point d'entrée de procédure gdigetbitmapbitssize [résolu]

il faut à présent faire une tentative de réparation avec Windows.
démarrer>>executer>>copie-colle chkdsk /f /r valide par Entrée
puis à la question repond par la letre O. redémarre l'ordi.après
que windows ait fait ces verifs démarre normalement et dis s'il y a des problèmes.

c'est marqué impossible de verouiller le lecteur en cours

chkdsk ne peut aps s'éxécuter parce que le volume est utilisé
par un autre processus
voulez-vous que ce volume soit vérifié au prochain démarrage du système (O/N)

tu n'as pas lu mon poste plus haut ?

je n'ai vu aucun probleme apparaitre
il n'y a pas d'enregistrement du chkdsk sur le disque dur ?

voyons à présent si ComboFix veut bien fonctionner chez toi.

Télécharge ComboFix (de sUBs) par un de ces liens :
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
http://subs.geekstogo.com/ComboFix.exe
http://www.forospyware.com/sUBs/ComboFix.exe

- Sauvegarde le sur ton Bureau.
- Double-clique sur Combofix.exe et suis les instructions.
- Lorsqu'il aura terminé, un rapport apparaîtra à l'écran (fichier texte).
- Copie/colle le contenu du rapport dans ta prochaine réponse.

Le rapport est également sauvegardé ici : C:\ComboFix.txt

Ne pas cliquer dans la fenêtre de Combofix durant l'analyse ;
ceci provoquerait le gel du programme

j'ai essayé deux liens différents pour enregistrer combofix mais en l'installant, il est indiqué que combofix ne fonctionne que sur windows2000 et xp
pourtant j'ai xp version 2002 edition familiale service pack 2

avant de faire le ménage dans les programmes qui nous ont servi,encore une vérification:

Télécharge >>> <<< (par jean-chretien1 & narco4)
Enregistre-le sur ton Bureau
Double-clique sur le raccourci nouvellement crée
Laisse-le finir son scan
A l'apparition de cette fenêtre clique sur Oui

Poste le contenu du rapport qui s'ouvre.

enfaisant un double clic j'ai une fenetre bleue qui est apaprue et qui a disparu aussitot puis plus rien

installe>>CCleaner<<,décoche la case des maj-auto à l'install:
ensuite CCleaner>options>avancé>décoche:
Effacer uniquement les fichiers plus vieux que 48h
retour à Nettoyeur>lancer le nettoyage,ok. 2 à 3 fois.
coche toutes les cases de l'onglet Registre>Chercher les erreurs>Réparer les erreurs.
ensuite tu peux le remettre avec ses paramètres par défaut.

retente une seconde fois de lancer GenProc.

j'ai suivi étape par étape sur ccleaner et j'ai relancé genproc mais ca fait la meme chose
en plus je remarque que qd on lance un cd ou une cle usb il faut passer par le poste de travail pour que ca se lance
ca n'a peut etre rien à voir...

télécharge Flash_Disinfector de sUBs et sauvegarde le sur ton bureau.
branche tes clé usb puis double-clique sur flash_Disinfector.exe patiente
jusqu'à ce que ce soit terminé,puis quitte le programme.

télécharge Autofix
double-clique dessus>>suivant>>s'il y a un problème clique sur Repair.

je ne peux pas télécharger flash disinfector ca me met comme un virus détecté

ce n'en est pas un.souvent les utilitaires de désinfection sont
pris pour des virus par les antivirus.tu peux télécharger en confiance
par les liens que je te fournis.

à priori il n'y a plus d'erreurs
j'ai juste une ernière question

comment faire pour enlever au démarrage la fenêtre mes documents qui apparait systématiquement.
j'ai essayé de regarder par exécuter et msconfig mais ca n'apparait pas

regarde dans Démarrer>>Tous les programmes>>Démarrage
si tu y vois Mes Documents : clic-droit Supprimer.

dans démarrer tous les programmes puis démarrage c vide

télécharge HijackThis http://www.trendsecure.com/portal/en-US/_download/HiJackThis.exe
double-clic dessus puis clique Do a system scan and save a logfile
copie-colle le rapport qui sera généré.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:12:46, on 28/02/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Windows\System32\USBPlug.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\WINDOWS\tsnpstd3.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Documents and Settings\laurent\Bureau\dossier nettoyage, réparation et antivirus\dr web cure it.exe
C:\DOCUME~1\laurent\LOCALS~1\Temp\RarSFX1\_start.exe
C:\DOCUME~1\laurent\LOCALS~1\Temp\RarSFX1\setup.exe
J:\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.club-internet.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://GLOBAL.ACER.COM/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,userinit.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [dscService] C:\Windows\System32\USBPlug.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [tsnpstd3] C:\WINDOWS\tsnpstd3.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-21-1779672970-2969962186-290470409-1006\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'caroline')
O4 - HKUS\S-1-5-21-1779672970-2969962186-290470409-1007\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'marie')
O4 - HKUS\S-1-5-21-1779672970-2969962186-290470409-1008\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'joris')
O4 - HKUS\S-1-5-21-1779672970-2969962186-290470409-500\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Administrateur')
O4 - HKUS\S-1-5-21-1779672970-2969962186-290470409-500\..\RunOnce: [] C:\Program Files\Internet Explorer\iexplore.exe http://www.symantec.com/techsupp/servlet/ProductMessages?module=2009&erro(...) (User 'Administrateur')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://GLOBAL.ACER.COM/
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuw(...)
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: svkisnkf - jurwbyy.dll (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: FCI - Unknown owner - C:\WINDOWS\system32\fci.exe.exe:ext.exe (file missing)
O23 - Service: ICF - Unknown owner - C:\WINDOWS\system32\icf.exe.exe:ext.exe (file missing)
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: LXBTCustomerConnect - Unknown owner - C:\WINDOWS\system32\spool\DRIVERS\W32X86\3\LXBTserv.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Cyclon Webcam Service (StkSSrv) - Unknown owner - C:\WINDOWS\System32\StkSrv2K.exe (file missing)

--
End of file - 6306 bytes

sur un des pseudos de l'ordinateur y a un message d'erreur qui n'apparait pas sur les autres :
erreur de chargement de C:/WINDOWS/SYSTEM32/ftbbrrdn.dll

ce n'est pas un dll reconnu

Ctrl+Alt+suppr dans le gestionnaire des taches un clic sur ces processus
puis Terminer le processus:
_start.exe
setup.exe

démarrer>>exécuter>>tapes:services.msc
cherche ces services puis double-clic dessus à mettre sur Arrété et Désactivé


relance HijackThis coche ces lignes puis clique sur fixchecked:

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-21-1779672970-2969962186-290470409-1006\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'caroline')
O4 - HKUS\S-1-5-21-1779672970-2969962186-290470409-1007\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'marie')
O4 - HKUS\S-1-5-21-1779672970-2969962186-290470409-1008\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'joris')
O4 - HKUS\S-1-5-21-1779672970-2969962186-290470409-500\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Administrateur')
O4 - HKUS\S-1-5-21-1779672970-2969962186-290470409-500\..\RunOnce: [] C:\Program Files\Internet Explorer\iexplore.exe http://www.symantec.com/techsupp/servlet/ProductMessages?module=2009&erro(...) (User 'Administrateur')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O20 - Winlogon Notify: svkisnkf - jurwbyy.dll (file missing)


Tu ne peux toujours pas brancher cet ordi infecté sur internet pour
qu'on puisse y installer Malwarebytes antimalwares avec mise à jour.
ca nous ferait du ménage dans le restant d'infection car Combofix
ne veut pas fonctionner chez toi.

Ctrl+Alt+suppr dans le gestionnaire des taches un clic sur ces processus
puis Terminer le processus:
_start.exe
setup.exe

je n'ai pas ces processus !!!

j'ai fait toutes les manips et ca ne change pas grand chose

faut il chercher malwarebytes antimalwares ?

Installe Malewarebytes' Antimalware >>> <<<

Fait un scan rapide,coche puis clique sur Supprimer la selection
Ensuite poste le rapport final.

il fait sa mise à jour en debut d'installation alors il faut qu'il se
connecte à Internet.

les modifications ont permis d'ouvrir la clé usb...ca marche !!!par contr ej'ai voulu installer malwarebytes antimalwares et là ca me marque download failed

supprime-le et re-télécharge-le ici:
http://www.malwarebytes.org/mbam/program/mbam-setup.exe

Malwarebytes' Anti-Malware 1.34
Version de la base de données: 1749
Windows 5.1.2600 Service Pack 2

28/02/2009 16:39:44
mbam-log-2009-02-28 (16-39-44).txt

Type de recherche: Examen rapide
Eléments examinés: 84195
Temps écoulé: 3 minute(s), 11 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 4
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 9
Fichier(s) infecté(s): 14

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{09f1adac-76d8-4d0f-99a5-5c907dadb988} (Rogue.Multiple) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b64f4a7c-97c9-11da-8bde-f66bad1e3f3a} (Rogue.WinAntivirus) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\fci (Rootkit.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ICF (Rootkit.Agent) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFolderOptions (Hijack.FolderOptions) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
C:\Documents and Settings\laurent\Application Data\DriveCleaner Free (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Documents and Settings\laurent\Application Data\DriveCleaner Free\Logs (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Documents and Settings\joris\Application Data\DriveCleaner Free (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Documents and Settings\joris\Application Data\DriveCleaner Free\Logs (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Documents and Settings\caroline\Application Data\DriveCleaner Free (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Documents and Settings\caroline\Application Data\DriveCleaner Free\Logs (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Program Files\Fichiers communs\Carlson (Dialer) -> Quarantined and deleted successfully.
C:\Program Files\Montorgueil (Dialer) -> Quarantined and deleted successfully.
C:\Program Files\Montorgueil\Paparazzixnet (Dialer) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Documents and Settings\laurent\Application Data\DriveCleaner Free\Logs\update.log (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Documents and Settings\joris\Application Data\DriveCleaner Free\Logs\update.log (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Documents and Settings\caroline\Application Data\DriveCleaner Free\Logs\update.log (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Program Files\Montorgueil\14.06268 (Dialer) -> Quarantined and deleted successfully.
C:\Program Files\Montorgueil\Paparazzixnet\Paparazzixnet.ico (Dialer) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\2.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\3.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\4.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\6.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\7.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\A.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\B.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\F.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\TDSSixgx.dll (Rootkit.Agent) -> Quarantined and deleted successfully.

tu ne l'as pas mis à jour car la derniere version de la base
de données:1812
tu n'as pas branché le pc sur le net ?

retente ComboFix.

combofix ne passe tjrs pas
il me dit que c compatible que pour windows 2000 et xp

Lance OTListIt2,dans File Scans/Files Age mets-le à 90 Days
coche la case All Users puis clique sur Run Scan.à la fin poste les deux rapports.

si les rapports sont trop longs envoie les en deux fois.

EXTRAS :

OTListIt Extras logfile created on: 28/02/2009 17:24:49 - Run 7
OTListIt2 by OldTimer - Version 2.0.2.0 Folder = J:\programmes\SCANNER LE PC\OTLISTIT
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

511,48 Mb Total Physical Memory | 300,27 Mb Available Physical Memory | 58,71% Memory free
1,22 Gb Paging File | 1,03 Gb Available in Paging File | 84,49% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 186,26 Gb Total Space | 162,58 Gb Free Space | 87,29% Space Free | Partition Type: FAT32
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 477,11 Mb Total Space | 193,98 Mb Free Space | 40,66% Space Free | Partition Type: FAT

Computer Name: OEM-0AAACAA1E8E
Current User Name: laurent
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Output = Standard
File Age = 90 Days
Company Name Whitelist: On

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 1
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
File not found -- C:\Documents and Settings\Administrateur\Local Settings\Temp\WZSE0.TMP\SymNRT.exe:*:Enabled:Norton Removal Tool
File not found -- C:\Documents and Settings\laurent\Local Settings\Temp\WZSE0.TMP\SymNRT.exe:*:Enabled:Norton Removal Tool

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{03B20126-F3C2-11D5-A6D2-00C026001DCA}" = WebEye
"{20B9BC7F-BB40-4A4F-95D6-91E4D8FBE5AF}" = PC CameraN
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{41E496B5-47F4-11D6-9BBB-00E0987BB2CD}" = Vimicro USB PC Camera (ZC0301PL)
"{4E68EAA3-775A-4542-A08A-47DB8E8E74A6}" = NTI Backup NOW! 3
"{5EA24DA8-F398-42C7-8CDC-39273493C514}" = VIMICRO USB PC Camera II
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{7148F0A8-6813-11D6-A77B-00B0D0142050}" = Java 2 Runtime Environment, SE v1.4.2_05
"{76EFFC7C-17A6-479D-9E47-8E658C1695AE}" = Utilitaire de sauvegarde Windows
"{88F93347-0F9B-4FED-BA71-6C2A4CDFE61D}" = Ulead DVD MovieFactory 2 SE
"{8AD824A5-1CCC-4BB7-82C9-E6FB25CC0479}" = VIMICRO USB PC Camera V
"{926B578B-505F-4820-A62D-088E1124FED4}" = USB Video Camera Driver v1.10a
"{A059DE09-1B49-4450-B340-7AE097EC3F04}" = Microsoft Works
"{AC76BA86-7AD7-1033-7B44-000000000001}" = Adobe Reader 6.0
"{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}" = Assistant de connexion Windows Live
"{B76F485C-447A-4988-8E5F-5DB5C9C5CFDE}" = ZionPCC_CIF
"{BADF6744-3787-48F6-B8C9-4C4995401D65}" = Windows Live Messenger
"{C438B7C4-B4F8-49C5-A4DF-FF6F1F242778}" = NTI CD & DVD-Maker
"{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio 3
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware Free Edition
"{DC67641A-05C4-4FED-A462-1EB1DC6CF2F5}" = NTI Photo Suite
"{E9AD37F8-B010-47ED-9CE1-2FC9200CA7D2}" = Cyclon Webcam
"{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}" = Samsung PC Studio 3 USB Driver Installer
"{ECD03DA7-5952-406A-8156-5F0C93618D1F}" = USB PC Camera
"{EF20F568-9EA5-466D-8F7C-708707259AD9}" = Micro Application - Faire-Part Edition Classic
"{F8847BED-04E7-4924-B1CE-D9CA5CDE7420}" = Samsung PC Studio 3
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}" = Windows Live installer
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Agere Systems Soft Modem" = Agere Systems PCI Soft Modem
"avast!" = avast! Antivirus
"BroadJump Client Foundation" = BroadJump Client Foundation
"CCleaner" = CCleaner (remove only)
"HijackThis" = HijackThis 2.0.2
"InstallShield_{20B9BC7F-BB40-4A4F-95D6-91E4D8FBE5AF}" = PC CameraN
"InstallShield_{4E68EAA3-775A-4542-A08A-47DB8E8E74A6}" = NTI Backup NOW! 3
"InstallShield_{C438B7C4-B4F8-49C5-A4DF-FF6F1F242778}" = NTI CD & DVD-Maker Gold
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Messager Wanadoo" = Messager Wanadoo
"MSNINST" = MSN
"NVIDIA Drivers" = NVIDIA Drivers
"QcDrv" = Programme de gestion Camera de Labtec®
"RealPlayer 6.0" = RealPlayer Basic
"SAMSUNG CDMA Modem" = SAMSUNG CDMA Modem Driver Set
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"ViewpointMediaPlayer" = Viewpoint Media Player
"Yahoo! Companion" = Yahoo! Toolbar avec bloqueur de fenêtres pop-up
"Yahoo! Toolbar" = Yahoo! Toolbar

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 28/02/2009 06:34:33 | Computer Name = OEM-0AAACAA1E8E | Source = avast! | ID = 33554522
Description = AAVM - initialization error: g_tdi.Initialize failed! (logName: C:\Program
Files\Alwil Software\Avast4\DATA\log\nshield.log), 00000000.

Error - 28/02/2009 06:50:21 | Computer Name = OEM-0AAACAA1E8E | Source = avast! | ID = 33554522
Description = AAVM - initialization error: Network Shield provider: driver open
failed, error code: 0x2 , 00000000.

Error - 28/02/2009 06:50:21 | Computer Name = OEM-0AAACAA1E8E | Source = avast! | ID = 33554522
Description = AAVM - initialization error: g_tdi.Initialize failed! (logName: C:\Program
Files\Alwil Software\Avast4\DATA\log\nshield.log), 00000000.

Error - 28/02/2009 08:54:00 | Computer Name = OEM-0AAACAA1E8E | Source = avast! | ID = 33554522
Description = AAVM - initialization error: Network Shield provider: driver open
failed, error code: 0x2 , 00000000.

Error - 28/02/2009 08:54:00 | Computer Name = OEM-0AAACAA1E8E | Source = avast! | ID = 33554522
Description = AAVM - initialization error: g_tdi.Initialize failed! (logName: C:\Program
Files\Alwil Software\Avast4\DATA\log\nshield.log), 00000000.

Error - 28/02/2009 09:03:14 | Computer Name = OEM-0AAACAA1E8E | Source = avast! | ID = 33554522
Description = AAVM - initialization error: Network Shield provider: driver open
failed, error code: 0x2 , 00000000.

Error - 28/02/2009 09:03:14 | Computer Name = OEM-0AAACAA1E8E | Source = avast! | ID = 33554522
Description = AAVM - initialization error: g_tdi.Initialize failed! (logName: C:\Program
Files\Alwil Software\Avast4\DATA\log\nshield.log), 00000000.

Error - 28/02/2009 11:41:30 | Computer Name = OEM-0AAACAA1E8E | Source = avast! | ID = 33554522
Description = AAVM - initialization error: Network Shield provider: driver open
failed, error code: 0x2 , 00000000.

Error - 28/02/2009 11:41:30 | Computer Name = OEM-0AAACAA1E8E | Source = avast! | ID = 33554522
Description = AAVM - initialization error: g_tdi.Initialize failed! (logName: C:\Program
Files\Alwil Software\Avast4\DATA\log\nshield.log), 00000000.

Error - 28/02/2009 12:23:51 | Computer Name = OEM-0AAACAA1E8E | Source = avast! | ID = 33554522
Description = AAVM - initialization error: Network Shield provider: driver open
failed, error code: 0x2 , 00000000.

[ Application Events ]
Error - 26/02/2009 06:14:40 | Computer Name = OEM-0AAACAA1E8E | Source = Application Error | ID = 1000
Description = Application défaillante notepad.exe, version 5.1.2600.2180, module
défaillant notepad.exe, version 5.1.2600.2180, adresse de défaillance 0x0000739b.

Error - 26/02/2009 06:14:48 | Computer Name = OEM-0AAACAA1E8E | Source = Application Error | ID = 1000
Description = Application défaillante notepad.exe, version 5.1.2600.2180, module
défaillant notepad.exe, version 5.1.2600.2180, adresse de défaillance 0x0000739b.

Error - 26/02/2009 06:41:53 | Computer Name = OEM-0AAACAA1E8E | Source = Application Error | ID = 1000
Description = Application défaillante notepad.exe, version 5.1.2600.2180, module
défaillant notepad.exe, version 5.1.2600.2180, adresse de défaillance 0x0000739b.

Error - 26/02/2009 06:43:05 | Computer Name = OEM-0AAACAA1E8E | Source = Application Error | ID = 1000
Description = Application défaillante notepad.exe, version 5.1.2600.2180, module
défaillant notepad.exe, version 5.1.2600.2180, adresse de défaillance 0x0000739b.

Error - 28/02/2009 09:01:33 | Computer Name = OEM-0AAACAA1E8E | Source = Application Error | ID = 1000
Description = Application défaillante regedit.exe, version 5.1.2600.2180, module
défaillant regedit.exe, version 5.1.2600.2180, adresse de défaillance 0x000168ea.

Error - 28/02/2009 11:39:24 | Computer Name = OEM-0AAACAA1E8E | Source = Application Error | ID = 1000
Description = Application défaillante regedit.exe, version 5.1.2600.2180, module
défaillant regedit.exe, version 5.1.2600.2180, adresse de défaillance 0x000168ea.

Error - 28/02/2009 11:39:28 | Computer Name = OEM-0AAACAA1E8E | Source = Application Error | ID = 1000
Description = Application défaillante regedit.exe, version 5.1.2600.2180, module
défaillant regedit.exe, version 5.1.2600.2180, adresse de défaillance 0x000168ea.

Error - 28/02/2009 11:39:34 | Computer Name = OEM-0AAACAA1E8E | Source = Application Error | ID = 1000
Description = Application défaillante regedit.exe, version 5.1.2600.2180, module
défaillant regedit.exe, version 5.1.2600.2180, adresse de défaillance 0x000168ea.

Error - 28/02/2009 11:39:39 | Computer Name = OEM-0AAACAA1E8E | Source = Application Error | ID = 1000
Description = Application défaillante regedit.exe, version 5.1.2600.2180, module
défaillant regedit.exe, version 5.1.2600.2180, adresse de défaillance 0x000168ea.

Error - 28/02/2009 12:24:38 | Computer Name = OEM-0AAACAA1E8E | Source = Application Hang | ID = 1002
Description = Application bloquée OTListIt2.exe, version 2.0.2.0, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

[ System Events ]
Error - 28/02/2009 12:25:35 | Computer Name = OEM-0AAACAA1E8E | Source = Service Control Manager | ID = 7023
Description = Le service Mises à jour automatiques s'est arrêté avec l'erreur :
%%2147952450

Error - 28/02/2009 12:25:35 | Computer Name = OEM-0AAACAA1E8E | Source = Service Control Manager | ID = 7026
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
charger : AFD aswSP aswTdi IPSec MRxSmb NetBIOS NetBT Tcpip

Error - 28/02/2009 12:25:35 | Computer Name = OEM-0AAACAA1E8E | Source = Service Control Manager | ID = 7023
Description = Le service avast! Web Scanner s'est arrêté avec l'erreur : %%10050

Error - 28/02/2009 12:25:35 | Computer Name = OEM-0AAACAA1E8E | Source = Service Control Manager | ID = 7000
Description = Le service Pilote IPSEC n'a pas pu démarrer en raison de l'erreur :
%%2

Error - 28/02/2009 12:25:35 | Computer Name = OEM-0AAACAA1E8E | Source = Service Control Manager | ID = 7001
Description = Le service Pilote du protocole TCP/IP dépend du service Pilote IPSEC
qui n'a pas pu démarrer en raison de l'erreur : %%2

Error - 28/02/2009 12:25:35 | Computer Name = OEM-0AAACAA1E8E | Source = Service Control Manager | ID = 7001
Description = Le service aswRdr dépend du service Pilote du protocole TCP/IP qui
n'a pas pu démarrer en raison de l'erreur : %%1068

Error - 28/02/2009 12:25:35 | Computer Name = OEM-0AAACAA1E8E | Source = Service Control Manager | ID = 7000
Description = Le service Pilote IPSEC n'a pas pu démarrer en raison de l'erreur :
%%2

Error - 28/02/2009 12:25:35 | Computer Name = OEM-0AAACAA1E8E | Source = Service Control Manager | ID = 7001
Description = Le service Pilote du protocole TCP/IP dépend du service Pilote IPSEC
qui n'a pas pu démarrer en raison de l'erreur : %%2

Error - 28/02/2009 12:25:35 | Computer Name = OEM-0AAACAA1E8E | Source = Service Control Manager | ID = 7000
Description = Le service AFD n'a pas pu démarrer en raison de l'erreur : %%2

Error - 28/02/2009 12:25:35 | Computer Name = OEM-0AAACAA1E8E | Source = Service Control Manager | ID = 7001
Description = Le service NLA (Network Location Awareness) dépend du service AFD
qui n'a pas pu démarrer en raison de l'erreur : %%2


< End of report >

OTLISTIT :

OTListIt logfile created on: 28/02/2009 17:24:49 - Run 7
OTListIt2 by OldTimer - Version 2.0.2.0 Folder = J:\programmes\SCANNER LE PC\OTLISTIT
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

511,48 Mb Total Physical Memory | 300,27 Mb Available Physical Memory | 58,71% Memory free
1,22 Gb Paging File | 1,03 Gb Available in Paging File | 84,49% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 186,26 Gb Total Space | 162,58 Gb Free Space | 87,29% Space Free | Partition Type: FAT32
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 477,11 Mb Total Space | 193,98 Mb Free Space | 40,66% Space Free | Partition Type: FAT

Computer Name: OEM-0AAACAA1E8E
Current User Name: laurent
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Output = Standard
File Age = 90 Days
Company Name Whitelist: On

========== Processes (SafeList) ==========

PRC - [2009/02/05 22:01:26 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009/02/05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009/02/24 23:41:12 | 00,114,688 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2009/02/05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009/02/24 23:39:02 | 01,054,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE
PRC - [2009/02/25 09:09:36 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2009/02/24 23:39:06 | 00,067,072 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
PRC - [2009/02/24 23:41:36 | 00,294,912 | ---- | M] (Acer Inc.) -- C:\Windows\System32\USBPlug.exe
PRC - [2009/02/24 23:41:00 | 00,241,664 | ---- | M] (Labtec Inc.) -- C:\WINDOWS\system32\LVCOMSX.EXE
PRC - [2009/02/24 23:41:48 | 00,135,168 | ---- | M] () -- C:\WINDOWS\tsnpstd3.exe
PRC - [2009/02/05 22:08:46 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009/02/26 10:30:24 | 00,497,152 | ---- | M] (OldTimer Tools) -- J:\programmes\SCANNER LE PC\OTLISTIT\OTListIt2.exe

========== Win32 Services (SafeList) ==========

SRV - [2009/02/05 22:01:26 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running])
SRV - [2009/02/05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running])
SRV - [2009/02/05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Running])
SRV - [2009/02/05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Stopped])
SRV - File not found -- -- (ClipSrv [Disabled | Stopped])
SRV - [2004/08/05 05:00:00 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])
SRV - [2009/02/24 23:40:50 | 00,149,504 | ---- | M] () -- C:\WINDOWS\system32\imapi.exe -- (ImapiService [On_Demand | Stopped])
SRV - File not found -- -- (LXBTCustomerConnect [Auto | Stopped])
SRV - [2009/02/24 23:41:12 | 00,114,688 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc [Auto | Running])
SRV - [2006/02/09 20:47:26 | 00,024,576 | ---- | M] (Syntek America Inc.) -- C:\WINDOWS\System32\StkSSrv.dll -- (StkSSrv [Auto | Stopped])
SRV - [2007/10/18 11:31:54 | 00,098,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\usnsvc.exe -- (usnjsvc [On_Demand | Stopped])
SRV - [2009/02/24 23:38:48 | 00,266,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe -- (WLSetupSvc [On_Demand | Stopped])

========== Driver Services (SafeList) ==========

DRV - [2009/02/05 22:05:12 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4 [System | Running])
DRV - [2004/06/29 09:07:18 | 01,268,204 | ---- | M] (Agere Systems) -- C:\WINDOWS\system32\DRIVERS\AGRSM.sys -- (AgereSoftModem [On_Demand | Running])
DRV - [2004/02/24 11:08:52 | 00,400,384 | ---- | M] (Sensaura) -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS [On_Demand | Running])
DRV - [2004/05/14 23:24:10 | 00,622,172 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM [On_Demand | Running])
DRV - [2006/06/19 18:06:54 | 00,008,552 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\System32\drivers\asctrm.sys -- (ASCTRM [Auto | Running])
DRV - [2009/02/05 22:07:12 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys -- (aswFsBlk [Auto | Stopped])
DRV - [2009/02/05 22:08:10 | 00,094,032 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2 [Auto | Running])
DRV - [2009/02/05 22:06:10 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr [On_Demand | Stopped])
DRV - [2009/02/05 22:07:24 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP [System | Stopped])
DRV - [2009/02/05 22:06:20 | 00,051,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi [System | Stopped])
DRV - [2009/02/06 04:06:42 | 00,136,992 | ---- | M] () -- C:\WINDOWS\system32\DRIVERS\CsAud.sys -- (csaudio [On_Demand | Stopped])
DRV - [2004/10/11 19:18:58 | 00,022,016 | R--- | M] (Labtec Inc.) -- C:\WINDOWS\system32\drivers\lvusbsta.sys -- (LVUSBSta [On_Demand | Stopped])
DRV - [2001/08/17 21:57:38 | 00,016,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\MODEMCSA.sys -- (MODEMCSA [On_Demand | Running])
DRV - [2004/11/22 16:36:40 | 00,018,003 | ---- | M] (Motive, Inc.) -- C:\Program Files\Common Files\Motive\MRENDIS5.sys -- (MRENDIS5 [On_Demand | Stopped])
DRV - [2005/04/25 08:50:42 | 00,006,912 | ---- | M] (NewTech Infosystems, Inc.) -- C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys -- (NTIDrvr [On_Demand | Running])
DRV - [2004/04/23 12:24:00 | 02,167,552 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])
DRV - [2003/09/20 08:45:48 | 00,021,248 | ---- | M] (Padus, Inc.) -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc [On_Demand | Running])
DRV - [2004/10/11 19:22:02 | 00,211,712 | R--- | M] (Labtec Inc.) -- C:\WINDOWS\system32\DRIVERS\LV561AV.SYS -- (PID_0928 [On_Demand | Stopped])
DRV - [2004/08/05 05:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
DRV - [2003/08/04 12:14:34 | 00,065,152 | ---- | M] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\system32\DRIVERS\Rtlnic51.sys -- (RTL8023 [On_Demand | Stopped])
DRV - [2009/01/15 16:17:40 | 00,008,944 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS -- (SASDIFSV [System | Running])
DRV - [2009/01/15 16:17:42 | 00,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM [On_Demand | Stopped])
DRV - [2009/01/15 16:17:38 | 00,055,024 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys -- (SASKUTIL [System | Running])
DRV - [2007/11/13 11:25:54 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])
DRV - [2005/08/30 01:47:38 | 00,058,320 | ---- | M] (MCCI) -- C:\WINDOWS\system32\DRIVERS\ssm_bus.sys -- (ssm_bus [On_Demand | Stopped])
DRV - [2005/08/30 01:49:34 | 00,008,336 | ---- | M] (MCCI) -- C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys -- (ssm_mdfl [On_Demand | Stopped])
DRV - [2005/08/30 01:49:38 | 00,094,000 | ---- | M] (MCCI) -- C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys -- (ssm_mdm [On_Demand | Stopped])
DRV - [2006/07/24 16:05:00 | 00,005,632 | ---- | M] () -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen [System | Running])
DRV - [2006/05/03 09:25:32 | 00,851,265 | ---- | M] (Syntek America Inc.) -- C:\WINDOWS\System32\Drivers\StkMini.sys -- (StkMini [On_Demand | Stopped])
DRV - [2006/01/23 11:25:54 | 00,004,769 | ---- | M] (Syntek America Inc.) -- C:\WINDOWS\System32\Drivers\StkScan.sys -- (StkScan [On_Demand | Stopped])
DRV - [2003/07/02 04:42:00 | 00,027,904 | ---- | M] (VIA Technologies, Inc.) -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1 [Boot | Running])
DRV - [2009/02/10 03:17:00 | 00,137,856 | ---- | M] () -- C:\WINDOWS\system32\DRIVERS\wanatw4.sys -- (wanatw [On_Demand | Stopped])

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://GLOBAL.ACER.COM/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = Reg Error: Invalid data type.
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.club-internet.fr/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,AutoSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/saautosearch.aspx
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1

IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://GLOBAL.ACER.COM/
IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://GLOBAL.ACER.COM/
IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://GLOBAL.ACER.COM/
IE - HKU\S-1-5-20\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1779672970-2969962186-290470409-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKU\S-1-5-21-1779672970-2969962186-290470409-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = Reg Error: Invalid data type.
IE - HKU\S-1-5-21-1779672970-2969962186-290470409-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKU\S-1-5-21-1779672970-2969962186-290470409-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.club-internet.fr/
IE - HKU\S-1-5-21-1779672970-2969962186-290470409-1005\SOFTWARE\Microsoft\Internet Explorer\Search,AutoSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/saautosearch.aspx
IE - HKU\S-1-5-21-1779672970-2969962186-290470409-1005\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKU\S-1-5-21-1779672970-2969962186-290470409-1005\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKU\S-1-5-21-1779672970-2969962186-290470409-1005\S-1-5-21-1779672970-2969962186-290470409-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1779672970-2969962186-290470409-1005\S-1-5-21-1779672970-2969962186-290470409-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1

O1 HOSTS File: (790 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 www.tEenPassage.com
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar avec bloqueur de fenêtres pop-up) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - Reg Error: Key error. File not found
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - Reg Error: Key error. File not found
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - Reg Error: Key error. File not found
O3 - HKU\S-1-5-21-1779672970-2969962186-290470409-1005\..\Toolbar\WebBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - Reg Error: Key error. File not found
O4 - HKLM..\Run: [ATIPTA] File not found
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [dscService] C:\Windows\System32\USBPlug.exe (Acer Inc.)
O4 - HKLM..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE (Labtec Inc.)
O4 - HKLM..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] nwiz.exe /install (NVIDIA Corporation)
O4 - HKLM..\Run: [SoundMan] SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StandardInstall] File not found
O4 - HKLM..\Run: [tsnpstd3] C:\WINDOWS\tsnpstd3.exe ()
O4 - HKU\.DEFAULT..\Run: [jrcydebv.exe] C:\WINDOWS\jrcydebv.exe File not found
O4 - HKU\.DEFAULT..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (Microsoft Corporation)
O4 - HKU\.DEFAULT..\Run: [xlmopojd.exe] C:\WINDOWS\xlmopojd.exe File not found
O4 - HKU\S-1-5-18..\Run: [jrcydebv.exe] C:\WINDOWS\jrcydebv.exe File not found
O4 - HKU\S-1-5-18..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (Microsoft Corporation)
O4 - HKU\S-1-5-18..\Run: [xlmopojd.exe] C:\WINDOWS\xlmopojd.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 251
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFolderOptions = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1779672970-2969962186-290470409-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 251
O7 - HKU\S-1-5-21-1779672970-2969962186-290470409-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFolderOptions = 0
O7 - HKU\S-1-5-21-1779672970-2969962186-290470409-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\yinsthelper.dll (YInstStarter Class)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuw(...) (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab (Java Plug-in 1.4.2_05)
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab (MSN Games - Installer)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab (Java Plug-in 1.4.2_05)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O18 - Protocol\Handler\ipp Reg Error: Value error. - Reg Error: Key error. File not found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp Reg Error: Value error. - Reg Error: Key error. File not found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - CLSID or File not found.
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O30 - LSA: Authentication Packages - (C:\WINDOWS\system32\pmnnKcDS) - File not found
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/04/08 17:42:08 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ]
O33 - MountPoints2\{e29b0750-d8f9-11dd-a5c7-00038a000015}\Shell\Auto\command - "" = AdobeR.exe e

========== Files/Folders - Created Within 90 Days ==========

[1 C:\*.tmp files]
[65 C:\WINDOWS\System32\*.tmp files]
[11 C:\WINDOWS\*.tmp files]
[2009/02/28 16:55:13 | 00,000,000 | ---D | C] -- C:\32788R22FWJFW
[2009/02/28 16:32:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\laurent\Application Data\Malwarebytes
[2009/02/28 16:32:56 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/02/28 16:32:54 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/02/28 16:32:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2009/02/28 16:32:52 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/02/28 11:40:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\laurent\Bureau\dossier nettoyage, réparation et antivirus
[2009/02/27 18:35:04 | 00,000,000 | ---D | C] -- C:\GenProc
[2009/02/27 18:22:01 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2009/02/26 15:29:41 | 00,000,032 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.idx
[2009/02/26 15:29:41 | 00,000,032 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2009/02/26 13:18:52 | 00,000,000 | ---D | C] -- C:\VundoFix Backups
[2009/02/26 12:47:57 | 00,000,000 | ---D | C] -- C:\_OTListIt
[2009/02/25 07:46:51 | 00,023,152 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2009/02/25 07:46:50 | 00,051,376 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2009/02/25 07:46:50 | 00,026,944 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2009/02/25 07:46:49 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2009/02/25 07:46:49 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr
[2009/02/25 07:46:49 | 00,094,032 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2009/02/25 07:46:49 | 00,093,296 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2009/02/25 07:46:49 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2009/02/25 07:46:31 | 01,256,296 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2009/02/25 07:46:31 | 00,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx
[2009/02/23 20:15:12 | 00,000,000 | -HSD | C] -- C:\FOUND.016
[2009/02/23 19:53:28 | 00,000,000 | -HSD | C] -- C:\FOUND.015
[2009/02/23 18:51:28 | 00,000,000 | -HSD | C] -- C:\FOUND.014
[2009/02/23 16:18:51 | 00,000,000 | ---D | C] -- C:\32788R22FWJFW.0.tmp
[2009/02/23 16:15:28 | 00,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmd.execf
[2009/02/23 14:41:49 | 53,639,9872 | -HS- | C] () -- C:\hiberfil.sys
[2009/02/23 14:39:37 | 00,578,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\User32.dll
[2009/02/23 14:39:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\system32
[2009/02/23 12:32:13 | 00,000,000 | ---D | C] -- C:\.Trash-999
[2009/02/23 10:50:35 | 00,281,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Gdi32.dll
[2009/02/15 18:41:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NortonInstaller
[2009/02/15 17:55:36 | 00,000,000 | -HSD | C] -- C:\FOUND.013
[2009/02/15 16:38:30 | 00,000,000 | -HSD | C] -- C:\FOUND.012
[2009/02/15 16:31:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/02/15 13:37:58 | 00,000,000 | -HSD | C] -- C:\FOUND.011
[2009/02/15 13:28:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2009/02/15 13:27:45 | 00,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2009/02/15 13:27:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\laurent\Application Data\SUPERAntiSpyware.com
[2009/02/15 13:27:15 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Wise Installation Wizard
[2009/02/15 13:23:56 | 00,000,000 | ---D | C] -- C:\8a2d27e93eae6a471a845a
[2009/02/15 13:19:43 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData
[2009/02/15 09:45:10 | 00,000,000 | -HSD | C] -- C:\FOUND.010
[2009/02/13 20:30:06 | 00,000,000 | -HSD | C] -- C:\FOUND.009
[2009/02/13 20:21:15 | 00,000,000 | ---D | C] -- C:\cd6ddb873bf5ec5d3917fb4abb6d
[2009/02/13 14:50:18 | 00,000,000 | -HSD | C] -- C:\FOUND.008
[2009/02/12 15:45:16 | 00,000,000 | -HSD | C] -- C:\FOUND.007
[2009/02/11 18:05:42 | 00,000,000 | -HSD | C] -- C:\FOUND.006
[2009/02/10 20:41:25 | 00,000,006 | -H-- | C] () -- C:\WINDOWS\tasks\SA.DAT
[2009/02/10 20:41:02 | 00,000,000 | -HSD | C] -- C:\FOUND.005
[2009/02/10 18:57:14 | 00,000,000 | -HSD | C] -- C:\FOUND.004
[2009/02/10 04:21:57 | 00,000,000 | ---D | C] -- C:\a67ce096e928938398b1120f2d7226
[2009/02/10 03:16:59 | 00,137,856 | ---- | C] () -- C:\WINDOWS\System32\drivers\wanatw4.sys
[2009/02/09 23:58:14 | 00,000,520 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2009/02/09 18:49:19 | 00,027,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui
[2009/02/09 18:34:39 | 00,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2009/02/09 11:21:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
[2009/02/09 11:18:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Grisoft
[2009/02/07 14:50:38 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2009/02/07 14:13:55 | 00,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2009/02/07 14:04:30 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hidserv.dll
[2009/02/07 14:04:22 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kbdhid.sys
[2009/02/06 15:28:20 | 00,016,288 | ---- | C] () -- C:\WINDOWS\System32\USBPlugLog.ini
[2009/02/06 15:27:32 | 00,000,000 | -HSD | C] -- C:\FOUND.003
[2009/02/06 14:56:00 | 00,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2009/02/06 14:55:38 | 00,000,000 | -HSD | C] -- C:\FOUND.002
[2009/02/06 14:10:02 | 00,000,000 | ---D | C] -- C:\WINDOWS\pss
[2009/02/06 04:06:40 | 00,136,992 | ---- | C] () -- C:\WINDOWS\System32\drivers\csaud.sys
[2009/01/26 19:44:47 | 01,559,177 | -HS- | C] () -- C:\WINDOWS\System32\hrrplgps.ini
[2009/01/22 19:15:19 | 01,468,107 | -HS- | C] () -- C:\WINDOWS\System32\qmnpfwhw.ini
[2009/01/21 19:14:34 | 01,559,168 | -HS- | C] () -- C:\WINDOWS\System32\ayooajhu.ini
[2009/01/21 19:05:34 | 01,468,107 | -HS- | C] () -- C:\WINDOWS\System32\amkqmmae.ini
[2009/01/20 19:03:56 | 01,465,612 | -HS- | C] () -- C:\WINDOWS\System32\wmufxwwe.ini
[2009/01/20 18:57:57 | 01,465,612 | -HS- | C] () -- C:\WINDOWS\System32\chovlten.ini
[2009/01/19 18:56:48 | 01,436,522 | -HS- | C] () -- C:\WINDOWS\System32\rudhvxsr.ini
[2009/01/17 18:50:27 | 01,436,164 | -HS- | C] () -- C:\WINDOWS\System32\awkwbmli.ini
[2009/01/16 18:49:39 | 01,436,142 | -HS- | C] () -- C:\WINDOWS\System32\kajnlpdx.ini
[2009/01/16 18:43:40 | 01,435,246 | -HS- | C] () -- C:\WINDOWS\System32\wyhtyylg.ini
[2009/01/15 18:42:11 | 01,408,369 | -HS- | C] () -- C:\WINDOWS\System32\gfgydtpy.ini
[2009/01/15 18:39:15 | 01,408,369 | -HS- | C] () -- C:\WINDOWS\System32\nosmkrvj.ini
[2009/01/14 18:37:13 | 01,402,402 | -HS- | C] () -- C:\WINDOWS\System32\cpxdhnvx.ini
[2009/01/14 18:34:14 | 01,402,402 | -HS- | C] () -- C:\WINDOWS\System32\lfswisnl.ini
[2009/01/13 18:31:28 | 01,381,965 | -HS- | C] () -- C:\WINDOWS\System32\nqyxrjow.ini
[2009/01/12 18:33:09 | 01,301,882 | -HS- | C] () -- C:\WINDOWS\System32\ufahqkue.ini
[2009/01/12 18:24:10 | 01,301,882 | -HS- | C] () -- C:\WINDOWS\System32\xoebpyoc.ini
[2009/01/11 18:23:09 | 01,289,472 | -HS- | C] () -- C:\WINDOWS\System32\kcnqfgys.ini
[2009/01/10 18:16:44 | 01,298,592 | -HS- | C] () -- C:\WINDOWS\System32\qxxehvru.ini
[2009/01/10 18:13:40 | 01,298,592 | -HS- | C] () -- C:\WINDOWS\System32\fgqnwakm.ini
[2009/01/09 18:11:41 | 01,283,903 | -HS- | C] () -- C:\WINDOWS\System32\nhwfvfkg.ini
[2009/01/09 18:08:42 | 01,283,903 | -HS- | C] () -- C:\WINDOWS\System32\bvsldmax.ini
[2009/01/08 18:05:49 | 01,283,321 | -HS- | C] () -- C:\WINDOWS\System32\lrexejjq.ini
[2009/01/07 18:04:21 | 01,355,057 | -HS- | C] () -- C:\WINDOWS\System32\owelxmpv.ini
[2009/01/07 18:01:21 | 01,355,057 | -HS- | C] () -- C:\WINDOWS\System32\xyjodmvk.ini
[2009/01/06 17:58:33 | 01,355,057 | -HS- | C] () -- C:\WINDOWS\System32\pmfifiax.ini
[2009/01/06 17:52:34 | 01,355,057 | -HS- | C] () -- C:\WINDOWS\System32\detalsur.ini
[2009/01/05 17:49:40 | 01,339,482 | -HS- | C] () -- C:\WINDOWS\System32\dlfkusjk.ini
[2009/01/04 17:47:52 | 01,340,499 | -HS- | C] () -- C:\WINDOWS\System32\yqfcoiek.ini
[2009/01/04 17:44:50 | 01,340,499 | -HS- | C] () -- C:\WINDOWS\System32\vsxarnqr.ini
[2009/01/03 17:44:38 | 01,340,499 | -HS- | C] () -- C:\WINDOWS\System32\ytbbhdoi.ini
[2009/01/02 17:45:16 | 01,673,999 | -HS- | C] () -- C:\WINDOWS\System32\cylrvxfd.ini
[2009/01/01 17:40:56 | 01,673,999 | -HS- | C] () -- C:\WINDOWS\System32\gtjxvmbq.ini
[2009/01/01 17:34:56 | 01,673,999 | -HS- | C] () -- C:\WINDOWS\System32\ugbvaryt.ini
[2008/12/31 17:34:49 | 01,673,278 | -HS- | C] () -- C:\WINDOWS\System32\creicwar.ini
[2008/12/31 17:28:49 | 01,673,278 | -HS- | C] () -- C:\WINDOWS\System32\hsbahmms.ini
[2008/12/30 17:27:51 | 01,673,278 | -HS- | C] () -- C:\WINDOWS\System32\gnokvlhw.ini
[2008/12/29 17:28:07 | 01,672,654 | -HS- | C] () -- C:\WINDOWS\System32\wusvhval.ini
[2008/12/28 17:27:28 | 01,673,999 | -HS- | C] () -- C:\WINDOWS\System32\kxmctyre.ini
[2008/12/28 17:21:28 | 01,673,999 | -HS- | C] () -- C:\WINDOWS\System32\ikktojhw.ini
[2008/12/27 17:20:36 | 01,668,129 | -HS- | C] () -- C:\WINDOWS\System32\ojjnppxm.ini
[2008/12/26 17:17:39 | 01,668,120 | -HS- | C] () -- C:\WINDOWS\System32\fccvwimp.ini
[2008/12/26 17:11:40 | 01,668,120 | -HS- | C] () -- C:\WINDOWS\System32\xmkhgwho.ini
[2008/12/25 17:10:38 | 01,668,138 | -HS- | C] () -- C:\WINDOWS\System32\mosmhhcn.ini
[2008/12/25 09:15:25 | 01,668,120 | -HS- | C] () -- C:\WINDOWS\System32\emvyikbb.ini
[2008/12/24 09:09:55 | 01,668,120 | -HS- | C] () -- C:\WINDOWS\System32\etvnrkvn.ini
[2008/12/18 19:52:14 | 01,773,880 | -HS- | C] () -- C:\WINDOWS\System32\smnumasf.ini
[2008/12/16 18:37:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\laurent\Mes documents\LES VACANCES
[2008/12/16 18:29:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\laurent\Mes documents\mariages
[2008/12/01 08:54:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\laurent\Mes documents\LILOU

========== Files - Modified Within 90 Days ==========

[1 C:\*.tmp files]
[65 C:\WINDOWS\System32\*.tmp files]
[11 C:\WINDOWS\*.tmp files]
[2009/02/28 17:24:10 | 00,016,288 | ---- | M] () -- C:\WINDOWS\System32\USBPlugLog.ini
[2009/02/28 17:24:02 | 00,003,873 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2009/02/28 17:24:02 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/02/28 17:23:54 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/02/28 17:23:50 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/02/28 17:23:48 | 53,639,9872 | -HS- | M] () -- C:\hiberfil.sys
[2009/02/28 16:55:20 | 00,400,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmd.execf
[2009/02/28 16:40:22 | 07,352,648 | -H-- | M] () -- C:\Documents and Settings\laurent\Local Settings\Application Data\IconCache.db
[2009/02/28 11:49:42 | 00,000,704 | ---- | M] () -- C:\WINDOWS\win.ini
[2009/02/28 11:49:42 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2009/02/28 11:49:42 | 00,000,216 | -HS- | M] () -- C:\boot.ini
[2009/02/28 11:33:06 | 00,000,268 | -H-- | M] () -- C:\sqmdata03.sqm
[2009/02/28 11:33:06 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm
[2009/02/28 11:31:42 | 00,000,268 | -H-- | M] () -- C:\sqmdata02.sqm
[2009/02/28 11:31:42 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm
[2009/02/27 18:54:44 | 00,000,268 | -H-- | M] () -- C:\sqmdata01.sqm
[2009/02/27 18:54:44 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt01.sqm
[2009/02/27 14:22:22 | 00,000,268 | -H-- | M] () -- C:\sqmdata00.sqm
[2009/02/27 14:22:22 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm
[2009/02/27 12:03:42 | 00,000,268 | -H-- | M] () -- C:\sqmdata19.sqm
[2009/02/27 12:03:42 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt19.sqm
[2009/02/26 17:55:46 | 00,000,268 | -H-- | M] () -- C:\sqmdata18.sqm
[2009/02/26 17:55:46 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt18.sqm
[2009/02/26 17:54:36 | 00,000,032 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.idx
[2009/02/26 17:54:36 | 00,000,032 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2009/02/26 17:54:26 | 00,000,268 | -H-- | M] () -- C:\sqmdata17.sqm
[2009/02/26 17:54:26 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt17.sqm
[2009/02/26 17:51:26 | 00,000,268 | -H-- | M] () -- C:\sqmdata16.sqm
[2009/02/26 17:51:26 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt16.sqm
[2009/02/26 12:48:02 | 00,000,268 | -H-- | M] () -- C:\sqmdata15.sqm
[2009/02/26 12:48:02 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt15.sqm
[2009/02/26 12:41:18 | 00,000,268 | -H-- | M] () -- C:\sqmdata14.sqm
[2009/02/26 12:41:18 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt14.sqm
[2009/02/26 08:06:30 | 00,000,268 | -H-- | M] () -- C:\sqmdata13.sqm
[2009/02/26 08:06:30 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt13.sqm
[2009/02/25 23:31:04 | 00,000,268 | -H-- | M] () -- C:\sqmdata12.sqm
[2009/02/25 23:31:04 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt12.sqm
[2009/02/25 09:31:12 | 00,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\notepad.exe
[2009/02/25 09:12:42 | 00,256,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agentsvr.exe
[2009/02/25 09:12:42 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmc.exe
[2009/02/25 09:12:40 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spoolsv.exe
[2009/02/25 09:12:40 | 00,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hh.exe
[2009/02/25 09:12:38 | 00,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\telnet.exe
[2009/02/25 09:12:38 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe
[2009/02/25 09:12:36 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiexec.exe
[2009/02/25 09:12:34 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wupdmgr.exe
[2009/02/25 09:12:32 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wordpad.exe
[2009/02/25 09:12:32 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wscript.exe
[2009/02/25 09:12:32 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wpnpinst.exe
[2009/02/25 09:12:32 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wpabaln.exe
[2009/02/25 09:12:32 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wscntfy.exe
[2009/02/25 09:12:32 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe
[2009/02/25 09:12:30 | 00,073,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe
[2009/02/25 09:12:28 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvse.exe
[2009/02/25 09:12:28 | 00,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapsrv.exe
[2009/02/25 09:12:26 | 00,196,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiadap.exe
[2009/02/25 09:12:26 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe
[2009/02/25 09:12:26 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe
[2009/02/25 09:12:26 | 00,011,264 | ---- | M] () -- C:\WINDOWS\System32\dllcache\winmsd.exe
[2009/02/25 09:12:26 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winver.exe
[2009/02/25 09:12:24 | 00,288,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhlp32.exe
[2009/02/25 09:12:24 | 00,028,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoobe.exe
[2009/02/25 09:12:24 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhstb.exe
[2009/02/25 09:12:22 | 00,438,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiaacmgr.exe
[2009/02/25 09:12:22 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemtest.exe
[2009/02/25 09:12:22 | 00,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wextract.exe
[2009/02/25 09:12:20 | 00,051,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32tm.exe
[2009/02/25 09:12:20 | 00,046,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2009/02/25 09:12:20 | 00,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiregmv.exe
[2009/02/25 09:12:20 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabmig.exe
[2009/02/25 09:12:20 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe
[2009/02/25 09:12:18 | 00,295,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vssvc.exe
[2009/02/25 09:12:18 | 00,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\verifier.exe
[2009/02/25 09:12:18 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msimn.exe
[2009/02/25 09:12:18 | 00,040,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe
[2009/02/25 09:12:18 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vssadmin.exe
[2009/02/25 09:12:16 | 00,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\utilman.exe
[2009/02/25 09:12:16 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\userinit.exe
[2009/02/25 09:12:16 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ups.exe
[2009/02/25 09:12:16 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\upnpcont.exe
[2009/02/25 09:12:14 | 00,151,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uploadm.exe
[2009/02/25 09:12:14 | 00,126,464 | ---- | M] () -- C:\WINDOWS\System32\dllcache\mshearts.exe
[2009/02/25 09:12:14 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe
[2009/02/25 09:12:14 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe
[2009/02/25 09:12:14 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unlodctr.exe
[2009/02/25 09:12:12 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscupgrd.exe
[2009/02/25 09:12:12 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tracert6.exe
[2009/02/25 09:12:12 | 00,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe
[2009/02/25 09:12:12 | 00,016,896 | ---- | M] () -- C:\WINDOWS\System32\dllcache\tsshutdn.exe
[2009/02/25 09:12:12 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe
[2009/02/25 09:12:12 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe
[2009/02/25 09:12:12 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2009/02/25 09:12:12 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tracert.exe
[2009/02/25 09:12:10 | 00,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tourstrt.exe
[2009/02/25 09:12:10 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tftp.exe
[2009/02/25 09:12:10 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtc.exe
[2009/02/25 09:12:08 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskmgr.exe
[2009/02/25 09:12:08 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpsvcs.exe
[2009/02/25 09:12:08 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe
[2009/02/25 09:12:08 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcmsetup.exe
[2009/02/25 09:12:06 | 00,160,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconfig.exe
[2009/02/25 09:12:06 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\syskey.exe
[2009/02/25 09:12:06 | 00,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\systray.exe
[2009/02/25 09:12:04 | 00,684,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sstext3d.scr
[2009/02/25 09:12:04 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stimon.exe
[2009/02/25 09:12:04 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svchost.exe
[2009/02/25 09:12:04 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssstars.scr
[2009/02/25 09:12:04 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\subst.exe
[2009/02/25 09:12:02 | 00,708,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ss3dfo.scr
[2009/02/25 09:12:02 | 00,610,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspipes.scr
[2009/02/25 09:12:02 | 00,393,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssflwbox.scr
[2009/02/25 09:12:02 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssmypics.scr
[2009/02/25 09:12:02 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssmarque.scr
[2009/02/25 09:12:02 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssbezier.scr
[2009/02/25 09:12:02 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssmyst.scr
[2009/02/25 09:12:00 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe
[2009/02/25 09:12:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrinfo.exe
[2009/02/25 09:11:58 | 00,539,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spider.exe
[2009/02/25 09:11:58 | 00,124,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe
[2009/02/25 09:11:58 | 00,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe
[2009/02/25 09:11:58 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sort.exe
[2009/02/25 09:11:58 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpnotify.exe
[2009/02/25 09:11:58 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spnpinst.exe
[2009/02/25 09:11:56 | 00,139,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe
[2009/02/25 09:11:56 | 00,133,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndrec32.exe
[2009/02/25 09:11:56 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe
[2009/02/25 09:11:52 | 03,555,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2009/02/25 09:11:52 | 00,236,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe
[2009/02/25 09:11:52 | 00,093,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smlogsvc.exe
[2009/02/25 09:11:52 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe
[2009/02/25 09:11:52 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbinst.exe
[2009/02/25 09:11:52 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mountvol.exe
[2009/02/25 09:11:50 | 00,144,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mobsync.exe
[2009/02/25 09:11:50 | 00,071,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sigverif.exe
[2009/02/25 09:11:50 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmsrvc.exe
[2009/02/25 09:11:50 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\skeys.exe
[2009/02/25 09:11:50 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shutdown.exe
[2009/02/25 09:11:50 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofcomp.exe
[2009/02/25 09:11:48 | 00,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logagent.exe
[2009/02/25 09:11:48 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shrpubw.exe
[2009/02/25 09:11:48 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe
[2009/02/25 09:11:48 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shmgrate.exe
[2009/02/25 09:11:48 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe
[2009/02/25 09:11:46 | 00,778,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe
[2009/02/25 09:11:46 | 00,142,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sessmgr.exe
[2009/02/25 09:11:46 | 00,072,704 | ---- | M] () -- C:\WINDOWS\System32\dllcache\setup50.exe
[2009/02/25 09:11:46 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sethc.exe
[2009/02/25 09:11:46 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup.exe
[2009/02/25 09:11:44 | 00,816,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmc.exe
[2009/02/25 09:11:44 | 00,242,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migwiz_a.exe
[2009/02/25 09:11:44 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrnsave.scr
[2009/02/25 09:11:42 | 00,786,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe
[2009/02/25 09:11:42 | 00,246,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migwiz.exe
[2009/02/25 09:11:42 | 00,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migload.exe
[2009/02/25 09:11:42 | 00,100,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scardsvr.exe
[2009/02/25 09:11:42 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrcons.exe
[2009/02/25 09:11:42 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sc.exe
[2009/02/25 09:11:40 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe
[2009/02/25 09:11:40 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe
[2009/02/25 09:11:40 | 00,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migisol.exe
[2009/02/25 09:11:40 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe
[2009/02/25 09:11:40 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\runonce.exe
[2009/02/25 09:11:40 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\savedump.exe
[2009/02/25 09:11:38 | 00,132,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rsvp.exe
[2009/02/25 09:11:38 | 00,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rtcshare.exe
[2009/02/25 09:11:38 | 00,048,128 | ---- | M] () -- C:\WINDOWS\System32\dllcache\rsmui.exe
[2009/02/25 09:11:38 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rundll32.exe
[2009/02/25 09:11:38 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rsmsink.exe
[2009/02/25 09:11:38 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\runas.exe
[2009/02/25 09:11:38 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rsh.exe
[2009/02/25 09:11:36 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe
[2009/02/25 09:11:36 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\routemon.exe
[2009/02/25 09:11:36 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2009/02/25 09:11:36 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\route.exe
[2009/02/25 09:11:36 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rexec.exe
[2009/02/25 09:11:36 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\replace.exe
[2009/02/25 09:11:36 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe
[2009/02/25 09:11:36 | 00,004,608 | ---- | M] (Microsoft) -- C:\WINDOWS\System32\dllcache\regwiz.exe
[2009/02/25 09:11:34 | 00,153,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regedit.exe
[2009/02/25 09:11:34 | 00,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdshost.exe
[2009/02/25 09:11:34 | 00,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpclip.exe
[2009/02/25 09:11:34 | 00,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reg.exe
[2009/02/25 09:11:34 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rcimlby.exe
[2009/02/25 09:11:34 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2009/02/25 09:11:34 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regsvr32.exe
[2009/02/25 09:11:34 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\recover.exe
[2009/02/25 09:11:34 | 00,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regedt32.exe
[2009/02/25 09:11:32 | 00,085,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\makecab.exe
[2009/02/25 09:11:32 | 00,073,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\magnify.exe
[2009/02/25 09:11:32 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rasdial.exe
[2009/02/25 09:11:32 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rasautou.exe
[2009/02/25 09:11:30 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rcp.exe
[2009/02/25 09:11:30 | 00,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe
[2009/02/25 09:11:30 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qprocess.exe
[2009/02/25 09:11:30 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2009/02/25 09:11:30 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsass.exe
[2009/02/25 09:11:30 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2009/02/25 09:11:28 | 00,515,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logonui.exe
[2009/02/25 09:11:28 | 00,221,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logon.scr
[2009/02/25 09:11:28 | 00,109,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\progman.exe
[2009/02/25 09:11:28 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\proquota.exe
[2009/02/25 09:11:28 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe
[2009/02/25 09:11:28 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe
[2009/02/25 09:11:28 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\proxycfg.exe
[2009/02/25 09:11:28 | 00,005,632 | ---- | M] () -- C:\WINDOWS\System32\dllcache\lpq.exe
[2009/02/25 09:11:26 | 00,284,160 | ---- | M] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe
[2009/02/25 09:11:26 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\locator.exe
[2009/02/25 09:11:26 | 00,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logman.exe
[2009/02/25 09:11:26 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\powercfg.exe
[2009/02/25 09:11:26 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ping6.exe
[2009/02/25 09:11:26 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\print.exe
[2009/02/25 09:11:26 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lodctr.exe
[2009/02/25 09:11:24 | 00,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\packager.exe
[2009/02/25 09:11:24 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lnkstub.exe
[2009/02/25 09:11:24 | 00,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pathping.exe
[2009/02/25 09:11:24 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ping.exe
[2009/02/25 09:11:24 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\perfmon.exe
[2009/02/25 09:11:22 | 00,051,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oobebaln.exe
[2009/02/25 09:11:22 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lights.exe
[2009/02/25 09:11:22 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pentnt.exe
[2009/02/25 09:11:20 | 00,216,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\osk.exe
[2009/02/25 09:11:20 | 00,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemig50.exe
[2009/02/25 09:11:20 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\osuninst.exe
[2009/02/25 09:11:18 | 00,420,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntvdm.exe
[2009/02/25 09:11:18 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntsd.exe
[2009/02/25 09:11:16 | 00,079,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nslookup.exe
[2009/02/25 09:11:16 | 00,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notepad.exe
[2009/02/25 09:11:16 | 00,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe
[2009/02/25 09:11:16 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nppagent.exe
[2009/02/25 09:11:14 | 00,335,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netsetup.exe
[2009/02/25 09:11:14 | 00,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netsh.exe
[2009/02/25 09:11:14 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netstat.exe
[2009/02/25 09:11:12 | 00,124,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\net1.exe
[2009/02/25 09:11:12 | 00,114,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netdde.exe
[2009/02/25 09:11:12 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\net.exe
[2009/02/25 09:11:12 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nddeapir.exe
[2009/02/25 09:11:10 | 00,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\narrator.exe
[2009/02/25 09:11:10 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nbtstat.exe
[2009/02/25 09:11:08 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstinit.exe
[2009/02/25 09:11:06 | 00,411,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstsc.exe
[2009/02/25 09:11:06 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msswchx.exe
[2009/02/25 09:11:04 | 00,347,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe
[2009/02/25 09:11:00 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipv6.exe
[2009/02/25 09:11:00 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipxroute.exe
[2009/02/25 09:11:00 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2009/02/25 09:10:58 | 00,189,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\accwiz.exe
[2009/02/25 09:10:58 | 00,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipconfig.exe
[2009/02/25 09:10:58 | 00,046,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsec6.exe
[2009/02/25 09:10:58 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetwiz.exe
[2009/02/25 09:10:58 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\actmovie.exe
[2009/02/25 09:10:56 | 00,150,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imapi.exe
[2009/02/25 09:10:56 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe
[2009/02/25 09:10:54 | 00,208,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unregmp2.exe
[2009/02/25 09:10:54 | 00,093,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe
[2009/02/25 09:10:54 | 00,073,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe
[2009/02/25 09:10:52 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn1.exe
[2009/02/25 09:10:52 | 00,086,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn2.exe
[2009/02/25 09:10:52 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe
[2009/02/25 09:10:52 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwrmind.exe
[2009/02/25 09:10:50 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbcconf.exe
[2009/02/25 09:10:50 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe
[2009/02/25 09:10:50 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbcad32.exe
[2009/02/25 09:10:50 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hscupd.exe
[2009/02/25 09:10:50 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostname.exe
[2009/02/25 09:10:48 | 00,768,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpctr.exe
[2009/02/25 09:10:48 | 00,743,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2009/02/25 09:10:48 | 00,099,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe
[2009/02/25 09:10:48 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\help.exe
[2009/02/25 09:10:46 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\grpconv.exe
[2009/02/25 09:10:44 | 00,268,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe
[2009/02/25 09:10:44 | 00,238,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe
[2009/02/25 09:10:44 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe
[2009/02/25 09:10:42 | 00,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fsutil.exe
[2009/02/25 09:10:42 | 00,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe
[2009/02/25 09:10:42 | 00,045,056 | ---- | M] () -- C:\WINDOWS\System32\dllcache\ftp.exe
[2009/02/25 09:10:40 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe
[2009/02/25 09:10:40 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontview.exe
[2009/02/25 09:10:40 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2009/02/25 09:10:40 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\finger.exe
[2009/02/25 09:10:40 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\find.exe
[2009/02/25 09:10:40 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\forcedos.exe
[2009/02/25 09:10:40 | 00,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fixmapi.exe
[2009/02/25 09:10:38 | 00,093,696 | ---- | M] () -- C:\WINDOWS\System32\dllcache\evntwin.exe
[2009/02/25 09:10:38 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\extrac32.exe
[2009/02/25 09:10:38 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\findstr.exe
[2009/02/25 09:10:38 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe
[2009/02/25 09:10:38 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\expand.exe
[2009/02/25 09:10:38 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fc.exe
[2009/02/25 09:10:38 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\eventvwr.exe
[2009/02/25 09:10:36 | 00,195,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\eudcedit.exe
[2009/02/25 09:10:36 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\esentutl.exe
[2009/02/25 09:10:34 | 01,298,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxdiag.exe
[2009/02/25 09:10:34 | 00,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dwwin.exe
[2009/02/25 09:10:34 | 00,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dumprep.exe
[2009/02/25 09:10:32 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drwtsn32.exe
[2009/02/25 09:10:32 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dvdupgrd.exe
[2009/02/25 09:10:30 | 00,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvsetup.exe
[2009/02/25 09:10:30 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnsvr.exe
[2009/02/25 09:10:28 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dplaysvr.exe
[2009/02/25 09:10:28 | 00,015,872 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\System32\dllcache\dmremote.exe
[2009/02/25 09:10:28 | 00,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\doskey.exe
[2009/02/25 09:10:28 | 00,004,608 | ---- | M] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2009/02/25 09:10:26 | 00,225,280 |

reposte le dernier rapport à partir de

jusqu'à

l'ordi est encore bien crade,je prépare un script pour les suppressions.

========== Files - Modified Within 90 Days ==========

[1 C:\*.tmp files]
[65 C:\WINDOWS\System32\*.tmp files]
[11 C:\WINDOWS\*.tmp files]
[2009/02/28 17:24:10 | 00,016,288 | ---- | M] () -- C:\WINDOWS\System32\USBPlugLog.ini
[2009/02/28 17:24:02 | 00,003,873 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2009/02/28 17:24:02 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/02/28 17:23:54 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/02/28 17:23:50 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/02/28 17:23:48 | 53,639,9872 | -HS- | M] () -- C:\hiberfil.sys
[2009/02/28 16:55:20 | 00,400,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmd.execf
[2009/02/28 16:40:22 | 07,352,648 | -H-- | M] () -- C:\Documents and Settings\laurent\Local Settings\Application Data\IconCache.db
[2009/02/28 11:49:42 | 00,000,704 | ---- | M] () -- C:\WINDOWS\win.ini
[2009/02/28 11:49:42 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2009/02/28 11:49:42 | 00,000,216 | -HS- | M] () -- C:\boot.ini
[2009/02/28 11:33:06 | 00,000,268 | -H-- | M] () -- C:\sqmdata03.sqm
[2009/02/28 11:33:06 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm
[2009/02/28 11:31:42 | 00,000,268 | -H-- | M] () -- C:\sqmdata02.sqm
[2009/02/28 11:31:42 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm
[2009/02/27 18:54:44 | 00,000,268 | -H-- | M] () -- C:\sqmdata01.sqm
[2009/02/27 18:54:44 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt01.sqm
[2009/02/27 14:22:22 | 00,000,268 | -H-- | M] () -- C:\sqmdata00.sqm
[2009/02/27 14:22:22 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm
[2009/02/27 12:03:42 | 00,000,268 | -H-- | M] () -- C:\sqmdata19.sqm
[2009/02/27 12:03:42 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt19.sqm
[2009/02/26 17:55:46 | 00,000,268 | -H-- | M] () -- C:\sqmdata18.sqm
[2009/02/26 17:55:46 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt18.sqm
[2009/02/26 17:54:36 | 00,000,032 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.idx
[2009/02/26 17:54:36 | 00,000,032 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2009/02/26 17:54:26 | 00,000,268 | -H-- | M] () -- C:\sqmdata17.sqm
[2009/02/26 17:54:26 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt17.sqm
[2009/02/26 17:51:26 | 00,000,268 | -H-- | M] () -- C:\sqmdata16.sqm
[2009/02/26 17:51:26 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt16.sqm
[2009/02/26 12:48:02 | 00,000,268 | -H-- | M] () -- C:\sqmdata15.sqm
[2009/02/26 12:48:02 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt15.sqm
[2009/02/26 12:41:18 | 00,000,268 | -H-- | M] () -- C:\sqmdata14.sqm
[2009/02/26 12:41:18 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt14.sqm
[2009/02/26 08:06:30 | 00,000,268 | -H-- | M] () -- C:\sqmdata13.sqm
[2009/02/26 08:06:30 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt13.sqm
[2009/02/25 23:31:04 | 00,000,268 | -H-- | M] () -- C:\sqmdata12.sqm
[2009/02/25 23:31:04 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt12.sqm
[2009/02/25 09:31:12 | 00,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\notepad.exe
[2009/02/25 09:12:42 | 00,256,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agentsvr.exe
[2009/02/25 09:12:42 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmc.exe
[2009/02/25 09:12:40 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spoolsv.exe
[2009/02/25 09:12:40 | 00,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hh.exe
[2009/02/25 09:12:38 | 00,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\telnet.exe
[2009/02/25 09:12:38 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe
[2009/02/25 09:12:36 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiexec.exe
[2009/02/25 09:12:34 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wupdmgr.exe
[2009/02/25 09:12:32 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wordpad.exe
[2009/02/25 09:12:32 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wscript.exe
[2009/02/25 09:12:32 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wpnpinst.exe
[2009/02/25 09:12:32 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wpabaln.exe
[2009/02/25 09:12:32 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wscntfy.exe
[2009/02/25 09:12:32 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe
[2009/02/25 09:12:30 | 00,073,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe
[2009/02/25 09:12:28 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvse.exe
[2009/02/25 09:12:28 | 00,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapsrv.exe
[2009/02/25 09:12:26 | 00,196,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiadap.exe
[2009/02/25 09:12:26 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe
[2009/02/25 09:12:26 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe
[2009/02/25 09:12:26 | 00,011,264 | ---- | M] () -- C:\WINDOWS\System32\dllcache\winmsd.exe
[2009/02/25 09:12:26 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winver.exe
[2009/02/25 09:12:24 | 00,288,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhlp32.exe
[2009/02/25 09:12:24 | 00,028,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoobe.exe
[2009/02/25 09:12:24 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhstb.exe
[2009/02/25 09:12:22 | 00,438,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiaacmgr.exe
[2009/02/25 09:12:22 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemtest.exe
[2009/02/25 09:12:22 | 00,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wextract.exe
[2009/02/25 09:12:20 | 00,051,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32tm.exe
[2009/02/25 09:12:20 | 00,046,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2009/02/25 09:12:20 | 00,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiregmv.exe
[2009/02/25 09:12:20 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabmig.exe
[2009/02/25 09:12:20 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe
[2009/02/25 09:12:18 | 00,295,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vssvc.exe
[2009/02/25 09:12:18 | 00,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\verifier.exe
[2009/02/25 09:12:18 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msimn.exe
[2009/02/25 09:12:18 | 00,040,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe
[2009/02/25 09:12:18 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vssadmin.exe
[2009/02/25 09:12:16 | 00,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\utilman.exe
[2009/02/25 09:12:16 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\userinit.exe
[2009/02/25 09:12:16 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ups.exe
[2009/02/25 09:12:16 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\upnpcont.exe
[2009/02/25 09:12:14 | 00,151,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uploadm.exe
[2009/02/25 09:12:14 | 00,126,464 | ---- | M] () -- C:\WINDOWS\System32\dllcache\mshearts.exe
[2009/02/25 09:12:14 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe
[2009/02/25 09:12:14 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe
[2009/02/25 09:12:14 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unlodctr.exe
[2009/02/25 09:12:12 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscupgrd.exe
[2009/02/25 09:12:12 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tracert6.exe
[2009/02/25 09:12:12 | 00,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe
[2009/02/25 09:12:12 | 00,016,896 | ---- | M] () -- C:\WINDOWS\System32\dllcache\tsshutdn.exe
[2009/02/25 09:12:12 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe
[2009/02/25 09:12:12 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe
[2009/02/25 09:12:12 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2009/02/25 09:12:12 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tracert.exe
[2009/02/25 09:12:10 | 00,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tourstrt.exe
[2009/02/25 09:12:10 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tftp.exe
[2009/02/25 09:12:10 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtc.exe
[2009/02/25 09:12:08 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskmgr.exe
[2009/02/25 09:12:08 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpsvcs.exe
[2009/02/25 09:12:08 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe
[2009/02/25 09:12:08 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcmsetup.exe
[2009/02/25 09:12:06 | 00,160,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconfig.exe
[2009/02/25 09:12:06 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\syskey.exe
[2009/02/25 09:12:06 | 00,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\systray.exe
[2009/02/25 09:12:04 | 00,684,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sstext3d.scr
[2009/02/25 09:12:04 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stimon.exe
[2009/02/25 09:12:04 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svchost.exe
[2009/02/25 09:12:04 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssstars.scr
[2009/02/25 09:12:04 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\subst.exe
[2009/02/25 09:12:02 | 00,708,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ss3dfo.scr
[2009/02/25 09:12:02 | 00,610,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspipes.scr
[2009/02/25 09:12:02 | 00,393,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssflwbox.scr
[2009/02/25 09:12:02 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssmypics.scr
[2009/02/25 09:12:02 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssmarque.scr
[2009/02/25 09:12:02 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssbezier.scr
[2009/02/25 09:12:02 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssmyst.scr
[2009/02/25 09:12:00 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe
[2009/02/25 09:12:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrinfo.exe
[2009/02/25 09:11:58 | 00,539,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spider.exe
[2009/02/25 09:11:58 | 00,124,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe
[2009/02/25 09:11:58 | 00,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe
[2009/02/25 09:11:58 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sort.exe
[2009/02/25 09:11:58 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpnotify.exe
[2009/02/25 09:11:58 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spnpinst.exe
[2009/02/25 09:11:56 | 00,139,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe
[2009/02/25 09:11:56 | 00,133,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndrec32.exe
[2009/02/25 09:11:56 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe
[2009/02/25 09:11:52 | 03,555,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2009/02/25 09:11:52 | 00,236,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe
[2009/02/25 09:11:52 | 00,093,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smlogsvc.exe
[2009/02/25 09:11:52 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe
[2009/02/25 09:11:52 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbinst.exe
[2009/02/25 09:11:52 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mountvol.exe
[2009/02/25 09:11:50 | 00,144,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mobsync.exe
[2009/02/25 09:11:50 | 00,071,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sigverif.exe
[2009/02/25 09:11:50 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmsrvc.exe
[2009/02/25 09:11:50 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\skeys.exe
[2009/02/25 09:11:50 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shutdown.exe
[2009/02/25 09:11:50 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofcomp.exe
[2009/02/25 09:11:48 | 00,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logagent.exe
[2009/02/25 09:11:48 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shrpubw.exe
[2009/02/25 09:11:48 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe
[2009/02/25 09:11:48 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shmgrate.exe
[2009/02/25 09:11:48 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe
[2009/02/25 09:11:46 | 00,778,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe
[2009/02/25 09:11:46 | 00,142,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sessmgr.exe
[2009/02/25 09:11:46 | 00,072,704 | ---- | M] () -- C:\WINDOWS\System32\dllcache\setup50.exe
[2009/02/25 09:11:46 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sethc.exe
[2009/02/25 09:11:46 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup.exe
[2009/02/25 09:11:44 | 00,816,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmc.exe
[2009/02/25 09:11:44 | 00,242,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migwiz_a.exe
[2009/02/25 09:11:44 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrnsave.scr
[2009/02/25 09:11:42 | 00,786,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe
[2009/02/25 09:11:42 | 00,246,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migwiz.exe
[2009/02/25 09:11:42 | 00,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migload.exe
[2009/02/25 09:11:42 | 00,100,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scardsvr.exe
[2009/02/25 09:11:42 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrcons.exe
[2009/02/25 09:11:42 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sc.exe
[2009/02/25 09:11:40 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe
[2009/02/25 09:11:40 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe
[2009/02/25 09:11:40 | 00,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migisol.exe
[2009/02/25 09:11:40 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe
[2009/02/25 09:11:40 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\runonce.exe
[2009/02/25 09:11:40 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\savedump.exe
[2009/02/25 09:11:38 | 00,132,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rsvp.exe
[2009/02/25 09:11:38 | 00,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rtcshare.exe
[2009/02/25 09:11:38 | 00,048,128 | ---- | M] () -- C:\WINDOWS\System32\dllcache\rsmui.exe
[2009/02/25 09:11:38 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rundll32.exe
[2009/02/25 09:11:38 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rsmsink.exe
[2009/02/25 09:11:38 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\runas.exe
[2009/02/25 09:11:38 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rsh.exe
[2009/02/25 09:11:36 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe
[2009/02/25 09:11:36 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\routemon.exe
[2009/02/25 09:11:36 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2009/02/25 09:11:36 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\route.exe
[2009/02/25 09:11:36 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rexec.exe
[2009/02/25 09:11:36 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\replace.exe
[2009/02/25 09:11:36 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe
[2009/02/25 09:11:36 | 00,004,608 | ---- | M] (Microsoft) -- C:\WINDOWS\System32\dllcache\regwiz.exe
[2009/02/25 09:11:34 | 00,153,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regedit.exe
[2009/02/25 09:11:34 | 00,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdshost.exe
[2009/02/25 09:11:34 | 00,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpclip.exe
[2009/02/25 09:11:34 | 00,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reg.exe
[2009/02/25 09:11:34 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rcimlby.exe
[2009/02/25 09:11:34 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2009/02/25 09:11:34 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regsvr32.exe
[2009/02/25 09:11:34 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\recover.exe
[2009/02/25 09:11:34 | 00,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regedt32.exe
[2009/02/25 09:11:32 | 00,085,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\makecab.exe
[2009/02/25 09:11:32 | 00,073,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\magnify.exe
[2009/02/25 09:11:32 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rasdial.exe
[2009/02/25 09:11:32 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rasautou.exe
[2009/02/25 09:11:30 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rcp.exe
[2009/02/25 09:11:30 | 00,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe
[2009/02/25 09:11:30 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qprocess.exe
[2009/02/25 09:11:30 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2009/02/25 09:11:30 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsass.exe
[2009/02/25 09:11:30 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2009/02/25 09:11:28 | 00,515,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logonui.exe
[2009/02/25 09:11:28 | 00,221,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logon.scr
[2009/02/25 09:11:28 | 00,109,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\progman.exe
[2009/02/25 09:11:28 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\proquota.exe
[2009/02/25 09:11:28 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe
[2009/02/25 09:11:28 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe
[2009/02/25 09:11:28 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\proxycfg.exe
[2009/02/25 09:11:28 | 00,005,632 | ---- | M] () -- C:\WINDOWS\System32\dllcache\lpq.exe
[2009/02/25 09:11:26 | 00,284,160 | ---- | M] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe
[2009/02/25 09:11:26 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\locator.exe
[2009/02/25 09:11:26 | 00,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logman.exe
[2009/02/25 09:11:26 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\powercfg.exe
[2009/02/25 09:11:26 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ping6.exe
[2009/02/25 09:11:26 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\print.exe
[2009/02/25 09:11:26 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lodctr.exe
[2009/02/25 09:11:24 | 00,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\packager.exe
[2009/02/25 09:11:24 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lnkstub.exe
[2009/02/25 09:11:24 | 00,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pathping.exe
[2009/02/25 09:11:24 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ping.exe
[2009/02/25 09:11:24 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\perfmon.exe
[2009/02/25 09:11:22 | 00,051,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oobebaln.exe
[2009/02/25 09:11:22 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lights.exe
[2009/02/25 09:11:22 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pentnt.exe
[2009/02/25 09:11:20 | 00,216,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\osk.exe
[2009/02/25 09:11:20 | 00,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemig50.exe
[2009/02/25 09:11:20 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\osuninst.exe
[2009/02/25 09:11:18 | 00,420,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntvdm.exe
[2009/02/25 09:11:18 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntsd.exe
[2009/02/25 09:11:16 | 00,079,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nslookup.exe
[2009/02/25 09:11:16 | 00,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notepad.exe
[2009/02/25 09:11:16 | 00,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe
[2009/02/25 09:11:16 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nppagent.exe
[2009/02/25 09:11:14 | 00,335,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netsetup.exe
[2009/02/25 09:11:14 | 00,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netsh.exe
[2009/02/25 09:11:14 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netstat.exe
[2009/02/25 09:11:12 | 00,124,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\net1.exe
[2009/02/25 09:11:12 | 00,114,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netdde.exe
[2009/02/25 09:11:12 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\net.exe
[2009/02/25 09:11:12 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nddeapir.exe
[2009/02/25 09:11:10 | 00,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\narrator.exe
[2009/02/25 09:11:10 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nbtstat.exe
[2009/02/25 09:11:08 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstinit.exe
[2009/02/25 09:11:06 | 00,411,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstsc.exe
[2009/02/25 09:11:06 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msswchx.exe
[2009/02/25 09:11:04 | 00,347,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe
[2009/02/25 09:11:00 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipv6.exe
[2009/02/25 09:11:00 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipxroute.exe
[2009/02/25 09:11:00 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2009/02/25 09:10:58 | 00,189,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\accwiz.exe
[2009/02/25 09:10:58 | 00,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipconfig.exe
[2009/02/25 09:10:58 | 00,046,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsec6.exe
[2009/02/25 09:10:58 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetwiz.exe
[2009/02/25 09:10:58 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\actmovie.exe
[2009/02/25 09:10:56 | 00,150,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imapi.exe
[2009/02/25 09:10:56 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe
[2009/02/25 09:10:54 | 00,208,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unregmp2.exe
[2009/02/25 09:10:54 | 00,093,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe
[2009/02/25 09:10:54 | 00,073,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe
[2009/02/25 09:10:52 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn1.exe
[2009/02/25 09:10:52 | 00,086,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn2.exe
[2009/02/25 09:10:52 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe
[2009/02/25 09:10:52 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwrmind.exe
[2009/02/25 09:10:50 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbcconf.exe
[2009/02/25 09:10:50 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe
[2009/02/25 09:10:50 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbcad32.exe
[2009/02/25 09:10:50 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hscupd.exe
[2009/02/25 09:10:50 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostname.exe
[2009/02/25 09:10:48 | 00,768,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpctr.exe
[2009/02/25 09:10:48 | 00,743,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2009/02/25 09:10:48 | 00,099,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe
[2009/02/25 09:10:48 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\help.exe
[2009/02/25 09:10:46 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\grpconv.exe
[2009/02/25 09:10:44 | 00,268,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe
[2009/02/25 09:10:44 | 00,238,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe
[2009/02/25 09:10:44 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe
[2009/02/25 09:10:42 | 00,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fsutil.exe
[2009/02/25 09:10:42 | 00,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe
[2009/02/25 09:10:42 | 00,045,056 | ---- | M] () -- C:\WINDOWS\System32\dllcache\ftp.exe
[2009/02/25 09:10:40 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe
[2009/02/25 09:10:40 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontview.exe
[2009/02/25 09:10:40 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2009/02/25 09:10:40 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\finger.exe
[2009/02/25 09:10:40 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\find.exe
[2009/02/25 09:10:40 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\forcedos.exe
[2009/02/25 09:10:40 | 00,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fixmapi.exe
[2009/02/25 09:10:38 | 00,093,696 | ---- | M] () -- C:\WINDOWS\System32\dllcache\evntwin.exe
[2009/02/25 09:10:38 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\extrac32.exe
[2009/02/25 09:10:38 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\findstr.exe
[2009/02/25 09:10:38 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe
[2009/02/25 09:10:38 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\expand.exe
[2009/02/25 09:10:38 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fc.exe
[2009/02/25 09:10:38 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\eventvwr.exe
[2009/02/25 09:10:36 | 00,195,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\eudcedit.exe
[2009/02/25 09:10:36 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\esentutl.exe
[2009/02/25 09:10:34 | 01,298,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxdiag.exe
[2009/02/25 09:10:34 | 00,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dwwin.exe
[2009/02/25 09:10:34 | 00,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dumprep.exe
[2009/02/25 09:10:32 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drwtsn32.exe
[2009/02/25 09:10:32 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dvdupgrd.exe
[2009/02/25 09:10:30 | 00,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvsetup.exe
[2009/02/25 09:10:30 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnsvr.exe
[2009/02/25 09:10:28 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dplaysvr.exe
[2009/02/25 09:10:28 | 00,015,872 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\System32\dllcache\dmremote.exe
[2009/02/25 09:10:28 | 00,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\doskey.exe
[2009/02/25 09:10:28 | 00,004,608 | ---- | M] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2009/02/25 09:10:26 | 00,225,280 | ---- | M] (Microsoft Corp., Veritas Software) -- C:\WINDOWS\System32\dllcache\dmadmin.exe
[2009/02/25 09:10:26 | 00,167,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\diskpart.exe
[2009/02/25 09:10:26 | 00,085,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\diantz.exe
[2009/02/25 09:10:26 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\diskperf.exe
[2009/02/25 09:10:26 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dllhost.exe
[2009/02/25 09:10:26 | 00,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dllhst3g.exe
[2009/02/25 09:10:24 | 00,548,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dialer.exe
[2009/02/25 09:10:24 | 00,506,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winlogon.exe
[2009/02/25 09:10:22 | 00,104,960 | ---- | M] (Microsoft Corp. et Executive Software International, Inc.) -- C:\WINDOWS\System32\dllcache\dfrgntfs.exe
[2009/02/25 09:10:22 | 00,082,432 | ---- | M] (Microsoft Corp. et Executive Software International, Inc.) -- C:\WINDOWS\System32\dllcache\dfrgfat.exe
[2009/02/25 09:10:20 | 00,107,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysocmgr.exe
[2009/02/25 09:10:20 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe
[2009/02/25 09:10:20 | 00,025,600 | ---- | M] (Twain Working Group) -- C:\WINDOWS\System32\dllcache\twunk_32.exe
[2009/02/25 09:10:20 | 00,025,088 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\dllcache\defrag.exe
[2009/02/25 09:10:20 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcomcnfg.exe
[2009/02/25 09:10:18 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe
[2009/02/25 09:10:18 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ctfmon.exe
[2009/02/25 09:10:16 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cscript.exe
[2009/02/25 09:10:16 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sdbinst.exe
[2009/02/25 09:10:16 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\conime.exe
[2009/02/25 09:10:16 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2009/02/25 09:10:16 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convert.exe
[2009/02/25 09:10:16 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sfc.exe
[2009/02/25 09:10:16 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.exe
[2009/02/25 09:10:16 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\control.exe
[2009/02/25 09:10:16 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrereg.exe
[2009/02/25 09:10:14 | 01,044,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\conf.exe
[2009/02/25 09:10:14 | 01,037,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\explorer.exe
[2009/02/25 09:10:12 | 00,104,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clipbrd.exe
[2009/02/25 09:10:12 | 00,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmstp.exe
[2009/02/25 09:10:12 | 00,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cleanmgr.exe
[2009/02/25 09:10:12 | 00,040,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmmon32.exe
[2009/02/25 09:10:12 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clipsrv.exe
[2009/02/25 09:10:12 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compact.exe
[2009/02/25 09:10:12 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comp.exe
[2009/02/25 09:10:10 | 00,400,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmd.exe
[2009/02/25 09:10:10 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmdl32.exe
[2009/02/25 09:10:10 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ckcnv.exe
[2009/02/25 09:10:10 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cisvc.exe
[2009/02/25 09:10:08 | 00,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe
[2009/02/25 09:10:08 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe
[2009/02/25 09:10:08 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2009/02/25 09:10:08 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2009/02/25 09:10:08 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2009/02/25 09:10:08 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkdsk.exe
[2009/02/25 09:10:08 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkntfs.exe
[2009/02/25 09:10:08 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2009/02/25 09:10:08 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cidaemon.exe
[2009/02/25 09:10:06 | 00,115,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe
[2009/02/25 09:10:06 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cacls.exe
[2009/02/25 09:10:06 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe
[2009/02/25 09:10:02 | 00,188,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe
[2009/02/25 09:10:02 | 00,109,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe
[2009/02/25 09:10:02 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe
[2009/02/25 09:10:02 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe
[2009/02/25 09:09:58 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\blastcln.exe
[2009/02/25 09:09:58 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bootvrfy.exe
[2009/02/25 09:09:58 | 00,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bootok.exe
[2009/02/25 09:09:56 | 00,188,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe
[2009/02/25 09:09:56 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe
[2009/02/25 09:09:44 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ahui.exe
[2009/02/25 09:09:44 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe
[2009/02/25 09:09:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\auditusr.exe
[2009/02/25 09:09:42 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\alg.exe
[2009/02/25 09:09:42 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\at.exe
[2009/02/25 09:09:42 | 00,019,456 | ---- | M] () -- C:\WINDOWS\System32\dllcache\arp.exe
[2009/02/25 09:08:22 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe
[2009/02/25 09:08:20 | 00,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\telnet.exe
[2009/02/25 09:08:12 | 00,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tzchange.exe
[2009/02/25 09:07:42 | 00,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\logagent.exe
[2009/02/25 09:07:08 | 01,166,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntbackup.exe
[2009/02/25 09:06:58 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe
[2009/02/25 09:06:56 | 00,057,344 | ---- | M] () -- C:\WINDOWS\System32\InstMed.exe
[2009/02/25 09:06:54 | 00,139,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe
[2009/02/25 09:06:54 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe
[2009/02/25 09:06:52 | 00,171,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wjview.exe
[2009/02/25 09:06:52 | 00,115,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2009/02/25 09:06:52 | 00,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2009/02/25 09:06:52 | 00,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe
[2009/02/25 09:06:50 | 00,128,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe
[2009/02/25 09:06:50 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe
[2009/02/25 09:06:50 | 00,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe
[2009/02/25 09:06:50 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe
[2009/02/25 09:06:50 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe
[2009/02/25 09:06:50 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe
[2009/02/25 09:06:50 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe
[2009/02/25 09:06:50 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe
[2009/02/25 09:06:50 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe
[2009/02/25 09:06:50 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe
[2009/02/25 09:06:48 | 00,684,544 | ---- | M] () -- C:\WINDOWS\System32\CDUninst.exe
[2009/02/25 09:06:48 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe
[2009/02/25 09:06:48 | 00,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe
[2009/02/25 09:06:48 | 00,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe
[2009/02/25 09:06:48 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe
[2009/02/25 09:06:48 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe
[2009/02/25 09:06:48 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2009/02/25 09:06:46 | 00,347,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2009/02/25 09:06:46 | 00,189,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2009/02/25 09:06:46 | 00,133,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2009/02/25 09:06:46 | 00,124,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2009/02/25 09:06:46 | 00,104,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2009/02/25 09:06:44 | 00,539,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2009/02/25 09:06:44 | 00,411,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstsc.exe
[2009/02/25 09:06:44 | 00,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2009/02/25 09:06:44 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2009/02/25 09:06:42 | 00,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2009/02/25 09:06:42 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe
[2009/02/25 09:06:42 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2009/02/25 09:06:28 | 00,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tourstart.exe
[2009/02/25 09:06:28 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\blastcln.exe
[2009/02/25 09:06:22 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spnpinst.exe
[2009/02/25 09:06:16 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wscript.exe
[2009/02/25 09:06:16 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wpnpinst.exe
[2009/02/25 09:06:16 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wpabaln.exe
[2009/02/25 09:06:16 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wscntfy.exe
[2009/02/25 09:06:14 | 00,438,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wiaacmgr.exe
[2009/02/25 09:06:14 | 00,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wextract.exe
[2009/02/25 09:06:14 | 00,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\utilman.exe
[2009/02/25 09:06:14 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\upnpcont.exe
[2009/02/25 09:06:12 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\taskmgr.exe
[2009/02/25 09:06:12 | 00,107,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sysocmgr.exe
[2009/02/25 09:06:12 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tracert.exe
[2009/02/25 09:06:10 | 00,684,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sstext3d.scr
[2009/02/25 09:06:10 | 00,610,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sspipes.scr
[2009/02/25 09:06:10 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssmypics.scr
[2009/02/25 09:06:10 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssmarque.scr
[2009/02/25 09:06:10 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssmyst.scr
[2009/02/25 09:06:10 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\stimon.exe
[2009/02/25 09:06:10 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssstars.scr
[2009/02/25 09:06:08 | 00,708,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ss3dfo.scr
[2009/02/25 09:06:08 | 00,393,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssflwbox.scr
[2009/02/25 09:06:08 | 00,071,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sigverif.exe
[2009/02/25 09:06:08 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\skeys.exe
[2009/02/25 09:06:08 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shutdown.exe
[2009/02/25 09:06:08 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssbezier.scr
[2009/02/25 09:06:08 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\smbinst.exe
[2009/02/25 09:06:06 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shrpubw.exe
[2009/02/25 09:06:06 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sdbinst.exe
[2009/02/25 09:06:06 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sethc.exe
[2009/02/25 09:06:06 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\setup.exe
[2009/02/25 09:06:06 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\savedump.exe
[2009/02/25 09:06:06 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scrnsave.scr
[2009/02/25 09:06:04 | 00,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rtcshare.exe
[2009/02/25 09:06:04 | 00,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasphone.exe
[2009/02/25 09:06:04 | 00,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\reg.exe
[2009/02/25 09:06:04 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rcimlby.exe
[2009/02/25 09:06:04 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rcp.exe
[2009/02/25 09:06:04 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rsh.exe
[2009/02/25 09:06:04 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rexec.exe
[2009/02/25 09:06:04 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\runonce.exe
[2009/02/25 09:06:02 | 00,109,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\progman.exe
[2009/02/25 09:06:02 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\proquota.exe
[2009/02/25 09:06:02 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\powercfg.exe
[2009/02/25 09:06:02 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ping.exe
[2009/02/25 09:06:02 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\perfmon.exe
[2009/02/25 09:06:02 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jdbgmgr.exe
[2009/02/25 09:06:02 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\proxycfg.exe
[2009/02/25 09:06:00 | 00,216,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\osk.exe
[2009/02/25 09:06:00 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcconf.exe
[2009/02/25 09:06:00 | 00,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\packager.exe
[2009/02/25 09:06:00 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcad32.exe
[2009/02/25 09:05:58 | 00,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netsh.exe
[2009/02/25 09:05:58 | 00,079,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nslookup.exe
[2009/02/25 09:05:58 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netstat.exe
[2009/02/25 09:05:56 | 00,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\narrator.exe
[2009/02/25 09:05:56 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clspack.exe
[2009/02/25 09:05:56 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nddeapir.exe
[2009/02/25 09:05:52 | 00,144,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mobsync.exe
[2009/02/25 09:05:52 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshta.exe
[2009/02/25 09:05:50 | 00,816,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmc.exe
[2009/02/25 09:05:50 | 00,085,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\makecab.exe
[2009/02/25 09:05:50 | 00,073,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\magnify.exe
[2009/02/25 09:05:50 | 00,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\logman.exe
[2009/02/25 09:05:48 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipv6.exe
[2009/02/25 09:05:48 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipxroute.exe
[2009/02/25 09:05:46 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iexpress.exe
[2009/02/25 09:05:44 | 00,335,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netsetup.exe
[2009/02/25 09:05:44 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\grpconv.exe
[2009/02/25 09:05:42 | 00,195,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eudcedit.exe
[2009/02/25 09:05:42 | 00,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fsquirt.exe
[2009/02/25 09:05:42 | 00,046,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ftp.exe
[2009/02/25 09:05:42 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\extrac32.exe
[2009/02/25 09:05:42 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fontview.exe
[2009/02/25 09:05:40 | 00,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dwwin.exe
[2009/02/25 09:05:40 | 00,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpvsetup.exe
[2009/02/25 09:05:40 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dplaysvr.exe
[2009/02/25 09:05:40 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnsvr.exe
[2009/02/25 09:05:38 | 00,167,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\diskpart.exe
[2009/02/25 09:05:38 | 00,085,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\diantz.exe
[2009/02/25 09:05:38 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ddeshare.exe
[2009/02/25 09:05:38 | 00,015,872 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\System32\dmremote.exe
[2009/02/25 09:05:36 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cscript.exe
[2009/02/25 09:05:36 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\conime.exe
[2009/02/25 09:05:34 | 00,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmstp.exe
[2009/02/25 09:05:34 | 00,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cleanmgr.exe
[2009/02/25 09:05:34 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmdl32.exe
[2009/02/25 09:05:34 | 00,045,056 | ---- | M] () -- C:\WINDOWS\System32\javaw.exe
[2009/02/25 09:05:34 | 00,045,056 | ---- | M] () -- C:\WINDOWS\System32\java.exe
[2009/02/25 09:05:34 | 00,040,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmmon32.exe
[2009/02/25 09:05:34 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cliconfg.exe
[2009/02/25 09:05:32 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\at.exe
[2009/02/25 09:05:32 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\auditusr.exe
[2009/02/25 09:05:32 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\atmadm.exe
[2009/02/25 09:05:30 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winver.exe
[2009/02/25 09:05:30 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\actmovie.exe
[2009/02/25 09:05:28 | 00,104,960 | ---- | M] (Microsoft Corp. et Executive Software International, Inc.) -- C:\WINDOWS\System32\dfrgntfs.exe
[2009/02/25 09:05:28 | 00,082,432 | ---- | M] (Microsoft Corp. et Executive Software International, Inc.) -- C:\WINDOWS\System32\dfrgfat.exe
[2009/02/25 09:05:28 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\findstr.exe
[2009/02/25 09:05:28 | 00,025,088 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\defrag.exe
[2009/02/25 09:05:26 | 00,124,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\net1.exe
[2009/02/25 09:05:26 | 00,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipconfig.exe
[2009/02/25 09:05:26 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\net.exe
[2009/02/25 09:05:24 | 00,400,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmd.exe
[2009/02/25 09:05:24 | 00,172,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jview.exe
[2009/02/25 09:05:16 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ahui.exe
[2009/02/25 09:05:14 | 00,420,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntvdm.exe
[2009/02/25 09:05:12 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\osuninst.exe
[2009/02/25 09:05:10 | 00,077,824 | ---- | M] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\usrmlnka.exe
[2009/02/25 09:05:10 | 00,069,632 | ---- | M] ( U.S. Robotics Corporation) -- C:\WINDOWS\System32\usrshuta.exe
[2009/02/25 09:05:10 | 00,061,440 | ---- | M] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\usrprbda.exe
[2009/02/25 09:05:10 | 00,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\migpwd.exe
[2009/02/25 09:05:10 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lnkstub.exe
[2009/02/25 09:05:10 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pentnt.exe
[2009/02/25 09:05:08 | 01,298,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxdiag.exe
[2009/02/25 09:05:08 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dvdupgrd.exe
[2009/02/25 09:05:06 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wupdmgr.exe
[2009/02/25 09:05:06 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winmsd.exe
[2009/02/25 09:05:06 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winhlp32.exe
[2009/02/25 09:05:04 | 00,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\verifier.exe
[2009/02/25 09:05:04 | 00,051,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\w32tm.exe
[2009/02/25 09:05:04 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vssadmin.exe
[2009/02/25 09:05:04 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tracert6.exe
[2009/02/25 09:05:04 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tftp.exe
[2009/02/25 09:05:04 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\unlodctr.exe
[2009/02/25 09:05:02 | 00,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\syncapp.exe
[2009/02/25 09:05:02 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\syskey.exe
[2009/02/25 09:05:02 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tcpsvcs.exe
[2009/02/25 09:05:02 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\taskman.exe
[2009/02/25 09:05:02 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tcmsetup.exe
[2009/02/25 09:05:02 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\subst.exe
[2009/02/25 09:05:02 | 00,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\systray.exe
[2009/02/25 09:05:00 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sc.exe
[2009/02/25 09:05:00 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\runas.exe
[2009/02/25 09:05:00 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sfc.exe
[2009/02/25 09:04:58 | 00,053,248 | ---- | M] (Microsoft Corp) -- C:\WINDOWS\System32\rsm.exe
[2009/02/25 09:04:58 | 00,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rsmui.exe
[2009/02/25 09:04:58 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\routemon.exe
[2009/02/25 09:04:58 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rsmsink.exe
[2009/02/25 09:04:58 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\route.exe
[2009/02/25 09:04:58 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\replace.exe
[2009/02/25 09:04:58 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasdial.exe
[2009/02/25 09:04:58 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasautou.exe
[2009/02/25 09:04:58 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\print.exe
[2009/02/25 09:04:58 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\recover.exe
[2009/02/25 09:04:58 | 00,004,608 | ---- | M] (Microsoft) -- C:\WINDOWS\System32\regwiz.exe
[2009/02/25 09:04:58 | 00,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\regedt32.exe
[2009/02/25 09:04:56 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ping6.exe
[2009/02/25 09:04:56 | 00,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pathping.exe
[2009/02/25 09:04:54 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mpnotify.exe
[2009/02/25 09:04:54 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nbtstat.exe
[2009/02/25 09:04:54 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mrinfo.exe
[2009/02/25 09:04:54 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msswchx.exe
[2009/02/25 09:04:52 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lpr.exe
[2009/02/25 09:04:52 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mountvol.exe
[2009/02/25 09:04:52 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lpq.exe
[2009/02/25 09:04:52 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lodctr.exe
[2009/02/25 09:04:50 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lights.exe
[2009/02/25 09:04:50 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\label.exe
[2009/02/25 09:04:48 | 00,046,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsec6.exe
[2009/02/25 09:04:48 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hostname.exe
[2009/02/25 09:04:46 | 00,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fsutil.exe
[2009/02/25 09:04:46 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\expand.exe
[2009/02/25 09:04:46 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\help.exe
[2009/02/25 09:04:46 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fc.exe
[2009/02/25 09:04:46 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\finger.exe
[2009/02/25 09:04:46 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\forcedos.exe
[2009/02/25 09:04:46 | 00,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fixmapi.exe
[2009/02/25 09:04:44 | 00,059,392 | ---- | M] () -- C:\WINDOWS\System32\dvdplay.exe
[2009/02/25 09:04:44 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\esentutl.exe
[2009/02/25 09:04:44 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\diskperf.exe
[2009/02/25 09:04:44 | 00,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\doskey.exe
[2009/02/25 09:04:44 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eventvwr.exe
[2009/02/25 09:04:44 | 00,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllhst3g.exe
[2009/02/25 09:04:42 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\compact.exe
[2009/02/25 09:04:42 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comp.exe
[2009/02/25 09:04:42 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\convert.exe
[2009/02/25 09:04:42 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\control.exe
[2009/02/25 09:04:38 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cacls.exe
[2009/02/25 09:04:38 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\chkdsk.exe
[2009/02/25 09:04:38 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\chkntfs.exe
[2009/02/25 09:04:38 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cidaemon.exe
[2009/02/25 09:04:38 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ckcnv.exe
[2009/02/25 09:04:36 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sort.exe
[2009/02/25 09:04:36 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\arp.exe
[2009/02/25 09:04:36 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\attrib.

[2009/02/25 09:04:36 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sort.exe
[2009/02/25 09:04:36 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\arp.exe
[2009/02/25 09:04:36 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\attrib.exe
[2009/02/25 09:04:36 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bootvrfy.exe
[2009/02/25 09:04:36 | 00,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bootok.exe
[2009/02/25 09:04:34 | 00,020,480 | ---- | M] () -- C:\WINDOWS\DSNCT511.EXE
[2009/02/25 09:04:34 | 00,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\hh.exe
[2009/02/25 09:04:32 | 00,114,688 | ---- | M] (www.zsmc.com.cn) -- C:\WINDOWS\VM305Cap.exe
[2009/02/25 09:04:32 | 00,061,440 | ---- | M] (Vimicro) -- C:\WINDOWS\VM305_STI.exe
[2009/02/25 09:04:32 | 00,053,248 | ---- | M] (VM) -- C:\WINDOWS\Sti305.exe
[2009/02/25 09:04:32 | 00,028,672 | ---- | M] () -- C:\WINDOWS\r315hk.exe
[2009/02/25 09:04:26 | 00,106,496 | ---- | M] (Syntek America Inc.) -- C:\WINDOWS\Stk112X.exe
[2009/02/25 09:04:26 | 00,102,400 | ---- | M] (mmedia) -- C:\WINDOWS\mmvem.exe
[2009/02/25 09:04:26 | 00,057,344 | ---- | M] (VM) -- C:\WINDOWS\StillCap.exe
[2009/02/25 09:04:26 | 00,053,248 | ---- | M] (VM) -- C:\WINDOWS\Sti302.exe
[2009/02/25 09:04:26 | 00,053,248 | ---- | M] (Vimicro) -- C:\WINDOWS\Vm_sti.exe
[2009/02/25 09:04:26 | 00,049,152 | ---- | M] () -- C:\WINDOWS\Volumeset.exe
[2009/02/25 09:04:26 | 00,028,672 | ---- | M] () -- C:\WINDOWS\VSNCT511.EXE
[2009/02/25 09:04:24 | 00,094,208 | ---- | M] (www.zsmc.com.cn) -- C:\WINDOWS\VMCap.exe
[2009/02/25 09:04:24 | 00,057,344 | ---- | M] () -- C:\WINDOWS\rmvpeye.exe
[2009/02/25 09:04:10 | 00,094,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\amcap.exe
[2009/02/25 09:04:10 | 00,020,480 | ---- | M] () -- C:\WINDOWS\usnpstd3.exe
[2009/02/25 09:04:08 | 00,046,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\setdebug.exe
[2009/02/25 09:04:06 | 00,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\NOTEPAD.EXE
[2009/02/25 09:04:06 | 00,064,512 | ---- | M] (Agere Systems) -- C:\WINDOWS\agrsmdel.exe
[2009/02/25 09:04:06 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2009/02/25 09:03:36 | 00,288,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\winhlp32.exe
[2009/02/25 09:03:34 | 00,153,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\regedit.exe
[2009/02/25 09:03:34 | 00,025,600 | ---- | M] (Twain Working Group) -- C:\WINDOWS\twunk_32.exe
[2009/02/25 07:46:50 | 00,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2009/02/24 23:41:48 | 00,135,168 | ---- | M] () -- C:\WINDOWS\tsnpstd3.exe
[2009/02/24 23:41:38 | 00,295,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vssvc.exe
[2009/02/24 23:41:38 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\userinit.exe
[2009/02/24 23:41:36 | 00,294,912 | ---- | M] (Acer Inc.) -- C:\WINDOWS\System32\USBPlug.exe
[2009/02/24 23:41:36 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ups.exe
[2009/02/24 23:41:32 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\svchost.exe
[2009/02/24 23:41:28 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spoolsv.exe
[2009/02/24 23:41:24 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shmgrate.exe
[2009/02/24 23:41:22 | 00,142,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sessmgr.exe
[2009/02/24 23:41:20 | 00,100,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scardsvr.exe
[2009/02/24 23:41:20 | 00,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rundll32.exe
[2009/02/24 23:41:18 | 00,132,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rsvp.exe
[2009/02/24 23:41:16 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\regsvr32.exe
[2009/02/24 23:41:10 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntsd.exe
[2009/02/24 23:41:08 | 00,114,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netdde.exe
[2009/02/24 23:41:06 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msiexec.exe
[2009/02/24 23:41:04 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtc.exe
[2009/02/24 23:41:02 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmsrvc.exe
[2009/02/24 23:41:00 | 00,241,664 | ---- | M] (Labtec Inc.) -- C:\WINDOWS\System32\LVCOMSX.EXE
[2009/02/24 23:40:58 | 00,515,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\logonui.exe
[2009/02/24 23:40:56 | 00,221,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\logon.scr
[2009/02/24 23:40:56 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\locator.exe
[2009/02/24 23:40:50 | 00,149,504 | ---- | M] () -- C:\WINDOWS\System32\imapi.exe
[2009/02/24 23:40:48 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe
[2009/02/24 23:40:40 | 00,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dumprep.exe
[2009/02/24 23:40:34 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drwtsn32.exe
[2009/02/24 23:39:28 | 00,225,280 | ---- | M] (Microsoft Corp., Veritas Software) -- C:\WINDOWS\System32\dmadmin.exe
[2009/02/24 23:39:26 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllhost.exe
[2009/02/24 23:39:22 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ctfmon.exe
[2009/02/24 23:39:18 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cisvc.exe
[2009/02/24 23:39:12 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\alg.exe
[2009/02/24 23:39:02 | 01,054,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2009/02/23 22:30:58 | 00,016,896 | ---- | M] () -- C:\Documents and Settings\laurent\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/02/23 21:37:28 | 00,000,045 | ---- | M] () -- C:\WINDOWS\TLCAPPS.ini
[2009/02/23 18:29:30 | 00,000,268 | -H-- | M] () -- C:\sqmdata11.sqm
[2009/02/23 18:29:30 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt11.sqm
[2009/02/23 14:30:34 | 00,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\User32.dll
[2009/02/22 10:32:28 | 00,281,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Gdi32.dll
[2009/02/15 16:47:24 | 00,775,034 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009/02/15 16:47:24 | 00,367,658 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2009/02/15 16:47:24 | 00,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/02/15 16:47:24 | 00,048,616 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2009/02/15 16:47:24 | 00,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/02/15 09:58:54 | 00,000,520 | ---- | M] () -- C:\WINDOWS\System32\MRT.INI
[2009/02/11 10:19:42 | 00,038,496 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/02/11 10:19:34 | 00,015,504 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/02/11 04:29:42 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt10.sqm
[2009/02/11 04:29:42 | 00,000,232 | -H-- | M] () -- C:\sqmdata10.sqm
[2009/02/10 03:17:00 | 00,137,856 | ---- | M] () -- C:\WINDOWS\System32\drivers\wanatw4.sys
[2009/02/09 18:34:40 | 00,000,002 | ---- | M] () -- C:\WINDOWS\msoffice.ini
[2009/02/09 18:25:34 | 00,000,161 | ---- | M] () -- C:\WINDOWS\yesmessenger.ini
[2009/02/07 23:54:22 | 00,053,624 | ---- | M] () -- C:\Documents and Settings\laurent\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009/02/07 14:25:28 | 00,194,568 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/02/06 15:22:06 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt09.sqm
[2009/02/06 15:22:06 | 00,000,232 | -H-- | M] () -- C:\sqmdata09.sqm
[2009/02/06 04:06:42 | 00,136,992 | ---- | M] () -- C:\WINDOWS\System32\drivers\csaud.sys
[2009/02/05 22:11:36 | 01,256,296 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2009/02/05 22:08:20 | 00,093,296 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2009/02/05 22:08:10 | 00,094,032 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2009/02/05 22:07:24 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2009/02/05 22:07:12 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2009/02/05 22:06:20 | 00,051,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2009/02/05 22:06:10 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2009/02/05 22:05:12 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2009/02/05 22:04:46 | 00,097,480 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr
[2009/02/05 20:26:06 | 00,000,002 | ---- | M] () -- C:\839718926
[2009/02/05 20:24:52 | 00,403,973 | -HS- | M] () -- C:\WINDOWS\System32\SDcKnnmp.ini2
[2009/02/05 20:24:08 | 00,403,973 | -HS- | M] () -- C:\WINDOWS\System32\SDcKnnmp.ini
[2009/02/03 13:48:00 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt08.sqm
[2009/02/03 13:48:00 | 00,000,232 | -H-- | M] () -- C:\sqmdata08.sqm
[2009/02/03 11:01:48 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt07.sqm
[2009/02/03 11:01:48 | 00,000,232 | -H-- | M] () -- C:\sqmdata07.sqm
[2009/02/03 04:08:06 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt06.sqm
[2009/02/03 04:08:06 | 00,000,232 | -H-- | M] () -- C:\sqmdata06.sqm
[2009/02/02 20:14:00 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm
[2009/02/02 20:14:00 | 00,000,232 | -H-- | M] () -- C:\sqmdata05.sqm
[2009/02/02 20:13:46 | 00,007,564 | ---- | M] () -- C:\Documents and Settings\laurent\Application Data\wklnhst.dat
[2009/02/02 16:48:14 | 00,000,244 | -H-- | M] () -- C:\sqmnoopt04.sqm
[2009/02/02 16:48:14 | 00,000,232 | -H-- | M] () -- C:\sqmdata04.sqm
[2009/01/29 19:52:04 | 01,559,168 | -HS- | M] () -- C:\WINDOWS\System32\ayooajhu.ini
[2009/01/27 18:13:44 | 01,559,177 | -HS- | M] () -- C:\WINDOWS\System32\hrrplgps.ini
[2009/01/24 11:35:02 | 00,000,341 | ---- | M] () -- C:\WINDOWS\System32\LEXSUP.HTM
[2009/01/22 19:15:26 | 01,468,107 | -HS- | M] () -- C:\WINDOWS\System32\qmnpfwhw.ini
[2009/01/21 19:05:48 | 01,468,107 | -HS- | M] () -- C:\WINDOWS\System32\amkqmmae.ini
[2009/01/20 19:04:08 | 01,465,612 | -HS- | M] () -- C:\WINDOWS\System32\wmufxwwe.ini
[2009/01/20 18:58:16 | 01,465,612 | -HS- | M] () -- C:\WINDOWS\System32\chovlten.ini
[2009/01/19 18:56:54 | 01,436,522 | -HS- | M] () -- C:\WINDOWS\System32\rudhvxsr.ini
[2009/01/19 14:32:42 | 00,000,694 | ---- | M] () -- C:\Documents and Settings\laurent\Bureau\Lecteur Windows Media.lnk
[2009/01/18 19:00:18 | 01,436,164 | -HS- | M] () -- C:\WINDOWS\System32\awkwbmli.ini
[2009/01/17 18:49:56 | 01,436,142 | -HS- | M] () -- C:\WINDOWS\System32\kajnlpdx.ini
[2009/01/16 18:43:56 | 01,435,246 | -HS- | M] () -- C:\WINDOWS\System32\wyhtyylg.ini
[2009/01/15 18:42:16 | 01,408,369 | -HS- | M] () -- C:\WINDOWS\System32\gfgydtpy.ini
[2009/01/15 18:39:18 | 01,408,369 | -HS- | M] () -- C:\WINDOWS\System32\nosmkrvj.ini
[2009/01/14 18:37:22 | 01,402,402 | -HS- | M] () -- C:\WINDOWS\System32\cpxdhnvx.ini
[2009/01/14 18:34:26 | 01,402,402 | -HS- | M] () -- C:\WINDOWS\System32\lfswisnl.ini
[2009/01/14 00:17:58 | 01,381,965 | -HS- | M] () -- C:\WINDOWS\System32\nqyxrjow.ini
[2009/01/12 18:33:20 | 01,301,882 | -HS- | M] () -- C:\WINDOWS\System32\ufahqkue.ini
[2009/01/12 18:24:24 | 01,301,882 | -HS- | M] () -- C:\WINDOWS\System32\xoebpyoc.ini
[2009/01/11 18:23:12 | 01,289,472 | -HS- | M] () -- C:\WINDOWS\System32\kcnqfgys.ini
[2009/01/10 18:16:50 | 01,298,592 | -HS- | M] () -- C:\WINDOWS\System32\qxxehvru.ini
[2009/01/10 18:13:58 | 01,298,592 | -HS- | M] () -- C:\WINDOWS\System32\fgqnwakm.ini
[2009/01/09 18:11:52 | 01,283,903 | -HS- | M] () -- C:\WINDOWS\System32\nhwfvfkg.ini
[2009/01/09 18:08:56 | 01,283,903 | -HS- | M] () -- C:\WINDOWS\System32\bvsldmax.ini
[2009/01/08 18:05:52 | 01,283,321 | -HS- | M] () -- C:\WINDOWS\System32\lrexejjq.ini
[2009/01/07 18:04:32 | 01,355,057 | -HS- | M] () -- C:\WINDOWS\System32\owelxmpv.ini
[2009/01/07 18:01:38 | 01,355,057 | -HS- | M] () -- C:\WINDOWS\System32\xyjodmvk.ini
[2009/01/06 17:58:44 | 01,355,057 | -HS- | M] () -- C:\WINDOWS\System32\pmfifiax.ini
[2009/01/06 17:52:46 | 01,355,057 | -HS- | M] () -- C:\WINDOWS\System32\detalsur.ini
[2009/01/05 17:49:48 | 01,339,482 | -HS- | M] () -- C:\WINDOWS\System32\dlfkusjk.ini
[2009/01/04 17:48:04 | 01,340,499 | -HS- | M] () -- C:\WINDOWS\System32\yqfcoiek.ini
[2009/01/04 17:45:02 | 01,340,499 | -HS- | M] () -- C:\WINDOWS\System32\vsxarnqr.ini
[2009/01/03 17:44:40 | 01,340,499 | -HS- | M] () -- C:\WINDOWS\System32\ytbbhdoi.ini
[2009/01/02 17:45:34 | 01,673,999 | -HS- | M] () -- C:\WINDOWS\System32\cylrvxfd.ini
[2009/01/01 17:41:02 | 01,673,999 | -HS- | M] () -- C:\WINDOWS\System32\gtjxvmbq.ini
[2009/01/01 17:35:04 | 01,673,999 | -HS- | M] () -- C:\WINDOWS\System32\ugbvaryt.ini
[2008/12/31 17:35:06 | 01,673,278 | -HS- | M] () -- C:\WINDOWS\System32\creicwar.ini
[2008/12/31 17:29:10 | 01,673,278 | -HS- | M] () -- C:\WINDOWS\System32\hsbahmms.ini
[2008/12/30 17:28:12 | 01,673,278 | -HS- | M] () -- C:\WINDOWS\System32\gnokvlhw.ini
[2008/12/29 17:28:22 | 01,672,654 | -HS- | M] () -- C:\WINDOWS\System32\wusvhval.ini
[2008/12/29 14:36:16 | 01,668,129 | -HS- | M] () -- C:\WINDOWS\System32\ojjnppxm.ini
[2008/12/28 17:27:40 | 01,673,999 | -HS- | M] () -- C:\WINDOWS\System32\kxmctyre.ini
[2008/12/28 17:21:40 | 01,673,999 | -HS- | M] () -- C:\WINDOWS\System32\ikktojhw.ini
[2008/12/26 17:17:50 | 01,668,120 | -HS- | M] () -- C:\WINDOWS\System32\fccvwimp.ini
[2008/12/26 17:11:56 | 01,668,120 | -HS- | M] () -- C:\WINDOWS\System32\xmkhgwho.ini
[2008/12/26 09:21:06 | 01,668,138 | -HS- | M] () -- C:\WINDOWS\System32\mosmhhcn.ini
[2008/12/25 09:15:32 | 01,668,120 | -HS- | M] () -- C:\WINDOWS\System32\emvyikbb.ini
[2008/12/25 09:10:08 | 01,668,120 | -HS- | M] () -- C:\WINDOWS\System32\etvnrkvn.ini
[2008/12/18 19:54:16 | 01,773,880 | -HS- | M] () -- C:\WINDOWS\System32\smnumasf.ini
[2008/12/12 18:35:12 | 03,081,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtml.dll
[2008/12/12 18:35:12 | 03,081,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2008/12/11 12:57:22 | 00,333,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\srv.sys
[2008/12/11 12:57:22 | 00,333,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys
< End of report >

ouvre OTListIt2 puis dans la fenêtre du bas Custom Scans/Fixes
copie-colle le contenu de la citation ci-dessous:


Clique sur le bouton rouge Run Fix
Le tool va peut-être demander à rebooter l'ordi acceptes.copie-
colle le rapport final que tu retrouveras aussi en C:\_OTListIt\MovedFiles

Error: Unable to interpret <virut > in the current context!
========== FILES ==========
C:\WINDOWS\System32\hrrplgps.ini moved successfully.
C:\WINDOWS\System32\qmnpfwhw.ini moved successfully.
C:\WINDOWS\System32\ayooajhu.ini moved successfully.
C:\WINDOWS\System32\amkqmmae.ini moved successfully.
C:\WINDOWS\System32\wmufxwwe.ini moved successfully.
C:\WINDOWS\System32\chovlten.ini moved successfully.
C:\WINDOWS\System32\rudhvxsr.ini moved successfully.
C:\WINDOWS\System32\awkwbmli.ini moved successfully.
C:\WINDOWS\System32\kajnlpdx.ini moved successfully.
C:\WINDOWS\System32\wyhtyylg.ini moved successfully.
C:\WINDOWS\System32\gfgydtpy.ini moved successfully.
C:\WINDOWS\System32\nosmkrvj.ini moved successfully.
C:\WINDOWS\System32\cpxdhnvx.ini moved successfully.
C:\WINDOWS\System32\lfswisnl.ini moved successfully.
C:\WINDOWS\System32\nqyxrjow.ini moved successfully.
C:\WINDOWS\System32\ufahqkue.ini moved successfully.
C:\WINDOWS\System32\xoebpyoc.ini moved successfully.
C:\WINDOWS\System32\kcnqfgys.ini moved successfully.
C:\WINDOWS\System32\qxxehvru.ini moved successfully.
C:\WINDOWS\System32\fgqnwakm.ini moved successfully.
C:\WINDOWS\System32\nhwfvfkg.ini moved successfully.
C:\WINDOWS\System32\bvsldmax.ini moved successfully.
C:\WINDOWS\System32\lrexejjq.ini moved successfully.
C:\WINDOWS\System32\owelxmpv.ini moved successfully.
C:\WINDOWS\System32\xyjodmvk.ini moved successfully.
C:\WINDOWS\System32\pmfifiax.ini moved successfully.
C:\WINDOWS\System32\detalsur.ini moved successfully.
C:\WINDOWS\System32\dlfkusjk.ini moved successfully.
C:\WINDOWS\System32\yqfcoiek.ini moved successfully.
C:\WINDOWS\System32\vsxarnqr.ini moved successfully.
C:\WINDOWS\System32\ytbbhdoi.ini moved successfully.
C:\WINDOWS\System32\cylrvxfd.ini moved successfully.
C:\WINDOWS\System32\gtjxvmbq.ini moved successfully.
C:\WINDOWS\System32\ugbvaryt.ini moved successfully.
C:\WINDOWS\System32\creicwar.ini moved successfully.
C:\WINDOWS\System32\hsbahmms.ini moved successfully.
C:\WINDOWS\System32\gnokvlhw.ini moved successfully.
C:\WINDOWS\System32\wusvhval.ini moved successfully.
C:\WINDOWS\System32\kxmctyre.ini moved successfully.
C:\WINDOWS\System32\ikktojhw.ini moved successfully.
C:\WINDOWS\System32\ojjnppxm.ini moved successfully.
C:\WINDOWS\System32\fccvwimp.ini moved successfully.
C:\WINDOWS\System32\xmkhgwho.ini moved successfully.
C:\WINDOWS\System32\mosmhhcn.ini moved successfully.
C:\WINDOWS\System32\emvyikbb.ini moved successfully.
C:\WINDOWS\System32\etvnrkvn.ini moved successfully.
C:\WINDOWS\System32\smnumasf.ini moved successfully.
C:\32788R22FWJFW.0.tmp moved successfully.
C:\32788R22FWJFW moved successfully.
========== REGISTRY ==========
Registry value HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\jrcydebv.exe deleted successfully.
Registry value HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\xlmopojd.exe deleted successfully.
Registry value HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\jrcydebv.exe not found.
Registry value HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\xlmopojd.exe not found.
========== COMMANDS ==========

OTListIt2 by OldTimer - Version 2.0.2.0 log created on 03012009_190653

Combofix ne veut toujours pas fonctionner ? ca nous arrangerait bien qu'il
se lance normalement.essaye de le lancer en mode sans échec.methode ici:
http://forum.telecharger.01net.com/microhebdo/questions-techniques-diverses/t(...)

impossible
ca marque errorwin32 only
OS incompatiblecombofix ne fonctionne qu'avec windows 2000 et xp

c''est peut-être du au fait que le système est en Fat au lieu de Ntfs.
Démarrer>>Tous les programmes>>Accessoires>>Invite de commandes .
À l'invite de commandes,tapes la commande suivante, où lettre_lecteur correspond à la lettre du lecteur que vous souhaitez convertir :
puis valide par Entrée.
resecte bien les espaces tel que c'est écrit dans la citation.

ca me marque :

le type du systeme de fichiers est fat
entrez le nom de volume en cours pour le lecteur C: