:\DOCUME~1\user\Desktop\SDFix\backups\backups.zip

Files with Hidden Attributes:

Wed 7 Jan 2004 346,760 A..H. --- "C:\Program Files\AnswerWorks 4.0\awApi4.dll"
Mon 15 Apr 2002 704,512 A..H. --- "C:\Program Files\AnswerWorks 4.0\awTPort.dll"
Thu 26 Jun 2003 208,896 A..H. --- "C:\Program Files\AnswerWorks 4.0\LtMorph40.dll"
Thu 26 Jun 2003 786,432 A..H. --- "C:\Program Files\AnswerWorks 4.0\LtSpynEn30.dll"
Sat 5 Mar 2005 1,172,600 A..H. --- "C:\Program Files\AutoCAD 2006\AcEPlotRenderer.dll"
Sat 5 Mar 2005 11,896 A..H. --- "C:\Program Files\AutoCAD 2006\Ac3dDwfUiRes.dll"
Sat 5 Mar 2005 91,256 A..H. --- "C:\Program Files\AutoCAD 2006\AcEPlotViewerRes.dll"
Wed 9 Mar 2005 8,624,248 A..H. --- "C:\Program Files\AutoCAD 2006\acad.exe"
Sat 5 Mar 2005 795,768 A..H. --- "C:\Program Files\AutoCAD 2006\acadficn.dll"
Sat 5 Mar 2005 88,696 A..H. --- "C:\Program Files\AutoCAD 2006\acadinet.dll"
Sat 5 Mar 2005 58,488 A..H. --- "C:\Program Files\AutoCAD 2006\acadinetRes.dll"
Sat 5 Mar 2005 3,335,288 A..H. --- "C:\Program Files\AutoCAD 2006\acadres.dll"
Sat 5 Mar 2005 242,808 A..H. --- "C:\Program Files\AutoCAD 2006\AcAeNet.dll"
Sat 5 Mar 2005 8,312 A..H. --- "C:\Program Files\AutoCAD 2006\AcAppRes.dll"
Sat 5 Mar 2005 54,392 A..H. --- "C:\Program Files\AutoCAD 2006\AcArrayRes.dll"
Sat 5 Mar 2005 234,616 A..H. --- "C:\Program Files\AutoCAD 2006\acaSetupRes.dll"
Sat 5 Mar 2005 38,008 A..H. --- "C:\Program Files\AutoCAD 2006\AcAssistRes.dll"
Sat 5 Mar 2005 128,120 A..H. --- "C:\Program Files\AutoCAD 2006\AcAuthEnvironRes.dll"
Sat 5 Mar 2005 54,392 A..H. --- "C:\Program Files\AutoCAD 2006\acblockRes.dll"
Sat 5 Mar 2005 22,136 A..H. --- "C:\Program Files\AutoCAD 2006\acbrowseRes.dll"
Sat 5 Mar 2005 10,360 A..H. --- "C:\Program Files\AutoCAD 2006\acbrwStatusBarRes.dll"
Sat 5 Mar 2005 201,848 A..H. --- "C:\Program Files\AutoCAD 2006\AcCalcUi.dll"
Sat 5 Mar 2005 16,504 A..H. --- "C:\Program Files\AutoCAD 2006\AcCalcEngineRes.dll"
Sat 5 Mar 2005 1,512,568 A..H. --- "C:\Program Files\AutoCAD 2006\AcCustomize.dll"
Sat 5 Mar 2005 25,720 A..H. --- "C:\Program Files\AutoCAD 2006\accvpsRes.dll"
Sat 5 Mar 2005 7,800 A..H. --- "C:\Program Files\AutoCAD 2006\AcDblClkEditRes.dll"
Sat 5 Mar 2005 1,975,416 A..H. --- "C:\Program Files\AutoCAD 2006\acdbmgd.dll"
Sat 5 Mar 2005 11,896 A..H. --- "C:\Program Files\AutoCAD 2006\acdbmgdhost.dll"
Sat 5 Mar 2005 13,944 A..H. --- "C:\Program Files\AutoCAD 2006\acDcDimStylesRes.dll"
Sat 5 Mar 2005 185,464 A..H. --- "C:\Program Files\AutoCAD 2006\acDcFrameRes.dll"
Sat 5 Mar 2005 1,639,544 A..H. --- "C:\Program Files\AutoCAD 2006\AcDcGridas.dll"
Sat 5 Mar 2005 11,896 A..H. --- "C:\Program Files\AutoCAD 2006\acDcHatchRes.dll"
Sat 5 Mar 2005 10,872 A..H. --- "C:\Program Files\AutoCAD 2006\acDcImagesRes.dll"
Sat 5 Mar 2005 14,456 A..H. --- "C:\Program Files\AutoCAD 2006\acDcLayoutsRes.dll"
Sat 5 Mar 2005 13,944 A..H. --- "C:\Program Files\AutoCAD 2006\acDcLinetypesRes.dll"
Sat 5 Mar 2005 28,280 A..H. --- "C:\Program Files\AutoCAD 2006\acDcSymbolsRes.dll"
Sat 5 Mar 2005 14,456 A..H. --- "C:\Program Files\AutoCAD 2006\AcDcTblStysRes.dll"
Sat 5 Mar 2005 13,944 A..H. --- "C:\Program Files\AutoCAD 2006\acDcTextStylesRes.dll"
Sat 5 Mar 2005 192,632 A..H. --- "C:\Program Files\AutoCAD 2006\acDcUtils.dll"
Sat 5 Mar 2005 50,296 A..H. --- "C:\Program Files\AutoCAD 2006\acDcUtilsRes.dll"
Sat 5 Mar 2005 13,944 A..H. --- "C:\Program Files\AutoCAD 2006\acDcXrefsRes.dll"
Sat 5 Mar 2005 38,008 A..H. --- "C:\Program Files\AutoCAD 2006\acddptyperes.dll"
Sat 5 Mar 2005 38,008 A..H. --- "C:\Program Files\AutoCAD 2006\acddvpointres.dll"
Sat 5 Mar 2005 91,256 A..H. --- "C:\Program Files\AutoCAD 2006\AcDimRes.dll"
Sat 5 Mar 2005 136,312 A..H. --- "C:\Program Files\AutoCAD 2006\Acdllonglw.dll"
Sat 5 Mar 2005 8,312 A..H. --- "C:\Program Files\AutoCAD 2006\acdorderRes.dll"
Sat 5 Mar 2005 173,176 A..H. --- "C:\Program Files\AutoCAD 2006\AcDrCommon.dll"
Sat 5 Mar 2005 1,328,248 A..H. --- "C:\Program Files\AutoCAD 2006\AcDwfImagingServices.dll"
Sat 5 Mar 2005 54,392 A..H. --- "C:\Program Files\AutoCAD 2006\AcDwfMarkupUiRes.dll"
Sat 5 Mar 2005 20,088 A..H. --- "C:\Program Files\AutoCAD 2006\AcDwgRecoveryRes.dll"
Sat 5 Mar 2005 246,904 A..H. --- "C:\Program Files\AutoCAD 2006\acdx.dll"
Sat 5 Mar 2005 8,824 A..H. --- "C:\Program Files\AutoCAD 2006\AcDxNotifyRes.dll"
Sat 5 Mar 2005 218,232 A..H. --- "C:\Program Files\AutoCAD 2006\AcDxPublishUi.dll"
Sat 5 Mar 2005 83,064 A..H. --- "C:\Program Files\AutoCAD 2006\AcDxUi.dll"
Sat 5 Mar 2005 1,180,792 A..H. --- "C:\Program Files\AutoCAD 2006\acdxwizard.dll"
Sat 5 Mar 2005 38,008 A..H. --- "C:\Program Files\AutoCAD 2006\AcDynInputRes.dll"
Sat 5 Mar 2005 25,720 A..H. --- "C:\Program Files\AutoCAD 2006\AcEAtteditRes.dll"
Sat 5 Mar 2005 83,064 A..H. --- "C:\Program Files\AutoCAD 2006\AcEPlotCommon.dll"
Sat 5 Mar 2005 496,760 A..H. --- "C:\Program Files\AutoCAD 2006\AcEPlotCore.dll"
Sat 5 Mar 2005 734,328 A..H. --- "C:\Program Files\AutoCAD 2006\AcEPlotViewer.dll"
Sat 5 Mar 2005 22,136 A..H. --- "C:\Program Files\AutoCAD 2006\AcEPlotXRes.dll"
Sat 5 Mar 2005 148,600 A..H. --- "C:\Program Files\AutoCAD 2006\acETransmituiRes.dll"
Sat 5 Mar 2005 173,176 A..H. --- "C:\Program Files\AutoCAD 2006\acETransmit.dll"
Sat 5 Mar 2005 38,008 A..H. --- "C:\Program Files\AutoCAD 2006\acETransmitRes.dll"
Sat 5 Mar 2005 66,680 A..H. --- "C:\Program Files\AutoCAD 2006\AcFieldRes.dll"
Sat 5 Mar 2005 46,200 A..H. --- "C:\Program Files\AutoCAD 2006\acfilterres.dll"
Fri 27 Jun 2003 124,064 A..H. --- "C:\Program Files\AutoCAD 2006\acfin16.dll"
Sat 5 Mar 2005 62,072 A..H. --- "C:\Program Files\AutoCAD 2006\AcFocusCtrl16.dll"
Sat 5 Mar 2005 494,712 A..H. --- "C:\Program Files\AutoCAD 2006\acgs.dll"
Sat 5 Mar 2005 13,432 A..H. --- "C:\Program Files\AutoCAD 2006\acgsConfigRes.dll"
Sat 5 Mar 2005 32,888 A..H. --- "C:\Program Files\AutoCAD 2006\acgsimage.dll"
Sat 5 Mar 2005 62,584 A..H. --- "C:\Program Files\AutoCAD 2006\acgsRes.dll"
Sat 5 Mar 2005 35,960 A..H. --- "C:\Program Files\AutoCAD 2006\achlnkuiRes.dll"
Sat 5 Mar 2005 10,360 A..H. --- "C:\Program Files\AutoCAD 2006\AcIDropRes.dll"
Sat 5 Mar 2005 9,848 A..H. --- "C:\Program Files\AutoCAD 2006\AcIDropMgrRes.dll"
Sat 5 Mar 2005 55,416 A..H. --- "C:\Program Files\AutoCAD 2006\AcInetUI.dll"
Sat 5 Mar 2005 21,624 A..H. --- "C:\Program Files\AutoCAD 2006\AcInetUIRes.dll"
Sat 5 Mar 2005 177,272 A..H. --- "C:\Program Files\AutoCAD 2006\AcIr16.dll"
Sat 5 Mar 2005 42,104 A..H. --- "C:\Program Files\AutoCAD 2006\acISMuiRes.dll"
Sat 5 Mar 2005 2,163,832 A..H. --- "C:\Program Files\AutoCAD 2006\AcLaunchNFWRes.dll"
Sat 5 Mar 2005 504,952 A..H. --- "C:\Program Files\AutoCAD 2006\AcLayer.dll"
Sat 5 Mar 2005 9,336 A..H. --- "C:\Program Files\AutoCAD 2006\AcLayerPRes.dll"
Sat 5 Mar 2005 132,216 A..H. --- "C:\Program Files\AutoCAD 2006\aclbed.dll"
Sat 5 Mar 2005 33,912 A..H. --- "C:\Program Files\AutoCAD 2006\aclbedres.dll"
Sat 5 Mar 2005 10,872 A..H. --- "C:\Program Files\AutoCAD 2006\acmatchRes.dll"
Sat 5 Mar 2005 1,070,200 A..H. --- "C:\Program Files\AutoCAD 2006\acmgd.dll"
Sat 5 Mar 2005 431,224 A..H. --- "C:\Program Files\AutoCAD 2006\acmgdinternal.dll"
Sat 5 Mar 2005 84,088 A..H. --- "C:\Program Files\AutoCAD 2006\AcMgdReverse.dll"
Sat 5 Mar 2005 14,456 A..H. --- "C:\Program Files\AutoCAD 2006\AcMgdShared.dll"
Sat 5 Mar 2005 132,216 A..H. --- "C:\Program Files\AutoCAD 2006\AcMNUParser.dll"
Sat 5 Mar 2005 95,352 A..H. --- "C:\Program Files\AutoCAD 2006\AcMPolygonCom.dll"
Sat 5 Mar 2005 91,256 A..H. --- "C:\Program Files\AutoCAD 2006\acmtedRes.dll"
Sat 5 Mar 2005 717,944 A..H. --- "C:\Program Files\AutoCAD 2006\AcMultiLineUi.dll"
Sat 5 Mar 2005 9,336 A..H. --- "C:\Program Files\AutoCAD 2006\AcObjClassImpRes.dll"
Sat 5 Mar 2005 13,944 A..H. --- "C:\Program Files\AutoCAD 2006\AcOpmExtRes.dll"
Sat 5 Mar 2005 46,200 A..H. --- "C:\Program Files\AutoCAD 2006\acopmRes.dll"
Sat 5 Mar 2005 31,352 A..H. --- "C:\Program Files\AutoCAD 2006\acoscaleRes.dll"
Sat 5 Mar 2005 22,136 A..H. --- "C:\Program Files\AutoCAD 2006\AcPEXCtlRes.dll"
Sat 5 Mar 2005 38,008 A..H. --- "C:\Program Files\AutoCAD 2006\acpires.dll"
Sat 5 Mar 2005 296,056 A..H. --- "C:\Program Files\AutoCAD 2006\AcPltRes.dll"
Sat 5 Mar 2005 234,616 A..H. --- "C:\Program Files\AutoCAD 2006\AcPltStampRes.dll"
Sat 5 Mar 2005 7,800 A..H. --- "C:\Program Files\AutoCAD 2006\AcPrevInputRes.dll"
Sat 5 Mar 2005 114,296 A..H. --- "C:\Program Files\AutoCAD 2006\AcProject16.dll"
Sat 5 Mar 2005 95,352 A..H. --- "C:\Program Files\AutoCAD 2006\AcProject16Res.dll"
Sat 5 Mar 2005 58,488 A..H. --- "C:\Program Files\AutoCAD 2006\AcPurgeRes.dll"
Sat 5 Mar 2005 156,792 A..H. --- "C:\Program Files\AutoCAD 2006\acqSetupRes.dll"
Sat 5 Mar 2005 50,296 A..H. --- "C:\Program Files\AutoCAD 2006\AcRefEdRes.dll"
Sat 5 Mar 2005 115,832 A..H. --- "C:\Program Files\AutoCAD 2006\acrenderRes.dll"
Sat 5 Mar 2005 10,360 A..H. --- "C:\Program Files\AutoCAD 2006\AcRevCloudRes.dll"
Sat 5 Mar 2005 210,040 A..H. --- "C:\Program Files\AutoCAD 2006\AcScaleList.dll"
Sat 5 Mar 2005 27,256 A..H. --- "C:\Program Files\AutoCAD 2006\AcSecOptRes.dll"
Sat 5 Mar 2005 197,752 A..H. --- "C:\Program Files\AutoCAD 2006\AcSignAppRes.dll"
Sat 5 Mar 2005 118,904 A..H. --- "C:\Program Files\AutoCAD 2006\AcSignApply.exe"
Sat 5 Mar 2005 15,992 A..H. --- "C:\Program Files\AutoCAD 2006\AcSignRes.dll"
Sat 5 Mar 2005 54,392 A..H. --- "C:\Program Files\AutoCAD 2006\acsiuiRes.dll"
Sat 5 Mar 2005 91,256 A..H. --- "C:\Program Files\AutoCAD 2006\AcSmNavRes.dll"
Sat 5 Mar 2005 42,104 A..H. --- "C:\Program Files\AutoCAD 2006\AcSmSheetListRes.dll"
Sat 5 Mar 2005 337,016 A..H. --- "C:\Program Files\AutoCAD 2006\AcSmWizardRes.dll"
Sat 5 Mar 2005 8,824 A..H. --- "C:\Program Files\AutoCAD 2006\acSpaceTransRes.dll"
Fri 27 Jun 2003 255,136 A..H. --- "C:\Program Files\AutoCAD 2006\acspl16.dll"
Sat 5 Mar 2005 115,832 A..H. --- "C:\Program Files\AutoCAD 2006\AcStarRes.dll"
Sat 5 Mar 2005 242,808 A..H. --- "C:\Program Files\AutoCAD 2006\AcStdBatch.dll"
Sat 5 Mar 2005 211,064 A..H. --- "C:\Program Files\AutoCAD 2006\AcStDStyle.dll"
Sat 5 Mar 2005 147,576 A..H. --- "C:\Program Files\AutoCAD 2006\AcStLay.dll"
Sat 5 Mar 2005 135,800 A..H. --- "C:\Program Files\AutoCAD 2006\AcStLtype.dll"
Sat 5 Mar 2005 188,024 A..H. --- "C:\Program Files\AutoCAD 2006\AcStMgr.dll"
Sat 5 Mar 2005 22,136 A..H. --- "C:\Program Files\AutoCAD 2006\AcStRes.dll"
Sat 5 Mar 2005 74,872 A..H. --- "C:\Program Files\AutoCAD 2006\AcStStdRes.dll"
Sat 5 Mar 2005 129,656 A..H. --- "C:\Program Files\AutoCAD 2006\AcStTStyle.dll"
Sat 5 Mar 2005 78,968 A..H. --- "C:\Program Files\AutoCAD 2006\AcTableRes.dll"
Sat 5 Mar 2005 7,288 A..H. --- "C:\Program Files\AutoCAD 2006\AcTaskBarRes.dll"
Sat 5 Mar 2005 257,144 A..H. --- "C:\Program Files\AutoCAD 2006\AcTc.dll"
Sat 5 Mar 2005 50,296 A..H. --- "C:\Program Files\AutoCAD 2006\AcTcRes.dll"
Sat 5 Mar 2005 54,392 A..H. --- "C:\Program Files\AutoCAD 2006\AcTcToolsRes.dll"
Sat 5 Mar 2005 442,488 A..H. --- "C:\Program Files\AutoCAD 2006\AcTcUi.dll"
Sat 5 Mar 2005 54,392 A..H. --- "C:\Program Files\AutoCAD 2006\AcTcUiRes.dll"
Sat 5 Mar 2005 423,032 A..H. --- "C:\Program Files\AutoCAD 2006\AcTpCatalogRes.dll"
Sat 5 Mar 2005 9,336 A..H. --- "C:\Program Files\AutoCAD 2006\acTscaleRes.dll"
Sat 5 Mar 2005 222,328 A..H. --- "C:\Program Files\AutoCAD 2006\acui16.dll"
Sat 5 Mar 2005 29,304 A..H. --- "C:\Program Files\AutoCAD 2006\acui16res.dll"
Sat 5 Mar 2005 22,648 A..H. --- "C:\Program Files\AutoCAD 2006\acurlutl16.dll"
Sat 5 Mar 2005 79,480 A..H. --- "C:\Program Files\AutoCAD 2006\AcUt.dll"
Sat 5 Mar 2005 54,392 A..H. --- "C:\Program Files\AutoCAD 2006\AcVbaRes.dll"
Sat 5 Mar 2005 119,928 A..H. --- "C:\Program Files\AutoCAD 2006\AcViewTransitionsUi.dll"
Sat 5 Mar 2005 62,584 A..H. --- "C:\Program Files\AutoCAD 2006\AcVMToolsRes.dll"
Sat 5 Mar 2005 7,800 A..H. --- "C:\Program Files\AutoCAD 2006\AcVPMaxMinRes.dll"
Sat 5 Mar 2005 42,104 A..H. --- "C:\Program Files\AutoCAD 2006\AcVpPlaceRes.dll"
Sat 5 Mar 2005 242,808 A..H. --- "C:\Program Files\AutoCAD 2006\acwebpublishRes.dll"
Sat 5 Mar 2005 9,336 A..H. --- "C:\Program Files\AutoCAD 2006\AcWipeoutRes.dll"
Sat 5 Mar 2005 8,312 A..H. --- "C:\Program Files\AutoCAD 2006\AcXopenRes.dll"
Sat 5 Mar 2005 31,864 A..H. --- "C:\Program Files\AutoCAD 2006\acxploderes.dll"
Sat 5 Mar 2005 96,376 A..H. --- "C:\Program Files\AutoCAD 2006\adctrls.dll"
Sat 5 Mar 2005 33,912 A..H. --- "C:\Program Files\AutoCAD 2006\adctrlsRes.dll"
Sat 5 Mar 2005 123,000 A..H. --- "C:\Program Files\AutoCAD 2006\addplwiz.exe"
Sat 5 Mar 2005 259,192 A..H. --- "C:\Program Files\AutoCAD 2006\addplwizRes.dll"
Mon 9 Dec 2002 458,752 A..H. --- "C:\Program Files\AutoCAD 2006\adfactry.dll"
Sat 5 Mar 2005 59,000 A..H. --- "C:\Program Files\AutoCAD 2006\AdFTP.dll"
Sat 5 Mar 2005 46,200 A..H. --- "C:\Program Files\AutoCAD 2006\AdFTPRes.dll"
Sat 5 Mar 2005 2,292,160 A..H. --- "C:\Program Files\AutoCAD 2006\adlmdll.dll"
Sat 5 Mar 2005 140,408 A..H. --- "C:\Program Files\AutoCAD 2006\adlmres.dll"
Sat 5 Mar 2005 50,296 A..H. --- "C:\Program Files\AutoCAD 2006\AdMigLib.dll"
Sat 5 Mar 2005 140,408 A..H. --- "C:\Program Files\AutoCAD 2006\AdMigrator.exe"
Sat 5 Mar 2005 388,728 A..H. --- "C:\Program Files\AutoCAD 2006\AdRefMan.exe"
Sat 5 Mar 2005 402,552 A..H. --- "C:\Program Files\AutoCAD 2006\AdRefManRes.dll"
Sat 5 Mar 2005 297,592 A..H. --- "C:\Program Files\AutoCAD 2006\AdskScInst.dll"
Sat 5 Mar 2005 164,984 A..H. --- "C:\Program Files\AutoCAD 2006\AdSubAwareres.dll"
Sat 5 Mar 2005 191,096 A..H. --- "C:\Program Files\AutoCAD 2006\AdSubAware.exe"
Sat 5 Mar 2005 496,760 A..H. --- "C:\Program Files\AutoCAD 2006\adui16.dll"
Sat 5 Mar 2005 46,200 A..H. --- "C:\Program Files\AutoCAD 2006\adui16res.dll"
Wed 16 Feb 2005 17,024 A..H. --- "C:\Program Files\AutoCAD 2006\AecArchXOE.dll"
Wed 16 Feb 2005 54,904 A..H. --- "C:\Program Files\AutoCAD 2006\AecUiBase47enu.dll"
Sat 5 Mar 2005 418,936 A..H. --- "C:\Program Files\AutoCAD 2006\anav.dll"
Sat 5 Mar 2005 62,584 A..H. --- "C:\Program Files\AutoCAD 2006\anavRes.dll"
Sat 5 Mar 2005 25,208 A..H. --- "C:\Program Files\AutoCAD 2006\apperr.dll"
Sat 5 Mar 2005 22,648 A..H. --- "C:\Program Files\AutoCAD 2006\apperrRes.dll"
Sat 5 Mar 2005 35,448 A..H. --- "C:\Program Files\AutoCAD 2006\apploadRes.dll"
Sat 5 Mar 2005 177,272 A..H. --- "C:\Program Files\AutoCAD 2006\aseloc.dll"
Sat 5 Mar 2005 8,824 A..H. --- "C:\Program Files\AutoCAD 2006\asilloc.dll"
Sat 5 Mar 2005 46,200 A..H. --- "C:\Program Files\AutoCAD 2006\asiloc.dll"
Sat 5 Jan 2002 84,992 A..H. --- "C:\Program Files\AutoCAD 2006\atl70.dll"
Sat 5 Mar 2005 14,968 A..H. --- "C:\Program Files\AutoCAD 2006\atteditRes.dll"
Sat 5 Mar 2005 3,068,024 A..H. --- "C:\Program Files\AutoCAD 2006\axdb16.dll"
Sat 5 Mar 2005 38,008 A..H. --- "C:\Program Files\AutoCAD 2006\BattmanRes.dll"
Sat 5 Mar 2005 177,272 A..H. --- "C:\Program Files\AutoCAD 2006\BCSPSE.dll"
Sat 5 Mar 2005 345,208 A..H. --- "C:\Program Files\AutoCAD 2006\BzLocation.dll"
Sat 5 Mar 2005 22,136 A..H. --- "C:\Program Files\AutoCAD 2006\BzPSLang.dll"
Sat 5 Mar 2005 234,616 A..H. --- "C:\Program Files\AutoCAD 2006\cao16.dll"
Sat 5 Mar 2005 74,872 A..H. --- "C:\Program Files\AutoCAD 2006\CdaLcDlg.dll"
Sat 5 Mar 2005 163,960 A..H. --- "C:\Program Files\AutoCAD 2006\color.dll"
Sat 5 Mar 2005 31,864 A..H. --- "C:\Program Files\AutoCAD 2006\colorRes.dll"
Sat 5 Mar 2005 10,360 A..H. --- "C:\Program Files\AutoCAD 2006\coreerr.dll"
Sat 5 Mar 2005 492,664 A..H. --- "C:\Program Files\AutoCAD 2006\csp16.dll"
Sat 5 Mar 2005 7,800 A..H. --- "C:\Program Files\AutoCAD 2006\cspenures.dll"
Sat 1 Jun 2002 719,360 A..H. --- "C:\Program Files\AutoCAD 2006\dbghelp.dll"
Sat 5 Mar 2005 30,328 A..H. --- "C:\Program Files\AutoCAD 2006\ddelib.dll"
Sat 5 Mar 2005 175,736 A..H. --- "C:\Program Files\AutoCAD 2006\dlint8.dll"
Sat 5 Mar 2005 600,184 A..H. --- "C:\Program Files\AutoCAD 2006\dswhip.dll"
Sat 5 Mar 2005 22,648 A..H. --- "C:\Program Files\AutoCAD 2006\dswhipRes.dll"
Wed 1 Dec 2004 143,360 A..H. --- "C:\Program Files\AutoCAD 2006\dunzip32.dll"
Sat 5 Mar 2005 201,848 A..H. --- "C:\Program Files\AutoCAD 2006\dwgaidsRes.dll"
Sat 5 Mar 2005 345,208 A..H. --- "C:\Program Files\AutoCAD 2006\DwgCheckStandardsRes.dll"
Sat 5 Mar 2005 51,320 A..H. --- "C:\Program Files\AutoCAD 2006\DwgCheckStandards.exe"
Wed 1 Dec 2004 172,032 A..H. --- "C:\Program Files\AutoCAD 2006\dzip32.dll"
Sat 5 Mar 2005 312,952 A..H. --- "C:\Program Files\AutoCAD 2006\ereg.dll"
Sat 5 Mar 2005 18,040 A..H. --- "C:\Program Files\AutoCAD 2006\EregRes.dll"
Sat 5 Mar 2005 47,736 A..H. --- "C:\Program Files\AutoCAD 2006\erren.dll"
Sat 5 Mar 2005 47,736 A..H. --- "C:\Program Files\AutoCAD 2006\errenu.dll"
Sat 5 Mar 2005 28,792 A..H. --- "C:\Program Files\AutoCAD 2006\fontcap.dll"
Sat 5 Mar 2005 22,648 A..H. --- "C:\Program Files\AutoCAD 2006\fontcapres.dll"
Sat 5 Mar 2005 113,272 A..H. --- "C:\Program Files\AutoCAD 2006\gridres.dll"
Sat 5 Mar 2005 39,032 A..H. --- "C:\Program Files\AutoCAD 2006\HaveDisk.dll"
Sat 5 Mar 2005 83,064 A..H. --- "C:\Program Files\AutoCAD 2006\hcreg8.dll"
Sat 5 Mar 2005 25,208 A..H. --- "C:\Program Files\AutoCAD 2006\hcreg8Res.dll"
Sat 5 Mar 2005 1,139,832 A..H. --- "C:\Program Files\AutoCAD 2006\heidi8.dll"
Sat 5 Mar 2005 9,336 A..H. --- "C:\Program Files\AutoCAD 2006\hideRes.dll"
Sat 5 Mar 2005 369,784 A..H. --- "C:\Program Files\AutoCAD 2006\HPSETUP.exe"
Sat 5 Mar 2005 24,184 A..H. --- "C:\Program Files\AutoCAD 2006\HPSETUPRes.dll"
Sat 5 Mar 2005 1,135,080 A..H. --- "C:\Program Files\AutoCAD 2006\lacadr.dll"
Sat 5 Mar 2005 38,008 A..H. --- "C:\Program Files\AutoCAD 2006\LaytransRes.dll"
Sat 5 Mar 2005 17,528 A..H. --- "C:\Program Files\AutoCAD 2006\light8.dll"
Sat 5 Jan 2002 974,848 A..H. --- "C:\Program Files\AutoCAD 2006\mfc70.dll"
Sat 5 Jan 2002 964,608 A..H. --- "C:\Program Files\AutoCAD 2006\mfc70u.dll"
Sat 5 Jan 2002 54,784 A..H. --- "C:\Program Files\AutoCAD 2006\msvci70.dll"
Sat 5 Jan 2002 487,424 A..H. --- "C:\Program Files\AutoCAD 2006\msvcp70.dll"
Wed 19 Mar 2003 499,712 A..H. --- "C:\Program Files\AutoCAD 2006\msvcp71.dll"
Sat 5 Jan 2002 344,064 A..H. --- "C:\Program Files\AutoCAD 2006\msvcr70.dll"
Fri 21 Feb 2003 348,160 A..H. --- "C:\Program Files\AutoCAD 2006\msvcr71.dll"
Sat 5 Mar 2005 23,160 A..H. --- "C:\Program Files\AutoCAD 2006\mtl8.dll"
Sat 5 Mar 2005 24,184 A..H. --- "C:\Program Files\AutoCAD 2006\oletohdi8.dll"
Sat 5 Mar 2005 25,720 A..H. --- "C:\Program Files\AutoCAD 2006\passwordUI.dll"
Sat 5 Mar 2005 8,312 A..H. --- "C:\Program Files\AutoCAD 2006\passwordUIRes.dll"
Sat 5 Mar 2005 242,808 A..H. --- "C:\Program Files\AutoCAD 2006\pc3edit.dll"
Sat 5 Mar 2005 164,984 A..H. --- "C:\Program Files\AutoCAD 2006\pc3EditRes.dll"
Sat 5 Mar 2005 68,728 A..H. --- "C:\Program Files\AutoCAD 2006\pc3exe.exe"
Sat 5 Mar 2005 23,160 A..H. --- "C:\Program Files\AutoCAD 2006\pc3exeRes.dll"
Sat 5 Mar 2005 21,112 A..H. --- "C:\Program Files\AutoCAD 2006\pctres8.dll"
Sat 5 Mar 2005 91,256 A..H. --- "C:\Program Files\AutoCAD 2006\physpen.dll"
Sat 5 Mar 2005 78,456 A..H. --- "C:\Program Files\AutoCAD 2006\plcalwiz.dll"
Sat 5 Mar 2005 136,312 A..H. --- "C:\Program Files\AutoCAD 2006\plcalwizRes.dll"
Sat 5 Mar 2005 13,432 A..H. --- "C:\Program Files\AutoCAD 2006\plcferr.dll"
Sat 5 Mar 2005 457,848 A..H. --- "C:\Program Files\AutoCAD 2006\plcfmgr.dll"
Sat 5 Mar 2005 38,008 A..H. --- "C:\Program Files\AutoCAD 2006\plcfmgrRes.dll"
Sat 5 Mar 2005 676,984 A..H. --- "C:\Program Files\AutoCAD 2006\plotcfg8.dll"
Sat 5 Mar 2005 23,672 A..H. --- "C:\Program Files\AutoCAD 2006\plotgrad.dll"
Sat 5 Mar 2005 316,536 A..H. --- "C:\Program Files\AutoCAD 2006\pm8.dll"
Sat 5 Mar 2005 11,896 A..H. --- "C:\Program Files\AutoCAD 2006\pmres8.dll"
Sat 5 Mar 2005 267,384 A..H. --- "C:\Program Files\AutoCAD 2006\pmutil8.dll"
Sat 5 Mar 2005 42,616 A..H. --- "C:\Program Files\AutoCAD 2006\prntprog.dll"
Sat 5 Mar 2005 148,600 A..H. --- "C:\Program Files\AutoCAD 2006\prntprogRes.dll"
Sat 5 Mar 2005 46,200 A..H. --- "C:\Program Files\AutoCAD 2006\PROJECTPOINTCLIENTLib.dll"
Mon 20 Dec 2004 1,005,152 A..H. --- "C:\Program Files\AutoCAD 2006\ProjectPointClient.dll"
Sat 5 Mar 2005 25,720 A..H. --- "C:\Program Files\AutoCAD 2006\prxyinet.dll"
Sat 5 Mar 2005 9,336 A..H. --- "C:\Program Files\AutoCAD 2006\prxyinetRes.dll"
Sat 5 Mar 2005 134,776 A..H. --- "C:\Program Files\AutoCAD 2006\psizewiz.dll"
Sat 5 Mar 2005 148,600 A..H. --- "C:\Program Files\AutoCAD 2006\psizewizRes.dll"
Sat 5 Mar 2005 63,096 A..H. --- "C:\Program Files\AutoCAD 2006\R14PSKit.dll"
Sat 5 Mar 2005 226,424 A..H. --- "C:\Program Files\AutoCAD 2006\R14PSKitRes.dll"
Sat 5 Mar 2005 95,352 A..H. --- "C:\Program Files\AutoCAD 2006\regacad16.dll"
Sat 5 Mar 2005 12,920 A..H. --- "C:\Program Files\AutoCAD 2006\regacadRes.dll"
Sat 5 Mar 2005 62,584 A..H. --- "C:\Program Files\AutoCAD 2006\resize.dll"
Sat 5 Mar 2005 74,872 A..H. --- "C:\Program Files\AutoCAD 2006\RWUXThemeS.dll"
Sat 5 Mar 2005 111,736 A..H. --- "C:\Program Files\AutoCAD 2006\senddmp.exe"
Sat 5 Mar 2005 144,504 A..H. --- "C:\Program Files\AutoCAD 2006\senddmpRes.dll"
Sat 5 Mar 2005 402,552 A..H. --- "C:\Program Files\AutoCAD 2006\sfl201as.dll"
Sat 5 Mar 2005 182,904 A..H. --- "C:\Program Files\AutoCAD 2006\sfttabac.dll"
Sat 5 Mar 2005 20,600 A..H. --- "C:\Program Files\AutoCAD 2006\sfttabacRes.dll"
Sat 19 May 2001 78,336 A..H. --- "C:\Program Files\AutoCAD 2006\sfxbe322.dll"
Sat 5 Feb 2000 53,760 A..H. --- "C:\Program Files\AutoCAD 2006\sfxfe32.exe"
Sat 5 Mar 2005 46,200 A..H. --- "C:\Program Files\AutoCAD 2006\shareac.dll"
Sat 5 Mar 2005 78,968 A..H. --- "C:\Program Files\AutoCAD 2006\sharemfc.dll"
Sat 5 Mar 2005 7,800 A..H. --- "C:\Program Files\AutoCAD 2006\sharemfcRes.dll"
Tue 10 Jun 2003 41,120 A..H. --- "C:\Program Files\AutoCAD 2006\slidelib.exe"
Sat 5 Mar 2005 590,968 A..H. --- "C:\Program Files\AutoCAD 2006\sqldata.dll"
Sat 5 Mar 2005 861,304 A..H. --- "C:\Program Files\AutoCAD 2006\sqleng.dll"
Sat 5 Mar 2005 234,616 A..H. --- "C:\Program Files\AutoCAD 2006\styedit.dll"
Sat 5 Mar 2005 71,288 A..H. --- "C:\Program Files\AutoCAD 2006\styexe.exe"
Sat 5 Mar 2005 22,648 A..H. --- "C:\Program Files\AutoCAD 2006\styexeRes.dll"
Sat 5 Mar 2005 33,400 A..H. --- "C:\Program Files\AutoCAD 2006\styleeng.dll"
Sat 5 Mar 2005 107,128 A..H. --- "C:\Program Files\AutoCAD 2006\styshwiz.exe"
Sat 5 Mar 2005 238,712 A..H. --- "C:\Program Files\AutoCAD 2006\styshwizRes.dll"
Sat 5 Mar 2005 8,824 A..H. --- "C:\Program Files\AutoCAD 2006\texteditRes.dll"
Sat 5 Mar 2005 25,720 A..H. --- "C:\Program Files\AutoCAD 2006\textfindRes.dll"
Sat 5 Mar 2005 21,112 A..H. --- "C:\Program Files\AutoCAD 2006\texture8.dll"
Sat 5 Mar 2005 140,408 A..H. --- "C:\Program Files\AutoCAD 2006\tmptbl.dll"
Fri 6 Jun 2003 245,408 A..H. --- "C:\Program Files\AutoCAD 2006\unicows.dll"
Sat 5 Mar 2005 33,912 A..H. --- "C:\Program Files\AutoCAD 2006\unitsRes.dll"
Sat 5 Mar 2005 46,712 A..H. --- "C:\Program Files\AutoCAD 2006\userdata.dll"
Sat 5 Mar 2005 24,696 A..H. --- "C:\Program Files\AutoCAD 2006\vlabout.dll"
Sat 5 Mar 2005 488,568 A..H. --- "C:\Program Files\AutoCAD 2006\vlaboutRes.dll"
Sat 5 Mar 2005 118,392 A..H. --- "C:\Program Files\AutoCAD 2006\vlcom.dll"
Sat 5 Mar 2005 36,984 A..H. --- "C:\Program Files\AutoCAD 2006\vldlg.dll"
Sat 5 Mar 2005 326,264 A..H. --- "C:\Program Files\AutoCAD 2006\vlide.dll"
Sat 5 Mar 2005 1,145,976 A..H. --- "C:\Program Files\AutoCAD 2006\vllib.dll"
Sat 5 Mar 2005 233,592 A..H. --- "C:\Program Files\AutoCAD 2006\vlmsg.dll"
Sat 5 Mar 2005 73,848 A..H. --- "C:\Program Files\AutoCAD 2006\vlreac.dll"
Sat 5 Mar 2005 27,256 A..H. --- "C:\Program Files\AutoCAD 2006\vlres.dll"
Sat 5 Mar 2005 8,824 A..H. --- "C:\Program Files\AutoCAD 2006\whohasRes.dll"
Sat 5 Mar 2005 140,408 A..H. --- "C:\Program Files\AutoCAD 2006\WSCommCntrUI1.dll"
Sat 5 Mar 2005 119,928 A..H. --- "C:\Program Files\AutoCAD 2006\WSCommCntrUI1Res.dll"
Sat 5 Mar 2005 18,552 A..H. --- "C:\Program Files\AutoCAD 2006\WSCommCntrAcConRes.dll"
Sat 10 Jan 2004 1,393,736 A..H. --- "C:\Program Files\AutoCAD 2006\xerces-c_1_6_0.dll"
Fri 16 Jan 2004 99,392 A..H. --- "C:\Program Files\AutoCAD 2006\zlib.dll"
Fri 30 Mar 2007 2,403,392 A..HR --- "C:\Program Files\Google\GoogleToolbar1.dll"
Fri 30 Mar 2007 52,272 A..H. --- "C:\Program Files\Google\googletoolbar1user.exe"
Tue 7 Nov 2006 33,792 ...H. --- "C:\Program Files\Internet Explorer\custsat.dll"
Tue 17 Oct 2006 60,416 A..H. --- "C:\Program Files\Internet Explorer\hmmapi.dll"
Tue 17 Oct 2006 69,120 A..H. --- "C:\Program Files\Internet Explorer\iedw.exe"
Tue 7 Nov 2006 287,744 A..H. --- "C:\Program Files\Internet Explorer\ieproxy.dll"
Tue 28 Feb 2006 28,672 A..H. --- "C:\Program Files\Messenger\custsat.dll"
Wed 4 Aug 2004 82,944 A..H. --- "C:\Program Files\Messenger\msgsc.dll"
Wed 4 Aug 2004 180,224 A..H. --- "C:\Program Files\Messenger\msgslang.dll"
Wed 13 Oct 2004 1,694,208 ..SH. --- "C:\Program Files\Messenger\msmsgs.exe"
Thu 9 Nov 2000 148,480 A..H. --- "C:\Program Files\Microsoft ActiveSync\MSCONV97.DLL"
Wed 7 Feb 2001 208,979 A..H. --- "C:\Program Files\Microsoft ActiveSync\RICHINK.DLL"
Tue 28 Feb 2006 3,555,328 A..H. --- "C:\Program Files\Movie Maker\moviemk.exe"
Tue 28 Feb 2006 167,936 A..H. --- "C:\Program Files\Movie Maker\WMM2AE.dll"
Tue 28 Feb 2006 4,096 A..H. --- "C:\Program Files\Movie Maker\WMM2ERES.dll"
Tue 28 Feb 2006 7,680 A..H. --- "C:\Program Files\Movie Maker\WMM2EXT.dll"
