Alerte aux virus...

Résolu
Ben" Messages postés 8 Date d'inscription   Statut Membre Dernière intervention   -  
jlpjlp Messages postés 51580 Date d'inscription   Statut Contributeur sécurité Dernière intervention   -
Bonjour, a toutes et à tous !!!
Voila, je m'arrache les cheveux avec certains virus...
En effet, j'avais Antivir en antivius gratuit, et du jour au lendemain il a disparu... -.-'
Je l'ai désinstallé, pour le réinstallé, mais celui-ci me dit de redémarré windows (XP) ce que j'ai fais mais rien y fais non plus...
J'ai alors installé avast... même problème...
J'ai donc fais un scan avec KASPERSKY on-line, celui-ci a trouvé 6 virus différents et 22 fichiers inféctés.
Voici le rapport, en attendent vos conseils !!
Je reste a votre écoute.
Merci beaucoup !! :)


Nom de l'objet infecté Nom du virus Dernière action
C:\i386\ntkrnlpa.exe L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\OSession.evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\ODiag.evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\Internet.evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SOFTWARE L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SYSTEM L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\DEFAULT L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré
C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré
C:\WINDOWS\system32\LogFiles\WUDF\WUDFTrace.etl L'objet est verrouillé ignoré
C:\WINDOWS\Driver Cache\i386\ntkrnlpa.exe L'objet est verrouillé ignoré
C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré
C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré
C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré
C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré
C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré
C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\ntkrnlpa.exe L'objet est verrouillé ignoré
C:\WINDOWS\$hf_mig$\KB929338\SP2QFE\ntkrnlpa.exe L'objet est verrouillé ignoré
C:\WINDOWS\$hf_mig$\KB931784\SP2QFE\ntkrnlpa.exe L'objet est verrouillé ignoré
C:\WINDOWS\$NtUninstallKB890859$\ntkrnlpa.exe L'objet est verrouillé ignoré
C:\WINDOWS\$NtUninstallKB929338$\ntkrnlpa.exe L'objet est verrouillé ignoré
C:\WINDOWS\$NtUninstallKB931784$\ntkrnlpa.exe L'objet est verrouillé ignoré
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Benjy!!!!!!!!!!!!!!!\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\Benjy!!!!!!!!!!!!!!!\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Benjy!!!!!!!!!!!!!!!\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Benjy!!!!!!!!!!!!!!!\Local Settings\Historique\History.IE5\MSHist012008051820080519\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Benjy!!!!!!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Benjy!!!!!!!!!!!!!!!\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Benjy!!!!!!!!!!!!!!!\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Benjy!!!!!!!!!!!!!!!\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Benjy!!!!!!!!!!!!!!!\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bertrand\Application Data\Else plus\AXISNEW.exe Infecté : Trojan-Downloader.Win32.Bagle.op ignoré
C:\Documents and Settings\Bertrand\Application Data\m\data.oct Infecté : Trojan-Downloader.Win32.Bagle.pf ignoré
C:\Documents and Settings\Bertrand\.housecall6.6\Quarantine\A0199391.exe.bac_a01516 Infecté : Trojan-Downloader.Win32.Bagle.ij ignoré
C:\Documents and Settings\Bertrand\.housecall6.6\Quarantine\A0199412.exe.bac_a01516 Infecté : Trojan-Downloader.Win32.Bagle.ij ignoré
C:\Documents and Settings\Bertrand\.housecall6.6\Quarantine\catchme2008-05-12_100610,53.zip.bac_a01516/wintems.exe Infecté : Email-Worm.Win32.Bagle.of ignoré
C:\Documents and Settings\Bertrand\.housecall6.6\Quarantine\catchme2008-05-12_100610,53.zip.bac_a01516/mdelk.exe Infecté : Email-Worm.Win32.Bagle.of ignoré
C:\Documents and Settings\Bertrand\.housecall6.6\Quarantine\catchme2008-05-12_100610,53.zip.bac_a01516/hldrrr.exe Infecté : Trojan-Downloader.Win32.Bagle.op ignoré
C:\Documents and Settings\Bertrand\.housecall6.6\Quarantine\catchme2008-05-12_100610,53.zip.bac_a01516/mdelk.exe.1 Infecté : Trojan-Downloader.Win32.Bagle.op ignoré
C:\Documents and Settings\Bertrand\.housecall6.6\Quarantine\catchme2008-05-12_100610,53.zip.bac_a01516 ZIP: infecté - 4 ignoré
C:\Documents and Settings\Bertrand\.housecall6.6\Quarantine\catchme2008-05-12_100610,53.zip.bac_a01516 CryptFF.b: infecté - 4 ignoré
C:\Documents and Settings\Bertrand\.housecall6.6\Quarantine\A0199401.exe.bac_a01516 Infecté : Email-Worm.Win32.Bagle.vr ignoré
C:\Documents and Settings\Bertrand\.housecall6.6\Quarantine\A0199411.exe.bac_a01516 Infecté : Email-Worm.Win32.Bagle.vr ignoré
C:\System Volume Information\_restore{DA1684A3-4776-45C8-851D-DD8A56FF2753}\RP1256\A0198663.exe Infecté : Trojan-Downloader.Win32.Bagle.op ignoré
C:\System Volume Information\_restore{DA1684A3-4776-45C8-851D-DD8A56FF2753}\RP1256\A0198670.exe Infecté : Trojan-Downloader.Win32.Bagle.op ignoré
C:\System Volume Information\_restore{DA1684A3-4776-45C8-851D-DD8A56FF2753}\RP1256\A0198740.exe Infecté : Trojan-Downloader.Win32.Bagle.op ignoré
C:\System Volume Information\_restore{DA1684A3-4776-45C8-851D-DD8A56FF2753}\RP1256\A0198744.exe Infecté : Trojan-Downloader.Win32.Bagle.op ignoré
C:\System Volume Information\_restore{DA1684A3-4776-45C8-851D-DD8A56FF2753}\RP1256\A0198772.exe Infecté : Trojan-Downloader.Win32.Bagle.op ignoré
C:\System Volume Information\_restore{DA1684A3-4776-45C8-851D-DD8A56FF2753}\RP1263\change.log L'objet est verrouillé ignoré
C:\QooBox\Quarantine\C\Documents and Settings\Bertrand\Application Data\m\data.oct.vir Infecté : Trojan-Downloader.Win32.Bagle.op ignoré
C:\QooBox\Quarantine\Registry_backups\Legacy_SROSA.reg.dat Infecté : Trojan-Downloader.Win32.Bagle.hp ignoré
C:\QooBox\Quarantine\catchme2008-05-12_100610,53.zip/hldrrr.exe Infecté : Trojan-Downloader.Win32.Bagle.op ignoré
C:\QooBox\Quarantine\catchme2008-05-12_100610,53.zip/mdelk.exe.1 Infecté : Trojan-Downloader.Win32.Bagle.op ignoré
C:\QooBox\Quarantine\catchme2008-05-12_100610,53.zip ZIP: infecté - 2 ignoré
D:\System Volume Information\_restore{DA1684A3-4776-45C8-851D-DD8A56FF2753}\RP1263\change.log L'objet est verrouillé ignoré





P.S... désolé pour la lisibilité du rapport.... :S
A voir également:

12 réponses

Réponse 1 / 12
jlpjlp Messages postés 51580 Date d'inscription   Statut Contributeur sécurité Dernière intervention   5 040
 
il faut que tu vire tous les crack que tu as sur ton ordi (surtout ceux situés dans la partie suppression du rapport combofix

____________________

ensuite refais un rapport combofix en mode sans echec car il y a eu une erreur de suppression

http://service1.symantec.com/SUPPORT/INTER/tsgeninfointl.nsf/fdocid/20020905112131924

______________________

ensuite recolle un scan en ligne BITDEFENDER
_______________________

puis


scan avec
MalwareByte's Anti-Malware et vire ce qui est trouvé et colle le rapport

https://www.malekal.com/tutoriel-malwarebyte-anti-malware/

_________________________

puis essaye de remettre antivir

a plus
1
Réponse 2 / 12
nico-81 Messages postés 1612 Date d'inscription   Statut Membre Dernière intervention   98
 
fais un scan avec BitDefender en ligne SOUS IE : http://www.bitdefender.fr/scan8/ie.html
0
Réponse 3 / 12
Ben" Messages postés 8 Date d'inscription   Statut Membre Dernière intervention  
 
Ok je lance et je copie/colle le rapport.
Merci
0
Réponse 4 / 12
jlpjlp Messages postés 51580 Date d'inscription   Statut Contributeur sécurité Dernière intervention   5 040
 
slt,


vire ce qui est dans quarantine en allant dans
poste de travail puis
C:\Documents and Settings\Bertrand\.housecall6.6\Quarantine


________________


Télécharge Combofix de sUBs : Renomme le avant toute installation, par exemple, nomme le "KillBagle". aide ici : https://forum.pcastuces.com/sujet.asp?f=25&s=37315

http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Sauvegarde le sur ton bureau et pas ailleurs !

