Icone bureau invisible + pc lent

Fermé
belettemaster - 12 août 2008 à 02:17
 belettemaster - 12 août 2008 à 21:49
Bonjour, depuis 2 mois , mon pc fait des choses qui restent pour moi assez étrange :

* les icônes du bureau sont soit invisible soit iconifié par un fichier blanc ( exemple , un fichier .rar est iconifié par cette petite pile de bouquin compressé et bien là non ! comme si le fichier n'était rattaché à aucun programme ) il en est de même pour les icônes programme eux mêmes !

*et ensuite il passe son temps à chercher on ne sait quoi alors que je lui demande absolument rien ! aucune hausse particulière dans le gestionnaire de tâches , j'ai bien pensé à kaspersky surtout avec sa dernière version qui est un peu plus gourmande et qui check tout , mais ça me paraît énorme.

J'ai bien tenté une restauration mais les points de restaurations qui me sont proposés ne remontent pas assez loin dans le temps environ 15 jours max. J'ai fait sinon une copie de sauvegarde en Mars 2008 . La question est si je l'utilise , tout mes drivers mis à jours , programmes , BIOS , documents ... qui ont été installés après cette date n'existeront plus ?


Voici un rapport hijack , j'espère que vous verrez quelque chose ?! Merci d'avance à tous

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 01:59:43, on 12/08/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Windows\System32\CTHELPER.EXE
C:\Windows\System32\CTXFIHLP.EXE
C:\Windows\SYSTEM32\CTXFISPI.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Windows\System32\rundll32.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.01net.com/telecharger/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Alcohol Toolbar Helper - {8126A4A5-BFD3-46FE-BBDF-BFB5CF78E489} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll (file missing)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Alcohol Toolbar - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll (file missing)
O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [CTXFIREG] CTxfiReg.exe
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [RivaTuner] "C:\Program Files\RivaTuner v2.05\RivaTuner.exe" /T
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [EPGServiceTool] C:\PROGRA~1\WinTV\EPG Services\System\EPGClient.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [DevconDefaultDB] C:\Windows\system32\READREG /SILENT /FAIL=1 (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SetDefaultMIDI] MIDIDEF.EXE /s:'Creative SoundFont Synthesizer' /w:'SB Audigy' (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DevconDefaultDB] C:\Windows\system32\READREG /SILENT /FAIL=1 (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SetDefaultMIDI] MIDIDEF.EXE /s:'Creative SoundFont Synthesizer' /w:'SB Audigy' (User 'Default user')
O4 - Startup: HcwSyncIt.lnk = C:\Program Files\WinTV\Scheduler\EPG\TvTv\HcwSyncIt.exe
O4 - Global Startup: AutoStart IR.lnk = C:\Program Files\WinTV\Ir.exe
O8 - Extra context menu item: Ajouter à Kaspersky Anti-Bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://www.extrafilm.fr/ImageUploader4.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - file:///C:/Users/belette%20master/AppData/Local/Oberon%20Media/Oberon%20Games%20Host/popcaploader_v6.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/softwareupdate/su2/ocx/15035/CTPID.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{A9F23C30-4ACF-4EBE-80F8-2AF993620E6B}: NameServer = 194.117.200.10,194.117.200.15
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~2.0\r3hook.dll,C:\PROGRA~1\KASPER~1\KASPER~2.0\adialhk.dll
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\Windows\system32\CTsvcCDA.exe
O23 - Service: EPGService - Hauppauge Computer Works - C:\PROGRA~1\WinTV\EPG Services\System\EPGService.exe
O23 - Service: HauppaugeTVServer - Hauppauge Computer Works - C:\PROGRA~1\WinTV\HCWTVS~1.EXE
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
A voir également:

28 réponses

Utilisateur anonyme
12 août 2008 à 02:27
Salut,

Rends toi sur ce site :

https://www.virustotal.com/gui/

Clique sur parcourir et cherche ce fichier : C:\Program Files\WinTV\Ir.exe


Clique sur Send File.

Un rapport va s'élaborer ligne à ligne.

Attends la fin. Il doit comprendre la taille du fichier envoyé.

Sauvegarde le rapport avec le bloc-note.

Copie le dans ta réponse.

0
belettemaster
12 août 2008 à 02:55
Voilà :

Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2008.8.12.0 2008.08.11 -
AntiVir 7.8.1.19 2008.08.11 -
Authentium 5.1.0.4 2008.08.12 -
Avast 4.8.1195.0 2008.08.11 -
AVG 8.0.0.156 2008.08.11 -
BitDefender 7.2 2008.08.12 -
CAT-QuickHeal 9.50 2008.08.11 -
ClamAV 0.93.1 2008.08.12 -
DrWeb 4.44.0.09170 2008.08.11 -
eSafe 7.0.17.0 2008.08.11 -
eTrust-Vet 31.6.6023 2008.08.11 -
Ewido 4.0 2008.08.11 -
F-Prot 4.4.4.56 2008.08.12 -
F-Secure 7.60.13501.0 2008.08.12 -
Fortinet 3.14.0.0 2008.08.11 -
GData 2.0.7306.1023 2008.08.12 -
Ikarus T3.1.1.34.0 2008.08.12 -
K7AntiVirus 7.10.411 2008.08.11 -
Kaspersky 7.0.0.125 2008.08.12 -
McAfee 5358 2008.08.11 -
Microsoft 1.3807 2008.08.12 -
NOD32v2 3347 2008.08.11 -
Norman 5.80.02 2008.08.11 -
Panda 9.0.0.4 2008.08.11 -
PCTools 4.4.2.0 2008.08.11 -
Prevx1 V2 2008.08.12 -
Rising 20.57.02.00 2008.08.11 -
Sophos 4.32.0 2008.08.12 -
Sunbelt 3.1.1538.1 2008.08.09 -
Symantec 10 2008.08.12 -
TheHacker 6.2.96.395 2008.08.08 -
TrendMicro 8.700.0.1004 2008.08.11 -
VBA32 3.12.8.3 2008.08.11 -
ViRobot 2008.8.11.1331 2008.08.11 -
VirusBuster 4.5.11.0 2008.08.11 -
Webwasher-Gateway 6.6.2 2008.08.12 -
Information additionnelle
File size: 110647 bytes
MD5...: ce5c7bf09537f6cc4f897097430475c0
SHA1..: da639255514c75bf0d6cc70fb1914850edc318d0
SHA256: 05da7a701e2e07f9ef66688243e3ac4f5c6285608c122add06d55380af33ca1a
SHA512: bf3f91f2f0377927823c29dec599c31c2a885b9e2d8dcdc205aaca690969d4a1
1b221341526c9565c48a2569c1d1113d878d44724fa26cc8a0b4b2f71ad2d0f3
PEiD..: Armadillo v1.71
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x40777e
timedatestamp.....: 0x4795030c (Mon Jan 21 20:39:40 2008)
machinetype.......: 0x14c (I386)

( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0xd034 0xe000 6.21 0f8828f44252907109fb93231c5eeab4
.rdata 0xf000 0x235e 0x3000 4.60 fa8423ecabb07e3e285b0190516c2257
.data 0x12000 0xa164 0x5000 2.01 9d6cd0716dd066727f3cc684e9040e79
.rsrc 0x1d000 0x3ad0 0x4000 2.95 284f4abe81a57e16daa8b73734f86572

( 5 imports )
> HCWUTL32.dll: -, -, -, -
> KERNEL32.dll: SetThreadExecutionState, FindNextFileA, FindClose, FindFirstFileA, GetShortPathNameA, LoadLibraryA, GetWindowsDirectoryA, Sleep, GetTickCount, lstrcpynA, GetPrivateProfileStringA, GetLastError, GetCurrentThreadId, MultiByteToWideChar, lstrcpyA, GetVersion, FreeLibrary, SetErrorMode, GetProcAddress, GetCommandLineA, LCMapStringW, UnhandledExceptionFilter, LCMapStringA, LocalFree, RaiseException, InterlockedExchange, LocalAlloc, HeapAlloc, HeapFree, RtlUnwind, GetModuleHandleA, GetStartupInfoA, GetEnvironmentStrings, ExitProcess, GetModuleFileNameA, GetEnvironmentVariableA, GetVersionExA, HeapDestroy, HeapCreate, VirtualFree, VirtualAlloc, HeapReAlloc, IsBadWritePtr, TerminateProcess, GetCurrentProcess, CloseHandle, WideCharToMultiByte, SetConsoleCtrlHandler, SetStdHandle, GetStringTypeW, FreeEnvironmentStringsA, FreeEnvironmentStringsW, FlushFileBuffers, GetEnvironmentStringsW, SetHandleCount, GetStdHandle, GetFileType, WriteFile, GetStringTypeA, SetEndOfFile, ReadFile, IsBadCodePtr, CreateFileA, SetUnhandledExceptionFilter, IsBadReadPtr, SetFilePointer, GetCPInfo, GetACP, GetOEMCP
> GDI32.dll: CreateCompatibleDC, StretchBlt, SelectObject, CreateCompatibleBitmap, DeleteDC
> SHELL32.dll: ShellExecuteA, Shell_NotifyIconA, SHAppBarMessage
> ole32.dll: CoInitialize, CoUninitialize, CoCreateInstance

( 0 exports )
0
belettemaster
12 août 2008 à 03:02
Dans programme j'ai un fichier douteux .exe qui se nomme 7Za, j'ai jamais su ce que c'était et je l'ai analysé avec le site que tu ma passé , ça me sort ça !!!

Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2008.8.12.0 2008.08.11 Win-Trojan/Proxy.185856
AntiVir 7.8.1.19 2008.08.11 TR/Horse2.JMN
Authentium 5.1.0.4 2008.08.12 -
Avast 4.8.1195.0 2008.08.11 Win32:Virut
AVG 8.0.0.156 2008.08.11 Generic2.JMN
BitDefender 7.2 2008.08.12 Trojan.Horse2.JMN
CAT-QuickHeal 9.50 2008.08.11 (Suspicious) - DNAScan
ClamAV 0.93.1 2008.08.12 -
DrWeb 4.44.0.09170 2008.08.11 -
eSafe 7.0.17.0 2008.08.11 Suspicious File
eTrust-Vet 31.6.6023 2008.08.11 -
Ewido 4.0 2008.08.11 -
F-Prot 4.4.4.56 2008.08.12 -
F-Secure 7.60.13501.0 2008.08.12 -
Fortinet 3.14.0.0 2008.08.11 W32/PROXY.IA!tr
GData 2.0.7306.1023 2008.08.12 Win32:Virut
Ikarus T3.1.1.34.0 2008.08.12 Trojan.Horse2.JMN
K7AntiVirus 7.10.411 2008.08.11 -
Kaspersky 7.0.0.125 2008.08.12 -
McAfee 5358 2008.08.11 BackDoor-CMQ
Microsoft 1.3807 2008.08.12 -
NOD32v2 3347 2008.08.11 -
Norman 5.80.02 2008.08.11 -
Panda 9.0.0.4 2008.08.11 Trj/Rizalof.RV
PCTools 4.4.2.0 2008.08.11 Trojan.Horst!sd5
Prevx1 V2 2008.08.12 -
Rising 20.57.02.00 2008.08.11 Trojan.Proxy.Horst.bdq
Sophos 4.32.0 2008.08.12 Mal/Generic-A
Sunbelt 3.1.1538.1 2008.08.09 -
Symantec 10 2008.08.12 Trojan.Horst
TheHacker 6.2.96.395 2008.08.08 -
TrendMicro 8.700.0.1004 2008.08.11 TROJ_PROXY.IA
VBA32 3.12.8.3 2008.08.11 -
ViRobot 2008.8.11.1331 2008.08.11 -
VirusBuster 4.5.11.0 2008.08.11 -
Webwasher-Gateway 6.6.2 2008.08.12 Trojan.Horse2.JMN
Information additionnelle
File size: 185856 bytes
MD5...: 3282e12c74e33297b1f1a545dfe3b0af
SHA1..: 503a07b04109ecd63aacd398852df95de55462f0
SHA256: a3a528757b27c3be863de8d494b4fbc969c90ad16abf55cc79b16d463e44fb4a
SHA512: 4eee34a75648a4d19fe5ea523d544766b62bbbf16694711bcf20ecdd8d72ce09
6313d5dd702923f84d271a58ab022a3545b83b8e763592bc9e5d56b963a2af03
PEiD..: PECompact 2.xx --> BitSum Technologies
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x401000
timedatestamp.....: 0x433a5acb (Wed Sep 28 08:56:43 2005)
machinetype.......: 0x14c (I386)

( 2 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x81000 0x2c000 8.00 44478914025e0827e15b3e1e9bc01fb9
.rsrc 0x82000 0x2000 0x1200 6.74 1dcb7df633daa5642f8ab309eb1826a3

( 1 imports )
> kernel32.dll: LoadLibraryA, GetProcAddress, VirtualAlloc, VirtualFree

( 0 exports )
ThreatExpert info: https://www.symantec.com?md5=3282e12c74e33297b1f1a545dfe3b0af
packers (Kaspersky): PE_Patch.PECompact, PecBundle, PECompact
packers (Avast): PECompact
packers (F-Prot): PecBundle, PECompact
0
Utilisateur anonyme
12 août 2008 à 03:04
Télécharge combofix : http://download.bleepingcomputer.com/sUBs/ComboFix.exe




-> Double clique sur combofix.exe.
-> Tape sur la touche 1 (Yes) pour démarrer le scan.
-> Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.

NOTE : Le rapport se trouve également ici : C:\Combofix.txt

Avant d'utiliser ComboFix :

-> Déconnecte toi d'internet et referme les fenêtres de tous les programmes en cours.

-> Désactive provisoirement et seulement le temps de l'utilisation de ComboFix, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent géner fortement la procédure de recherche et de nettoyage de l'outil.

Une fois fait, sur ton bureau double-clic sur Combofix.exe.

- Répond oui au message d'avertissement, pour que le programme commence à procéder à l'analyse du pc.

/!\ Pendant la durée de cette étape, ne te sert pas du pc et n'ouvre aucun programmes.

- En fin de scan il est possible que ComboFix ait besoin de redemarrer le pc pour finaliser la désinfection\recherche, laisses-le faire.

- Un rapport s'ouvrira ensuite dans le bloc notes, ce fichier rapport Combofix.txt, est automatiquement sauvegardé et rangé à C:\Combofix.txt)

-> Réactive la protection en temps réel de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.

-> Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
belettemaster
12 août 2008 à 03:27
et voici le rapport combofix :

ComboFix 08-08-10.06 - belette master 2008-08-12 3:14:17.1 - NTFSx86
Microsoft® Windows Vista™ Édition Intégrale 6.0.6001.1.1252.1.1036.18.1069 [GMT 2:00]
Endroit: C:\Users\belette master\Desktop\ComboFix.exe
* Création d'un nouveau point de restauration
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Windows\system32\actskn43.ocx

.
((((((((((((((((((((((((((((( Fichiers créés 2008-07-12 to 2008-08-12 ))))))))))))))))))))))))))))))))))))
.

2008-08-12 01:01 . 2008-08-12 01:01 <REP> d-------- C:\Program Files\Enigma Software Group
2008-07-26 22:33 . 2008-07-27 19:09 <REP> d-------- C:\Users\belette master\AppData\Roaming\uTorrent
2008-07-26 22:33 . 2008-07-26 22:33 <REP> d-------- C:\Program Files\uTorrent
2008-07-25 02:25 . 2008-05-27 06:59 106,605 --a------ C:\Windows\System32\StructuredQuerySchema.bin
2008-07-25 02:25 . 2008-05-27 07:17 34,816 --a------ C:\Windows\System32\msscb.dll
2008-07-25 02:25 . 2008-05-27 06:59 18,904 --a------ C:\Windows\System32\StructuredQuerySchemaTrivial.bin
2008-07-25 02:25 . 2008-05-27 07:17 11,776 --a------ C:\Windows\System32\msshooks.dll
2008-07-18 20:39 . 2008-07-18 20:39 587,264 --a------ C:\Windows\WLXPGSS.SCR
2008-07-18 09:10 . 2008-06-26 03:45 12,240,896 --a------ C:\Windows\System32\NlsLexicons0007.dll
2008-07-18 09:10 . 2008-06-26 03:45 2,644,480 --a------ C:\Windows\System32\NlsLexicons0009.dll
2008-07-18 09:10 . 2008-06-26 05:29 801,280 --a------ C:\Windows\System32\NaturalLanguage6.dll
2008-07-18 09:09 . 2008-04-26 10:25 3,600,952 --a------ C:\Windows\System32\ntkrnlpa.exe
2008-07-18 09:09 . 2008-04-26 10:25 3,549,240 --a------ C:\Windows\System32\ntoskrnl.exe
2008-07-18 09:09 . 2008-04-26 10:26 891,448 --a------ C:\Windows\System32\drivers\tcpip.sys
2008-07-18 09:09 . 2008-04-12 05:32 784,896 --a------ C:\Windows\System32\rpcrt4.dll
2008-07-18 09:09 . 2008-05-10 05:35 564,736 --a------ C:\Windows\System32\emdmgmt.dll
2008-07-18 09:09 . 2008-04-05 03:21 72,192 --a------ C:\Windows\System32\drivers\pacer.sys
2008-07-18 09:09 . 2008-04-05 05:34 15,360 --a------ C:\Windows\System32\pacerprf.dll
2008-07-18 09:08 . 2008-05-08 23:59 430,080 --a------ C:\Windows\System32\vbscript.dll
2008-07-18 09:08 . 2008-05-08 23:59 180,224 --a------ C:\Windows\System32\scrobj.dll
2008-07-18 09:08 . 2008-05-08 23:59 172,032 --a------ C:\Windows\System32\scrrun.dll
2008-07-18 09:08 . 2008-05-08 23:59 155,648 --a------ C:\Windows\System32\wscript.exe
2008-07-18 09:08 . 2008-05-08 23:58 135,168 --a------ C:\Windows\System32\wshom.ocx
2008-07-18 09:08 . 2008-05-08 23:58 135,168 --a------ C:\Windows\System32\cscript.exe
2008-07-18 09:08 . 2008-05-08 23:59 90,112 --a------ C:\Windows\System32\wshext.dll

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-08-12 01:18 195,910,432 --sha-w C:\Windows\system32\drivers\fidbox.dat
2008-08-12 01:10 --------- d-----w C:\Users\belette master\AppData\Roaming\DMCache
2008-08-11 23:35 --------- d-----w C:\ProgramData\Kaspersky Lab
2008-08-11 23:35 --------- d-----w C:\Program Files\WinTV
2008-08-11 23:34 2,603,324 --sha-w C:\Windows\system32\drivers\fidbox.idx
2008-08-11 23:00 --------- d-----w C:\Users\belette master\AppData\Roaming\IDM
2008-08-11 22:57 --------- d-----w C:\Program Files\Internet Download Manager
2008-08-07 14:55 96,976 ----a-w C:\Windows\system32\drivers\klin.dat
2008-07-24 23:56 87,855 ----a-w C:\Windows\system32\drivers\klick.dat
2008-07-24 10:44 --------- d-----w C:\Users\belette master\AppData\Roaming\dvdcss
2008-07-18 07:40 --------- d-----w C:\Program Files\Windows Mail
2008-07-09 14:34 206,256 ----a-w C:\Windows\System32\idmmbc.dll
2008-07-02 18:22 --------- d-----w C:\Users\belette master\AppData\Roaming\AVS4YOU
2008-07-02 18:22 --------- d-----w C:\ProgramData\AVS4YOU
2008-07-02 18:16 --------- d-----w C:\Program Files\Common Files\AVSMedia
2008-07-02 18:16 --------- d-----w C:\Program Files\AVS4YOU
2008-06-26 22:09 --------- d-----w C:\Program Files\Evolution Tools
2008-06-26 20:14 --------- d-----w C:\Program Files\vtplus
2008-06-26 19:52 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-06-26 19:52 --------- d-----w C:\Program Files\Common Files\IviSDK
2008-05-29 18:34 832,292 ----a-w C:\Windows\Commando1703.zip
2008-05-27 05:21 1,582,592 ----a-w C:\Windows\System32\tquery.dll
2008-05-27 05:21 1,418,240 ----a-w C:\Windows\System32\mssrch.dll
2008-05-27 05:17 87,552 ----a-w C:\Windows\System32\SearchFilterHost.exe
2008-05-27 05:17 87,552 ----a-w C:\Windows\System32\mssitlb.dll
2008-05-27 05:17 754,176 ----a-w C:\Windows\System32\propsys.dll
2008-05-27 05:17 60,416 ----a-w C:\Windows\System32\msscntrs.dll
2008-05-27 05:17 6,103,040 ----a-w C:\Windows\System32\chtbrkr.dll
2008-05-27 05:17 32,768 ----a-w C:\Windows\System32\mssprxy.dll
2008-05-27 05:17 313,344 ----a-w C:\Windows\System32\thawbrkr.dll
2008-05-27 05:17 301,568 ----a-w C:\Windows\System32\srchadmin.dll
2008-05-27 05:17 194,560 ----a-w C:\Windows\System32\offfilt.dll
2008-05-27 05:17 143,872 ----a-w C:\Windows\System32\korwbrkr.dll
2008-05-27 05:17 1,671,680 ----a-w C:\Windows\System32\chsbrkr.dll
2008-03-20 18:37 174 --sha-w C:\Program Files\desktop.ini
2006-05-28 15:46 397,306 ----a-w C:\Program Files\wunauclt.zip
2006-05-28 15:46 397,306 ----a-w C:\Program Files\wunauclt.tbe
2005-09-28 08:56 185,856 ----a-w C:\Program Files\7za.exe
2008-01-03 18:51 16,384 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
2008-01-03 18:51 32,768 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
2008-01-03 18:51 16,384 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-01-19 00:33 1233920]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2008-01-19 00:33 125952]
"IDMan"="C:\Program Files\Internet Download Manager\IDMan.exe" [2008-07-29 16:18 2610608]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 12:34 5724184]
"Veoh"="C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" [2008-04-01 18:35 3587120]
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 00:33 202240]
"WindowsWelcomeCenter"="oobefldr.dll" [2008-01-19 00:36 2153472 C:\Windows\System32\oobefldr.dll]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 15:40 155648]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25 144784]
"RivaTuner"="C:\Program Files\RivaTuner v2.05\RivaTuner.exe" [2007-09-27 19:20 2633728]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]
"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [2008-05-03 05:46 13535776]
"NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [2008-05-03 05:46 92704]
"EPGServiceTool"="C:\PROGRA~1\WinTV\EPG Services\System\EPGClient.exe" [2008-02-27 14:02 688128]
"CTXFIREG"="CTxfiReg.exe" [2007-05-10 16:48 43520 C:\Windows\System32\CTXFIREG.EXE]
"CTHelper"="CTHELPER.EXE" [2007-05-10 16:51 19456 C:\Windows\System32\CTHELPER.EXE]
"CTxfiHlp"="CTXFIHLP.EXE" [2007-05-10 16:52 19968 C:\Windows\System32\CTXFIHLP.EXE]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DevconDefaultDB"="C:\Windows\system32\READREG" [X]
"CtxfiReg"="CTXFIREG.exe" [2007-05-10 16:48 43520 C:\Windows\System32\CTXFIREG.EXE]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SetDefaultMIDI"="MIDIDEF.EXE" [2007-05-10 16:36 28672 C:\Windows\System32\MIDIDEF.EXE]

C:\Users\belette master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
HcwSyncIt.lnk - C:\Program Files\WinTV\Scheduler\EPG\TvTv\HcwSyncIt.exe [2008-06-26 21:51:18 1392640]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
AutoStart IR.lnk - C:\Program Files\WinTV\Ir.exe [2008-06-26 22:13:48 110647]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\PROGRA~1\KASPER~1\KASPER~2.0\r3hook.dll,C:\PROGRA~1\KASPER~1\KASPER~2.0\adialhk.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders schannel.dll, credssp.dll

[HKLM\~\startupfolder\C:^Users^belette master^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Xfire.lnk]
path=C:\Users\belette master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Xfire.lnk
backup=C:\Windows\pss\Xfire.lnk.Startup
backupExtension=.Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2008-01-11 22:16 39792 C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeUpdater]
-ra------ 2007-03-01 10:37 2321600 C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2007-11-15 14:11 267048 C:\Program Files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
--a------ 2007-10-18 12:34 5724184 C:\Program Files\Windows Live\Messenger\msnmsgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2007-11-15 00:43 286720 C:\Program Files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile-based device management]
--a------ 2007-01-24 12:21 563080 C:\Windows\WindowsMobile\wmdc.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{E21768A9-F0CD-43CC-91CE-38EC3B39137E}"= UDP:C:\Program Files\Sierra\FEAR\FEAR.exe:FEAR
"{AEB38D62-37C5-4D23-8341-233A03D77914}"= TCP:C:\Program Files\Sierra\FEAR\FEAR.exe:FEAR
"{15C8ECE8-136B-4442-99E8-E084DD9EA770}"= UDP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{7FF376C5-04A7-4528-8266-32398BC028A4}"= TCP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{FA7CD5BB-47F7-4A25-818C-FD54F850128A}"= UDP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{CDACDC92-8949-4E85-BAD7-B7D7760EEB1B}"= TCP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{FC6A7ADE-BE1D-47CD-95FA-32D4F804E27E}"= UDP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{721C6653-1BBD-4CC1-A71F-8D16E4F59FA6}"= TCP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{86FC4027-3DD7-45DB-8029-F2DCE731C8E9}"= UDP:26675:169.254.2.0/255.255.255.0:ActiveSync Service
"{91DD3DF9-EB9B-4172-8211-C66B5F4E5D75}"= UDP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{0AA2A321-E618-48BE-A84B-8CBB39921FC9}"= TCP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{6BC1A91B-CFB0-4CFF-B0F9-CCCAFD15CFD3}"= UDP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{D42DE169-AB2F-4E8D-945B-6ACF041D2039}"= TCP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{78BF53AF-0894-4EC8-8B9C-E95CFD6CE79B}"= UDP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{0F67EB58-1B13-4316-8ECB-4FEC5DA3C9D0}"= TCP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{5AD6A129-A769-4B60-9B77-8AEF48053662}"= UDP:26675:169.254.2.0/255.255.255.0:ActiveSync Service
"{40F9C1C5-6BC8-4CB8-AE09-6BBB6C58F49C}"= UDP:C:\Program Files\iTunes\iTunes.exe:iTunes
"{68F10B22-8A48-4710-A814-ECF281466D7B}"= TCP:C:\Program Files\iTunes\iTunes.exe:iTunes
"{A7ECF797-EBB1-4C59-914A-8F3607A57612}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
"{B938B711-B7A7-4EE0-828E-568A8AFE378E}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main.exe:Neverwinter Nights 2 Main
"{56CF6D0E-02CE-4934-A501-1FCA6EABD635}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main.exe:Neverwinter Nights 2 Main
"{A2074204-E7B9-45ED-AF56-885ED4A758F6}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main_amdxp.exe:Neverwinter Nights 2 AMD
"{9AA3E11F-E54A-49CE-BA60-18AE36D143D3}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main_amdxp.exe:Neverwinter Nights 2 AMD
"{A1F6F0BB-3FC2-4E4B-B4A4-7B9AA6255797}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwupdate.exe:Neverwinter Nights 2 Updater
"{0A2CE85C-5827-4058-BFAF-16D849AD6ECB}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwupdate.exe:Neverwinter Nights 2 Updater
"{F87B8E59-514A-4200-9601-21E330DC05D1}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2server.exe:Neverwinter Nights 2 Server
"{539870C4-A02F-47D0-BEBB-A44C9930A891}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2server.exe:Neverwinter Nights 2 Server
"{5DE2BB30-4764-4788-8CF1-A13E06407B1D}"= UDP:7561:emule
"{7F4931B2-DA70-4B80-AC1D-344EA8753336}"= TCP:7562:emule
"TCP Query User{A96A7C52-731B-422F-A88B-01AC7CD72839}C:\\program files\\emule\\emule.exe"= UDP:C:\program files\emule\emule.exe:eMule
"UDP Query User{F46F55E0-D9F3-446B-A208-89E6293C29E0}C:\\program files\\emule\\emule.exe"= TCP:C:\program files\emule\emule.exe:eMule
"TCP Query User{1E345B43-10B9-4043-86F7-7DCBB9ED6F34}C:\\program files\\adsltv\\adsltv.exe"= UDP:C:\program files\adsltv\adsltv.exe:adsltv
"UDP Query User{6B355C84-F8BA-4A8A-B575-1DE30F6E3B43}C:\\program files\\adsltv\\adsltv.exe"= TCP:C:\program files\adsltv\adsltv.exe:adsltv
"TCP Query User{7A316542-BDC1-43AD-B367-E9252FEFAC36}C:\\program files\\veoh networks\\veoh\\veohclient.exe"= UDP:C:\program files\veoh networks\veoh\veohclient.exe:Veoh Client
"UDP Query User{3A5B0BA9-04DE-4859-BCF6-ACF4FF055D98}C:\\program files\\veoh networks\\veoh\\veohclient.exe"= TCP:C:\program files\veoh networks\veoh\veohclient.exe:Veoh Client
"TCP Query User{63453238-C0A8-4709-BBA3-79CA252B7A7F}C:\\programdata\\kaspersky lab setup files\\kaspersky internet security 7.0.1.325\\french\\setup.exe"= UDP:C:\programdata\kaspersky lab setup files\kaspersky internet security 7.0.1.325\french\setup.exe:Programme d'installation de Kaspersky Internet Security 7.0
"UDP Query User{4C47A85F-11BF-4034-A997-BB98C13A5C7E}C:\\programdata\\kaspersky lab setup files\\kaspersky internet security 7.0.1.325\\french\\setup.exe"= TCP:C:\programdata\kaspersky lab setup files\kaspersky internet security 7.0.1.325\french\setup.exe:Programme d'installation de Kaspersky Internet Security 7.0
"{E3EA4E38-DDD6-46BC-B768-033271560D1F}"= UDP:C:\Program Files\uTorrent\uTorrent.exe:µTorrent (TCP-In)
"{986D6C4E-B259-47AF-9E36-DCEF2F34924C}"= TCP:C:\Program Files\uTorrent\uTorrent.exe:µTorrent (UDP-In)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"EnableFirewall"= 0 (0x0)

R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\system32\DRIVERS\klim6.sys [2007-10-16 11:05]
R2 EPGService;EPGService;C:\PROGRA~1\WinTV\EPG Services\System\EPGService.exe [2006-07-19 12:00]
R3 ha20x2k;Creative 20X HAL Driver;C:\Windows\system32\drivers\ha20x2k.sys [2007-05-11 11:28]
R3 HCW99BDA;Hauppauge Nova-DT Dual DVB-T Tuner;C:\Windows\system32\Drivers\hcw99bda.sys [2007-03-23 10:51]
R3 hcw99rc;Hauppauge Nova-DT IR Driver;C:\Windows\system32\Drivers\hcw99rc.sys [2007-03-23 10:51]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\system32\DRIVERS\yk60x86.sys [2007-12-06 10:51]
S3 HauppaugeTVServer;HauppaugeTVServer;C:\PROGRA~1\WinTV\HCWTVS~1.EXE [2007-11-07 10:28]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a6b66395-e2da-11dc-baa4-001a924b08b6}]
\shell\AutoRun\command - .\Encryption Tool\MaxtorEncryption.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{bcf25062-58bc-11dc-953d-001a924b08b6}]
\shell\AutoRun\command - I:\LaunchU3.exe -a

*Newly Created Service* - CATCHME
*Newly Created Service* - PROCEXP90

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7070D8E0-650A-46b3-B03C-9497582E6A74}]
%SystemRoot%\system32\soundschemes.exe /AddRegistration
.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
.
- - - - ORPHANS REMOVED - - - -

HKLM-Run-LogitechVideoRepair - C:\Program Files\Logitech\Video\ISStart.exe
MSConfigStartUp-I downloaded pirated Software from P2P - C:\Windows\system32\Command & Conquer 3 Tiberium Wars.exe


.
------- Supplementary Scan -------
.
FireFox -: Profile - C:\Users\belette master\AppData\Roaming\Mozilla\Firefox\Profiles\lxdt3wwi.default\
FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FireFox -: prefs.js - STARTUP.HOMEPAGE - www.google.fr


**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-12 03:20:41
Windows 6.0.6001 Service Pack 1 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
CTHelper = CTHELPER.EXE?
CTxfiHlp = CTXFIHLP.EXE?

Balayage des fichiers cachés ...


**************************************************************************
.
Temps d'accomplissement: 2008-08-12 3:22:47
ComboFix-quarantined-files.txt 2008-08-12 01:21:44

Pre-Run: 76,816,957,440 octets libres
Post-Run: 80,104,194,048 octets libres

232 --- E O F --- 2008-08-08 17:51:48
0
Utilisateur anonyme
12 août 2008 à 03:35
depuis quand as tu ce probleme ??
0
belettemaster
12 août 2008 à 03:42
Le problème d'icône ?! environ 2 mois je dirai ou un peu moins ... Le pc a suivi e nterme de rapidité d'exécution de tâches ! pas pour le démarrage mais après , ouvrir une image ... des choses dans ce genre !

Voit tu quelques choses de particulier ?
N'hésite pas à me demander plus de détail , je répondrai du mieux que je peux !
0
belettemaster
12 août 2008 à 03:44
Les icônes qui disparaissent sont assez aléatoire ... Ce ne sont pas tout le temps les mêmes !
0
Utilisateur anonyme
12 août 2008 à 03:48
JE dis ça car j ai des doutes sur : WinTV es tu d accord que dans la prochaine manip nous le supprimons ??
0
belettemaster
12 août 2008 à 03:53
Ecoute , en soi ... ça me pose pas vraiment de souçi à court et moyen terme, j'ai installé une carte tnt et j'avais install Wintv avec , mais en ce moment je n'est plus accès à la TNT donc je m'en sert pas ! Donc carte blanche, je prendrai un autre logiciel moins douteux pour gérer ma carte TNT à l'avenir ^^

GO !
0
belettemaster
12 août 2008 à 03:57
Au fait , je t'avais laissé 2 rapports combofix , le 2 ème étant sur un fichier .exe que je trouvais très douteux et qui se trouvait à la racine du C ... l' as tu vu ? est t'il sans danger ?
0
belettemaster
12 août 2008 à 03:58
Euh n'importe quoi , pas avec combofix mais analyser avec le site virustotal !!!!
0
Utilisateur anonyme
12 août 2008 à 04:10
Copie le texte ci-dessous :

File::
C:\Program Files\7za.exe
C:\PROGRA~1\WinTV\EPG Services\System\EPGClient.exe

Folder::
C:\PROGRA~1\WinTV
C:\Program Files\WinTV

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EPGServiceTool"=-
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a6b66395-e2da-11dc-baa4-001a924b08b6}]

Driver::
HauppaugeTVServer

DirLook::
C:\Program Files\Enigma Software Group




Ouvre le Bloc-Notes puis colle le texte copié.
(Démarrer\Tous les programmes\Accessoires\Bloc notes.)
Sauvegarde ce fichier sous le nom de CFScript.txt

Glisse maintenant le fichier CFScript.txt dans Combofix.exe comme ci-dessous :

http://sd-1.archive-host.com/membres/up/1366464061/CFScript.gif

Cela va relancer Combofix,

Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort) , tape 1 puis valide.

Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal!

Ne touche à rien tant que le scan n'est pas terminé.

Après redémarrage, poste le contenu du rapport Combofix.txt accompagné d'un rapport Hijackthis.

S'il n'y a pas de rédémarrage, poste quand même les rapports.


0
belettemaster
12 août 2008 à 04:12
faut il que je recoupe ma connection puis l'anti vir ?
0
Utilisateur anonyme
12 août 2008 à 04:15
yes stp
0
belettemaster
12 août 2008 à 04:18
Petite info trop bizarre !!! je crée un nouveau doc texte , au moment de le renomer je ne le voit pas sur le bureau ... il reste simplement écrit document texte (2). Par contre , quand je vais dans ordinateur , ma session puis bureau ... la je voit bien le fichier texte renomé !!!
0
Utilisateur anonyme
12 août 2008 à 04:21
y a un fantome dans le pc ...... T es envouté lol
0
belettemaster
12 août 2008 à 04:45
voila le rapport combofix : ( si c'était un fantome au moins je serai qui appellé " ghostbuster " ^^ )

ComboFix 08-08-10.06 - belette master 2008-08-12 4:22:44.2 - NTFSx86
Microsoft® Windows Vista™ Édition Intégrale 6.0.6001.1.1252.1.1036.18.978 [GMT 2:00]
Endroit: C:\Users\belette master\Desktop\ComboFix.exe
Command switches used :: C:\Users\belette master\Desktop\CFScript.txt
* Création d'un nouveau point de restauration

FILE ::
C:\PROGRA~1\WinTV\EPG Services\System\EPGClient.exe
C:\Program Files\7za.exe
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\PROGRA~1\WinTV
C:\PROGRA~1\WinTV\Application.tip
C:\PROGRA~1\WinTV\BGRecorder.exe
C:\PROGRA~1\WinTV\DVB_Radio.jpg
C:\PROGRA~1\WinTV\EPG Services\System\EPGClient.exe
C:\PROGRA~1\WinTV\EPG Services\System\EPGService.exe
C:\PROGRA~1\WinTV\EPG Services\System\FileEncrypt.exe
C:\PROGRA~1\WinTV\EPG Services\WebServer\Cache\epg_cache.xml
C:\PROGRA~1\WinTV\EPG Services\WebServer\Cache\epg_cache.xsl
C:\PROGRA~1\WinTV\EPG Services\WebServer\es_add_to_schedule.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\es_home.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\es_program_info.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\es_refresh.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\es_scheduled_tasks.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\buttonleft.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\buttonright.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\clock.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\delete.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\HCW_logos.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\HCW_logos_orig.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\HCW_logos_wc2006.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\Record.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\index.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\scripts\functions.js
C:\PROGRA~1\WinTV\EPG Services\WebServer\scripts\handler.js
C:\PROGRA~1\WinTV\EPG Services\WebServer\scripts\pi_handler.js
C:\PROGRA~1\WinTV\EPG Services\WebServer\scripts\popmenus.js
C:\PROGRA~1\WinTV\EPG Services\WebServer\styles\es_home.css
C:\PROGRA~1\WinTV\EPG Services\WebServer\styles\es_scheduled_tasks.css
C:\PROGRA~1\WinTV\EPG Services\WebServer\styles\index.css
C:\PROGRA~1\WinTV\EPG Services\WebServer\styles\popmenu.css
C:\PROGRA~1\WinTV\exec.exe
C:\PROGRA~1\WinTV\FM_Radio.jpg
C:\PROGRA~1\WinTV\hcw.exe
C:\PROGRA~1\WinTV\HCWCaptureBase.exe
C:\PROGRA~1\WinTV\hcwChanDB_5.mdb
C:\PROGRA~1\WinTV\HCWPlugin23xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin2402x.exe
C:\PROGRA~1\WinTV\HCWPlugin29xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin47xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin652xx.exe
C:\PROGRA~1\WinTV\HCWPlugin70xxc.exe
C:\PROGRA~1\WinTV\HCWPlugin74xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin76xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin93xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin95001.exe
C:\PROGRA~1\WinTV\HCWPlugin96xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin99xxx.exe
C:\PROGRA~1\WinTV\HCWTVServer.exe
C:\PROGRA~1\WinTV\HCWTVServerPS.dll
C:\PROGRA~1\WinTV\Ir.exe
C:\PROGRA~1\WinTV\ir32.LOG
C:\PROGRA~1\WinTV\irremote.DLL
C:\PROGRA~1\WinTV\loaddll.exe
C:\PROGRA~1\WinTV\NoSignal.jpg
C:\PROGRA~1\WinTV\pnpscan.exe
C:\PROGRA~1\WinTV\Primary.exe
C:\PROGRA~1\WinTV\Psapi.dll
C:\PROGRA~1\WinTV\satellites.xml
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\gui.xml
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\HcwSyncIt.exe
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\HcwSyncItStrings.dat
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\strings.dat
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\TvTvRegistration.exe
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\uniTvTv.exe
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\uniTvTv.log
C:\PROGRA~1\WinTV\Scheduler\log.txt
C:\PROGRA~1\WinTV\Scheduler\log_off.reg
C:\PROGRA~1\WinTV\Scheduler\log_on.reg
C:\PROGRA~1\WinTV\Scheduler\Mdcustoms.ocx
C:\PROGRA~1\WinTV\Scheduler\MVPModuleDictionary.xml
C:\PROGRA~1\WinTV\Scheduler\pvrfile_applet.dat
C:\PROGRA~1\WinTV\Scheduler\pvrfile_applet.exe
C:\PROGRA~1\WinTV\Scheduler\pvrfile_applet.exe.manifest
C:\PROGRA~1\WinTV\Scheduler\QSupported.reg
C:\PROGRA~1\WinTV\Scheduler\scheduler.dat
C:\PROGRA~1\WinTV\Scheduler\scheduler.exe
C:\PROGRA~1\WinTV\Scheduler\scheduler.xml
C:\PROGRA~1\WinTV\Scheduler\StayAwake.exe
C:\PROGRA~1\WinTV\Scheduler\Titan1.ico
C:\PROGRA~1\WinTV\Scheduler\uniSCHED.exe
C:\PROGRA~1\WinTV\Scheduler\uniSCHED.log
C:\PROGRA~1\WinTV\skin\[u]0/u0\gripper_tristate_slider.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_play_status.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_slip_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_slip_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_slip_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_vcr_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_vcr_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_vcr_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottoml.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_depressed.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottomm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottomr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_leftb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_leftm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_leftt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_rightb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_rightm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_rightt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_topl.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_topm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_topr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_alwaysontop.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_alwaysontop_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_alwaysontop_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_att.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_att_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_att_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chandown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chandown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chanlast.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chanlast_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chansurf.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chansurf_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chanup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chanup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_close.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_close_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_closecaption.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_closecaption_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_closecaption_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_freeze.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_freeze_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_fullscreen.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_fullscreen_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_menu.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_menu_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_minimize.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_minimize_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_notitle.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_notitle_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_preference.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_preference_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_radio.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_radio_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapgripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapimgdown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapimgdown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapimgup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapimgup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapshot.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapshot_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapshotconfig.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapshotconfig_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapshotsample.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_source.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_source_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_teletext.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_teletext_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_volumegripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_volumegripper_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\vssver.scc
C:\PROGRA~1\WinTV\skin\[u]0/u1\gripper_tristate_slider.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_play_status.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_slip_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_slip_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_slip_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_vcr_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_vcr_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_vcr_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottoml.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_depressed.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottomm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottomr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_leftb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_leftm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_leftt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_rightb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_rightm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_rightt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_topl.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_topm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_topr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_alwaysontop.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_alwaysontop_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_alwaysontop_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_att.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_att_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_att_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chandown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chandown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chanlast.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chanlast_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chansurf.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chansurf_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chanup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chanup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_close.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_close_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_closecaption.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_closecaption_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_closecaption_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_freeze.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_freeze_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_fullscreen.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_fullscreen_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_menu.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_menu_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_minimize.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_minimize_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_notitle.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_notitle_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_preference.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_preference_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_radio.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_radio_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapgripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapimgdown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapimgdown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapimgup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapimgup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapshot.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapshot_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapshotconfig.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapshotconfig_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapshotsample.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_source.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_source_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_teletext.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_teletext_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_volumegripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_volumegripper_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\vssver.scc
C:\PROGRA~1\WinTV\skin\[u]0/u2\gripper_tristate_slider.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_play_status.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_slip_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_slip_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_slip_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_vcr_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_vcr_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_vcr_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottoml.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_depressed.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottomm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottomr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_leftb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_leftm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_leftt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_rightb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_rightm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_rightt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_topl.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_topm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_topr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_alwaysontop.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_alwaysontop_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_alwaysontop_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_att.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_att_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_att_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chandown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chandown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chanlast.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chanlast_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chansurf.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chansurf_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chanup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chanup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_close.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_close_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_closecaption.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_closecaption_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_closecaption_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_freeze.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_freeze_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_fullscreen.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_fullscreen_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_menu.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_menu_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_minimize.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_minimize_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_notitle.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_notitle_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_preference.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_preference_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_radio.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_radio_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapgripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapimgdown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapimgdown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapimgup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapimgup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapshot.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapshot_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapshotconfig.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapshotconfig_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapshotsample.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_source.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_source_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_teletext.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_teletext_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_volumegripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_volumegripper_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\vssver.scc
C:\PROGRA~1\WinTV\skin\tp_play_status.bmp
C:\PROGRA~1\WinTV\UNHLPfra.EXE
C:\PROGRA~1\WinTV\UNir32.EXE
C:\PROGRA~1\WinTV\uniTvSrv.exe
C:\PROGRA~1\WinTV\UniTVSrv.LOG
C:\PROGRA~1\WinTV\UNTV6.EXE
C:\PROGRA~1\WinTV\UNWISE.INI
C:\PROGRA~1\WinTV\WinTV.exe
C:\PROGRA~1\WinTV\WinTV2K.chm
C:\PROGRA~1\WinTV\WinTV2K.fra
C:\PROGRA~1\WinTV\WinTV6.fra
C:\PROGRA~1\WinTV\WINTV6.LOG
C:\PROGRA~1\WinTV\WinTvSkin2007.ini
C:\PROGRA~1\WinTV\WTV2Kfra.LOG
C:\Program Files\7za.exe
C:\Program Files\WinTV\Application.tip
C:\Program Files\WinTV\BGRecorder.exe
C:\Program Files\WinTV\DVB_Radio.jpg
C:\Program Files\WinTV\EPG Services\System\EPGClient.exe
C:\Program Files\WinTV\EPG Services\System\EPGService.exe
C:\Program Files\WinTV\EPG Services\System\FileEncrypt.exe
C:\Program Files\WinTV\EPG Services\WebServer\Cache\epg_cache.xml
C:\Program Files\WinTV\EPG Services\WebServer\Cache\epg_cache.xsl
C:\Program Files\WinTV\EPG Services\WebServer\es_add_to_schedule.htm
C:\Program Files\WinTV\EPG Services\WebServer\es_home.htm
C:\Program Files\WinTV\EPG Services\WebServer\es_program_info.htm
C:\Program Files\WinTV\EPG Services\WebServer\es_refresh.htm
C:\Program Files\WinTV\EPG Services\WebServer\es_scheduled_tasks.htm
C:\Program Files\WinTV\EPG Services\WebServer\images\buttonleft.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\buttonright.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\clock.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\delete.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\HCW_logos.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\HCW_logos_orig.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\HCW_logos_wc2006.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\Record.gif
C:\Program Files\WinTV\EPG Services\WebServer\index.htm
C:\Program Files\WinTV\EPG Services\WebServer\scripts\functions.js
C:\Program Files\WinTV\EPG Services\WebServer\scripts\handler.js
C:\Program Files\WinTV\EPG Services\WebServer\scripts\pi_handler.js
C:\Program Files\WinTV\EPG Services\WebServer\scripts\popmenus.js
C:\Program Files\WinTV\EPG Services\WebServer\styles\es_home.css
C:\Program Files\WinTV\EPG Services\WebServer\styles\es_scheduled_tasks.css
C:\Program Files\WinTV\EPG Services\WebServer\styles\index.css
C:\Program Files\WinTV\EPG Services\WebServer\styles\popmenu.css
C:\Program Files\WinTV\exec.exe
C:\Program Files\WinTV\FM_Radio.jpg
C:\Program Files\WinTV\hcw.exe
C:\Program Files\WinTV\HCWCaptureBase.exe
C:\Program Files\WinTV\hcwChanDB_5.mdb
C:\Program Files\WinTV\HCWPlugin23xxx.exe
C:\Program Files\WinTV\HCWPlugin2402x.exe
C:\Program Files\WinTV\HCWPlugin29xxx.exe
C:\Program Files\WinTV\HCWPlugin47xxx.exe
C:\Program Files\WinTV\HCWPlugin652xx.exe
C:\Program Files\WinTV\HCWPlugin70xxc.exe
C:\Program Files\WinTV\HCWPlugin74xxx.exe
C:\Program Files\WinTV\HCWPlugin76xxx.exe
C:\Program Files\WinTV\HCWPlugin93xxx.exe
C:\Program Files\WinTV\HCWPlugin95001.exe
C:\Program Files\WinTV\HCWPlugin96xxx.exe
C:\Program Files\WinTV\HCWPlugin99xxx.exe
C:\Program Files\WinTV\HCWTVServer.exe
C:\Program Files\WinTV\HCWTVServerPS.dll
C:\Program Files\WinTV\Ir.exe
C:\Program Files\WinTV\ir32.LOG
C:\Program Files\WinTV\irremote.DLL
C:\Program Files\WinTV\loaddll.exe
C:\Program Files\WinTV\NoSignal.jpg
C:\Program Files\WinTV\pnpscan.exe
C:\Program Files\WinTV\Primary.exe
C:\Program Files\WinTV\Psapi.dll
C:\Program Files\WinTV\satellites.xml
C:\Program Files\WinTV\Scheduler\EPG\TvTv\gui.xml
C:\Program Files\WinTV\Scheduler\EPG\TvTv\HcwSyncIt.exe
C:\Program Files\WinTV\Scheduler\EPG\TvTv\HcwSyncItStrings.dat
C:\Program Files\WinTV\Scheduler\EPG\TvTv\strings.dat
C:\Program Files\WinTV\Scheduler\EPG\TvTv\TvTvRegistration.exe
C:\Program Files\WinTV\Scheduler\EPG\TvTv\uniTvTv.exe
C:\Program Files\WinTV\Scheduler\EPG\TvTv\uniTvTv.log
C:\Program Files\WinTV\Scheduler\log.txt
C:\Program Files\WinTV\Scheduler\log_off.reg
C:\Program Files\WinTV\Scheduler\log_on.reg
C:\Program Files\WinTV\Scheduler\Mdcustoms.ocx
C:\Program Files\WinTV\Scheduler\MVPModuleDictionary.xml
C:\Program Files\WinTV\Scheduler\pvrfile_applet.dat
C:\Program Files\WinTV\Scheduler\pvrfile_applet.exe
C:\Program Files\WinTV\Scheduler\pvrfile_applet.exe.manifest
C:\Program Files\WinTV\Scheduler\QSupported.reg
C:\Program Files\WinTV\Scheduler\scheduler.dat
C:\Program Files\WinTV\Scheduler\scheduler.exe
C:\Program Files\WinTV\Scheduler\scheduler.xml
C:\Program Files\WinTV\Scheduler\StayAwake.exe
C:\Program Files\WinTV\Scheduler\Titan1.ico
C:\Program Files\WinTV\Scheduler\uniSCHED.exe
C:\Program Files\WinTV\Scheduler\uniSCHED.log
C:\Program Files\WinTV\skin\[u]0/u0\gripper_tristate_slider.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_play_status.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_slip_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_slip_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_slip_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_vcr_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_vcr_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_vcr_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottoml.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_depressed.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottomm.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottomr.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_leftb.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_leftm.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_leftt.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_rightb.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_rightm.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_rightt.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_topl.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_topm.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_topr.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_alwaysontop.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_alwaysontop_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_alwaysontop_on.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_att.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_att_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_att_light.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chandown.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chandown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chanlast.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chanlast_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chansurf.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chansurf_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chanup.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chanup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_close.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_close_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_closecaption.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_closecaption_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_closecaption_on.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_freeze.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_freeze_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_fullscreen.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_fullscreen_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_menu.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_menu_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_minimize.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_minimize_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_notitle.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_notitle_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_preference.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_preference_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_radio.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_radio_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapgripper.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapimgdown.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapimgdown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapimgup.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapimgup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapshot.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapshot_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapshotconfig.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapshotconfig_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapshotsample.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_source.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_source_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_teletext.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_teletext_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_volumegripper.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_volumegripper_light.bmp
C:\Program Files\WinTV\skin\[u]0/u0\vssver.scc
C:\Program Files\WinTV\skin\[u]0/u1\gripper_tristate_slider.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_play_status.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_slip_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_slip_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_slip_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_vcr_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_vcr_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_vcr_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottoml.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_depressed.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottomm.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottomr.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_leftb.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_leftm.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_leftt.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_rightb.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_rightm.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_rightt.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_topl.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_topm.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_topr.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_alwaysontop.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_alwaysontop_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_alwaysontop_on.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_att.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_att_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_att_light.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chandown.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chandown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chanlast.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chanlast_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chansurf.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chansurf_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chanup.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chanup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_close.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_close_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_closecaption.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_closecaption_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_closecaption_on.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_freeze.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_freeze_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_fullscreen.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_fullscreen_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_menu.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_menu_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_minimize.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_minimize_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_notitle.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_notitle_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_preference.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_preference_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_radio.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_radio_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapgripper.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapimgdown.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapimgdown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapimgup.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapimgup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapshot.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapshot_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapshotconfig.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapshotconfig_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapshotsample.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_source.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_source_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_teletext.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_teletext_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_volumegripper.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_volumegripper_light.bmp
C:\Program Files\WinTV\skin\[u]0/u1\vssver.scc
C:\Program Files\WinTV\skin\[u]0/u2\gripper_tristate_slider.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_play_status.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_slip_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_slip_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_slip_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_vcr_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_vcr_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_vcr_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottoml.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_depressed.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottomm.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottomr.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_leftb.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_leftm.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_leftt.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_rightb.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_rightm.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_rightt.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_topl.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_topm.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_topr.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_alwaysontop.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_alwaysontop_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_alwaysontop_on.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_att.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_att_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_att_light.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chandown.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chandown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chanlast.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chanlast_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chansurf.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chansurf_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chanup.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chanup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_close.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_close_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_closecaption.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_closecaption_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_closecaption_on.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_freeze.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_freeze_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_fullscreen.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_fullscreen_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_menu.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_menu_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_minimize.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_minimize_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_notitle.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_notitle_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_preference.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_preference_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_radio.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_radio_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapgripper.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapimgdown.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapimgdown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapimgup.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapimgup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapshot.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapshot_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapshotconfig.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapshotconfig_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapshotsample.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_source.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_source_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_teletext.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_teletext_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_volumegripper.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_volumegripper_light.bmp
C:\Program Files\WinTV\skin\[u]0/u2\vssver.scc
C:\Program Files\WinTV\skin\tp_play_status.bmp
C:\Program Files\WinTV\UNHLPfra.EXE
C:\Program Files\WinTV\UNir32.EXE
C:\Program Files\WinTV\uniTvSrv.exe
C:\Program Files\WinTV\UniTVSrv.LOG
C:\Program Files\WinTV\UNTV6.EXE
C:\Program Files\WinTV\UNWISE.INI
C:\Program Files\WinTV\WinTV.exe
C:\Program Files\WinTV\WinTV2K.chm
C:\Program Files\WinTV\WinTV2K.fra
C:\Program Files\WinTV\WinTV6.fra
C:\Program Files\WinTV\WINTV6.LOG
C:\Program Files\WinTV\WinTvSkin2007.ini
C:\Program Files\WinTV\WTV2Kfra.LOG

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_HauppaugeTVServer


((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-07-12 to 2008-08-12 ))))))))))))))))))))))))))))))))))))
.

2008-08-12 01:01 . 2008-08-12 01:01 <REP> d-------- C:\Program Files\Enigma Software Group
2008-07-26 22:33 . 2008-07-27 19:09 <REP> d-------- C:\Users\belette master\AppData\Roaming\uTorrent
2008-07-26 22:33 . 2008-07-26 22:33 <REP> d-------- C:\Program Files\uTorrent
2008-07-25 02:25 . 2008-05-27 06:59 106,605 --a------ C:\Windows\System32\StructuredQuerySchema.bin
2008-07-25 02:25 . 2008-05-27 07:17 34,816 --a------ C:\Windows\System32\msscb.dll
2008-07-25 02:25 . 2008-05-27 06:59 18,904 --a------ C:\Windows\System32\StructuredQuerySchemaTrivial.bin
2008-07-25 02:25 . 2008-05-27 07:17 11,776 --a------ C:\Windows\System32\msshooks.dll
2008-07-18 20:39 . 2008-07-18 20:39 587,264 --a------ C:\Windows\WLXPGSS.SCR
2008-07-18 09:10 . 2008-06-26 03:45 12,240,896 --a------ C:\Windows\System32\NlsLexicons0007.dll
2008-07-18 09:10 . 2008-06-26 03:45 2,644,480 --a------ C:\Windows\System32\NlsLexicons0009.dll
2008-07-18 09:10 . 2008-06-26 05:29 801,280 --a------ C:\Windows\System32\NaturalLanguage6.dll
2008-07-18 09:09 . 2008-04-26 10:25 3,600,952 --a------ C:\Windows\System32\ntkrnlpa.exe
2008-07-18 09:09 . 2008-04-26 10:25 3,549,240 --a------ C:\Windows\System32\ntoskrnl.exe
2008-07-18 09:09 . 2008-04-26 10:26 891,448 --a------ C:\Windows\System32\drivers\tcpip.sys
2008-07-18 09:09 . 2008-04-12 05:32 784,896 --a------ C:\Windows\System32\rpcrt4.dll
2008-07-18 09:09 . 2008-05-10 05:35 564,736 --a------ C:\Windows\System32\emdmgmt.dll
2008-07-18 09:09 . 2008-04-05 03:21 72,192 --a------ C:\Windows\System32\drivers\pacer.sys
2008-07-18 09:09 . 2008-04-05 05:34 15,360 --a------ C:\Windows\System32\pacerprf.dll
2008-07-18 09:08 . 2008-05-08 23:59 430,080 --a------ C:\Windows\System32\vbscript.dll
2008-07-18 09:08 . 2008-05-08 23:59 180,224 --a------ C:\Windows\System32\scrobj.dll
2008-07-18 09:08 . 2008-05-08 23:59 172,032 --a------ C:\Windows\System32\scrrun.dll
2008-07-18 09:08 . 2008-05-08 23:59 155,648 --a------ C:\Windows\System32\wscript.exe
2008-07-18 09:08 . 2008-05-08 23:58 135,168 --a------ C:\Windows\System32\wshom.ocx
2008-07-18 09:08 . 2008-05-08 23:58 135,168 --a------ C:\Windows\System32\cscript.exe
2008-07-18 09:08 . 2008-05-08 23:59 90,112 --a------ C:\Windows\System32\wshext.dll

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-08-12 02:29 197,340,448 --sha-w C:\Windows\system32\drivers\fidbox.dat
2008-08-12 02:29 --------- d-----w C:\Users\belette master\AppData\Roaming\DMCache
2008-08-12 02:27 2,645,612 --sha-w C:\Windows\system32\drivers\fidbox.idx
2008-08-12 01:24 --------- d-----w C:\ProgramData\Kaspersky Lab
2008-08-11 23:00 --------- d-----w C:\Users\belette master\AppData\Roaming\IDM
2008-08-11 22:57 --------- d-----w C:\Program Files\Internet Download Manager
2008-08-07 14:55 96,976 ----a-w C:\Windows\system32\drivers\klin.dat
2008-07-24 23:56 87,855 ----a-w C:\Windows\system32\drivers\klick.dat
2008-07-24 10:44 --------- d-----w C:\Users\belette master\AppData\Roaming\dvdcss
2008-07-18 07:40 --------- d-----w C:\Program Files\Windows Mail
2008-07-02 18:22 --------- d-----w C:\Users\belette master\AppData\Roaming\AVS4YOU
2008-07-02 18:22 --------- d-----w C:\ProgramData\AVS4YOU
2008-07-02 18:16 --------- d-----w C:\Program Files\Common Files\AVSMedia
2008-07-02 18:16 --------- d-----w C:\Program Files\AVS4YOU
2008-06-26 22:09 --------- d-----w C:\Program Files\Evolution Tools
2008-06-26 20:14 --------- d-----w C:\Program Files\vtplus
2008-06-26 19:52 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-06-26 19:52 --------- d-----w C:\Program Files\Common Files\IviSDK
2008-05-29 18:34 832,292 ----a-w C:\Windows\Commando1703.zip
2008-03-20 18:37 174 --sha-w C:\Program Files\desktop.ini
2006-05-28 15:46 397,306 ----a-w C:\Program Files\wunauclt.zip
2006-05-28 15:46 397,306 ----a-w C:\Program Files\wunauclt.tbe
2008-01-03 18:51 16,384 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
2008-01-03 18:51 32,768 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
2008-01-03 18:51 16,384 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
.

(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.

---- Directory of C:\Program Files\Enigma Software Group ----

2008-08-12 01:35 32256 --a------ C:\Program Files\Enigma Software Group\SpyHunter\spyhunter.log
2008-08-12 01:35 135792 --a------ C:\Program Files\Enigma Software Group\SpyHunter\AXList.txt
2008-08-12 01:19 14265 --a------ C:\Program Files\Enigma Software Group\SpyHunter\scan.log
2008-08-12 01:02 604211 --a------ C:\Program Files\Enigma Software Group\SpyHunter\support.log
2008-08-12 01:01 434283 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Uninstall.exe
2008-08-12 01:01 3121 --a------ C:\Program Files\Enigma Software Group\SpyHunter\INSTALL.LOG
2008-08-12 01:01 1094 --a------ C:\Program Files\Enigma Software Group\SpyHunter\install.sss
2008-08-10 21:29 1129184 --a------ C:\Program Files\Enigma Software Group\SpyHunter\def.dat
2008-06-20 15:59 643072 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Common.dll
2008-06-20 10:52 190352 --a------ C:\Program Files\Enigma Software Group\SpyHunter\whitelist.dat
2008-06-19 16:48 851968 --a------ C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter3.exe
2008-06-19 16:08 479232 --a------ C:\Program Files\Enigma Software Group\SpyHunter\NetworkSentry.dll
2008-06-16 14:46 9596928 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Language.dll
2008-06-16 14:23 884736 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Scanner.dll
2008-06-12 12:48 724992 --a------ C:\Program Files\Enigma Software Group\SpyHunter\ProcessGuard.dll
2008-06-12 12:48 716800 --a------ C:\Program Files\Enigma Software Group\SpyHunter\RegistryGuard.dll
2008-06-11 16:51 454656 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Updater.dll
2008-06-11 16:51 385024 --a------ C:\Program Files\Enigma Software Group\SpyHunter\EnigmaUpdater.dll
2008-06-11 13:31 290816 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Scheduler.dll
2008-06-06 11:38 315392 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Options.dll
2008-06-04 11:37 1157659 --a------ C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter3.chm
2008-05-27 14:30 225280 --a------ C:\Program Files\Enigma Software Group\SpyHunter\SpyHunterMonitor.dll
2008-05-27 14:22 679936 --a------ C:\Program Files\Enigma Software Group\SpyHunter\HelpDesk.dll
2008-05-27 14:20 405504 --a------ C:\Program Files\Enigma Software Group\SpyHunter\ActiveXKill.dll
2008-05-27 14:20 204800 --a------ C:\Program Files\Enigma Software Group\SpyHunter\ActiveKill.dll
2008-05-27 14:16 405504 --a------ C:\Program Files\Enigma Software Group\SpyHunter\HFMonitor.dll
2008-05-27 14:13 421888 --a------ C:\Program Files\Enigma Software Group\SpyHunter\WSAMonitor.dll
2008-05-14 15:15 614400 --a------ C:\Program Files\Enigma Software Group\SpyHunter\br.exe
2008-05-07 16:22 8572993 --a------ C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter3.skn
2007-08-28 17:00 17631 --a------ C:\Program Files\Enigma Software Group\SpyHunter\SHDS.mht


((((((((((((((((((((((((((((( snapshot@2008-08-12_ 3.21.28.49 )))))))))))))))))))))))))))))))))))))))))
.
+ 2005-10-20 18:02:28 163,328 ----a-w C:\Windows\erdnt\subs\ERDNT.EXE
- 2008-08-11 23:34:59 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2008-08-12 02:28:45 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2008-08-11 23:34:59 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2008-08-12 02:28:45 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2008-08-11 23:37:08 262,144 --sha-w C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT
+ 2008-08-12 02:29:15 262,144 --sha-w C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT
+ 2008-08-12 02:29:15 262,144 ---ha-w C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG1
- 2008-08-12 01:20:35 262,144 --sha-w C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT
+ 2008-08-12 02:29:59 262,144 --sha-w C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT
- 2008-08-11 23:37:12 12,794 ----a-w C:\Windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1351016166-3985414142-2436382745-1000_UserData.bin
+ 2008-08-12 02:30:48 12,928 ----a-w C:\Windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1351016166-3985414142-2436382745-1000_UserData.bin
- 2008-08-11 23:37:10 69,322 ----a-w C:\Windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2008-08-12 02:30:48 69,392 ----a-w C:\Windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-01-19 00:33 1233920]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2008-01-19 00:33 125952]
"IDMan"="C:\Program Files\Internet Download Manager\IDMan.exe" [2008-07-29 16:18 2610608]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 12:34 5724184]
"Veoh"="C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" [2008-04-01 18:35 3587120]
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 00:33 202240]
"WindowsWelcomeCenter"="oobefldr.dll" [2008-01-19 00:36 2153472 C:\Windows\System32\oobefldr.dll]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 15:40 155648]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25 144784]
"RivaTuner"="C:\Program Files\RivaTuner v2.05\RivaTuner.exe" [2007-09-27 19:20 2633728]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]
"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [2008-05-03 05:46 13535776]
"NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [2008-05-03 05:46 92704]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [2008-02-08 18:36 227856]
"CTXFIREG"="CTxfiReg.exe" [2007-05-10 16:48 43520 C:\Windows\System32\CTXFIREG.EXE]
"CTHelper"="CTHELPER.EXE" [2007-05-10 16:51 19456 C:\Windows\System32\CTHELPER.EXE]
"CTxfiHlp"="CTXFIHLP.EXE" [2007-05-10 16:52 19968 C:\Windows\System32\CTXFIHLP.EXE]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DevconDefaultDB"="C:\Windows\system32\READREG" [X]
"CtxfiReg"="CTXFIREG.exe" [2007-05-10 16:48 43520 C:\Windows\System32\CTXFIREG.EXE]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SetDefaultMIDI"="MIDIDEF.EXE" [2007-05-10 16:36 28672 C:\Windows\System32\MIDIDEF.EXE]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\PROGRA~1\KASPER~1\KASPER~2.0\r3hook.dll,C:\PROGRA~1\KASPER~1\KASPER~2.0\adialhk.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders schannel.dll, credssp.dll

[HKLM\~\startupfolder\C:^Users^belette master^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Xfire.lnk]
path=C:\Users\belette master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Xfire.lnk
backup=C:\Windows\pss\Xfire.lnk.Startup
backupExtension=.Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2008-01-11 22:16 39792 C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeUpdater]
-ra------ 2007-03-01 10:37 2321600 C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2007-11-15 14:11 267048 C:\Program Files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
--a------ 2007-10-18 12:34 5724184 C:\Program Files\Windows Live\Messenger\msnmsgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2007-11-15 00:43 286720 C:\Program Files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile-based device management]
--a------ 2007-01-24 12:21 563080 C:\Windows\WindowsMobile\wmdc.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{E21768A9-F0CD-43CC-91CE-38EC3B39137E}"= UDP:C:\Program Files\Sierra\FEAR\FEAR.exe:FEAR
"{AEB38D62-37C5-4D23-8341-233A03D77914}"= TCP:C:\Program Files\Sierra\FEAR\FEAR.exe:FEAR
"{15C8ECE8-136B-4442-99E8-E084DD9EA770}"= UDP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{7FF376C5-04A7-4528-8266-32398BC028A4}"= TCP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{FA7CD5BB-47F7-4A25-818C-FD54F850128A}"= UDP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{CDACDC92-8949-4E85-BAD7-B7D7760EEB1B}"= TCP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{FC6A7ADE-BE1D-47CD-95FA-32D4F804E27E}"= UDP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{721C6653-1BBD-4CC1-A71F-8D16E4F59FA6}"= TCP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{86FC4027-3DD7-45DB-8029-F2DCE731C8E9}"= UDP:26675:169.254.2.0/255.255.255.0:ActiveSync Service
"{91DD3DF9-EB9B-4172-8211-C66B5F4E5D75}"= UDP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{0AA2A321-E618-48BE-A84B-8CBB39921FC9}"= TCP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{6BC1A91B-CFB0-4CFF-B0F9-CCCAFD15CFD3}"= UDP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{D42DE169-AB2F-4E8D-945B-6ACF041D2039}"= TCP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{78BF53AF-0894-4EC8-8B9C-E95CFD6CE79B}"= UDP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{0F67EB58-1B13-4316-8ECB-4FEC5DA3C9D0}"= TCP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{5AD6A129-A769-4B60-9B77-8AEF48053662}"= UDP:26675:169.254.2.0/255.255.255.0:ActiveSync Service
"{40F9C1C5-6BC8-4CB8-AE09-6BBB6C58F49C}"= UDP:C:\Program Files\iTunes\iTunes.exe:iTunes
"{68F10B22-8A48-4710-A814-ECF281466D7B}"= TCP:C:\Program Files\iTunes\iTunes.exe:iTunes
"{A7ECF797-EBB1-4C59-914A-8F3607A57612}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
"{B938B711-B7A7-4EE0-828E-568A8AFE378E}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main.exe:Neverwinter Nights 2 Main
"{56CF6D0E-02CE-4934-A501-1FCA6EABD635}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main.exe:Neverwinter Nights 2 Main
"{A2074204-E7B9-45ED-AF56-885ED4A758F6}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main_amdxp.exe:Neverwinter Nights 2 AMD
"{9AA3E11F-E54A-49CE-BA60-18AE36D143D3}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main_amdxp.exe:Neverwinter Nights 2 AMD
"{A1F6F0BB-3FC2-4E4B-B4A4-7B9AA6255797}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwupdate.exe:Neverwinter Nights 2 Updater
"{0A2CE85C-5827-4058-BFAF-16D849AD6ECB}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwupdate.exe:Neverwinter Nights 2 Updater
"{F87B8E59-514A-4200-9601-21E330DC05D1}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2server.exe:Neverwinter Nights 2 Server
"{539870C4-A02F-47D0-BEBB-A44C9930A891}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2server.exe:Neverwinter Nights 2 Server
"{5DE2BB30-4764-4788-8CF1-A13E06407B1D}"= UDP:7561:emule
"{7F4931B2-DA70-4B80-AC1D-344EA8753336}"= TCP:7562:emule
"TCP Query User{A96A7C52-731B-422F-A88B-01AC7CD72839}C:\\program files\\emule\\emule.exe"= UDP:C:\program files\emule\emule.exe:eMule
"UDP Query User{F46F55E0-D9F3-446B-A208-89E6293C29E0}C:\\program files\\emule\\emule.exe"= TCP:C:\program files\emule\emule.exe:eMule
"TCP Query User{1E345B43-10B9-4043-86F7-7DCBB9ED6F34}C:\\program files\\adsltv\\adsltv.exe"= UDP:C:\program files\adsltv\adsltv.exe:adsltv
"UDP Query User{6B355C84-F8BA-4A8A-B575-1DE30F6E3B43}C:\\pro
0
belettemaster
12 août 2008 à 04:48
voila le rapport combofix : ( ptdrrrr ... si c'était un fantôme , je serai qui appellé " ghostbuster " ^^ )

ComboFix 08-08-10.06 - belette master 2008-08-12 4:22:44.2 - NTFSx86
Microsoft® Windows Vista™ Édition Intégrale 6.0.6001.1.1252.1.1036.18.978 [GMT 2:00]
Endroit: C:\Users\belette master\Desktop\ComboFix.exe
Command switches used :: C:\Users\belette master\Desktop\CFScript.txt
* Création d'un nouveau point de restauration

FILE ::
C:\PROGRA~1\WinTV\EPG Services\System\EPGClient.exe
C:\Program Files\7za.exe
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\PROGRA~1\WinTV
C:\PROGRA~1\WinTV\Application.tip
C:\PROGRA~1\WinTV\BGRecorder.exe
C:\PROGRA~1\WinTV\DVB_Radio.jpg
C:\PROGRA~1\WinTV\EPG Services\System\EPGClient.exe
C:\PROGRA~1\WinTV\EPG Services\System\EPGService.exe
C:\PROGRA~1\WinTV\EPG Services\System\FileEncrypt.exe
C:\PROGRA~1\WinTV\EPG Services\WebServer\Cache\epg_cache.xml
C:\PROGRA~1\WinTV\EPG Services\WebServer\Cache\epg_cache.xsl
C:\PROGRA~1\WinTV\EPG Services\WebServer\es_add_to_schedule.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\es_home.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\es_program_info.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\es_refresh.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\es_scheduled_tasks.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\buttonleft.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\buttonright.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\clock.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\delete.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\HCW_logos.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\HCW_logos_orig.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\HCW_logos_wc2006.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\Record.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\index.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\scripts\functions.js
C:\PROGRA~1\WinTV\EPG Services\WebServer\scripts\handler.js
C:\PROGRA~1\WinTV\EPG Services\WebServer\scripts\pi_handler.js
C:\PROGRA~1\WinTV\EPG Services\WebServer\scripts\popmenus.js
C:\PROGRA~1\WinTV\EPG Services\WebServer\styles\es_home.css
C:\PROGRA~1\WinTV\EPG Services\WebServer\styles\es_scheduled_tasks.css
C:\PROGRA~1\WinTV\EPG Services\WebServer\styles\index.css
C:\PROGRA~1\WinTV\EPG Services\WebServer\styles\popmenu.css
C:\PROGRA~1\WinTV\exec.exe
C:\PROGRA~1\WinTV\FM_Radio.jpg
C:\PROGRA~1\WinTV\hcw.exe
C:\PROGRA~1\WinTV\HCWCaptureBase.exe
C:\PROGRA~1\WinTV\hcwChanDB_5.mdb
C:\PROGRA~1\WinTV\HCWPlugin23xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin2402x.exe
C:\PROGRA~1\WinTV\HCWPlugin29xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin47xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin652xx.exe
C:\PROGRA~1\WinTV\HCWPlugin70xxc.exe
C:\PROGRA~1\WinTV\HCWPlugin74xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin76xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin93xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin95001.exe
C:\PROGRA~1\WinTV\HCWPlugin96xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin99xxx.exe
C:\PROGRA~1\WinTV\HCWTVServer.exe
C:\PROGRA~1\WinTV\HCWTVServerPS.dll
C:\PROGRA~1\WinTV\Ir.exe
C:\PROGRA~1\WinTV\ir32.LOG
C:\PROGRA~1\WinTV\irremote.DLL
C:\PROGRA~1\WinTV\loaddll.exe
C:\PROGRA~1\WinTV\NoSignal.jpg
C:\PROGRA~1\WinTV\pnpscan.exe
C:\PROGRA~1\WinTV\Primary.exe
C:\PROGRA~1\WinTV\Psapi.dll
C:\PROGRA~1\WinTV\satellites.xml
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\gui.xml
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\HcwSyncIt.exe
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\HcwSyncItStrings.dat
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\strings.dat
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\TvTvRegistration.exe
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\uniTvTv.exe
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\uniTvTv.log
C:\PROGRA~1\WinTV\Scheduler\log.txt
C:\PROGRA~1\WinTV\Scheduler\log_off.reg
C:\PROGRA~1\WinTV\Scheduler\log_on.reg
C:\PROGRA~1\WinTV\Scheduler\Mdcustoms.ocx
C:\PROGRA~1\WinTV\Scheduler\MVPModuleDictionary.xml
C:\PROGRA~1\WinTV\Scheduler\pvrfile_applet.dat
C:\PROGRA~1\WinTV\Scheduler\pvrfile_applet.exe
C:\PROGRA~1\WinTV\Scheduler\pvrfile_applet.exe.manifest
C:\PROGRA~1\WinTV\Scheduler\QSupported.reg
C:\PROGRA~1\WinTV\Scheduler\scheduler.dat
C:\PROGRA~1\WinTV\Scheduler\scheduler.exe
C:\PROGRA~1\WinTV\Scheduler\scheduler.xml
C:\PROGRA~1\WinTV\Scheduler\StayAwake.exe
C:\PROGRA~1\WinTV\Scheduler\Titan1.ico
C:\PROGRA~1\WinTV\Scheduler\uniSCHED.exe
C:\PROGRA~1\WinTV\Scheduler\uniSCHED.log
C:\PROGRA~1\WinTV\skin\[u]0/u0\gripper_tristate_slider.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_play_status.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_slip_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_slip_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_slip_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_vcr_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_vcr_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_vcr_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottoml.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_depressed.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottomm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottomr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_leftb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_leftm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_leftt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_rightb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_rightm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_rightt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_topl.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_topm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_topr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_alwaysontop.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_alwaysontop_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_alwaysontop_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_att.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_att_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_att_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chandown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chandown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chanlast.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chanlast_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chansurf.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chansurf_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chanup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chanup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_close.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_close_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_closecaption.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_closecaption_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_closecaption_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_freeze.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_freeze_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_fullscreen.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_fullscreen_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_menu.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_menu_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_minimize.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_minimize_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_notitle.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_notitle_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_preference.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_preference_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_radio.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_radio_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapgripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapimgdown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapimgdown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapimgup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapimgup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapshot.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapshot_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapshotconfig.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapshotconfig_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapshotsample.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_source.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_source_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_teletext.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_teletext_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_volumegripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_volumegripper_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\vssver.scc
C:\PROGRA~1\WinTV\skin\[u]0/u1\gripper_tristate_slider.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_play_status.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_slip_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_slip_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_slip_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_vcr_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_vcr_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_vcr_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottoml.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_depressed.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottomm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottomr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_leftb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_leftm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_leftt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_rightb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_rightm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_rightt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_topl.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_topm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_topr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_alwaysontop.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_alwaysontop_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_alwaysontop_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_att.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_att_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_att_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chandown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chandown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chanlast.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chanlast_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chansurf.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chansurf_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chanup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chanup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_close.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_close_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_closecaption.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_closecaption_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_closecaption_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_freeze.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_freeze_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_fullscreen.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_fullscreen_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_menu.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_menu_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_minimize.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_minimize_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_notitle.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_notitle_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_preference.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_preference_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_radio.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_radio_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapgripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapimgdown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapimgdown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapimgup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapimgup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapshot.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapshot_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapshotconfig.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapshotconfig_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapshotsample.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_source.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_source_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_teletext.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_teletext_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_volumegripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_volumegripper_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\vssver.scc
C:\PROGRA~1\WinTV\skin\[u]0/u2\gripper_tristate_slider.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_play_status.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_slip_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_slip_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_slip_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_vcr_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_vcr_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_vcr_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottoml.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_depressed.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottomm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottomr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_leftb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_leftm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_leftt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_rightb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_rightm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_rightt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_topl.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_topm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_topr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_alwaysontop.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_alwaysontop_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_alwaysontop_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_att.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_att_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_att_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chandown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chandown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chanlast.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chanlast_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chansurf.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chansurf_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chanup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chanup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_close.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_close_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_closecaption.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_closecaption_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_closecaption_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_freeze.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_freeze_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_fullscreen.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_fullscreen_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_menu.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_menu_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_minimize.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_minimize_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_notitle.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_notitle_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_preference.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_preference_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_radio.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_radio_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapgripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapimgdown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapimgdown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapimgup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapimgup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapshot.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapshot_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapshotconfig.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapshotconfig_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapshotsample.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_source.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_source_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_teletext.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_teletext_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_volumegripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_volumegripper_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\vssver.scc
C:\PROGRA~1\WinTV\skin\tp_play_status.bmp
C:\PROGRA~1\WinTV\UNHLPfra.EXE
C:\PROGRA~1\WinTV\UNir32.EXE
C:\PROGRA~1\WinTV\uniTvSrv.exe
C:\PROGRA~1\WinTV\UniTVSrv.LOG
C:\PROGRA~1\WinTV\UNTV6.EXE
C:\PROGRA~1\WinTV\UNWISE.INI
C:\PROGRA~1\WinTV\WinTV.exe
C:\PROGRA~1\WinTV\WinTV2K.chm
C:\PROGRA~1\WinTV\WinTV2K.fra
C:\PROGRA~1\WinTV\WinTV6.fra
C:\PROGRA~1\WinTV\WINTV6.LOG
C:\PROGRA~1\WinTV\WinTvSkin2007.ini
C:\PROGRA~1\WinTV\WTV2Kfra.LOG
C:\Program Files\7za.exe
C:\Program Files\WinTV\Application.tip
C:\Program Files\WinTV\BGRecorder.exe
C:\Program Files\WinTV\DVB_Radio.jpg
C:\Program Files\WinTV\EPG Services\System\EPGClient.exe
C:\Program Files\WinTV\EPG Services\System\EPGService.exe
C:\Program Files\WinTV\EPG Services\System\FileEncrypt.exe
C:\Program Files\WinTV\EPG Services\WebServer\Cache\epg_cache.xml
C:\Program Files\WinTV\EPG Services\WebServer\Cache\epg_cache.xsl
C:\Program Files\WinTV\EPG Services\WebServer\es_add_to_schedule.htm
C:\Program Files\WinTV\EPG Services\WebServer\es_home.htm
C:\Program Files\WinTV\EPG Services\WebServer\es_program_info.htm
C:\Program Files\WinTV\EPG Services\WebServer\es_refresh.htm
C:\Program Files\WinTV\EPG Services\WebServer\es_scheduled_tasks.htm
C:\Program Files\WinTV\EPG Services\WebServer\images\buttonleft.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\buttonright.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\clock.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\delete.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\HCW_logos.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\HCW_logos_orig.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\HCW_logos_wc2006.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\Record.gif
C:\Program Files\WinTV\EPG Services\WebServer\index.htm
C:\Program Files\WinTV\EPG Services\WebServer\scripts\functions.js
C:\Program Files\WinTV\EPG Services\WebServer\scripts\handler.js
C:\Program Files\WinTV\EPG Services\WebServer\scripts\pi_handler.js
C:\Program Files\WinTV\EPG Services\WebServer\scripts\popmenus.js
C:\Program Files\WinTV\EPG Services\WebServer\styles\es_home.css
C:\Program Files\WinTV\EPG Services\WebServer\styles\es_scheduled_tasks.css
C:\Program Files\WinTV\EPG Services\WebServer\styles\index.css
C:\Program Files\WinTV\EPG Services\WebServer\styles\popmenu.css
C:\Program Files\WinTV\exec.exe
C:\Program Files\WinTV\FM_Radio.jpg
C:\Program Files\WinTV\hcw.exe
C:\Program Files\WinTV\HCWCaptureBase.exe
C:\Program Files\WinTV\hcwChanDB_5.mdb
C:\Program Files\WinTV\HCWPlugin23xxx.exe
C:\Program Files\WinTV\HCWPlugin2402x.exe
C:\Program Files\WinTV\HCWPlugin29xxx.exe
C:\Program Files\WinTV\HCWPlugin47xxx.exe
C:\Program Files\WinTV\HCWPlugin652xx.exe
C:\Program Files\WinTV\HCWPlugin70xxc.exe
C:\Program Files\WinTV\HCWPlugin74xxx.exe
C:\Program Files\WinTV\HCWPlugin76xxx.exe
C:\Program Files\WinTV\HCWPlugin93xxx.exe
C:\Program Files\WinTV\HCWPlugin95001.exe
C:\Program Files\WinTV\HCWPlugin96xxx.exe
C:\Program Files\WinTV\HCWPlugin99xxx.exe
C:\Program Files\WinTV\HCWTVServer.exe
C:\Program Files\WinTV\HCWTVServerPS.dll
C:\Program Files\WinTV\Ir.exe
C:\Program Files\WinTV\ir32.LOG
C:\Program Files\WinTV\irremote.DLL
C:\Program Files\WinTV\loaddll.exe
C:\Program Files\WinTV\NoSignal.jpg
C:\Program Files\WinTV\pnpscan.exe
C:\Program Files\WinTV\Primary.exe
C:\Program Files\WinTV\Psapi.dll
C:\Program Files\WinTV\satellites.xml
C:\Program Files\WinTV\Scheduler\EPG\TvTv\gui.xml
C:\Program Files\WinTV\Scheduler\EPG\TvTv\HcwSyncIt.exe
C:\Program Files\WinTV\Scheduler\EPG\TvTv\HcwSyncItStrings.dat
C:\Program Files\WinTV\Scheduler\EPG\TvTv\strings.dat
C:\Program Files\WinTV\Scheduler\EPG\TvTv\TvTvRegistration.exe
C:\Program Files\WinTV\Scheduler\EPG\TvTv\uniTvTv.exe
C:\Program Files\WinTV\Scheduler\EPG\TvTv\uniTvTv.log
C:\Program Files\WinTV\Scheduler\log.txt
C:\Program Files\WinTV\Scheduler\log_off.reg
C:\Program Files\WinTV\Scheduler\log_on.reg
C:\Program Files\WinTV\Scheduler\Mdcustoms.ocx
C:\Program Files\WinTV\Scheduler\MVPModuleDictionary.xml
C:\Program Files\WinTV\Scheduler\pvrfile_applet.dat
C:\Program Files\WinTV\Scheduler\pvrfile_applet.exe
C:\Program Files\WinTV\Scheduler\pvrfile_applet.exe.manifest
C:\Program Files\WinTV\Scheduler\QSupported.reg
C:\Program Files\WinTV\Scheduler\scheduler.dat
C:\Program Files\WinTV\Scheduler\scheduler.exe
C:\Program Files\WinTV\Scheduler\scheduler.xml
C:\Program Files\WinTV\Scheduler\StayAwake.exe
C:\Program Files\WinTV\Scheduler\Titan1.ico
C:\Program Files\WinTV\Scheduler\uniSCHED.exe
C:\Program Files\WinTV\Scheduler\uniSCHED.log
C:\Program Files\WinTV\skin\[u]0/u0\gripper_tristate_slider.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_play_status.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_slip_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_slip_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_slip_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_vcr_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_vcr_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_vcr_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottoml.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_depressed.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottomm.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottomr.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_leftb.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_leftm.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_leftt.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_rightb.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_rightm.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_rightt.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_topl.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_topm.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_topr.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_alwaysontop.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_alwaysontop_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_alwaysontop_on.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_att.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_att_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_att_light.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chandown.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chandown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chanlast.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chanlast_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chansurf.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chansurf_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chanup.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chanup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_close.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_close_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_closecaption.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_closecaption_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_closecaption_on.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_freeze.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_freeze_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_fullscreen.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_fullscreen_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_menu.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_menu_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_minimize.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_minimize_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_notitle.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_notitle_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_preference.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_preference_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_radio.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_radio_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapgripper.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapimgdown.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapimgdown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapimgup.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapimgup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapshot.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapshot_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapshotconfig.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapshotconfig_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapshotsample.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_source.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_source_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_teletext.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_teletext_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_volumegripper.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_volumegripper_light.bmp
C:\Program Files\WinTV\skin\[u]0/u0\vssver.scc
C:\Program Files\WinTV\skin\[u]0/u1\gripper_tristate_slider.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_play_status.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_slip_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_slip_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_slip_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_vcr_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_vcr_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_vcr_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottoml.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_depressed.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottomm.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottomr.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_leftb.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_leftm.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_leftt.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_rightb.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_rightm.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_rightt.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_topl.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_topm.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_topr.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_alwaysontop.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_alwaysontop_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_alwaysontop_on.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_att.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_att_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_att_light.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chandown.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chandown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chanlast.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chanlast_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chansurf.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chansurf_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chanup.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chanup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_close.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_close_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_closecaption.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_closecaption_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_closecaption_on.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_freeze.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_freeze_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_fullscreen.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_fullscreen_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_menu.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_menu_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_minimize.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_minimize_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_notitle.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_notitle_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_preference.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_preference_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_radio.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_radio_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapgripper.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapimgdown.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapimgdown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapimgup.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapimgup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapshot.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapshot_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapshotconfig.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapshotconfig_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapshotsample.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_source.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_source_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_teletext.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_teletext_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_volumegripper.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_volumegripper_light.bmp
C:\Program Files\WinTV\skin\[u]0/u1\vssver.scc
C:\Program Files\WinTV\skin\[u]0/u2\gripper_tristate_slider.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_play_status.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_slip_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_slip_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_slip_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_vcr_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_vcr_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_vcr_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottoml.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_depressed.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottomm.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottomr.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_leftb.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_leftm.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_leftt.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_rightb.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_rightm.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_rightt.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_topl.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_topm.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_topr.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_alwaysontop.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_alwaysontop_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_alwaysontop_on.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_att.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_att_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_att_light.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chandown.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chandown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chanlast.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chanlast_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chansurf.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chansurf_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chanup.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chanup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_close.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_close_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_closecaption.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_closecaption_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_closecaption_on.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_freeze.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_freeze_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_fullscreen.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_fullscreen_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_menu.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_menu_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_minimize.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_minimize_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_notitle.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_notitle_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_preference.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_preference_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_radio.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_radio_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapgripper.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapimgdown.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapimgdown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapimgup.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapimgup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapshot.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapshot_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapshotconfig.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapshotconfig_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapshotsample.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_source.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_source_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_teletext.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_teletext_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_volumegripper.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_volumegripper_light.bmp
C:\Program Files\WinTV\skin\[u]0/u2\vssver.scc
C:\Program Files\WinTV\skin\tp_play_status.bmp
C:\Program Files\WinTV\UNHLPfra.EXE
C:\Program Files\WinTV\UNir32.EXE
C:\Program Files\WinTV\uniTvSrv.exe
C:\Program Files\WinTV\UniTVSrv.LOG
C:\Program Files\WinTV\UNTV6.EXE
C:\Program Files\WinTV\UNWISE.INI
C:\Program Files\WinTV\WinTV.exe
C:\Program Files\WinTV\WinTV2K.chm
C:\Program Files\WinTV\WinTV2K.fra
C:\Program Files\WinTV\WinTV6.fra
C:\Program Files\WinTV\WINTV6.LOG
C:\Program Files\WinTV\WinTvSkin2007.ini
C:\Program Files\WinTV\WTV2Kfra.LOG

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_HauppaugeTVServer


((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-07-12 to 2008-08-12 ))))))))))))))))))))))))))))))))))))
.

2008-08-12 01:01 . 2008-08-12 01:01 <REP> d-------- C:\Program Files\Enigma Software Group
2008-07-26 22:33 . 2008-07-27 19:09 <REP> d-------- C:\Users\belette master\AppData\Roaming\uTorrent
2008-07-26 22:33 . 2008-07-26 22:33 <REP> d-------- C:\Program Files\uTorrent
2008-07-25 02:25 . 2008-05-27 06:59 106,605 --a------ C:\Windows\System32\StructuredQuerySchema.bin
2008-07-25 02:25 . 2008-05-27 07:17 34,816 --a------ C:\Windows\System32\msscb.dll
2008-07-25 02:25 . 2008-05-27 06:59 18,904 --a------ C:\Windows\System32\StructuredQuerySchemaTrivial.bin
2008-07-25 02:25 . 2008-05-27 07:17 11,776 --a------ C:\Windows\System32\msshooks.dll
2008-07-18 20:39 . 2008-07-18 20:39 587,264 --a------ C:\Windows\WLXPGSS.SCR
2008-07-18 09:10 . 2008-06-26 03:45 12,240,896 --a------ C:\Windows\System32\NlsLexicons0007.dll
2008-07-18 09:10 . 2008-06-26 03:45 2,644,480 --a------ C:\Windows\System32\NlsLexicons0009.dll
2008-07-18 09:10 . 2008-06-26 05:29 801,280 --a------ C:\Windows\System32\NaturalLanguage6.dll
2008-07-18 09:09 . 2008-04-26 10:25 3,600,952 --a------ C:\Windows\System32\ntkrnlpa.exe
2008-07-18 09:09 . 2008-04-26 10:25 3,549,240 --a------ C:\Windows\System32\ntoskrnl.exe
2008-07-18 09:09 . 2008-04-26 10:26 891,448 --a------ C:\Windows\System32\drivers\tcpip.sys
2008-07-18 09:09 . 2008-04-12 05:32 784,896 --a------ C:\Windows\System32\rpcrt4.dll
2008-07-18 09:09 . 2008-05-10 05:35 564,736 --a------ C:\Windows\System32\emdmgmt.dll
2008-07-18 09:09 . 2008-04-05 03:21 72,192 --a------ C:\Windows\System32\drivers\pacer.sys
2008-07-18 09:09 . 2008-04-05 05:34 15,360 --a------ C:\Windows\System32\pacerprf.dll
2008-07-18 09:08 . 2008-05-08 23:59 430,080 --a------ C:\Windows\System32\vbscript.dll
2008-07-18 09:08 . 2008-05-08 23:59 180,224 --a------ C:\Windows\System32\scrobj.dll
2008-07-18 09:08 . 2008-05-08 23:59 172,032 --a------ C:\Windows\System32\scrrun.dll
2008-07-18 09:08 . 2008-05-08 23:59 155,648 --a------ C:\Windows\System32\wscript.exe
2008-07-18 09:08 . 2008-05-08 23:58 135,168 --a------ C:\Windows\System32\wshom.ocx
2008-07-18 09:08 . 2008-05-08 23:58 135,168 --a------ C:\Windows\System32\cscript.exe
2008-07-18 09:08 . 2008-05-08 23:59 90,112 --a------ C:\Windows\System32\wshext.dll

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-08-12 02:29 197,340,448 --sha-w C:\Windows\system32\drivers\fidbox.dat
2008-08-12 02:29 --------- d-----w C:\Users\belette master\AppData\Roaming\DMCache
2008-08-12 02:27 2,645,612 --sha-w C:\Windows\system32\drivers\fidbox.idx
2008-08-12 01:24 --------- d-----w C:\ProgramData\Kaspersky Lab
2008-08-11 23:00 --------- d-----w C:\Users\belette master\AppData\Roaming\IDM
2008-08-11 22:57 --------- d-----w C:\Program Files\Internet Download Manager
2008-08-07 14:55 96,976 ----a-w C:\Windows\system32\drivers\klin.dat
2008-07-24 23:56 87,855 ----a-w C:\Windows\system32\drivers\klick.dat
2008-07-24 10:44 --------- d-----w C:\Users\belette master\AppData\Roaming\dvdcss
2008-07-18 07:40 --------- d-----w C:\Program Files\Windows Mail
2008-07-02 18:22 --------- d-----w C:\Users\belette master\AppData\Roaming\AVS4YOU
2008-07-02 18:22 --------- d-----w C:\ProgramData\AVS4YOU
2008-07-02 18:16 --------- d-----w C:\Program Files\Common Files\AVSMedia
2008-07-02 18:16 --------- d-----w C:\Program Files\AVS4YOU
2008-06-26 22:09 --------- d-----w C:\Program Files\Evolution Tools
2008-06-26 20:14 --------- d-----w C:\Program Files\vtplus
2008-06-26 19:52 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-06-26 19:52 --------- d-----w C:\Program Files\Common Files\IviSDK
2008-05-29 18:34 832,292 ----a-w C:\Windows\Commando1703.zip
2008-03-20 18:37 174 --sha-w C:\Program Files\desktop.ini
2006-05-28 15:46 397,306 ----a-w C:\Program Files\wunauclt.zip
2006-05-28 15:46 397,306 ----a-w C:\Program Files\wunauclt.tbe
2008-01-03 18:51 16,384 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
2008-01-03 18:51 32,768 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
2008-01-03 18:51 16,384 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
.

(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.

---- Directory of C:\Program Files\Enigma Software Group ----

2008-08-12 01:35 32256 --a------ C:\Program Files\Enigma Software Group\SpyHunter\spyhunter.log
2008-08-12 01:35 135792 --a------ C:\Program Files\Enigma Software Group\SpyHunter\AXList.txt
2008-08-12 01:19 14265 --a------ C:\Program Files\Enigma Software Group\SpyHunter\scan.log
2008-08-12 01:02 604211 --a------ C:\Program Files\Enigma Software Group\SpyHunter\support.log
2008-08-12 01:01 434283 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Uninstall.exe
2008-08-12 01:01 3121 --a------ C:\Program Files\Enigma Software Group\SpyHunter\INSTALL.LOG
2008-08-12 01:01 1094 --a------ C:\Program Files\Enigma Software Group\SpyHunter\install.sss
2008-08-10 21:29 1129184 --a------ C:\Program Files\Enigma Software Group\SpyHunter\def.dat
2008-06-20 15:59 643072 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Common.dll
2008-06-20 10:52 190352 --a------ C:\Program Files\Enigma Software Group\SpyHunter\whitelist.dat
2008-06-19 16:48 851968 --a------ C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter3.exe
2008-06-19 16:08 479232 --a------ C:\Program Files\Enigma Software Group\SpyHunter\NetworkSentry.dll
2008-06-16 14:46 9596928 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Language.dll
2008-06-16 14:23 884736 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Scanner.dll
2008-06-12 12:48 724992 --a------ C:\Program Files\Enigma Software Group\SpyHunter\ProcessGuard.dll
2008-06-12 12:48 716800 --a------ C:\Program Files\Enigma Software Group\SpyHunter\RegistryGuard.dll
2008-06-11 16:51 454656 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Updater.dll
2008-06-11 16:51 385024 --a------ C:\Program Files\Enigma Software Group\SpyHunter\EnigmaUpdater.dll
2008-06-11 13:31 290816 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Scheduler.dll
2008-06-06 11:38 315392 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Options.dll
2008-06-04 11:37 1157659 --a------ C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter3.chm
2008-05-27 14:30 225280 --a------ C:\Program Files\Enigma Software Group\SpyHunter\SpyHunterMonitor.dll
2008-05-27 14:22 679936 --a------ C:\Program Files\Enigma Software Group\SpyHunter\HelpDesk.dll
2008-05-27 14:20 405504 --a------ C:\Program Files\Enigma Software Group\SpyHunter\ActiveXKill.dll
2008-05-27 14:20 204800 --a------ C:\Program Files\Enigma Software Group\SpyHunter\ActiveKill.dll
2008-05-27 14:16 405504 --a------ C:\Program Files\Enigma Software Group\SpyHunter\HFMonitor.dll
2008-05-27 14:13 421888 --a------ C:\Program Files\Enigma Software Group\SpyHunter\WSAMonitor.dll
2008-05-14 15:15 614400 --a------ C:\Program Files\Enigma Software Group\SpyHunter\br.exe
2008-05-07 16:22 8572993 --a------ C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter3.skn
2007-08-28 17:00 17631 --a------ C:\Program Files\Enigma Software Group\SpyHunter\SHDS.mht


((((((((((((((((((((((((((((( snapshot@2008-08-12_ 3.21.28.49 )))))))))))))))))))))))))))))))))))))))))
.
+ 2005-10-20 18:02:28 163,328 ----a-w C:\Windows\erdnt\subs\ERDNT.EXE
- 2008-08-11 23:34:59 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2008-08-12 02:28:45 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2008-08-11 23:34:59 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2008-08-12 02:28:45 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2008-08-11 23:37:08 262,144 --sha-w C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT
+ 2008-08-12 02:29:15 262,144 --sha-w C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT
+ 2008-08-12 02:29:15 262,144 ---ha-w C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG1
- 2008-08-12 01:20:35 262,144 --sha-w C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT
+ 2008-08-12 02:29:59 262,144 --sha-w C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT
- 2008-08-11 23:37:12 12,794 ----a-w C:\Windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1351016166-3985414142-2436382745-1000_UserData.bin
+ 2008-08-12 02:30:48 12,928 ----a-w C:\Windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1351016166-3985414142-2436382745-1000_UserData.bin
- 2008-08-11 23:37:10 69,322 ----a-w C:\Windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2008-08-12 02:30:48 69,392 ----a-w C:\Windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-01-19 00:33 1233920]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2008-01-19 00:33 125952]
"IDMan"="C:\Program Files\Internet Download Manager\IDMan.exe" [2008-07-29 16:18 2610608]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 12:34 5724184]
"Veoh"="C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" [2008-04-01 18:35 3587120]
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 00:33 202240]
"WindowsWelcomeCenter"="oobefldr.dll" [2008-01-19 00:36 2153472 C:\Windows\System32\oobefldr.dll]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 15:40 155648]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25 144784]
"RivaTuner"="C:\Program Files\RivaTuner v2.05\RivaTuner.exe" [2007-09-27 19:20 2633728]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]
"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [2008-05-03 05:46 13535776]
"NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [2008-05-03 05:46 92704]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [2008-02-08 18:36 227856]
"CTXFIREG"="CTxfiReg.exe" [2007-05-10 16:48 43520 C:\Windows\System32\CTXFIREG.EXE]
"CTHelper"="CTHELPER.EXE" [2007-05-10 16:51 19456 C:\Windows\System32\CTHELPER.EXE]
"CTxfiHlp"="CTXFIHLP.EXE" [2007-05-10 16:52 19968 C:\Windows\System32\CTXFIHLP.EXE]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DevconDefaultDB"="C:\Windows\system32\READREG" [X]
"CtxfiReg"="CTXFIREG.exe" [2007-05-10 16:48 43520 C:\Windows\System32\CTXFIREG.EXE]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SetDefaultMIDI"="MIDIDEF.EXE" [2007-05-10 16:36 28672 C:\Windows\System32\MIDIDEF.EXE]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\PROGRA~1\KASPER~1\KASPER~2.0\r3hook.dll,C:\PROGRA~1\KASPER~1\KASPER~2.0\adialhk.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders schannel.dll, credssp.dll

[HKLM\~\startupfolder\C:^Users^belette master^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Xfire.lnk]
path=C:\Users\belette master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Xfire.lnk
backup=C:\Windows\pss\Xfire.lnk.Startup
backupExtension=.Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2008-01-11 22:16 39792 C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeUpdater]
-ra------ 2007-03-01 10:37 2321600 C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2007-11-15 14:11 267048 C:\Program Files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
--a------ 2007-10-18 12:34 5724184 C:\Program Files\Windows Live\Messenger\msnmsgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2007-11-15 00:43 286720 C:\Program Files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile-based device management]
--a------ 2007-01-24 12:21 563080 C:\Windows\WindowsMobile\wmdc.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{E21768A9-F0CD-43CC-91CE-38EC3B39137E}"= UDP:C:\Program Files\Sierra\FEAR\FEAR.exe:FEAR
"{AEB38D62-37C5-4D23-8341-233A03D77914}"= TCP:C:\Program Files\Sierra\FEAR\FEAR.exe:FEAR
"{15C8ECE8-136B-4442-99E8-E084DD9EA770}"= UDP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{7FF376C5-04A7-4528-8266-32398BC028A4}"= TCP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{FA7CD5BB-47F7-4A25-818C-FD54F850128A}"= UDP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{CDACDC92-8949-4E85-BAD7-B7D7760EEB1B}"= TCP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{FC6A7ADE-BE1D-47CD-95FA-32D4F804E27E}"= UDP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{721C6653-1BBD-4CC1-A71F-8D16E4F59FA6}"= TCP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{86FC4027-3DD7-45DB-8029-F2DCE731C8E9}"= UDP:26675:169.254.2.0/255.255.255.0:ActiveSync Service
"{91DD3DF9-EB9B-4172-8211-C66B5F4E5D75}"= UDP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{0AA2A321-E618-48BE-A84B-8CBB39921FC9}"= TCP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{6BC1A91B-CFB0-4CFF-B0F9-CCCAFD15CFD3}"= UDP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{D42DE169-AB2F-4E8D-945B-6ACF041D2039}"= TCP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{78BF53AF-0894-4EC8-8B9C-E95CFD6CE79B}"= UDP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{0F67EB58-1B13-4316-8ECB-4FEC5DA3C9D0}"= TCP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{5AD6A129-A769-4B60-9B77-8AEF48053662}"= UDP:26675:169.254.2.0/255.255.255.0:ActiveSync Service
"{40F9C1C5-6BC8-4CB8-AE09-6BBB6C58F49C}"= UDP:C:\Program Files\iTunes\iTunes.exe:iTunes
"{68F10B22-8A48-4710-A814-ECF281466D7B}"= TCP:C:\Program Files\iTunes\iTunes.exe:iTunes
"{A7ECF797-EBB1-4C59-914A-8F3607A57612}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
"{B938B711-B7A7-4EE0-828E-568A8AFE378E}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main.exe:Neverwinter Nights 2 Main
"{56CF6D0E-02CE-4934-A501-1FCA6EABD635}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main.exe:Neverwinter Nights 2 Main
"{A2074204-E7B9-45ED-AF56-885ED4A758F6}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main_amdxp.exe:Neverwinter Nights 2 AMD
"{9AA3E11F-E54A-49CE-BA60-18AE36D143D3}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main_amdxp.exe:Neverwinter Nights 2 AMD
"{A1F6F0BB-3FC2-4E4B-B4A4-7B9AA6255797}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwupdate.exe:Neverwinter Nights 2 Updater
"{0A2CE85C-5827-4058-BFAF-16D849AD6ECB}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwupdate.exe:Neverwinter Nights 2 Updater
"{F87B8E59-514A-4200-9601-21E330DC05D1}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2server.exe:Neverwinter Nights 2 Server
"{539870C4-A02F-47D0-BEBB-A44C9930A891}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2server.exe:Neverwinter Nights 2 Server
"{5DE2BB30-4764-4788-8CF1-A13E06407B1D}"= UDP:7561:emule
"{7F4931B2-DA70-4B80-AC1D-344EA8753336}"= TCP:7562:emule
"TCP Query User{A96A7C52-731B-422F-A88B-01AC7CD72839}C:\\program files\\emule\\emule.exe"= UDP:C:\program files\emule\emule.exe:eMule
"UDP Query User{F46F55E0-D9F3-446B-A208-89E6293C29E0}C:\\program files\\emule\\emule.exe"= TCP:C:\program files\emule\emule.exe:eMule
"TCP Query User{1E345B43-10B9-4043-86F7-7DCBB9ED6F34}C:\\program files\\adsltv\\adsltv.exe"= UDP:C:\program files\adsltv\adsltv.exe:adsltv
"UDP Query User{6B355C84-F8BA-4A8A-B575-1DE30F6E3B43}C:
0
belettemaster
12 août 2008 à 04:51
oups ... je l'ai mis 2 fois ... voila hijack :

ComboFix 08-08-10.06 - belette master 2008-08-12 4:22:44.2 - NTFSx86
Microsoft® Windows Vista™ Édition Intégrale 6.0.6001.1.1252.1.1036.18.978 [GMT 2:00]
Endroit: C:\Users\belette master\Desktop\ComboFix.exe
Command switches used :: C:\Users\belette master\Desktop\CFScript.txt
* Création d'un nouveau point de restauration

FILE ::
C:\PROGRA~1\WinTV\EPG Services\System\EPGClient.exe
C:\Program Files\7za.exe
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\PROGRA~1\WinTV
C:\PROGRA~1\WinTV\Application.tip
C:\PROGRA~1\WinTV\BGRecorder.exe
C:\PROGRA~1\WinTV\DVB_Radio.jpg
C:\PROGRA~1\WinTV\EPG Services\System\EPGClient.exe
C:\PROGRA~1\WinTV\EPG Services\System\EPGService.exe
C:\PROGRA~1\WinTV\EPG Services\System\FileEncrypt.exe
C:\PROGRA~1\WinTV\EPG Services\WebServer\Cache\epg_cache.xml
C:\PROGRA~1\WinTV\EPG Services\WebServer\Cache\epg_cache.xsl
C:\PROGRA~1\WinTV\EPG Services\WebServer\es_add_to_schedule.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\es_home.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\es_program_info.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\es_refresh.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\es_scheduled_tasks.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\buttonleft.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\buttonright.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\clock.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\delete.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\HCW_logos.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\HCW_logos_orig.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\HCW_logos_wc2006.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\images\Record.gif
C:\PROGRA~1\WinTV\EPG Services\WebServer\index.htm
C:\PROGRA~1\WinTV\EPG Services\WebServer\scripts\functions.js
C:\PROGRA~1\WinTV\EPG Services\WebServer\scripts\handler.js
C:\PROGRA~1\WinTV\EPG Services\WebServer\scripts\pi_handler.js
C:\PROGRA~1\WinTV\EPG Services\WebServer\scripts\popmenus.js
C:\PROGRA~1\WinTV\EPG Services\WebServer\styles\es_home.css
C:\PROGRA~1\WinTV\EPG Services\WebServer\styles\es_scheduled_tasks.css
C:\PROGRA~1\WinTV\EPG Services\WebServer\styles\index.css
C:\PROGRA~1\WinTV\EPG Services\WebServer\styles\popmenu.css
C:\PROGRA~1\WinTV\exec.exe
C:\PROGRA~1\WinTV\FM_Radio.jpg
C:\PROGRA~1\WinTV\hcw.exe
C:\PROGRA~1\WinTV\HCWCaptureBase.exe
C:\PROGRA~1\WinTV\hcwChanDB_5.mdb
C:\PROGRA~1\WinTV\HCWPlugin23xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin2402x.exe
C:\PROGRA~1\WinTV\HCWPlugin29xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin47xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin652xx.exe
C:\PROGRA~1\WinTV\HCWPlugin70xxc.exe
C:\PROGRA~1\WinTV\HCWPlugin74xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin76xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin93xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin95001.exe
C:\PROGRA~1\WinTV\HCWPlugin96xxx.exe
C:\PROGRA~1\WinTV\HCWPlugin99xxx.exe
C:\PROGRA~1\WinTV\HCWTVServer.exe
C:\PROGRA~1\WinTV\HCWTVServerPS.dll
C:\PROGRA~1\WinTV\Ir.exe
C:\PROGRA~1\WinTV\ir32.LOG
C:\PROGRA~1\WinTV\irremote.DLL
C:\PROGRA~1\WinTV\loaddll.exe
C:\PROGRA~1\WinTV\NoSignal.jpg
C:\PROGRA~1\WinTV\pnpscan.exe
C:\PROGRA~1\WinTV\Primary.exe
C:\PROGRA~1\WinTV\Psapi.dll
C:\PROGRA~1\WinTV\satellites.xml
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\gui.xml
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\HcwSyncIt.exe
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\HcwSyncItStrings.dat
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\strings.dat
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\TvTvRegistration.exe
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\uniTvTv.exe
C:\PROGRA~1\WinTV\Scheduler\EPG\TvTv\uniTvTv.log
C:\PROGRA~1\WinTV\Scheduler\log.txt
C:\PROGRA~1\WinTV\Scheduler\log_off.reg
C:\PROGRA~1\WinTV\Scheduler\log_on.reg
C:\PROGRA~1\WinTV\Scheduler\Mdcustoms.ocx
C:\PROGRA~1\WinTV\Scheduler\MVPModuleDictionary.xml
C:\PROGRA~1\WinTV\Scheduler\pvrfile_applet.dat
C:\PROGRA~1\WinTV\Scheduler\pvrfile_applet.exe
C:\PROGRA~1\WinTV\Scheduler\pvrfile_applet.exe.manifest
C:\PROGRA~1\WinTV\Scheduler\QSupported.reg
C:\PROGRA~1\WinTV\Scheduler\scheduler.dat
C:\PROGRA~1\WinTV\Scheduler\scheduler.exe
C:\PROGRA~1\WinTV\Scheduler\scheduler.xml
C:\PROGRA~1\WinTV\Scheduler\StayAwake.exe
C:\PROGRA~1\WinTV\Scheduler\Titan1.ico
C:\PROGRA~1\WinTV\Scheduler\uniSCHED.exe
C:\PROGRA~1\WinTV\Scheduler\uniSCHED.log
C:\PROGRA~1\WinTV\skin\[u]0/u0\gripper_tristate_slider.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_play_status.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_slip_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_slip_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_slip_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_vcr_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_vcr_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tp_vcr_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottoml.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_depressed.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottomm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_bottomr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_leftb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_leftm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_leftt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_rightb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_rightm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_rightt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_topl.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_topm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_bg_topr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_alwaysontop.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_alwaysontop_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_alwaysontop_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_att.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_att_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_att_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chandown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chandown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chanlast.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chanlast_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chansurf.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chansurf_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chanup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_chanup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_close.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_close_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_closecaption.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_closecaption_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_closecaption_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_freeze.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_freeze_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_fullscreen.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_fullscreen_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_menu.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_menu_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_minimize.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_minimize_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_notitle.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_notitle_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_preference.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_preference_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_radio.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_radio_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapgripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapimgdown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapimgdown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapimgup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapimgup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapshot.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapshot_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapshotconfig.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapshotconfig_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_snapshotsample.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_source.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_source_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_teletext.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_teletext_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_volumegripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\tv_btn_volumegripper_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u0\vssver.scc
C:\PROGRA~1\WinTV\skin\[u]0/u1\gripper_tristate_slider.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_play_status.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_slip_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_slip_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_slip_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_vcr_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_vcr_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tp_vcr_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottoml.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_depressed.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottomm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_bottomr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_leftb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_leftm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_leftt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_rightb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_rightm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_rightt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_topl.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_topm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_bg_topr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_alwaysontop.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_alwaysontop_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_alwaysontop_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_att.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_att_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_att_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chandown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chandown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chanlast.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chanlast_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chansurf.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chansurf_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chanup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_chanup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_close.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_close_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_closecaption.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_closecaption_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_closecaption_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_freeze.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_freeze_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_fullscreen.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_fullscreen_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_menu.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_menu_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_minimize.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_minimize_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_notitle.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_notitle_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_preference.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_preference_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_radio.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_radio_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapgripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapimgdown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapimgdown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapimgup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapimgup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapshot.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapshot_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapshotconfig.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapshotconfig_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_snapshotsample.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_source.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_source_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_teletext.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_teletext_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_volumegripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\tv_btn_volumegripper_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u1\vssver.scc
C:\PROGRA~1\WinTV\skin\[u]0/u2\gripper_tristate_slider.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_play_status.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_slip_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_slip_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_slip_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_vcr_depressed_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_vcr_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tp_vcr_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottoml.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_depressed.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_highlight.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_normal.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottomm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_bottomr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_leftb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_leftm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_leftt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_rightb.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_rightm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_rightt.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_topl.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_topm.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_bg_topr.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_alwaysontop.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_alwaysontop_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_alwaysontop_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_att.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_att_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_att_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chandown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chandown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chanlast.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chanlast_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chansurf.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chansurf_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chanup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_chanup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_close.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_close_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_closecaption.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_closecaption_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_closecaption_on.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_freeze.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_freeze_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_fullscreen.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_fullscreen_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_menu.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_menu_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_minimize.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_minimize_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_notitle.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_notitle_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_preference.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_preference_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_radio.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_radio_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapgripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapimgdown.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapimgdown_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapimgup.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapimgup_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapshot.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapshot_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapshotconfig.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapshotconfig_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_snapshotsample.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_source.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_source_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_teletext.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_teletext_down.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_volumegripper.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\tv_btn_volumegripper_light.bmp
C:\PROGRA~1\WinTV\skin\[u]0/u2\vssver.scc
C:\PROGRA~1\WinTV\skin\tp_play_status.bmp
C:\PROGRA~1\WinTV\UNHLPfra.EXE
C:\PROGRA~1\WinTV\UNir32.EXE
C:\PROGRA~1\WinTV\uniTvSrv.exe
C:\PROGRA~1\WinTV\UniTVSrv.LOG
C:\PROGRA~1\WinTV\UNTV6.EXE
C:\PROGRA~1\WinTV\UNWISE.INI
C:\PROGRA~1\WinTV\WinTV.exe
C:\PROGRA~1\WinTV\WinTV2K.chm
C:\PROGRA~1\WinTV\WinTV2K.fra
C:\PROGRA~1\WinTV\WinTV6.fra
C:\PROGRA~1\WinTV\WINTV6.LOG
C:\PROGRA~1\WinTV\WinTvSkin2007.ini
C:\PROGRA~1\WinTV\WTV2Kfra.LOG
C:\Program Files\7za.exe
C:\Program Files\WinTV\Application.tip
C:\Program Files\WinTV\BGRecorder.exe
C:\Program Files\WinTV\DVB_Radio.jpg
C:\Program Files\WinTV\EPG Services\System\EPGClient.exe
C:\Program Files\WinTV\EPG Services\System\EPGService.exe
C:\Program Files\WinTV\EPG Services\System\FileEncrypt.exe
C:\Program Files\WinTV\EPG Services\WebServer\Cache\epg_cache.xml
C:\Program Files\WinTV\EPG Services\WebServer\Cache\epg_cache.xsl
C:\Program Files\WinTV\EPG Services\WebServer\es_add_to_schedule.htm
C:\Program Files\WinTV\EPG Services\WebServer\es_home.htm
C:\Program Files\WinTV\EPG Services\WebServer\es_program_info.htm
C:\Program Files\WinTV\EPG Services\WebServer\es_refresh.htm
C:\Program Files\WinTV\EPG Services\WebServer\es_scheduled_tasks.htm
C:\Program Files\WinTV\EPG Services\WebServer\images\buttonleft.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\buttonright.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\clock.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\delete.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\HCW_logos.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\HCW_logos_orig.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\HCW_logos_wc2006.gif
C:\Program Files\WinTV\EPG Services\WebServer\images\Record.gif
C:\Program Files\WinTV\EPG Services\WebServer\index.htm
C:\Program Files\WinTV\EPG Services\WebServer\scripts\functions.js
C:\Program Files\WinTV\EPG Services\WebServer\scripts\handler.js
C:\Program Files\WinTV\EPG Services\WebServer\scripts\pi_handler.js
C:\Program Files\WinTV\EPG Services\WebServer\scripts\popmenus.js
C:\Program Files\WinTV\EPG Services\WebServer\styles\es_home.css
C:\Program Files\WinTV\EPG Services\WebServer\styles\es_scheduled_tasks.css
C:\Program Files\WinTV\EPG Services\WebServer\styles\index.css
C:\Program Files\WinTV\EPG Services\WebServer\styles\popmenu.css
C:\Program Files\WinTV\exec.exe
C:\Program Files\WinTV\FM_Radio.jpg
C:\Program Files\WinTV\hcw.exe
C:\Program Files\WinTV\HCWCaptureBase.exe
C:\Program Files\WinTV\hcwChanDB_5.mdb
C:\Program Files\WinTV\HCWPlugin23xxx.exe
C:\Program Files\WinTV\HCWPlugin2402x.exe
C:\Program Files\WinTV\HCWPlugin29xxx.exe
C:\Program Files\WinTV\HCWPlugin47xxx.exe
C:\Program Files\WinTV\HCWPlugin652xx.exe
C:\Program Files\WinTV\HCWPlugin70xxc.exe
C:\Program Files\WinTV\HCWPlugin74xxx.exe
C:\Program Files\WinTV\HCWPlugin76xxx.exe
C:\Program Files\WinTV\HCWPlugin93xxx.exe
C:\Program Files\WinTV\HCWPlugin95001.exe
C:\Program Files\WinTV\HCWPlugin96xxx.exe
C:\Program Files\WinTV\HCWPlugin99xxx.exe
C:\Program Files\WinTV\HCWTVServer.exe
C:\Program Files\WinTV\HCWTVServerPS.dll
C:\Program Files\WinTV\Ir.exe
C:\Program Files\WinTV\ir32.LOG
C:\Program Files\WinTV\irremote.DLL
C:\Program Files\WinTV\loaddll.exe
C:\Program Files\WinTV\NoSignal.jpg
C:\Program Files\WinTV\pnpscan.exe
C:\Program Files\WinTV\Primary.exe
C:\Program Files\WinTV\Psapi.dll
C:\Program Files\WinTV\satellites.xml
C:\Program Files\WinTV\Scheduler\EPG\TvTv\gui.xml
C:\Program Files\WinTV\Scheduler\EPG\TvTv\HcwSyncIt.exe
C:\Program Files\WinTV\Scheduler\EPG\TvTv\HcwSyncItStrings.dat
C:\Program Files\WinTV\Scheduler\EPG\TvTv\strings.dat
C:\Program Files\WinTV\Scheduler\EPG\TvTv\TvTvRegistration.exe
C:\Program Files\WinTV\Scheduler\EPG\TvTv\uniTvTv.exe
C:\Program Files\WinTV\Scheduler\EPG\TvTv\uniTvTv.log
C:\Program Files\WinTV\Scheduler\log.txt
C:\Program Files\WinTV\Scheduler\log_off.reg
C:\Program Files\WinTV\Scheduler\log_on.reg
C:\Program Files\WinTV\Scheduler\Mdcustoms.ocx
C:\Program Files\WinTV\Scheduler\MVPModuleDictionary.xml
C:\Program Files\WinTV\Scheduler\pvrfile_applet.dat
C:\Program Files\WinTV\Scheduler\pvrfile_applet.exe
C:\Program Files\WinTV\Scheduler\pvrfile_applet.exe.manifest
C:\Program Files\WinTV\Scheduler\QSupported.reg
C:\Program Files\WinTV\Scheduler\scheduler.dat
C:\Program Files\WinTV\Scheduler\scheduler.exe
C:\Program Files\WinTV\Scheduler\scheduler.xml
C:\Program Files\WinTV\Scheduler\StayAwake.exe
C:\Program Files\WinTV\Scheduler\Titan1.ico
C:\Program Files\WinTV\Scheduler\uniSCHED.exe
C:\Program Files\WinTV\Scheduler\uniSCHED.log
C:\Program Files\WinTV\skin\[u]0/u0\gripper_tristate_slider.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_play_status.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_slip_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_slip_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_slip_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_vcr_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_vcr_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tp_vcr_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottoml.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_depressed.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottoml_btns_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottomm.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_bottomr.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_leftb.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_leftm.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_leftt.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_rightb.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_rightm.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_rightt.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_topl.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_topm.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_bg_topr.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_alwaysontop.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_alwaysontop_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_alwaysontop_on.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_att.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_att_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_att_light.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chandown.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chandown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chanlast.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chanlast_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chansurf.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chansurf_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chanup.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_chanup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_close.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_close_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_closecaption.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_closecaption_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_closecaption_on.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_freeze.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_freeze_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_fullscreen.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_fullscreen_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_menu.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_menu_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_minimize.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_minimize_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_notitle.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_notitle_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_preference.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_preference_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_radio.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_radio_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapgripper.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapimgdown.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapimgdown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapimgup.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapimgup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapshot.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapshot_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapshotconfig.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapshotconfig_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_snapshotsample.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_source.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_source_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_teletext.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_teletext_down.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_volumegripper.bmp
C:\Program Files\WinTV\skin\[u]0/u0\tv_btn_volumegripper_light.bmp
C:\Program Files\WinTV\skin\[u]0/u0\vssver.scc
C:\Program Files\WinTV\skin\[u]0/u1\gripper_tristate_slider.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_play_status.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_slip_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_slip_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_slip_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_vcr_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_vcr_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tp_vcr_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottoml.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_depressed.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottoml_btns_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottomm.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_bottomr.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_leftb.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_leftm.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_leftt.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_rightb.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_rightm.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_rightt.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_topl.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_topm.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_bg_topr.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_alwaysontop.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_alwaysontop_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_alwaysontop_on.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_att.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_att_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_att_light.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chandown.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chandown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chanlast.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chanlast_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chansurf.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chansurf_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chanup.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_chanup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_close.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_close_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_closecaption.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_closecaption_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_closecaption_on.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_freeze.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_freeze_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_fullscreen.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_fullscreen_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_menu.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_menu_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_minimize.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_minimize_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_notitle.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_notitle_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_preference.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_preference_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_radio.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_radio_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapgripper.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapimgdown.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapimgdown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapimgup.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapimgup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapshot.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapshot_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapshotconfig.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapshotconfig_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_snapshotsample.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_source.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_source_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_teletext.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_teletext_down.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_volumegripper.bmp
C:\Program Files\WinTV\skin\[u]0/u1\tv_btn_volumegripper_light.bmp
C:\Program Files\WinTV\skin\[u]0/u1\vssver.scc
C:\Program Files\WinTV\skin\[u]0/u2\gripper_tristate_slider.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_play_status.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_slip_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_slip_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_slip_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_vcr_depressed_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_vcr_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tp_vcr_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottoml.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_depressed.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_highlight.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottoml_btns_normal.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottomm.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_bottomr.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_leftb.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_leftm.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_leftt.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_rightb.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_rightm.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_rightt.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_topl.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_topm.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_bg_topr.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_alwaysontop.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_alwaysontop_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_alwaysontop_on.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_att.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_att_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_att_light.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chandown.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chandown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chanlast.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chanlast_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chansurf.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chansurf_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chanup.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_chanup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_close.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_close_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_closecaption.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_closecaption_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_closecaption_on.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_freeze.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_freeze_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_fullscreen.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_fullscreen_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_menu.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_menu_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_minimize.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_minimize_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_notitle.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_notitle_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_preference.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_preference_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_radio.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_radio_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapgripper.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapimgdown.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapimgdown_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapimgup.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapimgup_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapshot.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapshot_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapshotconfig.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapshotconfig_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_snapshotsample.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_source.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_source_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_teletext.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_teletext_down.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_volumegripper.bmp
C:\Program Files\WinTV\skin\[u]0/u2\tv_btn_volumegripper_light.bmp
C:\Program Files\WinTV\skin\[u]0/u2\vssver.scc
C:\Program Files\WinTV\skin\tp_play_status.bmp
C:\Program Files\WinTV\UNHLPfra.EXE
C:\Program Files\WinTV\UNir32.EXE
C:\Program Files\WinTV\uniTvSrv.exe
C:\Program Files\WinTV\UniTVSrv.LOG
C:\Program Files\WinTV\UNTV6.EXE
C:\Program Files\WinTV\UNWISE.INI
C:\Program Files\WinTV\WinTV.exe
C:\Program Files\WinTV\WinTV2K.chm
C:\Program Files\WinTV\WinTV2K.fra
C:\Program Files\WinTV\WinTV6.fra
C:\Program Files\WinTV\WINTV6.LOG
C:\Program Files\WinTV\WinTvSkin2007.ini
C:\Program Files\WinTV\WTV2Kfra.LOG

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_HauppaugeTVServer


((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-07-12 to 2008-08-12 ))))))))))))))))))))))))))))))))))))
.

2008-08-12 01:01 . 2008-08-12 01:01 <REP> d-------- C:\Program Files\Enigma Software Group
2008-07-26 22:33 . 2008-07-27 19:09 <REP> d-------- C:\Users\belette master\AppData\Roaming\uTorrent
2008-07-26 22:33 . 2008-07-26 22:33 <REP> d-------- C:\Program Files\uTorrent
2008-07-25 02:25 . 2008-05-27 06:59 106,605 --a------ C:\Windows\System32\StructuredQuerySchema.bin
2008-07-25 02:25 . 2008-05-27 07:17 34,816 --a------ C:\Windows\System32\msscb.dll
2008-07-25 02:25 . 2008-05-27 06:59 18,904 --a------ C:\Windows\System32\StructuredQuerySchemaTrivial.bin
2008-07-25 02:25 . 2008-05-27 07:17 11,776 --a------ C:\Windows\System32\msshooks.dll
2008-07-18 20:39 . 2008-07-18 20:39 587,264 --a------ C:\Windows\WLXPGSS.SCR
2008-07-18 09:10 . 2008-06-26 03:45 12,240,896 --a------ C:\Windows\System32\NlsLexicons0007.dll
2008-07-18 09:10 . 2008-06-26 03:45 2,644,480 --a------ C:\Windows\System32\NlsLexicons0009.dll
2008-07-18 09:10 . 2008-06-26 05:29 801,280 --a------ C:\Windows\System32\NaturalLanguage6.dll
2008-07-18 09:09 . 2008-04-26 10:25 3,600,952 --a------ C:\Windows\System32\ntkrnlpa.exe
2008-07-18 09:09 . 2008-04-26 10:25 3,549,240 --a------ C:\Windows\System32\ntoskrnl.exe
2008-07-18 09:09 . 2008-04-26 10:26 891,448 --a------ C:\Windows\System32\drivers\tcpip.sys
2008-07-18 09:09 . 2008-04-12 05:32 784,896 --a------ C:\Windows\System32\rpcrt4.dll
2008-07-18 09:09 . 2008-05-10 05:35 564,736 --a------ C:\Windows\System32\emdmgmt.dll
2008-07-18 09:09 . 2008-04-05 03:21 72,192 --a------ C:\Windows\System32\drivers\pacer.sys
2008-07-18 09:09 . 2008-04-05 05:34 15,360 --a------ C:\Windows\System32\pacerprf.dll
2008-07-18 09:08 . 2008-05-08 23:59 430,080 --a------ C:\Windows\System32\vbscript.dll
2008-07-18 09:08 . 2008-05-08 23:59 180,224 --a------ C:\Windows\System32\scrobj.dll
2008-07-18 09:08 . 2008-05-08 23:59 172,032 --a------ C:\Windows\System32\scrrun.dll
2008-07-18 09:08 . 2008-05-08 23:59 155,648 --a------ C:\Windows\System32\wscript.exe
2008-07-18 09:08 . 2008-05-08 23:58 135,168 --a------ C:\Windows\System32\wshom.ocx
2008-07-18 09:08 . 2008-05-08 23:58 135,168 --a------ C:\Windows\System32\cscript.exe
2008-07-18 09:08 . 2008-05-08 23:59 90,112 --a------ C:\Windows\System32\wshext.dll

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-08-12 02:29 197,340,448 --sha-w C:\Windows\system32\drivers\fidbox.dat
2008-08-12 02:29 --------- d-----w C:\Users\belette master\AppData\Roaming\DMCache
2008-08-12 02:27 2,645,612 --sha-w C:\Windows\system32\drivers\fidbox.idx
2008-08-12 01:24 --------- d-----w C:\ProgramData\Kaspersky Lab
2008-08-11 23:00 --------- d-----w C:\Users\belette master\AppData\Roaming\IDM
2008-08-11 22:57 --------- d-----w C:\Program Files\Internet Download Manager
2008-08-07 14:55 96,976 ----a-w C:\Windows\system32\drivers\klin.dat
2008-07-24 23:56 87,855 ----a-w C:\Windows\system32\drivers\klick.dat
2008-07-24 10:44 --------- d-----w C:\Users\belette master\AppData\Roaming\dvdcss
2008-07-18 07:40 --------- d-----w C:\Program Files\Windows Mail
2008-07-02 18:22 --------- d-----w C:\Users\belette master\AppData\Roaming\AVS4YOU
2008-07-02 18:22 --------- d-----w C:\ProgramData\AVS4YOU
2008-07-02 18:16 --------- d-----w C:\Program Files\Common Files\AVSMedia
2008-07-02 18:16 --------- d-----w C:\Program Files\AVS4YOU
2008-06-26 22:09 --------- d-----w C:\Program Files\Evolution Tools
2008-06-26 20:14 --------- d-----w C:\Program Files\vtplus
2008-06-26 19:52 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-06-26 19:52 --------- d-----w C:\Program Files\Common Files\IviSDK
2008-05-29 18:34 832,292 ----a-w C:\Windows\Commando1703.zip
2008-03-20 18:37 174 --sha-w C:\Program Files\desktop.ini
2006-05-28 15:46 397,306 ----a-w C:\Program Files\wunauclt.zip
2006-05-28 15:46 397,306 ----a-w C:\Program Files\wunauclt.tbe
2008-01-03 18:51 16,384 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
2008-01-03 18:51 32,768 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
2008-01-03 18:51 16,384 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
.

(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.

---- Directory of C:\Program Files\Enigma Software Group ----

2008-08-12 01:35 32256 --a------ C:\Program Files\Enigma Software Group\SpyHunter\spyhunter.log
2008-08-12 01:35 135792 --a------ C:\Program Files\Enigma Software Group\SpyHunter\AXList.txt
2008-08-12 01:19 14265 --a------ C:\Program Files\Enigma Software Group\SpyHunter\scan.log
2008-08-12 01:02 604211 --a------ C:\Program Files\Enigma Software Group\SpyHunter\support.log
2008-08-12 01:01 434283 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Uninstall.exe
2008-08-12 01:01 3121 --a------ C:\Program Files\Enigma Software Group\SpyHunter\INSTALL.LOG
2008-08-12 01:01 1094 --a------ C:\Program Files\Enigma Software Group\SpyHunter\install.sss
2008-08-10 21:29 1129184 --a------ C:\Program Files\Enigma Software Group\SpyHunter\def.dat
2008-06-20 15:59 643072 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Common.dll
2008-06-20 10:52 190352 --a------ C:\Program Files\Enigma Software Group\SpyHunter\whitelist.dat
2008-06-19 16:48 851968 --a------ C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter3.exe
2008-06-19 16:08 479232 --a------ C:\Program Files\Enigma Software Group\SpyHunter\NetworkSentry.dll
2008-06-16 14:46 9596928 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Language.dll
2008-06-16 14:23 884736 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Scanner.dll
2008-06-12 12:48 724992 --a------ C:\Program Files\Enigma Software Group\SpyHunter\ProcessGuard.dll
2008-06-12 12:48 716800 --a------ C:\Program Files\Enigma Software Group\SpyHunter\RegistryGuard.dll
2008-06-11 16:51 454656 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Updater.dll
2008-06-11 16:51 385024 --a------ C:\Program Files\Enigma Software Group\SpyHunter\EnigmaUpdater.dll
2008-06-11 13:31 290816 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Scheduler.dll
2008-06-06 11:38 315392 --a------ C:\Program Files\Enigma Software Group\SpyHunter\Options.dll
2008-06-04 11:37 1157659 --a------ C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter3.chm
2008-05-27 14:30 225280 --a------ C:\Program Files\Enigma Software Group\SpyHunter\SpyHunterMonitor.dll
2008-05-27 14:22 679936 --a------ C:\Program Files\Enigma Software Group\SpyHunter\HelpDesk.dll
2008-05-27 14:20 405504 --a------ C:\Program Files\Enigma Software Group\SpyHunter\ActiveXKill.dll
2008-05-27 14:20 204800 --a------ C:\Program Files\Enigma Software Group\SpyHunter\ActiveKill.dll
2008-05-27 14:16 405504 --a------ C:\Program Files\Enigma Software Group\SpyHunter\HFMonitor.dll
2008-05-27 14:13 421888 --a------ C:\Program Files\Enigma Software Group\SpyHunter\WSAMonitor.dll
2008-05-14 15:15 614400 --a------ C:\Program Files\Enigma Software Group\SpyHunter\br.exe
2008-05-07 16:22 8572993 --a------ C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter3.skn
2007-08-28 17:00 17631 --a------ C:\Program Files\Enigma Software Group\SpyHunter\SHDS.mht


((((((((((((((((((((((((((((( snapshot@2008-08-12_ 3.21.28.49 )))))))))))))))))))))))))))))))))))))))))
.
+ 2005-10-20 18:02:28 163,328 ----a-w C:\Windows\erdnt\subs\ERDNT.EXE
- 2008-08-11 23:34:59 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2008-08-12 02:28:45 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2008-08-11 23:34:59 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2008-08-12 02:28:45 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2008-08-11 23:37:08 262,144 --sha-w C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT
+ 2008-08-12 02:29:15 262,144 --sha-w C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT
+ 2008-08-12 02:29:15 262,144 ---ha-w C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG1
- 2008-08-12 01:20:35 262,144 --sha-w C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT
+ 2008-08-12 02:29:59 262,144 --sha-w C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT
- 2008-08-11 23:37:12 12,794 ----a-w C:\Windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1351016166-3985414142-2436382745-1000_UserData.bin
+ 2008-08-12 02:30:48 12,928 ----a-w C:\Windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1351016166-3985414142-2436382745-1000_UserData.bin
- 2008-08-11 23:37:10 69,322 ----a-w C:\Windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2008-08-12 02:30:48 69,392 ----a-w C:\Windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-01-19 00:33 1233920]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2008-01-19 00:33 125952]
"IDMan"="C:\Program Files\Internet Download Manager\IDMan.exe" [2008-07-29 16:18 2610608]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 12:34 5724184]
"Veoh"="C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" [2008-04-01 18:35 3587120]
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 00:33 202240]
"WindowsWelcomeCenter"="oobefldr.dll" [2008-01-19 00:36 2153472 C:\Windows\System32\oobefldr.dll]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 15:40 155648]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25 144784]
"RivaTuner"="C:\Program Files\RivaTuner v2.05\RivaTuner.exe" [2007-09-27 19:20 2633728]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]
"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [2008-05-03 05:46 13535776]
"NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [2008-05-03 05:46 92704]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [2008-02-08 18:36 227856]
"CTXFIREG"="CTxfiReg.exe" [2007-05-10 16:48 43520 C:\Windows\System32\CTXFIREG.EXE]
"CTHelper"="CTHELPER.EXE" [2007-05-10 16:51 19456 C:\Windows\System32\CTHELPER.EXE]
"CTxfiHlp"="CTXFIHLP.EXE" [2007-05-10 16:52 19968 C:\Windows\System32\CTXFIHLP.EXE]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DevconDefaultDB"="C:\Windows\system32\READREG" [X]
"CtxfiReg"="CTXFIREG.exe" [2007-05-10 16:48 43520 C:\Windows\System32\CTXFIREG.EXE]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SetDefaultMIDI"="MIDIDEF.EXE" [2007-05-10 16:36 28672 C:\Windows\System32\MIDIDEF.EXE]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\PROGRA~1\KASPER~1\KASPER~2.0\r3hook.dll,C:\PROGRA~1\KASPER~1\KASPER~2.0\adialhk.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders schannel.dll, credssp.dll

[HKLM\~\startupfolder\C:^Users^belette master^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Xfire.lnk]
path=C:\Users\belette master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Xfire.lnk
backup=C:\Windows\pss\Xfire.lnk.Startup
backupExtension=.Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2008-01-11 22:16 39792 C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeUpdater]
-ra------ 2007-03-01 10:37 2321600 C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2007-11-15 14:11 267048 C:\Program Files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
--a------ 2007-10-18 12:34 5724184 C:\Program Files\Windows Live\Messenger\msnmsgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2007-11-15 00:43 286720 C:\Program Files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile-based device management]
--a------ 2007-01-24 12:21 563080 C:\Windows\WindowsMobile\wmdc.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{E21768A9-F0CD-43CC-91CE-38EC3B39137E}"= UDP:C:\Program Files\Sierra\FEAR\FEAR.exe:FEAR
"{AEB38D62-37C5-4D23-8341-233A03D77914}"= TCP:C:\Program Files\Sierra\FEAR\FEAR.exe:FEAR
"{15C8ECE8-136B-4442-99E8-E084DD9EA770}"= UDP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{7FF376C5-04A7-4528-8266-32398BC028A4}"= TCP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{FA7CD5BB-47F7-4A25-818C-FD54F850128A}"= UDP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{CDACDC92-8949-4E85-BAD7-B7D7760EEB1B}"= TCP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{FC6A7ADE-BE1D-47CD-95FA-32D4F804E27E}"= UDP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{721C6653-1BBD-4CC1-A71F-8D16E4F59FA6}"= TCP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{86FC4027-3DD7-45DB-8029-F2DCE731C8E9}"= UDP:26675:169.254.2.0/255.255.255.0:ActiveSync Service
"{91DD3DF9-EB9B-4172-8211-C66B5F4E5D75}"= UDP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{0AA2A321-E618-48BE-A84B-8CBB39921FC9}"= TCP:C:\Program Files\Microsoft ActiveSync\rapimgr.exe:ActiveSync RAPI Manager
"{6BC1A91B-CFB0-4CFF-B0F9-CCCAFD15CFD3}"= UDP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{D42DE169-AB2F-4E8D-945B-6ACF041D2039}"= TCP:C:\Program Files\Microsoft ActiveSync\wcescomm.exe:ActiveSync Connection Manager
"{78BF53AF-0894-4EC8-8B9C-E95CFD6CE79B}"= UDP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{0F67EB58-1B13-4316-8ECB-4FEC5DA3C9D0}"= TCP:C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:ActiveSync Application
"{5AD6A129-A769-4B60-9B77-8AEF48053662}"= UDP:26675:169.254.2.0/255.255.255.0:ActiveSync Service
"{40F9C1C5-6BC8-4CB8-AE09-6BBB6C58F49C}"= UDP:C:\Program Files\iTunes\iTunes.exe:iTunes
"{68F10B22-8A48-4710-A814-ECF281466D7B}"= TCP:C:\Program Files\iTunes\iTunes.exe:iTunes
"{A7ECF797-EBB1-4C59-914A-8F3607A57612}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
"{B938B711-B7A7-4EE0-828E-568A8AFE378E}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main.exe:Neverwinter Nights 2 Main
"{56CF6D0E-02CE-4934-A501-1FCA6EABD635}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main.exe:Neverwinter Nights 2 Main
"{A2074204-E7B9-45ED-AF56-885ED4A758F6}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main_amdxp.exe:Neverwinter Nights 2 AMD
"{9AA3E11F-E54A-49CE-BA60-18AE36D143D3}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main_amdxp.exe:Neverwinter Nights 2 AMD
"{A1F6F0BB-3FC2-4E4B-B4A4-7B9AA6255797}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwupdate.exe:Neverwinter Nights 2 Updater
"{0A2CE85C-5827-4058-BFAF-16D849AD6ECB}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwupdate.exe:Neverwinter Nights 2 Updater
"{F87B8E59-514A-4200-9601-21E330DC05D1}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2server.exe:Neverwinter Nights 2 Server
"{539870C4-A02F-47D0-BEBB-A44C9930A891}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2server.exe:Neverwinter Nights 2 Server
"{5DE2BB30-4764-4788-8CF1-A13E06407B1D}"= UDP:7561:emule
"{7F4931B2-DA70-4B80-AC1D-344EA8753336}"= TCP:7562:emule
"TCP Query User{A96A7C52-731B-422F-A88B-01AC7CD72839}C:\\program files\\emule\\emule.exe"= UDP:C:\program files\emule\emule.exe:eMule
"UDP Query User{F46F55E0-D9F3-446B-A208-89E6293C29E0}C:\\program files\\emule\\emule.exe"= TCP:C:\program files\emule\emule.exe:eMule
"TCP Query User{1E345B43-10B9-4043-86F7-7DCBB9ED6F34}C:\\program files\\adsltv\\adsltv.exe"= UDP:C:\program files\adsltv\adsltv.exe:adsltv
"UDP Query User{6B355C84-F8BA-4A8A-B575-1DE30F6E3B43}C:\\program files\\adsltv\\adsltv.exe"= TCP:C:\program files\adsltv\
0