Tue 28 Feb 2006 402,432 A..H. --- "C:\Program Files\Movie Maker\WMM2FILT.dll"
Tue 28 Feb 2006 502,272 A..H. --- "C:\Program Files\Movie Maker\WMM2FXA.dll"
Tue 28 Feb 2006 325,632 A..H. --- "C:\Program Files\Movie Maker\WMM2FXB.dll"
Tue 28 Feb 2006 4,256,768 A..H. --- "C:\Program Files\Movie Maker\WMM2RES.dll"
Tue 28 Feb 2006 5,632 A..H. --- "C:\Program Files\Movie Maker\WMM2RES2.dll"
Tue 28 Feb 2006 385,024 A..H. --- "C:\Program Files\NetMeeting\callcont.dll"
Tue 28 Feb 2006 12,288 A..H. --- "C:\Program Files\NetMeeting\cb32.exe"
Tue 28 Feb 2006 1,032,192 A..H. --- "C:\Program Files\NetMeeting\conf.exe"
Tue 28 Feb 2006 45,056 A..H. --- "C:\Program Files\NetMeeting\confmrsl.dll"
Tue 28 Feb 2006 40,960 A..H. --- "C:\Program Files\NetMeeting\dcap32.dll"
Tue 28 Feb 2006 57,344 A..H. --- "C:\Program Files\NetMeeting\h323cc.dll"
Tue 28 Feb 2006 274,432 A..H. --- "C:\Program Files\NetMeeting\MST120.DLL"
Tue 28 Feb 2006 57,344 A..H. --- "C:\Program Files\NetMeeting\MST123.DLL"
Tue 28 Feb 2006 221,184 A..H. --- "C:\Program Files\NetMeeting\nac.dll"
Tue 28 Feb 2006 229,376 A..H. --- "C:\Program Files\NetMeeting\nmas.dll"
Tue 28 Feb 2006 28,672 A..H. --- "C:\Program Files\NetMeeting\nmasnt.dll"
Tue 28 Feb 2006 81,920 A..H. --- "C:\Program Files\NetMeeting\nmchat.dll"
Tue 28 Feb 2006 77,824 A..H. --- "C:\Program Files\NetMeeting\nmcom.dll"
Tue 28 Feb 2006 151,552 A..H. --- "C:\Program Files\NetMeeting\nmft.dll"
Tue 28 Feb 2006 172,032 A..H. --- "C:\Program Files\NetMeeting\nmoldwb.dll"
Tue 28 Feb 2006 188,416 A..H. --- "C:\Program Files\NetMeeting\nmwb.dll"
Tue 28 Feb 2006 61,440 A..H. --- "C:\Program Files\NetMeeting\rrcm.dll"
Tue 28 Feb 2006 12,288 A..H. --- "C:\Program Files\NetMeeting\wb32.exe"
Wed 16 May 2007 1,314,816 A..H. --- "C:\Program Files\Outlook Express\msoe.dll"
Tue 28 Feb 2006 2,479,616 A..H. --- "C:\Program Files\Outlook Express\msoeres.dll"
Tue 28 Feb 2006 104,448 A..H. --- "C:\Program Files\Outlook Express\oeimport.dll"
Tue 28 Feb 2006 60,416 A..H. --- "C:\Program Files\Outlook Express\oemig50.exe"
Tue 28 Feb 2006 35,328 A..H. --- "C:\Program Files\Outlook Express\oemiglib.dll"
Tue 28 Feb 2006 73,216 A..H. --- "C:\Program Files\Outlook Express\setup50.exe"
Tue 28 Feb 2006 46,080 A..H. --- "C:\Program Files\Outlook Express\wab.exe"
Tue 28 Feb 2006 32,768 A..H. --- "C:\Program Files\Outlook Express\wabfind.dll"
Wed 16 May 2007 85,504 A..H. --- "C:\Program Files\Outlook Express\wabimp.dll"
Tue 28 Feb 2006 30,208 A..H. --- "C:\Program Files\Outlook Express\wabmig.exe"
Wed 18 Apr 2007 633,000 A..H. --- "C:\Program Files\Spybot - Search & Destroy\advcheck.dll"
Tue 31 May 2005 28,672 A..H. --- "C:\Program Files\Spybot - Search & Destroy\aports.dll"
Tue 31 May 2005 47,256 A..H. --- "C:\Program Files\Spybot - Search & Destroy\blindman.exe"
Tue 31 May 2005 22,528 A..H. --- "C:\Program Files\Spybot - Search & Destroy\borlndmm.dll"
Tue 31 May 2005 15,872 A..H. --- "C:\Program Files\Spybot - Search & Destroy\delphimm.dll"
Tue 31 May 2005 853,672 A..H. --- "C:\Program Files\Spybot - Search & Destroy\SDHelper.dll"
Tue 31 May 2005 4,393,096 A..H. --- "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe"
Tue 31 May 2005 1,415,824 A..H. --- "C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe"
Tue 2 Jan 2007 534,720 A..H. --- "C:\Program Files\Spybot - Search & Destroy\Tools.dll"
Mon 7 May 2007 649,378 A..H. --- "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Tue 31 May 2005 122,368 A..H. --- "C:\Program Files\Spybot - Search & Destroy\UnzDll.dll"
Tue 31 May 2005 417,408 A..H. --- "C:\Program Files\Spybot - Search & Destroy\Update.exe"
Tue 31 May 2005 139,776 A..H. --- "C:\Program Files\Spybot - Search & Destroy\ZipDll.dll"
Tue 28 Feb 2006 539,136 A..H. --- "C:\Program Files\Windows NT\dialer.exe"
Tue 28 Feb 2006 13,312 A..H. --- "C:\Program Files\Windows NT\htrn_jis.dll"
Tue 28 Feb 2006 28,160 A..H. --- "C:\Program Files\Windows NT\hypertrm.exe"
Tue 28 Feb 2006 28,672 A..H. --- "C:\Program Files\Windows Media Player\custsat.dll"
Tue 27 Jun 2006 410,928 ...H. --- "C:\Program Files\Windows Media Player\LegitLibM.dll"
Tue 28 Feb 2006 786,432 A..H. --- "C:\Program Files\Windows Media Player\migrate.exe"
Tue 28 Feb 2006 4,639 A..H. --- "C:\Program Files\Windows Media Player\mplayer2.exe"
Wed 18 Oct 2006 243,712 A..H. --- "C:\Program Files\Windows Media Player\mpvis.dll"
Fri 28 Jan 2005 47,616 A..H. --- "C:\Program Files\Windows Media Player\msoobci.dll"
Tue 28 Feb 2006 226,816 A..H. --- "C:\Program Files\Windows Media Player\npdrmv2.dll"
Tue 28 Feb 2006 403 A..H. --- "C:\Program Files\Windows Media Player\npdrmv2.zip"
Tue 28 Feb 2006 22,060 A..H. --- "C:\Program Files\Windows Media Player\npds.zip"
Tue 29 Nov 2005 364,544 A..H. --- "C:\Program Files\Windows Media Player\npdsplay.dll"
Tue 28 Feb 2006 10,240 A..H. --- "C:\Program Files\Windows Media Player\npwmsdrm.dll"
Wed 18 Oct 2006 96,256 A..H. --- "C:\Program Files\Windows Media Player\SET25D.tmp"
Wed 1 Nov 2006 1,669,120 A..H. --- "C:\Program Files\Windows Media Player\setup_wm.exe"
Wed 18 Oct 2006 493,568 ...H. --- "C:\Program Files\Windows Media Player\wmdbexport.exe"
Wed 18 Oct 2006 241,664 ...H. --- "C:\Program Files\Windows Media Player\wmlaunch.exe"
Wed 18 Oct 2006 96,256 A..H. --- "C:\Program Files\Windows Media Player\wmpband.dll"
Wed 18 Oct 2006 25,600 ...H. --- "C:\Program Files\Windows Media Player\wmpenc.exe"
Wed 18 Oct 2006 64,000 A..H. --- "C:\Program Files\Windows Media Player\wmplayer.exe"
Wed 18 Oct 2006 913,408 ...H. --- "C:\Program Files\Windows Media Player\wmpnetwk.exe"
Tue 28 Feb 2006 221,184 A..H. --- "C:\Program Files\Windows Media Player\wmpns.dll"
Wed 18 Oct 2006 204,288 ...H. --- "C:\Program Files\Windows Media Player\wmpnscfg.exe"
Wed 18 Oct 2006 198,144 ...H. --- "C:\Program Files\Windows Media Player\wmpnssci.dll"
Wed 18 Oct 2006 36,864 ...H. --- "C:\Program Files\Windows Media Player\wmpshare.exe"
Wed 1 Nov 2006 1,669,120 A..H. --- "C:\Program Files\Windows Media Player\wmsetsdk.exe"
Wed 18 Oct 2006 8,704 ...H. --- "C:\Program Files\Windows Media Connect 2\wmccds.exe"
Wed 18 Oct 2006 8,704 ...H. --- "C:\Program Files\Windows Media Connect 2\WMCCFG.exe"
Wed 18 Oct 2006 4,096 ...H. --- "C:\Program Files\Windows Media Connect 2\WMCCPL.dll"
Wed 18 Oct 2006 4,096 ...H. --- "C:\Program Files\Windows Media Connect 2\wmcsci.dll"
Sun 3 Dec 2006 313,856 A..H. --- "C:\Program Files\WinRAR\Rar.exe"
Sun 3 Dec 2006 126,464 A..H. --- "C:\Program Files\WinRAR\RarExt.dll"
Tue 7 Jun 2005 43,008 A..H. --- "C:\Program Files\WinRAR\RarExt64.dll"
Tue 7 Jun 2005 44,032 A..H. --- "C:\Program Files\WinRAR\RarExtLoader.exe"
Sun 3 Dec 2006 98,304 A..H. --- "C:\Program Files\WinRAR\Uninstall.exe"
Sun 3 Dec 2006 200,704 A..H. --- "C:\Program Files\WinRAR\UnRAR.exe"
Sun 3 Dec 2006 915,968 A..H. --- "C:\Program Files\WinRAR\WinRAR.exe"
Wed 16 Nov 2005 1,753 A..H. --- "C:\Program Files\WinZip\EXAMPLE.ZIP"
Tue 21 Nov 2006 1,645,320 A..H. --- "C:\Program Files\WinZip\GDIPLUS.DLL"
Tue 21 Nov 2006 162,304 A..H. --- "C:\Program Files\WinZip\UNRAR.DLL"
Wed 16 Nov 2005 3,563,520 A..H. --- "C:\Program Files\WinZip\WINZIP32.EXE"
Wed 16 Nov 2005 2,339 A..H. --- "C:\Program Files\WinZip\WZ.COM"
Wed 16 Nov 2005 1,157 A..H. --- "C:\Program Files\WinZip\WZ.PIF"
Wed 16 Nov 2005 741,376 A..H. --- "C:\Program Files\WinZip\WZ32.DLL"
Wed 16 Nov 2005 65,536 A..H. --- "C:\Program Files\WinZip\WZCAB.DLL"
Wed 16 Nov 2005 73,728 A..H. --- "C:\Program Files\WinZip\WZCAB3.DLL"
Wed 16 Nov 2005 184,320 A..H. --- "C:\Program Files\WinZip\WZCKTREE.DLL"
Wed 16 Nov 2005 856,064 A..H. --- "C:\Program Files\WinZip\WZEAY32.DLL"
Tue 21 Nov 2006 159,744 A..H. --- "C:\Program Files\WinZip\WZGDIP32.DLL"
Tue 21 Nov 2006 491,520 A..H. --- "C:\Program Files\WinZip\WZIMGV32.DLL"
Wed 16 Nov 2005 81,408 A..H. --- "C:\Program Files\WinZip\WZMSG.EXE"
Wed 16 Nov 2005 122,880 A..H. --- "C:\Program Files\WinZip\WZQKPICK.EXE"
Wed 16 Nov 2005 319,488 A..H. --- "C:\Program Files\WinZip\WZSEPE32.EXE"
Tue 21 Nov 2006 278,528 A..H. --- "C:\Program Files\WinZip\WZSESS32.EXE"
Wed 16 Nov 2005 98,304 A..H. --- "C:\Program Files\WinZip\WZSHLEX1.DLL"
Tue 21 Nov 2006 5,120 A..H. --- "C:\Program Files\WinZip\WZSHLSTB.DLL"
Tue 21 Nov 2006 282,624 A..H. --- "C:\Program Files\WinZip\WZSMTP.DLL"
Tue 21 Nov 2006 253,952 A..H. --- "C:\Program Files\WinZip\WZSRVR32.EXE"
Wed 16 Nov 2005 94,208 A..H. --- "C:\Program Files\WinZip\WZVINFO.DLL"
Wed 16 Nov 2005 249,856 A..H. --- "C:\Program Files\WinZip\WZZPMAIL.DLL"
Mon 16 Apr 2007 16 ...H. --- "C:\WINDOWS\system32\rzmdscb.dll"
Tue 20 Mar 2007 4,348 A.SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Fri 25 Feb 2005 172,032 A..H. --- "C:\Program Files\ACD Systems\Canvas X\BuyOnline.exe"
Fri 23 Sep 2005 9,121,792 A..H. --- "C:\Program Files\ACD Systems\Canvas X\CanvasX.exe"
Fri 16 Mar 2001 24,576 A..H. --- "C:\Program Files\ACD Systems\Canvas X\CVIPL.dll"
Fri 16 Mar 2001 368,640 A..H. --- "C:\Program Files\ACD Systems\Canvas X\CVIPLA6.dll"
Fri 16 Mar 2001 352,256 A..H. --- "C:\Program Files\ACD Systems\Canvas X\CVIPLM6.dll"
Fri 16 Mar 2001 274,432 A..H. --- "C:\Program Files\ACD Systems\Canvas X\CVIPLP6.dll"
Fri 16 Mar 2001 258,048 A..H. --- "C:\Program Files\ACD Systems\Canvas X\CVIPLPX.dll"
Fri 16 Mar 2001 368,640 A..H. --- "C:\Program Files\ACD Systems\Canvas X\CVIPLW7.dll"
Fri 23 Sep 2005 1,060,864 A..H. --- "C:\Program Files\ACD Systems\Canvas X\CVOLE2.dll"
Fri 23 Sep 2005 10,108,928 A..H. --- "C:\Program Files\ACD Systems\Canvas X\CVRES32.dll"
Sat 26 Feb 2005 131,072 A..H. --- "C:\Program Files\ACD Systems\Canvas X\CVSHELL.dll"
Sat 4 Oct 2003 1,900,544 A..H. --- "C:\Program Files\ACD Systems\Canvas X\igcore13d.dll"
Sat 4 Oct 2003 65,536 A..H. --- "C:\Program Files\ACD Systems\Canvas X\igjbig213d.dll"
Sat 4 Oct 2003 241,664 A..H. --- "C:\Program Files\ACD Systems\Canvas X\igjpeg2k13d.dll"
Sat 4 Oct 2003 110,592 A..H. --- "C:\Program Files\ACD Systems\Canvas X\iglzw13d.dll"
Thu 11 Apr 2002 241,664 A..H. --- "C:\Program Files\ACD Systems\Canvas X\Jb2Decdr.dll"
Thu 11 Apr 2002 307,200 A..H. --- "C:\Program Files\ACD Systems\Canvas X\Jb2Encdr.dll"
Mon 22 Jul 2002 299,008 A..H. --- "C:\Program Files\ACD Systems\Canvas X\kdu_v32R.dll"
Mon 28 Apr 2003 536,576 A..H. --- "C:\Program Files\ACD Systems\Canvas X\KODAKCMS.DLL"
Wed 22 Sep 1999 20,992 A..H. --- "C:\Program Files\ACD Systems\Canvas X\profilesigs.dll"
Wed 22 Sep 1999 23,040 A..H. --- "C:\Program Files\ACD Systems\Canvas X\profilepicker.dll"
Thu 11 Apr 2002 413,184 A..H. --- "C:\Program Files\ACD Systems\Canvas X\PSDK.dll"
Sun 29 Jun 2003 77,824 A..H. --- "C:\Program Files\ACD Systems\Canvas X\shapelib.dll"
Sat 5 Mar 2005 11,384 A..H. --- "C:\Program Files\AutoCAD 2006\Drv\CalComp8Res.dll"
Sat 5 Mar 2005 18,040 A..H. --- "C:\Program Files\AutoCAD 2006\Drv\dgwintbn.dll"
Sat 5 Mar 2005 11,384 A..H. --- "C:\Program Files\AutoCAD 2006\Drv\dgwintbnRes.dll"
Sat 5 Mar 2005 15,992 A..H. --- "C:\Program Files\AutoCAD 2006\Drv\Dwfplot8Res.dll"
Sat 5 Mar 2005 9,336 A..H. --- "C:\Program Files\AutoCAD 2006\Drv\dxb8Res.dll"
Sat 5 Mar 2005 9,336 A..H. --- "C:\Program Files\AutoCAD 2006\Drv\gdi8Res.dll"
Sat 5 Mar 2005 62,584 A..H. --- "C:\Program Files\AutoCAD 2006\Drv\Hpgdi8Res.dll"
Sat 5 Mar 2005 12,408 A..H. --- "C:\Program Files\AutoCAD 2006\Drv\HpGl28Res.dll"
Sat 5 Mar 2005 14,968 A..H. --- "C:\Program Files\AutoCAD 2006\Drv\hpgl8Res.dll"
Sat 5 Mar 2005 91,256 A..H. --- "C:\Program Files\AutoCAD 2006\Drv\Oce8Res.dll"
Sat 5 Mar 2005 7,800 A..H. --- "C:\Program Files\AutoCAD 2006\Drv\ocegdi8Res.dll"
Sat 5 Mar 2005 25,208 A..H. --- "C:\Program Files\AutoCAD 2006\Drv\ps8Res.dll"
Sat 5 Mar 2005 11,384 A..H. --- "C:\Program Files\AutoCAD 2006\Drv\raster8Res.dll"
Sat 5 Mar 2005 22,136 A..H. --- "C:\Program Files\AutoCAD 2006\Drv\xes8res.dll"
Sat 5 Mar 2005 107,640 A..H. --- "C:\Program Files\AutoCAD 2006\en-US\AcAeNet.resources.dll"
Sat 5 Mar 2005 33,912 A..H. --- "C:\Program Files\AutoCAD 2006\en-US\AcCalcUi.resources.dll"
Sat 5 Mar 2005 722,040 A..H. --- "C:\Program Files\AutoCAD 2006\en-US\AcCustomize.resources.dll"
Sat 5 Mar 2005 140,408 A..H. --- "C:\Program Files\AutoCAD 2006\en-US\AcDxPublishUi.resources.dll"
Sat 5 Mar 2005 11,384 A..H. --- "C:\Program Files\AutoCAD 2006\en-US\AcDx.resources.dll"
Sat 5 Mar 2005 46,200 A..H. --- "C:\Program Files\AutoCAD 2006\en-US\AcDxUi.resources.dll"
Sat 5 Mar 2005 898,168 A..H. --- "C:\Program Files\AutoCAD 2006\en-US\AcDxWizard.resources.dll"
Sat 5 Mar 2005 255,096 A..H. --- "C:\Program Files\AutoCAD 2006\en-US\AcLayer.resources.dll"
Sat 5 Mar 2005 554,104 A..H. --- "C:\Program Files\AutoCAD 2006\en-US\AcMultiLineUi.resources.dll"
Sat 5 Mar 2005 148,600 A..H. --- "C:\Program Files\AutoCAD 2006\en-US\AcScaleList.resources.dll"
Sat 5 Mar 2005 87,160 A..H. --- "C:\Program Files\AutoCAD 2006\en-US\AcViewTransitionsUi.resources.dll"
Sat 5 Mar 2005 91,256 A..H. --- "C:\Program Files\AutoCAD 2006\en-US\AdMigrator.resources.dll"
Sat 5 Mar 2005 263,288 A..H. --- "C:\Program Files\AutoCAD 2006\en-US\Alias.resources.dll"
Sat 5 Mar 2005 226,424 A..H. --- "C:\Program Files\AutoCAD 2006\en-US\BzLocation.resources.dll"
Sat 5 Mar 2005 103,544 A..H. --- "C:\Program Files\AutoCAD 2006\en-US\LspSurf.resources.dll"
Sat 5 Mar 2005 62,584 A..H. --- "C:\Program Files\AutoCAD 2006\Express\AcExpressRes.dll"
Sat 5 Mar 2005 451,704 A..H. --- "C:\Program Files\AutoCAD 2006\Express\alias.exe"
Sat 5 Mar 2005 128,632 A..H. --- "C:\Program Files\AutoCAD 2006\Express\axctextapp.dll"
Sat 5 Mar 2005 113,272 A..H. --- "C:\Program Files\AutoCAD 2006\Express\axRText.dll"
Sat 5 Mar 2005 74,872 A..H. --- "C:\Program Files\AutoCAD 2006\Express\dumpshx.exe"
Sat 5 Mar 2005 160,888 A..H. --- "C:\Program Files\AutoCAD 2006\Express\lspsurf.exe"
Wed 21 Sep 2005 5,294,592 A..H. --- "C:\Program Files\Autodesk\3dsMax8\3dsmax.exe"
Wed 21 Sep 2005 143,872 A..H. --- "C:\Program Files\Autodesk\3dsMax8\3dsmaxcmd.exe"
Wed 21 Sep 2005 33,280 A..H. --- "C:\Program Files\Autodesk\3dsMax8\acap.dll"
Wed 21 Sep 2005 2,286,937 A..H. --- "C:\Program Files\Autodesk\3dsMax8\adlmdll.dll"
Wed 21 Sep 2005 140,408 A..H. --- "C:\Program Files\Autodesk\3dsMax8\adlmres.dll"
Wed 21 Sep 2005 287,232 A..H. --- "C:\Program Files\Autodesk\3dsMax8\AdskScInst.dll"
Wed 21 Sep 2005 300,544 A..H. --- "C:\Program Files\Autodesk\3dsMax8\Amodeler.dll"
Wed 21 Sep 2005 104,448 A..H. --- "C:\Program Files\Autodesk\3dsMax8\apphelp.dll"
Wed 21 Sep 2005 4,325,376 A..H. --- "C:\Program Files\Autodesk\3dsMax8\Ashli.dll"
Wed 21 Sep 2005 380,928 A..H. --- "C:\Program Files\Autodesk\3dsMax8\Ashlifx.dll"
Wed 21 Sep 2005 2,049,096 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMahl80A.dll"
Wed 21 Sep 2005 169,032 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMbase80A.dll"
Wed 21 Sep 2005 2,327,624 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMblnd80A.dll"
Wed 21 Sep 2005 898,120 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMbool80A.dll"
Wed 21 Sep 2005 136,264 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMconstrctobj80A.dll"
Wed 21 Sep 2005 197,704 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMcovr80A.dll"
Wed 21 Sep 2005 803,912 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMcstr80A.dll"
Wed 21 Sep 2005 259,144 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMct80A.dll"
Wed 21 Sep 2005 111,688 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMeulr80A.dll"
Wed 21 Sep 2005 566,344 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMfct80A.dll"
Wed 21 Sep 2005 164,936 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMga80A.dll"
Wed 21 Sep 2005 140,360 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMihl80A.dll"
Wed 21 Sep 2005 2,577,480 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMintr80A.dll"
Wed 21 Sep 2005 7,177,288 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMkern80A.dll"
Wed 21 Sep 2005 803,912 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMlaw80A.dll"
Wed 21 Sep 2005 820,296 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMlop80A.dll"
Wed 21 Sep 2005 246,856 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMlopt80A.dll"
Wed 21 Sep 2005 119,880 A..H. --- "C:\Program Files\Autodesk\3dsMax8\asmm80enures.dll"
Wed 21 Sep 2005 357,448 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMofst80A.dll"
Wed 21 Sep 2005 406,600 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMrbi80A.dll"
Wed 21 Sep 2005 267,336 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMrem80A.dll"
Wed 21 Sep 2005 87,112 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMsbool80A.dll"
Wed 21 Sep 2005 209,992 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMshl80A.dll"
Wed 21 Sep 2005 1,205,320 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMskin80A.dll"
Wed 21 Sep 2005 750,664 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ASMswp80A.dll"
Wed 21 Sep 2005 84,992 A..H. --- "C:\Program Files\Autodesk\3dsMax8\atl70.dll"
Wed 21 Sep 2005 69,120 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ATSCore.dll"
Wed 21 Sep 2005 22,016 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ATSCoreUI.dll"
Wed 21 Sep 2005 35,328 A..H. --- "C:\Program Files\Autodesk\3dsMax8\ATSTreeView.dll"
Wed 21 Sep 2005 20,480 A..H. --- "C:\Program Files\Autodesk\3dsMax8\Autodesk.Act.Core.dll"
Wed 21 Sep 2005 286,720 A..H. --- "C:\Program Files\Autodesk\3dsMax8\Autodesk.Act.Content.dll"
Wed 21 Sep 2005 231,936 A..H. --- "C:\Program Files\Autodesk\3dsMax8\bmm.dll"
Wed 21 Sep 2005 69,632 A..H. --- "C:\Program Files\Autodesk\3dsMax8\CdaLCDlg.dll"
Wed 21 Sep 2005 16,384 A..H. --- "C:\Program Files\Autodesk\3dsMax8\cfgmgr.dll"
Wed 21 Sep 2005 139,776 A..H. --- "C:\Program Files\Autodesk\3dsMax8\composite.dll"
Wed 21 Sep 2005 5,501,952 A..H. --- "C:\Program Files\Autodesk\3dsMax8\core.dll"
Wed 21 Sep 2005 91,648 A..H. --- "C:\Program Files\Autodesk\3dsMax8\CustDlg.dll"
Wed 21 Sep 2005 486,400 A..H. --- "C:\Program Files\Autodesk\3dsMax8\dbghelp.dll"
Wed 21 Sep 2005 17,920 A..H. --- "C:\Program Files\Autodesk\3dsMax8\DbxHost.dll"
Tue 30 Nov 2004 172,032 A..H. --- "C:\Program Files\Autodesk\3dsMax8\dzip32.dll"
Wed 21 Sep 2005 1,365,504 A..H. --- "C:\Program Files\Autodesk\3dsMax8\edmodel.dll"
Wed 21 Sep 2005 312,952 A..H. --- "C:\Program Files\Autodesk\3dsMax8\Ereg.dll"
Wed 21 Sep 2005 18,040 A..H. --- "C:\Program Files\Autodesk\3dsMax8\Eregres.dll"
Wed 21 Sep 2005 36,352 A..H. --- "C:\Program Files\Autodesk\3dsMax8\expr.dll"
Wed 21 Sep 2005 23,552 A..H. --- "C:\Program Files\Autodesk\3dsMax8\flt.dll"
Wed 21 Sep 2005 26,624 A..H. --- "C:\Program Files\Autodesk\3dsMax8\gcomm2.dll"
Wed 21 Sep 2005 106,496 A..H. --- "C:\Program Files\Autodesk\3dsMax8
0
Réponse 8 / 14
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
Colle le rapport :
Clean permettra de faire du nettoyage et supprimer des fichiers que des anti-virus et anti-spywares n'ont pas pu trouver. Le logiciel est régulièrement mis à jour, vous devrez donc le re-téléchargé pour obtenir une version plus récente.

 Téléchargez clean.zip, décompressez-le sur votre bureau (clic droit / extraire tout), vous obtenez alors un dossier clean
 Démarrez Windows en mode sans échec : Guide pour redémarrer en mode sans échec
 Ouvrez le dossier clean qui se trouve sur ton bureau, et double-cliquez sur clean.cmd, une fenêtre noire va apparaître pendant un instant, laissez la ouverte jusqu'à ce qu'elle se ferme.
Manuel de clean :
http://kerio.probb.fr/tuto-Clean-h37.html

_____________

Fais un clic droit sur ce lien : (IL-MAFIOSO)
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, le fix s'exécutera automatiquement.
(Si ce n'est pas le cas, double-clique sur le raccourci Navilog1 présent sur le bureau).

Laisse-toi guider. Au menu principal, choisis 1 et valides.
(ne fais pas le choix 2,3 ou 4 sans notre avis/accord)

Patiente jusqu'au message :
*** Analyse Termine le ..... ***
Appuie sur une touche comme demandé, le blocnote va s'ouvrir.
Copie-colle l'intégralité dans une réponse. Referme le blocnote.
Le rapport est en outre sauvegardé à la racine du disque (fixnavi.txt)
0
Réponse 9 / 14
l'ambigüe
 
Search Navipromo version 3.3.6 commencι le 27/11/2007 ΰ 16:44:17,42

!!! Attention,ce rapport peut indiquer des fichiers/programmes lιgitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie dιsinfection sans l'avis d'un spιcialiste !!!

Outil exιcutι depuis C:\Program Files\navilog1
Mise ΰ jour le 14.11.2007 ΰ 18h00 par IL-MAFIOSO

Microsoft Windows XP [Version 5.1.2600]
Internet Explorer : 7.0.5730.11

*** Recherche Programmes installιs ***

*** Recherche dossiers dans C:\WINDOWS ***

*** Recherche dossiers dans C:\Program Files ***

*** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***

*** Recherche dossiers dans C:\Documents and Settings\user\Application Data ***

*** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\STARTM~1\PROGRAMS ***

*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

Aucun fichier trouvι dans :

- C:\WINDOWS\system32
- C:\DOCUME~1\USER\LOCALS~1\APPLIC~1

*** Recherche avec GenericNaviSearch ***
!!! Tous ces rιsultats peuvent rιvιler des fichiers lιgitimes !!!
!!! A vιrifier impιrativement avant toute suppression manuelle !!!

* Recherche dans C:\WINDOWS\system32 *

* Recherche dans C:\DOCUME~1\USER\LOCALS~1\APPLIC~1 *

*** Recherche fichiers ***

voilà, rapport navilog

*** Recherche clιs spιcifiques dans le Registre ***

*** Module de Recherche complιmentaire ***
(Recherche fichiers spιcifiques)

1)Recherche fichiers connus:

2)Recherche Heuristique :

3)Recherche Certificats :

Certificat Egroup absent !

*** Analyse terminιe le 27/11/2007 ΰ 16:44:49,17 ***
0
Réponse 10 / 14
l'ambigüe
 
ca dit quelque chose?
0
Réponse 11 / 14
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
Colle le rapport :
Clean permettra de faire du nettoyage et supprimer des fichiers que des anti-virus et anti-spywares n'ont pas pu trouver. Le logiciel est régulièrement mis à jour, vous devrez donc le re-téléchargé pour obtenir une version plus récente.

 Téléchargez clean.zip, décompressez-le sur votre bureau (clic droit / extraire tout), vous obtenez alors un dossier clean
 Démarrez Windows en mode sans échec : Guide pour redémarrer en mode sans échec
 Ouvrez le dossier clean qui se trouve sur ton bureau, et double-cliquez sur clean.cmd, une fenêtre noire va apparaître pendant un instant, laissez la ouverte jusqu'à ce qu'elle se ferme.
Manuel de clean :
http://kerio.probb.fr/tuto-Clean-h37.html
_____________

colle un scan en ligne
avec un des suivants:

Panda en ligne : (desactiver votre antivirus si besoin)
http://pandasoftware.fr

secuser en ligne :
http://www.secuser.com/outils/antivirus.htm
0
Réponse 12 / 14
l'ambigüe
 
rapport clean

27/11/2007 a 16:31:01,76

*** Recherche C:
C:\setup.exe FOUND
C:\setup.exe FOUND

*** Recherche C:\WINDOWS\

*** Recherche C:\WINDOWS\system32

*** Recherche C:\Program Files
*** End of the report
0
Réponse 13 / 14
l'ambigüe
 
j'ai supprimé ces fichiers et apparement je ne sais pas si ca venait de là mais tout remarche...
Encore merci pour ta patience.
0
Réponse 14 / 14
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
oui ca venait surement de là

__________________

colle un scan en ligne
avec un des suivants:

Panda en ligne : (desactiver votre antivirus si besoin)
http://pandasoftware.fr

secuser en ligne :
http://www.secuser.com/outils/antivirus.htm

___________________
colle un nouveau rapport hijackthis
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses
virus Artemis!
mabiche37 -
Malekal_morte- -

14 réponses
Ancien résultat du BAC
rodriguez73 -
Minere -

12 réponses
Message Apple virus !!
Souclik67 -
MPMP10 -

3 réponses