Aide à l’utilisation de combofix ici: https://bibou0007.forumpro.fr/login?redirect=%2Ft121-topic

Double-clic sur combofix, Il va te poser une question, réponds par la touche 1 et entrée pour valider, laisse toi guider.
Attends que combofix ait terminé, un rapport sera créé. Poste le rapport.

-----------

Fais DEMARRER puis EXECUTER et tape mrt puis clique sur ok et suis la procedure

----------


* Téléchargez ELIBAGLA en bas de cette page http://www.zonavirus.com/datos/descargas/95/elibagla.asp
* Clique sur le bouton Descargar Elibagla cela va télécharger le fichier, placez le sur votre bureau.
* Double-cliquez dessus pour l'ouvrir
* Assurez-vous que dans le menu déroulant Unidad, vous avez bien C:\
* Vérifiquez aussi que l'option en bas de la fenêtre Eliminar Ficheros Automaticamente est bien cochée
* Cliquez sur le bouton Explorar pour lancer l'analyse

Si, dans le rapport,elibaga tu vois un texte semblable à celui-ci

Por favor, envienos una muestra del fichero
C:\Muestras\HLDRRR.EXE.Muestra EliBagle v10.24
a "virus@satinfo.es". Gracias;

envoie ce(s) fichier(s) (dans l'exemple C:\Muestras\HLDRRR.EXE.Muestra EliBagle v10.24 ) à l'adresse e-mail indiquée (virus@satinfo.es).


et ils mettront a jour elibaga dans les 48 heures ce qui permettra de virer le virus que tu as!!!

------------

reinstalle antivir et colle un rapport avec: si tu ne peux pas tu le dira

https://www.malekal.com/avira-free-security-antivirus-gratuit/
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 12
Ben" Messages postés 8 Date d'inscription   Statut Membre Dernière intervention  
 
Je viens de finir le scan avec BitDefender, il a trouver 29 fichiers infectés, et il les a supprimés.
J'ai tenter de réinstaller Antivir, mais même problème.
J'essaie donc ta méthode jlpjlp.
Merci a toi nico-81.
0
Réponse 6 / 12
Ben" Messages postés 8 Date d'inscription   Statut Membre Dernière intervention  
 
Voici le rapport de Combofix:
Je continu tes instructions




ComboFix 08-05-15.3 - Benjy!!!!!!!!!!!!!!! 2008-05-18 22:11:51.5 - [color=red][b]FAT32[/b][/color]x86
Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.348 [GMT 2:00]
Endroit: C:\Documents and Settings\Benjy!!!!!!!!!!!!!!!\Bureau\KillBagle.exe
* Création d'un nouveau point de restauration

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\Bertrand\Application Data\m\list.oct
C:\Documents and Settings\Bertrand\Application Data\m\shared
C:\Documents and Settings\Bertrand\Application Data\m\shared\3D_Earth_Screensaver_1.3_[With_Crack].zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\94.7_the_WAVE_2.00.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\A_Sunday_Snow_Demo_Screensaver_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Acala_Video_MP3_Ripper_2.6.7.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Achieve_Planner_1.4.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\AD_Picture_Index_2.2_Patch.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Alien_Arena_2007_6.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\All_Converter_6.0.2_With_Crack.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\All_In_One_Windows_Manager_2006_2.4.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Aspose.PDF.Kit_1.3.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\aSSo!_10.02.01.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Atsiv_1.01.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Aurora_MPEG_To_DVD_Burner_5.1.2.5.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Battlefield_1942_-_Final_Battle_Liberation_map.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Battlefield_Vietnam_River_Bend_map.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\BB_Tags_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\BlueGPS_0.1.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Bolin_Organizer_1.01_Key.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Brick_Break_for_Windows_2.3.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Browse_Safetly_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Burn4Free_3.2.0.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\CallMe_J2ME_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Cassete_Accounting_1.8.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\ChaCha_Search_Toolbar_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Chaos_Antidote_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Chrome_Icons_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\CIW_Practice_Tests_from_Boson_5.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\ClipboardController_II_2.2.2_[Crack].zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Close_Combat_V_Invasion_Normandy_mods_collection_1.01.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Codename_Eagle_1.33_beta_patch.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\ColorPickUp_1.1.0.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Contacts_Scrubber_3.0_Key.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\CR_Print_2.0.9.37.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\CyberLink_PowerBackup_2.0.0.902_(Cracked).zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\DealerSim_BJ_1.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Digiters_Video_to_PSP_Converter_3.6_[With_Crack].zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Diskeeper_EnterpriseServer_2007_11.0.703.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\DiskIndex_1.3.1.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Do_Not_Call_List_Solution_Safe_Caller_1.3.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\DRKSpider_2.19_build_101.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\DVBPortal_WMV_Muxer_Preview_2.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\EG_Color_Hex_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Emsa_DiskCheck_1.57.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\ESET.NOD32.v2.51.30.WinNT2K2K3XP.Cracked.REPACK-BRD.XvooM.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Evil_Genius_Menu_MP3.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Fast_File_Finder_4.2.42704.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Fast_Text_to_MP3_1.18.00.00_[With_Crack].zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Firefox-Calendar.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Fleace_0.2.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Gala2_1.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Genuine_Sound_Recorder_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Gold_Fish_Clock_Screensaver_2.3.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Golf_Score_Wiz_1.0_(Patch).zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Great_Gateway_Generator_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\GrFinger_Java_SDK_4.5_[Key+Serial].zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\H.E.D.Z._demo.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\IBM_Open_Systems_Storage_Solutions_Version_4_Practice_Exam_Questions_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\ImageConverter_Plus_7.1.0_Key+Serial.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\JavaScript_NoRightClick_Msg_Box_Ver_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Keyboard_Collector_2.16.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\KingSmart_Hotel_Software_2003_1.0_(With_Crack).zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\LagMeter_2.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Leads_Master_Pro_1.0_[Crack].zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Local_SMTP_Server_Pro_2.8.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\LogChecker_1.41_KeyGen.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Looper_Puzzle_1.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Lose_Weight_The_Natural_Way_2.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\MAPILab_Groupware_Server_1.4.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\MEMORyAL_4.2.1.1.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\MSDict_Oxford_French_MiniDictionary_(Symbian_UIQ)_2.40.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Music_Archive_1.01.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\NED_Image_Printer_Driver_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Nidesoft_DVD_to_PSP_Converter_3.0.86.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\NoClone_3.2.60.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Now&Wow_The_Being_In_The_Now_Reminder_Tool_1.0_Key+Serial.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Nucleus_Kernel_Word_Document_Repair_Software_4.03_(Cracked).zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\OE_Duplicate_Remover_1.0.3_[With_Crack].zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Outlook_Express_Backup_Wizard_1.1.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\OutlookExpress_Password_1.5.295_With_Crack.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\panda.platinium.2006.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Passport_Photo_1.5.3.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Personal_Chess_Trainer_3.01.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Personal_Information_Explorer_2.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\PixBurner_2.0.4.132.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Pocket_Natura_Sound_Therapy_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\PocketDAQ_Pro_2.51.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Poser_DAZStudio_3D_Models_Pack_1.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Printer_Peer_5_build_2261.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Priore_FingerPrint_ActiveX_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Provider_for_Google_Calendar_0.2.1.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Question_Writer_-_Quiz_Edition_2.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\quick.heal.5.25.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\RegAuditor_2.1.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Replace_Tool_1.71.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Roommate_Finder_Solution_JUL.2007_(KeyGen).zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\SafeSystem_2006.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Screensaver_Snowy_Castle_2.1.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\SDE_for_Visual_Studio_.NET_(PE)_for_Windows_3.3_Professional_Edition_Key.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Search_3.2.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Serenity_Countdown_256.0.0.63.25d.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\SimpleTeX4ht_1.4.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Simply_Weather_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\SlySender_2.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Speed_Reading_Academy_2.1.1.8.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\SQL_eXpeditor_3.0.12.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Stained_Glass_Christmas_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Standard_Icons_7.0_Serial.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\SYMANTEC.NORTON.GHOST.V9.0-TDA.Bootable.Fixed.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Syntheway_Strings_VSTi_2.0_[Cracked].zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\System_CleanUP_1.0_[Key+Serial].zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\TheBat_3.80.06.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Touchdown_Madness.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Tranquillity_Sky_Screen_Saver_1.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\uCertify_-_MCSE_Practice_Test_for_Exam_70-292_-_390+_Questions_8.05.05.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\URL_Wizard_1.8.4.5.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Vidomi_0.469.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\w3compiler_1.1.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\WinTricks_5.0a.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Women_of_The_Bible_1.0.6.2634.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Woodworking_Projects_for_Everyone_2.0.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Word_Search_Deluxe.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Xilisoft_DVD_to_Zune_Converter_4.0.74.0419_(Key+Serial).zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\Zetalist_Random_Top_10_1.2.zip
C:\Documents and Settings\Bertrand\Application Data\m\shared\ZipRecovery_1.5.0729_Key.zip
C:\Documents and Settings\Bertrand\Application Data\m\srvlist.oct
C:\WINDOWS\system32\drivers\downld
C:\Documents and Settings\Bertrand\Application Data\m . . . . Echec de suppression
C:\WINDOWS\system32\drivers\hldrrr.exe . . . . Echec de suppression
C:\WINDOWS\system32\drivers\mdelk.exe . . . . Echec de suppression
C:\WINDOWS\system32\drivers\srosa.sys . . . . Echec de suppression
C:\WINDOWS\system32\mdelk.exe . . . . Echec de suppression
C:\WINDOWS\system32\wintems.exe . . . . Echec de suppression

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_SROSA


((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-04-18 to 2008-05-18 ))))))))))))))))))))))))))))))))))))
.

2008-05-18 20:03 . 2008-05-18 20:03 <REP> d-------- C:\WINDOWS\BDOSCAN8
2008-05-16 21:03 . 2008-05-16 21:03 <REP> d-------- C:\ec12b8c5eb7b40c7ba3c38319e
2008-05-15 08:05 . 2008-05-15 08:05 35,798,945 --a------ C:\WINDOWS\VPTNFILE.277
2008-05-15 08:05 . 2008-05-15 08:05 35,798,945 --a------ C:\WINDOWS\LPT$VPN.277
2008-05-15 08:03 . 2008-05-15 08:03 <REP> d-------- C:\WINDOWS\AU_Temp
2008-05-14 18:11 . 2008-05-14 18:11 <REP> d-------- C:\WINDOWS\system32\Kaspersky Lab
2008-05-14 17:37 . 2008-05-14 17:37 <REP> d-------- C:\WINDOWS\avxoscan
2008-05-12 14:03 . 2008-05-12 14:03 <REP> d-------- C:\Documents and Settings\Bertrand\.housecall6.6
2008-05-12 09:38 . 2008-05-12 09:38 <REP> d-------- C:\Muestras
2008-05-12 09:08 . 2008-05-12 09:08 <REP> d-------- C:\Program Files\Avast
2008-05-11 11:30 . 2008-05-11 11:30 <REP> d--hs---- C:\FOUND.000
2008-05-11 09:04 . 2008-05-11 09:04 <REP> d--h----- C:\Documents and Settings\Bertrand\Application Data\m
2008-05-11 09:04 . 2008-05-11 20:04 52 --a------ C:\WINDOWS\GunzLauncher.INI
2008-04-21 18:13 . 2005-05-10 18:03 36,864 -ra------ C:\WINDOWS\system32\P0620Pin.dll
2008-04-19 21:02 . 2008-04-19 21:02 <REP> d-------- C:\Documents and Settings\Benjy!!!!!!!!!!!!!!!\Application Data\Teewars

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-18 18:15 15,360 ----a-w C:\WINDOWS\system32\dllcache\register.exe
2008-05-15 06:05 91,744 ----a-w C:\WINDOWS\BPMNT.dll
2008-05-15 06:05 71,749 ----a-w C:\WINDOWS\hcextoutput.dll
2008-05-15 06:05 333,576 ----a-w C:\WINDOWS\tsc.exe
2008-05-15 06:05 1,213,784 ----a-w C:\WINDOWS\vsapi32.dll
2008-04-13 08:18 --------- d-----w C:\Program Files\Ascaron Entertainment
2008-04-07 17:45 --------- d-----w C:\Program Files\Safari
2008-04-04 18:10 --------- d-----w C:\Documents and Settings\All Users\Application Data\Messenger Plus!
2008-04-04 17:44 --------- d-----w C:\Program Files\Messenger Plus! Live
2008-03-23 19:46 --------- d-----w C:\Program Files\Windows Live Safety Center
2008-03-21 20:20 --------- d-----w C:\Documents and Settings\Bertrand\Application Data\TVU networks
2008-03-21 20:20 --------- d-----w C:\Documents and Settings\All Users\Application Data\TVU networks
2008-03-20 15:24 --------- d-----w C:\Program Files\pspvideo9
2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys
2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\dllcache\win32k.sys
2008-03-19 13:40 --------- d-sh--w C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-03-19 13:40 --------- d-----w C:\Program Files\Windows Live
2008-03-19 13:40 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-03-01 16:28 3,591,680 ------w C:\WINDOWS\system32\dllcache\mshtml.dll
2008-02-29 08:57 625,664 ------w C:\WINDOWS\system32\dllcache\iexplore.exe
2008-02-29 08:56 70,656 ------w C:\WINDOWS\system32\dllcache\ie4uinit.exe
2008-02-22 10:00 13,824 ------w C:\WINDOWS\system32\dllcache\ieudinit.exe
2008-02-20 06:51 282,624 ----a-w C:\WINDOWS\system32\gdi32.dll
2008-02-20 06:51 282,624 ----a-w C:\WINDOWS\system32\dllcache\gdi32.dll
2008-02-20 05:35 45,568 ----a-w C:\WINDOWS\system32\dnsrslvr.dll
2008-02-20 05:35 45,568 ----a-w C:\WINDOWS\system32\dllcache\dnsrslvr.dll
2008-02-20 05:35 148,992 ----a-w C:\WINDOWS\system32\dllcache\dnsapi.dll
2008-02-18 07:58 4,278,675 ----a-w C:\WINDOWS\java\Packages\XNTRDN1B.ZIP
2008-02-18 07:55 5,751,158 ----a-w C:\WINDOWS\java\Packages\GJPJTBPN.ZIP
2005-10-05 10:18 241,664 ----a-w C:\Documents and Settings\Benjy!!!!!!!!!!!!!!!\setup.exe
2002-03-11 07:06 1,822,520 ----a-w C:\Documents and Settings\Benjy!!!!!!!!!!!!!!!\instmsiw.exe
2002-03-11 06:45 1,708,856 ----a-w C:\Documents and Settings\Benjy!!!!!!!!!!!!!!!\instmsia.exe
.

((((((((((((((((((((((((((((( snapshot_2008-05-12_11.47.26.14 )))))))))))))))))))))))))))))))))))))))))
.
- 2008-05-12 09:05:12 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB867282\update\update.exe
+ 2008-05-18 18:22:56 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB867282\update\update.exe
- 2008-05-12 09:05:14 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB873339\update\update.exe
+ 2008-05-18 18:22:58 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB873339\update\update.exe
- 2008-05-12 09:05:14 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB885250\update\update.exe
+ 2008-05-18 18:22:58 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB885250\update\update.exe
- 2008-05-12 09:05:14 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB885835\update\update.exe
+ 2008-05-18 18:22:58 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB885835\update\update.exe
- 2008-05-12 09:05:14 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB885836\update\update.exe
+ 2008-05-18 18:22:58 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB885836\update\update.exe
- 2008-05-12 09:05:20 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB886185\update\update.exe
+ 2008-05-18 18:23:06 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB886185\update\update.exe
- 2008-05-12 09:05:14 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB887472\update\update.exe
+ 2008-05-18 18:22:58 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB887472\update\update.exe
- 2008-05-12 09:05:20 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB887742\update\update.exe
+ 2008-05-18 18:23:06 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB887742\update\update.exe
- 2008-05-12 09:05:14 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB888113\update\update.exe
+ 2008-05-18 18:22:58 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB888113\update\update.exe
- 2008-05-12 09:05:14 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB888302\update\update.exe
+ 2008-05-18 18:22:58 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB888302\update\update.exe
- 2008-05-12 09:05:18 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB890046\update\update.exe
+ 2008-05-18 18:23:04 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB890046\update\update.exe
- 2008-05-12 09:05:14 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB890047\update\update.exe
+ 2008-05-18 18:22:58 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB890047\update\update.exe
- 2008-05-12 09:05:14 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB890175\update\update.exe
+ 2008-05-18 18:23:00 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB890175\update\update.exe
- 2008-05-12 09:05:14 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB890859\update\update.exe
+ 2008-05-18 18:23:00 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB890859\update\update.exe
- 2008-05-12 09:05:14 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB890923\update\update.exe
+ 2008-05-18 18:23:00 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB890923\update\update.exe
- 2008-05-12 09:05:14 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB891781\update\update.exe
+ 2008-05-18 18:23:00 666,624 ----a-w C:\WINDOWS\$hf_mig$\KB891781\update\update.exe
- 2008-05-12 09:05:18 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB893066\update\update.exe
+ 2008-05-18 18:23:04 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB893066\update\update.exe
- 2008-05-12 09:05:16 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB893086\update\update.exe
+ 2008-05-18 18:23:00 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB893086\update\update.exe
- 2008-05-12 09:05:20 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB893756\update\update.exe
+ 2008-05-18 18:23:08 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB893756\update\update.exe
- 2008-05-12 09:05:16 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB894391\update\update.exe
+ 2008-05-18 18:23:02 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB894391\update\update.exe
- 2008-05-12 09:05:18 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB896358\update\update.exe
+ 2008-05-18 18:23:06 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB896358\update\update.exe
- 2008-05-12 09:05:20 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB896422\update\update.exe
+ 2008-05-18 18:23:08 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB896422\update\update.exe
- 2008-05-12 09:05:16 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB896423\update\update.exe
+ 2008-05-18 18:23:02 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB896423\update\update.exe
- 2008-05-12 09:05:20 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB896424\update\update.exe
+ 2008-05-18 18:23:10 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB896424\update\update.exe
- 2008-05-12 09:05:16 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB896428\update\update.exe
+ 2008-05-18 18:23:02 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB896428\update\update.exe
- 2008-05-12 09:05:20 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB896688\update\update.exe
+ 2008-05-18 18:23:06 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB896688\update\update.exe
- 2008-05-12 09:05:16 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB898461\update\update.exe
+ 2008-05-18 18:23:02 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB898461\update\update.exe
- 2008-05-12 09:05:20 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB899587\update\update.exe
+ 2008-05-18 18:23:08 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB899587\update\update.exe
- 2008-05-12 09:05:22 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB899591\update\update.exe
+ 2008-05-18 18:23:10 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB899591\update\update.exe
- 2008-05-12 09:05:24 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB900485\update\update.exe
+ 2008-05-18 18:23:16 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB900485\update\update.exe
- 2008-05-12 09:05:16 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB900725\update\update.exe
+ 2008-05-18 18:23:04 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB900725\update\update.exe
- 2008-05-12 09:05:22 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB901017\update\update.exe
+ 2008-05-18 18:23:10 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB901017\update\update.exe
- 2008-05-12 09:05:24 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB901190\update\update.exe
+ 2008-05-18 18:23:12 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB901190\update\update.exe
- 2008-05-12 09:05:18 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB901214\update\update.exe
+ 2008-05-18 18:23:04 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB901214\update\update.exe
- 2008-05-12 09:05:18 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB902400\update\update.exe
+ 2008-05-18 18:23:04 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB902400\update\update.exe
- 2008-05-12 09:05:16 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB904706\update\update.exe
+ 2008-05-18 18:23:02 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB904706\update\update.exe
- 2008-05-12 09:05:40 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB904942\update\update.exe
+ 2008-05-18 18:23:38 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB904942\update\update.exe
- 2008-05-12 09:05:18 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB905414\update\update.exe
+ 2008-05-18 18:23:04 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB905414\update\update.exe
- 2008-05-12 09:05:16 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB905749\update\update.exe
+ 2008-05-18 18:23:02 730,336 ----a-w C:\WINDOWS\$hf_mig$\KB905749\update\update.exe
- 2008-05-12 09:05:22 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB905915\update\update.exe
+ 2008-05-18 18:23:10 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB905915\update\update.exe
- 2008-05-12 09:05:22 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB908519\update\update.exe
+ 2008-05-18 18:23:12 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB908519\update\update.exe
- 2008-05-12 09:05:24 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB908531\update\update.exe
+ 2008-05-18 18:23:16 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB908531\update\update.exe
- 2008-05-12 09:05:22 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB910437\update\update.exe
+ 2008-05-18 18:23:12 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB910437\update\update.exe
- 2008-05-12 09:05:26 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB911280\update\update.exe
+ 2008-05-18 18:23:18 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB911280\update\update.exe
- 2008-05-12 09:05:24 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB911562\update\update.exe
+ 2008-05-18 18:23:14 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB911562\update\update.exe
- 2008-05-12 09:05:24 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB911567\update\update.exe
+ 2008-05-18 18:23:14 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB911567\update\update.exe
- 2008-05-12 09:05:22 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB911927\update\update.exe
+ 2008-05-18 18:23:12 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB911927\update\update.exe
- 2008-05-12 09:05:24 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB912812\update\update.exe
+ 2008-05-18 18:23:14 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB912812\update\update.exe
- 2008-05-12 09:05:22 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB912919\update\update.exe
+ 2008-05-18 18:23:12 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB912919\update\update.exe
- 2008-05-12 09:05:24 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB913446\update\update.exe
+ 2008-05-18 18:23:12 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB913446\update\update.exe
- 2008-05-12 09:05:26 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB913580\update\update.exe
+ 2008-05-18 18:23:16 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB913580\update\update.exe
- 2008-05-12 09:05:28 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB914388\update\update.exe
+ 2008-05-18 18:23:20 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB914388\update\update.exe
- 2008-05-12 09:05:26 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB914389\update\update.exe
+ 2008-05-18 18:23:16 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB914389\update\update.exe
- 2008-05-12 09:05:42 716,000 ----a-w C:\WINDOWS\$hf_mig$\KB915865\update\update.exe
+ 2008-05-18 18:23:40 716,000 ----a-w C:\WINDOWS\$hf_mig$\KB915865\update\update.exe
- 2008-05-12 09:05:26 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB916281\update\update.exe
+ 2008-05-18 18:23:16 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB916281\update\update.exe
- 2008-05-12 09:05:28 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB916595\update\update.exe
+ 2008-05-18 18:23:20 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB916595\update\update.exe
- 2008-05-12 09:05:28 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB917159\update\update.exe
+ 2008-05-18 18:23:20 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB917159\update\update.exe
- 2008-05-12 09:05:28 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB917344\update\update.exe
+ 2008-05-18 18:23:18 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB917344\update\update.exe
- 2008-05-12 09:05:28 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB917422\update\update.exe
+ 2008-05-18 18:23:20 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB917422\update\update.exe
- 2008-05-12 09:05:26 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB917953\update\update.exe
+ 2008-05-18 18:23:18 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB917953\update\update.exe
- 2008-05-12 09:05:38 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB918118\update\update.exe
+ 2008-05-18 18:23:34 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB918118\update\update.exe
- 2008-05-12 09:05:28 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB918439\update\update.exe
+ 2008-05-18 18:23:18 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB918439\update\update.exe
- 2008-05-12 09:05:30 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB918899\update\update.exe
+ 2008-05-18 18:23:22 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB918899\update\update.exe
- 2008-05-12 09:05:32 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB919007\update\update.exe
+ 2008-05-18 18:23:24 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB919007\update\update.exe
- 2008-05-12 09:05:34 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB920213\update\update.exe
+ 2008-05-18 18:23:28 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB920213\update\update.exe
- 2008-05-12 09:05:30 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB920214\update\update.exe
+ 2008-05-18 18:23:24 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB920214\update\update.exe
- 2008-05-12 09:05:30 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB920670\update\update.exe
+ 2008-05-18 18:23:22 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB920670\update\update.exe
- 2008-05-12 09:05:28 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB920683\update\update.exe
+ 2008-05-18 18:23:20 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB920683\update\update.exe
- 2008-05-12 09:05:32 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB920685\update\update.exe
+ 2008-05-18 18:23:24 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB920685\update\update.exe
- 2008-05-12 09:05:32 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB920872\update\update.exe
+ 2008-05-18 18:23:24 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB920872\update\update.exe
- 2008-05-12 09:05:30 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB921398\update\update.exe
+ 2008-05-18 18:23:22 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB921398\update\update.exe
- 2008-05-12 09:05:44 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB921503\update\update.exe
+ 2008-05-18 18:23:44 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB921503\update\update.exe
- 2008-05-12 09:05:28 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB921883\update\update.exe
+ 2008-05-18 18:23:20 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB921883\update\update.exe
- 2008-05-12 09:05:32 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB922582\update\update.exe
+ 2008-05-18 18:23:24 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB922582\update\update.exe
- 2008-05-12 09:05:30 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB922616\update\update.exe
+ 2008-05-18 18:23:24 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB922616\update\update.exe
- 2008-05-12 09:05:34 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB922760\update\update.exe
+ 2008-05-18 18:23:28 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB922760\update\update.exe
- 2008-05-12 09:05:34 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB922819\update\update.exe
+ 2008-05-18 18:23:26 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB922819\update\update.exe
- 2008-05-12 09:05:32 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB923414\update\update.exe
+ 2008-05-18 18:23:26 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB923414\update\update.exe
- 2008-05-12 09:05:36 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB923694\update\update.exe
+ 2008-05-18 18:23:30 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB923694\update\update.exe
- 2008-05-12 09:05:34 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB923980\update\update.exe
+ 2008-05-18 18:23:30 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB923980\update\update.exe
- 2008-05-12 09:05:34 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB924191\update\update.exe
+ 2008-05-18 18:23:26 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB924191\update\update.exe
- 2008-05-12 09:05:34 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB924270\update\update.exe
+ 2008-05-18 18:23:28 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB924270\update\update.exe
- 2008-05-12 09:05:32 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB924496\update\update.exe
+ 2008-05-18 18:23:26 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB924496\update\update.exe
- 2008-05-12 09:05:36 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB925454\update\update.exe
+ 2008-05-18 18:23:30 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB925454\update\update.exe
- 2008-05-12 09:05:32 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB925486\update\update.exe
+ 2008-05-18 18:23:26 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB925486\update\update.exe
- 2008-05-12 09:05:40 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB925902\update\update.exe
+ 2008-05-18 18:23:36 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB925902\update\update.exe
- 2008-05-12 09:05:36 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB926255\update\update.exe
+ 2008-05-18 18:23:30 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB926255\update\update.exe
- 2008-05-12 09:05:38 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB926436\update\update.exe
+ 2008-05-18 18:23:34 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB926436\update\update.exe
- 2008-05-12 09:05:38 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB927779\update\update.exe
+ 2008-05-18 18:23:36 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB927779\update\update.exe
- 2008-05-12 09:05:38 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB927802\update\update.exe
+ 2008-05-18 18:23:36 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB927802\update\update.exe
- 2008-05-12 09:05:42 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB927891\update\update.exe
+ 2008-05-18 18:23:40 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB927891\update\update.exe
- 2008-05-12 09:05:36 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB928090\update\update.exe
+ 2008-05-18 18:23:32 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB928090\update\update.exe
- 2008-05-12 09:05:38 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB928255\update\update.exe
+ 2008-05-18 18:23:34 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB928255\update\update.exe
- 2008-05-12 09:05:36 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB928843\update\update.exe
+ 2008-05-18 18:23:32 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB928843\update\update.exe
- 2008-05-12 09:05:44 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB929123\update\update.exe
+ 2008-05-18 18:23:44 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB929123\update\update.exe
- 2008-05-12 09:05:38 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB929338\update\update.exe
+ 2008-05-18 18:23:36 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB929338\update\update.exe
- 2008-05-12 09:05:36 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB929969\update\update.exe
+ 2008-05-18 18:23:32 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB929969\update\update.exe
- 2008-05-12 09:05:40 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB930178\update\update.exe
+ 2008-05-18 18:23:38 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB930178\update\update.exe
- 2008-05-12 09:05:42 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB930916\update\update.exe
+ 2008-05-18 18:23:40 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB930916\update\update.exe
- 2008-05-12 09:05:40 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB931261\update\update.exe
+ 2008-05-18 18:23:38 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB931261\update\update.exe
- 2008-05-12 09:05:42 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB931768-IE7\update\update.exe
+ 2008-05-18 18:23:40 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB931768-IE7\update\update.exe
- 2008-05-12 09:05:40 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB931784\update\update.exe
+ 2008-05-18 18:23:38 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB931784\update\update.exe
- 2008-05-12 09:05:38 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB931836\update\update.exe
+ 2008-05-18 18:23:34 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB931836\update\update.exe
- 2008-05-12 09:05:40 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB932168\update\update.exe
+ 2008-05-18 18:23:38 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB932168\update\update.exe
- 2008-05-12 09:05:46 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB933360\update\update.exe
+ 2008-05-18 18:23:46 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB933360\update\update.exe
- 2008-05-12 09:05:42 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB933566-IE7\update\update.exe
+ 2008-05-18 18:23:42 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB933566-IE7\update\update.exe
- 2008-05-12 09:05:46 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB933729\update\update.exe
+ 2008-05-18 18:23:46 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB933729\update\update.exe
- 2008-05-12 09:05:44 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB935839\update\update.exe
+ 2008-05-18 18:23:42 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB935839\update\update.exe
- 2008-05-12 09:05:44 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB935840\update\update.exe
+ 2008-05-18 18:23:44 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB935840\update\update.exe
- 2008-05-12 09:05:46 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB936021\update\update.exe
+ 2008-05-18 18:23:46 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB936021\update\update.exe
- 2008-05-12 09:05:50 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB938127-IE7\update\update.exe
+ 2008-05-18 18:23:52 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB938127-IE7\update\update.exe
- 2008-05-12 09:05:44 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB938127\update\update.exe
+ 2008-05-18 18:23:44 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB938127\update\update.exe
- 2008-05-12 09:05:46 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB938828\update\update.exe
+ 2008-05-18 18:23:46 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB938828\update\update.exe
- 2008-05-12 09:05:44 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB938829\update\update.exe
+ 2008-05-18 18:23:44 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB938829\update\update.exe
- 2008-05-12 09:05:46 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB941202\update\update.exe
+ 2008-05-18 18:23:46 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB941202\update\update.exe
- 2008-05-12 09:05:46 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB941568\update\update.exe
+ 2008-05-18 18:23:48 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB941568\update\update.exe
- 2008-05-12 09:05:48 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB941644\update\update.exe
+ 2008-05-18 18:23:50 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB941644\update\update.exe
- 2008-05-12 09:05:52 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB941693\update\update.exe
+ 2008-05-18 18:23:54 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB941693\update\update.exe
- 2008-05-12 09:05:50 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB942615-IE7\update\update.exe
+ 2008-05-18 18:23:50 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB942615-IE7\update\update.exe
- 2008-05-12 09:05:48 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB942763\update\update.exe
+ 2008-05-18 18:23:48 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB942763\update\update.exe
- 2008-05-12 09:05:48 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB942840\update\update.exe
+ 2008-05-18 18:23:48 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB942840\update\update.exe
- 2008-05-12 09:05:48 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB943055\update\update.exe
+ 2008-05-18 18:23:50 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB943055\update\update.exe
- 2008-05-12 09:05:48 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB943485\update\update.exe
+ 2008-05-18 18:23:50 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB943485\update\update.exe
- 2008-05-12 09:05:50 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB944533-IE7\update\update.exe
+ 2008-05-18 18:23:52 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB944533-IE7\update\update.exe
- 2008-05-12 09:05:46 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB944653\update\update.exe
+ 2008-05-18 18:23:48 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB944653\update\update.exe
- 2008-05-12 09:05:50 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB945553\update\update.exe
+ 2008-05-18 18:23:54 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB945553\update\update.exe
- 2008-05-12 09:05:48 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB946026\update\update.exe
+ 2008-05-18 18:23:50 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB946026\update\update.exe
- 2008-05-12 09:05:48 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB946627\update\update.exe
+ 2008-05-18 18:23:48 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB946627\update\update.exe
- 2008-05-12 09:05:52 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB947864-IE7\update\update.exe
+ 2008-05-18 18:23:54 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB947864-IE7\update\update.exe
- 2008-05-12 09:05:50 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB948590\update\update.exe
+ 2008-05-18 18:23:54 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB948590\update\update.exe
- 2008-05-12 09:05:52 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB948881\update\update.exe
+ 2008-05-18 18:23:56 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB948881\update\update.exe
+ 2008-04-30 00:28:26 71,749 ----a-w C:\WINDOWS\AU_Temp\1\27\hcextoutput.dll
+ 2008-04-30 00:28:26 333,576 ----a-w C:\WINDOWS\AU_Temp\1\27\TSC.exe
- 2005-11-09 18:05:12 86,094 ----a-w C:\WINDOWS\AU_Temp\2\4\BPMNT.dll
+ 2006-11-22 15:48:28 91,744 ----a-w C:\WINDOWS\AU_Temp\2\4\BPMNT.dll
- 2007-06-12 16:49:28 1,163,344 ----a-w C:\WINDOWS\AU_Temp\2\4\vsapi32.dll
+ 2008-03-30 16:55:22 1,213,784 ----a-w C:\WINDOWS\AU_Temp\2\4\vsapi32.dll
+ 2001-09-20 11:24:02 288,768 ----a-w C:\WINDOWS\avxoscan\avxcore.dll
+ 2001-01-04 13:36:38 28,672 ----a-w C:\WINDOWS\avxoscan\AvxInit.dll
+ 2002-01-22 15:48:46 245,760 ----a-w C:\WINDOWS\avxoscan\avxlive.exe
+ 2000-07-12 00:02:32 36,864 ----a-w C:\WINDOWS\avxoscan\fxfileop.dll
+ 2000-12-20 10:51:44 53,248 ----a-w C:\WINDOWS\avxoscan\fxwize.dll
+ 2002-01-21 08:28:24 45,056 ----a-w C:\WINDOWS\avxoscan\Lang\_en\lang_avxlive.dll
