[Résolu] Optimiser mon PC

Aide à la désinfection pour supprimer les virus, adwares, ransomwares, trojans.

Modérateurs : Mods Windows, Helper

Avatar de l’utilisateur
Soni93200
Messages : 654
Inscription : 23 oct. 2008 22:24

Re: Optimiser mon PC

par Soni93200 »

Si je puis me permettre voilà les programmes à ne pas installer :

* go-astro
* GoRecord
* HotTVPlayer
* MailSkinner
* Messenger Skinner
* Instant Access
* InternetGameBox
* sudoplanet
* Webmediaplayer

Si c'est interdit de poster ici supprimez mon message PDT_043
Ce n'est pas parce que c'est difficile que nous n'osons pas , mais parce que nous n'osons pas que c'est difficile [Sénèque]

Image
kelly
Messages : 10
Inscription : 01 févr. 2009 19:55

Re: Optimiser mon PC

par kelly »

Voilà le rapport, après avoir fait l'option 2 :
Clean Navipromo version 3.7.1 commencé le 07/02/2009 à 19:11:43,56

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 02.01.2009 à 19h00 par IL-MAFIOSO

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Celeron(R) CPU 3.06GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : BERENGER ( Administrator )
BOOT : Normal boot

Antivirus : avast! antivirus 4.8.0 [VPS 081204-0] 4.8.0 (Activated)


C:\ (Local Disk) - NTFS - Total:113 Go (Free:74 Go)
D:\ (Local Disk) - FAT32 - Total:114 Go (Free:114 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)


Mode suppression automatique
avec prise en charge résultats Catchme et GNS


Nettoyage exécuté au redémarrage de l'ordinateur


*** fsbl1.txt non trouvé ***
(Assurez-vous que Catchme n'avait rien trouvé lors de la recherche)


*** Suppression avec sauvegardes résultats GenericNaviSearch ***

* Suppression dans "C:\WINDOWS\System32" *


* Suppression dans "C:\Documents and Settings\BERENGER\locals~1\applic~1" *


* Suppression dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" *


*** Suppression dossiers dans "C:\WINDOWS" ***


*** Suppression dossiers dans "C:\Program Files" ***

...\InternetGamebox ...suppression...
...\InternetGamebox supprimé !


*** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***

...\InternetGamebox ...suppression...
...\InternetGamebox supprimé !


*** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***


*** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\BERENGER\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\INVIT~1\applic~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\BERENGER\locals~1\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\BERENGER\menudm~1\progra~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\INVIT~1\menudm~1\progra~1" ***



*** Suppression fichiers ***


*** Suppression fichiers temporaires ***

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\BERENGER\locals~1\Temp effectué !

*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Suppression avec sauvegardes nouveaux fichiers Instant Access :

2)Recherche, création sauvegardes et suppression Heuristique :


* Dans "C:\WINDOWS\system32" *



* Dans "C:\Documents and Settings\BERENGER\locals~1\applic~1" *


iyuyocg.exe trouvé !
Copie iyuyocg.exe réalisée avec succès !
iyuyocg.exe supprimé !

iyuyocg.dat trouvé !
Copie iyuyocg.dat réalisée avec succès !
iyuyocg.dat supprimé !

iyuyocg_nav.dat trouvé !
Copie iyuyocg_nav.dat réalisée avec succès !
iyuyocg_nav.dat supprimé !

iyuyocg_navps.dat trouvé !
Copie iyuyocg_navps.dat réalisée avec succès !
iyuyocg_navps.dat supprimé !


* Dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" *



*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok


*** Certificats ***

Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltdt absent !

*** Recherche autres dossiers et fichiers connus ***



*** Nettoyage terminé le 07/02/2009 à 19:14:24,45 ***
Malekal_morte
Messages : 107613
Inscription : 10 sept. 2005 13:57

Re: Optimiser mon PC

par Malekal_morte »

Ta version d'Adobe Reader comporte des vulnérabilités qui permettent l'infection de ton système.

Tout est expliqué sur cette page : exploitation-swf-pdf-et-java-systeme-no ... 13629.html

Ton PC est donc vulnérable tant que tu n'as pas mis à jour Adobe Reader.

Mets le à jour et prendre l'habitude de maintenir tous tes logiciels à jour sinon c'est l'infection à cout sûr.

Eventuellement faire un scan de vulnérabilités ou installer un des programmes pour prendre l'habitude de maintenir tous les logiciels à jour et donc ne pas avoir de failles de sécurité : https://www.malekal.com/scan_vulnerabilite.php



Poste un nouveau rapport HijackThis.

Ca donne quoi pour les pubs, ralentissement etc ?
Première règle élémentaire de sécurité : on réfléchit puis on clic et pas l'inverse - Les fichiers/programmes c'est comme les bonbons, quand ça vient d'un inconnu, on n'accepte pas !
Comment protéger son PC des virus
Windows 11 : Compatibilité, Configuration minimale requise, télécharger ISO et installer Windows 11

Comment demander de l'aide sur le forum
Partagez malekal.com : n'hésitez pas à partager les articles qui vous plaisent sur la page Facebook du site.
kelly
Messages : 10
Inscription : 01 févr. 2009 19:55

Re: Optimiser mon PC

par kelly »

J'ai effectué la mise à jour. =)
Pour ce qui est des pubs et des ralentissements je n'en ai plus. PDT_008
Par contre dans le rapport de Navilog1, j'ai vu que "Avast! antivirus" est en activité alors que j'ai "Antivir" et que j'ai supprimé (dans "Ajout/suppression des programes") "Avast! Antivirus" depuis que j'ai "Antivir". Est-ce possible ?
Je ne sais pas si tout ça est très clair. Enfin, en attendant, voici un nouveau rapport HJT :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:24:39, on 07/02/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Acer TV-FM\Kernel\TV\CLCapSvc.exe
C:\Program Files\Acer TV-FM\Kernel\CLML_NTService\CLMLServer.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Acer TV-FM\Kernel\TV\CLSched.exe
C:\Documents and Settings\BERENGER\Mes documents\DualPix Exchange\CamService.exe
C:\Program Files\Platrium\bin\1.2.103.0\PlatriumSA.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\Documents and Settings\BERENGER\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
C:\Documents and Settings\BERENGER\Application Data\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\explorer.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://runonce.msn.com/?v=msgrv75
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [HerculesCamService] C:\Documents and Settings\BERENGER\Mes documents\DualPix Exchange\CamService.exe
O4 - HKLM\..\Run: [PlatriumWeather] "C:\Program Files\Platrium\bin\1.2.103.0\Weather.exe" -auto
O4 - HKLM\..\Run: [PlatriumSA] "C:\Program Files\Platrium\bin\1.2.103.0\PlatriumSA.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [EdenFlirt] C:\Program Files\Eden Flirt\EdenFlirt.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Outil de notification Live Search.lnk = C:\Documents and Settings\BERENGER\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
O4 - Global Startup: Acer Empowering Technology.lnk = ?
O4 - Global Startup: Acer WLAN 11g USB Dongle.lnk = C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?d6eb0f3211534e11bd8ee9b42a99b602
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?d6eb0f3211534e11bd8ee9b42a99b602
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Add to VideoGet - {88CFA58B-A63F-4A94-9C54-0C7A58E3333E} - C:\PROGRA~1\NUCLEA~1\VideoGet\Plugins\VIDEOG~1.DLL
O9 - Extra 'Tools' menuitem: Add to &VideoGet - {88CFA58B-A63F-4A94-9C54-0C7A58E3333E} - C:\PROGRA~1\NUCLEA~1\VideoGet\Plugins\VIDEOG~1.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://s.tf1.fr/mmdia/static/rawflow/cl ... awflow.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-U ... E_UNO1.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Me ... b56907.cab
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2BE3DFF1-5572-441E-8477-0E60CEC8A288}: NameServer = 81.253.149.1 80.10.246.3
O17 - HKLM\System\CS1\Services\Tcpip\..\{2BE3DFF1-5572-441E-8477-0E60CEC8A288}: NameServer = 81.253.149.1 80.10.246.3
O20 - AppInit_DLLs: zsxjhl.dll
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Acer TV-FM\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Acer TV-FM\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Acer TV-FM\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

--
End of file - 8978 bytes
Malekal_morte
Messages : 107613
Inscription : 10 sept. 2005 13:57

Re: Optimiser mon PC

par Malekal_morte »

Je sais pas pourquoi il te met Avast! sur le rapport car sur HijackThis y a aucune ligne relative à Avast!, par contre ça, c'est mal :
O20 - AppInit_DLLs: zsxjhl.dll

Pour voir :
Désactive les logiciels de protection (Antivirus, Antispywares) puis :

Télécharge Combofix sUBs : combofix.exe
et sauvegarde le sur ton bureau et pas ailleurs!

Double-clic sur combofix, accepte la licence d'utilisation et laisse toi guider.
Attends que combofix ait terminé, un rapport sera créé. Poste le rapport.
Première règle élémentaire de sécurité : on réfléchit puis on clic et pas l'inverse - Les fichiers/programmes c'est comme les bonbons, quand ça vient d'un inconnu, on n'accepte pas !
Comment protéger son PC des virus
Windows 11 : Compatibilité, Configuration minimale requise, télécharger ISO et installer Windows 11

Comment demander de l'aide sur le forum
Partagez malekal.com : n'hésitez pas à partager les articles qui vous plaisent sur la page Facebook du site.
kelly
Messages : 10
Inscription : 01 févr. 2009 19:55

Re: Optimiser mon PC

par kelly »

J'ai téléchargé combofix, mais je ne peux pas l'utiliser puisqu'il faut désactiver l'antivirus. Or, j'ai un message qui s'affiche en me disant que Avast! est toujours en activité. Je suis coincée. PDT_013
Malekal_morte
Messages : 107613
Inscription : 10 sept. 2005 13:57

Re: Optimiser mon PC

par Malekal_morte »

Première règle élémentaire de sécurité : on réfléchit puis on clic et pas l'inverse - Les fichiers/programmes c'est comme les bonbons, quand ça vient d'un inconnu, on n'accepte pas !
Comment protéger son PC des virus
Windows 11 : Compatibilité, Configuration minimale requise, télécharger ISO et installer Windows 11

Comment demander de l'aide sur le forum
Partagez malekal.com : n'hésitez pas à partager les articles qui vous plaisent sur la page Facebook du site.
kelly
Messages : 10
Inscription : 01 févr. 2009 19:55

Re: Optimiser mon PC

par kelly »

Merci, j'ai enfin pu lancer Combofix. Voici le rapport :

J'espère que tu aimes la lecture

ComboFix 09-02-06.04 - BERENGER 2009-02-08 20:37:53.2 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.1471.1019 [GMT 1:00]
Lancé depuis: c:\documents and settings\BERENGER\Bureau\ComboFix.exe
AV: Avira AntiVir PersonalEdition Classic *On-access scanning disabled* (Updated)
* Un nouveau point de restauration a été créé
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\dumphive.exe
c:\windows\system32\IEDFix.exe
c:\windows\system32\SrchSTS.exe
c:\windows\system32\tmp.reg
c:\windows\system32\VCCLSID.exe
c:\windows\system32\WS2Fix.exe

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-01-08 au 2009-02-08 ))))))))))))))))))))))))))))))))))))
.

2009-02-06 17:13 . 2009-02-06 17:13 <REP> d-------- c:\windows\system32\fr
2009-02-06 17:13 . 2009-02-06 17:13 <REP> d-------- c:\windows\l2schemas
2009-02-06 17:12 . 2009-02-06 17:12 <REP> d-------- c:\windows\system32\bits
2009-02-06 17:10 . 2009-02-06 17:13 <REP> d-------- c:\windows\ServicePackFiles
2009-02-06 17:06 . 2009-02-07 19:01 1,355 --a------ c:\windows\imsins.BAK
2009-02-06 17:03 . 2009-02-06 17:03 <REP> d-------- c:\windows\EHome
2009-02-01 19:34 . 2009-02-01 19:34 <REP> d-------- c:\documents and settings\BERENGER\Application Data\TeamViewer
2009-02-01 19:33 . 2009-02-01 19:33 <REP> d-------- c:\program files\TeamViewer
2009-02-01 19:23 . 2009-02-01 19:23 <REP> d-------- c:\documents and settings\BERENGER\temp
2009-01-11 21:10 . 2009-01-11 21:10 <REP> d-------- c:\program files\City Interactive

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-08 19:35 --------- d-----w c:\program files\Wanadoo
2009-02-08 19:34 --------- d-----w c:\documents and settings\All Users\Application Data\PlatriumSA
2009-02-07 21:58 --------- d-----w c:\program files\Incomplete
2009-02-07 21:01 --------- d-----w c:\program files\Alwil Software
2009-02-07 20:44 --------- d-----w c:\program files\Navilog1
2009-02-07 20:23 --------- d-----w c:\program files\Fichiers communs\Adobe
2009-02-07 19:11 --------- d-----w c:\program files\LimeWire
2009-02-07 19:10 --------- d-----w c:\documents and settings\BERENGER\Application Data\LimeWire
2009-02-06 18:30 --------- d-----w c:\program files\MSN Messenger
+ 2008-04-14 02:33:18 68,096 ------w c:\windows\ServicePackFiles\i386\adsmsext.dll
+ 2008-04-14 02:33:18 263,680 ------w c:\windows\ServicePackFiles\i386\adsnt.dll
+ 2008-04-14 02:33:18 4,255 ------w c:\windows\ServicePackFiles\i386\adv01nt5.dll
+ 2008-04-14 02:33:18 3,967 ------w c:\windows\ServicePackFiles\i386\adv02nt5.dll
+ 2008-04-14 02:33:18 3,615 ------w c:\windows\ServicePackFiles\i386\adv05nt5.dll
+ 2008-04-14 02:33:18 3,647 ------w c:\windows\ServicePackFiles\i386\adv07nt5.dll
+ 2008-04-14 02:33:18 3,135 ------w c:\windows\ServicePackFiles\i386\adv08nt5.dll
+ 2008-04-14 02:33:18 3,711 ------w c:\windows\ServicePackFiles\i386\adv09nt5.dll
+ 2008-04-14 02:33:18 3,775 ------w c:\windows\ServicePackFiles\i386\adv11nt5.dll
+ 2008-04-14 02:33:18 685,568 ------w c:\windows\ServicePackFiles\i386\advapi32.dll
+ 2008-04-14 02:33:18 101,888 ------w c:\windows\ServicePackFiles\i386\advpack.dll
+ 2008-04-13 16:39:23 142,592 ------w c:\windows\ServicePackFiles\i386\aec.sys
+ 2008-04-13 19:19:23 138,112 ------w c:\windows\ServicePackFiles\i386\afd.sys
+ 2008-04-14 02:33:18 24,064 ------w c:\windows\ServicePackFiles\i386\agentanm.dll
+ 2008-04-14 02:33:18 214,016 ------w c:\windows\ServicePackFiles\i386\agentctl.dll
+ 2008-04-14 02:33:18 42,496 ------w c:\windows\ServicePackFiles\i386\agentdp2.dll
+ 2008-04-14 02:33:18 57,344 ------w c:\windows\ServicePackFiles\i386\agentdpv.dll
+ 2008-04-14 02:33:18 49,152 ------w c:\windows\ServicePackFiles\i386\agentmpx.dll
+ 2008-04-14 02:33:18 24,064 ------w c:\windows\ServicePackFiles\i386\agentpsh.dll
+ 2008-04-14 02:33:18 44,032 ------w c:\windows\ServicePackFiles\i386\agentsr.dll
+ 2008-04-14 02:33:53 256,512 ------w c:\windows\ServicePackFiles\i386\agentsvr.exe
+ 2008-04-14 02:33:30 331,776 ------w c:\windows\ServicePackFiles\i386\msadce.dll
+ 2007-03-28 12:56:27 20,480 ------w c:\windows\ServicePackFiles\i386\msadcer.dll
+ 2008-04-14 02:33:30 61,440 ------w c:\windows\ServicePackFiles\i386\msadcf.dll
+ 2007-03-28 12:56:27 16,384 ------w c:\windows\ServicePackFiles\i386\msadcfr.dll
+ 2008-04-14 02:33:30 143,360 ------w c:\windows\ServicePackFiles\i386\msadco.dll
+ 2007-03-28 12:56:27 16,384 ------w c:\windows\ServicePackFiles\i386\msadcor.dll
+ 2008-04-14 02:33:30 53,248 ------w c:\windows\ServicePackFiles\i386\msadcs.dll
+ 2008-04-14 02:33:30 155,648 ------w c:\windows\ServicePackFiles\i386\msadds.dll
+ 2007-03-28 12:56:28 24,576 ------w c:\windows\ServicePackFiles\i386\msaddsr.dll
+ 2007-03-28 12:56:28 28,672 ------w c:\windows\ServicePackFiles\i386\msader15.dll
+ 2008-04-14 02:33:30 536,576 ------w c:\windows\ServicePackFiles\i386\msado15.dll
+ 2008-04-14 02:33:30 180,224 ------w c:\windows\ServicePackFiles\i386\msadomd.dll
+ 2008-04-14 02:33:30 57,344 ------w c:\windows\ServicePackFiles\i386\msador15.dll
+ 2008-04-14 02:33:30 200,704 ------w c:\windows\ServicePackFiles\i386\msadox.dll
+ 2008-04-14 02:33:30 57,344 ------w c:\windows\ServicePackFiles\i386\msadrh15.dll
+ 2008-04-14 02:31:51 3,584 ------w c:\windows\ServicePackFiles\i386\msafd.dll
+ 2008-04-14 02:33:30 86,016 ------w c:\windows\ServicePackFiles\i386\msapsspc.dll
+ 2008-04-14 02:33:30 57,344 ------w c:\windows\ServicePackFiles\i386\msasn1.dll
+ 2008-04-14 02:33:30 220,160 ------w c:\windows\ServicePackFiles\i386\mscandui.dll
+ 2008-04-14 02:33:30 73,728 ------w c:\windows\ServicePackFiles\i386\mscms.dll
+ 2008-04-14 02:33:30 69,632 ------w c:\windows\ServicePackFiles\i386\msconf.dll
+ 2008-04-14 02:34:12 172,544 ------w c:\windows\ServicePackFiles\i386\msconfig.exe
+ 2004-08-05 12:00:00 116,288 ------w c:\windows\ServicePackFiles\i386\msconv97.dll
+ 2008-04-13 17:26:07 12,288 ------w c:\windows\ServicePackFiles\i386\mscpx32r.dll
+ 2008-04-14 02:33:30 36,864 ------w c:\windows\ServicePackFiles\i386\mscpxl32.dll
+ 2008-04-14 02:33:30 297,984 ------w c:\windows\ServicePackFiles\i386\msctf.dll
+ 2008-04-14 02:33:30 68,608 ------w c:\windows\ServicePackFiles\i386\msctfp.dll
+ 2008-04-14 02:33:30 4,096 ------w c:\windows\ServicePackFiles\i386\msdadc.dll
+ 2008-04-14 02:33:30 118,784 ------w c:\windows\ServicePackFiles\i386\msdadiag.dll
+ 2008-04-14 02:33:30 4,096 ------w c:\windows\ServicePackFiles\i386\msdaenum.dll
+ 2008-04-14 02:33:30 4,096 ------w c:\windows\ServicePackFiles\i386\msdaer.dll
+ 2008-04-14 02:33:30 532,480 ------w c:\windows\ServicePackFiles\i386\msdaipp.dll
+ 2008-04-14 02:33:30 233,472 ------w c:\windows\ServicePackFiles\i386\msdaora.dll
+ 2007-03-28 12:56:31 16,384 ------w c:\windows\ServicePackFiles\i386\msdaorar.dll
+ 2008-04-14 02:33:30 77,824 ------w c:\windows\ServicePackFiles\i386\msdaosp.dll
+ 2007-03-28 12:56:32 16,384 ------w c:\windows\ServicePackFiles\i386\msdaprsr.dll
+ 2008-04-14 02:33:30 200,704 ------w c:\windows\ServicePackFiles\i386\msdaprst.dll
+ 2008-04-14 02:33:30 204,800 ------w c:\windows\ServicePackFiles\i386\msdaps.dll
+ 2008-04-14 02:33:30 118,784 ------w c:\windows\ServicePackFiles\i386\msdarem.dll
+ 2007-03-28 12:56:32 16,384 ------w c:\windows\ServicePackFiles\i386\msdaremr.dll
+ 2008-04-14 02:33:31 151,552 ------w c:\windows\ServicePackFiles\i386\msdart.dll
+ 2008-04-14 02:33:31 4,096 ------w c:\windows\ServicePackFiles\i386\msdasc.dll
+ 2008-04-14 02:33:31 315,392 ------w c:\windows\ServicePackFiles\i386\msdasql.dll
+ 2007-03-28 12:56:32 16,384 ------w c:\windows\ServicePackFiles\i386\msdasqlr.dll
+ 2008-04-14 02:33:31 94,208 ------w c:\windows\ServicePackFiles\i386\msdatl3.dll
+ 2008-04-14 02:33:31 20,480 ------w c:\windows\ServicePackFiles\i386\msdatt.dll
+ 2008-04-14 02:33:31 4,096 ------w c:\windows\ServicePackFiles\i386\msdaurl.dll
+ 2008-04-14 02:33:31 36,864 ------w c:\windows\ServicePackFiles\i386\msdfmap.dll
+ 2008-04-14 02:33:31 14,336 ------w c:\windows\ServicePackFiles\i386\msdmo.dll
+ 2008-04-14 02:34:12 6,144 ------w c:\windows\ServicePackFiles\i386\msdtc.exe
+ 2008-04-14 02:33:31 58,880 ------w c:\windows\ServicePackFiles\i386\msdtclog.dll
+ 2008-04-14 02:33:31 427,008 ------w c:\windows\ServicePackFiles\i386\msdtcprx.dll
+ 2008-04-14 02:33:31 90,112 ------w c:\windows\ServicePackFiles\i386\msdtcstp.dll
+ 2008-04-14 02:33:31 956,928 ------w c:\windows\ServicePackFiles\i386\msdtctm.dll
+ 2008-04-14 02:33:31 161,792 ------w c:\windows\ServicePackFiles\i386\msdtcuiu.dll
+ 2008-04-13 18:46:09 51,200 ------w c:\windows\ServicePackFiles\i386\msdv.sys
+ 2008-03-25 04:50:28 518,944 ------w c:\windows\ServicePackFiles\i386\msexch40.dll
+ 2008-03-25 04:50:30 326,432 ------w c:\windows\ServicePackFiles\i386\msexcl40.dll
+ 2008-04-13 18:32:39 19,072 ------w c:\windows\ServicePackFiles\i386\msfs.sys
+ 2008-04-14 02:33:31 539,136 ------w c:\windows\ServicePackFiles\i386\msftedit.dll
+ 2008-04-14 02:33:31 1,007,104 ------w c:\windows\ServicePackFiles\i386\msgina.dll
+ 2008-04-13 18:56:32 35,072 ------w c:\windows\ServicePackFiles\i386\msgpc.sys
+ 2008-04-14 02:33:31 3,166,208 ------w c:\windows\ServicePackFiles\i386\msgr3en.dll
+ 2008-04-14 02:33:31 15,360 ------w c:\windows\ServicePackFiles\i386\msgrocm.dll
+ 2008-04-14 02:33:31 82,944 ------w c:\windows\ServicePackFiles\i386\msgsc.dll
+ 2008-04-13 17:30:28 180,224 ------w c:\windows\ServicePackFiles\i386\msgslang.dll
+ 2008-04-14 02:33:31 33,792 ------w c:\windows\ServicePackFiles\i386\msgsvc.dll
+ 2008-04-14 02:34:34 188,416 ------w c:\windows\ServicePackFiles\i386\msh261.drv
+ 2008-04-14 02:34:34 294,912 ------w c:\windows\ServicePackFiles\i386\msh263.drv
+ 2008-04-14 02:34:12 29,184 ------w c:\windows\ServicePackFiles\i386\mshta.exe
+ 2008-04-14 02:33:31 3,066,880 ------w c:\windows\ServicePackFiles\i386\mshtml.dll
+ 2008-04-14 02:33:31 449,024 ------w c:\windows\ServicePackFiles\i386\mshtmled.dll
+ 2008-04-14 01:56:24 57,344 ------w c:\windows\ServicePackFiles\i386\mshtmler.dll
+ 2008-04-14 02:33:32 2,843,136 ------w c:\windows\ServicePackFiles\i386\msi.dll
+ 2008-04-14 02:33:32 51,712 ------w c:\windows\ServicePackFiles\i386\msident.dll
+ 2008-04-14 02:33:32 6,656 ------w c:\windows\ServicePackFiles\i386\msidle.dll
+ 2008-04-14 02:33:32 252,416 ------w c:\windows\ServicePackFiles\i386\msieftp.dll
+ 2008-04-14 02:34:13 78,848 ------w c:\windows\ServicePackFiles\i386\msiexec.exe
+ 2008-04-14 02:33:32 271,360 ------w c:\windows\ServicePackFiles\i386\msihnd.dll
+ 2008-04-14 02:33:32 4,608 ------w c:\windows\ServicePackFiles\i386\msimg32.dll
+ 2008-04-14 02:34:13 60,416 ------w c:\windows\ServicePackFiles\i386\msimn.exe
+ 2008-04-13 15:39:43 884,736 ------w c:\windows\ServicePackFiles\i386\msimsg.dll
+ 2008-04-14 02:33:32 159,232 ------w c:\windows\ServicePackFiles\i386\msimtf.dll
+ 2008-04-14 02:33:32 382,464 ------w c:\windows\ServicePackFiles\i386\msinfo.dll
+ 2008-04-13 18:54:28 22,016 ------w c:\windows\ServicePackFiles\i386\msircomm.sys
+ 2008-04-14 02:34:13 40,960 ------w c:\windows\ServicePackFiles\i386\msiregmv.exe
+ 2008-04-14 02:33:32 15,360 ------w c:\windows\ServicePackFiles\i386\msisip.dll
+ 2008-03-25 04:50:34 1,516,568 ------w c:\windows\ServicePackFiles\i386\msjet40.dll
+ 2008-03-25 04:50:40 355,112 ------w c:\windows\ServicePackFiles\i386\msjetol1.dll
+ 2008-03-25 04:51:08 194,144 ------w c:\windows\ServicePackFiles\i386\msjint40.dll
+ 2008-04-14 02:33:32 102,400 ------w c:\windows\ServicePackFiles\i386\msjro.dll
+ 2008-03-25 04:50:42 60,192 ------w c:\windows\ServicePackFiles\i386\msjter40.dll
+ 2008-03-25 04:50:42 248,608 ------w c:\windows\ServicePackFiles\i386\msjtes40.dll
+ 2008-04-13 18:39:52 7,552 ------w c:\windows\ServicePackFiles\i386\mskssrv.sys
+ 2008-04-14 02:33:32 25,600 ------w c:\windows\ServicePackFiles\i386\mslbui.dll
+ 2008-03-25 04:50:44 219,936 ------w c:\windows\ServicePackFiles\i386\msltus40.dll
+ 2008-04-14 02:33:32 39,936 ------w c:\windows\ServicePackFiles\i386\mslwvtts.dll
+ 2008-04-14 02:34:13 1,695,232 ------w c:\windows\ServicePackFiles\i386\msmsgs.exe
+ 2004-08-05 12:00:00 11,101,160 ------w c:\windows\ServicePackFiles\i386\msncli.exe
+ 2008-04-14 02:33:32 290,816 ------w c:\windows\ServicePackFiles\i386\msnsspc.dll
+ 2004-08-05 12:00:00 908,504 ------w c:\windows\ServicePackFiles\i386\msnsusii.exe
+ 2008-04-14 02:33:32 122,368 ------w c:\windows\ServicePackFiles\i386\msobcomm.dll
+ 2008-04-14 02:33:32 16,384 ------w c:\windows\ServicePackFiles\i386\msobdl.dll
+ 2008-04-14 02:33:32 566,272 ------w c:\windows\ServicePackFiles\i386\msobmain.dll
+ 2008-04-14 02:33:32 30,720 ------w c:\windows\ServicePackFiles\i386\msobshel.dll
+ 2008-04-14 02:33:32 19,456 ------w c:\windows\ServicePackFiles\i386\msobweb.dll
+ 2008-04-14 02:33:32 1,314,816 ------w c:\windows\ServicePackFiles\i386\msoe.dll
+ 2008-04-14 02:33:32 252,928 ------w c:\windows\ServicePackFiles\i386\msoeacct.dll
+ 2008-04-14 02:02:34 2,534,400 ------w c:\windows\ServicePackFiles\i386\msoeres.dll
+ 2008-04-14 02:33:32 105,984 ------w c:\windows\ServicePackFiles\i386\msoert2.dll
+ 2008-04-14 02:34:13 29,184 ------w c:\windows\ServicePackFiles\i386\msoobe.exe
+ 2007-03-28 12:56:34 24,576 ------w c:\windows\ServicePackFiles\i386\msorc32r.dll
+ 2008-04-14 02:33:32 143,360 ------w c:\windows\ServicePackFiles\i386\msorcl32.dll
+ 2008-04-14 02:34:14 347,648 ------w c:\windows\ServicePackFiles\i386\mspaint.exe
+ 2008-04-14 02:33:32 29,696 ------w c:\windows\ServicePackFiles\i386\mspatcha.dll
+ 2008-03-25 04:50:45 355,104 ------w c:\windows\ServicePackFiles\i386\mspbde40.dll
+ 2008-04-13 18:39:50 5,376 ------w c:\windows\ServicePackFiles\i386\mspclock.sys
+ 2008-04-13 18:39:51 4,992 ------w c:\windows\ServicePackFiles\i386\mspqm.sys
+ 2008-04-13 16:23:31 48,128 ------w c:\windows\ServicePackFiles\i386\msprivs.dll
+ 2008-04-14 02:33:32 146,432 ------w c:\windows\ServicePackFiles\i386\msrating.dll
+ 2008-03-25 04:50:47 432,928 ------w c:\windows\ServicePackFiles\i386\msrd2x40.dll
+ 2008-03-25 04:50:49 322,336 ------w c:\windows\ServicePackFiles\i386\msrd3x40.dll
+ 2008-03-25 04:50:52 559,904 ------w c:\windows\ServicePackFiles\i386\msrepl40.dll
+ 2008-04-14 02:33:32 11,264 ------w c:\windows\ServicePackFiles\i386\msrle32.dll
+ 2008-04-14 02:33:32 134,656 ------w c:\windows\ServicePackFiles\i386\mssap.dll
+ 2008-04-14 02:33:32 155,136 ------w c:\windows\ServicePackFiles\i386\mssha.dll
+ 2008-04-14 02:03:08 81,920 ------w c:\windows\ServicePackFiles\i386\msshamsg.dll
+ 2008-04-13 18:36:46 15,488 ------w c:\windows\ServicePackFiles\i386\mssmbios.sys
+ 2008-04-14 02:33:32 274,432 ------w c:\windows\ServicePackFiles\i386\mst120.dll
+ 2008-04-14 02:33:33 57,344 ------w c:\windows\ServicePackFiles\i386\mst123.dll
+ 2008-04-13 18:46:08 49,024 ------w c:\windows\ServicePackFiles\i386\mstape.sys
+ 2008-04-14 02:33:33 281,600 ------w c:\windows\ServicePackFiles\i386\mstask.dll
+ 2008-04-13 18:39:50 5,504 ------w c:\windows\ServicePackFiles\i386\mstee.sys
+ 2008-03-25 04:50:55 264,992 ------w c:\windows\ServicePackFiles\i386\mstext40.dll
+ 2008-04-14 02:33:33 532,480 ------w c:\windows\ServicePackFiles\i386\mstime.dll
+ 2008-04-14 02:34:14 12,288 ------w c:\windows\ServicePackFiles\i386\mstinit.exe
+ 2008-04-14 02:33:33 116,224 ------w c:\windows\ServicePackFiles\i386\mstlsapi.dll
+ 2008-04-14 02:33:33 195,584 ------w c:\windows\ServicePackFiles\i386\msutb.dll
+ 2008-04-14 02:33:33 132,608 ------w c:\windows\ServicePackFiles\i386\msv1_0.dll
+ 2008-04-14 02:33:33 1,384,479 ------w c:\windows\ServicePackFiles\i386\msvbvm60.dll
+ 2008-04-14 02:33:33 57,344 ------w c:\windows\ServicePackFiles\i386\msvcirt.dll
+ 2008-04-14 02:33:33 413,696 ------w c:\windows\ServicePackFiles\i386\msvcp60.dll
+ 2008-04-14 02:33:33 343,040 ------w c:\windows\ServicePackFiles\i386\msvcrt.dll
+ 2008-04-13 18:30:46 61,440 ------w c:\windows\ServicePackFiles\i386\msvcrt40.dll
+ 2008-04-14 02:33:33 122,368 ------w c:\windows\ServicePackFiles\i386\msvfw32.dll
+ 2008-04-14 02:33:33 1,434,112 ------w c:\windows\ServicePackFiles\i386\msvidctl.dll
+ 2008-04-14 02:33:33 72,704 ------w c:\windows\ServicePackFiles\i386\msw3prt.dll
+ 2008-03-25 04:50:57 838,432 ------w c:\windows\ServicePackFiles\i386\mswdat10.dll
+ 2008-04-14 02:33:33 204,800 ------w c:\windows\ServicePackFiles\i386\mswebdvd.dll
+ 2008-04-14 02:33:33 247,808 ------w c:\windows\ServicePackFiles\i386\mswsock.dll
+ 2008-03-25 04:51:09 621,344 ------w c:\windows\ServicePackFiles\i386\mswstr10.dll
+ 2008-04-14 02:33:34 24,576 ------w c:\windows\ServicePackFiles\i386\msxactps.dll
+ 2008-03-25 04:50:58 355,104 ------w c:\windows\ServicePackFiles\i386\msxbde40.dll
+ 2008-04-14 02:33:34 506,368 ------w c:\windows\ServicePackFiles\i386\msxml.dll
+ 2008-04-14 02:33:34 701,440 ------w c:\windows\ServicePackFiles\i386\msxml2.dll
+ 2008-04-14 02:33:34 1,104,896 ------w c:\windows\ServicePackFiles\i386\msxml3.dll
+ 2008-04-14 02:33:34 16,896 ------w c:\windows\ServicePackFiles\i386\msyuv.dll
+ 2004-08-03 20:41:40 126,686 ------w c:\windows\ServicePackFiles\i386\mtlmnt5.sys
+ 2004-08-03 20:41:38 1,309,184 ------w c:\windows\ServicePackFiles\i386\mtlstrm.sys
+ 2008-04-14 02:34:14 119,808 ------w c:\windows\ServicePackFiles\i386\mtstocom.exe
+ 2008-04-14 02:33:34 66,560 ------w c:\windows\ServicePackFiles\i386\mtxclu.dll
+ 2008-04-14 02:33:34 30,720 ------w c:\windows\ServicePackFiles\i386\mtxdm.dll
+ 2008-04-14 02:33:34 4,096 ------w c:\windows\ServicePackFiles\i386\mtxex.dll
+ 2008-04-14 02:33:34 34,304 ------w c:\windows\ServicePackFiles\i386\mtxlegih.dll
+ 2008-04-14 02:33:34 91,648 ------w c:\windows\ServicePackFiles\i386\mtxoci.dll
+ 2008-04-14 02:33:34 1,737,856 ------w c:\windows\ServicePackFiles\i386\mtxparhd.dll
+ 2004-08-03 20:29:38 452,736 ------w c:\windows\ServicePackFiles\i386\mtxparhm.sys
+ 2008-04-13 19:17:05 105,344 ------w c:\windows\ServicePackFiles\i386\mup.sys
+ 2008-04-13 18:43:55 12,672 ------w c:\windows\ServicePackFiles\i386\mutohpen.sys
+ 2008-04-14 02:33:34 91,648 ------w c:\windows\ServicePackFiles\i386\mydocs.dll
+ 2008-04-13 18:46:25 85,248 ------w c:\windows\ServicePackFiles\i386\nabtsfec.sys
+ 2008-04-14 02:33:34 221,184 ------w c:\windows\ServicePackFiles\i386\nac.dll
+ 2008-04-14 02:33:34 30,208 ------w c:\windows\ServicePackFiles\i386\napipsec.dll
+ 2008-04-14 02:33:34 200,704 ------w c:\windows\ServicePackFiles\i386\napmontr.dll
+ 2008-04-14 02:34:14 177,664 ------w c:\windows\ServicePackFiles\i386\napstat.exe
+ 2008-04-14 02:34:14 55,296 ------w c:\windows\ServicePackFiles\i386\narrator.exe
+ 2008-04-14 02:33:34 36,352 ------w c:\windows\ServicePackFiles\i386\ncobjapi.dll
+ 2008-04-14 02:33:34 47,104 ------w c:\windows\ServicePackFiles\i386\ncprov.dll
+ 2008-04-14 02:33:34 9,728 ------w c:\windows\ServicePackFiles\i386\ncpsres.dll
+ 2008-04-14 02:33:34 18,432 ------w c:\windows\ServicePackFiles\i386\nddeapi.dll
+ 2008-04-14 02:34:15 4,096 ------w c:\windows\ServicePackFiles\i386\nddeapir.exe
+ 2008-04-14 02:33:34 19,456 ------w c:\windows\ServicePackFiles\i386\nddenb32.dll
+ 2008-04-13 19:20:37 182,656 ------w c:\windows\ServicePackFiles\i386\ndis.sys
+ 2008-04-13 18:46:22 10,880 ------w c:\windows\ServicePackFiles\i386\ndisip.sys
+ 2008-04-14 02:33:34 57,344 ------w c:\windows\ServicePackFiles\i386\ndisnpp.dll
+ 2008-04-13 18:57:27 10,112 ------w c:\windows\ServicePackFiles\i386\ndistapi.sys
+ 2008-04-13 18:55:58 14,592 ------w c:\windows\ServicePackFiles\i386\ndisuio.sys
+ 2008-04-13 19:20:42 91,520 ------w c:\windows\ServicePackFiles\i386\ndiswan.sys
+ 2008-04-13 18:57:29 40,576 ------w c:\windows\ServicePackFiles\i386\ndproxy.sys
+ 2008-04-14 02:34:15 42,496 ------w c:\windows\ServicePackFiles\i386\net.exe
+ 2008-04-14 02:34:15 124,928 ------w c:\windows\ServicePackFiles\i386\net1.exe
+ 2008-04-14 02:33:34 337,408 ------w c:\windows\ServicePackFiles\i386\netapi32.dll
+ 2008-04-13 18:56:02 34,688 ------w c:\windows\ServicePackFiles\i386\netbios.sys
+ 2008-04-13 19:21:00 162,816 ------w c:\windows\ServicePackFiles\i386\netbt.sys
+ 2008-04-14 02:33:34 634,368 ------w c:\windows\ServicePackFiles\i386\netcfgx.dll
+ 2008-04-14 02:34:15 114,176 ------w c:\windows\ServicePackFiles\i386\netdde.exe
+ 2008-04-14 02:33:34 144,896 ------w c:\windows\ServicePackFiles\i386\netid.dll
+ 2008-04-14 02:33:34 407,040 ------w c:\windows\ServicePackFiles\i386\netlogon.dll
+ 2008-04-14 02:33:34 198,144 ------w c:\windows\ServicePackFiles\i386\netman.dll
+ 2008-04-14 02:33:34 78,336 ------w c:\windows\ServicePackFiles\i386\netoc.dll
+ 2008-04-14 02:33:34 885,248 ------w c:\windows\ServicePackFiles\i386\netplwiz.dll
+ 2008-04-14 02:33:34 11,776 ------w c:\windows\ServicePackFiles\i386\netrap.dll
+ 2008-04-14 02:37:10 332,800 ------w c:\windows\ServicePackFiles\i386\netsetup.exe
+ 2008-04-14 02:34:15 88,576 ------w c:\windows\ServicePackFiles\i386\netsh.exe
+ 2008-04-14 02:33:35 1,719,808 ------w c:\windows\ServicePackFiles\i386\netshell.dll
+ 2008-04-14 02:34:15 37,888 ------w c:\windows\ServicePackFiles\i386\netstat.exe
+ 2008-04-14 02:33:35 83,456 ------w c:\windows\ServicePackFiles\i386\netui0.dll
+ 2008-04-14 02:33:35 245,760 ------w c:\windows\ServicePackFiles\i386\netui1.dll
+ 2004-08-03 22:47:58 132,695 ------w c:\windows\ServicePackFiles\i386\netwlan5.sys
+ 2008-04-14 02:33:35 250,880 ------w c:\windows\ServicePackFiles\i386\newdev.dll
+ 2008-04-13 18:51:25 61,824 ------w c:\windows\ServicePackFiles\i386\nic1394.sys
+ 2008-04-14 02:33:35 98,304 ------w c:\windows\ServicePackFiles\i386\nlhtml.dll
+ 2008-04-14 02:33:36 229,376 ------w c:\windows\ServicePackFiles\i386\nmas.dll
+ 2008-04-14 02:33:36 28,672 ------w c:\windows\ServicePackFiles\i386\nmasnt.dll
+ 2008-04-14 02:33:36 81,920 ------w c:\windows\ServicePackFiles\i386\nmchat.dll
+ 2008-04-14 02:33:36 77,824 ------w c:\windows\ServicePackFiles\i386\nmcom.dll
+ 2008-04-14 02:33:36 155,648 ------w c:\windows\ServicePackFiles\i386\nmft.dll
+ 2008-04-14 02:33:36 28,672 ------w c:\windows\ServicePackFiles\i386\nmmkcert.dll
+ 2008-04-13 18:53:09 40,320 ------w c:\windows\ServicePackFiles\i386\nmnt.sys
+ 2008-04-14 02:33:36 172,032 ------w c:\windows\ServicePackFiles\i386\nmoldwb.dll
+ 2008-04-14 02:33:36 192,512 ------w c:\windows\ServicePackFiles\i386\nmwb.dll
+ 2008-04-14 02:34:15 70,656 ------w c:\windows\ServicePackFiles\i386\notepad.exe
+ 2008-04-13 18:32:39 30,848 ------w c:\windows\ServicePackFiles\i386\npfs.sys
+ 2008-04-14 02:34:15 15,360 ------w c:\windows\ServicePackFiles\i386\nppagent.exe
+ 2008-04-14 02:33:36 55,296 ------w c:\windows\ServicePackFiles\i386\npptools.dll
+ 2008-04-13 18:54:36 28,672 ------w c:\windows\ServicePackFiles\i386\nscirda.sys
+ 2008-04-14 02:34:15 79,360 ------w c:\windows\ServicePackFiles\i386\nslookup.exe
+ 2004-08-05 12:00:00 47,564 ------w c:\windows\ServicePackFiles\i386\ntdetect.com
+ 2008-04-14 02:33:02 731,136 ------w c:\windows\ServicePackFiles\i386\ntdll.dll
+ 2008-04-14 02:33:36 67,072 ------w c:\windows\ServicePackFiles\i386\ntdsapi.dll
+ 2008-04-14 02:33:36 212,992 ------w c:\windows\ServicePackFiles\i386\ntevt.dll
+ 2008-04-13 19:15:53 574,976 ------w c:\windows\ServicePackFiles\i386\ntfs.sys
+ 2004-08-05 12:00:00 34,000 ------w c:\windows\ServicePackFiles\i386\ntio.sys
+ 2004-08-05 12:00:00 34,560 ------w c:\windows\ServicePackFiles\i386\ntio404.sys
+ 2004-08-05 12:00:00 35,648 ------w c:\windows\ServicePackFiles\i386\ntio411.sys
+ 2004-08-05 12:00:00 35,424 ------w c:\windows\ServicePackFiles\i386\ntio412.sys
+ 2004-08-05 12:00:00 34,560 ------w c:\windows\ServicePackFiles\i386\ntio804.sys
+ 2008-04-14 02:07:16 2,147,328 ------w c:\windows\ServicePackFiles\i386\ntkrnlmp.exe
+ 2008-04-14 02:07:26 2,067,968 ------w c:\windows\ServicePackFiles\i386\ntkrnlpa.exe
+ 2008-04-14 02:07:35 2,025,984 ------w c:\windows\ServicePackFiles\i386\ntkrpamp.exe
+ 2008-04-14 02:33:36 44,032 ------w c:\windows\ServicePackFiles\i386\ntlanman.dll
+ 2008-04-14 02:33:36 8,192 ------w c:\windows\ServicePackFiles\i386\ntlsapi.dll
+ 2008-04-14 02:33:36 119,808 ------w c:\windows\ServicePackFiles\i386\ntmarta.dll
+ 2008-04-14 02:33:36 40,960 ------w c:\windows\ServicePackFiles\i386\ntmsapi.dll
+ 2008-04-14 02:33:36 181,248 ------w c:\windows\ServicePackFiles\i386\ntmsdba.dll
+ 2008-04-14 02:33:36 496,640 ------w c:\windows\ServicePackFiles\i386\ntmsmgr.dll
+ 2008-04-14 02:33:36 438,272 ------w c:\windows\ServicePackFiles\i386\ntmssvc.dll
+ 2004-08-03 20:41:40 180,360 ------w c:\windows\ServicePackFiles\i386\ntmtlfax.sys
+ 2008-04-14 02:33:36 63,488 ------w c:\windows\ServicePackFiles\i386\ntoc.dll
+ 2008-04-14 02:08:03 2,191,104 ------w c:\windows\ServicePackFiles\i386\ntoskrnl.exe
+ 2008-04-14 02:33:36 91,648 ------w c:\windows\ServicePackFiles\i386\ntprint.dll
+ 2008-04-14 02:33:36 145,920 ------w c:\windows\ServicePackFiles\i386\ntshrui.dll
+ 2008-04-14 02:34:16 421,888 ------w c:\windows\ServicePackFiles\i386\ntvdm.exe
+ 2008-04-14 02:33:36 15,360 ------w c:\windows\ServicePackFiles\i386\ntvdmd.dll
+ 2008-04-14 02:33:36 4,274,816 ------w c:\windows\ServicePackFiles\i386\nv4_disp.dll
+ 2004-08-03 20:29:56 1,897,408 ------w c:\windows\ServicePackFiles\i386\nv4_mini.sys
+ 2008-04-13 18:56:06 88,320 ------w c:\windows\ServicePackFiles\i386\nwlnkipx.sys
+ 2008-04-14 02:33:36 145,920 ------w c:\windows\ServicePackFiles\i386\nwprovau.dll
+ 2008-04-14 02:33:36 271,360 ------w c:\windows\ServicePackFiles\i386\oakley.dll
+ 2008-04-14 02:33:37 289,280 ------w c:\windows\ServicePackFiles\i386\objsel.dll
+ 2008-04-13 18:40:32 445,440 ------w c:\windows\ServicePackFiles\i386\obrs040c.dll
+ 2008-04-14 02:33:38 97,280 ------w c:\windows\ServicePackFiles\i386\occache.dll
+ 2008-04-14 02:33:38 15,872 ------w c:\windows\ServicePackFiles\i386\ocgen.dll
+ 2008-04-14 02:33:38 69,632 ------w c:\windows\ServicePackFiles\i386\ocmanage.dll
+ 2008-04-14 02:33:38 17,408 ------w c:\windows\ServicePackFiles\i386\ocmsn.dll
+ 2004-08-05 12:00:00 26,224 ------w c:\windows\ServicePackFiles\i386\odbc16gt.dll
+ 2008-04-14 02:33:38 249,856 ------w c:\windows\ServicePackFiles\i386\odbc32.dll
+ 2008-04-14 02:33:38 16,384 ------w c:\windows\ServicePackFiles\i386\odbc32gt.dll
+ 2008-04-14 02:34:17 32,768 ------w c:\windows\ServicePackFiles\i386\odbcad32.exe
+ 2008-04-14 02:33:38 24,576 ------w c:\windows\ServicePackFiles\i386\odbcbcp.dll
+ 2008-04-14 02:33:38 135,168 ------w c:\windows\ServicePackFiles\i386\odbcconf.dll
+ 2008-04-14 02:34:17 69,632 ------w c:\windows\ServicePackFiles\i386\odbcconf.exe
+ 2008-04-14 02:33:38 106,496 ------w c:\windows\ServicePackFiles\i386\odbccp32.dll
+ 2008-04-14 02:33:38 65,536 ------w c:\windows\ServicePackFiles\i386\odbccr32.dll
+ 2008-04-14 02:33:38 65,536 ------w c:\windows\ServicePackFiles\i386\odbccu32.dll
+ 2007-03-28 12:56:42 98,304 ------w c:\windows\ServicePackFiles\i386\odbcint.dll
+ 2008-04-14 02:32:14 61,471 ------w c:\windows\ServicePackFiles\i386\odbcji32.dll
+ 2008-04-14 02:33:38 278,559 ------w c:\windows\ServicePackFiles\i386\odbcjt32.dll
+ 2008-04-13 17:26:05 12,288 ------w c:\windows\ServicePackFiles\i386\odbcp32r.dll
+ 2008-04-14 02:33:38 147,456 ------w c:\windows\ServicePackFiles\i386\odbctrac.dll
+ 2008-04-14 02:33:38 20,511 ------w c:\windows\ServicePackFiles\i386\oddbse32.dll
+ 2008-04-14 02:33:38 20,510 ------w c:\windows\ServicePackFiles\i386\odexl32.dll
+ 2008-04-14 02:33:38 20,510 ------w c:\windows\ServicePackFiles\i386\odfox32.dll
+ 2008-04-14 02:33:38 20,510 ------w c:\windows\ServicePackFiles\i386\odpdx32.dll
+ 2008-04-14 02:33:38 20,511 ------w c:\windows\ServicePackFiles\i386\odtext32.dll
+ 2008-04-14 02:33:38 104,448 ------w c:\windows\ServicePackFiles\i386\oeimport.dll
+ 2008-04-14 02:34:17 60,928 ------w c:\windows\ServicePackFiles\i386\oemig50.exe
+ 2008-04-14 02:33:38 35,840 ------w c:\windows\ServicePackFiles\i386\oemiglib.dll
+ 2008-04-14 02:33:38 192,000 ------w c:\windows\ServicePackFiles\i386\offfilt.dll
+ 2008-04-13 18:46:18 61,696 ------w c:\windows\ServicePackFiles\i386\ohci1394.sys
+ 2008-04-14 02:33:38 1,287,168 ------w c:\windows\ServicePackFiles\i386\ole32.dll
+ 2008-04-14 02:33:38 551,936 ------w c:\windows\ServicePackFiles\i386\oleaut32.dll
+ 2008-04-14 02:33:38 75,264 ------w c:\windows\ServicePackFiles\i386\olecli32.dll
+ 2008-04-14 02:33:38 37,376 ------w c:\windows\ServicePackFiles\i386\olecnv32.dll
+ 2008-04-14 02:33:38 487,424 ------w c:\windows\ServicePackFiles\i386\oledb32.dll
+ 2008-04-14 02:33:38 77,824 ------w c:\windows\ServicePackFiles\i386\oledb32r.dll
+ 2008-04-14 02:33:38 124,928 ------w c:\windows\ServicePackFiles\i386\oledlg.dll
+ 2008-04-14 02:33:38 110,592 ------w c:\windows\ServicePackFiles\i386\oleprn.dll
+ 2008-04-14 02:33:38 84,992 ------w c:\windows\ServicePackFiles\i386\olepro32.dll
+ 2008-04-14 02:33:38 144,896 ------w c:\windows\ServicePackFiles\i386\onex.dll
+ 2008-04-14 02:34:17 51,712 ------w c:\windows\ServicePackFiles\i386\oobebaln.exe
+ 2008-04-14 02:33:38 713,728 ------w c:\windows\ServicePackFiles\i386\opengl32.dll
+ 2008-04-13 18:32:32 166,912 ------w c:\windows\ServicePackFiles\i386\oschoice.exe
+ 2008-04-14 02:34:17 216,576 ------w c:\windows\ServicePackFiles\i386\osk.exe
+ 2008-04-13 18:31:52 232,448 ------w c:\windows\ServicePackFiles\i386\osloader.exe
+ 2008-04-14 02:33:38 68,096 ------w c:\windows\ServicePackFiles\i386\osuninst.dll
+ 2008-04-14 02:33:38 153,600 ------w c:\windows\ServicePackFiles\i386\p2p.dll
+ 2008-04-14 02:33:38 105,472 ------w c:\windows\ServicePackFiles\i386\p2pgasvc.dll
+ 2008-04-14 02:33:38 313,856 ------w c:\windows\ServicePackFiles\i386\p2pgraph.dll
+ 2008-04-14 02:33:38 115,712 ------w c:\windows\ServicePackFiles\i386\p2pnetsh.dll
+ 2008-04-14 02:33:38 554,496 ------w c:\windows\ServicePackFiles\i386\p2psvc.dll
+ 2008-04-14 02:09:37 46,848 ------w c:\windows\ServicePackFiles\i386\p3.sys
+ 2008-04-14 02:34:17 59,904 ------w c:\windows\ServicePackFiles\i386\packager.exe
+ 2008-04-14 02:09:40 80,384 ------w c:\windows\ServicePackFiles\i386\parport.sys
+ 2008-04-13 18:40:49 19,712 ------w c:\windows\ServicePackFiles\i386\partmgr.sys
+ 2008-04-14 02:33:38 69,632 ------w c:\windows\ServicePackFiles\i386\pautoenr.dll
+ 2004-08-03 20:31:24 29,502 ------w c:\windows\ServicePackFiles\i386\pca200e.sys
+ 2008-04-14 02:33:38 102,912 ------w c:\windows\ServicePackFiles\i386\pchshell.dll
+ 2008-04-14 02:33:38 38,400 ------w c:\windows\ServicePackFiles\i386\pchsvc.dll
+ 2008-04-14 02:09:47 68,608 ------w c:\windows\ServicePackFiles\i386\pci.sys
+ 2008-04-13 18:40:29 24,960 ------w c:\windows\ServicePackFiles\i386\pciidex.sys
+ 2007-05-15 08:08:11 288,768 ------w c:\windows\ServicePackFiles\i386\pcl4res.dll
+ 2007-05-15 08:08:13 1,058,816 ------w c:\windows\ServicePackFiles\i386\pcl5eres.dll
+ 2007-05-15 08:08:14 1,057,280 ------w c:\windows\ServicePackFiles\i386\pcl5ures.dll
+ 2007-05-15 08:08:14 207,872 ------w c:\windows\ServicePackFiles\i386\pclxl.dll
+ 2008-04-14 02:09:53 120,576 ------w c:\windows\ServicePackFiles\i386\pcmcia.sys
+ 2004-08-03 20:06:18 169,984 ------w c:\windows\ServicePackFiles\i386\pcx500.sys
+ 2008-04-14 02:33:38 286,720 ------w c:\windows\ServicePackFiles\i386\pdh.dll
+ 2008-04-14 02:33:38 42,496 ------w c:\windows\ServicePackFiles\i386\perfctrs.dll
+ 2008-04-14 02:33:38 27,136 ------w c:\windows\ServicePackFiles\i386\perfdisk.dll
+ 2008-04-14 02:34:17 15,872 ------w c:\windows\ServicePackFiles\i386\perfmon.exe
+ 2008-04-14 02:33:38 18,432 ------w c:\windows\ServicePackFiles\i386\perfnet.dll
+ 2008-04-14 02:33:38 26,624 ------w c:\windows\ServicePackFiles\i386\perfos.dll
+ 2008-04-14 02:33:38 35,840 ------w c:\windows\ServicePackFiles\i386\perfproc.dll
+ 2008-04-13 18:44:29 27,904 ------w c:\windows\ServicePackFiles\i386\perm2.sys
+ 2008-04-14 02:32:16 211,584 ------w c:\windows\ServicePackFiles\i386\perm2dll.dll
+ 2008-04-13 18:44:30 28,032 ------w c:\windows\ServicePackFiles\i386\perm3.sys
+ 2008-04-14 02:32:16 259,328 ------w c:\windows\ServicePackFiles\i386\perm3dd.dll
+ 2008-04-14 02:33:38 172,032 ------w c:\windows\ServicePackFiles\i386\photowiz.dll
+ 2008-04-14 02:33:38 35,328 ------w c:\windows\ServicePackFiles\i386\pid.dll
+ 2008-04-13 18:35:22 24,064 ------w c:\windows\ServicePackFiles\i386\pidgen.dll
+ 2008-04-14 02:34:18 284,160 ------w c:\windows\ServicePackFiles\i386\pinball.exe
+ 2008-04-14 02:34:18 19,456 ------w c:\windows\ServicePackFiles\i386\ping.exe
+ 2008-04-14 02:33:38 15,360 ------w c:\windows\ServicePackFiles\i386\pjlmon.dll
+ 2008-04-14 02:33:38 44,544 ------w c:\windows\ServicePackFiles\i386\plotter.dll
+ 2008-04-14 02:33:38 53,760 ------w c:\windows\ServicePackFiles\i386\plotui.dll
+ 2008-04-14 02:33:38 412,160 ------w c:\windows\ServicePackFiles\i386\pmh.dll
+ 2008-04-14 02:33:38 39,424 ------w c:\windows\ServicePackFiles\i386\pngfilt.dll
+ 2008-04-14 02:33:38 58,880 ------w c:\windows\ServicePackFiles\i386\pnrpnsp.dll
+ 2008-04-14 02:33:38 106,496 ------w c:\windows\ServicePackFiles\i386\polstore.dll
+ 2008-04-13 19:19:41 146,048 ------w c:\windows\ServicePackFiles\i386\portcls.sys
+ 2008-04-14 02:34:18 49,152 ------w c:\windows\ServicePackFiles\i386\powercfg.exe
+ 2008-04-13 18:40:56 8,832 ------w c:\windows\ServicePackFiles\i386\powerfil.sys
+ 2008-04-14 02:33:38 17,408 ------w c:\windows\ServicePackFiles\i386\powrprof.dll
+ 2008-04-13 18:41:00 17,664 ------w c:\windows\ServicePackFiles\i386\ppa3.sys
+ 2008-04-14 02:33:38 578,560 ------w c:\windows\ServicePackFiles\i386\printui.dll
+ 2008-04-14 01:55:30 40,064 ------w c:\windows\ServicePackFiles\i386\processr.sys
+ 2008-04-14 02:33:38 27,648 ------w c:\windows\ServicePackFiles\i386\profmap.dll
+ 2008-04-14 02:34:18 109,568 ------w c:\windows\ServicePackFiles\i386\progman.exe
+ 2008-04-14 02:34:18 50,688 ------w c:\windows\ServicePackFiles\i386\proquota.exe
+ 2008-04-14 02:33:38 237,056 ------w c:\windows\ServicePackFiles\i386\provthrd.dll
+ 2008-04-14 02:34:18 9,728 ------w c:\windows\ServicePackFiles\i386\proxycfg.exe
+ 2008-04-14 02:33:38 728,576 ------w c:\windows\ServicePackFiles\i386\ps5ui.dll
+ 2008-04-14 02:33:38 23,040 ------w c:\windows\ServicePackFiles\i386\psapi.dll
+ 2008-04-14 02:33:38 98,816 ------w c:\windows\ServicePackFiles\i386\psbase.dll
+ 2008-04-13 18:56:38 69,120 ------w c:\windows\ServicePackFiles\i386\psched.sys
+ 2008-04-14 02:33:38 543,232 ------w c:\windows\ServicePackFiles\i386\pscript5.dll
+ 2008-04-14 02:33:38 363,520 ------w c:\windows\ServicePackFiles\i386\psisdecd.dll
+ 2008-04-14 02:33:38 43,520 ------w c:\windows\ServicePackFiles\i386\pstorec.dll
+ 2008-04-14 02:33:38 34,304 ------w c:\windows\ServicePackFiles\i386\pstorsvc.dll
+ 2008-04-14 02:33:39 159,232 ------w c:\windows\ServicePackFiles\i386\ptpusd.dll
+ 2008-04-14 02:33:39 151,040 ------w c:\windows\ServicePackFiles\i386\qagent.dll
+ 2008-04-14 02:33:39 293,376 ------w c:\windows\ServicePackFiles\i386\qagentrt.dll
+ 2008-04-14 02:33:39 237,568 ------w c:\windows\ServicePackFiles\i386\qasf.dll
+ 2008-04-14 02:33:39 192,512 ------w c:\windows\ServicePackFiles\i386\qcap.dll
+ 2008-04-14 02:33:39 62,464 ------w c:\windows\ServicePackFiles\i386\qcliprov.dll
+ 2008-04-14 02:33:39 279,040 ------w c:\windows\ServicePackFiles\i386\qdv.dll
+ 2008-04-14 02:33:39 387,072 ------w c:\windows\ServicePackFiles\i386\qdvd.dll
+ 2008-04-14 02:33:39 563,200 ------w c:\windows\ServicePackFiles\i386\qedit.dll
+ 2008-04-13 17:21:32 733,696 ------w c:\windows\ServicePackFiles\i386\qedwipes.dll
+ 2008-04-13 18:40:52 6,016 ------w c:\windows\ServicePackFiles\i386\qic157.sys
+ 2008-04-14 02:33:39 409,088 ------w c:\windows\ServicePackFiles\i386\qmgr.dll
+ 2008-04-14 02:33:39 18,944 ------w c:\windows\ServicePackFiles\i386\qmgrprxy.dll
+ 2008-04-14 02:34:18 20,992 ------w c:\windows\ServicePackFiles\i386\qprocess.exe
+ 2008-04-14 02:33:39 1,294,336 ------w c:\windows\ServicePackFiles\i386\quartz.dll
+ 2008-04-14 02:33:39 1,440,768 ------w c:\windows\ServicePackFiles\i386\query.dll
+ 2008-04-14 02:33:39 76,800 ------w c:\windows\ServicePackFiles\i386\qutil.dll
+ 2008-04-14 02:33:39 43,520 ------w c:\windows\ServicePackFiles\i386\racpldlg.dll
+ 2008-04-13 18:41:23 20,736 ------w c:\windows\ServicePackFiles\i386\ramdisk.sys
+ 2008-04-14 02:33:39 7,680 ------w c:\windows\ServicePackFiles\i386\rasadhlp.dll
+ 2008-04-14 02:33:39 237,056 ------w c:\windows\ServicePackFiles\i386\rasapi32.dll
+ 2008-04-14 02:33:39 88,576 ------w c:\windows\ServicePackFiles\i386\rasauto.dll
+ 2008-04-14 02:33:39 79,872 ------w c:\windows\ServicePackFiles\i386\raschap.dll
+ 2008-04-14 02:33:39 685,568 ------w c:\windows\ServicePackFiles\i386\rasdlg.dll
+ 2008-04-13 19:19:43 51,328 ------w c:\windows\ServicePackFiles\i386\rasl2tp.sys
+ 2008-04-14 02:33:39 61,440 ------w c:\windows\ServicePackFiles\i386\rasman.dll
+ 2008-04-14 02:33:39 186,368 ------w c:\windows\ServicePackFiles\i386\rasmans.dll
+ 2008-04-14 02:34:18 57,344 ------w c:\windows\ServicePackFiles\i386\rasphone.exe
+ 2008-04-14 02:33:39 210,944 ------w c:\windows\ServicePackFiles\i386\rasppp.dll
+ 2008-04-13 18:57:32 41,472 ------w c:\windows\ServicePackFiles\i386\raspppoe.sys
+ 2008-04-13 19:19:48 48,384 ------w c:\windows\ServicePackFiles\i386\raspptp.sys
+ 2008-04-14 02:33:39 61,952 ------w c:\windows\ServicePackFiles\i386\rasqec.dll
+ 2008-04-14 02:33:39 16,384 ------w c:\windows\ServicePackFiles\i386\rassapi.dll
+ 2008-04-14 02:33:39 58,368 ------w c:\windows\ServicePackFiles\i386\rastapi.dll
+ 2008-04-14 02:33:39 151,040 ------w c:\windows\ServicePackFiles\i386\rastls.dll
+ 2008-04-14 02:33:39 102,912 ------w c:\windows\ServicePackFiles\i386\rcbdyctl.dll
+ 2008-04-14 02:34:18 35,840 ------w c:\windows\ServicePackFiles\i386\rcimlby.exe
+ 2008-04-14 02:34:18 23,040 ------w c:\windows\ServicePackFiles\i386\rcp.exe
+ 2008-04-13 19:28:39 175,744 ------w c:\windows\ServicePackFiles\i386\rdbss.sys
+ 2008-04-14 02:33:39 147,968 ------w c:\windows\ServicePackFiles\i386\rdchost.dll
+ 2008-04-14 02:34:18 62,976 ------w c:\windows\ServicePackFiles\i386\rdpclip.exe
+ 2008-04-14 02:34:53 92,424 ------w c:\windows\ServicePackFiles\i386\rdpdd.dll
+ 2008-04-13 18:32:51 196,224 ------w c:\windows\ServicePackFiles\i386\rdpdr.sys
+ 2008-04-14 02:33:39 19,968 ------w c:\windows\ServicePackFiles\i386\rdpsnd.dll
+ 2008-04-14 02:34:54 139,656 ------w c:\windows\ServicePackFiles\i386\rdpwd.sys
+ 2008-04-14 02:34:54 87,176 ------w c:\windows\ServicePackFiles\i386\rdpwsx.dll
+ 2008-04-14 02:34:18 13,824 ------w c:\windows\ServicePackFiles\i386\rdsaddin.exe
+ 2008-04-14 02:34:18 67,072 ------w c:\windows\ServicePackFiles\i386\rdshost.exe
+ 2004-08-03 20:41:40 13,776 ------w c:\windows\ServicePackFiles\i386\recagent.sys
+ 2008-04-14 01:57:34 58,752 ------w c:\windows\ServicePackFiles\i386\redbook.sys
+ 2004-08-05 12:00:00 3,352 ------w c:\windows\ServicePackFiles\i386\redir.exe
+ 2008-04-14 02:34:18 53,248 ------w c:\windows\ServicePackFiles\i386\reg.exe
+ 2008-04-14 02:33:39 49,664 ------w c:\windows\ServicePackFiles\i386\regapi.dll
+ 2008-04-14 02:34:19 153,088 ------w c:\windows\ServicePackFiles\i386\regedit.exe
+ 2008-04-14 02:33:39 59,904 ------w c:\windows\ServicePackFiles\i386\regsvc.dll
+ 2008-04-14 02:34:19 12,288 ------w c:\windows\ServicePackFiles\i386\regsvr32.exe
+ 2008-04-14 02:33:39 405,504 ------w c:\windows\ServicePackFiles\i386\regwizc.dll
+ 2008-04-14 02:33:39 61,952 ------w c:\windows\ServicePackFiles\i386\remotepg.dll
+ 2008-04-14 02:33:39 178,176 ------w c:\windows\ServicePackFiles\i386\repdrvfs.dll
+ 2008-04-14 02:33:39 58,880 ------w c:\windows\ServicePackFiles\i386\resutils.dll
+ 2008-04-14 02:34:19 14,848 ------w c:\windows\ServicePackFiles\i386\rexec.exe
+ 2008-04-13 18:46:32 59,136 ------w c:\windows\ServicePackFiles\i386\rfcomm.sys
+ 2008-04-14 02:33:39 290,304 ------w c:\windows\ServicePackFiles\i386\rhttpaa.dll
+ 2008-04-14 02:33:39 124,416 ------w c:\windows\ServicePackFiles\i386\riafres.dll
+ 2008-04-14 02:33:39 12,288 ------w c:\windows\ServicePackFiles\i386\riafui1.dll
+ 2008-04-14 02:33:39 12,288 ------w c:\windows\ServicePackFiles\i386\riafui2.dll
+ 2008-04-14 02:33:39 433,664 ------w c:\windows\ServicePackFiles\i386\riched20.dll
+ 2008-04-13 18:55:08 202,624 ------w c:\windows\ServicePackFiles\i386\rmcast.sys
+ 2008-04-13 18:56:49 30,592 ------w c:\windows\ServicePackFiles\i386\rndismp.sys
+ 2008-04-13 18:56:49 30,592 ------w c:\windows\ServicePackFiles\i386\rndismpx.sys
+ 2008-04-14 01:58:29 79,360 ------w c:\windows\ServicePackFiles\i386\rocket.sys
+ 2008-04-14 02:33:39 584,704 ------w c:\windows\ServicePackFiles\i386\rpcrt4.dll
+ 2008-04-14 02:33:39 399,360 ------w c:\windows\ServicePackFiles\i386\rpcss.dll
+ 2008-04-14 02:33:39 61,440 ------w c:\windows\ServicePackFiles\i386\rrcm.dll
+ 2008-04-13 17:37:57 208,384 ------w c:\windows\ServicePackFiles\i386\rsaenh.dll
+ 2008-04-14 02:34:19 15,872 ------w c:\windows\ServicePackFiles\i386\rsh.exe
+ 2008-04-14 02:33:39 40,960 ------w c:\windows\ServicePackFiles\i386\rshx32.dll
+ 2008-04-14 02:33:39 18,944 ------w c:\windows\ServicePackFiles\i386\rsmps.dll
+ 2008-04-14 02:34:19 384,512 ------w c:\windows\ServicePackFiles\i386\rstrui.exe
+ 2008-04-14 02:33:39 92,672 ------w c:\windows\ServicePackFiles\i386\rsvpsp.dll
+ 2008-04-14 02:34:20 78,336 ------w c:\windows\ServicePackFiles\i386\rtcshare.exe
+ 2008-04-14 02:33:39 31,744 ------w c:\windows\ServicePackFiles\i386\rtipxmib.dll
+ 2004-08-03 20:31:34 20,992 ------w c:\windows\ServicePackFiles\i386\rtl8139.sys
+ 2008-04-14 02:33:39 44,032 ------w c:\windows\ServicePackFiles\i386\rtutils.dll
+ 2008-04-14 02:34:20 33,792 ------w c:\windows\ServicePackFiles\i386\rundll32.exe
+ 2008-04-14 02:34:20 14,336 ------w c:\windows\ServicePackFiles\i386\runonce.exe
+ 2008-04-14 02:33:39 28,160 ------w c:\windows\ServicePackFiles\i386\rw001ext.dll
+ 2008-04-14 02:33:39 29,184 ------w c:\windows\ServicePackFiles\i386\rw330ext.dll
+ 2008-04-14 02:33:39 28,160 ------w c:\windows\ServicePackFiles\i386\rw430ext.dll
+ 2008-04-14 02:33:39 29,696 ------w c:\windows\ServicePackFiles\i386\rw450ext.dll
+ 2008-04-14 02:33:39 397,056 ------w c:\windows\ServicePackFiles\i386\s3gnb.dll
+ 2004-08-03 20:29:52 166,912 ------w c:\windows\ServicePackFiles\i386\s3gnbm.sys
+ 2008-04-14 02:33:39 43,520 ------w c:\windows\ServicePackFiles\i386\safrcdlg.dll
+ 2008-04-14 02:33:39 29,696 ------w c:\windows\ServicePackFiles\i386\safrdm.dll
+ 2008-04-14 02:33:39 45,568 ------w c:\windows\ServicePackFiles\i386\safrslv.dll
+ 2008-04-14 02:33:39 64,000 ------w c:\windows\ServicePackFiles\i386\samlib.dll
+ 2008-04-14 02:33:39 431,104 ------w c:\windows\ServicePackFiles\i386\samsrv.dll
+ 2008-04-14 02:33:39 741,376 ------w c:\windows\ServicePackFiles\i386\sapi.dll
+ 2008-04-14 02:34:20 13,824 ------w c:\windows\ServicePackFiles\i386\savedump.exe
+ 2008-04-14 02:33:39 270,848 ------w c:\windows\ServicePackFiles\i386\sbe.dll
+ 2008-04-14 02:33:39 159,232 ------w c:\windows\ServicePackFiles\i386\sbeio.dll
+ 2008-04-13 18:40:48 43,904 ------w c:\windows\ServicePackFiles\i386\sbp2port.sys
+ 2008-04-14 02:33:40 71,168 ------w c:\windows\ServicePackFiles\i386\scarddlg.dll
+ 2008-04-14 02:34:20 100,352 ------w c:\windows\ServicePackFiles\i386\scardsvr.exe
+ 2004-08-05 12:00:00 169,984 ------w c:\windows\ServicePackFiles\i386\sccbase.dll
+ 2008-04-14 02:33:40 171,520 ------w c:\windows\ServicePackFiles\i386\sccsccp.dll
+ 2008-04-14 02:33:40 187,392 ------w c:\windows\ServicePackFiles\i386\scecli.dll
+ 2008-04-14 02:33:40 329,728 ------w c:\windows\ServicePackFiles\i386\scesrv.dll
+ 2008-04-14 02:33:40 144,384 ------w c:\windows\ServicePackFiles\i386\schannel.dll
+ 2008-04-14 02:33:40 194,560 ------w c:\windows\ServicePackFiles\i386\schedsvc.dll
+ 2008-04-14 02:33:40 22,016 ------w c:\windows\ServicePackFiles\i386\sclgntfy.dll
+ 2008-04-14 02:34:20 36,352 ------w c:\windows\ServicePackFiles\i386\scrcons.exe
+ 2008-04-14 02:33:40 217,600 ------w c:\windows\ServicePackFiles\i386\script.dll
+ 2008-04-14 02:33:40 201,216 ------w c:\windows\ServicePackFiles\i386\scripta.dll
+ 2008-04-14 02:34:32 9,216 ------w c:\windows\ServicePackFiles\i386\scrnsave.scr
+ 2008-04-14 02:33:40 180,224 ------w c:\windows\ServicePackFiles\i386\scrobj.dll
+ 2008-04-14 02:33:40 172,032 ------w c:\windows\ServicePackFiles\i386\scrrun.dll
+ 2008-04-13 18:40:30 96,384 ------w c:\windows\ServicePackFiles\i386\scsiport.sys
+ 2008-04-13 18:45:33 11,520 ------w c:\windows\ServicePackFiles\i386\scsiscan.sys
+ 2008-04-14 02:34:20 78,848 ------w c:\windows\ServicePackFiles\i386\sdbinst.exe
+ 2008-04-13 18:36:44 79,232 ------w c:\windows\ServicePackFiles\i386\sdbus.sys
+ 2008-04-14 02:33:40 29,184 ------w c:\windows\ServicePackFiles\i386\sdhcinst.dll
+ 2007-11-13 10:25:54 20,480 ------w c:\windows\ServicePackFiles\i386\secdrv.sys
+ 2008-04-14 02:33:40 18,944 ------w c:\windows\ServicePackFiles\i386\seclogon.dll
+ 2006-12-30 17:27:08 4,569 ------w c:\windows\ServicePackFiles\i386\secupd.dat
+ 2008-04-14 02:33:40 56,320 ------w c:\windows\ServicePackFiles\i386\secur32.dll
+ 2008-04-14 02:33:40 5,632 ------w c:\windows\ServicePackFiles\i386\security.dll
+ 2008-04-14 02:33:40 29,696 ------w c:\windows\ServicePackFiles\i386\sendcmsg.dll
+ 2008-04-14 02:33:40 55,296 ------w c:\windows\ServicePackFiles\i386\sendmail.dll
+ 2008-04-14 02:33:40 39,424 ------w c:\windows\ServicePackFiles\i386\sens.dll
+ 2008-04-14 02:33:40 7,168 ------w c:\windows\ServicePackFiles\i386\sensapi.dll
+ 2008-04-13 18:40:12 15,744 ------w c:\windows\ServicePackFiles\i386\serenum.sys
+ 2008-04-14 02:00:08 66,048 ------w c:\windows\ServicePackFiles\i386\serial.sys
+ 2008-04-14 02:33:40 56,320 ------w c:\windows\ServicePackFiles\i386\servdeps.dll
+ 2008-04-14 02:34:20 109,056 ------w c:\windows\ServicePackFiles\i386\services.exe
+ 2008-04-14 02:34:21 142,848 ------w c:\windows\ServicePackFiles\i386\sessmgr.exe
+ 2008-04-14 02:34:21 32,768 ------w c:\windows\ServicePackFiles\i386\sethc.exe
+ 2008-04-14 02:34:21 23,040 ------w c:\windows\ServicePackFiles\i386\setup.exe
+ 2008-04-14 02:34:21 73,728 ------w c:\windows\ServicePackFiles\i386\setup50.exe
+ 2008-04-13 17:33:42 1,005,056 ------w c:\windows\ServicePackFiles\i386\setupapi.dll
+ 2008-04-14 02:34:21 32,768 ------w c:\windows\ServicePackFiles\i386\setupn.exe
+ 2008-04-14 02:33:41 101,888 ------w c:\windows\ServicePackFiles\i386\setupqry.dll
+ 2008-04-14 02:33:41 5,120 ------w c:\windows\ServicePackFiles\i386\sfc.dll
+ 2008-04-14 02:33:41 142,336 ------w c:\windows\ServicePackFiles\i386\sfc_os.dll
+ 2008-04-14 02:33:41 1,571,840 ------w c:\windows\ServicePackFiles\i386\sfcfiles.dll
+ 2008-04-13 18:40:47 11,904 ------w c:\windows\ServicePackFiles\i386\sffdisk.sys
+ 2008-04-13 18:40:48 10,240 ------w c:\windows\ServicePackFiles\i386\sffp_mmc.sys
+ 2008-04-13 18:40:47 11,008 ------w c:\windows\ServicePackFiles\i386\sffp_sd.sys
+ 2008-04-13 18:40:48 11,392 ------w c:\windows\ServicePackFiles\i386\sfloppy.sys
+ 2008-04-14 02:00:59 572,416 ------w c:\windows\ServicePackFiles\i386\shdoclc.dll
+ 2008-04-14 02:33:41 1,499,136 ------w c:\windows\ServicePackFiles\i386\shdocvw.dll
+ 2008-04-14 02:33:41 8,517,632 ------w c:\windows\ServicePackFiles\i386\shell32.dll
+ 2008-04-14 02:33:41 25,088 ------w c:\windows\ServicePackFiles\i386\shfolder.dll
+ 2008-04-14 02:33:41 68,096 ------w c:\windows\ServicePackFiles\i386\shgina.dll
+ 2008-04-14 02:33:41 65,024 ------w c:\windows\ServicePackFiles\i386\shimeng.dll
+ 2008-04-14 02:33:41 440,320 ------w c:\windows\ServicePackFiles\i386\shimgvw.dll
+ 2008-04-14 02:33:41 474,624 ------w c:\windows\ServicePackFiles\i386\shlwapi.dll
+ 2008-04-14 02:34:21 45,056 ------w c:\windows\ServicePackFiles\i386\shmgrate.exe
+ 2008-04-14 02:34:21 78,848 ------w c:\windows\ServicePackFiles\i386\shrpubw.exe
+ 2008-04-14 02:33:41 28,160 ------w c:\windows\ServicePackFiles\i386\shscrap.dll
+ 2008-04-14 02:33:41 135,680 ------w c:\windows\ServicePackFiles\i386\shsvcs.dll
+ 2008-04-14 02:33:41 20,536 ------w c:\windows\ServicePackFiles\i386\shtml.dll
+ 2008-04-14 02:34:21 16,437 ------w c:\windows\ServicePackFiles\i386\shtml.exe
+ 2008-04-14 02:34:21 20,480 ------w c:\windows\ServicePackFiles\i386\shutdown.exe
+ 2008-04-14 02:33:41 13,824 ------w c:\windows\ServicePackFiles\i386\sigtab.dll
+ 2008-04-14 02:34:21 71,168 ------w c:\windows\ServicePackFiles\i386\sigverif.exe
+ 2008-04-14 02:33:41 3,901 ------w c:\windows\ServicePackFiles\i386\siint5.dll
+ 2008-04-13 18:36:39 40,960 ------w c:\windows\ServicePackFiles\i386\sisagp.sys
+ 2004-08-03 20:31:36 32,768 ------w c:\windows\ServicePackFiles\i386\sisnic.sys
+ 2008-04-14 02:34:21 26,112 ------w c:\windows\ServicePackFiles\i386\skeys.exe
+ 2004-08-03 20:31:42 63,547 ------w c:\windows\ServicePackFiles\i386\sla30nd5.sys
+ 2008-04-14 02:33:41 25,600 ------w c:\windows\ServicePackFiles\i386\slayerxp.dll
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"WOOKIT"="c:\progra~1\Wanadoo\GestMaj.exe" [2004-10-14 32768]
"MsnMsgr"="c:\program files\MSN Messenger\MsnMsgr.Exe" [2007-01-19 5674352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HerculesCamService"="c:\documents and settings\BERENGER\Mes documents\DualPix Exchange\CamService.exe" [2007-06-26 87336]
"PlatriumWeather"="c:\program files\Platrium\bin\1.2.103.0\Weather.exe" [2008-07-24 341256]
"PlatriumSA"="c:\program files\Platrium\bin\1.2.103.0\PlatriumSA.exe" [2008-07-24 796424]
"avgnt"="c:\program files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-06-12 266497]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\BERENGER\Menu D‚marrer\Programmes\D‚marrage\
Outil de notification Live Search.lnk - c:\documents and settings\BERENGER\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe [2008-05-20 152616]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Acer Empowering Technology.lnk - c:\acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe [2006-11-18 45056]
Acer WLAN 11g USB Dongle.lnk - c:\program files\Acer WLAN 11g USB Dongle\ZDWlan.exe [2005-11-16 745472]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2006-02-19 288472]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=zsxjhl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acer Empowering Technology Monitor]
--a------ 2006-04-18 19:54 49152 c:\windows\system32\SysMonitor.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Acer TV-FM\\PowerCinema.exe"=
"c:\\Program Files\\Acer TV-FM\\PCMService.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\eMule\\emule.exe"=
"c:\\Program Files\\Wanadoo\\WOOBrowser\\WOOBrowser.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
"c:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Azureus\\Azureus.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\TeamViewer\\Version4\\TeamViewer.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=

R3 camfilt2;camfilt2;c:\windows\system32\drivers\camfilt2.sys [2007-12-25 94208]
R3 e4usbaw;USB ADSL2 WAN Adapter;c:\windows\system32\drivers\e4usbaw.sys [2007-07-10 114616]
S2 IKANLOADER2;General Purpose USB Driver (e4ldr.sys);c:\windows\system32\drivers\e4ldr.sys [2007-07-10 63555]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\MAGIX\Common\Database\bin\fbserver.exe [2008-01-10 1527900]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2008-09-30 38496]
.
- - - - ORPHELINS SUPPRIMES - - - -

HKLM-Run-EdenFlirt - c:\program files\Eden Flirt\EdenFlirt.exe


.
------- Examen supplémentaire -------
.
IE: Ouvrir dans un nouvel onglet d'arrière-plan - c:\program files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?d6eb0f3211534e11bd8ee9b42a99b602
IE: Ouvrir dans un nouvel onglet de premier plan - c:\program files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?d6eb0f3211534e11bd8ee9b42a99b602
IE: { - c:\program files\Messenger\msmsgs.exe
IE: {{88CFA58B-A63F-4A94-9C54-0C7A58E3333E} - {17A84966-F1E9-4645-AA9E-5E771EE1C859} - c:\progra~1\NUCLEA~1\VideoGet\Plugins\VIDEOG~1.DLL
TCP: {2BE3DFF1-5572-441E-8477-0E60CEC8A288} = 81.253.149.1 80.10.246.3
DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} - hxxp://imikimi.com/download/imikimi_plugin_0.5.1.cab
FF - ProfilePath - c:\documents and settings\BERENGER\Application Data\Mozilla\Firefox\Profiles\7nh5m67a.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.live.com/results.aspx?FORM=IEFM1&q=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://go.microsoft.com/fwlink/?LinkId=69157
FF - prefs.js: keyword.URL - hxxp://search.live.com/results.aspx?FORM=IEFM1&q=
FF - plugin: c:\program files\Veoh Networks\Veoh\Plugins\noreg\NPVeohVersion.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-08 20:40:09
Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_USERS\S-1-5-21-1044830584-1578511076-1718379116-1006\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:e1,28,ab,30,e4,cb,2d,16,7e,4b,f0,55,d3,41,01,8b,51,89,d8,45,3d,46,f9,
5c,24,d4,ef,5b,34,ad,3e,9d,39,a9,cd,5f,8c,a3,9e,09,b3,c0,90,11,44,41,48,0d,\
"??"=hex:0b,5e,e1,57,a2,aa,08,f9,b7,bc,1d,1b,70,75,8b,4b
.
Heure de fin: 2009-02-08 20:41:43
ComboFix-quarantined-files.txt 2009-02-08 19:41:39
ComboFix2.txt 2008-12-06 20:37:38

Avant-CF: 83 239 833 600 octets libres
Après-CF: 83,526,590,464 octets libres

4963 --- E O F --- 2009-02-07 18:01:04

Malekal_morte
Messages : 107613
Inscription : 10 sept. 2005 13:57

Re: Optimiser mon PC

par Malekal_morte »

Ca semble être des restes.

Relance HijackThis, coche cette ligne :

O20 - AppInit_DLLs: zsxjhl.dll

--> clic sur fix checked
2009-02-07 19:11 --------- d-----w c:\program files\LimeWire
LimeWire est une poubelle à Virus, tu devrais le dégager.



C'est OK, tu n'es plus infecté en suivant les dernières manipulations ci-dessous et lire ATTENTIVEMENT ce qui suit :)


Finir le nettoyage :
- Menu Démarrer / exécuter et tape : Combofix /u puis OK. Supprime le dossier qoobox si existant

- Nettoye ton ordinateur avec CCleaner : https://www.malekal.com/tutorial_CCleaner.html
- Désactive puis réactive la restauration du système :
- Mode d'emploi Windows XP - Mode d'emploi pour désactiver/réactiver la restauration système pour Windows Vista
- Tu peux ensuite désinstaller tous les programmes que l'on a utilisé.

Quelques points essentiels sur la sécurité de ton PC :

- La sécurité, c'est toi qui l'a fait et non les programmes que tu installes, si tu ne connais pas un minimum sur la manière dont les infections se propagent, tu seras réinfecté car ce sera facile de te piéger.
- On ouvre pas n'importe quel fichier quelque soit le prétexte. Derrière n'importe quel fichier un malware peut se cacher, on réfléchit quand on te propose un fichier sur un site, on bannit les cracks et P2P.
- On maintient son système à jour et TOUS ses logiciels à jour pour combler les vulnérabilités : Scan de vulnérabilités.

Pour aller plus loin : Sécuriser son ordinateur (version courte)

___________________________________


je t'invite à lire ce PDF (cliquer sur la bannière si dessous), ce PDF explique comment les infections se propagent, les bonnes habitudes à avoir pour ne plus se faire infecter et comment sécuriser ton ordinateur, lis tout attentivement, n'hésite surtout pas à l'envoyer à tous tes amis par mail pour les sensibiliser :

Image

Tout pour sécuriser ton PC est résumé dans la page Sécuriser son ordinateur (version courte)
Première règle élémentaire de sécurité : on réfléchit puis on clic et pas l'inverse - Les fichiers/programmes c'est comme les bonbons, quand ça vient d'un inconnu, on n'accepte pas !
Comment protéger son PC des virus
Windows 11 : Compatibilité, Configuration minimale requise, télécharger ISO et installer Windows 11

Comment demander de l'aide sur le forum
Partagez malekal.com : n'hésitez pas à partager les articles qui vous plaisent sur la page Facebook du site.
  • Sujets similaires
    Réponses
    Vues
    Dernier message

Revenir à « Supprimer/Desinfecter les virus (Trojan, Adwares, Ransomwares, Backdoor, Spywares) »