Sujet Précédent Sujet Suivant

Virus!!!!

Résolu/Fermé
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 - 19 nov. 2008 à 20:03
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 - 24 nov. 2008 à 17:32
Bonjour,


En faisant une bêtise sur le net j'ai attrapé des virus.

Dès que je me connectais, ils éteignaient mon pc donc j'ai fait la même chose que pour ma mère http://www.commentcamarche.net/forum/message 230200 le pc s allume et apres il s eteint

et depuis dès que je j'allume mon pc, il y a un message d'erreur qui s'affiche ( ce sont les virus ) et si je ferme ce message, mon pc se bloque.

De plus, dès que je me connecte a internet et je charge un site, ça me redirectionne vers un site pornographique.

Je pose un rapport Hijackthis.
A voir également:

121 réponses

Précédent
Réponse 81 / 121
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 1
21 nov. 2008 à 00:45
J'ai réussi a démarrer ComboFix mais pas Malewarebytes...

Tiens le rapport!!!
0
Réponse 82 / 121
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 1
21 nov. 2008 à 00:46
ComboFix 08-11-18.A2 - Propriétaire 2008-11-21 20:13:50.2 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.102 [GMT 1:00]
* Resident AV is active


[COLOR=RED][B]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/B][/COLOR]
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\drivers\TDSSrvdc.sys
c:\windows\system32\TDSSktkl.dll
c:\windows\system32\TDSSlajf.dll
c:\windows\system32\TDSSmxjt.log
c:\windows\system32\TDSSnmxh.log
c:\windows\system32\TDSSoity.log
c:\windows\system32\TDSSoxum.dll
c:\windows\system32\TDSSqkhc.dll
c:\windows\system32\TDSSurxb.dll
c:\windows\system32\TDSSweat.dat
c:\windows\system32\TDSSxehr.dll

.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_TDSSSERV.SYS
-------\Legacy_TDSSSERV.SYS


((((((((((((((((((((((((((((( Fichiers créés du 2008-10-21 au 2008-11-21 ))))))))))))))))))))))))))))))))))))
.

2008-11-21 19:52 . 2008-11-21 19:52 664 --a------ c:\windows\system32\d3d9caps.dat
2008-11-21 18:24 . 2008-11-21 18:24 <REP> d-------- C:\VundoFix Backups
2008-11-21 18:08 . 2008-11-21 18:08 <REP> d-------- C:\rsit
2008-11-20 22:45 . 2008-11-20 22:45 <REP> d-------- c:\windows\ERUNT
2008-11-20 21:18 . 2008-11-20 21:30 <REP> d-------- c:\program files\Navilog1
2008-11-20 19:17 . 2008-11-21 17:46 <REP> d-------- c:\program files\FindyKill
2008-11-20 17:39 . 2008-11-20 17:39 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware
2008-11-20 17:39 . 2008-11-20 17:39 <REP> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes
2008-11-20 17:39 . 2008-09-08 00:16 38,528 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2008-11-20 17:39 . 2008-09-08 00:16 17,200 --a------ c:\windows\system32\drivers\mbam.sys
2008-11-20 17:01 . 2008-11-20 17:24 <REP> d-------- C:\ToolBar SD
2008-11-20 16:40 . 2008-11-21 20:12 4,004 --a------ c:\windows\system32\PerfStringBackup.TMP
2008-11-19 16:22 . 2008-11-19 16:22 <REP> d-------- C:\OEMSettings
2008-11-19 16:09 . 2008-11-19 16:09 17,801 --a------ c:\windows\system32\drivers\AegisP.sys
2008-11-19 16:08 . 2008-11-19 16:21 <REP> d-------- c:\program files\NETGEAR
2008-11-19 15:56 . 2008-11-19 15:56 <REP> d-------- c:\windows\Downloaded Installations
2008-11-19 14:32 . 2008-11-19 14:32 268 --ah----- C:\sqmdata00.sqm
2008-11-19 14:32 . 2008-11-19 14:32 244 --ah----- C:\sqmnoopt00.sqm
2008-11-18 21:53 . 2008-11-18 21:53 <REP> d-------- c:\program files\Realtek AC97
2008-11-18 21:21 . 2008-11-19 17:00 <REP> d-------- C:\Driver Download
2008-11-18 21:08 . 2004-08-05 13:00 28,288 --a--c--- c:\windows\system32\dllcache\xjis.nls
2008-11-18 21:06 . 2004-08-05 13:00 1,875,968 --a--c--- c:\windows\system32\dllcache\msir3jp.lex
2008-11-18 21:05 . 2004-08-05 13:00 13,463,552 --a--c--- c:\windows\system32\dllcache\hwxjpn.dll
2008-11-18 21:04 . 2004-08-05 13:00 1,677,824 --a--c--- c:\windows\system32\dllcache\chsbrkr.dll
2008-11-18 21:03 . 2004-05-13 00:39 876,653 --a--c--- c:\windows\system32\dllcache\fp4awel.dll
2008-11-18 20:57 . 2008-11-18 20:57 749 -rah----- c:\windows\WindowsShell.Manifest
2008-11-18 20:57 . 2008-11-18 20:57 749 -rah----- c:\windows\system32\wuaucpl.cpl.manifest
2008-11-18 20:57 . 2008-11-18 20:57 749 -rah----- c:\windows\system32\sapi.cpl.manifest
2008-11-18 20:57 . 2008-11-18 20:57 749 -rah----- c:\windows\system32\ncpa.cpl.manifest
2008-11-18 20:57 . 2008-11-18 20:57 488 -rah----- c:\windows\system32\logonui.exe.manifest
2008-11-18 20:56 . 2004-08-05 13:00 16,384 --a--c--- c:\windows\system32\dllcache\isignup.exe
2008-11-18 20:55 . 2004-08-05 13:00 218,624 --a--c--- c:\windows\system32\dllcache\icwconn1.exe
2008-11-18 20:55 . 2004-08-05 13:00 86,016 --a--c--- c:\windows\system32\dllcache\icwconn2.exe
2008-11-18 20:55 . 2004-08-05 13:00 32,768 --a--c--- c:\windows\system32\dllcache\icwdl.dll
2008-11-18 20:55 . 2004-08-05 13:00 20,480 --a--c--- c:\windows\system32\dllcache\inetwiz.exe
2008-11-18 20:42 . 2008-11-18 20:42 <REP> d---s---- c:\windows\system32\config\systemprofile\Historique
2008-11-18 18:11 . 2008-11-18 18:11 <REP> d-------- c:\documents and settings\All Users\Application Data\AntiVir PersonalEdition Classic
2008-11-18 18:06 . 2008-11-18 18:06 <REP> d-------- c:\program files\Avira
2008-11-18 18:04 . 2008-11-18 18:04 932 --a------ c:\windows\setupapi.old
2008-11-18 16:39 . 2007-09-02 20:56 1,686,016 --a------ c:\windows\system32\clinetsuitex6.ocx
2008-11-18 16:39 . 2004-03-09 16:45 662,288 --a------ c:\windows\system32\MSCOMCT2.OCX
2008-11-18 16:39 . 2004-06-14 14:56 427,864 --a------ c:\windows\system32\XceedZip.dll
2008-11-16 14:09 . 2008-11-16 14:09 <REP> d-------- c:\program files\Sun
2008-11-16 14:08 . 2008-11-16 14:04 73,728 --a------ c:\windows\system32\javacpl.cpl
2008-11-16 13:18 . 2008-11-16 13:42 16,307,608 --a------ c:\program files\jre-6u10-windows-i586-p-s.exe
2008-11-16 13:18 . 2008-11-16 13:18 1,886,800 --a------ c:\program files\install_flash_player_10_active_x.exe
2008-11-12 12:57 . 2008-11-16 14:04 410,976 --a------ c:\windows\system32\deploytk.dll
2008-11-11 17:16 . 2008-11-11 17:16 <REP> d-------- c:\program files\WinZip.Pro.v12.0.8252{H33T}{JOHNCANADUDE}
2008-11-11 17:15 . 2008-11-11 17:16 <REP> d-------- c:\program files\WinRAR 3.71 Final French
2008-11-10 16:44 . 2008-11-10 16:44 <REP> d-------- c:\program files\NeroInstall.bak
2008-11-10 16:34 . 2008-11-10 16:34 <REP> d-------- c:\documents and settings\Propriétaire\Application Data\Nero
2008-11-10 16:23 . 2008-11-10 16:23 <REP> d-------- c:\program files\Nero
2008-11-10 16:23 . 2008-11-10 16:23 <REP> d-------- c:\documents and settings\All Users\Application Data\Nero
2008-11-09 11:17 . 2008-11-09 11:20 2,955,128 --a------ c:\program files\ccsetup213.exe
2008-11-07 19:35 . 2008-11-07 19:35 25,129,080 --a------ c:\program files\antivir_workstation_winu_en_h.exe
2008-11-07 17:50 . 2008-11-07 17:52 6,113,439 --a------ c:\program files\pci_filerecovery.exe
2008-11-07 17:42 . 2008-11-07 17:43 2,331,336 --a------ c:\program files\recuva_recuva_1.20.361_francais_31279.exe
2008-11-07 17:40 . 2008-11-07 17:43 7,261,864 --a------ c:\program files\RecoverMyFiles-Setup.exe
2008-11-05 18:18 . 2008-11-05 18:40 16,735,888 --a------ c:\program files\wg311t_5_0_setup.exe
2008-11-05 17:10 . 2008-11-18 19:24 <REP> d-------- c:\windows\Drivers
2008-11-05 17:10 . 2002-12-24 13:52 54,016 --a------ c:\windows\system32\drivers\ousb2hub.sys
2008-11-05 17:10 . 2002-12-24 13:52 39,040 --a------ c:\windows\system32\drivers\ousbehci.sys
2008-11-04 23:28 . 2008-11-04 23:44 15,689,944 --a------ c:\documents and settings\wpn311_2_0_setup.exe
2008-11-04 23:27 . 2008-11-04 23:44 16,735,888 --a------ c:\documents and settings\wg311t_5_0_setup.exe
2008-11-04 23:24 . 2008-11-04 23:26 1,435,845 --a------ c:\documents and settings\VIA_Hyperion 4in1_v456v.zip
2008-11-04 23:23 . 2008-11-04 23:34 13,301,758 --a------ c:\documents and settings\via_hyperionpro_v521a.zip
2008-11-04 23:21 . 2008-11-04 23:26 461,960 --a------ c:\documents and settings\MANUAL_CMP-USB2PCC10.zip
2008-11-04 23:20 . 2008-11-04 23:33 15,243,539 --a------ c:\documents and settings\VIA_USB2_V270p1-L-M.zip
2008-10-31 13:38 . 2008-10-31 13:38 <REP> d-------- c:\program files\Samsung
2008-10-28 14:01 . 2008-05-14 17:12 <REP> d-------- C:\META-INF
2008-10-28 13:35 . 2008-10-06 18:01 <REP> d--h----- c:\documents and settings\Administrateur\Voisinage réseau
2008-10-28 13:35 . 2008-10-06 18:01 <REP> d--h----- c:\documents and settings\Administrateur\Voisinage d'impression
2008-10-28 13:35 . 2008-10-06 16:07 <REP> d--h----- c:\documents and settings\Administrateur\Modèles
2008-10-28 13:35 . 2008-10-06 18:01 <REP> d-------- c:\documents and settings\Administrateur\Mes documents
2008-10-28 13:35 . 2008-10-06 18:01 <REP> dr------- c:\documents and settings\Administrateur\Menu Démarrer
2008-10-28 13:35 . 2008-10-06 18:01 <REP> d-------- c:\documents and settings\Administrateur\Favoris
2008-10-28 13:35 . 2008-10-06 16:17 <REP> d-------- c:\documents and settings\Administrateur\Bureau
2008-10-28 13:35 . 2008-10-28 13:35 <REP> d-------- c:\documents and settings\Administrateur
2008-10-28 12:19 . 2003-03-11 00:12 59,632 -ra------ c:\windows\system32\drivers\qcusbser.sys
2008-10-28 11:41 . 2003-03-11 00:12 59,632 -ra------ c:\windows\system32\drivers\qcusbmdm.sys
2008-10-25 19:34 . 2008-10-31 14:12 <REP> d-------- c:\documents and settings\Propriétaire\Application Data\Samsung
2008-10-25 19:30 . 2008-10-25 19:30 <REP> d-------- c:\program files\Fichiers communs\Adobe
2008-10-25 19:22 . 2006-05-03 21:53 174,592 --a------ c:\windows\system32\framedyn.dll
2008-10-25 19:22 . 2007-07-03 15:58 106,792 --a------ c:\windows\system32\drivers\sscdmdm.sys
2008-10-25 19:22 . 2007-07-03 15:54 80,552 --a------ c:\windows\system32\drivers\sscdbus.sys
2008-10-25 19:22 . 2007-07-03 15:57 11,944 --a------ c:\windows\system32\drivers\sscdmdfl.sys
2008-10-25 19:22 . 2007-07-03 16:00 9,256 --a------ c:\windows\system32\drivers\sscdwhnt.sys
2008-10-25 19:22 . 2007-07-03 16:00 9,256 --a------ c:\windows\system32\drivers\sscdwh.sys
2008-10-25 19:22 . 2007-07-03 15:56 9,256 --a------ c:\windows\system32\drivers\sscdcmnt.sys
2008-10-25 19:22 . 2007-07-03 15:56 9,256 --a------ c:\windows\system32\drivers\sscdcm.sys
2008-10-25 19:21 . 2008-10-25 19:22 <REP> d-------- c:\windows\system32\Samsung_USB_Drivers
2008-10-25 19:21 . 2005-08-28 20:51 766 --a------ c:\windows\system32\Uninstall.ico
2008-10-25 19:20 . 2008-10-31 14:09 5,632 --a------ c:\windows\system32\drivers\StarOpen.sys
2008-10-25 11:53 . 2008-11-21 20:10 196,658 --a------ c:\windows\system32\oodbs.lor
2008-10-25 10:35 . 2008-10-25 10:35 <REP> d-------- c:\program files\OO Software
2008-10-23 15:04 . 2008-10-25 11:30 <REP> d-------- c:\windows\system32\oodag
2008-10-23 15:02 . 2008-10-23 15:02 0 --a------ c:\windows\OODCNT.INI
2008-10-23 11:21 . 2008-10-23 11:21 <REP> d-------- c:\program files\MSBuild
2008-10-23 11:21 . 2008-10-23 11:21 <REP> d-------- c:\program files\Microsoft Works
2008-10-23 11:18 . 2008-10-23 11:18 <REP> d-------- c:\program files\Microsoft.NET
2008-10-23 11:14 . 2008-10-23 11:14 <REP> d-------- c:\program files\Microsoft Visual Studio 8
2008-10-23 11:12 . 2008-10-23 11:20 <REP> d--h----- c:\windows\ShellNew
2008-10-23 11:08 . 2008-11-13 21:23 <REP> d-------- c:\documents and settings\All Users\Application Data\Microsoft Help
2008-10-23 11:07 . 2008-10-23 11:07 <REP> dr-h----- C:\MSOCache
2008-10-23 11:02 . 2008-10-23 11:04 <REP> d-------- c:\documents and settings\All Users\Application Data\WinZip
2008-10-23 10:53 . 2008-10-23 10:53 <REP> d-------- c:\program files\Free iPod Video Converter
2008-10-23 10:53 . 2004-05-25 16:06 417,792 --a------ c:\windows\system32\ac3filter.ax
2008-10-23 10:53 . 2005-02-27 20:48 356,352 --a------ c:\windows\system32\RealMediaSplitter.ax
2008-10-23 10:53 . 2004-01-10 16:02 258,048 --a------ c:\windows\system32\GplMpgDec.ax
2008-10-21 18:04 . 2008-10-22 15:16 <REP> d-------- c:\documents and settings\Propriétaire\Application Data\dvdcss
2008-10-21 17:50 . 2008-10-31 13:00 116 --a------ c:\windows\NeroDigital.ini
2008-10-21 17:39 . 2008-11-10 16:30 <REP> d-------- c:\program files\Fichiers communs\Nero
2008-10-21 17:34 . 2008-11-10 14:26 <REP> d-------- c:\program files\Ahead
2008-10-21 16:17 . 2008-10-22 15:34 <REP> d-------- c:\documents and settings\All Users\Application Data\DVD Shrink
2008-10-21 16:16 . 2008-10-21 16:16 <REP> d-------- c:\program files\DVD Shrink
2008-10-21 16:02 . 2007-06-27 08:31 1,734,996 --a------ c:\program files\free-ipod-video-converter_free_ipod_video_converter_1.32_anglais_18827.exe
2008-10-21 14:42 . 2008-10-21 14:42 <REP> d-------- c:\documents and settings\Propriétaire\Application Data\vlc
2008-10-21 14:30 . 2008-10-21 14:30 <REP> d-------- c:\program files\VideoLAN
2008-10-21 13:30 . 2008-10-21 13:31 <REP> d-------- c:\program files\Office 2007 Pro Edition _ Lyes dz

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-11-19 16:42 --------- d-----w c:\program files\Atheros
2008-11-19 16:31 --------- d-----w c:\program files\IDETOOL
2008-11-19 15:42 --------- d-----w c:\program files\DirectX
2008-11-19 15:22 --------- d--h--w c:\program files\InstallShield Installation Information
2008-11-18 20:35 --------- d-----w c:\program files\ma-config.com
2008-11-18 20:35 --------- d-----w c:\documents and settings\All Users\Application Data\ma-config.com
2008-11-18 19:46 20,152 ----a-w c:\windows\system32\drivers\INFCACHE.1
2008-11-16 13:03 --------- d-----w c:\program files\Java
2008-10-30 08:51 51,072 ----a-w c:\windows\system32\drivers\fsdfw.sys
2008-10-30 08:51 30,016 ----a-w c:\windows\system32\drivers\fsndis5.sys
2008-10-23 09:00 --------- d-----w c:\program files\Microsoft Silverlight
2008-10-21 13:31 --------- d-----w c:\documents and settings\Propriétaire\Application Data\Apple Computer
2008-10-20 16:00 --------- d-----w c:\documents and settings\Propriétaire\Application Data\Image Zone Express
2008-10-20 08:28 --------- d-----w c:\program files\BitComet
2008-10-12 16:48 --------- d-----w c:\program files\Fichiers communs\InstallShield
2008-10-12 16:32 --------- d-----w c:\program files\Windows Installer Clean Up
2008-10-12 16:31 --------- d-----w c:\program files\MSECACHE
2008-10-12 16:30 359,656 ----a-w c:\program files\msicuu2.exe
2008-10-12 15:38 --------- d-----w c:\program files\Microsoft CAPICOM 2.1.0.2
2008-10-10 18:33 --------- d-----w c:\program files\Fichiers communs\Labtec
2008-10-10 18:31 --------- d-----w c:\program files\Fichiers communs\LogiShrd
2008-10-10 18:30 --------- d-----w c:\program files\Labtec
2008-10-09 14:40 --------- d-----w c:\documents and settings\Propriétaire\Application Data\HP
2008-10-08 17:42 1,495,112 ----a-w c:\program files\install_flash_player.exe
2008-10-07 17:52 --------- d-----w c:\program files\Windows Desktop Search
2008-10-07 17:31 --------- d-----w c:\program files\MSXML 4.0
2008-10-07 17:22 --------- d-----w c:\documents and settings\All Users\Application Data\Messenger Plus!
2008-10-07 17:20 --------- d-----w c:\program files\Windows Media Connect 2
2008-10-07 15:03 --------- d-----w c:\program files\NEW DRIVERS
2008-10-07 14:42 --------- d-----w c:\program files\S3
2008-10-07 14:30 --------- d-----w c:\program files\Messenger Plus! Live
2008-10-07 14:24 --------- d-----w c:\program files\Windows Live
2008-10-07 14:19 --------- dcsh--w c:\program files\Fichiers communs\WindowsLiveInstaller
2008-10-07 14:17 --------- d-----w c:\documents and settings\All Users\Application Data\WLInstaller
2008-10-07 14:15 --------- d-----w c:\program files\iTunes
2008-10-07 14:15 --------- d-----w c:\documents and settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-10-07 14:14 --------- d-----w c:\program files\QuickTime
2008-10-07 14:14 --------- d-----w c:\program files\iPod
2008-10-07 14:14 --------- d-----w c:\program files\Bonjour
2008-10-07 14:14 --------- d-----w c:\documents and settings\All Users\Application Data\Apple Computer
2008-10-07 14:12 --------- d-----w c:\program files\Fichiers communs\Apple
2008-10-07 14:11 --------- d-----w c:\program files\Apple Software Update
2008-10-07 14:09 --------- d-----w c:\documents and settings\All Users\Application Data\Apple
2008-10-07 14:07 --------- d-----w c:\program files\VIA
2008-10-07 12:58 67,167,528 ----a-w c:\program files\iTunes801Setup.exe
2008-10-06 19:27 --------- d-----w c:\program files\Orange
2008-10-06 19:24 25,752,376 ----a-w c:\program files\wmp11-windowsxp-x86-enu.exe
2008-10-06 19:22 --------- d-----w c:\program files\Fichiers communs\France Telecom
2008-10-06 19:21 --------- d-----w c:\documents and settings\Propriétaire\Application Data\F-Secure
2008-10-06 19:19 --------- d-----w c:\program files\SAGEM
2008-10-06 19:19 --------- d-----w c:\documents and settings\Propriétaire\Application Data\InstallShield
2008-10-06 19:18 --------- d-----w c:\program files\Securitoo
2008-10-06 17:35 4,865,872 ----a-w c:\program files\MsgPlusLive-470.exe
2008-10-06 17:29 --------- d-----w c:\documents and settings\All Users\Application Data\F-Secure
2008-10-06 17:27 2,402,832 ----a-w c:\program files\WLinstaller.exe
2008-10-06 17:27 14,648,672 ----a-w c:\program files\winzip120.exe
2008-10-06 17:27 --------- d-----w c:\documents and settings\All Users\Application Data\fssg
2008-10-06 17:25 69,235,448 ----a-w c:\program files\orange_avfw_513.exe
2008-10-06 16:43 1,234,120 ----a-w c:\program files\wrar380.exe
2008-10-06 16:41 --------- d-----w c:\program files\CCleaner
2008-10-06 16:38 1,885,208 ----a-w c:\program files\flashplayer10_install_activex_091508.exe
2008-10-06 16:36 2,934,168 ----a-w c:\program files\ccsetup212.exe
2008-10-06 16:36 1,014,272 ----a-w c:\program files\wlsetup-web.exe
2008-10-06 16:34 5,318,816 ----a-w c:\program files\bitcomet_setup.exe
2008-10-06 16:31 --------- d-----w c:\program files\Google
2008-10-06 16:30 166,560 ----a-w c:\program files\GoogleToolbarInstaller_download_signed.exe
2008-10-06 15:47 --------- d-----w c:\program files\DRIVERS
2008-10-06 15:46 9,388 ----a-w c:\windows\system32\drivers\iaStor.PNF
2008-10-06 15:46 7,280 ----a-w c:\windows\system32\drivers\viamraid.PNF
2008-10-06 15:46 63,240 ----a-w c:\windows\system32\drivers\Si3112r.PNF
2008-10-06 15:46 6,984 ----a-w c:\windows\system32\drivers\SiSRaid.PNF
2008-10-06 15:46 12,432 ----a-w c:\windows\system32\drivers\adpu320.PNF
2008-10-06 15:46 12,204 ----a-w c:\windows\system32\drivers\nvraid.PNF
2008-10-06 15:46 10,828 ----a-w c:\windows\system32\drivers\iaAHCI.PNF
2008-10-06 15:39 --------- d-----w c:\program files\HP
2008-10-06 15:39 --------- d-----w c:\program files\Fichiers communs\HP
2008-10-06 15:39 --------- d-----w c:\documents and settings\All Users\Application Data\HP
2008-10-06 15:36 --------- d-----w c:\program files\Hewlett-Packard
2008-10-06 15:35 --------- d-----w c:\program files\Fichiers communs\Hewlett-Packard
2008-10-06 15:17 --------- d-----w c:\program files\microsoft frontpage
2008-10-06 15:15 --------- d-----w c:\program files\Fichiers communs\Java
2008-10-06 15:10 --------- d-----w c:\program files\Services en ligne
2008-10-05 16:31 498 ----a-w c:\program files\DisparitionCD.inf
2008-10-01 11:01 32,000 ----a-w c:\windows\system32\drivers\usbaapl.sys
2008-09-30 15:43 1,286,152 ----a-w c:\windows\system32\msxml4.dll
2008-09-24 09:40 4,122,368 ----a-r c:\windows\system32\drivers\alcxwdm.sys
2008-09-10 01:15 1,307,648 ----a-w c:\windows\system32\msxml6.dll
2008-09-04 04:02 730,368 ----a-w c:\windows\system32\oodsvct.exe
2008-09-04 04:02 1,295,616 ----a-w c:\windows\system32\oodag.exe
2008-09-04 04:01 2,524,416 ----a-w c:\windows\system32\oodtray.exe
2008-09-04 04:01 194,816 ----a-w c:\windows\system32\oodbs.exe
2008-09-04 03:58 9,984 ----a-w c:\windows\system32\oodbsrs.dll
2008-09-04 03:58 894,208 ----a-w c:\windows\system32\oodtrrs.dll
2008-09-04 03:58 8,448 ----a-w c:\windows\system32\oodagrs.dll
2008-09-04 03:58 15,616 ----a-w c:\windows\system32\oodagmg.dll
2008-08-30 03:20 15,104 ----a-w c:\windows\system32\ootmapi.dll
2008-08-29 08:18 87,336 ----a-w c:\windows\system32\dns-sd.exe
2008-08-29 07:53 61,440 ----a-w c:\windows\system32\dnssd.dll
2008-08-10 23:09 528,392 ----a-w c:\program files\DXSETUP.exe
2008-07-05 18:40 232,761,628 ----a-w c:\program files\Nero 8 Ultra Edition v8.3.2.1 [Multilanguage].rar
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-10-06 39408]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe" [2008-02-28 1828136]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-05 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"F-Secure Manager"="c:\program files\Orange\AntivirusFirewall\Common\FSM32.EXE" [2008-04-23 182936]
"F-Secure TNB"="c:\program files\Orange\AntivirusFirewall\FSGUI\TNBUtil.exe" [2008-04-23 744032]
"ACU"="c:\program files\Atheros\ACU.exe" [2005-11-25 307200]
"SystrayORAHSS"="c:\program files\Orange\Systray\SystrayApp.exe" [2007-09-25 94208]
"ORAHSSSessionManager"="c:\program files\Orange\SessionManager\SessionManager.exe" [2007-09-25 102400]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2008-09-06 413696]
"LogitechCommunicationsManager"="c:\program files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" [2007-03-06 488984]
"NeroFilterCheck"="c:\program files\Fichiers communs\Nero\Lib\NeroCheck.exe" [2008-02-28 570664]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-02-18 2221352]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-11-16 136600]
"VTTimer"="VTTimer.exe" [2006-09-21 c:\windows\system32\VTTimer.exe]
"VTTrayp"="VTtrayp.exe" [2006-09-28 c:\windows\system32\VTTrayp.exe]
"SoundMan"="SOUNDMAN.EXE" [2007-04-16 c:\windows\soundman.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-05 15360]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"tscuninstall"="c:\windows\system32\tscupgrd.exe" [2004-08-05 44544]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
IDETool.lnk - c:\program files\IDETOOL\IDETOOL.EXE [2008-10-07 352256]
NETGEAR WG311T Smart Wizard.lnk - c:\program files\NETGEAR\WG311T\wlancfg5.exe [2006-09-15 1503232]
NETGEAR WPN311 Smart Wizard.lnk - c:\program files\NETGEAR\WPN311\wlancfg5.exe [2006-12-04 1503232]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Winuy25.sys]
@="Driver"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^HP Digital Imaging Monitor.lnk]
path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^WinZip Quick Pick.lnk]
path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\WinZip Quick Pick.lnk
backup=c:\windows\pss\WinZip Quick Pick.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
--a------ 2004-08-05 13:00 15360 c:\windows\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
--a------ 2006-02-19 01:41 49152 c:\program files\HP\HP Software Update\hpwuSchd2.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2008-10-01 17:57 289576 c:\program files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
--a------ 2007-03-06 16:58 1060376 c:\program files\Labtec\WebCam10\WebCam10.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
--a------ 2008-09-04 05:01 2524416 c:\windows\system32\oodtray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
--a------ 2008-10-06 17:31 39408 c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"wscsvc"=2 (0x2)
"UPS"=3 (0x3)
"SharedAccess"=2 (0x2)
"seclogon"=2 (0x2)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"c:\\Program Files\\BitComet\\BitComet.exe"=
"c:\\Program Files\\Orange\\Connectivity\\ConnectivityManager.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"18409:TCP"= 18409:TCP:BitComet 18409 TCP
"18409:UDP"= 18409:UDP:BitComet 18409 UDP

R0 FSFW;F-Secure Firewall Driver;c:\windows\system32\drivers\fsdfw.sys [2008-10-06 51072]
R0 viadsk;viadsk;c:\windows\system32\DRIVERS\viadsk.sys [2008-10-07 56576]
R0 videX32;videX32;c:\windows\system32\DRIVERS\videX32.sys [2008-10-07 9216]
R1 F-Secure HIPS;F-Secure HIPS;\??\c:\program files\Orange\AntivirusFirewall\HIPS\fshs.sys [2008-10-06 41184]
R3 F-Secure Gatekeeper;F-Secure Gatekeeper;\??\c:\program files\Orange\AntivirusFirewall\Anti-Virus\minifilter\fsgk.sys [2008-10-06 62048]
R3 WSIMD;wsimd Service;c:\windows\system32\DRIVERS\wsimd.sys [2008-10-06 54432]
S3 maconfservice;Ma-Config Service;"c:\program files\ma-config.com\maconfservice.exe" [2008-11-17 195752]
S3 PCIENUM;PCIENUM;\??\c:\program files\IDETOOL\pcienum.sys [2008-10-07 281676]
S3 qcusbmdm;Qualcomm Proprietary USB Driver (PID 3197);c:\windows\system32\DRIVERS\qcusbmdm.sys [2008-10-28 59632]
S3 qcusbser;Qualcomm Diagnostic Port 3197;c:\windows\system32\DRIVERS\qcusbser.sys [2008-10-28 59632]
S3 Winuy25;Winuy25;\??\c:\windows\System32\drivers\Winuy25.sys []
S4 F-Secure Filter;F-Secure File System Filter;\??\c:\program files\Orange\AntivirusFirewall\Anti-Virus\Win2K\FSfilter.sys [2008-10-06 39776]
S4 F-Secure Recognizer;F-Secure File System Recognizer;\??\c:\program files\Orange\AntivirusFirewall\Anti-Virus\Win2K\FSrec.sys [2008-10-06 25184]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6895251c-9f6a-11dd-8474-00c0a8b11f64}]
\Shell\AutoRun\command - 1u0o8bnq.cmd
\Shell\explore\Command - 1u0o8bnq.cmd
\Shell\open\Command - 1u0o8bnq.cmd
.
Contenu du dossier 'Tâches planifiées'

2008-11-18 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

2008-11-21 c:\windows\Tasks\Scheduled scanning task.job
- c:\progra~1\Orange\ANTIVI~1\ANTI-V~1\fsav.exe [2008-04-23 17:11]
.
- - - - ORPHELINS SUPPRIMES - - - -

HKLM-Run-avgnt - c:\program files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
MSConfigStartUp-NeroFilterCheck - c:\windows\system32\NeroCheck.exe


.
------- Examen supplémentaire -------
.
FireFox -: Profile - c:\documents and settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\k9uvb9u1.default\
FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF -: plugin - c:\documents and settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\k9uvb9u1.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}\plugins\nphardwaredetection.dll
FF -: plugin - c:\program files\iTunes\Mozilla Plugins\npitunes.dll
FF -: plugin - c:\program files\Java\jre6\bin\new_plugin\npdeploytk.dll
FF -: plugin - c:\program files\Java\jre6\bin\new_plugin\npjp2.dll
FF -: plugin - c:\program files\ma-config.com\nphardwaredetection.dll
FF -: plugin - c:\program files\Microsoft Silverlight\2.0.30523.8\npctrl.dll
FF -: plugin - c:\program files\Microsoft Silverlight\2.0.31005.0\npctrl.1.0.30716.0.dll
FF -: plugin - c:\program files\Microsoft Silverlight\2.0.31005.0\npctrl.dll
FF -: plugin - c:\program files\Mozilla Firefox\plugins\npdeploytk.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-21 20:18:48
Windows 5.1.2600 Service Pack 2 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet006\Services\TDSSserv.sys]
"imagepath"="\systemroot\system32\drivers\TDSSrvdc.sys"
.
Heure de fin: 2008-11-21 20:24:18
ComboFix-quarantined-files.txt 2008-11-21 19:23:58

Avant-CF: 12,131,594,240 octets libres
Après-CF: 12,120,641,536 octets libres

391 --- E O F --- 2008-11-13 20:23:57
0
Réponse 83 / 121
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 1
22 nov. 2008 à 14:55
ComboFix 08-11-18.A2 - Propriétaire 2008-11-23 10:11:36.3 - NTFSx86 MINIMAL
Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.275 [GMT 1:00]
Lancé depuis: c:\documents and settings\Propriétaire\Bureau\ComboFix.exe
Commutateurs utilisés :: c:\documents and settings\Propriétaire\Bureau\CFScript.txt

[COLOR=RED][B]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/B][/COLOR]
.

((((((((((((((((((((((((((((( Fichiers créés du 2008-10-23 au 2008-11-23 ))))))))))))))))))))))))))))))))))))
.

2008-11-22 23:59 . 2008-11-23 00:08 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware
2008-11-22 23:59 . 2008-11-22 23:59 <REP> d-------- c:\documents and settings\Propriétaire\Application Data\Malwarebytes
2008-11-22 23:59 . 2008-11-22 23:59 <REP> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes
2008-11-22 23:59 . 2008-10-22 16:10 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2008-11-22 23:59 . 2008-10-22 16:10 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2008-11-22 23:49 . 2006-06-29 13:07 14,048 --------- c:\windows\system32\spmsg2.dll
2008-11-22 23:04 . 2008-11-22 23:47 1,393 --a------ c:\windows\imsins.BAK
2008-11-22 22:33 . 2008-10-16 14:08 27,672 --a------ c:\windows\system32\wuapi.dll.mui
2008-11-21 21:30 . 2008-11-21 21:44 <REP> d-------- c:\windows\system32\CatRoot_bak
2008-11-21 21:26 . 2008-10-03 18:12 6,066,176 -----c--- c:\windows\system32\dllcache\ieframe.dll
2008-11-21 21:26 . 2007-04-17 10:32 2,455,488 -----c--- c:\windows\system32\dllcache\ieapfltr.dat
2008-11-21 21:26 . 2007-03-08 06:10 1,048,576 -----c--- c:\windows\system32\dllcache\ieframe.dll.mui
2008-11-21 21:26 . 2008-08-26 09:11 459,264 -----c--- c:\windows\system32\dllcache\msfeeds.dll
2008-11-21 21:26 . 2008-08-26 09:11 383,488 -----c--- c:\windows\system32\dllcache\ieapfltr.dll
2008-11-21 21:26 . 2008-08-26 09:11 267,776 -----c--- c:\windows\system32\dllcache\iertutil.dll
2008-11-21 21:26 . 2008-08-26 09:11 63,488 -----c--- c:\windows\system32\dllcache\icardie.dll
2008-11-21 21:26 . 2008-08-26 09:11 52,224 -----c--- c:\windows\system32\dllcache\msfeedsbs.dll
2008-11-21 21:25 . 2008-08-14 14:39 2,188,032 -----c--- c:\windows\system32\dllcache\ntoskrnl.exe
2008-11-21 21:25 . 2008-08-14 14:39 2,144,768 -----c--- c:\windows\system32\dllcache\ntkrnlmp.exe
2008-11-21 21:25 . 2008-08-14 14:39 2,065,024 -----c--- c:\windows\system32\dllcache\ntkrnlpa.exe
2008-11-21 21:25 . 2008-08-14 14:39 2,022,912 -----c--- c:\windows\system32\dllcache\ntkrpamp.exe
2008-11-21 21:14 . 2008-06-14 18:59 272,768 -----c--- c:\windows\system32\dllcache\bthport.sys
2008-11-21 19:52 . 2008-11-21 19:52 664 --a------ c:\windows\system32\d3d9caps.dat
2008-11-21 18:24 . 2008-11-21 18:24 <REP> d-------- C:\VundoFix Backups
2008-11-21 18:08 . 2008-11-21 18:08 <REP> d-------- C:\rsit
2008-11-20 22:45 . 2008-11-20 22:45 <REP> d-------- c:\windows\ERUNT
2008-11-20 21:18 . 2008-11-20 21:30 <REP> d-------- c:\program files\Navilog1
2008-11-20 19:17 . 2008-11-21 17:46 <REP> d-------- c:\program files\FindyKill
2008-11-20 17:01 . 2008-11-20 17:24 <REP> d-------- C:\ToolBar SD
2008-11-20 16:40 . 2008-11-23 00:02 4,004 --a------ c:\windows\system32\PerfStringBackup.TMP
2008-11-19 16:22 . 2008-11-19 16:22 <REP> d-------- C:\OEMSettings
2008-11-19 16:09 . 2008-11-19 16:09 17,801 --a------ c:\windows\system32\drivers\AegisP.sys
2008-11-19 16:08 . 2008-11-19 16:21 <REP> d-------- c:\program files\NETGEAR
2008-11-19 15:56 . 2008-11-19 15:56 <REP> d-------- c:\windows\Downloaded Installations
2008-11-19 14:32 . 2008-11-19 14:32 268 --ah----- C:\sqmdata00.sqm
2008-11-19 14:32 . 2008-11-19 14:32 244 --ah----- C:\sqmnoopt00.sqm
2008-11-18 21:53 . 2008-11-18 21:53 <REP> d-------- c:\program files\Realtek AC97
2008-11-18 21:21 . 2008-11-19 17:00 <REP> d-------- C:\Driver Download
2008-11-18 21:08 . 2004-08-05 13:00 28,288 --a--c--- c:\windows\system32\dllcache\xjis.nls
2008-11-18 21:06 . 2004-08-05 13:00 1,875,968 --a--c--- c:\windows\system32\dllcache\msir3jp.lex
2008-11-18 21:05 . 2004-08-05 13:00 13,463,552 --a--c--- c:\windows\system32\dllcache\hwxjpn.dll
2008-11-18 21:04 . 2004-08-05 13:00 1,677,824 --a--c--- c:\windows\system32\dllcache\chsbrkr.dll
2008-11-18 21:03 . 2004-05-13 00:39 876,653 --a--c--- c:\windows\system32\dllcache\fp4awel.dll
2008-11-18 20:57 . 2008-11-18 20:57 749 -rah----- c:\windows\WindowsShell.Manifest
2008-11-18 20:57 . 2008-11-18 20:57 749 -rah----- c:\windows\system32\wuaucpl.cpl.manifest
2008-11-18 20:57 . 2008-11-18 20:57 749 -rah----- c:\windows\system32\sapi.cpl.manifest
2008-11-18 20:57 . 2008-11-18 20:57 749 -rah----- c:\windows\system32\ncpa.cpl.manifest
2008-11-18 20:57 . 2008-11-18 20:57 488 -rah----- c:\windows\system32\logonui.exe.manifest
2008-11-18 20:56 . 2004-08-05 13:00 16,384 --a--c--- c:\windows\system32\dllcache\isignup.exe
2008-11-18 20:55 . 2004-08-05 13:00 218,624 --a--c--- c:\windows\system32\dllcache\icwconn1.exe
2008-11-18 20:55 . 2004-08-05 13:00 86,016 --a--c--- c:\windows\system32\dllcache\icwconn2.exe
2008-11-18 20:55 . 2004-08-05 13:00 32,768 --a--c--- c:\windows\system32\dllcache\icwdl.dll
2008-11-18 20:55 . 2004-08-05 13:00 20,480 --a--c--- c:\windows\system32\dllcache\inetwiz.exe
2008-11-18 20:42 . 2008-11-18 20:42 <REP> d---s---- c:\windows\system32\config\systemprofile\Historique
2008-11-18 18:11 . 2008-11-18 18:11 <REP> d-------- c:\documents and settings\All Users\Application Data\AntiVir PersonalEdition Classic
2008-11-18 18:06 . 2008-11-18 18:06 <REP> d-------- c:\program files\Avira
2008-11-18 18:04 . 2008-11-18 18:04 932 --a------ c:\windows\setupapi.old
2008-11-18 16:39 . 2007-09-02 20:56 1,686,016 --a------ c:\windows\system32\clinetsuitex6.ocx
2008-11-18 16:39 . 2004-03-09 16:45 662,288 --a------ c:\windows\system32\MSCOMCT2.OCX
2008-11-18 16:39 . 2004-06-14 14:56 427,864 --a------ c:\windows\system32\XceedZip.dll
2008-11-16 14:09 . 2008-11-16 14:09 <REP> d-------- c:\program files\Sun
2008-11-16 14:08 . 2008-11-16 14:04 73,728 --a------ c:\windows\system32\javacpl.cpl
2008-11-16 13:18 . 2008-11-16 13:42 16,307,608 --a------ c:\program files\jre-6u10-windows-i586-p-s.exe
2008-11-16 13:18 . 2008-11-16 13:18 1,886,800 --a------ c:\program files\install_flash_player_10_active_x.exe
2008-11-12 12:57 . 2008-11-16 14:04 410,976 --a------ c:\windows\system32\deploytk.dll
2008-11-11 17:16 . 2008-11-11 17:16 <REP> d-------- c:\program files\WinZip.Pro.v12.0.8252{H33T}{JOHNCANADUDE}
2008-11-11 17:15 . 2008-11-11 17:16 <REP> d-------- c:\program files\WinRAR 3.71 Final French
2008-11-10 16:44 . 2008-11-10 16:44 <REP> d-------- c:\program files\NeroInstall.bak
2008-11-10 16:34 . 2008-11-10 16:34 <REP> d-------- c:\documents and settings\Propriétaire\Application Data\Nero
2008-11-10 16:23 . 2008-11-10 16:23 <REP> d-------- c:\program files\Nero
2008-11-10 16:23 . 2008-11-10 16:23 <REP> d-------- c:\documents and settings\All Users\Application Data\Nero
2008-11-09 11:17 . 2008-11-09 11:20 2,955,128 --a------ c:\program files\ccsetup213.exe
2008-11-07 19:35 . 2008-11-07 19:35 25,129,080 --a------ c:\program files\antivir_workstation_winu_en_h.exe
2008-11-07 17:50 . 2008-11-07 17:52 6,113,439 --a------ c:\program files\pci_filerecovery.exe
2008-11-07 17:42 . 2008-11-07 17:43 2,331,336 --a------ c:\program files\recuva_recuva_1.20.361_francais_31279.exe
2008-11-07 17:40 . 2008-11-07 17:43 7,261,864 --a------ c:\program files\RecoverMyFiles-Setup.exe
2008-11-05 18:18 . 2008-11-05 18:40 16,735,888 --a------ c:\program files\wg311t_5_0_setup.exe
2008-11-05 17:10 . 2008-11-18 19:24 <REP> d-------- c:\windows\Drivers
2008-11-05 17:10 . 2002-12-24 13:52 54,016 --a------ c:\windows\system32\drivers\ousb2hub.sys
2008-11-05 17:10 . 2002-12-24 13:52 39,040 --a------ c:\windows\system32\drivers\ousbehci.sys
2008-11-04 23:28 . 2008-11-04 23:44 15,689,944 --a------ c:\documents and settings\wpn311_2_0_setup.exe
2008-11-04 23:27 . 2008-11-04 23:44 16,735,888 --a------ c:\documents and settings\wg311t_5_0_setup.exe
2008-11-04 23:24 . 2008-11-04 23:26 1,435,845 --a------ c:\documents and settings\VIA_Hyperion 4in1_v456v.zip
2008-11-04 23:23 . 2008-11-04 23:34 13,301,758 --a------ c:\documents and settings\via_hyperionpro_v521a.zip
2008-11-04 23:21 . 2008-11-04 23:26 461,960 --a------ c:\documents and settings\MANUAL_CMP-USB2PCC10.zip
2008-11-04 23:20 . 2008-11-04 23:33 15,243,539 --a------ c:\documents and settings\VIA_USB2_V270p1-L-M.zip
2008-10-31 13:38 . 2008-10-31 13:38 <REP> d-------- c:\program files\Samsung
2008-10-28 14:01 . 2008-05-14 17:12 <REP> d-------- C:\META-INF
2008-10-28 13:35 . 2008-10-06 18:01 <REP> d--h----- c:\documents and settings\Administrateur\Voisinage réseau
2008-10-28 13:35 . 2008-10-06 18:01 <REP> d--h----- c:\documents and settings\Administrateur\Voisinage d'impression
2008-10-28 13:35 . 2008-10-06 16:07 <REP> d--h----- c:\documents and settings\Administrateur\Modèles
2008-10-28 13:35 . 2008-10-06 18:01 <REP> d-------- c:\documents and settings\Administrateur\Mes documents
2008-10-28 13:35 . 2008-10-06 18:01 <REP> dr------- c:\documents and settings\Administrateur\Menu Démarrer
2008-10-28 13:35 . 2008-10-06 18:01 <REP> d-------- c:\documents and settings\Administrateur\Favoris
2008-10-28 13:35 . 2008-10-06 16:17 <REP> d-------- c:\documents and settings\Administrateur\Bureau
2008-10-28 13:35 . 2008-10-28 13:35 <REP> d-------- c:\documents and settings\Administrateur
2008-10-28 12:19 . 2003-03-11 00:12 59,632 -ra------ c:\windows\system32\drivers\qcusbser.sys
2008-10-28 11:41 . 2003-03-11 00:12 59,632 -ra------ c:\windows\system32\drivers\qcusbmdm.sys
2008-10-25 19:34 . 2008-10-31 14:12 <REP> d-------- c:\documents and settings\Propriétaire\Application Data\Samsung
2008-10-25 19:30 . 2008-10-25 19:30 <REP> d-------- c:\program files\Fichiers communs\Adobe
2008-10-25 19:22 . 2006-05-03 21:53 174,592 --a------ c:\windows\system32\framedyn.dll
2008-10-25 19:22 . 2007-07-03 15:58 106,792 --a------ c:\windows\system32\drivers\sscdmdm.sys
2008-10-25 19:22 . 2007-07-03 15:54 80,552 --a------ c:\windows\system32\drivers\sscdbus.sys
2008-10-25 19:22 . 2007-07-03 15:57 11,944 --a------ c:\windows\system32\drivers\sscdmdfl.sys
2008-10-25 19:22 . 2007-07-03 16:00 9,256 --a------ c:\windows\system32\drivers\sscdwhnt.sys
2008-10-25 19:22 . 2007-07-03 16:00 9,256 --a------ c:\windows\system32\drivers\sscdwh.sys
2008-10-25 19:22 . 2007-07-03 15:56 9,256 --a------ c:\windows\system32\drivers\sscdcmnt.sys
2008-10-25 19:22 . 2007-07-03 15:56 9,256 --a------ c:\windows\system32\drivers\sscdcm.sys
2008-10-25 19:21 . 2008-10-25 19:22 <REP> d-------- c:\windows\system32\Samsung_USB_Drivers
2008-10-25 19:21 . 2005-08-28 20:51 766 --a------ c:\windows\system32\Uninstall.ico
2008-10-25 19:20 . 2008-10-31 14:09 5,632 --a------ c:\windows\system32\drivers\StarOpen.sys
2008-10-25 11:53 . 2008-11-23 10:08 205,597 --a------ c:\windows\system32\oodbs.lor
2008-10-25 10:35 . 2008-10-25 10:35 <REP> d-------- c:\program files\OO Software
2008-10-23 15:04 . 2008-10-25 11:30 <REP> d-------- c:\windows\system32\oodag
2008-10-23 15:02 . 2008-10-23 15:02 0 --a------ c:\windows\OODCNT.INI
2008-10-23 11:21 . 2008-10-23 11:21 <REP> d-------- c:\program files\MSBuild
2008-10-23 11:21 . 2008-10-23 11:21 <REP> d-------- c:\program files\Microsoft Works
2008-10-23 11:18 . 2008-10-23 11:18 <REP> d-------- c:\program files\Microsoft.NET
2008-10-23 11:14 . 2008-10-23 11:14 <REP> d-------- c:\program files\Microsoft Visual Studio 8
2008-10-23 11:12 . 2008-10-23 11:20 <REP> d--h----- c:\windows\ShellNew
2008-10-23 11:08 . 2008-11-13 21:23 <REP> d-------- c:\documents and settings\All Users\Application Data\Microsoft Help
2008-10-23 11:07 . 2008-10-23 11:07 <REP> dr-h----- C:\MSOCache
2008-10-23 11:02 . 2008-10-23 11:04 <REP> d-------- c:\documents and settings\All Users\Application Data\WinZip
2008-10-23 10:53 . 2008-10-23 10:53 <REP> d-------- c:\program files\Free iPod Video Converter
2008-10-23 10:53 . 2004-05-25 16:06 417,792 --a------ c:\windows\system32\ac3filter.ax

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-11-19 16:42 --------- d-----w c:\program files\Atheros
2008-11-19 16:31 --------- d-----w c:\program files\IDETOOL
2008-11-19 15:42 --------- d-----w c:\program files\DirectX
2008-11-19 15:22 --------- d--h--w c:\program files\InstallShield Installation Information
2008-11-18 20:35 --------- d-----w c:\program files\ma-config.com
2008-11-18 20:35 --------- d-----w c:\documents and settings\All Users\Application Data\ma-config.com
2008-11-18 19:46 20,152 ----a-w c:\windows\system32\drivers\INFCACHE.1
2008-11-16 13:03 --------- d-----w c:\program files\Java
2008-11-10 15:30 --------- d-----w c:\program files\Fichiers communs\Nero
2008-11-10 13:26 --------- d-----w c:\program files\Ahead
2008-10-30 08:51 51,072 ----a-w c:\windows\system32\drivers\fsdfw.sys
2008-10-30 08:51 30,016 ----a-w c:\windows\system32\drivers\fsndis5.sys
2008-10-24 11:10 453,632 ----a-w c:\windows\system32\drivers\mrxsmb.sys
2008-10-23 09:00 --------- d-----w c:\program files\Microsoft Silverlight
2008-10-22 14:34 --------- d-----w c:\documents and settings\All Users\Application Data\DVD Shrink
2008-10-22 14:16 --------- d-----w c:\documents and settings\Propriétaire\Application Data\dvdcss
2008-10-21 15:16 --------- d-----w c:\program files\DVD Shrink
2008-10-21 13:42 --------- d-----w c:\documents and settings\Propriétaire\Application Data\vlc
2008-10-21 13:31 --------- d-----w c:\documents and settings\Propriétaire\Application Data\Apple Computer
2008-10-21 13:30 --------- d-----w c:\program files\VideoLAN
2008-10-21 12:31 --------- d-----w c:\program files\Office 2007 Pro Edition _ Lyes dz
2008-10-20 16:00 --------- d-----w c:\documents and settings\Propriétaire\Application Data\Image Zone Express
2008-10-20 08:28 --------- d-----w c:\program files\BitComet
2008-10-16 13:13 1,809,944 ----a-w c:\windows\system32\wuaueng.dll
2008-10-16 13:12 561,688 ----a-w c:\windows\system32\wuapi.dll
2008-10-16 13:12 323,608 ----a-w c:\windows\system32\wucltui.dll
2008-10-16 13:09 92,696 ----a-w c:\windows\system32\cdm.dll
2008-10-16 13:09 51,224 ----a-w c:\windows\system32\wuauclt.exe
2008-10-16 13:09 43,544 ----a-w c:\windows\system32\wups2.dll
2008-10-16 13:08 34,328 ----a-w c:\windows\system32\wups.dll
2008-10-12 16:48 --------- d-----w c:\program files\Fichiers communs\InstallShield
2008-10-12 16:32 --------- d-----w c:\program files\Windows Installer Clean Up
2008-10-12 16:31 --------- d-----w c:\program files\MSECACHE
2008-10-12 16:30 359,656 ----a-w c:\program files\msicuu2.exe
2008-10-12 15:38 --------- d-----w c:\program files\Microsoft CAPICOM 2.1.0.2
2008-10-10 18:33 --------- d-----w c:\program files\Fichiers communs\Labtec
2008-10-10 18:31 --------- d-----w c:\program files\Fichiers communs\LogiShrd
2008-10-10 18:30 --------- d-----w c:\program files\Labtec
2008-10-09 14:40 --------- d-----w c:\documents and settings\Propriétaire\Application Data\HP
2008-10-08 17:42 1,495,112 ----a-w c:\program files\install_flash_player.exe
2008-10-07 17:52 --------- d-----w c:\program files\Windows Desktop Search
2008-10-07 17:31 --------- d-----w c:\program files\MSXML 4.0
2008-10-07 17:22 --------- d-----w c:\documents and settings\All Users\Application Data\Messenger Plus!
2008-10-07 17:20 --------- d-----w c:\program files\Windows Media Connect 2
2008-10-07 15:03 --------- d-----w c:\program files\NEW DRIVERS
2008-10-07 14:42 --------- d-----w c:\program files\S3
2008-10-07 14:30 --------- d-----w c:\program files\Messenger Plus! Live
2008-10-07 14:24 --------- d-----w c:\program files\Windows Live
2008-10-07 14:19 --------- dcsh--w c:\program files\Fichiers communs\WindowsLiveInstaller
2008-10-07 14:17 --------- d-----w c:\documents and settings\All Users\Application Data\WLInstaller
2008-10-07 14:15 --------- d-----w c:\program files\iTunes
2008-10-07 14:15 --------- d-----w c:\documents and settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-10-07 14:14 --------- d-----w c:\program files\QuickTime
2008-10-07 14:14 --------- d-----w c:\program files\iPod
2008-10-07 14:14 --------- d-----w c:\program files\Bonjour
2008-10-07 14:14 --------- d-----w c:\documents and settings\All Users\Application Data\Apple Computer
2008-10-07 14:12 --------- d-----w c:\program files\Fichiers communs\Apple
2008-10-07 14:11 --------- d-----w c:\program files\Apple Software Update
2008-10-07 14:09 --------- d-----w c:\documents and settings\All Users\Application Data\Apple
2008-10-07 14:07 --------- d-----w c:\program files\VIA
2008-10-07 12:58 67,167,528 ----a-w c:\program files\iTunes801Setup.exe
2008-10-06 19:27 --------- d-----w c:\program files\Orange
2008-10-06 19:24 25,752,376 ----a-w c:\program files\wmp11-windowsxp-x86-enu.exe
2008-10-06 19:22 --------- d-----w c:\program files\Fichiers communs\France Telecom
2008-10-06 19:21 --------- d-----w c:\documents and settings\Propriétaire\Application Data\F-Secure
2008-10-06 19:19 --------- d-----w c:\program files\SAGEM
2008-10-06 19:19 --------- d-----w c:\documents and settings\Propriétaire\Application Data\InstallShield
2008-10-06 19:18 --------- d-----w c:\program files\Securitoo
2008-10-06 17:35 4,865,872 ----a-w c:\program files\MsgPlusLive-470.exe
2008-10-06 17:29 --------- d-----w c:\documents and settings\All Users\Application Data\F-Secure
2008-10-06 17:27 2,402,832 ----a-w c:\program files\WLinstaller.exe
2008-10-06 17:27 14,648,672 ----a-w c:\program files\winzip120.exe
2008-10-06 17:27 --------- d-----w c:\documents and settings\All Users\Application Data\fssg
2008-10-06 17:25 69,235,448 ----a-w c:\program files\orange_avfw_513.exe
2008-10-06 16:43 1,234,120 ----a-w c:\program files\wrar380.exe
2008-10-06 16:41 --------- d-----w c:\program files\CCleaner
2008-10-06 16:38 1,885,208 ----a-w c:\program files\flashplayer10_install_activex_091508.exe
2008-10-06 16:36 2,934,168 ----a-w c:\program files\ccsetup212.exe
2008-10-06 16:36 1,014,272 ----a-w c:\program files\wlsetup-web.exe
2008-10-06 16:34 5,318,816 ----a-w c:\program files\bitcomet_setup.exe
2008-10-06 16:31 --------- d-----w c:\program files\Google
2008-10-06 16:30 166,560 ----a-w c:\program files\GoogleToolbarInstaller_download_signed.exe
2008-10-06 15:47 --------- d-----w c:\program files\DRIVERS
2008-10-06 15:46 9,388 ----a-w c:\windows\system32\drivers\iaStor.PNF
2008-10-06 15:46 7,280 ----a-w c:\windows\system32\drivers\viamraid.PNF
2008-10-06 15:46 63,240 ----a-w c:\windows\system32\drivers\Si3112r.PNF
2008-10-06 15:46 6,984 ----a-w c:\windows\system32\drivers\SiSRaid.PNF
2008-10-06 15:46 12,432 ----a-w c:\windows\system32\drivers\adpu320.PNF
2008-10-06 15:46 12,204 ----a-w c:\windows\system32\drivers\nvraid.PNF
2008-10-06 15:46 10,828 ----a-w c:\windows\system32\drivers\iaAHCI.PNF
2008-10-06 15:39 --------- d-----w c:\program files\HP
2008-10-06 15:39 --------- d-----w c:\program files\Fichiers communs\HP
2008-10-06 15:39 --------- d-----w c:\documents and settings\All Users\Application Data\HP
2008-10-06 15:36 --------- d-----w c:\program files\Hewlett-Packard
2008-10-06 15:35 --------- d-----w c:\program files\Fichiers communs\Hewlett-Packard
2008-10-06 15:17 --------- d-----w c:\program files\microsoft frontpage
2008-10-06 15:15 --------- d-----w c:\program files\Fichiers communs\Java
2008-10-06 15:10 --------- d-----w c:\program files\Services en ligne
2008-10-05 16:31 498 ----a-w c:\program files\DisparitionCD.inf
2008-10-01 11:01 32,000 ----a-w c:\windows\system32\drivers\usbaapl.sys
.

((((((((((((((((((((((((((((( snapshot@2008-11-21_20.23.01.07 )))))))))))))))))))))))))))))))))))))))))
.
- 2004-10-14 18:35:00 8,192 ----a-w c:\windows\$hf_mig$\KB885836\spmsg.dll
+ 2004-10-14 10:35:08 8,192 ----a-w c:\windows\$hf_mig$\KB885836\spmsg.dll
- 2004-10-14 18:36:11 172,032 ----a-w c:\windows\$hf_mig$\KB885836\spuninst.exe
+ 2004-10-14 10:36:22 172,032 ----a-w c:\windows\$hf_mig$\KB885836\spuninst.exe
- 2004-10-14 18:36:10 21,504 ----a-w c:\windows\$hf_mig$\KB885836\update\spcustom.dll
+ 2004-10-14 10:36:20 21,504 ----a-w c:\windows\$hf_mig$\KB885836\update\spcustom.dll
- 2004-10-14 18:35:00 666,624 ----a-w c:\windows\$hf_mig$\KB885836\update\update.exe
+ 2004-10-14 10:35:12 666,624 ----a-w c:\windows\$hf_mig$\KB885836\update\update.exe
+ 2006-11-27 15:18:34 539,136 ----a-w c:\windows\$hf_mig$\KB918118\SP2QFE\msftedit.dll
+ 2006-11-27 15:18:34 433,664 ----a-w c:\windows\$hf_mig$\KB918118\SP2QFE\riched20.dll
+ 2005-10-12 23:15:25 15,072 ----a-w c:\windows\$hf_mig$\KB918118\spmsg.dll
+ 2005-10-12 23:15:26 216,800 ----a-w c:\windows\$hf_mig$\KB918118\spuninst.exe
+ 2005-10-12 23:15:25 22,752 ----a-w c:\windows\$hf_mig$\KB918118\update\spcustom.dll
+ 2005-10-12 23:15:28 727,776 ----a-w c:\windows\$hf_mig$\KB918118\update\update.exe
+ 2005-10-12 23:15:45 394,976 ----a-w c:\windows\$hf_mig$\KB918118\update\updspapi.dll
+ 2006-10-12 13:55:58 42,496 ----a-w c:\windows\$hf_mig$\KB920213\SP2QFE\agentdp2.dll
+ 2006-10-12 13:55:58 57,344 ----a-w c:\windows\$hf_mig$\KB920213\SP2QFE\agentdpv.dll
+ 2006-10-12 11:54:07 256,512 ----a-w c:\windows\$hf_mig$\KB920213\SP2QFE\agentsvr.exe
+ 2006-10-16 11:19:09 265,216 ----a-w c:\windows\$hf_mig$\KB920213\SP2QFE\spru040c.dll
+ 2005-10-12 23:18:45 15,072 ----a-w c:\windows\$hf_mig$\KB920213\spmsg.dll
+ 2005-10-12 23:18:45 216,800 ----a-w c:\windows\$hf_mig$\KB920213\spuninst.exe
+ 2005-10-12 23:18:45 22,752 ----a-w c:\windows\$hf_mig$\KB920213\update\spcustom.dll
+ 2005-10-12 23:18:46 727,776 ----a-w c:\windows\$hf_mig$\KB920213\update\update.exe
+ 2005-10-12 23:18:49 394,976 ----a-w c:\windows\$hf_mig$\KB920213\update\updspapi.dll
+ 2006-06-14 08:50:19 172,416 ----a-w c:\windows\$hf_mig$\KB920872\SP2QFE\kmixer.sys
+ 2006-06-14 08:50:19 6,272 ----a-w c:\windows\$hf_mig$\KB920872\SP2QFE\splitter.sys
+ 2006-06-14 09:17:04 82,944 ----a-w c:\windows\$hf_mig$\KB920872\SP2QFE\wdmaud.sys
+ 2005-10-12 23:15:25 15,072 ----a-w c:\windows\$hf_mig$\KB920872\spmsg.dll
+ 2005-10-12 23:15:26 216,800 ----a-w c:\windows\$hf_mig$\KB920872\spuninst.exe
+ 2005-10-12 23:15:25 22,752 ----a-w c:\windows\$hf_mig$\KB920872\update\spcustom.dll
+ 2005-10-12 23:15:28 727,776 ----a-w c:\windows\$hf_mig$\KB920872\update\update.exe
+ 2005-10-12 23:15:45 394,976 ----a-w c:\windows\$hf_mig$\KB920872\update\updspapi.dll
+ 2006-10-13 12:43:07 64,000 ----a-w c:\windows\$hf_mig$\KB923980\SP2QFE\nwapi32.dll
+ 2006-10-13 12:43:07 145,920 ----a-w c:\windows\$hf_mig$\KB923980\SP2QFE\nwprovau.dll
+ 2006-10-13 10:39:12 163,456 ----a-w c:\windows\$hf_mig$\KB923980\SP2QFE\nwrdr.sys
+ 2006-10-13 12:43:07 65,536 ----a-w c:\windows\$hf_mig$\KB923980\SP2QFE\nwwks.dll
+ 2005-10-12 23:18:45 15,072 ----a-w c:\windows\$hf_mig$\KB923980\spmsg.dll
+ 2005-10-12 23:18:45 216,800 ----a-w c:\windows\$hf_mig$\KB923980\spuninst.exe
+ 2005-10-12 23:18:45 22,752 ----a-w c:\windows\$hf_mig$\KB923980\update\spcustom.dll
+ 2005-10-12 23:18:46 727,776 ----a-w c:\windows\$hf_mig$\KB923980\update\update.exe
+ 2005-10-12 23:18:49 394,976 ----a-w c:\windows\$hf_mig$\KB923980\update\updspapi.dll
+ 2006-08-17 12:43:04 733,184 ----a-w c:\windows\$hf_mig$\KB924270\SP2QFE\lsasrv.dll
+ 2006-08-17 12:43:04 337,408 ----a-w c:\windows\$hf_mig$\KB924270\SP2QFE\netapi32.dll
+ 2006-08-17 12:43:04 132,096 ----a-w c:\windows\$hf_mig$\KB924270\SP2QFE\wkssvc.dll
+ 2005-10-12 23:15:25 15,072 ----a-w c:\windows\$hf_mig$\KB924270\spmsg.dll
+ 2005-10-12 23:15:26 216,800 ----a-w c:\windows\$hf_mig$\KB924270\spuninst.exe
+ 2005-10-12 23:15:25 22,752 ----a-w c:\windows\$hf_mig$\KB924270\update\spcustom.dll
+ 2005-10-12 23:15:28 727,776 ----a-w c:\windows\$hf_mig$\KB924270\update\update.exe
+ 2005-10-12 23:15:45 394,976 ----a-w c:\windows\$hf_mig$\KB924270\update\updspapi.dll
+ 2007-03-08 15:50:30 282,112 ----a-w c:\windows\$hf_mig$\KB925902\SP2QFE\gdi32.dll
+ 2007-03-08 15:50:30 40,960 ----a-w c:\windows\$hf_mig$\KB925902\SP2QFE\mf3216.dll
+ 2007-03-08 15:50:30 579,072 ----a-w c:\windows\$hf_mig$\KB925902\SP2QFE\user32.dll
+ 2007-03-08 15:45:59 1,844,096 ----a-w c:\windows\$hf_mig$\KB925902\SP2QFE\win32k.sys
+ 2006-01-19 19:29:25 15,072 ----a-w c:\windows\$hf_mig$\KB925902\spmsg.dll
+ 2006-01-19 19:29:25 216,800 ----a-w c:\windows\$hf_mig$\KB925902\spuninst.exe
+ 2006-01-19 19:29:25 22,752 ----a-w c:\windows\$hf_mig$\KB925902\update\spcustom.dll
+ 2006-01-19 19:29:26 727,776 ----a-w c:\windows\$hf_mig$\KB925902\update\update.exe
+ 2006-01-19 19:29:26 394,976 ----a-w c:\windows\$hf_mig$\KB925902\update\updspapi.dll
+ 2006-10-20 01:40:33 716,800 ----a-w c:\windows\$hf_mig$\KB926255\SP2QFE\sxs.dll
+ 2005-10-12 23:15:25 15,072 ----a-w c:\windows\$hf_mig$\KB926255\spmsg.dll
+ 2005-10-12 23:15:26 216,800 ----a-w c:\windows\$hf_mig$\KB926255\spuninst.exe
+ 2005-10-12 23:15:25 22,752 ----a-w c:\windows\$hf_mig$\KB926255\update\spcustom.dll
+ 2005-10-12 23:15:28 727,776 ----a-w c:\windows\$hf_mig$\KB926255\update\update.exe
+ 2005-10-12 23:15:45 394,976 ----a-w c:\windows\$hf_mig$\KB926255\update\updspapi.dll
+ 2006-10-16 17:14:12 124,928 ----a-w c:\windows\$hf_mig$\KB926436\SP2QFE\oledlg.dll
+ 2005-10-12 23:18:45 15,072 ----a-w c:\windows\$hf_mig$\KB926436\spmsg.dll
+ 2005-10-12 23:18:45 216,800 ----a-w c:\windows\$hf_mig$\KB926436\spuninst.exe
+ 2005-10-12 23:18:45 22,752 ----a-w c:\windows\$hf_mig$\KB926436\update\spcustom.dll
+ 2005-10-12 23:18:46 727,776 ----a-w c:\windows\$hf_mig$\KB926436\update\update.exe
+ 2005-10-12 23:18:49 394,976 ----a-w c:\windows\$hf_mig$\KB926436\update\updspapi.dll
+ 2006-12-26 13:20:21 536,576 ----a-w c:\windows\$hf_mig$\KB927779\SP2QFE\msado15.dll
+ 2006-12-26 13:20:21 180,224 ----a-w c:\windows\$hf_mig$\KB927779\SP2QFE\msadomd.dll
+ 2006-12-26 13:20:21 200,704 ----a-w c:\windows\$hf_mig$\KB927779\SP2QFE\msadox.dll
+ 2006-12-26 13:20:21 102,400 ----a-w c:\windows\$hf_mig$\KB927779\SP2QFE\msjro.dll
+ 2006-01-19 19:29:25 15,072 ----a-w c:\windows\$hf_mig$\KB927779\spmsg.dll
+ 2006-01-19 19:29:25 216,800 ----a-w c:\windows\$hf_mig$\KB927779\spuninst.exe
+ 2006-01-19 19:29:25 22,752 ----a-w c:\windows\$hf_mig$\KB927779\update\spcustom.dll
+ 2006-01-19 19:29:26 727,776 ----a-w c:\windows\$hf_mig$\KB927779\update\update.exe
+ 2006-01-19 19:29:26 394,976 ----a-w c:\windows\$hf_mig$\KB927779\update\updspapi.dll
+ 2006-12-19 18:48:57 334,336 ----a-w c:\windows\$hf_mig$\KB927802\SP2QFE\wiaservc.dll
+ 2005-10-12 23:15:25 15,072 ----a-w c:\windows\$hf_mig$\KB927802\spmsg.dll
+ 2005-10-12 23:15:26 216,800 ----a-w c:\windows\$hf_mig$\KB927802\spuninst.exe
+ 2005-10-12 23:15:25 22,752 ----a-w c:\windows\$hf_mig$\KB927802\update\spcustom.dll
+ 2005-10-12 23:15:28 727,776 ----a-w c:\windows\$hf_mig$\KB927802\update\update.exe
+ 2005-10-12 23:15:45 394,976 ----a-w c:\windows\$hf_mig$\KB927802\update\updspapi.dll
+ 2006-12-19 21:48:29 8,515,072 ----a-w c:\windows\$hf_mig$\KB928255\SP2QFE\shell32.dll
+ 2006-12-19 21:48:29 135,680 ----a-w c:\windows\$hf_mig$\KB928255\SP2QFE\shsvcs.dll
+ 2006-12-19 16:29:57 265,216 ----a-w c:\windows\$hf_mig$\KB928255\SP2QFE\spru040c.dll
+ 2006-01-19 19:29:25 15,072 ----a-w c:\windows\$hf_mig$\KB928255\spmsg.dll
+ 2006-01-19 19:29:25 216,800 ----a-w c:\windows\$hf_mig$\KB928255\spuninst.exe
+ 2006-01-19 19:29:25 22,752 ----a-w c:\windows\$hf_mig$\KB928255\update\spcustom.dll
+ 2006-01-19 19:29:26 727,776 ----a-w c:\windows\$hf_mig$\KB928255\update\update.exe
+ 2006-01-19 19:29:26 394,976 ----a-w c:\windows\$hf_mig$\KB928255\update\updspapi.dll
+ 2005-10-12 23:15:25 15,072 ----a-w c:\windows\$hf_mig$\KB928843\spmsg.dll
+ 2005-10-12 23:15:26 216,800 ----a-w c:\windows\$hf_mig$\KB928843\spuninst.exe
+ 2005-10-12 23:15:25 22,752 ----a-w c:\windows\$hf_mig$\KB928843\update\spcustom.dll
+ 2005-10-12 23:15:28 727,776 ----a-w c:\windows\$hf_mig$\KB928843\update\update.exe
+ 2005-10-12 23:15:45 394,976 ----a-w c:\windows\$hf_mig$\KB928843\update\updspapi.dll
+ 2007-05-16 15:28:27 86,528 ----a-w c:\windows\$hf_mig$\KB929123\SP2QFE\directdb.dll
+ 2007-05-16 15:28:28 683,520 ----a-w c:\windows\$hf_mig$\KB929123\SP2QFE\inetcomm.dll
+ 2007-05-16 15:28:31 1,314,816 ----a-w c:\windows\$hf_mig$\KB929123\SP2QFE\msoe.dll
+ 2007-05-16 15:28:32 510,976 ----a-w c:\windows\$hf_mig$\KB929123\SP2QFE\wab32.dll
+ 2007-05-16 15:28:33 85,504 ----a-w c:\windows\$hf_mig$\KB929123\SP2QFE\wabimp.dll
+ 2006-01-19 19:29:25 15,072 ----a-w c:\windows\$hf_mig$\KB929123\spmsg.dll
+ 2006-01-19 19:29:25 216,800 ----a-w c:\windows\$hf_mig$\KB929123\spuninst.exe
+ 2006-01-19 19:29:25 22,752 ----a-w c:\windows\$hf_mig$\KB929123\update\spcustom.dll
+ 2006-01-19 19:29:26 727,776 ----a-w c:\windows\$hf_mig$\KB929123\update\update.exe
+ 2006-01-19 19:29:26 394,976 ----a-w c:\windows\$hf_mig$\KB929123\update\updspapi.dll
+ 2007-03-17 13:47:04 293,376 ----a-w c:\windows\$hf_mig$\KB930178\SP2QFE\winsrv.dll
+ 2005-10-12 23:15:25 15,072 ----a-w c:\windows\$hf_mig$\KB930178\spmsg.dll
+ 2005-10-12 23:15:26 216,800 ----a-w c:\windows\$hf_mig$\KB930178\spuninst.exe
+ 2005-10-12 23:15:25 22,752 ----a-w c:\windows\$hf_mig$\KB930178\update\spcustom.dll
+ 2005-10-12 23:15:28 727,776 ----a-w c:\windows\$hf_mig$\KB930178\update\update.exe
+ 2005-10-12 23:15:45 394,976 ----a-w c:\windows\$hf_mig$\KB930178\update\updspapi.dll
+ 2007-02-09 11:23:36 574,976 ----a-w c:\windows\$hf_mig$\KB930916\SP2QFE\ntfs.sys
+ 2005-10-12 23:15:25 15,072 ----a-w c:\windows\$hf_mig$\KB930916\spmsg.dll
+ 2005-10-12 23:15:26 216,800 ----a-w c:\windows\$hf_mig$\KB930916\spuninst.exe
+ 2005-10-12 23:15:25 22,752 ----a-w c:\windows\$hf_mig$\KB930916\update\spcustom.dll
+ 2005-10-12 23:15:28 727,776 ----a-w c:\windows\$hf_mig$\KB930916\update\update.exe
+ 2005-10-12 23:15:45 394,976 ----a-w c:\windows\$hf_mig$\KB930916\update\updspapi.dll
+ 2007-02-05 20:20:56 185,344 ----a-w c:\windows\$hf_mig$\KB931261\SP2QFE\upnphost.dll
+ 2006-01-19 19:29:25 15,072 ----a-w c:\windows\$hf_mig$\KB931261\spmsg.dll
+ 2006-01-19 19:29:25 216,800 ----a-w c:\windows\$hf_mig$\KB931261\spuninst.exe
+ 2006-01-19 19:29:25 22,752 ----a-w c:\windows\$hf_mig$\KB931261\update\spcustom.dll
+ 2006-01-19 19:29:26 727,776 ----a-w c:\windows\$hf_mig$\KB931261\update\update.exe
+ 2006-01-19 19:29:26 394,976 ----a-w c:\windows\$hf_mig$\KB931261\update\updspapi.dll
+ 2007-03-09 14:00:38 57,344 ----a-w c:\windows\$hf_mig$\KB932168\SP2QFE\agentdpv.dll
+ 2007-03-09 11:51:20 265,216 ----a-w c:\windows\$hf_mig$\KB932168\SP2QFE\spru040c.dll
+ 2006-01-19 19:29:25 15,072 ----a-w c:\windows\$hf_mig$\KB932168\spmsg.dll
+ 2006-01-19 19:29:25 216,800 ----a-w c:\windows\$hf_mig$\KB932168\spuninst.exe
+ 2006-01-19 19:29:25 22,752 ----a-w c:\windows\$hf_mig$\KB932168\update\spcustom.dll
+ 2006-01-19 19:29:26 727,776 ----a-w c:\windows\$hf_mig$\KB932168\update\update.exe
+ 2006-01-19 19:29:26 394,976 ----a-w c:\windows\$hf_mig$\KB932168\update\updspapi.dll
+ 2008-02-26 11:49:32 297,984 ----a-w c:\windows\$hf_mig$\KB932823-v3\SP2QFE\msctf.dll
+ 2007-03-06 01:34:33 15,072 ----a-w c:\windows\$hf_mig$\KB932823-v3\spmsg.dll
+ 2007-03-06 01:34:38 216,800 ----a-w c:\windows\$hf_mig$\KB932823-v3\spuninst.exe
+ 2007-03-06 01:34:31 22,752 ----a-w c:\windows\$hf_mig$\KB932823-v3\update\spcustom.dll
+ 2007-03-06 01:34:56 727,776 ----a-w c:\windows\$hf_mig$\KB932823-v3\update\update.exe
+ 2007-03-06 01:35:48 394,976 ----a-w c:\windows\$hf_mig$\KB932823-v3\update\updspapi.dll
+ 2007-04-16 16:11:08 1,051,136 ----a-w c:\windows\$hf_mig$\KB935839\SP2QFE\kernel32.dll
+ 2005-10-12 23:15:25 15,072 ----a-w c:\windows\$hf_mig$\KB935839\spmsg.dll
+ 2005-10-12 23:15:26 216,800 ----a-w c:\windows\$hf_mig$\KB935839\spuninst.exe
+ 2005-10-12 23:15:25 22,752 ----a-w c:\windows\$hf_mig$\KB935839\update\spcustom.dll
+ 2005-10-12 23:15:28 727,776 ----a-w c:\windows\$hf_mig$\KB935839\update\update.exe
+ 2005-10-12 23:15:45 394,976 ----a-w c:\windows\$hf_mig$\KB935839\update\updspapi.dll
+ 2007-04-25 20:32:29 144,896 ----a-w c:\windows\$hf_mig$\KB935840\SP2QFE\schannel.dll
+ 2006-01-19 19:29:25 15,072 ----a-w c:\windows\$hf_mig$\KB935840\spmsg.dll
+ 2006-01-19 19:29:25 216,800 ----a-w c:\windows\$hf_mig$\KB935840\spuninst.exe
+ 2006-01-19 19:29:25 22,752 ----a-w c:\windows\$hf_mig$\KB935840\update\spcustom.dll
+ 2006-01-19 19:29:26 727,776 ----a-w c:\windows\$hf_mig$\KB935840\update\update.exe
+ 2006-01-19 19:29:26 394,976 ----a-w c:\windows\$hf_mig$\KB935840\update\updspapi.dll
+ 2007-04-23 10:14:23 364,160 ----a-w c:\windows\$hf_mig$\KB936357\SP2QFE\update.sys
+ 2006-01-19 19:29:25 15,072 ----a-w c:\windows\$hf_mig$\KB936357\spmsg.dll
+ 2006-01-19 19:29:25 216,800 ----a-w c:\windows\$hf_mig$\KB936357\spuninst.exe
+ 2006-01-19 19:29:25 22,752 ----a-w c:\windows\$hf_mig$\KB936357\update\spcustom.dll
+ 2006-01-19 19:29:26 727,776 ----a-w c:\windows\$hf_mig$\KB936357\update\update.exe
+ 2006-01-19 19:29:26 394,976 ----a-w c:\windows\$hf_mig$\KB936357\update\updspapi.dll
+ 2007-07-12 23:28:38 765,952 ----a-w c:\windows\$hf_mig$\KB938127-IE7\SP2QFE\vgx.dll
+ 2007-03-06 01:34:33 15,072 ----a-w c:\windows\$hf_mig$\KB938127-IE7\spmsg.dll
+ 2007-03-06 01:34:38 216,800 ----a-w c:\windows\$hf_mig$\KB938127-IE7\spuninst.exe
+ 2007-03-06 01:34:31 22,752 ----a-w c:\windows\$hf_mig$\KB938127-IE7\update\spcustom.dll
+ 2007-03-06 01:34:56 727,776 ----a-w c:\windows\$hf_mig$\KB938127-IE7\update\update.exe
+ 2007-03-06 01:35:48 394,976 ----a-w c:\windows\$hf_mig$\KB938127-IE7\update\updspapi.dll
+ 2007-06-13 13:10:53 1,037,312 ----a-w c:\windows\$hf_mig$\KB938828\SP2QFE\explorer.exe
+ 2005-10-12 23:15:25 15,072 ----a-w c:\windows\$hf_mig$\KB938828\spmsg.dll
+ 2005-10-12 23:15:26 216,800 ----a-w c:\windows\$hf_mig$\KB938828\spuninst.exe
+ 2005-10-12 23:15:25 22,752 ----a-w c:\windows\$hf_mig$\KB938828\update\spcustom.dll
+ 2005-10-12 23:15:28 727,776 ----a-w c:\windows\$hf_mig$\KB938828\update\update.exe
+ 2005-10-12 23:15:45 394,976 ----a-w c:\windows\$hf_mig$\KB938828\update\updspapi.dll
+ 2007-12-04 18:30:15 551,936 ----a-w c:\windows\$hf_mig$\KB943055\SP2QFE\oleaut32.dll
+ 2007-03-06 01:34:33 15,072 ----a-w c:\windows\$hf_mig$\KB943055\spmsg.dll
+ 2007-03-06 01:34:38 216,800 ----a-w c:\windows\$hf_mig$\KB943055\spuninst.exe
+ 2007-03-06 01:34:31 22,752 ----a-w c:\windows\$hf_mig$\KB943055\update\spcustom.dll
+ 2007-03-06 01:34:56 727,776 ----a-w c:\windows\$hf_mig$\KB943055\update\update.exe
+ 2007-03-06 01:35:48 394,976 ----a-w c:\windows\$hf_mig$\KB943055\update\updspapi.dll
+ 2007-11-07 09:50:06 733,696 ----a-w c:\windows\$hf_mig$\KB943485\SP2QFE\lsasrv.dll
+ 2007-03-06 01:34:33 15,072 ----a-w c:\windows\$hf_mig$\KB943485\spmsg.dll
+ 2007-03-06 01:34:38 216,800 ----a-w c:\windows\$hf_mig$\KB943485\spuninst.exe
+ 2007-03-06 01:34:31 22,752 ----a-w c:\windows\$hf_mig$\KB943485\update\spcustom.dll
+ 2007-03-06 01:34:56 727,776 ----a-w c:\windows\$hf_mig$\KB943485\update\update.exe
+ 2007-03-06 01:35:48 394,976 ----a-w c:\windows\$hf_mig$\KB943485\update\updspapi.dll
+ 2007-11-13 08:47:45 20,480 ----a-w c:\windows\$hf_mig$\KB944653\SP2QFE\secdrv.sys
+ 2007-03-06 01:34:33 15,072 ----a-w c:\windows\$hf_mig$\KB944653\spmsg.dll
+ 2007-03-06 01:34:38 216,800 ----a-w c:\windows\$hf_mig$\KB944653\spuninst.exe
+ 2007-03-06 01:34:31 22,752 ----a-w c:\windows\$hf_mig$\KB944653\update\spcustom.dll
+ 2007-03-06 01:34:56 727,776 ----a-w c:\windows\$hf_mig$\KB944653\update\update.exe
+ 2007-03-06 01:35:48 394,976 ----a-w c:\windows\$hf_mig$\KB944653\update\updspapi.dll
+ 2008-02-20 05:20:23 147,968 ----a-w c:\windows\$hf_mig$\KB945553\SP2QFE\dnsapi.dll
+ 2008-02-20 18:50:24 45,568 ----a-w c:\windows\$hf_mig$\KB945553\SP2QFE\dnsrslvr.dll
+ 2007-03-06 01:34:33 15,072 ----a-w c:\windows\$hf_mig$\KB945553\spmsg.dll
+ 2007-03-06 01:34:38 216,800 ----a-w c:\windows\$hf_mig$\KB945553\spuninst.exe
+ 2007-03-06 01:34:31 22,752 ----a-w c:\windows\$hf_mig$\KB945553\update\spcustom.dll
+ 2007-03-06 01:34:56 727,776 ----a-w c:\windows\$hf_mig$\KB945553\update\update.exe
+ 2007-03-06 01:35:48 394,976 ----a-w c:\windows\$hf_mig$\KB945553\update\updspapi.dll
+ 2007-12-18 09:38:59 179,712 ----a-w c:\windows\$hf_mig$\KB946026\SP2QFE\mrxdav.sys
+ 2007-03-06 01:34:33 15,072 ----a-w c:\windows\$hf_mig$\KB946026\spmsg.dll
+ 2007-03-06 01:34:38 216,800 ----a-w c:\windows\$hf_mig$\KB946026\spuninst.exe
+ 2007-03-06 01:34:31 22,752 ----a-w c:\windows\$hf_mig$\KB946026\update\spcustom.dll
+ 2007-03-06 01:34:56 727,776 ----a-w c:\windows\$hf_mig$\KB946026\update\update.exe
+ 2007-03-06 01:35:48 394,976 ----a-w c:\windows\$hf_mig$\KB946026\update\updspapi.dll
+ 2008-02-20 06:52:42 282,624 ----a-w c:\windows\$hf_mig$\KB948590\SP2QFE\gdi32.dll
+ 2007-03-06 01:34:33 15,072 ----a-w c:\windows\$hf_mig$\KB948590\spmsg.dll
+ 2007-03-06 01:34:38 216,800 ----a-w c:\windows\$hf_mig$\KB948590\spuninst.exe
+ 2007-03-06 01:34:31 22,752 ----a-w c:\windows\$hf_mig$\KB948590\update\spcustom.dll
+ 2007-03-06 01:34:56 727,776 ----a-w c:\windows\$hf_mig$\KB948590\update\update.exe
+ 2007-03-06 01:35:48 394,976 ----a-w c:\windows\$hf_mig$\KB948590\update\updspapi.dll
+ 2008-01-23 04:56:21 554,008 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\dao360.dll
+ 2007-12-10 12:41:11 518,944 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msexch40.dll
+ 2007-12-10 12:41:11 326,432 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msexcl40.dll
+ 2007-12-10 12:41:11 1,516,568 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msjet40.dll
+ 2007-12-10 12:41:11 355,112 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msjetol1.dll
+ 2008-03-25 06:56:31 194,144 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msjint40.dll
+ 2007-12-10 12:41:12 60,192 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msjter40.dll
+ 2007-12-10 12:41:12 248,608 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msjtes40.dll
+ 2007-12-10 12:41:12 219,936 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msltus40.dll
+ 2007-12-10 12:41:12 355,104 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\mspbde40.dll
+ 2007-12-10 12:41:13 432,928 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msrd2x40.dll
+ 2007-12-10 12:41:13 322,336 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msrd3x40.dll
+ 2007-12-10 12:41:13 559,904 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msrepl40.dll
+ 2007-12-10 12:41:13 264,992 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\mstext40.dll
+ 2007-12-10 12:41:13 838,432 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\mswdat10.dll
+ 2007-11-01 05:15:27 621,344 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\mswstr10.dll
+ 2007-12-10 12:41:14 355,104 ----a-w c:\windows\$hf_mig$\KB950749\SP2QFE\msxbde40.dll
+ 2007-03-06 01:34:33 15,072 ----a-w c:\windows\$hf_mig$\KB950749\spmsg.dll
+ 2007-03-06 01:34:38 216,800 ----a-w c:\windows\$hf_mig$\KB950749\spuninst.exe
+ 2007-03-06 01:34:31 22,752 ----a-w c:\windows\$hf_mig$\KB950749\update\spcustom.dll
+ 2007-03-06 01:34:56 727,776 ----a-w c:\windows\$hf_mig$\KB950749\update\update.exe
+ 2007-03-06 01:35:48 394,976 ----a-w c:\windows\$hf_mig$\KB950749\update\updspapi.dll
+ 2008-05-08 12:14:51 203,008 ----a-w c:\windows\$hf_mig$\KB950762\SP2QFE\rmcast.sys
+ 2008-05-08 14:02:52 203,136 ----a-w c:\windows\$hf_mig$\KB950762\SP3GDR\rmcast.sys
+ 2008-07-07 20:18:27 253,952 ----a-w c:\windows\$hf_mig$\KB950974\SP2QFE\es.dll
+ 2008-07-07 20:28:20 253,952 ----a-w c:\windows\$hf_mig$\KB950974\SP3GDR\es.dll
+ 2008-04-11 18:40:33 683,520 ----a-w c:\windows\$hf_mig$\KB951066\SP2QFE\inetcomm.dll
+ 2008-04-11 19:05:22 691,712 ----a-w c:\windows\$hf_mig$\KB951066\SP3GDR\inetcomm.dll
+ 2008-07-14 11:03:00 62,976 ----a-w c:\windows\$hf_mig$\KB951072-v2\SP2QFE\tzchange.exe
+ 2008-07-11 12:42:28 62,976 ----a-w c:\windows\$hf_mig$\KB951072-v2\SP3GDR\tzchange.exe
+ 2008-06-14 18:03:13 272,768 ----a-w c:\windows\$hf_mig$\KB951376-v2\SP2QFE\bthport.sys
+ 2008-06-14 17:33:37 272,768 ----a-w c:\windows\$hf_mig$\KB951376-v2\SP3GDR\bthport.sys
+ 2008-05-07 04:55:47 1,294,336 ----a-w c:\windows\$hf_mig$\KB951698\SP2QFE\quartz.dll
+ 2008-05-07 05:11:24 1,294,336 ----a-w c:\windows\$hf_mig$\KB951698\SP3GDR\quartz.dll
+ 2006-08-16 12:13:24 100,352 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\6to4svc.dll
+ 2008-06-20 10:44:08 138,368 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\afd.sys
+ 2008-06-20 17:37:01 147,968 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\dnsapi.dll
+ 2008-06-20 17:37:01 247,808 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\mswsock.dll
+ 2008-06-20 10:44:42 360,960 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\tcpip.sys
+ 2008-06-20 09:32:39 225,920 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\tcpip6.sys
+ 2008-06-20 11:40:08 138,496 ----a-w c:\windows\$hf_mig$\KB951748\SP3GDR\afd.sys
+ 2008-06-20 17:47:22 147,968 ----a-w c:\windows\$hf_mig$\KB951748\SP3GDR\dnsapi.dll
+ 2008-06-20 17:47:22 247,808 ----a-w c:\windows\$hf_mig$\KB951748\SP3GDR\mswsock.dll
+ 2008-06-20 11:51:12 361,600 ----a-w c:\windows\$hf_mig$\KB951748\SP3GDR\tcpip.sys
+ 2008-06-20 11:08:27 225,856 ----a-w c:\windows\$hf_mig$\KB951748\SP3GDR\tcpip6.sys
+ 2008-05-01 15:04:51 331,776 ----a-w c:\windows\$hf_mig$\KB952287\SP2QFE\msadce.dll
+ 2008-05-01 14:36:26 331,776 ----a-w c:\windows\$hf_mig$\KB952287\SP3GDR\msadce.dll
+ 2008-06-24 16:30:27 74,240 ----a-w c:\windows\$hf_mig$\KB952954\SP2QFE\mscms.dll
+ 2008-06-24 16:44:02 74,240 ----a-w c:\windows\$hf_mig$\KB952954\SP3GDR\mscms.dll
+ 2008-08-28 07:54:20 74,752 ----a-w c:\windows\$hf_mig$\KB953155\SP2QFE\msw3prt.dll
+ 2008-08-28 07:54:20 105,472 ----a-w c:\windows\$hf_mig$\KB953155\SP2QFE\win32spl.dll
+ 2008-08-28 07:47:55 74,752 ----a-w c:\windows\$hf_mig$\KB953155\SP3GDR\msw3prt.dll
+ 2008-08-28 07:47:55 105,472 ----a-w c:\windows\$hf_mig$\KB953155\SP3GDR\win32spl.dll
+ 2008-08-28 07:39:02 74,752 ----a-w c:\windows\$hf_mig$\KB953155\SP3QFE\msw3prt.dll
+ 2008-08-28 07:39:02 105,472 ----a-w c:\windows\$hf_mig$\KB953155\SP3QFE\win32spl.dll
+ 2007-11-30 11:19:06 18,296 ----a-w c:\windows\$hf_mig$\KB953155\spmsg.dll
+ 2007-11-30 11:19:06 234,872 ----a-w c:\windows\$hf_mig$\KB953155\spuninst.exe
+ 2007-11-30 11:19:06 26,488 ----a-w c:\windows\$hf_mig$\KB953155\update\spcustom.dll
+ 2007-11-30 12:39:29 767,352 ----a-w c:\windows\$hf_mig$\KB953155\update\update.exe
+ 2007-11-30 12:39:31 406,392 ----a-w c:\windows\$hf_mig$\KB953155\update\updspapi.dll
+ 2008-09-15 15:14:42 1,847,040 ----a-w c:\windows\$hf_mig$\KB954211\SP2QFE\win32k.sys
+ 2008-09-15 15:26:07 1,846,528 ----a-w c:\windows\$hf_mig$\KB954211\SP3GDR\win32k.sys
+ 2008-09-04 16:34:21 1,106,944 ----a-w c:\windows\$hf_mig$\KB955069\SP2QFE\msxml3.dll
+ 2008-09-04 17:16:10 1,106,944 ----a-w c:\windows\$hf_mig$\KB955069\SP3GDR\msxml3.dll
+ 2008-08-14 09:48:52 138,368 ----a-w c:\windows\$hf_mig$\KB956803\SP2QFE\afd.sys
+ 2008-08-14 10:04:36 138,496 ----a-w c:\windows\$hf_mig$\KB956803\SP3GDR\afd.sys
+ 2008-08-14 13:23:44 2,147,328 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrnlmp.exe
+ 2008-08-14 13:23:49 2,068,096 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrnlpa.exe
+ 2008-08-14 13:23:44 2,025,984 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrpamp.exe
+ 2008-08-14 13:23:49 2,191,232 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntoskrnl.exe
+ 2008-08-28 10:35:33 333,056 ----a-w c:\windows\$hf_mig$\KB957095\SP2QFE\srv.sys
+ 2008-09-08 10:41:42 333,824 ----a-w c:\windows\$hf_mig$\KB957095\SP3GDR\srv.sys
+ 2008-10-24 11:25:29 455,936 ----a-w c:\windows\$hf_mig$\KB957097\SP2QFE\mrxsmb.sys
+ 2008-10-24 11:21:09 455,296 ----a-w c:\windows\$hf_mig$\KB957097\SP3GDR\mrxsmb.sys
+ 2008-10-15 16:55:13 339,456 ----a-w c:\windows\$hf_mig$\KB958644\SP2QFE\netapi32.dll
+ 2008-10-15 16:35:43 337,408 ----a-w c:\windows\$hf_mig$\KB958644\SP3GDR\netapi32.dll
- 2008-10-07 17:07:50 315,392 ----a-w c:\windows\assembly\GAC_MSIL\AspNetMMCExt.resources\2.0.0.0_fr_b03f5f7f11d50a3a\aspnetmmcext.resources.dll
+ 2008-11-22 22:49:03 315,392 ----a-w c:\windows\assembly\GAC_MSIL\AspNetMMCExt.resources\2.0.0.0_fr_b03f5f7f11d50a3a\aspnetmmcext.resources.dll
- 2008-10-07 17:07:57 53,248 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine.resources\2.0.0.0_fr_b03f5f7f11d50a3a\Microsoft.Build.Engine.resources.dll
+ 2008-11-22 22:49:18 53,248 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine.resources\2.0.0.0_fr_b03f5f7f11d50a3a\Microsoft.Build.Engine.resources.dll
- 2008-10-07 17:07:57 139,264 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks.resources\2.0.0.0_fr_b03f5f7f11d50a3a\Microsoft.Build.Tasks.resources.dll
+ 2008-11-22 22:49:19 139,264 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks.resources\2.0.0.0_fr_b03f5f7f11d50a3a\Microsoft.Build.Tasks.resources.dll
- 2008-10-07 17:07:57 10,240 ----a-w c:\windows\assembly\GAC_MSIL\microsoft.build.utilities.resources\2.0.0.0_fr_b03f5f7f11d50a3a\Microsoft.Build.Utilities.Resources.dll
+ 2008-11-22 22:49:20 10,752 ----a-w c:\windows\assembly\GAC_MSIL\microsoft.build.utilities.resources\2.0.0.0_fr_b03f5f7f11d50a3a\Microsoft.Build.Utilities.Resources.dll
- 2008-10-07 17:07:50 45,056 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Jscript.resources\8.0.0.0_fr_b03f5f7f11d50a3a\Microsoft.JScript.Resources.dll
+ 2008-11-22 22:49:05 45,056 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Jscript.resources\8.0.0.0_fr_b03f5f7f11d50a3a\Microsoft.JScript.Resources.dll
- 2008-10-07 17:08:03 9,216 ----a-w c:\windows\assembly\GAC_MSIL\microsoft.visualbasic.compatibility.data.resources\8.0.0.0_fr_b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.resources.dll
+ 2008-11-22 22:49:32 9,216 ----a-w c:\windows\assembly\GAC_MSIL\microsoft.visualbasic.compatibility.data.resources\8.0.0.0_fr_b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.resources.dll
- 2008-10-07 17:08:02 9,728 ----a-w c:\windows\assembly\GAC_MSIL\microsoft.visualbasic.compatibility.resources\8.0.0.0_fr_b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.resources.dll
+ 2008-11-22 22:49:32 9,728 ----a-w c:\windows\assembly\GAC_MSIL\microsoft.visualbasic.compatibility.resources\8.0.0.0_fr_b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.resources.dll
- 2008-10-07 17:08:02 61,440 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.resources\8.0.0.0_fr_b03f5f7f11d50a3a\Microsoft.VisualBasic.resources.dll
+ 2008-11-22 22:49:30 61,440 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.resources\8.0.0.0_fr_b03f5f7f11d50a3a\Microsoft.VisualBasic.resources.dll
- 2008-10-07 17:07:57 311,296 ----a-w c:\windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_fr_b77a5c561934e089\mscorlib.Resources.dll
+ 2008-11-22 22:49:20 311,296 ----a-w c:\windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_fr_b77a5c561934e089\mscorlib.Resources.dll
- 2008-10-07 17:08:01 10,752 ----a-w c:\windows\assembly\GAC_MSIL\sysglobl.resources\2.0.0.0_fr_b03f5f7f11d50a3a\sysglobl.resources.dll
+ 2008-11-22 22:49:28 10,752 ----a-w c:\windows\assembly\GAC_MSIL\sysglobl.resources\2.0.0.0_fr_b03f5f7f11d50a3a\sysglobl.resources.dll
- 2008-10-07 17:07:58 28,672 ----a-w c:\windows\assembly\GAC_MSIL\System.Configuration.Install.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Configuration.Install.Resources.dll
+ 2008-11-22 22:49:21 28,672 ----a-w c:\windows\assembly\GAC_MSIL\System.Configuration.Install.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Configuration.Install.Resources.dll
- 2008-10-07 17:08:01 49,152 ----a-w c:\windows\assembly\GAC_MSIL\system.configuration.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Configuration.resources.dll
+ 2008-11-22 22:49:29 49,152 ----a-w c:\windows\assembly\GAC_MSIL\system.configuration.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Configuration.resources.dll
- 2008-10-07 17:07:58 110,592 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.OracleClient.resources\2.0.0.0_fr_b77a5c561934e089\System.Data.OracleClient.resources.dll
+ 2008-11-22 22:49:22 110,592 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.OracleClient.resources\2.0.0.0_fr_b77a5c561934e089\System.Data.OracleClient.resources.dll
- 2008-10-07 17:07:55 335,872 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.resources\2.0.0.0_fr_b77a5c561934e089\System.Data.Resources.dll
+ 2008-11-22 22:49:14 344,064 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.resources\2.0.0.0_fr_b77a5c561934e089\System.Data.Resources.dll
- 2008-10-07 17:07:58 36,864 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.SqlXml.resources\2.0.0.0_fr_b77a5c561934e089\system.data.sqlxml.resources.dll
+ 2008-11-22 22:49:23 36,864 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.SqlXml.resources\2.0.0.0_fr_b77a5c561934e089\system.data.sqlxml.resources.dll
- 2008-10-07 17:07:50 385,024 ----a-w c:\windows\assembly\GAC_MSIL\System.Deployment.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Deployment.resources.dll
+ 2008-11-22 22:49:04 389,120 ----a-w c:\windows\assembly\GAC_MSIL\System.Deployment.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Deployment.resources.dll
- 2008-10-07 17:07:55 544,768 ----a-w c:\windows\assembly\GAC_MSIL\System.Design.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Design.Resources.dll
+ 2008-11-22 22:49:14 544,768 ----a-w c:\windows\assembly\GAC_MSIL\System.Design.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Design.Resources.dll
- 2008-10-07 17:07:52 28,672 ----a-w c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.DirectoryServices.Protocols.resources.dll
+ 2008-11-22 22:49:08 28,672 ----a-w c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.DirectoryServices.Protocols.resources.dll
- 2008-10-07 17:07:52 40,960 ----a-w c:\windows\assembly\GAC_MSIL\System.DirectoryServices.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.DirectoryServices.Resources.dll
+ 2008-11-22 22:49:07 40,960 ----a-w c:\windows\assembly\GAC_MSIL\System.DirectoryServices.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.DirectoryServices.Resources.dll
- 2008-10-07 17:07:59 6,144 ----a-w c:\windows\assembly\GAC_MSIL\System.Drawing.Design.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Drawing.Design.Resources.dll
+ 2008-11-22 22:49:24 6,144 ----a-w c:\windows\assembly\GAC_MSIL\System.Drawing.Design.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Drawing.Design.Resources.dll
- 2008-10-07 17:07:56 15,360 ----a-w c:\windows\assembly\GAC_MSIL\System.Drawing.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Drawing.Resources.dll
+ 2008-11-22 22:49:15 15,360 ----a-w c:\windows\assembly\GAC_MSIL\System.Drawing.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Drawing.Resources.dll
- 2008-10-07 17:07:51 32,768 ----a-w c:\windows\assembly\GAC_MSIL\System.EnterpriseServices.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.EnterpriseServices.Resources.dll
+ 2008-11-22 22:49:06 32,768 ----a-w c:\windows\assembly\GAC_MSIL\System.EnterpriseServices.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.EnterpriseServices.Resources.dll
- 2008-10-07 17:07:59 13,312 ----a-w c:\windows\assembly\GAC_MSIL\System.Management.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Management.Resources.dll
+ 2008-11-22 22:49:25 13,312 ----a-w c:\windows\assembly\GAC_MSIL\System.Management.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Management.Resources.dll
- 2008-10-07 17:07:56 61,440 ----a-w c:\windows\assembly\GAC_MSIL\System.Messaging.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Messaging.Resources.dll
+ 2008-11-22 22:49:16 61,440 ----a-w c:\windows\assembly\GAC_MSIL\System.Messaging.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Messaging.Resources.dll
- 2008-10-07 17:07:56 212,992 ----a-w c:\windows\assembly\GAC_MSIL\System.resources\2.0.0.0_fr_b77a5c561934e089\system.Resources.dll
+ 2008-11-22 22:49:17 212,992 ----a-w c:\windows\assembly\GAC_MSIL\System.resources\2.0.0.0_fr_b77a5c561934e089\system.Resources.dll
- 2008-10-07 17:08:00 32,768 ----a-w c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_fr_b77a5c561934e089\System.Runtime.Remoting.Resources.dll
+ 2008-11-22 22:49:26 32,768 ----a-w c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_fr_b77a5c561934e089\System.Runtime.Remoting.Resources.dll
- 2008-10-07 17:08:00 11,776 ----a-w c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.Resources.dll
+ 2008-11-22 22:49:27 11,776 ----a-w c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.Resources.dll
- 2008-10-07 17:07:51 28,672 ----a-w c:\windows\assembly\GAC_MSIL\System.Security.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Security.Resources.dll
+ 2008-11-22 22:49:06 28,672 ----a-w c:\windows\assembly\GAC_MSIL\System.Security.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Security.Resources.dll
- 2008-10-07 17:07:52 40,960 ----a-w c:\windows\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.ServiceProcess.Resources.dll
+ 2008-11-22 22:49:09 40,960 ----a-w c:\windows\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.ServiceProcess.Resources.dll
- 2008-10-07 17:08:01 16,896 ----a-w c:\windows\assembly\GAC_MSIL\System.Transactions.resources\2.0.0.0_fr_b77a5c561934e089\System.Transactions.resources.dll
+ 2008-11-22 22:49:28 16,896 ----a-w c:\windows\assembly\GAC_MSIL\System.Transactions.resources\2.0.0.0_fr_b77a5c561934e089\System.Transactions.resources.dll
- 2008-10-07 17:08:01 81,920 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.Mobile.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Web.Mobile.resources.dll
+ 2008-11-22 22:49:30 81,920 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.Mobile.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Web.Mobile.resources.dll
- 2008-10-07 17:07:53 610,304 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Web.Resources.dll
+ 2008-11-22 22:49:10 618,496 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Web.Resources.dll
- 2008-10-07 17:07:53 81,920 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.Services.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Web.Services.Resources.dll
+ 2008-11-22 22:49:11 81,920 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.Services.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.Web.Services.Resources.dll
- 2008-10-07 17:07:54 430,080 ----a-w c:\windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_fr_b77a5c561934e089\System.Windows.Forms.Resources.dll
+ 2008-11-22 22:49:12 430,080 ----a-w c:\windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_fr_b77a5c561934e089\System.Windows.Forms.Resources.dll
- 2008-10-07 17:07:54 167,936 ----a-w c:\windows\assembly\GAC_MSIL\System.XML.resources\2.0.0.0_fr_b77a5c561934e089\System.xml.Resources.dll
+ 2008-11-22 22:49:13 167,936 ----a-w c:\windows\assembly\GAC_MSIL\System.XML.resources\2.0.0.0_fr_b77a5c561934e089\System.xml.Resources.dll
+ 2006-02-15 00:22:26 142,464 ------w c:\windows\Driver Cache\i386\aec.sys
+ 2008-06-14 17:59:52 272,768 ------w c:\windows\Driver Cache\i386\bthport.sys
+ 2006-03-17 00:33:10 262,784 ------w c:\windows\Driver Cache\i386\http.sys
+ 2006-06-14 08:47:45 172,416 ------w c:\windows\Driver Cache\i386\kmixer.sys
- 2005-01-19 04:26:52 451,584 ------w c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2008-10-24 11:10:42 453,632 ------w c:\windows\Driver Cache\i386\mrxsmb.sys
- 2005-09-29 18:28:35 2,138,112 ------w c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2008-08-14 13:39:07 2,144,768 ------w c:\windows\Driver Cache\i386\ntkrnlmp.exe
- 2005-09-29 18:28:42 2,059,520 ------w c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2008-08-14 13:39:12 2,065,024 ------w c:\windows\Driver Cache\i386\ntkrnlpa.exe
- 2005-09-29 18:28:57 2,017,792 ------w c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2008-08-14 13:39:03 2,022,912 ------w c:\windows\Driver Cache\i386\ntkrpamp.exe
- 2005-09-29 18:29:05 2,182,272 ------w c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2008-08-14 13:39:11 2,188,032 ------w c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2006-06-14 08:47:46 6,400 ------w c:\windows\Driver Cache\i386\splitter.sys
+ 2006-06-14 09:00:45 82,944 ------w c:\windows\Driver Cache\i386\wdmaud.sys
- 2004-08-05 12:00:00 1,036,288 ----a-w c:\windows\explorer.exe
+ 2007-06-13 13:22:28 1,037,312 ----a-w c:\windows\explorer.exe
+ 2007-03-06 01:34:38 216,800 -c----w c:\windows\ie7updates\KB938127-IE7\spuninst\spuninst.exe
+ 2007-03-06 01:35:48 394,976 -c----w c:\windows\ie7updates\KB938127-IE7\spuninst\updspapi.dll
+ 2007-08-13 17:54:10 765,952 -c----w c:\windows\ie7updates\KB938127-IE7\vgx.dll
+ 2007-03-06 01:34:31 22,752 -c----w c:\windows\ie7updates\KB938127-v2-IE7\spcustom.dll
+ 2007-03-06 01:34:33 15,072 -c----w c:\windows\ie7updates\KB938127-v2-IE7\spmsg.dll
+ 2007-03-06 01:34:38 216,800 -c----w c:\windows\ie7updates\KB938127-v2-IE7\spuninst.exe
+ 2007-03-06 01:34:56 727,776 -c----w c:\windows\ie7updates\KB938127-v2-IE7\update.exe
+ 2007-03-06 01:35:47 394,976 -c----w c:\windows\ie7updates\KB938127-v2-IE7\updspapi.dll
- 2007-08-13 16:54:10 765,952 -c--a-w c:\windows\ie7updates\KB938127-v2-IE7\vgx.dll
+ 2007-07-12 23:30:52 765,952 -c----w c:\windows\ie7updates\KB938127-v2-IE7\vgx.dll
- 2008-06-23 16:28:17 124,928 -c--a-w c:\windows\ie7updates\KB956390-IE7\advpack.dll
+ 2007-08-13 17:39:00 123,904 -c----w c:\windows\ie7updates\KB956390-IE7\advpack.dll
- 2008-06-23 16:28:17 347,136 -c--a-w c:\windows\ie7updates\KB956390-IE7\dxtmsft.dll
+ 2007-08-13 17:35:46 346,624 -c----w c:\windows\ie7updates\KB956390-IE7\dxtmsft.dll
- 2008-06-23 16:28:17 214,528 -c--a-w c:\windows\ie7updates\KB956390-IE7\dxtrans.dll
+ 2007-08-13 17:35:38 214,528 -c----w c:\windows\ie7updates\KB956390-IE7\dxtrans.dll
- 2008-06-23 16:28:17 133,120 -c--a-w c:\windows\ie7updates\KB956390-IE7\extmgr.dll
+ 2007-08-13 17:54:10 131,584 -c----w c:\windows\ie7updates\KB956390-IE7\extmgr.dll
- 2008-06-23 09:21:30 70,656 -c--a-w c:\windows\ie7updates\KB956390-IE7\ie4uinit.exe
+ 2007-08-13 17:39:06 54,784 -c----w c:\windows\ie7updates\KB956390-IE7\ie4uinit.exe
- 2008-06-23 16:28:18 153,088 -c--a-w c:\windows\ie7updates\KB956390-IE7\ieakeng.dll
+ 2007-08-13 17:39:26 152,064 -c----w c:\windows\ie7updates\KB956390-IE7\ieakeng.dll
- 2008-06-23 16:28:18 230,400 -c--a-w c:\windows\ie7updates\KB956390-IE7\ieaksie.dll
+ 2007-08-13 17:39:54 229,376 -c----w c:\windows\ie7updates\KB956390-IE7\ieaksie.dll
- 2008-06-21 05:23:54 161,792 -c--a-w c:\windows\ie7updates\KB956390-IE7\ieakui.dll
+ 2007-08-13 16:56:54 161,792 -c----w c:\windows\ie7updates\KB956390-IE7\ieakui.dll
- 2008-06-23 16:28:18 384,512 -c--a-w c:\windows\ie7updates\KB956390-IE7\iedkcs32.dll
+ 2007-08-13 17:39:50 382,976 -c----w c:\windows\ie7updates\KB956390-IE7\iedkcs32.dll
- 2008-06-23 16:28:19 44,544 -c--a-w c:\windows\ie7updates\KB956390-IE7\iernonce.dll
+ 2007-08-13 17:39:10 43,008 -c----w c:\windows\ie7updates\KB956390-IE7\iernonce.dll
- 2008-06-23 09:20:26 13,824 -c--a-w c:\windows\ie7updates\KB956390-IE7\ieudinit.exe
+ 2007-08-13 17:39:10 13,312 -c----w c:\windows\ie7updates\KB956390-IE7\ieudinit.exe
- 2008-06-23 09:21:49 625,664 -c--a-w c:\windows\ie7updates\KB956390-IE7\iexplore.exe
+ 2007-08-13 17:43:56 622,080 -c----w c:\windows\ie7updates\KB956390-IE7\iexplore.exe
- 2008-06-23 16:28:20 27,648 -c--a-w c:\windows\ie7updates\KB956390-IE7\jsproxy.dll
+ 2007-08-13 17:54:10 27,136 -c----w c:\windows\ie7updates\KB956390-IE7\jsproxy.dll
- 2008-06-24 08:28:24 3,592,192 -c--a-w c:\windows\ie7updates\KB956390-IE7\mshtml.dll
+ 2007-08-13 17:54:12 3,578,368 -c----w c:\windows\ie7updates\KB956390-IE7\mshtml.dll
- 2008-06-23 16:28:22 477,696 -c--a-w c:\windows\ie7updates\KB956390-IE7\mshtmled.dll
+ 2007-08-13 17:54:10 475,648 -c----w c:\windows\ie7updates\KB956390-IE7\mshtmled.dll
- 2008-06-23 16:28:22 193,024 -c--a-w c:\windows\ie7updates\KB956390-IE7\msrating.dll
+ 2007-08-13 17:44:26 192,000 -c----w c:\windows\ie7updates\KB956390-IE7\msrating.dll
- 2008-06-23 16:28:22 671,232 -c--a-w c:\windows\ie7updates\KB956390-IE7\mstime.dll
+ 2007-08-13 17:54:10 670,720 -c----w c:\windows\ie7updates\KB956390-IE7\mstime.dll
- 2008-06-23 16:28:22 102,912 -c--a-w c:\windows\ie7updates\KB956390-IE7\occache.dll
+ 2007-08-13 17:44:06 101,376 -c----w c:\windows\ie7updates\KB956390-IE7\occache.dll
- 2008-06-23 16:28:22 44,544 -c--a-w c:\windows\ie7updates\KB956390-IE7\pngfilt.dll
+ 2007-08-13 17:36:12 44,544 -c----w c:\windows\ie7updates\KB956390-IE7\pngfilt.dll
+ 2007-03-06 01:34:31 22,752 -c----w c:\windows\ie7updates\KB956390-IE7\spcustom.dll
+ 2007-03-06 01:34:33 15,072 -c----w c:\windows\ie7updates\KB956390-IE7\spmsg.dll
+ 2007-03-06 01:34:38 216,800 -c----w c:\windows\ie7updates\KB956390-IE7\spuninst.exe
+ 2007-03-06 01:34:56 727,776 -c----w c:\windows\ie7updates\KB956390-IE7\update.exe
+ 2007-03-06 01:35:48 394,976 -c----w c:\windows\ie7updates\KB95
0
Réponse 84 / 121
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 1
22 nov. 2008 à 14:57
Malwarebytes' Anti-Malware 1.30
Version de la base de données: 1415
Windows 5.1.2600 Service Pack 2

23/11/2008 10:45:51
mbam-log-2008-11-23 (10-45-51).txt

Type de recherche: Examen complet (C:\|)
Eléments examinés: 95100
Temps écoulé: 22 minute(s), 15 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 14

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSktkl.dll.vir (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSlajf.dll.vir (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSoxum.dll.vir (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSurxb.dll.vir (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\TDSSrvdc.sys.vir (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{1028A0E6-0F7E-4546-B8A3-3241BD0A3B0E}\RP6\A0004001.0ys (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{1028A0E6-0F7E-4546-B8A3-3241BD0A3B0E}\RP6\A0004002.dll (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{1028A0E6-0F7E-4546-B8A3-3241BD0A3B0E}\RP6\A0004003.dll (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{1028A0E6-0F7E-4546-B8A3-3241BD0A3B0E}\RP6\A0004004.dll (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{1028A0E6-0F7E-4546-B8A3-3241BD0A3B0E}\RP6\A0004005.dll (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{1028A0E6-0F7E-4546-B8A3-3241BD0A3B0E}\RP6\A0004023.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\TDSSoiqt.log (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\TDSSottt.log (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\TDSSqrde.log (Trojan.TDSS) -> Quarantined and deleted successfully.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 85 / 121
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 1
22 nov. 2008 à 14:58
Que faire maintenant stp?
0
Réponse 86 / 121
Utilisateur anonyme
22 nov. 2008 à 16:05
Hi,

Refait un hijackthis.

Alut.
0
Réponse 87 / 121
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 1
22 nov. 2008 à 18:04
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:03:17, on 23/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\acs.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Orange\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\Orange\AntivirusFirewall\Common\FSMA32.EXE
C:\Program Files\Orange\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Orange\AntivirusFirewall\Common\FSMB32.EXE
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\slmdmsr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Orange\AntivirusFirewall\Common\FCH32.EXE
C:\Program Files\Orange\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\Orange\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\Orange\AntivirusFirewall\Common\FSM32.EXE
C:\Program Files\Atheros\ACU.exe
C:\Program Files\Orange\Systray\SystrayApp.exe
C:\WINDOWS\system32\VTTimer.exe
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\IDETOOL\IDETOOL.EXE
C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
C:\Program Files\NETGEAR\WPN311\wlancfg5.exe
C:\Program Files\Orange\AntivirusFirewall\FSGUI\fsguidll.exe
C:\Program Files\Orange\AntivirusFirewall\FSAUA\program\fsaua.exe
C:\Program Files\Orange\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\Program Files\Orange\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
C:\Program Files\Orange\AntivirusFirewall\FSAUA\program\fsus.exe
C:\Program Files\Orange\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Orange\Launcher\Launcher.exe
C:\Program Files\Orange\connectivity\connectivitymanager.exe
C:\Program Files\Orange\connectivity\CoreCom\CoreCom.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Orange\Deskboard\deskboard.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Orange\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Propriétaire\Bureau\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Orange\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Orange\AntivirusFirewall\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [ACU] "C:\Program Files\Atheros\ACU.exe" -nogui
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\Orange\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\Orange\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Global Startup: IDETool.lnk = C:\Program Files\IDETOOL\IDETOOL.EXE
O4 - Global Startup: NETGEAR WG311T Smart Wizard.lnk = C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
O4 - Global Startup: NETGEAR WPN311 Smart Wizard.lnk = C:\Program Files\NETGEAR\WPN311\wlancfg5.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O23 - Service: Service de configuration OLITEC (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe (file missing)
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\Orange\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\Orange\AntivirusFirewall\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Orange\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Orange\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LVSrvLauncher - Labtec Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slmdmsr.exe
0
Réponse 88 / 121
Utilisateur anonyme
22 nov. 2008 à 18:07
Hi,

Relance hijack et clique sur "Do a system scan only"
Ensuite recherche ces lignes et coches les cases

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)

O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)

Ensuite clique sur "Fix checked"

Refait un hijackthis.
=*=*=*=*=*=*=*=*=*=*=*=*=*=*=APRES=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*
> Fais un scan en ligne avec Kaspersky : Kaspersky

N.B. : Le scan ne marche que sous Internet Explorer.

- Commence par connecter tout ton matériel de stockage à ton PC (clés USB, DD amovible...). Allume les si necessaire.

- Sous Démonstration en ligne, on t'explique la marche à suivre, et pour lancer le scan il faut sélectionner < Exécuter l'analyse en ligne >.

- On va te demander de télécharger un contrôle active x, accepte .

- Dans le menu < Choisissez la cible de l'analyse >, sélectionne < Poste de travail >. Le scan va commencer.

- Poste le rapport qui sera généré stp. (clique sur <enregistrer le rapport> puis sauvegarde-le sur ton bureau en choisissant "fichier texte (*.txt)" pour l'extension).
S'il y a un problème, assure toi que les contrôles active x sont bien configurés dans les options internet comme décrit sur ce lien : clic ici


Rappel : le scan est à faire sous Internet Explorer
Tuto ici si problème

NOTE : Si tu reçois le message "La licence de Kaspersky On-line Scanner est périmée", va dans Ajout/Suppression de programmes puis désinstalle On-Line Scanner, reconnecte toi sur le site de Kaspersky pour retenter le scan en ligne.
Pour le rapport Kaspersky il faut que tu choisisses "Afficher le rapport" puis que tu l'enregistres sur ton bureau sous forme de fichier texte (type de fichier "tous les fichiers").
0
Réponse 89 / 121
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 1
22 nov. 2008 à 21:56
Excuse moi mais il y a eu un petit problème.

Après avoir mis Kaspersky online scanner à jour, il n' y avait pas de bouton pour démarrer l'analyse...

donc j'ai recommencé l'opération et surprise, mon pc est super lent et je n'arrive pas a aller sur les sites d'analyses en ligne...

Tout ça a commencé quand mon antivirus a repéré un programme à risque et la mit en quarantaine.

Que faire stp?
0
Réponse 90 / 121
Utilisateur anonyme
23 nov. 2008 à 04:45
Hi,

Bon,désactive ton antivirus le temps du scan.

Alut.
0
Réponse 91 / 121
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 1
23 nov. 2008 à 14:49
Excuse moi mais je ne trouve pas le bouton sur lequel il faut cliquer pour commencer l'analyse et le tuto ne se charge pas donc...???
0
Réponse 92 / 121
Utilisateur anonyme
23 nov. 2008 à 14:51
Hi,

Il faut le faire sous internet explorer.

Alut.
0
Réponse 93 / 121
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 1
23 nov. 2008 à 14:52
C'est ce que je fais et rien pourtant.
0
Réponse 94 / 121
Utilisateur anonyme
23 nov. 2008 à 14:55
Hi,

Bon refait un hijackthis.

Alut.
0
Réponse 95 / 121
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 1
23 nov. 2008 à 14:58
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:57:26, on 24/11/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\acs.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Orange\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\Orange\AntivirusFirewall\Common\FSMA32.EXE
C:\Program Files\Orange\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\slmdmsr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Orange\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\Program Files\Orange\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\Program Files\Atheros\ACU.exe
C:\Program Files\Orange\Systray\SystrayApp.exe
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\VTtrayp.exe
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\IDETOOL\IDETOOL.EXE
C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
C:\Program Files\NETGEAR\WPN311\wlancfg5.exe
C:\Program Files\Orange\Launcher\Launcher.exe
C:\Program Files\Orange\connectivity\connectivitymanager.exe
C:\Program Files\Orange\connectivity\CoreCom\CoreCom.exe
C:\Program Files\Orange\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Orange\AntivirusFirewall\Common\FSLAUNCH.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Orange\Deskboard\deskboard.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Propriétaire\Bureau\HiJackThis.exe
C:\Program Files\Java\jre6\bin\java.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.orange.fr/portail?kw=
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.orange.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Orange\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Orange\AntivirusFirewall\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [ACU] "C:\Program Files\Atheros\ACU.exe" -nogui
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\Orange\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\Orange\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Global Startup: IDETool.lnk = C:\Program Files\IDETOOL\IDETOOL.EXE
O4 - Global Startup: NETGEAR WG311T Smart Wizard.lnk = C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
O4 - Global Startup: NETGEAR WPN311 Smart Wizard.lnk = C:\Program Files\NETGEAR\WPN311\wlancfg5.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O23 - Service: Service de configuration Atheros (ACS) - Atheros - C:\WINDOWS\system32\acs.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe (file missing)
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\Orange\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\Orange\AntivirusFirewall\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Orange\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Orange\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LVSrvLauncher - Labtec Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slmdmsr.exe
0
Réponse 96 / 121
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 1
23 nov. 2008 à 17:21
Ne t'inquiètes pas, le scan a réussi et il est a 93% et à 01h38 min.

Quand c'est fait, je te baalance tout!

@+
0
Réponse 97 / 121
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 1
23 nov. 2008 à 17:28
C:\Documents and Settings\Propriétaire\Mes documents\RAP KAS.html
0
Réponse 98 / 121
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 1
23 nov. 2008 à 23:12
ça y est, que faire maintenant?
0
Réponse 99 / 121
Utilisateur anonyme
23 nov. 2008 à 23:14
Hi,

C'est fait quoi?

Alut.
0
Réponse 100 / 121
cynthia92 Messages postés 294 Date d'inscription mercredi 12 décembre 2007 Statut Membre Dernière intervention 11 août 2009 1
23 nov. 2008 à 23:34
???
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
problême Opéra est ce un virus??
sand2504 -
sand2504 -

85 réponses
Virus MSN Tinyurl
djkifkif -
matt56430 -

8 réponses