+ 2001-10-01 13:59:50 24,576 ----a-w C:\WINDOWS\avxoscan\Lang\_en\lang_fxwize.dll
+ 2001-04-02 16:33:42 40,960 ----a-w C:\WINDOWS\avxoscan\liveinst.dll
+ 2001-09-05 16:36:12 106,496 ----a-w C:\WINDOWS\avxoscan\Plugins\optical.dll
+ 2001-08-21 15:01:02 40,960 ----a-w C:\WINDOWS\avxoscan\Plugins\recbin.dll
+ 2008-05-18 18:24:44 184,320 ----a-w C:\WINDOWS\avxoscan\upgrepl.exe
+ 1998-07-11 23:13:00 53,760 ----a-w C:\WINDOWS\avxoscan\zlib.dll
+ 2008-05-18 18:06:54 45,056 ----a-w C:\WINDOWS\BDOSCAN8\avxdisk.dll
+ 2008-05-18 18:06:54 10,240 ----a-w C:\WINDOWS\BDOSCAN8\avxs.dll
+ 2008-05-18 18:06:54 27,136 ----a-w C:\WINDOWS\BDOSCAN8\avxt.dll
+ 2008-05-18 18:06:56 181,760 ----a-w C:\WINDOWS\BDOSCAN8\bdcore.dll
+ 2008-01-09 13:01:48 118,784 ----a-w C:\WINDOWS\BDOSCAN8\bdupd.dll
+ 2008-01-09 13:01:48 53,248 ----a-w C:\WINDOWS\BDOSCAN8\ipsupd.dll
+ 2008-05-18 18:06:58 142,848 ----a-w C:\WINDOWS\BDOSCAN8\libfn.dll
+ 2008-05-18 18:06:56 86,016 ----a-w C:\WINDOWS\BDOSCAN8\librtvr.dll
- 2008-05-12 09:44:38 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-05-18 20:16:08 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-01-09 13:01:48 118,784 ----a-w C:\WINDOWS\Downloaded Program Files\CONFLICT.1\bdupd.dll
+ 2008-01-09 13:01:48 53,248 ----a-w C:\WINDOWS\Downloaded Program Files\CONFLICT.1\ipsupd.dll
+ 2000-07-12 00:02:32 36,864 ----a-w C:\WINDOWS\Downloaded Program Files\fxfileop.dll
+ 2006-10-27 13:04:08 497,504 ----a-r C:\WINDOWS\Installer\$PatchCache$\Managed\[u]0[/u]0002109110000000000000000F01FEC\12.0.4518\MORPH9.DLL
+ 2006-10-26 18:09:36 136,008 ----a-r C:\WINDOWS\Installer\$PatchCache$\Managed\[u]0[/u]0002109110000000000000000F01FEC\12.0.4518\PRTF9.DLL
+ 2006-10-27 13:04:06 624,456 ----a-r C:\WINDOWS\Installer\$PatchCache$\Managed\[u]0[/u]0002109110000000000000000F01FEC\12.0.4518\PTXT9.DLL
+ 2006-10-27 13:23:04 347,432 ----a-r C:\WINDOWS\Installer\$PatchCache$\Managed\[u]0[/u]0002109110000000000000000F01FEC\12.0.4518\WINWORD.EXE
- 2008-04-09 21:17:14 1,165,584 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\accicons.exe
+ 2008-05-14 19:03:46 1,165,584 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\accicons.exe
- 2008-04-09 21:17:14 20,240 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\cagicon.exe
+ 2008-05-14 19:03:46 20,240 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\cagicon.exe
- 2008-04-09 21:17:14 159,504 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\inficon.exe
+ 2008-05-14 19:03:46 159,504 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\inficon.exe
- 2008-04-09 21:17:14 217,864 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\misc.exe
+ 2008-05-14 19:03:46 217,864 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\misc.exe
- 2008-04-09 21:17:14 18,704 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\mspicons.exe
+ 2008-05-14 19:03:46 18,704 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\mspicons.exe
- 2008-04-09 21:17:14 35,088 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\oisicon.exe
+ 2008-05-14 19:03:46 35,088 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\oisicon.exe
- 2008-04-09 21:17:14 845,584 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\outicon.exe
+ 2008-05-14 19:03:46 845,584 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\outicon.exe
- 2008-04-09 21:17:14 922,384 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pptico.exe
+ 2008-05-14 19:03:46 922,384 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pptico.exe
- 2008-04-09 21:17:14 272,648 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pubs.exe
+ 2008-05-14 19:03:46 272,648 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pubs.exe
- 2008-04-09 21:17:14 888,080 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
+ 2008-05-14 19:03:46 888,080 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
- 2008-04-09 21:17:14 1,172,240 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\xlicons.exe
+ 2008-05-14 19:03:46 1,172,240 ----a-r C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\xlicons.exe
+ 2008-05-18 12:28:58 2,080 ----a-w C:\WINDOWS\SoftwareDistribution\EventCache\{B3F42342-BEF0-44F6-B5FC-47F3416962CC}.bin
+ 2005-05-16 17:34:48 213,048 ----a-w C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavss.dll
+ 2006-03-20 11:17:24 65,536 ----a-w C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavuninstall.exe
+ 2006-03-20 11:17:20 798,720 ----a-w C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavwebscan.dll
- 2008-04-06 05:56:20 19,836,024 ----a-w C:\WINDOWS\system32\MRT.exe
+ 2008-05-09 21:35:04 16,863,864 ----a-w C:\WINDOWS\system32\MRT.exe
+ 2001-09-19 15:11:12 28,672 ----a-w C:\WINDOWS\system32\xcomm.dll
+ 2001-10-01 13:08:08 24,576 ----a-w C:\WINDOWS\system32\xcommsvr.dll
+ 2001-08-29 05:37:12 24,576 ----a-w C:\WINDOWS\system32\xgate.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 05:00 15360]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 11:34 5724184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LaunchApp"="Alaunch" []
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe" [2004-08-05 05:00 208952]
"MSPY2002"="C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-05 05:00 59392]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-05 05:00 455168]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-05 05:00 455168]
"AGRSMMSG"="AGRSMMSG.exe" [2004-04-13 12:49 88363 C:\WINDOWS\AGRSMMSG.exe]
"VTTrayp"="VTtrayp.exe" [2005-05-13 12:57 143360 C:\WINDOWS\system32\VTTrayp.exe]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-10-22 12:22 7700480]
"nwiz"="nwiz.exe" [2006-10-22 12:22 1622016 C:\WINDOWS\system32\nwiz.exe]
"Cmaudio"="cmicnfg.cpl" []
"SoundMan"="SOUNDMAN.EXE" [2007-04-16 15:28 577536 C:\WINDOWS\soundman.exe]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2008-03-28 23:37 413696]
"iTunesHelper"="D:\iTunesHelper.exe" [2008-03-30 10:36 267048]
"PD0620 STISvc"="P0620Pin.dll" [2005-05-10 18:03 36864 C:\WINDOWS\system32\P0620Pin.dll]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-05 05:00 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.avrn"= C:\PROGRA~1\ACEMEG~1\SystemS\AVIDAV~1.DLL
"vidc.advj"= C:\PROGRA~1\ACEMEG~1\SystemS\AVIDAV~1.DLL
"vidc.mszh"= C:\PROGRA~1\ACEMEG~1\SystemS\avimszh.dll
"vidc.zlib"= C:\PROGRA~1\ACEMEG~1\SystemS\avizlib.dll
"vidc.cscd"= C:\PROGRA~1\ACEMEG~1\SystemS\camcodec.dll
"vidc.cvid"= C:\PROGRA~1\ACEMEG~1\SystemS\iccvid.dll
"msacm.trspch"= C:\PROGRA~1\ACEMEG~1\SystemS\tssoft32.acm
"vidc.em2v"= C:\PROGRA~1\ACEMEG~1\SystemS\etxcodec.dll
"vidc.mkvc"= C:\PROGRA~1\ACEMEG~1\SystemS\kmvidc32.dll
"vidc.hfyu"= C:\PROGRA~1\ACEMEG~1\SystemS\huffyuv.dll
"msacm.lhacm"= C:\PROGRA~1\ACEMEG~1\SystemS\lhacm.acm
"vidc.sjpg"= C:\PROGRA~1\ACEMEG~1\SystemS\pmjpeg32.dll
"vidc.dmb2"= C:\PROGRA~1\ACEMEG~1\SystemS\pmjpeg32.dll
"vidc.gepj"= C:\PROGRA~1\ACEMEG~1\SystemS\pmjpeg32.dll
"vidc.qpeg"= C:\PROGRA~1\ACEMEG~1\SystemS\Qpeg32.dll
"vidc.q1.0"= C:\PROGRA~1\ACEMEG~1\SystemS\Qpeg32.dll
"msacm.sl_anet"= C:\PROGRA~1\ACEMEG~1\SystemS\sl_anet.acm
"vidc.tscc"= C:\PROGRA~1\ACEMEG~1\SystemS\tsccvid.dll
"vidc.vifp"= C:\PROGRA~1\ACEMEG~1\SystemS\vfcodec.dll
"vidc.wrpr"= C:\PROGRA~1\ACEMEG~1\SystemS\aviwrap.dll
"vidc.wnv1"= C:\PROGRA~1\ACEMEG~1\SystemS\wnvplay1.dll
"vidc.advs"= C:\PROGRA~1\ACEMEG~1\SystemS\Adaptec\Dvc.dll
"vidc.aflc"= C:\PROGRA~1\ACEMEG~1\SystemS\Autodesk\FLCCOD~1.DLL
"vidc.afli"= C:\PROGRA~1\ACEMEG~1\SystemS\Autodesk\FLCCOD~1.DLL
"vidc.aasc"= C:\PROGRA~1\ACEMEG~1\SystemS\Autodesk\Aasc32.dll
"vidc.aas4"= C:\PROGRA~1\ACEMEG~1\SystemS\Autodesk\Aasc32.dll
"vidc.asv1"= C:\PROGRA~1\ACEMEG~1\SystemS\ASUS\asusasv1.dll
"vidc.asv2"= C:\PROGRA~1\ACEMEG~1\SystemS\ASUS\asusasv2.dll
"vidc.asvx"= C:\PROGRA~1\ACEMEG~1\SystemS\ASUS\asusasv2.dll
"vidc.vcr1"= C:\PROGRA~1\ACEMEG~1\SystemS\ATI\ativcr1.dll
"vidc.vcr2"= C:\PROGRA~1\ACEMEG~1\SystemS\ATI\ativcr2.dll
"vidc.mwv1"= C:\PROGRA~1\ACEMEG~1\SystemS\Aware\icmw_32.dll
"vidc.bt20"= C:\PROGRA~1\ACEMEG~1\SystemS\BROOKT~1\btvvc32.drv
"vidc.y41p"= C:\PROGRA~1\ACEMEG~1\SystemS\BROOKT~1\btvvc32.drv
"msacm.pcdv"= C:\PROGRA~1\ACEMEG~1\SystemS\Canopus\pcdv.acm
"vidc.cdvc"= C:\PROGRA~1\ACEMEG~1\SystemS\Canopus\CSCCDVC.DLL
"vidc.ddvc"= C:\PROGRA~1\ACEMEG~1\SystemS\Canopus\CSCdvsd.DLL
"vidc.png1"= C:\PROGRA~1\ACEMEG~1\SystemS\Core\COREPN~1.DLL
"msacm.CoreFLAC_ACM"= C:\PROGRA~1\ACEMEG~1\SystemS\Core\COREFL~1.ACM
"vidc.davc"= C:\PROGRA~1\ACEMEG~1\SystemS\dicas\davcvfw.dll
"vidc.div3"= C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.div5"= C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.mpg3"= C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.div4"= C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.div6"= C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.ap41"= C:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.dvx4"= C:\PROGRA~1\ACEMEG~1\SystemS\DivX\divx4.dll
"msacm.divxa32"= C:\PROGRA~1\ACEMEG~1\SystemS\DivX\divxa32.acm
"vidc.frwd"= C:\PROGRA~1\ACEMEG~1\SystemS\Forward\frwd.dll
"vidc.frwt"= C:\PROGRA~1\ACEMEG~1\SystemS\Forward\frwd.dll
"vidc.frwa"= C:\PROGRA~1\ACEMEG~1\SystemS\Forward\frwt.dll
"vidc.frwu"= C:\PROGRA~1\ACEMEG~1\SystemS\Forward\frwu.dll
"vidc.glzw"= C:\PROGRA~1\ACEMEG~1\SystemS\Gabest\GLZW.dll
"vidc.gpeg"= C:\PROGRA~1\ACEMEG~1\SystemS\Gabest\GPEG.dll
"vidc.i263"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\i263_32.drv
"vidc.iv30"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv33"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv34"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv35"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv36"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv37"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv38"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv39"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv42"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv43"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv44"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv45"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv46"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv47"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv48"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv49"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.ir21"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\IR21_R.DLL
"vidc.rt21"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\IR21_R.DLL
"msacm.imc"= C:\PROGRA~1\ACEMEG~1\SystemS\Intel\IMC32.ACM
"vidc.lead"= C:\PROGRA~1\ACEMEG~1\SystemS\LEAD\LCODCCMP.DLL
"vidc.dvc"= C:\PROGRA~1\ACEMEG~1\SystemS\MAINCO~1\MCDVD_32.DLL
"vidc.dvcs"= C:\PROGRA~1\ACEMEG~1\SystemS\MAINCO~1\MCDVD_32.DLL
"vidc.dcmj"= C:\PROGRA~1\ACEMEG~1\SystemS\MAINCO~1\MCMJPG32.DLL
"vidc.avi1"= C:\PROGRA~1\ACEMEG~1\SystemS\MAINCO~1\MCMJPG32.DLL
"vidc.avi2"= C:\PROGRA~1\ACEMEG~1\SystemS\MAINCO~1\MCMJPG32.DLL
"msacm.msadpcm"= C:\PROGRA~1\ACEMEG~1\SystemS\MICROS~1\msadp32.acm
"msacm.imaadpcm"= C:\PROGRA~1\ACEMEG~1\SystemS\MICROS~1\imaadp32.acm
"msacm.msg711"= C:\PROGRA~1\ACEMEG~1\SystemS\MICROS~1\msg711.acm
"msacm.msg723"= C:\PROGRA~1\ACEMEG~1\SystemS\MICROS~1\msg723.acm
"msacm.msgsm610"= C:\PROGRA~1\ACEMEG~1\SystemS\MICROS~1\msgsm32.acm
"vidc.m261"= C:\PROGRA~1\ACEMEG~1\SystemS\MICROS~1\msh261.drv
"vidc.m263"= C:\PROGRA~1\ACEMEG~1\SystemS\MICROS~1\msh263.drv
"vidc.mrle"= C:\PROGRA~1\ACEMEG~1\SystemS\MICROS~1\msrle32.dll
"vidc.msvc"= C:\PROGRA~1\ACEMEG~1\SystemS\MICROS~1\msvidc32.dll
"vidc.cram"= C:\PROGRA~1\ACEMEG~1\SystemS\MICROS~1\msvidc32.dll
"vidc.mp41"= C:\PROGRA~1\ACEMEG~1\SystemS\MICROS~1\mpg4c32.dll
"vidc.mp4s"= C:\PROGRA~1\ACEMEG~1\SystemS\MICROS~1\mpg4c32.dll
"vidc.mp4v"= C:\PROGRA~1\ACEMEG~1\SystemS\MICROS~1\mpg4c32.dll
"vidc.wmv3"= C:\PROGRA~1\ACEMEG~1\SystemS\MICROS~1\WMV9VCM.dll
"msacm.msaudio1"= C:\PROGRA~1\ACEMEG~1\SystemS\MICROS~1\msaud32.acm
"vidc.vixl"= C:\PROGRA~1\ACEMEG~1\SystemS\Miro\miroxl32.dll
"vidc.nt00"= C:\PROGRA~1\ACEMEG~1\SystemS\Newtek\ntcodec.dll
"msacm.vorbis"= C:\PROGRA~1\ACEMEG~1\SystemS\OGG\vorbis.acm
"vidc.vp30"= C:\PROGRA~1\ACEMEG~1\SystemS\ON2TEC~1\vp31vfw.dll
"vidc.vp31"= C:\PROGRA~1\ACEMEG~1\SystemS\ON2TEC~1\vp31vfw.dll
"vidc.pdvc"= C:\PROGRA~1\ACEMEG~1\SystemS\PANASO~1\idvcodec.dll
"vidc.ipdv"= C:\PROGRA~1\ACEMEG~1\SystemS\PANASO~1\idvcodec.dll
"vidc.pvw2"= C:\PROGRA~1\ACEMEG~1\SystemS\Pegasus\pvwv220.dll
"vidc.pimj"= C:\PROGRA~1\ACEMEG~1\SystemS\Pegasus\pvljpg20.dll
"vidc.mjpx"= C:\PROGRA~1\ACEMEG~1\SystemS\Pegasus\pvmjpg21.dll
"vidc.miro"= C:\PROGRA~1\ACEMEG~1\SystemS\Pinnacle\MIRODV~1.DLL
"vidc.dcap"= C:\PROGRA~1\ACEMEG~1\SystemS\Pinnacle\MIRODV~1.DLL
"vidc.mjpa"= C:\PROGRA~1\ACEMEG~1\SystemS\Pinnacle\RTMJPG~1.DLL
"vidc.gpjm"= C:\PROGRA~1\ACEMEG~1\SystemS\Pinnacle\RTMJPG~1.DLL
"vidc.pim1"= C:\PROGRA~1\ACEMEG~1\SystemS\Pinnacle\pclepim1.dll
"msacm.qmpeg"= C:\PROGRA~1\ACEMEG~1\SystemS\QDesign\qmpeg.acm
"vidc.rmp4"= C:\PROGRA~1\ACEMEG~1\SystemS\REALMA~1\rmp4.dll
"vidc.rud0"= C:\PROGRA~1\ACEMEG~1\SystemS\Rududu\rududu.dll
"msacm.at3"= C:\PROGRA~1\ACEMEG~1\SystemS\SONY\atrac3.acm
"vidc.sony"= C:\PROGRA~1\ACEMEG~1\SystemS\SONY\sonydv.dll
"vidc.dvcp"= C:\PROGRA~1\ACEMEG~1\SystemS\SONY\sonydv.dll
"vidc.s422"= C:\PROGRA~1\ACEMEG~1\SystemS\Tekram\tekyuv.dll
"vidc.t420"= C:\PROGRA~1\ACEMEG~1\SystemS\Toshiba\tsbyuv.dll
"vidc.y411"= C:\PROGRA~1\ACEMEG~1\SystemS\Toshiba\tsbyuv.dll
"vidc.vssv"= C:\PROGRA~1\ACEMEG~1\SystemS\VANGUA~1\vsscodec.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sglfb.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tga.sys]
@="Driver"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"D:\\eMule\\emule.exe"=
"C:\\Program Files\\Azureus\\Azureus.exe"=
"C:\\Program Files\\Warcraft III1\\Warcraft III.exe"=
"D:\\iTunes.exe"=
"C:\\Program Files\\Qwix101\\QWIX.EXE"=
"C:\\Documents and Settings\\Bertrand\\Application Data\\M\\FLEC006.EXE"=

R1 SSHDRV85;SSHDRV85;C:\WINDOWS\system32\drivers\SSHDRV85.sys [2007-03-01 19:57]
R2 int15.sys;int15.sys;C:\Program Files\Acer\eRecovery\int15.sys [2005-01-13 14:46]
S3 DMSKSSRh;DMSKSSRh;C:\DOCUME~1\Bertrand\LOCALS~1\Temp\DMSKSSRh.sys []
S3 USB_RNDIS_51;Broadcom USB Remote NDIS Device Driver;C:\WINDOWS\system32\DRIVERS\usb8023.sys [2004-08-05 05:00]
S3 XDva120;XDva120;C:\WINDOWS\system32\XDva120.sys []

*Newly Created Service* - SROSA
.
Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es'
"2008-05-18 20:00:02 C:\WINDOWS\Tasks\B0B40609907FB785.job"
- c:\docume~1\valerie\applic~1\elsepl~1\Thunkdeafgreat.exe
"2008-05-18 20:00:02 C:\WINDOWS\Tasks\A88B358E917CAC82.job"
- c:\docume~1\bertrand\applic~1\elsepl~1\Thunkdeafgreat.exe
"2008-05-18 20:00:02 C:\WINDOWS\Tasks\A5575AD89188D778.job"
- c:\docume~1\benjy!~1\applic~1\elsepl~1\Thunkdeafgreat.exe
"2008-05-16 12:28:02 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-18 22:17:11
Windows 5.1.2600 Service Pack 2 FAT NTAPI

Balayage processus cach‚s ...

Balayage cach‚ autostart entries ...

Balayage des fichiers cach‚s ...

Scan termin‚ avec succŠs
Les fichiers cach‚s: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\srosa]
"ImagePath"="\??\C:\WINDOWS\system32\drivers\srosa.sys"

[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\ASFWHide]
"ImagePath"="\??\C:\DOCUME~1\BENJY!~1\LOCALS~1\Temp\ASFWHide"
.
------------------------ Other Running Processes ------------------------
.
D:\adawar\aawservice.exe
C:\PROGRAM FILES\FICHIERS COMMUNS\APPLE\MOBILE DEVICE SUPPORT\BIN\APPLEMOBILEDEVICESERVICE.EXE
C:\WINDOWS\SYSTEM32\DRIVERS\CDANTSRV.EXE
C:\WINDOWS\SYSTEM32\NVSVC32.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\SYSTEM32\RUNDLL32.EXE
D:\bin\iPodService.exe
.
**************************************************************************
.
Temps d'accomplissement: 2008-05-18 22:19:39 - machine was rebooted
ComboFix-quarantined-files.txt 2008-05-18 20:19:36
ComboFix5.txt 2008-05-12 08:12:26
ComboFix4.txt 2008-05-12 08:22:10
ComboFix3.txt 2008-05-12 09:47:56
ComboFix2.txt 2008-05-12 11:22:58

Pre-Run: 18,047,270,912 octets libres
Post-Run: 18,036,981,760 octets libres

745 --- E O F --- 2008-05-14 19:03:47
0
Réponse 7 / 12
Ben&quot; Messages postés 8 Date d'inscription   Statut Membre Dernière intervention  
 
ELIBAGLA n'a rien trouvé, j'ai en même temps scanné le lecteur D, mais rien non plus.

J'ai donc tenter de réinstaller Antivir,
mais je n'ai pas pu le faire, un message d'erreur est apparu me disant que certains fichiers non pas pu être crée, et m'invitant a redémarrer mon PC,
ce que je viens de faire.

J'ai donc tenter de réinstaller Antivir pour un nombre incalculable de fois,
mais toujours le même message au final.

Donc retour à la case départ :(

Désolé pour le triple post :S
0
Réponse 8 / 12
Ben&quot; Messages postés 8 Date d'inscription   Statut Membre Dernière intervention  
 
Bonsoir !!

Je viens de faire tes dernières recommandations !!

J'ai fais un scan avec BITDEFENDER, et il m'a trouver 7 virus, dont 388 fichiers infectés... no comment -.-'

J'ai ensuite installé Antivir, et cela a marcher !!

Je me lance sur le dernier test que tu m'a dit: MalwareByte's Anti-Malware

Même si Antivir fonctionne je préfére être sur que tout est bon !!



Merci infiniment dans tout les cas a nico-81 et a jlpjlp de m'avoir aider a résoudre mon problème :)
0
Réponse 9 / 12
Ben&quot; Messages postés 8 Date d'inscription   Statut Membre Dernière intervention  
 
Bonsoir !!

Je viens de finir le scan avec BITDEFENDER , il m'a trouver 7 virus au total et 388 fichiers inféctés... no comment -.-'
( :P )

J'ai ensuite réussi a installer Antivir

Et pour finir je lance le dernier scan avec MalwareByte's Anti-Malware

Merci infiniment a nico-81 et surtout a jlpjlp !!
0
Réponse 10 / 12
jlpjlp Messages postés 51580 Date d'inscription   Statut Contributeur sécurité Dernière intervention   5 040
 
ok colle les rapports

MalwareByte's Anti-Malware et antivir















pour protéger gratos ton ordi

http://www.commentcamarche.net/telecharger/logiciel 4 securite

mettre un antivirus

AVAST en français ou ANTIVIR (en anglais mais très efficace)
https://www.malekal.com/avira-free-security-antivirus-gratuit/ (merci Malekal)
-------------
des anti-espions :
MalwareByte's Anti-Malware + SPYBOT
+
SPYWAREBLASTER pour immuniser le système contre vundo notamment mais en anglais (mais facile d'utilisation : il suffit de faire "update" pour mettre à jour tous les mois et ensuite" enable all protection" pour immuniser)...

Rq : spybot et ad-aware ont sorti de nouvelles versions cette année vérifiez que vous avez la dernière version
--------
un pare feu :
celui de (Windows) ou mieux Online armor ou KERIO ou JETICO ou ZONE ALARM (mettre que le parefeu gratuit)

http://www.commentcamarche.net/telecharger/telecharger 34055356 online armor personal firewall

https://forum.pcastuces.com/sujet.asp?f=25&s=35606
https://www.clubic.com/telecharger-fiche11071-sunbelt-personal-firewall-ex-kerio.html
https://manuelsdaide.com/contact/
http://www.open-files.com/forum/index.php?showtopic=29277
http://www.commentcamarche.net/telecharger/telecharger 157 zonealarm

-----------
CCLEANER pour effacer les traces de surf
---------
naviguer avec firefox ou safari ou opera et non internet explorer plus touché par les virus
http://www.mozilla-europe.org/fr/products/firefox/

_____________

et surtout ne pas telecharger n'importe quoi!!!!
0
Réponse 11 / 12
Ben&quot; Messages postés 8 Date d'inscription   Statut Membre Dernière intervention  
 
Je colle le rapport de Malwarebytes':


Malwarebytes' Anti-Malware 1.12
Database version: 768

Scan type: Full Scan (C:\|D:\|)
Objects scanned: 210691
Time elapsed: 4 hour(s), 44 minute(s), 10 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 2
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CLASSES_ROOT\CLSID\{2b96d5cc-c5b5-49a5-a69d-cc0a30f9028c} (Adware.Minibug) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> No action taken.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\System Volume Information\_restore{DA1684A3-4776-45C8-851D-DD8A56FF2753}\RP1259\A0200936.exe (Adware.Rabio) -> No action taken.








Je poste le rapport d'Antivir ce soir !
Merci pour tout !!
0
Réponse 12 / 12
jlpjlp Messages postés 51580 Date d'inscription   Statut Contributeur sécurité Dernière intervention   5 040
 
ok fais antivir

puis


si tout c'est bien passé désactive la restauration système pour purger les virus qui seraient dedans
puis redemarre ton ordi
puis réactive là :

https://www.informatruc.com
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
message de postmaster incessant !
wasap -
wasap -

9 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses
Message Apple virus !!
Souclik67 -
MPMP10 -

3 réponses
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses