I need help . jai un probleme avec mon pc portable " trojan"

sorry for my french but ... jai un grave probleme avec mon computer j'ai essayer de l'efface mais ca marche pas HELP NEEDED

Salut Jennifer007


On va vérifier cela, télécharge RSIT (de random/random) sur le bureau ici :
http://images.malwareremoval.com/random/RSIT.exe

- Double clique sur RSIT.exe qui est sur le bureau
- Clique sur Continue dans la fenêtre
- RSIT téléchargera HijackThis si il n’est pas présent où détecté, alors il faudra accepter la licence
- Poste le contenue des deux rapports, log.txt et info.txt(réduit dans la barre des tâches) à la fin de l’analyse

Les rapports sont dans le dossier ici C:\rsit


@++

Logfile of random's system information tool 1.06 (written by random/random)
Run by Gnawy at 2009-03-01 20:37:18
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 173 GB (73%) free of 238 GB
Total RAM: 1917 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:37:35 PM, on 3/1/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Java\jre1.6.0\bin\jusched.exe
C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Gnawy\Downloads\RSIT.exe
C:\Program Files\trend micro\Gnawy.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe"
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0\bin\jusched.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [HWSetup] \HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [svchost.exe] C:\Users\Gnawy\AppData\Roaming\Microsoft\svcnost.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: Statistiques de la protection du trafic Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: pinger - Unknown owner - C:\Toshiba\IVP\ISM\pinger.exe
O23 - Service: Swupdtmr - Unknown owner - c:\Toshiba\IVP\swupdate\swupdtmr.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 10325 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-03-04 312928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll [2008-11-11 62728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0\bin\ssv.dll [2009-02-21 501384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-03-03 251504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll [2009-03-03 657904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll [2009-03-03 522224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-03-03 251504]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-18 1008184]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2006-09-11 180224]
"Camera Assistant Software"=C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe [2007-04-10 413696]
"NDSTray.exe"=NDSTray.exe []
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-04-25 4444160]
"Skytel"=C:\Windows\Skytel.exe [2007-04-13 1822720]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0\bin\jusched.exe [2009-02-21 77824]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-04-19 861744]
"KeNotify"=C:\Program Files\TOSHIBA\Utilities\KeNotify.exe [2006-11-06 34352]
"HWSetup"=\HWSetup.exe hwSetUP []
"SVPWUTIL"=C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe [2006-03-22 438272]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2007-03-29 411192]
"HSON"=C:\Program Files\TOSHIBA\TBS\HSON.exe [2006-12-07 55416]
"SmoothView"=C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2007-03-22 448632]
"00TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2007-04-26 538744]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2008-08-03 36352]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2009-03-03 206088]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2009-03-04 198160]
"AppleSyncNotifier"=C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2008-10-01 111936]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-10-01 289576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-18 1233920]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
"TOSCDSPD"=C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [2007-01-22 417792]
"LtMoh"=C:\Program Files\ltmoh\Ltmoh.exe []
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-03-03 39408]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-18 125952]
"svchost.exe"=C:\Users\Gnawy\AppData\Roaming\Microsoft\svcnost.exe [2009-03-26 100864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\Windows\system32\klogon.dll [2008-11-11 218376]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\TOSHIBA\ivp\NetInt\Netint.exe"="C:\TOSHIBA\ivp\NetInt\Netint.exe:*:Enabled:NIE - Toshiba Software Upgrades Engine"
"C:\TOSHIBA\Ivp\ISM\pinger.exe"="C:\TOSHIBA\Ivp\ISM\pinger.exe:*:Enabled:Toshiba Software Upgrades Pinger"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{39e50fc1-170d-11de-bce1-001b3814e3f2}]
shell\AutoRun\command - E:\setupSNK.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{39e50fcc-170d-11de-bce1-001b3814e3f2}]
shell\AutoRun\command - E:\setupSNK.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5e44eb6f-0100-11de-852f-001b3814e3f2}]
shell\AutoRun\command - F:\launcher.exe


======List of files/folders created in the last 1 months======

2009-03-22 05:07:58 ----A---- C:\Windows\ntbtlog.txt
2009-03-10 21:44:12 ----A---- C:\Windows\system32\wmp.dll
2009-03-10 21:44:10 ----A---- C:\Windows\system32\spwmp.dll
2009-03-10 21:44:10 ----A---- C:\Windows\system32\dxmasf.dll
2009-03-10 21:44:09 ----A---- C:\Windows\system32\wmploc.DLL
2009-03-10 21:43:37 ----A---- C:\Windows\system32\schannel.dll
2009-03-09 18:55:35 ----D---- C:\Program Files\uTorrent
2009-03-09 18:55:06 ----D---- C:\Users\Gnawy\AppData\Roaming\uTorrent
2009-03-04 17:40:46 ----D---- C:\Program Files\Common Files\xing shared
2009-03-04 17:40:41 ----A---- C:\Windows\system32\rmoc3260.dll
2009-03-04 17:40:31 ----A---- C:\Windows\system32\pndx5032.dll
2009-03-04 17:40:31 ----A---- C:\Windows\system32\pndx5016.dll
2009-03-04 17:40:30 ----D---- C:\Program Files\Real
2009-03-04 17:40:30 ----A---- C:\Windows\system32\pncrt.dll
2009-03-04 17:40:30 ----A---- C:\Windows\system32\msvcp71.dll
2009-03-04 17:40:24 ----D---- C:\Program Files\Common Files\Real
2009-03-04 17:40:23 ----D---- C:\Users\Gnawy\AppData\Roaming\Real
2009-03-03 15:43:45 ----A---- C:\Windows\system32\unrar.dll
2009-03-03 15:43:43 ----A---- C:\Windows\system32\yv12vfw.dll
2009-03-03 15:43:43 ----A---- C:\Windows\system32\xvidvfw.dll
2009-03-03 15:43:43 ----A---- C:\Windows\system32\xvidcore.dll
2009-03-03 15:43:42 ----A---- C:\Windows\system32\qt-dx331.dll
2009-03-03 15:43:42 ----A---- C:\Windows\system32\dpl100.dll
2009-03-03 15:43:42 ----A---- C:\Windows\system32\divx.dll
2009-03-03 15:43:41 ----A---- C:\Windows\system32\ff_vfw.dll.manifest
2009-03-03 15:43:41 ----A---- C:\Windows\system32\ff_vfw.dll
2009-03-03 15:43:40 ----A---- C:\Windows\system32\pthreadGC2.dll
2009-03-03 15:43:40 ----A---- C:\Windows\system32\msvcr71.dll
2009-03-03 15:43:39 ----D---- C:\Program Files\K-Lite Codec Pack
2009-03-03 15:14:13 ----D---- C:\Program Files\Kaspersky Lab
2009-03-03 14:53:13 ----D---- C:\Users\Gnawy\AppData\Roaming\cmw
2009-03-01 20:37:20 ----D---- C:\Program Files\trend micro
2009-03-01 20:37:18 ----D---- C:\rsit
2009-03-01 16:42:42 ----D---- C:\Program Files\Microsoft Silverlight
2009-03-01 16:41:03 ----D---- C:\Program Files\Microsoft Sync Framework
2009-03-01 16:37:12 ----A---- C:\Windows\system32\d3dx9_32.dll
2009-03-01 16:31:10 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2009-03-01 16:23:30 ----D---- C:\Program Files\Microsoft
2009-03-01 16:23:02 ----D---- C:\Program Files\Windows Live SkyDrive
2009-03-01 16:22:33 ----D---- C:\Program Files\Windows Live
2009-03-01 16:17:02 ----D---- C:\Program Files\Common Files\Windows Live
2009-02-27 03:01:15 ----A---- C:\Windows\system32\msshooks.dll
2009-02-27 03:01:14 ----A---- C:\Windows\system32\msscb.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\thawbrkr.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\SearchFilterHost.exe
2009-02-27 03:01:08 ----A---- C:\Windows\system32\propsys.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\propdefs.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\msstrc.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\mssprxy.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\mssitlb.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\msshsq.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\korwbrkr.dll
2009-02-27 03:01:07 ----A---- C:\Windows\system32\wsepno.dll
2009-02-27 03:01:07 ----A---- C:\Windows\system32\srchadmin.dll
2009-02-27 03:01:07 ----A---- C:\Windows\system32\rtffilt.dll
2009-02-27 03:01:07 ----A---- C:\Windows\system32\offfilt.dll
2009-02-27 03:01:07 ----A---- C:\Windows\system32\mimefilt.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\xmlfilter.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\tquery.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2009-02-27 03:01:06 ----A---- C:\Windows\system32\SearchIndexer.exe
2009-02-27 03:01:06 ----A---- C:\Windows\system32\nlhtml.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\mssrch.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\msscntrs.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\chtbrkr.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\chsbrkr.dll
2009-02-27 03:01:05 ----A---- C:\Windows\system32\mssvp.dll
2009-02-27 03:01:05 ----A---- C:\Windows\system32\mssphtb.dll
2009-02-27 03:01:05 ----A---- C:\Windows\system32\mssph.dll
2009-02-26 12:02:06 ----D---- C:\Users\Gnawy\AppData\Roaming\WinRAR
2009-02-26 12:01:38 ----D---- C:\Program Files\WinRAR
2009-02-26 11:08:24 ----D---- C:\Users\Gnawy\AppData\Roaming\DivX
2009-02-26 09:36:10 ----A---- C:\Windows\system32\rpcrt4.dll
2009-02-26 09:36:09 ----A---- C:\Windows\system32\pacerprf.dll
2009-02-26 09:35:37 ----A---- C:\Windows\system32\wersvc.dll
2009-02-26 09:35:37 ----A---- C:\Windows\system32\Faultrep.dll
2009-02-26 09:35:22 ----A---- C:\Windows\system32\emdmgmt.dll
2009-02-26 09:35:22 ----A---- C:\Windows\system32\dataclen.dll
2009-02-26 09:35:21 ----A---- C:\Windows\system32\cdd.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\wshext.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\wscript.exe
2009-02-26 09:35:17 ----A---- C:\Windows\system32\vbscript.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\scrrun.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\scrobj.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\jscript.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\cscript.exe
2009-02-26 09:28:25 ----D---- C:\Program Files\Common Files\PX Storage Engine
2009-02-26 09:27:55 ----D---- C:\Program Files\DivX
2009-02-26 08:13:54 ----D---- C:\Program Files\Common Files\Adobe AIR
2009-02-26 08:11:32 ----D---- C:\Program Files\Common Files\Adobe
2009-02-26 08:11:32 ----D---- C:\Program Files\Adobe
2009-02-26 08:10:44 ----SHD---- C:\Config.Msi
2009-02-26 08:06:56 ----D---- C:\ProgramData\NOS
2009-02-26 08:06:56 ----D---- C:\Program Files\NOS
2009-02-25 21:09:12 ----D---- C:\PerfLogs
2009-02-23 00:27:25 ----A---- C:\Windows\system32\SLsvc.exe
2009-02-23 00:27:25 ----A---- C:\Windows\system32\onex.dll
2009-02-23 00:27:10 ----A---- C:\Windows\system32\PSHED.DLL
2009-02-23 00:27:08 ----A---- C:\Windows\system32\imagesp1.dll
2009-02-23 00:27:05 ----A---- C:\Windows\system32\pidgenx.dll
2009-02-23 00:27:05 ----A---- C:\Windows\system32\dfsr.exe
2009-02-23 00:27:04 ----A---- C:\Windows\system32\sstpsvc.dll
2009-02-23 00:27:04 ----A---- C:\Windows\system32\mstscax.dll
2009-02-23 00:27:02 ----A---- C:\Windows\system32\WsmSvc.dll
2009-02-23 00:27:02 ----A---- C:\Windows\system32\winrscmd.dll
2009-02-23 00:27:01 ----A---- C:\Windows\system32\sysmain.dll
2009-02-23 00:27:00 ----A---- C:\Windows\system32\vssapi.dll
2009-02-23 00:27:00 ----A---- C:\Windows\system32\RMActivate.exe
2009-02-23 00:26:59 ----A---- C:\Windows\system32\VSSVC.exe
2009-02-23 00:26:58 ----A---- C:\Windows\system32\secproc.dll
2009-02-23 00:26:58 ----A---- C:\Windows\system32\RMActivate_isv.exe
2009-02-23 00:26:57 ----A---- C:\Windows\system32\iesetup.dll
2009-02-23 00:26:54 ----A---- C:\Windows\system32\secproc_isv.dll
2009-02-23 00:26:52 ----A---- C:\Windows\system32\drmv2clt.dll
2009-02-23 00:26:50 ----A---- C:\Windows\system32\xpssvcs.dll
2009-02-23 00:26:50 ----A---- C:\Windows\system32\blackbox.dll
2009-02-23 00:26:49 ----A---- C:\Windows\system32\RacEngn.dll
2009-02-23 00:26:48 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2009-02-23 00:26:48 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2009-02-23 00:26:48 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2009-02-23 00:26:47 ----A---- C:\Windows\system32\spwizimg.dll
2009-02-23 00:26:47 ----A---- C:\Windows\system32\rdpencom.dll
2009-02-23 00:26:46 ----A---- C:\Windows\system32\lpremove.exe
2009-02-23 00:26:46 ----A---- C:\Windows\bfsvc.exe
2009-02-23 00:26:45 ----A---- C:\Windows\system32\ntdll.dll
2009-02-23 00:26:45 ----A---- C:\Windows\system32\msjet40.dll
2009-02-23 00:26:45 ----A---- C:\Windows\system32\lsasrv.dll
2009-02-23 00:26:44 ----A---- C:\Windows\system32\qmgr.dll
2009-02-23 00:26:44 ----A---- C:\Windows\system32\localspl.dll
2009-02-23 00:26:43 ----A---- C:\Windows\system32\wevtsvc.dll
2009-02-23 00:26:43 ----A---- C:\Windows\system32\IKEEXT.DLL
2009-02-23 00:26:42 ----A---- C:\Windows\system32\wcncsvc.dll
2009-02-23 00:26:42 ----A---- C:\Windows\system32\TsWpfWrp.exe
2009-02-23 00:26:42 ----A---- C:\Windows\system32\recdisc.exe
2009-02-23 00:26:42 ----A---- C:\Windows\system32\kernel32.dll
2009-02-23 00:26:41 ----A---- C:\Windows\system32\vds.exe
2009-02-23 00:26:41 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
2009-02-23 00:26:38 ----A---- C:\Windows\system32\wcnwiz.dll
2009-02-23 00:26:38 ----A---- C:\Windows\system32\SMBHelperClass.dll
2009-02-23 00:26:38 ----A---- C:\Windows\system32\msvbvm60.dll
2009-02-23 00:26:38 ----A---- C:\Windows\system32\mstsc.exe
2009-02-23 00:26:37 ----A---- C:\Windows\system32\msdtctm.dll
2009-02-23 00:26:36 ----A---- C:\Windows\system32\termsrv.dll
2009-02-23 00:26:36 ----A---- C:\Windows\system32\advapi32.dll
2009-02-23 00:26:35 ----A---- C:\Windows\system32\kerberos.dll
2009-02-23 00:26:35 ----A---- C:\Windows\system32\IMJP10K.DLL
2009-02-23 00:26:34 ----A---- C:\Windows\system32\MSMPEG2ADEC.DLL
2009-02-23 00:26:34 ----A---- C:\Windows\system32\mmcndmgr.dll
2009-02-23 00:26:34 ----A---- C:\Windows\system32\CertEnroll.dll
2009-02-23 00:26:33 ----A---- C:\Windows\system32\xolehlp.dll
2009-02-23 00:26:33 ----A---- C:\Windows\system32\Query.dll
2009-02-23 00:26:33 ----A---- C:\Windows\system32\msdtcprx.dll
2009-02-23 00:26:33 ----A---- C:\Windows\system32\MPSSVC.dll
2009-02-23 00:26:32 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2009-02-23 00:26:32 ----A---- C:\Windows\system32\ole32.dll
2009-02-23 00:26:32 ----A---- C:\Windows\system32\netlogon.dll
2009-02-23 00:26:31 ----A---- C:\Windows\system32\msvcrt.dll
2009-02-23 00:26:30 ----A---- C:\Windows\system32\SSShim.dll
2009-02-23 00:26:30 ----A---- C:\Windows\system32\nlmgp.dll
2009-02-23 00:26:30 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2009-02-23 00:26:30 ----A---- C:\Windows\system32\DfsShlEx.dll
2009-02-23 00:26:29 ----A---- C:\Windows\system32\shlwapi.dll
2009-02-23 00:26:29 ----A---- C:\Windows\system32\sdclt.exe
2009-02-23 00:26:29 ----A---- C:\Windows\system32\schedsvc.dll
2009-02-23 00:26:29 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2009-02-23 00:26:29 ----A---- C:\Windows\system32\milcore.dll
2009-02-23 00:26:29 ----A---- C:\Windows\system32\IasMigPlugin.dll
2009-02-23 00:26:28 ----A---- C:\Windows\system32\wer.dll
2009-02-23 00:26:28 ----A---- C:\Windows\system32\vdsdyn.dll
2009-02-23 00:26:28 ----A---- C:\Windows\system32\user32.dll
2009-02-23 00:26:28 ----A---- C:\Windows\system32\clusapi.dll
2009-02-23 00:26:27 ----A---- C:\Windows\system32\WSDApi.dll
2009-02-23 00:26:27 ----A---- C:\Windows\system32\QAGENTRT.DLL
2009-02-23 00:26:27 ----A---- C:\Windows\system32\diagperf.dll
2009-02-23 00:26:27 ----A---- C:\Windows\system32\d3d9.dll
2009-02-23 00:26:26 ----A---- C:\Windows\system32\winrsmgr.dll
2009-02-23 00:26:26 ----A---- C:\Windows\system32\mmc.exe
2009-02-23 00:26:25 ----A---- C:\Windows\system32\mtxclu.dll
2009-02-23 00:26:24 ----A---- C:\Windows\system32\vdsbas.dll
2009-02-23 00:26:24 ----A---- C:\Windows\system32\swprv.dll
2009-02-23 00:26:24 ----A---- C:\Windows\system32\SLC.dll
2009-02-23 00:26:23 ----A---- C:\Windows\system32\msi.dll
2009-02-23 00:26:23 ----A---- C:\Windows\system32\comctl32.dll
2009-02-23 00:26:22 ----A---- C:\Windows\system32\MSVidCtl.dll
2009-02-23 00:26:22 ----A---- C:\Windows\system32\msdtckrm.dll
2009-02-23 00:26:22 ----A---- C:\Windows\system32\gpsvc.dll
2009-02-23 00:26:21 ----A---- C:\Windows\system32\XPSSHHDR.dll
2009-02-23 00:26:21 ----A---- C:\Windows\system32\sbe.dll
2009-02-23 00:26:21 ----A---- C:\Windows\system32\samsrv.dll
2009-02-23 00:26:21 ----A---- C:\Windows\system32\mfc42u.dll
2009-02-23 00:26:21 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2009-02-23 00:26:20 ----A---- C:\Windows\system32\wecutil.exe
2009-02-23 00:26:20 ----A---- C:\Windows\system32\usp10.dll
2009-02-23 00:26:20 ----A---- C:\Windows\system32\sdengin2.dll
2009-02-23 00:26:20 ----A---- C:\Windows\system32\esent.dll
2009-02-23 00:26:19 ----A---- C:\Windows\system32\mfc42.dll
2009-02-23 00:26:19 ----A---- C:\Windows\system32\gacinstall.dll
2009-02-23 00:26:19 ----A---- C:\Windows\system32\cmipnpinstall.dll
2009-02-23 00:26:19 ----A---- C:\Windows\system32\cmicryptinstall.dll
2009-02-23 00:26:18 ----A---- C:\Windows\system32\crypt32.dll
2009-02-23 00:26:18 ----A---- C:\Windows\system32\comsvcs.dll
2009-02-23 00:26:17 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2009-02-23 00:26:17 ----A---- C:\Windows\system32\mswsock.dll
2009-02-23 00:26:17 ----A---- C:\Windows\system32\certutil.exe
2009-02-23 00:26:16 ----A---- C:\Windows\system32\wmdrmsdk.dll
2009-02-23 00:26:16 ----A---- C:\Windows\system32\oleaut32.dll
2009-02-23 00:26:16 ----A---- C:\Windows\system32\FirewallAPI.dll
2009-02-23 00:26:15 ----A---- C:\Windows\system32\wecsvc.dll
2009-02-23 00:26:15 ----A---- C:\Windows\system32\sqlceqp30.dll
2009-02-23 00:26:15 ----A---- C:\Windows\system32\setupapi.dll
2009-02-23 00:26:15 ----A---- C:\Windows\system32\lsm.exe
2009-02-23 00:26:15 ----A---- C:\Windows\system32\bcrypt.dll
2009-02-23 00:26:14 ----A---- C:\Windows\system32\sdohlp.dll
2009-02-23 00:26:14 ----A---- C:\Windows\system32\msv1_0.dll
2009-02-23 00:26:14 ----A---- C:\Windows\system32\iphlpsvc.dll
2009-02-23 00:26:14 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2009-02-23 00:26:13 ----A---- C:\Windows\system32\thumbcache.dll
2009-02-23 00:26:13 ----A---- C:\Windows\system32\p2psvc.dll
2009-02-23 00:26:13 ----A---- C:\Windows\system32\eapp3hst.dll
2009-02-23 00:26:12 ----A---- C:\Windows\system32\wmpmde.dll
2009-02-23 00:26:12 ----A---- C:\Windows\system32\riched20.dll
2009-02-23 00:26:12 ----A---- C:\Windows\system32\mcmde.dll
2009-02-23 00:26:12 ----A---- C:\Windows\system32\autofmt.exe
2009-02-23 00:26:11 ----A---- C:\Windows\system32\WinSAT.exe
2009-02-23 00:26:11 ----A---- C:\Windows\system32\vdsutil.dll
2009-02-23 00:26:11 ----A---- C:\Windows\system32\imapi2fs.dll
2009-02-23 00:26:11 ----A---- C:\Windows\system32\d3d10_1.dll
2009-02-23 00:26:11 ----A---- C:\Windows\system32\autoconv.exe
2009-02-23 00:26:11 ----A---- C:\Windows\system32\autochk.exe
2009-02-23 00:26:11 ----A---- C:\Windows\system32\authui.dll
2009-02-23 00:26:11 ----A---- C:\Windows\system32\authfwcfg.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\wevtapi.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\dmvdsitf.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\d3d10_1core.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\comuid.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\comdlg32.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\browseui.dll
2009-02-23 00:26:09 ----A---- C:\Windows\system32\WSDMon.dll
2009-02-23 00:26:09 ----A---- C:\Windows\system32\eapphost.dll
2009-02-23 00:26:08 ----A---- C:\Windows\system32\wevtfwd.dll
2009-02-23 00:26:08 ----A---- C:\Windows\system32\uexfat.dll
2009-02-23 00:26:08 ----A---- C:\Windows\system32\rasmans.dll
2009-02-23 00:26:07 ----A---- C:\Windows\system32\untfs.dll
2009-02-23 00:26:07 ----A---- C:\Windows\system32\sqlcese30.dll
2009-02-23 00:26:07 ----A---- C:\Windows\system32\iassam.dll
2009-02-23 00:26:07 ----A---- C:\Windows\system32\eappcfg.dll
2009-02-23 00:26:07 ----A---- C:\Windows\system32\DfrgNtfs.exe
2009-02-23 00:26:06 ----A---- C:\Windows\system32\wlansvc.dll
2009-02-23 00:26:06 ----A---- C:\Windows\system32\whealogr.dll
2009-02-23 00:26:06 ----A---- C:\Windows\system32\pcaui.dll
2009-02-23 00:26:05 ----A---- C:\Windows\system32\dot3svc.dll
2009-02-23 00:26:03 ----A---- C:\Windows\system32\rdpwsx.dll
2009-02-23 00:26:03 ----A---- C:\Windows\system32\mssha.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\zipfldr.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\WsmAuto.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\winhttp.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\msdrm.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\evr.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\dfrgui.exe
2009-02-23 00:26:01 ----A---- C:\Windows\system32\rpcss.dll
2009-02-23 00:26:01 ----A---- C:\Windows\system32\rasppp.dll
2009-02-23 00:26:01 ----A---- C:\Windows\system32\nlasvc.dll
2009-02-23 00:26:01 ----A---- C:\Windows\system32\ncrypt.dll
2009-02-23 00:26:01 ----A---- C:\Windows\system32\BFE.DLL
2009-02-23 00:26:00 ----A---- C:\Windows\system32\wmdrmdev.dll
2009-02-23 00:26:00 ----A---- C:\Windows\system32\msrepl40.dll
2009-02-23 00:26:00 ----A---- C:\Windows\system32\ddraw.dll
2009-02-23 00:26:00 ----A---- C:\Windows\system32\audiosrv.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\WsmWmiPl.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\WebClnt.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\themecpl.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\rastls.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\printui.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\objsel.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2009-02-23 00:25:58 ----A---- C:\Windows\system32\QAGENT.DLL
2009-02-23 00:25:58 ----A---- C:\Windows\system32\iasnap.dll
2009-02-23 00:25:58 ----A---- C:\Windows\system32\dbghelp.dll
2009-02-23 00:25:57 ----A---- C:\Windows\system32\w32time.dll
2009-02-23 00:25:57 ----A---- C:\Windows\system32\sqlsrv32.dll
2009-02-23 00:25:57 ----A---- C:\Windows\system32\icm32.dll
2009-02-23 00:25:56 ----A---- C:\Windows\system32\wmdrmnet.dll
2009-02-23 00:25:56 ----A---- C:\Windows\system32\WerFaultSecure.exe
2009-02-23 00:25:56 ----A---- C:\Windows\system32\ncryptui.dll
2009-02-23 00:25:56 ----A---- C:\Windows\system32\iprtrmgr.dll
2009-02-23 00:25:56 ----A---- C:\Windows\system32\azroles.dll
2009-02-23 00:25:55 ----A---- C:\Windows\system32\spoolss.dll
2009-02-23 00:25:55 ----A---- C:\Windows\system32\msctf.dll
2009-02-23 00:25:54 ----A---- C:\Windows\system32\wlangpui.dll
2009-02-23 00:25:54 ----A---- C:\Windows\system32\winsrv.dll
2009-02-23 00:25:54 ----A---- C:\Windows\system32\taskschd.dll
2009-02-23 00:25:54 ----A---- C:\Windows\system32\mstlsapi.dll
2009-02-23 00:25:54 ----A---- C:\Windows\system32\bcdedit.exe
2009-02-23 00:25:54 ----A---- C:\Windows\system32\basecsp.dll
2009-02-23 00:25:53 ----A---- C:\Windows\system32\winsta.dll
2009-02-23 00:25:53 ----A---- C:\Windows\system32\scksp.dll
2009-02-23 00:25:53 ----A---- C:\Windows\system32\netprofm.dll
2009-02-23 00:25:53 ----A---- C:\Windows\system32\dbgeng.dll
2009-02-23 00:25:53 ----A---- C:\Windows\system32\AudioEng.dll
2009-02-23 00:25:52 ----A---- C:\Windows\system32\rsaenh.dll
2009-02-23 00:25:52 ----A---- C:\Windows\system32\netcfgx.dll
2009-02-23 00:25:51 ----A---- C:\Windows\system32\winlogon.exe
2009-02-23 00:25:51 ----A---- C:\Windows\system32\wercon.exe
2009-02-23 00:25:51 ----A---- C:\Windows\system32\taskcomp.dll
2009-02-23 00:25:51 ----A---- C:\Windows\system32\lpksetup.exe
2009-02-23 00:25:51 ----A---- C:\Windows\system32\cdosys.dll
2009-02-23 00:25:50 ----A---- C:\Windows\system32\wlansec.dll
2009-02-23 00:25:50 ----A---- C:\Windows\system32\msdtcuiu.dll
2009-02-23 00:25:50 ----A---- C:\Windows\system32\apds.dll
2009-02-23 00:25:49 ----A---- C:\Windows\system32\mprddm.dll
2009-02-23 00:25:49 ----A---- C:\Windows\system32\iasrad.dll
2009-02-23 00:25:49 ----A---- C:\Windows\system32\eapsvc.dll
2009-02-23 00:25:49 ----A---- C:\Windows\system32\certcli.dll
2009-02-23 00:25:49 ----A---- C:\Windows\system32\AUDIOKSE.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\uDWM.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\tsgqec.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\shdocvw.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\certmgr.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\bcdsrv.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\aaclient.dll
2009-02-23 00:25:47 ----A---- C:\Windows\system32\Wldap32.dll
2009-02-23 00:25:47 ----A---- C:\Windows\system32\msidcrl30.dll
2009-02-23 00:25:47 ----A---- C:\Windows\system32\dnsapi.dll
2009-02-23 00:25:46 ----A---- C:\Windows\system32\WMVDECOD.DLL
2009-02-23 00:25:46 ----A---- C:\Windows\system32\umpnpmgr.dll
2009-02-23 00:25:46 ----A---- C:\Windows\system32\pla.dll
2009-02-23 00:25:45 ----A---- C:\Windows\system32\netshell.dll
2009-02-23 00:25:45 ----A---- C:\Windows\system32\dxgi.dll
2009-02-23 00:25:45 ----A---- C:\Windows\system32\dot3gpui.dll
2009-02-23 00:25:44 ----A---- C:\Windows\system32\wmicmiplugin.dll
2009-02-23 00:25:44 ----A---- C:\Windows\system32\ntprint.dll
2009-02-23 00:25:43 ----A---- C:\Windows\system32\shsvcs.dll
2009-02-23 00:25:43 ----A---- C:\Windows\system32\MMDevAPI.dll
2009-02-23 00:25:43 ----A---- C:\Windows\system32\cryptnet.dll
2009-02-23 00:25:43 ----A---- C:\Windows\system32\comsnap.dll
2009-02-23 00:25:42 ----A---- C:\Windows\system32\winmm.dll
2009-02-23 00:25:42 ----A---- C:\Windows\system32\services.exe
2009-02-23 00:25:41 ----A---- C:\Windows\system32\wscsvc.dll
2009-02-23 00:25:41 ----A---- C:\Windows\system32\wscisvif.dll
2009-02-23 00:25:41 ----A---- C:\Windows\system32\synceng.dll
2009-02-23 00:25:41 ----A---- C:\Windows\system32\pnidui.dll
2009-02-23 00:25:41 ----A---- C:\Windows\system32\cmifw.dll
2009-02-23 00:25:40 ----A---- C:\Windows\system32\taskeng.exe
2009-02-23 00:25:40 ----A---- C:\Windows\system32\msjtes40.dll
2009-02-23 00:25:40 ----A---- C:\Windows\system32\msconfig.exe
2009-02-23 00:25:40 ----A---- C:\Windows\system32\iassdo.dll
2009-02-23 00:25:40 ----A---- C:\Windows\system32\cipher.exe
2009-02-23 00:25:39 ----A---- C:\Windows\system32\WMVSDECD.DLL
2009-02-23 00:25:35 ----A---- C:\Windows\system32\tdh.dll
2009-02-23 00:25:35 ----A---- C:\Windows\system32\rasapi32.dll
2009-02-23 00:25:35 ----A---- C:\Windows\system32\imapi2.dll
2009-02-23 00:25:34 ----A---- C:\Windows\system32\uxtheme.dll
2009-02-23 00:25:34 ----A---- C:\Windows\system32\SessEnv.dll
2009-02-23 00:25:34 ----A---- C:\Windows\system32\dot3api.dll
2009-02-23 00:25:34 ----A---- C:\Windows\system32\dmdskmgr.dll
2009-02-23 00:25:34 ----A---- C:\Windows\system32\cmd.exe
2009-02-23 00:25:34 ----A---- C:\Windows\system32\cbsra.exe
2009-02-23 00:25:34 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2009-02-23 00:25:33 ----A---- C:\Windows\system32\wkssvc.dll
2009-02-23 00:25:33 ----A---- C:\Windows\system32\wevtutil.exe
2009-02-23 00:25:33 ----A---- C:\Windows\system32\srvsvc.dll
2009-02-23 00:25:33 ----A---- C:\Windows\system32\qdvd.dll
2009-02-23 00:25:33 ----A---- C:\Windows\system32\msscp.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\WUDFx.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\wlanmsm.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\wlancfg.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\mshtmled.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\msdtcVSp1res.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\loadperf.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\diskpart.exe
2009-02-23 00:25:32 ----A---- C:\Windows\system32\comres.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\wlanapi.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\rpchttp.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\rdpdd.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\localsec.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\hnetcfg.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\fontext.dll
2009-02-23 00:25:30 ----A---- C:\Windows\system32\wsqmcons.exe
2009-02-23 00:25:30 ----A---- C:\Windows\system32\WMADMOD.DLL
2009-02-23 00:25:30 ----A---- C:\Windows\system32\wlanpref.dll
2009-02-23 00:25:30 ----A---- C:\Windows\system32\WinSATAPI.dll
2009-02-23 00:25:30 ----A---- C:\Windows\system32\NAPMONTR.DLL
2009-02-23 00:25:30 ----A---- C:\Windows\system32\dsound.dll
2009-02-23 00:25:29 ----A---- C:\Windows\system32\RDPENCDD.dll
2009-02-23 00:25:29 ----A---- C:\Windows\system32\profprov.dll
2009-02-23 00:25:29 ----A---- C:\Windows\system32\filemgmt.dll
2009-02-23 00:25:29 ----A---- C:\Windows\system32\avifil32.dll
2009-02-23 00:25:28 ----A---- C:\Windows\system32\wsecedit.dll
2009-02-23 00:25:28 ----A---- C:\Windows\system32\tracerpt.exe
2009-02-23 00:25:28 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2009-02-23 00:25:28 ----A---- C:\Windows\system32\SLCommDlg.dll
2009-02-23 00:25:28 ----A---- C:\Windows\system32\MuiUnattend.exe
2009-02-23 00:25:28 ----A---- C:\Windows\system32\dnsrslvr.dll
2009-02-23 00:25:28 ----A---- C:\Windows\system32\dhcpcsvc.dll
2009-02-23 00:25:27 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2009-02-23 00:25:27 ----A---- C:\Windows\system32\P2PGraph.dll
2009-02-23 00:25:27 ----A---- C:\Windows\system32\dwmredir.dll
2009-02-23 00:25:27 ----A---- C:\Windows\system32\dwm.exe
2009-02-23 00:25:27 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2009-02-23 00:25:27 ----A---- C:\Windows\system32\apphelp.dll
2009-02-23 00:25:26 ----A---- C:\Windows\system32\wininit.exe
2009-02-23 00:25:26 ----A---- C:\Windows\system32\spp.dll
2009-02-23 00:25:26 ----A---- C:\Windows\system32\rasdlg.dll
2009-02-23 00:25:26 ----A---- C:\Windows\system32\QSHVHOST.DLL
2009-02-23 00:25:26 ----A---- C:\Windows\system32\iassvcs.dll
2009-02-23 00:25:26 ----A---- C:\Windows\system32\gpresult.exe
2009-02-23 00:25:26 ----A---- C:\Windows\system32\azroleui.dll
2009-02-23 00:25:25 ----A---- C:\Windows\system32\mcbuilder.exe
2009-02-23 00:25:25 ----A---- C:\Windows\system32\iashost.exe
2009-02-23 00:25:25 ----A---- C:\Windows\HelpPane.exe
2009-02-23 00:25:24 ----A---- C:\Windows\system32\wecapi.dll
2009-02-23 00:25:24 ----A---- C:\Windows\system32\srrstr.dll
2009-02-23 00:25:24 ----A---- C:\Windows\system32\spwizeng.dll
2009-02-23 00:25:24 ----A---- C:\Windows\system32\SLUI.exe
2009-02-23 00:25:24 ----A---- C:\Windows\system32\rasmontr.dll
2009-02-23 00:25:24 ----A---- C:\Windows\system32\lltdsvc.dll
2009-02-23 00:25:23 ----A---- C:\Windows\system32\unbcl.dll
2009-02-23 00:25:23 ----A---- C:\Windows\system32\tcpmon.dll
2009-02-23 00:25:23 ----A---- C:\Windows\system32\shrink.dll
2009-02-23 00:25:23 ----A---- C:\Windows\system32\msra.exe
2009-02-23 00:25:23 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2009-02-23 00:25:23 ----A---- C:\Windows\system32\gpedit.dll
2009-02-23 00:25:23 ----A---- C:\Windows\system32\brcpl.dll
2009-02-23 00:25:22 ----A---- C:\Windows\system32\WMPEncEn.dll
2009-02-23 00:25:22 ----A---- C:\Windows\system32\oleacc.dll
2009-02-23 00:25:22 ----A---- C:\Windows\system32\msdri.dll
2009-02-23 00:25:22 ----A---- C:\Windows\system32\iashlpr.dll
2009-02-23 00:25:21 ----A---- C:\Windows\system32\regsvc.dll
2009-02-23 00:25:21 ----A---- C:\Windows\system32\raschap.dll
2009-02-23 00:25:21 ----A---- C:\Windows\system32\framedynos.dll
2009-02-23 00:25:20 ----A---- C:\Windows\system32\vsstrace.dll
2009-02-23 00:25:20 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2009-02-23 00:25:20 ----A---- C:\Windows\system32\ntvdm.exe
2009-02-23 00:25:20 ----A---- C:\Windows\system32\ipsmsnap.dll
2009-02-23 00:25:20 ----A---- C:\Windows\system32\fdWSD.dll
2009-02-23 00:25:20 ----A---- C:\Windows\system32\advpack.dll
2009-02-23 00:25:19 ----A---- C:\Windows\system32\wpdshext.dll
2009-02-23 00:25:19 ----A---- C:\Windows\system32\wdc.dll
2009-02-23 00:25:19 ----A---- C:\Windows\system32\ntlanman.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\Storprop.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\NetProjW.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\netman.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\l2nacp.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\iedkcs32.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\ieapfltr.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\framedyn.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\dssenh.dll
2009-02-23 00:25:17 ----A---- C:\Windows\system32\WlanMM.dll
2009-02-23 00:25:17 ----A---- C:\Windows\system32\tcpipcfg.dll
2009-02-23 00:25:17 ----A---- C:\Windows\system32\sxs.dll
2009-02-23 00:25:17 ----A---- C:\Windows\system32\profsvc.dll
2009-02-23 00:25:17 ----A---- C:\Windows\system32\KMSVC.DLL
2009-02-23 00:25:17 ----A---- C:\Windows\system32\certreq.exe
2009-02-23 00:25:17 ----A---- C:\Windows\system32\adsnt.dll
2009-02-23 00:25:16 ----A---- C:\Windows\system32\WsmProv.dll
2009-02-23 00:25:16 ----A---- C:\Windows\system32\wlanhlp.dll
2009-02-23 00:25:16 ----A---- C:\Windows\system32\WLanConn.dll
2009-02-23 00:25:16 ----A---- C:\Windows\system32\IPBusEnum.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\wusa.exe
2009-02-23 00:25:15 ----A---- C:\Windows\system32\WUDFHost.exe
2009-02-23 00:25:15 ----A---- C:\Windows\system32\WerFault.exe
2009-02-23 00:25:15 ----A---- C:\Windows\system32\VAN.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\userenv.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\umb.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\ncsi.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\ie4uinit.exe
2009-02-23 00:25:15 ----A---- C:\Windows\system32\fundisc.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\catsrvut.dll
2009-02-23 00:25:14 ----A---- C:\Windows\system32\puiobj.dll
2009-02-23 00:25:14 ----A---- C:\Windows\system32\netid.dll
2009-02-23 00:25:14 ----A---- C:\Windows\system32\dps.dll
2009-02-23 00:25:14 ----A---- C:\Windows\system32\cryptui.dll
2009-02-23 00:25:13 ----A---- C:\Windows\system32\photowiz.dll
2009-02-23 00:25:13 ----A---- C:\Windows\system32\netcenter.dll
2009-02-23 00:25:13 ----A---- C:\Windows\system32\MdSched.exe
2009-02-23 00:25:13 ----A---- C:\Windows\system32\InkEd.dll
2009-02-23 00:25:12 ----A---- C:\Windows\system32\WinSCard.dll
2009-02-23 00:25:12 ----A---- C:\Windows\system32\spbcd.dll
2009-02-23 00:25:12 ----A---- C:\Windows\system32\ipsecsnp.dll
2009-02-23 00:25:11 ----A---- C:\Windows\system32\ws2_32.dll
2009-02-23 00:25:11 ----A---- C:\Windows\system32\winrs.exe
2009-02-23 00:25:11 ----A---- C:\Windows\system32\secur32.dll
2009-02-23 00:25:11 ----A---- C:\Windows\system32\odbcjt32.dll
2009-02-23 00:25:11 ----A---- C:\Windows\system32\ntdsapi.dll
2009-02-23 00:25:11 ----A---- C:\Windows\system32\msinfo32.exe
2009-02-23 00:25:10 ----A---- C:\Windows\system32\prnntfy.dll
2009-02-23 00:25:10 ----A---- C:\Windows\system32\NAPSTAT.EXE
2009-02-23 00:25:10 ----A---- C:\Windows\system32\mblctr.exe
2009-02-23 00:25:10 ----A---- C:\Windows\system32\cryptsvc.dll
2009-02-23 00:25:09 ----A---- C:\Windows\system32\schtasks.exe
2009-02-23 00:25:09 ----A---- C:\Windows\system32\RelMon.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\pdh.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\netdiagfx.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\iasacct.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\dmdlgs.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\dhcpsapi.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\catsrv.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\activeds.dll
2009-02-23 00:25:07 ----A---- C:\Windows\system32\wvc.dll
2009-02-23 00:25:07 ----A---- C:\Windows\system32\winrm.vbs
2009-02-23 00:25:07 ----A---- C:\Windows\system32\TSpkg.dll
2009-02-23 00:25:07 ----A---- C:\Windows\system32\qwave.dll
2009-02-23 00:25:07 ----A---- C:\Windows\system32\FirewallControlPanel.exe
2009-02-23 00:25:07 ----A---- C:\Windows\system32\fdWCN.dll
2009-02-23 00:25:07 ----A---- C:\Windows\system32\dfrgfat.exe
2009-02-23 00:25:06 ----A---- C:\Windows\system32\rastapi.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\netcorehc.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\NAPHLPR.DLL
2009-02-23 00:25:06 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2009-02-23 00:25:06 ----A---- C:\Windows\system32\msacm32.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\ifmon.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\dot3msm.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\dot3cfg.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\AudioSes.dll
2009-02-23 00:25:05 ----A---- C:\Windows\system32\wow32.dll
2009-02-23 00:25:05 ----A---- C:\Windows\system32\shsetup.dll
2009-02-23 00:25:05 ----A---- C:\Windows\system32\adsldp.dll
2009-02-23 00:25:04 ----A---- C:\Windows\system32\els.dll
2009-02-23 00:25:03 ----A---- C:\Windows\system32\wscntfy.dll
2009-02-23 00:25:03 ----A---- C:\Windows\system32\QUTIL.DLL
2009-02-23 00:25:03 ----A---- C:\Windows\system32\ntshrui.dll
2009-02-23 00:25:03 ----A---- C:\Windows\system32\msdt.dll
2009-02-23 00:25:03 ----A---- C:\Windows\system32\iasdatastore.dll
2009-02-23 00:25:03 ----A---- C:\Windows\system32\clbcatq.dll
2009-02-23 00:25:02 ----A---- C:\Windows\system32\stobject.dll
2009-02-23 00:25:02 ----A---- C:\Windows\system32\sdrsvc.dll
2009-02-23 00:25:02 ----A---- C:\Windows\system32\net1.exe
2009-02-23 00:25:02 ----A---- C:\Windows\system32\ipnathlp.dll
2009-02-23 00:25:02 ----A---- C:\Windows\system32\iasrecst.dll
2009-02-23 00:25:02 ----A---- C:\Windows\system32\fdSSDP.dll
2009-02-23 00:25:01 ----A---- C:\Windows\system32\wlgpclnt.dll
2009-02-23 00:25:01 ----A---- C:\Windows\system32\wlanui.dll
2009-02-23 00:25:01 ----A---- C:\Windows\system32\dsprop.dll
2009-02-23 00:25:01 ----A---- C:\Windows\system32\Defrag.exe
2009-02-23 00:25:01 ----A---- C:\Windows\system32\adsldpc.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\upnphost.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\systemcpl.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\smss.exe
2009-02-23 00:25:00 ----A---- C:\Windows\system32\rasman.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\nci.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\mprmsg.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\ActiveContentWizard.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\t2embed.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\rascfg.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\PresentationSettings.exe
2009-02-23 00:24:59 ----A---- C:\Windows\system32\P2P.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\oleprn.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\msftedit.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2009-02-23 00:24:59 ----A---- C:\Windows\system32\loghours.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\fde.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\CompatUI.dll
2009-02-23 00:24:58 ----A---- C:\Windows\system32\MigAutoPlay.exe
2009-02-23 00:24:58 ----A---- C:\Windows\system32\L2SecHC.dll
2009-02-23 00:24:58 ----A---- C:\Windows\system32\dxdiag.exe
2009-02-23 00:24:57 ----A---- C:\Windows\system32\Wpc.dll
2009-02-23 00:24:57 ----A---- C:\Windows\system32\wdigest.dll
2009-02-23 00:24:57 ----A---- C:\Windows\system32\DFDWiz.exe
2009-02-23 00:24:57 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2009-02-23 00:24:56 ----A---- C:\Windows\system32\setupcl.exe
2009-02-23 00:24:56 ----A---- C:\Windows\system32\rtm.dll
2009-02-23 00:24:56 ----A---- C:\Windows\system32\msutb.dll
2009-02-23 00:24:56 ----A---- C:\Windows\system32\mprdim.dll
2009-02-23 00:24:56 ----A---- C:\Windows\system32\gpapi.dll
2009-02-23 00:24:56 ----A---- C:\Windows\system32\devmgr.dll
2009-02-23 00:24:55 ----A---- C:\Windows\system32\wiaservc.dll
2009-02-23 00:24:55 ----A---- C:\Windows\system32\scansetting.dll
2009-02-23 00:24:55 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2009-02-23 00:24:54 ----A---- C:\Windows\system32\wdi.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\msihnd.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\kdusb.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\ifsutil.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\dimsroam.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\CertEnrollUI.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\actxprxy.dll
2009-02-23 00:24:53 ----A---- C:\Windows\system32\wscapi.dll
2009-02-23 00:24:53 ----A---- C:\Windows\system32\WinFXDocObj.exe
2009-02-23 00:24:53 ----A---- C:\Windows\system32\usbmon.dll
2009-02-23 00:24:53 ----A---- C:\Windows\system32\spoolsv.exe
2009-02-23 00:24:53 ----A---- C:\Windows\system32\mswmdm.dll
2009-02-23 00:24:53 ----A---- C:\Windows\system32\imagehlp.dll
2009-02-23 00:24:53 ----A---- C:\Windows\system32\BOOTVID.DLL
2009-02-23 00:24:53 ----A---- C:\Windows\system32\audiodg.exe
2009-02-23 00:24:52 ----A---- C:\Windows\system32\wlandlg.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\vssadmin.exe
2009-02-23 00:24:52 ----A---- C:\Windows\system32\uudf.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\SyncCenter.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\regapi.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\mycomput.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\msls31.dll
2009-02-23 00:24:51 ----A---- C:\Windows\system32\scecli.dll
2009-02-23 00:24:50 ----A---- C:\Windows\system32\SCardSvr.dll
2009-02-23 00:24:50 ----A---- C:\Windows\system32\newdev.dll
2009-02-23 00:24:50 ----A---- C:\Windows\system32\mstask.dll
2009-02-23 00:24:50 ----A---- C:\Windows\system32\mspaint.exe
2009-02-23 00:24:50 ----A---- C:\Windows\system32\kdcom.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\termmgr.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\sud.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\ssdpsrv.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\samlib.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\puiapi.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\duser.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\tapisrv.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\Robocopy.exe
2009-02-23 00:24:48 ----A---- C:\Windows\system32\mtxoci.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\input.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\inetpp.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\cic.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\AzSqlExt.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\adtschema.dll
2009-02-23 00:24:47 ----A---- C:\Windows\system32\wisptis.exe
2009-02-23 00:24:47 ----A---- C:\Windows\system32\SLUINotify.dll
2009-02-23 00:24:47 ----A---- C:\Windows\system32\iasads.dll
2009-02-23 00:24:47 ----A---- C:\Windows\system32\cscapi.dll
2009-02-23 00:24:46 ----A---- C:\Windows\system32\WUDFPlatform.dll
2009-02-23 00:24:46 ----A---- C:\Windows\system32\sdshext.dll
2009-02-23 00:24:46 ----A---- C:\Windows\system32\netiohlp.dll
2009-02-23 00:24:46 ----A---- C:\Windows\system32\authz.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\wpcsvc.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\webcheck.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\verifier.exe
2009-02-23 00:24:45 ----A---- C:\Windows\system32\themeui.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\msdtclog.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\msdt.exe
2009-02-23 00:24:45 ----A---- C:\Windows\system32\d3d8.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\cmdial32.dll
2009-02-23 00:24:44 ----A---- C:\Windows\system32\wintrust.dll
2009-02-23 00:24:44 ----A---- C:\Windows\system32\vdsldr.exe
2009-02-23 00:24:44 ----A---- C:\Windows\system32\slcinst.dll
2009-02-23 00:24:44 ----A---- C:\Windows\system32\oledlg.dll
2009-02-23 00:24:44 ----A---- C:\Windows\system32\dxtmsft.dll
2009-02-23 00:24:44 ----A---- C:\Windows\system32\clfsw32.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\wpccpl.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\WMPhoto.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\SnippingTool.exe
2009-02-23 00:24:43 ----A---- C:\Windows\system32\SndVol.exe
2009-02-23 00:24:43 ----A---- C:\Windows\system32\rasgcw.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\pnpsetup.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\ntmarta.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\mmcbase.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\mlang.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\icfupgd.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\icardie.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\wpd_ci.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\slmgr.vbs
2009-02-23 00:24:42 ----A---- C:\Windows\system32\rasqec.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\nslookup.exe
2009-02-23 00:24:42 ----A---- C:\Windows\system32\ncobjapi.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\msrd3x40.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\msaatext.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\mpr.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\diskraid.exe
2009-02-23 00:24:41 ----A---- C:\Windows\system32\wtsapi32.dll
2009-02-23 00:24:41 ----A---- C:\Windows\system32\unlodctr.exe
2009-02-23 00:24:41 ----A---- C:\Windows\system32\syssetup.dll
2009-02-23 00:24:41 ----A---- C:\Windows\system32\mscms.dll
2009-02-23 00:24:41 ----A---- C:\Windows\system32\lodctr.exe
2009-02-23 00:24:41 ----A---- C:\Windows\system32\extmgr.dll
2009-02-23 00:24:41 ----A---- C:\Windows\system32\accessibilitycpl.dll
2009-02-23 00:24:40 ----A---- C:\Windows\system32\ulib.dll
2009-02-23 00:24:40 ----A---- C:\Windows\system32\sethc.exe
2009-02-23 00:24:40 ----A---- C:\Windows\system32\pnpui.dll
2009-02-23 00:24:40 ----A---- C:\Windows\system32\iaspolcy.dll
2009-02-23 00:24:40 ----A---- C:\Windows\system32\fontsub.dll
2009-02-23 00:24:40 ----A---- C:\Windows\system32\dxdiagn.dll
2009-02-23 00:24:39 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2009-02-23 00:24:39 ----A---- C:\Windows\system32\Utilman.exe
2009-02-23 00:24:39 ----A---- C:\Windows\system32\trkwks.dll
2009-02-23 00:24:39 ----A---- C:\Windows\system32\scesrv.dll
2009-02-23 00:24:39 ----A---- C:\Windows\system32\oobefldr.dll
2009-02-23 00:24:39 ----A---- C:\Windows\system32\Mcx2Svc.dll
2009-02-23 00:24:39 ----A---- C:\Windows\system32\cabinet.dll
2009-02-23 00:24:38 ----A---- C:\Windows\system32\unattend.dll
2009-02-23 00:24:38 ----A---- C:\Windows\system32\ogldrv.dll
2009-02-23 00:24:38 ----A---- C:\Windows\system32\occache.dll
2009-02-23 00:24:38 ----A---- C:\Windows\system32\lnkstub.exe
2009-02-23 00:24:38 ----A---- C:\Windows\system32\cabview.dll
2009-02-23 00:24:37 ----A---- C:\Windows\system32\wpcao.dll
2009-02-23 00:24:37 ----A---- C:\Windows\system32\wermgr.exe
2009-02-23 00:24:37 ----A---- C:\Windows\system32\dfdts.dll
2009-02-23 00:24:37 ----A---- C:\Windows\system32\bthci.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\sdspres.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\p2pcollab.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\msnetobj.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\iepeers.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\eappgnui.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\basesrv.dll
2009-02-23 00:24:35 ----A---- C:\Windows\system32\ieaksie.dll
2009-02-23 00:24:35 ----A---- C:\Windows\system32\drvinst.exe
2009-02-23 00:24:35 ----A---- C:\Windows\system32\dispdiag.exe
2009-02-23 00:24:35 ----A---- C:\Windows\system32\DHCPQEC.DLL
2009-02-23 00:24:33 ----A---- C:\Windows\system32\mmcss.dll
2009-02-23 00:24:33 ----A---- C:\Windows\system32\dsquery.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\verifier.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\secproc_ssp.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\RstrtMgr.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\mprapi.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\efsadu.dll
2009-02-23 00:24:31 ----A---- C:\Windows\system32\WMVENCOD.DLL
2009-02-23 00:24:31 ----A---- C:\Windows\system32\wercplsupport.dll
2009-02-23 00:24:31 ----A---- C:\Windows\system32\qedit.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\WPDSp.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\setupugc.exe
2009-02-23 00:24:30 ----A---- C:\Windows\system32\networkmap.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\msoeacct.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\iscsiexe.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\icacls.exe
2009-02-23 00:24:30 ----A---- C:\Windows\system32\d3d10core.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\wiascanprofiles.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\wiaaut.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\usercpl.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2009-02-23 00:24:29 ----A---- C:\Windows\system32\pnrpnsp.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\pngfilt.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\p2pnetsh.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\msrdc.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\msdmo.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\consent.exe
2009-02-23 00:24:29 ----A---- C:\Windows\system32\conime.exe
2009-02-23 00:24:28 ----A---- C:\Windows\system32\xactsrv.dll
2009-02-23 00:24:28 ----A---- C:\Windows\system32\PNPXAssocPrx.dll
2009-02-23 00:24:28 ----A---- C:\Windows\system32\PNPXAssoc.dll
2009-02-23 00:24:28 ----A---- C:\Windows\system32\lsass.exe
2009-02-23 00:24:28 ----A---- C:\Windows\system32\autoplay.dll
2009-02-23 00:24:24 ----A---- C:\Windows\system32\systeminfo.exe
2009-02-23 00:24:24 ----A---- C:\Windows\system32\pcadm.dll
2009-02-23 00:24:24 ----A---- C:\Windows\system32\lpk.dll
2009-02-23 00:24:24 ----A---- C:\Windows\system32\findstr.exe
2009-02-23 00:24:24 ----A---- C:\Windows\system32\eappprxy.dll
2009-02-23 00:24:24 ----A---- C:\Windows\system32\drmmgrtn.dll
2009-02-23 00:24:24 ----A---- C:\Windows\system32\dpapimig.exe
2009-02-23 00:24:23 ----A---- C:\Windows\system32\xwizards.dll
2009-02-23 00:24:23 ----A---- C:\Windows\system32\resutils.dll
2009-02-23 00:24:23 ----A---- C:\Windows\system32\netcfg.exe
2009-02-23 00:24:23 ----A---- C:\Windows\system32\msrating.dll
20

info.txt logfile of random's system information tool 1.06 2009-03-01 20:37:47

======Uninstall list======

-->"C:\Program Files\InstallShield Installation Information\{A644254B-92F6-4970-8635-AB0775371E72}\setup.exe" --u:{A644254B-92F6-4970-8635-AB0775371E72}
-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{622E6F16-0904-49B6-BBE1-4CC836314CCF}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{697AFC77-F318-4CD4-BF16-F50F4C1072DA}\setup.exe" -l0x9
Acrobat.com-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.mauby 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
Acrobat.com-->MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07}
Adobe AIR-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F}
Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A90000000001}
ALPS Touch Pad Driver-->C:\Program Files\Apoint2K\Uninstap.exe ADDREMOVE
Apple Mobile Device Support-->MsiExec.exe /I{976C2B2A-CE59-4AB3-83FB-BF895E28F2E6}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Atheros Driver Installation Program-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{28006915-2739-4EBE-B5E8-49B25D32EB33}\setup.exe" -l0x9 -removeonly
Bluetooth Stack for Windows by Toshiba-->MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}
Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}
Camera Assistant Software for Toshiba-->C:\Program Files\InstallShield Installation Information\{37C866E4-AA67-4725-9E95-A39968DD7960}\setup.exe -runfromtemp -l0x0009
CD/DVD Drive Acoustic Silencer-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}\setup.exe" -l0x9
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Plus DirectShow Filters-->C:\Program Files\DivX\DivXDSFiltersUninstall.exe /DSFILTERS
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
DVD MovieFactory for TOSHIBA-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}\setup.exe" -l0x9
Emdedded IR Driver-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{A6D4234C-CB02-4048-AC3E-AD09404FA35A}
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_0531C63A913CC9D1.exe" /uninstall
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
iTunes-->MsiExec.exe /I{DDDE0BE3-0CBE-4BF6-B75A-E3F69C947843}
Java(TM) SE Runtime Environment 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}
Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
Kaspersky Internet Security 2009-->MsiExec.exe /I{8CB14A64-CEF4-4C8F-B1C8-1C3B8752CB55}
Kaspersky Internet Security 2009-->MsiExec.exe /I{8CB14A64-CEF4-4C8F-B1C8-1C3B8752CB55}
K-Lite Codec Pack 4.7.0 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
MobileMe Control Panel-->MsiExec.exe /I{2604C0F9-BFD3-4BA0-9EB5-22537C648F03}
Mozilla Firefox (3.0.7)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVC80_x86-->MsiExec.exe /I{212748BB-0DA5-46DE-82A1-403736DC9F27}
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nokia Connectivity Cable Driver-->MsiExec.exe /X{15AC0C5D-A6FB-4CE2-8CD0-28179EEB5625}
QuickTime-->MsiExec.exe /I{8DC42D05-680B-41B0-8878-6C14D24602DB}
RealPlayer-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista-->C:\Program Files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -l0x0009 -removeonly
Realtek High Definition Audio Driver-->RtlUpd.exe -r -m
Security Update for Windows Media Encoder (KB954156)-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E} MSIPATCHREMOVE={E836F1B7-43FB-46B0-A0D9-E4D2A5951659} /qb
Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Texas Instruments PCIxx21/x515/xx12 drivers.-->C:\Program Files\InstallShield Installation Information\{DB780B85-B4B5-4864-A49C-9B706B169C93}\setup.exe -runfromtemp -l0x0409
TOSHIBA Assist-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{12B3A009-A080-4619-9A2A-C6DB151D8D67}\setup.exe" -l0x9
TOSHIBA ConfigFree-->C:\Program Files\InstallShield Installation Information\{78C6A78A-8B03-48C8-A47C-78BA1FCA2307}\setup.exe -runfromtemp -l0x0009 uninstall -removeonly
TOSHIBA Disc Creator-->MsiExec.exe /X{5DA0E02F-970B-424B-BF41-513A5018E4C0}
TOSHIBA DVD PLAYER-->C:\Program Files\InstallShield Installation Information\{6C5F3BDC-0A1B-4436-A696-5939629D5C31}\setup.exe -runfromtemp -l0x0009 -ADDREMOVE -removeonly
TOSHIBA Flash Cards Support Utility-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{620BBA5E-F848-4D56-8BDA-584E44584C5E}
TOSHIBA Hardware Setup-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{5279374D-87FE-4879-9385-F17278EBB9D3} /l1033
Toshiba Registration-->MsiExec.exe /I{C53D16CC-E56F-47B8-906E-70AAF8EABB4F}
TOSHIBA SD Memory Utilities-->MsiExec.exe /X{EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7}
TOSHIBA Software Upgrades-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{425A2BC2-AA64-4107-9C29-484245BBEA05}\setup.exe" -l0x9 -removeonly
TOSHIBA Speech System Applications-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EE033C1F-443E-41EC-A0E2-559B539A4E4D}\Setup.exe" -l0x9
TOSHIBA Speech System SR Engine(U.S.) Version1.0-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{008D69EB-70FF-46AB-9C75-924620DF191A}\Setup.exe" -l0x9 UNINSTALL
TOSHIBA Speech System TTS Engine(U.S.) Version1.0-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3FBF6F99-8EC6-41B4-8527-0A32241B5496}\Setup.exe" -l0x9
TOSHIBA Supervisor Password-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE} /l1033
TOSHIBA Value Added Package-->C:\Program Files\InstallShield Installation Information\{FEDD27A0-B306-45EF-BF58-B527406B42C8}\setup.exe -runfromtemp -l0x0409
VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}
VLC media player 0.9.8a-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Winamp Remote-->"C:\Program Files\Winamp Remote\uninstall.exe"
Winamp-->"C:\Program Files\Winamp\UninstWA.exe"
Windows Live Call-->MsiExec.exe /I{F6BD194C-4190-4D73-B1B1-C48C99921BFE}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Essentials-->C:\Program Files\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{C6CA8874-5F22-4AF0-9BE3-016BF299C536}
Windows Live Family Safety-->MsiExec.exe /X{76CD2979-09C0-493A-84B3-8FD97EF4BCEA}
Windows Live Mail-->MsiExec.exe /I{63C1109E-D977-49ED-BCE3-D00D0BF187D6}
Windows Live Messenger-->MsiExec.exe /X{0AAA9C97-74D4-47CE-B089-0B147EF3553C}
Windows Live Photo Gallery-->MsiExec.exe /X{3C52E7DA-C431-4239-B66B-1BF703D5B194}
Windows Live Sign-in Assistant-->MsiExec.exe /I{45338B07-A236-4270-9A77-EBB4115517B5}
Windows Live Sync-->MsiExec.exe /X{A1BF9950-8CDB-468E-83FA-EACFB00EA7D5}
Windows Live Toolbar-->MsiExec.exe /X{995F1E2E-F542-4310-8E1D-9926F5A279B3}
Windows Live Upload Tool-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Windows Live Writer-->MsiExec.exe /X{6A92E5C5-0578-443D-91F3-92ECE5F2CAE2}
Windows Media Encoder 9 Series-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Windows Media Encoder 9 Series-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
winpwn 2.0.0.4-->E:\softwares\restore iphone software\winpwn_2.0.0.4_Setup\winpwn\uninstall winpwn.exe
WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
Yahoo! Music Jukebox-->MsiExec.exe /X{EC3B8CA2-49B8-4D38-BE9C-ABD0F6029168}

======Security center information======

AV: Kaspersky Internet Security (disabled)
FW: Kaspersky Internet Security (disabled)
AS: Windows Defender
AS: Kaspersky Internet Security (disabled)

======System event log======

Computer Name: Gnawy-PC
Event Code: 7
Message: The device, \Device\Harddisk0\DR0, has a bad block.
Record Number: 34616
Source Name: disk
Time Written: 20090302012121.424517-000
Event Type: Error
User:

Computer Name: Gnawy-PC
Event Code: 7
Message: The device, \Device\Harddisk0\DR0, has a bad block.
Record Number: 34617
Source Name: disk
Time Written: 20090302012127.466517-000
Event Type: Error
User:

Computer Name: Gnawy-PC
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.
Record Number: 34628
Source Name: Tcpip
Time Written: 20090302032232.480517-000
Event Type: Warning
User:

Computer Name: Gnawy-PC
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.
Record Number: 34630
Source Name: Tcpip
Time Written: 20090302035416.097517-000
Event Type: Warning
User:

Computer Name: Gnawy-PC
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.
Record Number: 34631
Source Name: Tcpip
Time Written: 20090302040400.174517-000
Event Type: Warning
User:

=====Application event log=====

Computer Name: Gnawy-PC
Event Code: 8194
Message: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005. This is often caused by incorrect security settings in either the writer or requestor process.

Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {2d2e5960-116e-4b40-bcd9-fe8a820a0c0c}
Record Number: 3402
Source Name: VSS
Time Written: 20090302003123.000000-000
Event Type: Error
User:

Computer Name: Gnawy-PC
Event Code: 8193
Message: Failed to create restore point on volume (Process = C:\Program Files\Common Files\Windows Live\.cache\b74a85501c99acc\DXSETUP.exe Files\Common Files\Windows Live\.cache\b74a85501c99acc\DXSETUP.exe" /silent ; Descripton = ôv; Hr = 0x80070057).
Record Number: 3404
Source Name: System Restore
Time Written: 20090302003715.000000-000
Event Type: Error
User:

Computer Name: Gnawy-PC
Event Code: 1530
Message: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.

DETAIL -
10 user registry handles leaked from \Registry\User\S-1-5-21-4012868147-981816111-4059902990-1000:
Process 1024 (\Device\HarddiskVolume1\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-4012868147-981816111-4059902990-1000
Process 2020 (\Device\HarddiskVolume1\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe) has opened key \REGISTRY\USER\S-1-5-21-4012868147-981816111-4059902990-1000
Process 2020 (\Device\HarddiskVolume1\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe) has opened key \REGISTRY\USER\S-1-5-21-4012868147-981816111-4059902990-1000
Process 2020 (\Device\HarddiskVolume1\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe) has opened key \REGISTRY\USER\S-1-5-21-4012868147-981816111-4059902990-1000\Software\Microsoft\SystemCertificates\trust
Process 2020 (\Device\HarddiskVolume1\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe) has opened key \REGISTRY\USER\S-1-5-21-4012868147-981816111-4059902990-1000\Software\Microsoft\SystemCertificates\SmartCardRoot
Process 2020 (\Device\HarddiskVolume1\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe) has opened key \REGISTRY\USER\S-1-5-21-4012868147-981816111-4059902990-1000\Software\Microsoft\SystemCertificates\My
Process 2020 (\Device\HarddiskVolume1\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe) has opened key \REGISTRY\USER\S-1-5-21-4012868147-981816111-4059902990-1000\Software\Microsoft\SystemCertificates\CA
Process 2020 (\Device\HarddiskVolume1\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe) has opened key \REGISTRY\USER\S-1-5-21-4012868147-981816111-4059902990-1000\Software\Policies\Microsoft\SystemCertificates
Process 2020 (\Device\HarddiskVolume1\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe) has opened key \REGISTRY\USER\S-1-5-21-4012868147-981816111-4059902990-1000\Software\Policies\Microsoft\SystemCertificates
Process 2020 (\Device\HarddiskVolume1\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe) has opened key \REGISTRY\USER\S-1-5-21-4012868147-981816111-4059902990-1000\Software\Microsoft\SystemCertificates\Root

Record Number: 3440
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20090302010241.000000-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: Gnawy-PC
Event Code: 1530
Message: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.

DETAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-4012868147-981816111-4059902990-1000_Classes:
Process 1024 (\Device\HarddiskVolume1\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-4012868147-981816111-4059902990-1000_CLASSES

Record Number: 3441
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20090302010243.000000-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: Gnawy-PC
Event Code: 8194
Message: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005. This is often caused by incorrect security settings in either the writer or requestor process.

Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {19b84a23-59c2-4bde-8462-8d4710e5dc64}
Record Number: 3467
Source Name: VSS
Time Written: 20090302011424.000000-000
Event Type: Error
User:

=====Security event log=====

Computer Name: Gnawy-PC
Event Code: 5038
Message: Code integrity determined that the image hash of a file is not valid. The file could be corrupt due to unauthorized modification or the invalid hash could indicate a potential disk device error.

File Name: \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys
Record Number: 6343
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090302043731.953517-000
Event Type: Audit Failure
User:

Computer Name: Gnawy-PC
Event Code: 5038
Message: Code integrity determined that the image hash of a file is not valid. The file could be corrupt due to unauthorized modification or the invalid hash could indicate a potential disk device error.

File Name: \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys
Record Number: 6344
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090302043731.987517-000
Event Type: Audit Failure
User:

Computer Name: Gnawy-PC
Event Code: 5038
Message: Code integrity determined that the image hash of a file is not valid. The file could be corrupt due to unauthorized modification or the invalid hash could indicate a potential disk device error.

File Name: \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys
Record Number: 6345
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090302043732.020517-000
Event Type: Audit Failure
User:

Computer Name: Gnawy-PC
Event Code: 5038
Message: Code integrity determined that the image hash of a file is not valid. The file could be corrupt due to unauthorized modification or the invalid hash could indicate a potential disk device error.

File Name: \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys
Record Number: 6346
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090302043732.052517-000
Event Type: Audit Failure
User:

Computer Name: Gnawy-PC
Event Code: 5038
Message: Code integrity determined that the image hash of a file is not valid. The file could be corrupt due to unauthorized modification or the invalid hash could indicate a potential disk device error.

File Name: \Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys
Record Number: 6347
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090302043732.089517-000
Event Type: Audit Failure
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\PROGRA~1\COMMON~1\ULEADS~1\MPEG;C:\Program Files\QuickTime\QTSystem\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 72 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=4802
"NUMBER_OF_PROCESSORS"=2
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0\lib\ext\QTJava.zip

-----------------EOF-----------------
et voila le info txt merci d'avance thx a lot

Salut Jennifer007


Télécharge combofix.exe (de sUBs) sur le bureau :

http://download.bleepingcomputer.com/sUBs/ComboFix.exe
http://subs.geekstogo.com/ComboFix.exe

Important Désactive ton Antivirus et antispyware avant le scan avec Combofix :
http://forum.pcastuces.com/desactiver_les_protections_residentes-f31s4.htm


==> Sauvegarde ton travail et ferme toutes les fenêtres actives, il peut y avoir un redémarrage du PC. Ne lance aucun programme tant que Combofix n’est pas fini. <==

Double clique sur combofix.exe, clique sur OUI et valide par Entrée

Il te sera demandé d’installer la console si elle n’est pas installer, clique sur NON

Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.

NOTE : Le rapport se trouve également ici : C:\ Combofix.txt

Combofix est détecté par certains antivirus comme une infection, ne pas en tenir compte, il s'agit d'un faux positif, continue la procédure


@++

ComboFix 09-03-28.01 - Gnawy 2009-03-01 21:08:30.1 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.1.1033.18.1917.881 [GMT -8:00]
Running from: c:\users\Gnawy\Downloads\ComboFix.exe
AV: Kaspersky Internet Security *On-access scanning disabled* (Updated)
FW: Kaspersky Internet Security *disabled*
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\programdata\Microsoft\Network\Downloader\qmgr0.dat
c:\programdata\Microsoft\Network\Downloader\qmgr1.dat
c:\windows\system32\kr_done1
c:\windows\system32\pthreadGC2.dll

----- BITS: Possible infected sites -----

hxxp://ping-host.com
.
((((((((((((((((((((((((( Files Created from 2009-02-28 to 2009-03-28 )))))))))))))))))))))))))))))))
.

2009-03-22 11:32 . 2009-03-22 11:32 0 --ah----- c:\windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2009-03-10 22:44 . 2008-12-15 20:29 8,147,456 --a------ c:\windows\System32\wmploc.DLL
2009-03-10 22:44 . 2008-12-15 22:31 7,680 --a------ c:\windows\System32\spwmp.dll
2009-03-10 22:44 . 2008-12-15 22:31 4,096 --a------ c:\windows\System32\msdxm.ocx
2009-03-10 22:44 . 2008-12-15 22:31 4,096 --a------ c:\windows\System32\dxmasf.dll
2009-03-10 22:43 . 2009-02-08 20:10 2,033,152 --a------ c:\windows\System32\win32k.sys
2009-03-10 22:43 . 2008-11-26 21:43 268,288 --a------ c:\windows\System32\schannel.dll
2009-03-09 19:55 . 2009-03-01 21:59 <DIR> d-------- c:\users\Gnawy\AppData\Roaming\uTorrent
2009-03-09 19:55 . 2009-03-09 19:55 <DIR> d-------- c:\program files\uTorrent
2009-03-04 18:40 . 2009-03-04 18:40 <DIR> d-------- c:\program files\Real
2009-03-04 18:40 . 2009-03-04 18:40 <DIR> d-------- c:\program files\Common Files\xing shared
2009-03-04 18:40 . 2009-03-04 18:40 <DIR> d-------- c:\program files\Common Files\Real
2009-03-04 18:40 . 2009-03-04 18:40 499,712 --a------ c:\windows\System32\msvcp71.dll
2009-03-03 16:43 . 2009-03-03 16:44 <DIR> d-------- c:\program files\K-Lite Codec Pack
2009-03-03 16:15 . 2009-03-03 16:25 101,287 --a------ c:\windows\System32\drivers\klin.dat
2009-03-03 16:15 . 2009-03-03 16:25 89,601 --a------ c:\windows\System32\drivers\klick.dat
2009-03-03 16:14 . 2009-03-03 16:14 <DIR> d-------- c:\program files\Kaspersky Lab
2009-03-03 16:14 . 2009-03-01 18:21 2,659,360 --ahs---- c:\windows\System32\drivers\fidbox.dat
2009-03-03 16:14 . 2009-03-01 18:03 483,360 --ahs---- c:\windows\System32\drivers\fidbox2.dat
2009-03-03 16:14 . 2009-03-01 18:18 22,904 --ahs---- c:\windows\System32\drivers\fidbox.idx
2009-03-03 16:14 . 2009-03-01 18:03 3,780 --ahs---- c:\windows\System32\drivers\fidbox2.idx
2009-03-03 15:53 . 2009-03-03 15:53 <DIR> d-------- c:\users\Gnawy\AppData\Roaming\cmw
2009-03-01 21:37 . 2009-03-01 21:37 <DIR> d-------- C:\rsit
2009-03-01 21:37 . 2009-03-01 21:37 <DIR> d-------- c:\program files\trend micro
2009-03-01 19:59 . 2009-03-01 19:59 <DIR> d-------- c:\users\Gnawy\Tracing
2009-03-01 17:42 . 2009-03-01 17:42 <DIR> d-------- c:\program files\Microsoft Silverlight
2009-03-01 17:42 . 2009-02-06 19:08 55,280 --a------ c:\windows\System32\drivers\fssfltr.sys
2009-03-01 17:41 . 2009-03-01 17:41 <DIR> d-------- c:\program files\Microsoft Sync Framework
2009-03-01 17:37 . 2006-11-29 14:06 3,426,072 --a------ c:\windows\System32\d3dx9_32.dll
2009-03-01 17:31 . 2009-03-01 17:31 <DIR> d-------- c:\program files\Microsoft SQL Server Compact Edition
2009-03-01 17:23 . 2009-03-01 17:23 <DIR> d-------- c:\program files\Windows Live SkyDrive
2009-03-01 17:23 . 2009-03-01 17:23 <DIR> d-------- c:\program files\Microsoft
2009-03-01 17:22 . 2009-03-01 17:42 <DIR> d-------- c:\program files\Windows Live
2009-03-01 17:17 . 2009-03-01 17:17 <DIR> d-------- c:\program files\Common Files\Windows Live
2009-03-01 07:14 . 2009-03-01 07:14 2,838 --a------ c:\windows\machine.ver

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-03-11 10:08 --------- d-----w c:\program files\Windows Mail
2009-03-03 23:42 --------- d-----w c:\program files\DivX
2009-03-03 23:25 33,808 ----a-w c:\windows\system32\drivers\klbg.sys
2009-03-03 23:18 --------- d-----w c:\program files\Google
2009-03-02 01:11 --------- d-----w c:\programdata\Kaspersky Lab
2009-03-01 23:48 --------- d-----w c:\program files\QuickTime
2009-02-27 11:13 --------- d-----w c:\programdata\NOS
2009-02-27 11:13 --------- d-----w c:\program files\NOS
2009-02-26 19:08 --------- d-----w c:\users\Gnawy\AppData\Roaming\DivX
2009-02-26 17:28 --------- d-----w c:\program files\Common Files\PX Storage Engine
2009-02-26 16:13 --------- d-----w c:\program files\Common Files\Adobe AIR
2009-02-26 16:11 --------- d-----w c:\program files\Common Files\Adobe
2009-02-26 05:21 174 --sha-w c:\program files\desktop.ini
2009-02-26 05:10 --------- d-----w c:\program files\Windows Sidebar
2009-02-26 05:10 --------- d-----w c:\program files\Windows Photo Gallery
2009-02-26 05:10 --------- d-----w c:\program files\Windows Journal
2009-02-26 05:10 --------- d-----w c:\program files\Windows Defender
2009-02-26 05:10 --------- d-----w c:\program files\Windows Collaboration
2009-02-26 05:10 --------- d-----w c:\program files\Windows Calendar
2009-02-26 04:52 82,432 ----a-w c:\windows\System32\axaltocm.dll
2009-02-26 04:52 101,888 ----a-w c:\windows\System32\ifxcardm.dll
2009-02-22 23:47 --------- d-----w c:\users\Gnawy\AppData\Roaming\Media Player Classic
2009-02-22 23:45 --------- d-----w c:\programdata\OrbNetworks
2009-02-22 23:43 --------- d-----w c:\users\Gnawy\AppData\Roaming\Winamp
2009-02-22 23:43 --------- d-----w c:\program files\Winamp Remote
2009-02-22 23:43 --------- d-----w c:\program files\Winamp
2009-02-22 10:55 269,312 ----a-w c:\windows\System32\es.dll
2009-02-22 10:01 61,440 ----a-w c:\windows\System32\winipsec.dll
2009-02-22 10:01 361,984 ----a-w c:\windows\System32\IPSECSVC.DLL
2009-02-22 10:01 28,672 ----a-w c:\windows\System32\FwRemoteSvr.dll
2009-02-22 10:01 272,896 ----a-w c:\windows\System32\polstore.dll
2009-02-22 09:58 94,720 ----a-w c:\windows\System32\PortableDeviceClassExtension.dll
2009-02-22 09:58 241,152 ----a-w c:\windows\System32\PortableDeviceApi.dll
2009-02-22 09:58 160,768 ----a-w c:\windows\System32\PortableDeviceTypes.dll
2009-02-22 09:49 827,392 ----a-w c:\windows\System32\wininet.dll
2009-02-22 09:42 296,960 ----a-w c:\windows\System32\gdi32.dll
2009-02-22 09:39 212,480 ----a-w c:\windows\system32\drivers\mrxsmb10.sys
2009-02-22 09:38 541,696 ----a-w c:\windows\AppPatch\AcLayers.dll
2009-02-22 09:38 52,736 ----a-w c:\windows\AppPatch\iebrshim.dll
2009-02-22 09:38 460,288 ----a-w c:\windows\AppPatch\AcSpecfc.dll
2009-02-22 09:38 4,240,384 ----a-w c:\windows\System32\GameUXLegacyGDFs.dll
2009-02-22 09:38 28,672 ----a-w c:\windows\System32\Apphlpdm.dll
2009-02-22 09:38 2,560 ----a-w c:\windows\AppPatch\AcRes.dll
2009-02-22 09:38 2,154,496 ----a-w c:\windows\AppPatch\AcGenral.dll
2009-02-22 09:38 173,056 ----a-w c:\windows\AppPatch\AcXtrnal.dll
2009-02-22 09:38 1,695,744 ----a-w c:\windows\System32\gameux.dll
2009-02-22 09:36 303,616 ----a-w c:\windows\System32\wmpeffects.dll
2009-02-22 09:34 2,048 ----a-w c:\windows\System32\msxml3r.dll
2009-02-22 09:34 1,191,936 ----a-w c:\windows\System32\msxml3.dll
2009-02-22 09:28 2,048 ----a-w c:\windows\System32\tzres.dll
2009-02-22 09:26 428,544 ----a-w c:\windows\System32\EncDec.dll
2009-02-22 09:26 293,376 ----a-w c:\windows\System32\psisdecd.dll
2009-02-22 09:19 2,927,104 ----a-w c:\windows\explorer.exe
2009-02-22 09:10 9,892,864 ----a-w c:\windows\System32\NlsLexicons000a.dll
2009-02-22 09:05 988,216 ----a-w c:\windows\System32\winload.exe
2009-02-22 09:05 927,288 ----a-w c:\windows\System32\winresume.exe
2009-02-22 09:05 615,992 ----a-w c:\windows\System32\ci.dll
2009-02-22 09:05 6,656 ----a-w c:\windows\System32\kbd106n.dll
2009-02-22 09:05 46,592 ----a-w c:\windows\System32\setbcdlocale.dll
2009-02-22 09:05 40,960 ----a-w c:\windows\System32\srclient.dll
2009-02-22 09:05 378,368 ----a-w c:\windows\System32\srcore.dll
2009-02-22 09:05 318,464 ----a-w c:\windows\System32\rstrui.exe
2009-02-22 09:05 19,000 ----a-w c:\windows\System32\kd1394.dll
2009-02-22 09:05 14,848 ----a-w c:\windows\System32\srdelayed.exe
2009-02-22 08:57 712,704 ----a-w c:\windows\System32\WindowsCodecs.dll
2009-02-22 08:57 425,472 ----a-w c:\windows\System32\PhotoMetadataHandler.dll
2009-02-22 08:57 347,648 ----a-w c:\windows\System32\WindowsCodecsExt.dll
2009-02-22 08:54 443,392 ----a-w c:\windows\System32\win32spl.dll
2009-02-22 08:54 37,888 ----a-w c:\windows\System32\printcom.dll
2009-02-22 08:53 14,848 ----a-w c:\windows\System32\wshrm.dll
2009-02-22 08:53 113,664 ----a-w c:\windows\system32\drivers\rmcast.sys
2009-02-22 08:49 288,768 ----a-w c:\windows\system32\drivers\srv.sys
2009-02-22 08:43 97,800 ----a-w c:\windows\System32\infocardapi.dll
2009-02-22 08:43 781,344 ----a-w c:\windows\System32\PresentationNative_v0300.dll
2009-02-22 08:43 622,080 ----a-w c:\windows\System32\icardagt.exe
2009-02-22 08:43 43,544 ----a-w c:\windows\System32\PresentationHostProxy.dll
2009-02-22 08:43 326,160 ----a-w c:\windows\System32\PresentationHost.exe
2009-02-22 08:43 11,264 ----a-w c:\windows\System32\icardres.dll
2009-02-22 08:43 105,016 ----a-w c:\windows\System32\PresentationCFFRasterizerNative_v0300.dll
2009-02-22 08:23 96,760 ----a-w c:\windows\System32\dfshim.dll
2009-02-22 08:23 83,968 ----a-w c:\windows\System32\mscories.dll
2009-02-22 08:23 41,984 ----a-w c:\windows\System32\netfxperf.dll
2009-02-22 08:23 282,112 ----a-w c:\windows\System32\mscoree.dll
2009-02-22 08:23 158,720 ----a-w c:\windows\System32\mscorier.dll
2009-02-22 08:02 996,352 ----a-w c:\windows\System32\WMNetMgr.dll
2009-02-22 08:02 98,816 ----a-w c:\windows\System32\mfps.dll
2009-02-22 08:02 94,720 ----a-w c:\windows\System32\logagent.exe
2009-02-22 08:02 53,248 ----a-w c:\windows\System32\rrinstaller.exe
2009-02-22 08:02 24,576 ----a-w c:\windows\System32\mfpmp.exe
2009-02-22 08:02 2,868,736 ----a-w c:\windows\System32\mf.dll
2009-02-22 08:02 2,048 ----a-w c:\windows\System32\mferror.dll
2009-02-22 08:01 84,480 ----a-w c:\windows\System32\INETRES.dll
2009-02-22 08:01 738,304 ----a-w c:\windows\System32\inetcomm.dll
2009-02-22 08:00 1,645,568 ----a-w c:\windows\System32\connect.dll
2009-02-22 07:59 1,314,816 ----a-w c:\windows\System32\quartz.dll
2009-02-22 07:58 3,601,464 ----a-w c:\windows\System32\ntkrnlpa.exe
2009-02-22 07:58 3,549,240 ----a-w c:\windows\System32\ntoskrnl.exe
2009-02-22 07:57 2,048 ----a-w c:\windows\System32\msxml6r.dll
2009-02-22 07:57 1,334,272 ----a-w c:\windows\System32\msxml6.dll
2009-02-22 06:56 --------- d-----w c:\program files\TOSHIBA
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920]
"TOSCDSPD"="c:\program files\TOSHIBA\TOSCDSPD\toscdspd.exe" [2007-01-22 417792]
"MsnMsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-03-03 39408]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]
"WindowsWelcomeCenter"="oobefldr.dll" [2008-01-19 c:\windows\System32\oobefldr.dll]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2006-09-11 180224]
"Camera Assistant Software"="c:\program files\Camera Assistant Software for Toshiba\traybar.exe" [2007-04-10 413696]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0\bin\jusched.exe" [2009-02-21 77824]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-04-19 861744]
"KeNotify"="c:\program files\TOSHIBA\Utilities\KeNotify.exe" [2006-11-06 34352]
"SVPWUTIL"="c:\program files\TOSHIBA\Utilities\SVPWUTIL.exe" [2006-03-22 438272]
"TPwrMain"="c:\program files\TOSHIBA\Power Saver\TPwrMain.EXE" [2007-03-29 411192]
"HSON"="c:\program files\TOSHIBA\TBS\HSON.exe" [2006-12-07 55416]
"SmoothView"="c:\program files\Toshiba\SmoothView\SmoothView.exe" [2007-03-22 448632]
"00TCrdMain"="c:\program files\TOSHIBA\FlashCards\TCrdMain.exe" [2007-04-26 538744]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2008-08-03 36352]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [2009-03-03 206088]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-03-04 198160]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2008-10-01 111936]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2008-09-06 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2008-10-01 289576]
"NDSTray.exe"="NDSTray.exe" [BU]
"RtHDVCpl"="RtHDVCpl.exe" [2007-04-25 c:\windows\RtHDVCpl.exe]
"Skytel"="Skytel.exe" [2007-04-13 c:\windows\SkyTel.exe]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\KASPER~1\KASPER~1\mzvkbd.dll c:\progra~1\KASPER~1\KASPER~1\mzvkbd3.dll c:\progra~1\KASPER~1\KASPER~1\adialhk.dll c:\progra~1\KASPER~1\KASPER~1\kloehk.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.dvacm"= c:\progra~1\COMMON~1\ULEADS~1\vio\dvacm.acm

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{1CD94208-A5D6-47D8-BD6E-0C16B8FC0A88}"= UDP:c:\program files\Yahoo!\Yahoo! Music Jukebox\YahooMusicEngine.exe:Yahoo! Music Jukebox
"{10A3817F-9AF1-4AA6-B3CF-98159DDBDF1D}"= TCP:c:\program files\Yahoo!\Yahoo! Music Jukebox\YahooMusicEngine.exe:Yahoo! Music Jukebox
"{CECC65EE-7538-48B3-AC30-3761B4CD0D5D}"= UDP:c:\program files\Winamp Remote\bin\Orb.exe:Orb
"{990A6AD1-E83F-4765-96E7-DE23E43EBAA8}"= TCP:c:\program files\Winamp Remote\bin\Orb.exe:Orb
"{0E969E0E-7F6A-48C4-B303-E5230F70656B}"= UDP:c:\program files\Winamp Remote\bin\OrbTray.exe:OrbTray
"{F5D5EEF9-6840-47AE-999A-C50393288114}"= TCP:c:\program files\Winamp Remote\bin\OrbTray.exe:OrbTray
"{18D73853-7409-4903-AD89-E36BD037B18C}"= UDP:c:\program files\Winamp Remote\bin\OrbIR.exe:OrbIR
"{642EE3A5-01DC-46F8-A04B-5E957CC5CA0E}"= TCP:c:\program files\Winamp Remote\bin\OrbIR.exe:OrbIR
"{FE6D891A-4C31-4F5D-B669-3DF101481840}"= UDP:c:\program files\Winamp Remote\bin\OrbStreamerClient.exe:Orb Stream Client
"{7E6AADC0-2583-400B-93F2-D7A2DD3B0C66}"= TCP:c:\program files\Winamp Remote\bin\OrbStreamerClient.exe:Orb Stream Client
"{BE7D261D-E77E-4A5F-BB87-E06FFE0BBFBF}"= UDP:c:\program files\uTorrent\uTorrent.exe:µTorrent (TCP-In)
"{0B789BBE-46E8-4F80-8655-E7149B3B214D}"= TCP:c:\program files\uTorrent\uTorrent.exe:µTorrent (UDP-In)
"TCP Query User{EDD250A5-C024-488E-843B-097AC6DF65FA}c:\\users\\gnawy\\downloads\\crack.kaspersky.anti-virus.2009.v8.0.0.357.exe"= UDP:c:\users\gnawy\downloads\crack.kaspersky.anti-virus.2009.v8.0.0.357.exe:crack.kaspersky.anti-virus.2009.v8.0.0.357.exe
"UDP Query User{EE152BAC-1A77-46AB-9899-E773DEFA87BF}c:\\users\\gnawy\\downloads\\crack.kaspersky.anti-virus.2009.v8.0.0.357.exe"= TCP:c:\users\gnawy\downloads\crack.kaspersky.anti-virus.2009.v8.0.0.357.exe:crack.kaspersky.anti-virus.2009.v8.0.0.357.exe
"{84A39176-E3A1-456C-AFE6-BDB2D4DD65A6}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{8F5B3DF3-4052-4EEE-8068-D9AE063CF94C}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{FCB6748E-F5F0-4957-BD72-4F9E0E436B0E}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{94E41BBE-2DE7-410E-8820-2ED83B9B24A0}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
"{099B728D-7C32-4755-9610-791DE65759F8}"= c:\program files\Windows Live\Sync\WindowsLiveSync.exe:Windows Live Sync

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
"c:\\TOSHIBA\\ivp\\NetInt\\Netint.exe"= c:\toshiba\ivp\NetInt\Netint.exe:*:Enabled:NIE - Toshiba Software Upgrades Engine
"c:\\TOSHIBA\\Ivp\\ISM\\pinger.exe"= c:\toshiba\Ivp\ISM\pinger.exe:*:Enabled:Toshiba Software Upgrades Pinger

R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\System32\drivers\klbg.sys [2008-01-29 33808]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\System32\drivers\klim6.sys [2008-07-09 20496]
R2 SeaPort;SeaPort;c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;c:\windows\System32\drivers\klfltdev.sys [2008-03-13 26640]
S3 fssfltr;FssFltr;c:\windows\System32\drivers\fssfltr.sys [2009-03-01 55280]
S3 fsssvc;Windows Live Family Safety;c:\program files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{39e50fc1-170d-11de-bce1-001b3814e3f2}]
\shell\AutoRun\command - E:\setupSNK.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{39e50fcc-170d-11de-bce1-001b3814e3f2}]
\shell\AutoRun\command - E:\setupSNK.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5e44eb6f-0100-11de-852f-001b3814e3f2}]
\shell\AutoRun\command - F:\launcher.exe
.
- - - - ORPHANS REMOVED - - - -

HKCU-Run-LtMoh - c:\program files\ltmoh\Ltmoh.exe
HKLM-Run-HWSetup - \HWSetup.exe


.
------- Supplementary Scan -------
.
uInternet Settings,ProxyOverride = *.local
FF - ProfilePath -
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-03-28 21:13:10
Windows 6.0.6001 Service Pack 1 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.aif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.aifc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.aiff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.au\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.flac\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m3u\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mid\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.midi\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp3\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ogg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pls\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.snd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.spx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wav\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"

[HKEY_USERS\.Default\CMI-CreateHive{274AB9BD-5778-42E7-84B9-863B8D8DF87A}\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wma\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="YMP.Media"
.
Completion time: 2009-03-28 21:16:32
ComboFix-quarantined-files.txt 2009-03-29 04:16:30

Pre-Run: 180,987,801,600 bytes free
Post-Run: 183,156,682,752 bytes free

310 --- E O F --- 2009-03-26 20:03:40
merci bcp

Salut Jennifer007


-Télécharge et installe MalwareByte's Anti-Malware
http://www.malwarebytes.org/mbam/program/mbam-setup.exe

- Mets le à jour

---

- Redémarre en mode sans échec :

Au redémarrage de ton PC tapote sur la touche F8 ou F5, sur l'écran suivant déplace toi avec les flèches de direction et choisis Mode sans échec. Choisis ta session habituelle et non la session Administrateur

---

- Double clique sur le raccourci de MalwareByte's Anti-Malware qui est sur le bureau.
- Sélectionne Exécuter un examen complet si ce n'est pas déjà fait
- clique sur Rechercher

- Une fois le scan terminé, une fenêtre s'ouvre, clique sur sur Ok

- Si MalwareByte's n'a rien détecté, clique sur Ok Un rapport va apparaître ferme-le.

- Si MalwareByte's a détecté des infections, clique sur Afficher les résultats ensuite sur Supprimer la sélection

- Enregistre le rapport sur ton Bureau comme cela il sera plus facile à retrouver, poste ensuite ce rapport.

Note : Si MalwareByte's a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok

Tutoriel pour MalwareByte's ici :
http://www.malekal.com/tutorial_MalwareBytes_AntiMalware.php


@++

re-salut Dédétraqué cetait bien marcher il as trrouver 2 viruss trojan et jai efface tous et redemarer mon laptop mais le probleme jai save sur le raport mais je le vois pas .... svp esque tu as une aider la ou je le trouve ???
merci bcp

salut Dédétraqué je vois que tu nas pas bcp de temp je ne c pas esque je doit le faire encord pour avoire le raport svp repond moi
merci

Salut Jennifer007


Faut bien dormir un peu


Le rapport de MalwareByte's peut être retrouvé sous l'onglet Rapports/logs.


@++

bonjour dédétraqué
dsl pour hier .... il ya le decalage 5 heur je crois bref jai chercher partous mais je trouve rien jai fait meme search sur c:/ *.txt mais je trouve pas .... quoi faire svp

Salut Jennifer007


Moi aussi j'ai un décalage, présentement 8hrs

Supprime ce dossier C:\rsit

Refais un scan avec RSIT et poste le rapport log.txt seulement à la fin de l’analyse

Le rapport est dans le dossier ici C:\rsit

@++

Logfile of random's system information tool 1.06 (written by random/random)
Run by Gnawy at 2009-03-02 15:26:27
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 174 GB (73%) free of 238 GB
Total RAM: 1917 MB (8% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:27:29 PM, on 3/2/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Java\jre1.6.0\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\QuickTime\QuickTimePlayer.exe
C:\Users\Gnawy\Downloads\RSIT(2).exe
C:\Program Files\trend micro\Gnawy.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe"
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0\bin\jusched.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: Statistiques de la protection du trafic Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: pinger - Unknown owner - C:\Toshiba\IVP\ISM\pinger.exe
O23 - Service: Swupdtmr - Unknown owner - c:\Toshiba\IVP\swupdate\swupdtmr.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 9473 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-03-04 312928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll [2008-11-11 62728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0\bin\ssv.dll [2009-02-21 501384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-03-03 251504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll [2009-03-03 657904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll [2009-03-03 522224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-03-03 251504]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2006-09-11 180224]
"Camera Assistant Software"=C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe [2007-04-10 413696]
"NDSTray.exe"=NDSTray.exe []
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-04-25 4444160]
"Skytel"=C:\Windows\Skytel.exe [2007-04-13 1822720]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0\bin\jusched.exe [2009-02-21 77824]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-04-19 861744]
"KeNotify"=C:\Program Files\TOSHIBA\Utilities\KeNotify.exe [2006-11-06 34352]
"SVPWUTIL"=C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe [2006-03-22 438272]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2007-03-29 411192]
"HSON"=C:\Program Files\TOSHIBA\TBS\HSON.exe [2006-12-07 55416]
"SmoothView"=C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2007-03-22 448632]
"00TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2007-04-26 538744]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2008-08-03 36352]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2009-03-03 206088]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2009-03-04 198160]
"AppleSyncNotifier"=C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2008-10-01 111936]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-10-01 289576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-18 1233920]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
"TOSCDSPD"=C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [2007-01-22 417792]
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-03-03 39408]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-18 125952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\Windows\system32\klogon.dll [2008-11-11 218376]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\TOSHIBA\ivp\NetInt\Netint.exe"="C:\TOSHIBA\ivp\NetInt\Netint.exe:*:Enabled:NIE - Toshiba Software Upgrades Engine"
"C:\TOSHIBA\Ivp\ISM\pinger.exe"="C:\TOSHIBA\Ivp\ISM\pinger.exe:*:Enabled:Toshiba Software Upgrades Pinger"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{39e50fc1-170d-11de-bce1-001b3814e3f2}]
shell\AutoRun\command - E:\setupSNK.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{39e50fcc-170d-11de-bce1-001b3814e3f2}]
shell\AutoRun\command - E:\setupSNK.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5e44eb6f-0100-11de-852f-001b3814e3f2}]
shell\AutoRun\command - F:\launcher.exe


======List of files/folders created in the last 1 months======

2009-03-28 20:36:10 ----D---- C:\Users\Gnawy\AppData\Roaming\Malwarebytes
2009-03-28 20:36:04 ----D---- C:\ProgramData\Malwarebytes
2009-03-28 20:36:04 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-03-28 20:16:33 ----A---- C:\ComboFix.txt
2009-03-22 05:07:58 ----A---- C:\Windows\ntbtlog.txt
2009-03-10 21:44:12 ----A---- C:\Windows\system32\wmp.dll
2009-03-10 21:44:10 ----A---- C:\Windows\system32\spwmp.dll
2009-03-10 21:44:10 ----A---- C:\Windows\system32\dxmasf.dll
2009-03-10 21:44:09 ----A---- C:\Windows\system32\wmploc.DLL
2009-03-10 21:43:37 ----A---- C:\Windows\system32\schannel.dll
2009-03-09 18:55:35 ----D---- C:\Program Files\uTorrent
2009-03-09 18:55:06 ----D---- C:\Users\Gnawy\AppData\Roaming\uTorrent
2009-03-04 17:40:46 ----D---- C:\Program Files\Common Files\xing shared
2009-03-04 17:40:41 ----A---- C:\Windows\system32\rmoc3260.dll
2009-03-04 17:40:31 ----A---- C:\Windows\system32\pndx5032.dll
2009-03-04 17:40:31 ----A---- C:\Windows\system32\pndx5016.dll
2009-03-04 17:40:30 ----D---- C:\Program Files\Real
2009-03-04 17:40:30 ----A---- C:\Windows\system32\pncrt.dll
2009-03-04 17:40:30 ----A---- C:\Windows\system32\msvcp71.dll
2009-03-04 17:40:24 ----D---- C:\Program Files\Common Files\Real
2009-03-04 17:40:23 ----D---- C:\Users\Gnawy\AppData\Roaming\Real
2009-03-03 15:43:45 ----A---- C:\Windows\system32\unrar.dll
2009-03-03 15:43:43 ----A---- C:\Windows\system32\yv12vfw.dll
2009-03-03 15:43:43 ----A---- C:\Windows\system32\xvidvfw.dll
2009-03-03 15:43:43 ----A---- C:\Windows\system32\xvidcore.dll
2009-03-03 15:43:42 ----A---- C:\Windows\system32\qt-dx331.dll
2009-03-03 15:43:42 ----A---- C:\Windows\system32\dpl100.dll
2009-03-03 15:43:42 ----A---- C:\Windows\system32\divx.dll
2009-03-03 15:43:41 ----A---- C:\Windows\system32\ff_vfw.dll.manifest
2009-03-03 15:43:41 ----A---- C:\Windows\system32\ff_vfw.dll
2009-03-03 15:43:40 ----A---- C:\Windows\system32\msvcr71.dll
2009-03-03 15:43:39 ----D---- C:\Program Files\K-Lite Codec Pack
2009-03-03 15:14:13 ----D---- C:\Program Files\Kaspersky Lab
2009-03-03 14:53:13 ----D---- C:\Users\Gnawy\AppData\Roaming\cmw
2009-03-02 00:44:37 ----D---- C:\ProgramData\Jesterware
2009-03-02 00:43:57 ----D---- C:\Program Files\Jesterware
2009-03-02 00:43:43 ----HDC---- C:\ProgramData\{F2D9B366-9ECC-487E-A1A4-C07A2CE04955}
2009-03-02 00:34:03 ----D---- C:\Program Files\WinAVI MP4 Converter
2009-03-01 23:54:58 ----D---- C:\Users\Gnawy\AppData\Roaming\GRETECH
2009-03-01 23:54:13 ----D---- C:\Program Files\GRETECH
2009-03-01 21:02:28 ----A---- C:\Windows\zip.exe
2009-03-01 21:02:28 ----A---- C:\Windows\VFIND.exe
2009-03-01 21:02:28 ----A---- C:\Windows\SWXCACLS.exe
2009-03-01 21:02:28 ----A---- C:\Windows\SWSC.exe
2009-03-01 21:02:28 ----A---- C:\Windows\SWREG.exe
2009-03-01 21:02:28 ----A---- C:\Windows\sed.exe
2009-03-01 21:02:28 ----A---- C:\Windows\NIRCMD.exe
2009-03-01 21:02:28 ----A---- C:\Windows\grep.exe
2009-03-01 21:02:28 ----A---- C:\Windows\fdsv.exe
2009-03-01 21:02:21 ----D---- C:\Windows\ERDNT
2009-03-01 21:02:14 ----D---- C:\Qoobox
2009-03-01 20:37:20 ----D---- C:\Program Files\trend micro
2009-03-01 20:37:18 ----D---- C:\rsit
2009-03-01 16:42:42 ----D---- C:\Program Files\Microsoft Silverlight
2009-03-01 16:41:03 ----D---- C:\Program Files\Microsoft Sync Framework
2009-03-01 16:37:12 ----A---- C:\Windows\system32\d3dx9_32.dll
2009-03-01 16:31:10 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2009-03-01 16:23:30 ----D---- C:\Program Files\Microsoft
2009-03-01 16:23:02 ----D---- C:\Program Files\Windows Live SkyDrive
2009-03-01 16:22:33 ----D---- C:\Program Files\Windows Live
2009-03-01 16:17:02 ----D---- C:\Program Files\Common Files\Windows Live
2009-02-27 03:01:15 ----A---- C:\Windows\system32\msshooks.dll
2009-02-27 03:01:14 ----A---- C:\Windows\system32\msscb.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\thawbrkr.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\SearchFilterHost.exe
2009-02-27 03:01:08 ----A---- C:\Windows\system32\propsys.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\propdefs.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\msstrc.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\mssprxy.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\mssitlb.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\msshsq.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\korwbrkr.dll
2009-02-27 03:01:07 ----A---- C:\Windows\system32\wsepno.dll
2009-02-27 03:01:07 ----A---- C:\Windows\system32\srchadmin.dll
2009-02-27 03:01:07 ----A---- C:\Windows\system32\rtffilt.dll
2009-02-27 03:01:07 ----A---- C:\Windows\system32\offfilt.dll
2009-02-27 03:01:07 ----A---- C:\Windows\system32\mimefilt.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\xmlfilter.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\tquery.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2009-02-27 03:01:06 ----A---- C:\Windows\system32\SearchIndexer.exe
2009-02-27 03:01:06 ----A---- C:\Windows\system32\nlhtml.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\mssrch.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\msscntrs.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\chtbrkr.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\chsbrkr.dll
2009-02-27 03:01:05 ----A---- C:\Windows\system32\mssvp.dll
2009-02-27 03:01:05 ----A---- C:\Windows\system32\mssphtb.dll
2009-02-27 03:01:05 ----A---- C:\Windows\system32\mssph.dll
2009-02-26 12:02:06 ----D---- C:\Users\Gnawy\AppData\Roaming\WinRAR
2009-02-26 12:01:38 ----D---- C:\Program Files\WinRAR
2009-02-26 11:08:24 ----D---- C:\Users\Gnawy\AppData\Roaming\DivX
2009-02-26 09:36:10 ----A---- C:\Windows\system32\rpcrt4.dll
2009-02-26 09:36:09 ----A---- C:\Windows\system32\pacerprf.dll
2009-02-26 09:35:37 ----A---- C:\Windows\system32\wersvc.dll
2009-02-26 09:35:37 ----A---- C:\Windows\system32\Faultrep.dll
2009-02-26 09:35:22 ----A---- C:\Windows\system32\emdmgmt.dll
2009-02-26 09:35:22 ----A---- C:\Windows\system32\dataclen.dll
2009-02-26 09:35:21 ----A---- C:\Windows\system32\cdd.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\wshext.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\wscript.exe
2009-02-26 09:35:17 ----A---- C:\Windows\system32\vbscript.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\scrrun.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\scrobj.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\jscript.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\cscript.exe
2009-02-26 09:28:25 ----D---- C:\Program Files\Common Files\PX Storage Engine
2009-02-26 09:27:55 ----D---- C:\Program Files\DivX
2009-02-26 08:13:54 ----D---- C:\Program Files\Common Files\Adobe AIR
2009-02-26 08:11:32 ----D---- C:\Program Files\Common Files\Adobe
2009-02-26 08:11:32 ----D---- C:\Program Files\Adobe
2009-02-26 08:10:44 ----SHD---- C:\Config.Msi
2009-02-26 08:06:56 ----D---- C:\ProgramData\NOS
2009-02-26 08:06:56 ----D---- C:\Program Files\NOS
2009-02-25 21:09:12 ----D---- C:\PerfLogs
2009-02-23 00:27:25 ----A---- C:\Windows\system32\SLsvc.exe
2009-02-23 00:27:25 ----A---- C:\Windows\system32\onex.dll
2009-02-23 00:27:10 ----A---- C:\Windows\system32\PSHED.DLL
2009-02-23 00:27:08 ----A---- C:\Windows\system32\imagesp1.dll
2009-02-23 00:27:05 ----A---- C:\Windows\system32\pidgenx.dll
2009-02-23 00:27:05 ----A---- C:\Windows\system32\dfsr.exe
2009-02-23 00:27:04 ----A---- C:\Windows\system32\sstpsvc.dll
2009-02-23 00:27:04 ----A---- C:\Windows\system32\mstscax.dll
2009-02-23 00:27:02 ----A---- C:\Windows\system32\WsmSvc.dll
2009-02-23 00:27:02 ----A---- C:\Windows\system32\winrscmd.dll
2009-02-23 00:27:01 ----A---- C:\Windows\system32\sysmain.dll
2009-02-23 00:27:00 ----A---- C:\Windows\system32\vssapi.dll
2009-02-23 00:27:00 ----A---- C:\Windows\system32\RMActivate.exe
2009-02-23 00:26:59 ----A---- C:\Windows\system32\VSSVC.exe
2009-02-23 00:26:58 ----A---- C:\Windows\system32\secproc.dll
2009-02-23 00:26:58 ----A---- C:\Windows\system32\RMActivate_isv.exe
2009-02-23 00:26:57 ----A---- C:\Windows\system32\iesetup.dll
2009-02-23 00:26:54 ----A---- C:\Windows\system32\secproc_isv.dll
2009-02-23 00:26:52 ----A---- C:\Windows\system32\drmv2clt.dll
2009-02-23 00:26:50 ----A---- C:\Windows\system32\xpssvcs.dll
2009-02-23 00:26:50 ----A---- C:\Windows\system32\blackbox.dll
2009-02-23 00:26:49 ----A---- C:\Windows\system32\RacEngn.dll
2009-02-23 00:26:48 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2009-02-23 00:26:48 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2009-02-23 00:26:48 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2009-02-23 00:26:47 ----A---- C:\Windows\system32\spwizimg.dll
2009-02-23 00:26:47 ----A---- C:\Windows\system32\rdpencom.dll
2009-02-23 00:26:46 ----A---- C:\Windows\system32\lpremove.exe
2009-02-23 00:26:46 ----A---- C:\Windows\bfsvc.exe
2009-02-23 00:26:45 ----A---- C:\Windows\system32\ntdll.dll
2009-02-23 00:26:45 ----A---- C:\Windows\system32\msjet40.dll
2009-02-23 00:26:45 ----A---- C:\Windows\system32\lsasrv.dll
2009-02-23 00:26:44 ----A---- C:\Windows\system32\qmgr.dll
2009-02-23 00:26:44 ----A---- C:\Windows\system32\localspl.dll
2009-02-23 00:26:43 ----A---- C:\Windows\system32\wevtsvc.dll
2009-02-23 00:26:43 ----A---- C:\Windows\system32\IKEEXT.DLL
2009-02-23 00:26:42 ----A---- C:\Windows\system32\wcncsvc.dll
2009-02-23 00:26:42 ----A---- C:\Windows\system32\TsWpfWrp.exe
2009-02-23 00:26:42 ----A---- C:\Windows\system32\recdisc.exe
2009-02-23 00:26:42 ----A---- C:\Windows\system32\kernel32.dll
2009-02-23 00:26:41 ----A---- C:\Windows\system32\vds.exe
2009-02-23 00:26:41 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
2009-02-23 00:26:38 ----A---- C:\Windows\system32\wcnwiz.dll
2009-02-23 00:26:38 ----A---- C:\Windows\system32\SMBHelperClass.dll
2009-02-23 00:26:38 ----A---- C:\Windows\system32\msvbvm60.dll
2009-02-23 00:26:38 ----A---- C:\Windows\system32\mstsc.exe
2009-02-23 00:26:37 ----A---- C:\Windows\system32\msdtctm.dll
2009-02-23 00:26:36 ----A---- C:\Windows\system32\termsrv.dll
2009-02-23 00:26:36 ----A---- C:\Windows\system32\advapi32.dll
2009-02-23 00:26:35 ----A---- C:\Windows\system32\kerberos.dll
2009-02-23 00:26:35 ----A---- C:\Windows\system32\IMJP10K.DLL
2009-02-23 00:26:34 ----A---- C:\Windows\system32\MSMPEG2ADEC.DLL
2009-02-23 00:26:34 ----A---- C:\Windows\system32\mmcndmgr.dll
2009-02-23 00:26:34 ----A---- C:\Windows\system32\CertEnroll.dll
2009-02-23 00:26:33 ----A---- C:\Windows\system32\xolehlp.dll
2009-02-23 00:26:33 ----A---- C:\Windows\system32\Query.dll
2009-02-23 00:26:33 ----A---- C:\Windows\system32\msdtcprx.dll
2009-02-23 00:26:33 ----A---- C:\Windows\system32\MPSSVC.dll
2009-02-23 00:26:32 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2009-02-23 00:26:32 ----A---- C:\Windows\system32\ole32.dll
2009-02-23 00:26:32 ----A---- C:\Windows\system32\netlogon.dll
2009-02-23 00:26:31 ----A---- C:\Windows\system32\msvcrt.dll
2009-02-23 00:26:30 ----A---- C:\Windows\system32\SSShim.dll
2009-02-23 00:26:30 ----A---- C:\Windows\system32\nlmgp.dll
2009-02-23 00:26:30 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2009-02-23 00:26:30 ----A---- C:\Windows\system32\DfsShlEx.dll
2009-02-23 00:26:29 ----A---- C:\Windows\system32\shlwapi.dll
2009-02-23 00:26:29 ----A---- C:\Windows\system32\sdclt.exe
2009-02-23 00:26:29 ----A---- C:\Windows\system32\schedsvc.dll
2009-02-23 00:26:29 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2009-02-23 00:26:29 ----A---- C:\Windows\system32\milcore.dll
2009-02-23 00:26:29 ----A---- C:\Windows\system32\IasMigPlugin.dll
2009-02-23 00:26:28 ----A---- C:\Windows\system32\wer.dll
2009-02-23 00:26:28 ----A---- C:\Windows\system32\vdsdyn.dll
2009-02-23 00:26:28 ----A---- C:\Windows\system32\user32.dll
2009-02-23 00:26:28 ----A---- C:\Windows\system32\clusapi.dll
2009-02-23 00:26:27 ----A---- C:\Windows\system32\WSDApi.dll
2009-02-23 00:26:27 ----A---- C:\Windows\system32\QAGENTRT.DLL
2009-02-23 00:26:27 ----A---- C:\Windows\system32\diagperf.dll
2009-02-23 00:26:27 ----A---- C:\Windows\system32\d3d9.dll
2009-02-23 00:26:26 ----A---- C:\Windows\system32\winrsmgr.dll
2009-02-23 00:26:26 ----A---- C:\Windows\system32\mmc.exe
2009-02-23 00:26:25 ----A---- C:\Windows\system32\mtxclu.dll
2009-02-23 00:26:24 ----A---- C:\Windows\system32\vdsbas.dll
2009-02-23 00:26:24 ----A---- C:\Windows\system32\swprv.dll
2009-02-23 00:26:24 ----A---- C:\Windows\system32\SLC.dll
2009-02-23 00:26:23 ----A---- C:\Windows\system32\msi.dll
2009-02-23 00:26:23 ----A---- C:\Windows\system32\comctl32.dll
2009-02-23 00:26:22 ----A---- C:\Windows\system32\MSVidCtl.dll
2009-02-23 00:26:22 ----A---- C:\Windows\system32\msdtckrm.dll
2009-02-23 00:26:22 ----A---- C:\Windows\system32\gpsvc.dll
2009-02-23 00:26:21 ----A---- C:\Windows\system32\XPSSHHDR.dll
2009-02-23 00:26:21 ----A---- C:\Windows\system32\sbe.dll
2009-02-23 00:26:21 ----A---- C:\Windows\system32\samsrv.dll
2009-02-23 00:26:21 ----A---- C:\Windows\system32\mfc42u.dll
2009-02-23 00:26:21 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2009-02-23 00:26:20 ----A---- C:\Windows\system32\wecutil.exe
2009-02-23 00:26:20 ----A---- C:\Windows\system32\usp10.dll
2009-02-23 00:26:20 ----A---- C:\Windows\system32\sdengin2.dll
2009-02-23 00:26:20 ----A---- C:\Windows\system32\esent.dll
2009-02-23 00:26:19 ----A---- C:\Windows\system32\mfc42.dll
2009-02-23 00:26:19 ----A---- C:\Windows\system32\gacinstall.dll
2009-02-23 00:26:19 ----A---- C:\Windows\system32\cmipnpinstall.dll
2009-02-23 00:26:19 ----A---- C:\Windows\system32\cmicryptinstall.dll
2009-02-23 00:26:18 ----A---- C:\Windows\system32\crypt32.dll
2009-02-23 00:26:18 ----A---- C:\Windows\system32\comsvcs.dll
2009-02-23 00:26:17 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2009-02-23 00:26:17 ----A---- C:\Windows\system32\mswsock.dll
2009-02-23 00:26:17 ----A---- C:\Windows\system32\certutil.exe
2009-02-23 00:26:16 ----A---- C:\Windows\system32\wmdrmsdk.dll
2009-02-23 00:26:16 ----A---- C:\Windows\system32\oleaut32.dll
2009-02-23 00:26:16 ----A---- C:\Windows\system32\FirewallAPI.dll
2009-02-23 00:26:15 ----A---- C:\Windows\system32\wecsvc.dll
2009-02-23 00:26:15 ----A---- C:\Windows\system32\sqlceqp30.dll
2009-02-23 00:26:15 ----A---- C:\Windows\system32\setupapi.dll
2009-02-23 00:26:15 ----A---- C:\Windows\system32\lsm.exe
2009-02-23 00:26:15 ----A---- C:\Windows\system32\bcrypt.dll
2009-02-23 00:26:14 ----A---- C:\Windows\system32\sdohlp.dll
2009-02-23 00:26:14 ----A---- C:\Windows\system32\msv1_0.dll
2009-02-23 00:26:14 ----A---- C:\Windows\system32\iphlpsvc.dll
2009-02-23 00:26:14 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2009-02-23 00:26:13 ----A---- C:\Windows\system32\thumbcache.dll
2009-02-23 00:26:13 ----A---- C:\Windows\system32\p2psvc.dll
2009-02-23 00:26:13 ----A---- C:\Windows\system32\eapp3hst.dll
2009-02-23 00:26:12 ----A---- C:\Windows\system32\wmpmde.dll
2009-02-23 00:26:12 ----A---- C:\Windows\system32\riched20.dll
2009-02-23 00:26:12 ----A---- C:\Windows\system32\mcmde.dll
2009-02-23 00:26:12 ----A---- C:\Windows\system32\autofmt.exe
2009-02-23 00:26:11 ----A---- C:\Windows\system32\WinSAT.exe
2009-02-23 00:26:11 ----A---- C:\Windows\system32\vdsutil.dll
2009-02-23 00:26:11 ----A---- C:\Windows\system32\imapi2fs.dll
2009-02-23 00:26:11 ----A---- C:\Windows\system32\d3d10_1.dll
2009-02-23 00:26:11 ----A---- C:\Windows\system32\autoconv.exe
2009-02-23 00:26:11 ----A---- C:\Windows\system32\autochk.exe
2009-02-23 00:26:11 ----A---- C:\Windows\system32\authui.dll
2009-02-23 00:26:11 ----A---- C:\Windows\system32\authfwcfg.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\wevtapi.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\dmvdsitf.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\d3d10_1core.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\comuid.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\comdlg32.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\browseui.dll
2009-02-23 00:26:09 ----A---- C:\Windows\system32\WSDMon.dll
2009-02-23 00:26:09 ----A---- C:\Windows\system32\eapphost.dll
2009-02-23 00:26:08 ----A---- C:\Windows\system32\wevtfwd.dll
2009-02-23 00:26:08 ----A---- C:\Windows\system32\uexfat.dll
2009-02-23 00:26:08 ----A---- C:\Windows\system32\rasmans.dll
2009-02-23 00:26:07 ----A---- C:\Windows\system32\untfs.dll
2009-02-23 00:26:07 ----A---- C:\Windows\system32\sqlcese30.dll
2009-02-23 00:26:07 ----A---- C:\Windows\system32\iassam.dll
2009-02-23 00:26:07 ----A---- C:\Windows\system32\eappcfg.dll
2009-02-23 00:26:07 ----A---- C:\Windows\system32\DfrgNtfs.exe
2009-02-23 00:26:06 ----A---- C:\Windows\system32\wlansvc.dll
2009-02-23 00:26:06 ----A---- C:\Windows\system32\whealogr.dll
2009-02-23 00:26:06 ----A---- C:\Windows\system32\pcaui.dll
2009-02-23 00:26:05 ----A---- C:\Windows\system32\dot3svc.dll
2009-02-23 00:26:03 ----A---- C:\Windows\system32\rdpwsx.dll
2009-02-23 00:26:03 ----A---- C:\Windows\system32\mssha.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\zipfldr.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\WsmAuto.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\winhttp.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\msdrm.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\evr.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\dfrgui.exe
2009-02-23 00:26:01 ----A---- C:\Windows\system32\rpcss.dll
2009-02-23 00:26:01 ----A---- C:\Windows\system32\rasppp.dll
2009-02-23 00:26:01 ----A---- C:\Windows\system32\nlasvc.dll
2009-02-23 00:26:01 ----A---- C:\Windows\system32\ncrypt.dll
2009-02-23 00:26:01 ----A---- C:\Windows\system32\BFE.DLL
2009-02-23 00:26:00 ----A---- C:\Windows\system32\wmdrmdev.dll
2009-02-23 00:26:00 ----A---- C:\Windows\system32\msrepl40.dll
2009-02-23 00:26:00 ----A---- C:\Windows\system32\ddraw.dll
2009-02-23 00:26:00 ----A---- C:\Windows\system32\audiosrv.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\WsmWmiPl.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\WebClnt.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\themecpl.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\rastls.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\printui.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\objsel.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2009-02-23 00:25:58 ----A---- C:\Windows\system32\QAGENT.DLL
2009-02-23 00:25:58 ----A---- C:\Windows\system32\iasnap.dll
2009-02-23 00:25:58 ----A---- C:\Windows\system32\dbghelp.dll
2009-02-23 00:25:57 ----A---- C:\Windows\system32\w32time.dll
2009-02-23 00:25:57 ----A---- C:\Windows\system32\sqlsrv32.dll
2009-02-23 00:25:57 ----A---- C:\Windows\system32\icm32.dll
2009-02-23 00:25:56 ----A---- C:\Windows\system32\wmdrmnet.dll
2009-02-23 00:25:56 ----A---- C:\Windows\system32\WerFaultSecure.exe
2009-02-23 00:25:56 ----A---- C:\Windows\system32\ncryptui.dll
2009-02-23 00:25:56 ----A---- C:\Windows\system32\iprtrmgr.dll
2009-02-23 00:25:56 ----A---- C:\Windows\system32\azroles.dll
2009-02-23 00:25:55 ----A---- C:\Windows\system32\spoolss.dll
2009-02-23 00:25:55 ----A---- C:\Windows\system32\msctf.dll
2009-02-23 00:25:54 ----A---- C:\Windows\system32\wlangpui.dll
2009-02-23 00:25:54 ----A---- C:\Windows\system32\winsrv.dll
2009-02-23 00:25:54 ----A---- C:\Windows\system32\taskschd.dll
2009-02-23 00:25:54 ----A---- C:\Windows\system32\mstlsapi.dll
2009-02-23 00:25:54 ----A---- C:\Windows\system32\bcdedit.exe
2009-02-23 00:25:54 ----A---- C:\Windows\system32\basecsp.dll
2009-02-23 00:25:53 ----A---- C:\Windows\system32\winsta.dll
2009-02-23 00:25:53 ----A---- C:\Windows\system32\scksp.dll
2009-02-23 00:25:53 ----A---- C:\Windows\system32\netprofm.dll
2009-02-23 00:25:53 ----A---- C:\Windows\system32\dbgeng.dll
2009-02-23 00:25:53 ----A---- C:\Windows\system32\AudioEng.dll
2009-02-23 00:25:52 ----A---- C:\Windows\system32\rsaenh.dll
2009-02-23 00:25:52 ----A---- C:\Windows\system32\netcfgx.dll
2009-02-23 00:25:51 ----A---- C:\Windows\system32\winlogon.exe
2009-02-23 00:25:51 ----A---- C:\Windows\system32\wercon.exe
2009-02-23 00:25:51 ----A---- C:\Windows\system32\taskcomp.dll
2009-02-23 00:25:51 ----A---- C:\Windows\system32\lpksetup.exe
2009-02-23 00:25:51 ----A---- C:\Windows\system32\cdosys.dll
2009-02-23 00:25:50 ----A---- C:\Windows\system32\wlansec.dll
2009-02-23 00:25:50 ----A---- C:\Windows\system32\msdtcuiu.dll
2009-02-23 00:25:50 ----A---- C:\Windows\system32\apds.dll
2009-02-23 00:25:49 ----A---- C:\Windows\system32\mprddm.dll
2009-02-23 00:25:49 ----A---- C:\Windows\system32\iasrad.dll
2009-02-23 00:25:49 ----A---- C:\Windows\system32\eapsvc.dll
2009-02-23 00:25:49 ----A---- C:\Windows\system32\certcli.dll
2009-02-23 00:25:49 ----A---- C:\Windows\system32\AUDIOKSE.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\uDWM.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\tsgqec.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\shdocvw.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\certmgr.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\bcdsrv.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\aaclient.dll
2009-02-23 00:25:47 ----A---- C:\Windows\system32\Wldap32.dll
2009-02-23 00:25:47 ----A---- C:\Windows\system32\msidcrl30.dll
2009-02-23 00:25:47 ----A---- C:\Windows\system32\dnsapi.dll
2009-02-23 00:25:46 ----A---- C:\Windows\system32\WMVDECOD.DLL
2009-02-23 00:25:46 ----A---- C:\Windows\system32\umpnpmgr.dll
2009-02-23 00:25:46 ----A---- C:\Windows\system32\pla.dll
2009-02-23 00:25:45 ----A---- C:\Windows\system32\netshell.dll
2009-02-23 00:25:45 ----A---- C:\Windows\system32\dxgi.dll
2009-02-23 00:25:45 ----A---- C:\Windows\system32\dot3gpui.dll
2009-02-23 00:25:44 ----A---- C:\Windows\system32\wmicmiplugin.dll
2009-02-23 00:25:44 ----A---- C:\Windows\system32\ntprint.dll
2009-02-23 00:25:43 ----A---- C:\Windows\system32\shsvcs.dll
2009-02-23 00:25:43 ----A---- C:\Windows\system32\MMDevAPI.dll
2009-02-23 00:25:43 ----A---- C:\Windows\system32\cryptnet.dll
2009-02-23 00:25:43 ----A---- C:\Windows\system32\comsnap.dll
2009-02-23 00:25:42 ----A---- C:\Windows\system32\winmm.dll
2009-02-23 00:25:42 ----A---- C:\Windows\system32\services.exe
2009-02-23 00:25:41 ----A---- C:\Windows\system32\wscsvc.dll
2009-02-23 00:25:41 ----A---- C:\Windows\system32\wscisvif.dll
2009-02-23 00:25:41 ----A---- C:\Windows\system32\synceng.dll
2009-02-23 00:25:41 ----A---- C:\Windows\system32\pnidui.dll
2009-02-23 00:25:41 ----A---- C:\Windows\system32\cmifw.dll
2009-02-23 00:25:40 ----A---- C:\Windows\system32\taskeng.exe
2009-02-23 00:25:40 ----A---- C:\Windows\system32\msjtes40.dll
2009-02-23 00:25:40 ----A---- C:\Windows\system32\msconfig.exe
2009-02-23 00:25:40 ----A---- C:\Windows\system32\iassdo.dll
2009-02-23 00:25:40 ----A---- C:\Windows\system32\cipher.exe
2009-02-23 00:25:39 ----A---- C:\Windows\system32\WMVSDECD.DLL
2009-02-23 00:25:35 ----A---- C:\Windows\system32\tdh.dll
2009-02-23 00:25:35 ----A---- C:\Windows\system32\rasapi32.dll
2009-02-23 00:25:35 ----A---- C:\Windows\system32\imapi2.dll
2009-02-23 00:25:34 ----A---- C:\Windows\system32\uxtheme.dll
2009-02-23 00:25:34 ----A---- C:\Windows\system32\SessEnv.dll
2009-02-23 00:25:34 ----A---- C:\Windows\system32\dot3api.dll
2009-02-23 00:25:34 ----A---- C:\Windows\system32\dmdskmgr.dll
2009-02-23 00:25:34 ----A---- C:\Windows\system32\cmd.exe
2009-02-23 00:25:34 ----A---- C:\Windows\system32\cbsra.exe
2009-02-23 00:25:34 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2009-02-23 00:25:33 ----A---- C:\Windows\system32\wkssvc.dll
2009-02-23 00:25:33 ----A---- C:\Windows\system32\wevtutil.exe
2009-02-23 00:25:33 ----A---- C:\Windows\system32\srvsvc.dll
2009-02-23 00:25:33 ----A---- C:\Windows\system32\qdvd.dll
2009-02-23 00:25:33 ----A---- C:\Windows\system32\msscp.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\WUDFx.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\wlanmsm.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\wlancfg.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\mshtmled.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\msdtcVSp1res.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\loadperf.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\diskpart.exe
2009-02-23 00:25:32 ----A---- C:\Windows\system32\comres.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\wlanapi.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\rpchttp.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\rdpdd.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\localsec.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\hnetcfg.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\fontext.dll
2009-02-23 00:25:30 ----A---- C:\Windows\system32\wsqmcons.exe
2009-02-23 00:25:30 ----A---- C:\Windows\system32\WMADMOD.DLL
2009-02-23 00:25:30 ----A---- C:\Windows\system32\wlanpref.dll
2009-02-23 00:25:30 ----A---- C:\Windows\system32\WinSATAPI.dll
2009-02-23 00:25:30 ----A---- C:\Windows\system32\NAPMONTR.DLL
2009-02-23 00:25:30 ----A---- C:\Windows\system32\dsound.dll
2009-02-23 00:25:29 ----A---- C:\Windows\system32\RDPENCDD.dll
2009-02-23 00:25:29 ----A---- C:\Windows\system32\profprov.dll
2009-02-23 00:25:29 ----A---- C:\Windows\system32\filemgmt.dll
2009-02-23 00:25:29 ----A---- C:\Windows\system32\avifil32.dll
2009-02-23 00:25:28 ----A---- C:\Windows\system32\wsecedit.dll
2009-02-23 00:25:28 ----A---- C:\Windows\system32\tracerpt.exe
2009-02-23 00:25:28 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2009-02-23 00:25:28 ----A---- C:\Windows\system32\SLCommDlg.dll
2009-02-23 00:25:28 ----A---- C:\Windows\system32\MuiUnattend.exe
2009-02-23 00:25:28 ----A---- C:\Windows\system32\dnsrslvr.dll
2009-02-23 00:25:28 ----A---- C:\Windows\system32\dhcpcsvc.dll
2009-02-23 00:25:27 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2009-02-23 00:25:27 ----A---- C:\Windows\system32\P2PGraph.dll
2009-02-23 00:25:27 ----A---- C:\Windows\system32\dwmredir.dll
2009-02-23 00:25:27 ----A---- C:\Windows\system32\dwm.exe
2009-02-23 00:25:27 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2009-02-23 00:25:27 ----A---- C:\Windows\system32\apphelp.dll
2009-02-23 00:25:26 ----A---- C:\Windows\system32\wininit.exe
2009-02-23 00:25:26 ----A---- C:\Windows\system32\spp.dll
2009-02-23 00:25:26 ----A---- C:\Windows\system32\rasdlg.dll
2009-02-23 00:25:26 ----A---- C:\Windows\system32\QSHVHOST.DLL
2009-02-23 00:25:26 ----A---- C:\Windows\system32\iassvcs.dll
2009-02-23 00:25:26 ----A---- C:\Windows\system32\gpresult.exe
2009-02-23 00:25:26 ----A---- C:\Windows\system32\azroleui.dll
2009-02-23 00:25:25 ----A---- C:\Windows\system32\mcbuilder.exe
2009-02-23 00:25:25 ----A---- C:\Windows\system32\iashost.exe
2009-02-23 00:25:25 ----A---- C:\Windows\HelpPane.exe
2009-02-23 00:25:24 ----A---- C:\Windows\system32\wecapi.dll
2009-02-23 00:25:24 ----A---- C:\Windows\system32\srrstr.dll
2009-02-23 00:25:24 ----A---- C:\Windows\system32\spwizeng.dll
2009-02-23 00:25:24 ----A---- C:\Windows\system32\SLUI.exe
2009-02-23 00:25:24 ----A---- C:\Windows\system32\rasmontr.dll
2009-02-23 00:25:24 ----A---- C:\Windows\system32\lltdsvc.dll
2009-02-23 00:25:23 ----A---- C:\Windows\system32\unbcl.dll
2009-02-23 00:25:23 ----A---- C:\Windows\system32\tcpmon.dll
2009-02-23 00:25:23 ----A---- C:\Windows\system32\shrink.dll
2009-02-23 00:25:23 ----A---- C:\Windows\system32\msra.exe
2009-02-23 00:25:23 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2009-02-23 00:25:23 ----A---- C:\Windows\system32\gpedit.dll
2009-02-23 00:25:23 ----A---- C:\Windows\system32\brcpl.dll
2009-02-23 00:25:22 ----A---- C:\Windows\system32\WMPEncEn.dll
2009-02-23 00:25:22 ----A---- C:\Windows\system32\oleacc.dll
2009-02-23 00:25:22 ----A---- C:\Windows\system32\msdri.dll
2009-02-23 00:25:22 ----A---- C:\Windows\system32\iashlpr.dll
2009-02-23 00:25:21 ----A---- C:\Windows\system32\regsvc.dll
2009-02-23 00:25:21 ----A---- C:\Windows\system32\raschap.dll
2009-02-23 00:25:21 ----A---- C:\Windows\system32\framedynos.dll
2009-02-23 00:25:20 ----A---- C:\Windows\system32\vsstrace.dll
2009-02-23 00:25:20 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2009-02-23 00:25:20 ----A---- C:\Windows\system32\ntvdm.exe
2009-02-23 00:25:20 ----A---- C:\Windows\system32\ipsmsnap.dll
2009-02-23 00:25:20 ----A---- C:\Windows\system32\fdWSD.dll
2009-02-23 00:25:20 ----A---- C:\Windows\system32\advpack.dll
2009-02-23 00:25:19 ----A---- C:\Windows\system32\wpdshext.dll
2009-02-23 00:25:19 ----A---- C:\Windows\system32\wdc.dll
2009-02-23 00:25:19 ----A---- C:\Windows\system32\ntlanman.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\Storprop.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\NetProjW.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\netman.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\l2nacp.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\iedkcs32.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\ieapfltr.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\framedyn.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\dssenh.dll
2009-02-23 00:25:17 ----A---- C:\Windows\system32\WlanMM.dll
2009-02-23 00:25:17 ----A---- C:\Windows\system32\tcpipcfg.dll
2009-02-23 00:25:17 ----A---- C:\Windows\system32\sxs.dll
2009-02-23 00:25:17 ----A---- C:\Windows\system32\profsvc.dll
2009-02-23 00:25:17 ----A---- C:\Windows\system32\KMSVC.DLL
2009-02-23 00:25:17 ----A---- C:\Windows\system32\certreq.exe
2009-02-23 00:25:17 ----A---- C:\Windows\system32\adsnt.dll
2009-02-23 00:25:16 ----A---- C:\Windows\system32\WsmProv.dll
2009-02-23 00:25:16 ----A---- C:\Windows\system32\wlanhlp.dll
2009-02-23 00:25:16 ----A---- C:\Windows\system32\WLanConn.dll
2009-02-23 00:25:16 ----A---- C:\Windows\system32\IPBusEnum.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\wusa.exe
2009-02-23 00:25:15 ----A---- C:\Windows\system32\WUDFHost.exe
2009-02-23 00:25:15 ----A---- C:\Windows\system32\WerFault.exe
2009-02-23 00:25:15 ----A---- C:\Windows\system32\VAN.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\userenv.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\umb.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\ncsi.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\ie4uinit.exe
2009-02-23 00:25:15 ----A---- C:\Windows\system32\fundisc.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\catsrvut.dll
2009-02-23 00:25:14 ----A---- C:\Windows\system32\puiobj.dll
2009-02-23 00:25:14 ----A---- C:\Windows\system32\netid.dll
2009-02-23 00:25:14 ----A---- C:\Windows\system32\dps.dll
2009-02-23 00:25:14 ----A---- C:\Windows\system32\cryptui.dll
2009-02-23 00:25:13 ----A---- C:\Windows\system32\photowiz.dll
2009-02-23 00:25:13 ----A---- C:\Windows\system32\netcenter.dll
2009-02-23 00:25:13 ----A---- C:\Windows\system32\MdSched.exe
2009-02-23 00:25:13 ----A---- C:\Windows\system32\InkEd.dll
2009-02-23 00:25:12 ----A---- C:\Windows\system32\WinSCard.dll
2009-02-23 00:25:12 ----A---- C:\Windows\system32\spbcd.dll
2009-02-23 00:25:12 ----A---- C:\Windows\system32\ipsecsnp.dll
2009-02-23 00:25:11 ----A---- C:\Windows\system32\ws2_32.dll
2009-02-23 00:25:11 ----A---- C:\Windows\system32\winrs.exe
2009-02-23 00:25:11 ----A---- C:\Windows\system32\secur32.dll
2009-02-23 00:25:11 ----A---- C:\Windows\system32\odbcjt32.dll
2009-02-23 00:25:11 ----A---- C:\Windows\system32\ntdsapi.dll
2009-02-23 00:25:11 ----A---- C:\Windows\system32\msinfo32.exe
2009-02-23 00:25:10 ----A---- C:\Windows\system32\prnntfy.dll
2009-02-23 00:25:10 ----A---- C:\Windows\system32\NAPSTAT.EXE
2009-02-23 00:25:10 ----A---- C:\Windows\system32\mblctr.exe
2009-02-23 00:25:10 ----A---- C:\Windows\system32\cryptsvc.dll
2009-02-23 00:25:09 ----A---- C:\Windows\system32\schtasks.exe
2009-02-23 00:25:09 ----A---- C:\Windows\system32\RelMon.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\pdh.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\netdiagfx.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\iasacct.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\dmdlgs.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\dhcpsapi.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\catsrv.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\activeds.dll
2009-02-23 00:25:07 ----A---- C:\Windows\system32\wvc.dll
2009-02-23 00:25:07 ----A---- C:\Windows\system32\winrm.vbs
2009-02-23 00:25:07 ----A---- C:\Windows\system32\TSpkg.dll
2009-02-23 00:25:07 ----A---- C:\Windows\system32\qwave.dll
2009-02-23 00:25:07 ----A---- C:\Windows\system32\FirewallControlPanel.exe
2009-02-23 00:25:07 ----A---- C:\Windows\system32\fdWCN.dll
2009-02-23 00:25:07 ----A---- C:\Windows\system32\dfrgfat.exe
2009-02-23 00:25:06 ----A---- C:\Windows\system32\rastapi.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\netcorehc.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\NAPHLPR.DLL
2009-02-23 00:25:06 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2009-02-23 00:25:06 ----A---- C:\Windows\system32\msacm32.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\ifmon.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\dot3msm.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\dot3cfg.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\AudioSes.dll
2009-02-23 00:25:05 ----A---- C:\Windows\system32\wow32.dll
2009-02-23 00:25:05 ----A---- C:\Windows\system32\shsetup.dll
2009-02-23 00:25:05 ----A---- C:\Windows\system32\adsldp.dll
2009-02-23 00:25:04 ----A---- C:\Windows\system32\els.dll
2009-02-23 00:25:03 ----A---- C:\Windows\system32\wscntfy.dll
2009-02-23 00:25:03 ----A---- C:\Windows\system32\QUTIL.DLL
2009-02-23 00:25:03 ----A---- C:\Windows\system32\ntshrui.dll
2009-02-23 00:25:03 ----A---- C:\Windows\system32\msdt.dll
2009-02-23 00:25:03 ----A---- C:\Windows\system32\iasdatastore.dll
2009-02-23 00:25:03 ----A---- C:\Windows\system32\clbcatq.dll
2009-02-23 00:25:02 ----A---- C:\Windows\system32\stobject.dll
2009-02-23 00:25:02 ----A---- C:\Windows\system32\sdrsvc.dll
2009-02-23 00:25:02 ----A---- C:\Windows\system32\net1.exe
2009-02-23 00:25:02 ----A---- C:\Windows\system32\ipnathlp.dll
2009-02-23 00:25:02 ----A---- C:\Windows\system32\iasrecst.dll
2009-02-23 00:25:02 ----A---- C:\Windows\system32\fdSSDP.dll
2009-02-23 00:25:01 ----A---- C:\Windows\system32\wlgpclnt.dll
2009-02-23 00:25:01 ----A---- C:\Windows\system32\wlanui.dll
2009-02-23 00:25:01 ----A---- C:\Windows\system32\dsprop.dll
2009-02-23 00:25:01 ----A---- C:\Windows\system32\Defrag.exe
2009-02-23 00:25:01 ----A---- C:\Windows\system32\adsldpc.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\upnphost.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\systemcpl.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\smss.exe
2009-02-23 00:25:00 ----A---- C:\Windows\system32\rasman.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\nci.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\mprmsg.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\ActiveContentWizard.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\t2embed.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\rascfg.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\PresentationSettings.exe
2009-02-23 00:24:59 ----A---- C:\Windows\system32\P2P.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\oleprn.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\msftedit.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2009-02-23 00:24:59 ----A---- C:\Windows\system32\loghours.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\fde.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\CompatUI.dll
2009-02-23 00:24:58 ----A---- C:\Windows\system32\MigAutoPlay.exe
2009-02-23 00:24:58 ----A---- C:\Windows\system32\L2SecHC.dll
2009-02-23 00:24:58 ----A---- C:\Windows\system32\dxdiag.exe
2009-02-23 00:24:57 ----A---- C:\Windows\system32\Wpc.dll
2009-02-23 00:24:57 ----A---- C:\Windows\system32\wdigest.dll
2009-02-23 00:24:57 ----A---- C:\Windows\system32\DFDWiz.exe
2009-02-23 00:24:57 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2009-02-23 00:24:56 ----A---- C:\Windows\system32\setupcl.exe
2009-02-23 00:24:56 ----A---- C:\Windows\system32\rtm.dll
2009-02-23 00:24:56 ----A---- C:\Windows\system32\msutb.dll
2009-02-23 00:24:56 ----A---- C:\Windows\system32\mprdim.dll
2009-02-23 00:24:56 ----A---- C:\Windows\system32\gpapi.dll
2009-02-23 00:24:56 ----A---- C:\Windows\system32\devmgr.dll
2009-02-23 00:24:55 ----A---- C:\Windows\system32\wiaservc.dll
2009-02-23 00:24:55 ----A---- C:\Windows\system32\scansetting.dll
2009-02-23 00:24:55 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2009-02-23 00:24:54 ----A---- C:\Windows\system32\wdi.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\msihnd.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\kdusb.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\ifsutil.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\dimsroam.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\CertEnrollUI.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\actxprxy.dll
2009-02-23 00:24:53 ----A---- C:\Windows\system32\wscapi.dll
2009-02-23 00:24:53 ----A---- C:\Windows\system32\WinFXDocObj.exe
2009-02-23 00:24:53 ----A---- C:\Windows\system32\usbmon.dll
2009-02-23 00:24:53 ----A---- C:\Windows\system32\spoolsv.exe
2009-02-23 00:24:53 ----A---- C:\Windows\system32\mswmdm.dll
2009-02-23 00:24:53 ----A---- C:\Windows\system32\imagehlp.dll
2009-02-23 00:24:53 ----A---- C:\Windows\system32\BOOTVID.DLL
2009-02-23 00:24:53 ----A---- C:\Windows\system32\audiodg.exe
2009-02-23 00:24:52 ----A---- C:\Windows\system32\wlandlg.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\vssadmin.exe
2009-02-23 00:24:52 ----A---- C:\Windows\system32\uudf.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\SyncCenter.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\regapi.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\mycomput.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\msls31.dll
2009-02-23 00:24:51 ----A---- C:\Windows\system32\scecli.dll
2009-02-23 00:24:50 ----A---- C:\Windows\system32\SCardSvr.dll
2009-02-23 00:24:50 ----A---- C:\Windows\system32\newdev.dll
2009-02-23 00:24:50 ----A---- C:\Windows\system32\mstask.dll
2009-02-23 00:24:50 ----A---- C:\Windows\system32\mspaint.exe
2009-02-23 00:24:50 ----A---- C:\Windows\system32\kdcom.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\termmgr.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\sud.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\ssdpsrv.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\samlib.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\puiapi.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\duser.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\tapisrv.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\Robocopy.exe
2009-02-23 00:24:48 ----A---- C:\Windows\system32\mtxoci.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\input.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\inetpp.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\cic.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\AzSqlExt.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\adtschema.dll
2009-02-23 00:24:47 ----A---- C:\Windows\system32\wisptis.exe
2009-02-23 00:24:47 ----A---- C:\Windows\system32\SLUINotify.dll
2009-02-23 00:24:47 ----A---- C:\Windows\system32\iasads.dll
2009-02-23 00:24:47 ----A---- C:\Windows\system32\cscapi.dll
2009-02-23 00:24:46 ----A---- C:\Windows\system32\WUDFPlatform.dll
2009-02-23 00:24:46 ----A---- C:\Windows\system32\sdshext.dll
2009-02-23 00:24:46 ----A---- C:\Windows\system32\netiohlp.dll
2009-02-23 00:24:46 ----A---- C:\Windows\system32\authz.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\wpcsvc.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\webcheck.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\verifier.exe
2009-02-23 00:24:45 ----A---- C:\Windows\system32\themeui.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\msdtclog.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\msdt.exe
2009-02-23 00:24:45 ----A---- C:\Windows\system32\d3d8.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\cmdial32.dll
2009-02-23 00:24:44 ----A---- C:\Windows\system32\wintrust.dll
2009-02-23 00:24:44 ----A---- C:\Windows\system32\vdsldr.exe
2009-02-23 00:24:44 ----A---- C:\Windows\system32\slcinst.dll
2009-02-23 00:24:44 ----A---- C:\Windows\system32\oledlg.dll
2009-02-23 00:24:44 ----A---- C:\Windows\system32\dxtmsft.dll
2009-02-23 00:24:44 ----A---- C:\Windows\system32\clfsw32.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\wpccpl.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\WMPhoto.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\SnippingTool.exe
2009-02-23 00:24:43 ----A---- C:\Windows\system32\SndVol.exe
2009-02-23 00:24:43 ----A---- C:\Windows\system32\rasgcw.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\pnpsetup.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\ntmarta.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\mmcbase.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\mlang.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\icfupgd.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\icardie.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\wpd_ci.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\slmgr.vbs
2009-02-23 00:24:42 ----A---- C:\Windows\system32\rasqec.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\nslookup.exe
2009-02-23 00:24:42 ----A---- C:\Windows\system32\ncobjapi.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\msrd3x40.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\msaatext.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\mpr.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\diskraid.exe
2009-02-23 00:24:41 ----A---- C:\Windows\system32\wtsapi32.dll
2009-02-23 00:24:41 ----A---- C:\Windows\system32\unlodctr.exe
2009-02-23 00:24:41 ----A---- C:\Windows\system32\syssetup.dll
2009-02-23 00:24:41 ----A---- C:\Windows\system32\mscms.dll
2009-02-23 00:24:41 ----A---- C:\Windows\system32\lodctr.exe
2009-02-23 00:24:41 ----A---- C:\Windows\system32\extmgr.dll
2009-02-23 00:24:41 ----A---- C:\Windows\system32\accessibilitycpl.dll
2009-02-23 00:24:40 ----A---- C:\Windows\system32\ulib.dll
2009-02-23 00:24:40 ----A---- C:\Windows\system32\sethc.exe
2009-02-23 00:24:40 ----A---- C:\Windows\system32\pnpui.dll
2009-02-23 00:24:40 ----A---- C:\Windows\system32\iaspolcy.dll
2009-02-23 00:24:40 ----A---- C:\Windows\system32\fontsub.dll
2009-02-23 00:24:40 ----A---- C:\Windows\system32\dxdiagn.dll
2009-02-23 00:24:39 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2009-02-23 00:24:39 ----A---- C:\Windows\system32\Utilman.exe
2009-02-23 00:24:39 ----A---- C:\Windows\system32\trkwks.dll
2009-02-23 00:24:39 ----A---- C:\Windows\system32\scesrv.dll
2009-02-23 00:24:39 ----A---- C:\Windows\system32\oobefldr.dll
2009-02-23 00:24:39 ----A---- C:\Windows\system32\Mcx2Svc.dll
2009-02-23 00:24:39 ----A---- C:\Windows\system32\cabinet.dll
2009-02-23 00:24:38 ----A---- C:\Windows\system32\unattend.dll
2009-02-23 00:24:38 ----A---- C:\Windows\system32\ogldrv.dll
2009-02-23 00:24:38 ----A---- C:\Windows\system32\occache.dll
2009-02-23 00:24:38 ----A---- C:\Windows\system32\lnkstub.exe
2009-02-23 00:24:38 ----A---- C:\Windows\system32\cabview.dll
2009-02-23 00:24:37 ----A---- C:\Windows\system32\wpcao.dll
2009-02-23 00:24:37 ----A---- C:\Windows\system32\wermgr.exe
2009-02-23 00:24:37 ----A---- C:\Windows\system32\dfdts.dll
2009-02-23 00:24:37 ----A---- C:\Windows\system32\bthci.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\sdspres.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\p2pcollab.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\msnetobj.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\iepeers.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\eappgnui.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\basesrv.dll
2009-02-23 00:24:35 ----A---- C:\Windows\system32\ieaksie.dll
2009-02-23 00:24:35 ----A---- C:\Windows\system32\drvinst.exe
2009-02-23 00:24:35 ----A---- C:\Windows\system32\dispdiag.exe
2009-02-23 00:24:35 ----A---- C:\Windows\system32\DHCPQEC.DLL
2009-02-23 00:24:33 ----A---- C:\Windows\system32\mmcss.dll
2009-02-23 00:24:33 ----A---- C:\Windows\system32\dsquery.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\verifier.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\secproc_ssp.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\RstrtMgr.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\mprapi.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\efsadu.dll
2009-02-23 00:24:31 ----A---- C:\Windows\system32\WMVENCOD.DLL
2009-02-23 00:24:31 ----A---- C:\Windows\system32\wercplsupport.dll
2009-02-23 00:24:31 ----A---- C:\Windows\system32\qedit.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\WPDSp.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\setupugc.exe
2009-02-23 00:24:30 ----A---- C:\Windows\system32\networkmap.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\msoeacct.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\iscsiexe.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\icacls.exe
2009-02-23 00:24:30 ----A---- C:\Windows\system32\d3d10core.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\wiascanprofiles.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\wiaaut.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\usercpl.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2009-02-23 00:24:29 ----A---- C:\Windows\system32\pnrpnsp.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\pngfilt.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\p2pnetsh.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\msrdc.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\msdmo.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\consent.exe
2009-02-23 00:24:29 ----A---- C:\Windows\system32\conime.exe
2009-02-23 00:24:28 ----A---- C:\Windows\system32\xactsrv.dll
2009-02-23 00:24:28 ----A---- C:\Windows\system32\PNPXAssocPrx.dll
2009-02-23 00:24:28 ----A---- C:\Windows\system32\PNPXAssoc.dll
2009-02-23 00:24:28 ----A---- C:\Windows\system32\lsass.exe
2009-02-23 00:24:28 ----A---- C:\Windows\system32\autoplay.dll
2009-02-23 00:24:24 ----A---- C:\Windows\system32\systeminfo.exe
2009-02-23 00:24:24 ----A---- C:\Windows\system32\pcadm.dll
2009-02-23 00:24:24 ----A---- C:\Windows\system32\lpk.dll
2009-02-23 00:24:24 ----A---- C:\Windows\system32\findstr.exe
2009-02-23 00:24:24 ----A---- C:\Windows\system32\eappprxy.dll
2009-02-23 00:24:24 ----A---- C:\Windows\system32\drmmgrtn.dll
2009-02-23 00:24:24 ----A---- C:\Windows\system32\dpapimig.exe
2009-02-23 00:24:23 --

Logfile of random's system information tool 1.06 (written by random/random)
Run by Gnawy at 2009-03-02 15:26:27
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 174 GB (73%) free of 238 GB
Total RAM: 1917 MB (8% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:27:29 PM, on 3/2/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Java\jre1.6.0\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\QuickTime\QuickTimePlayer.exe
C:\Users\Gnawy\Downloads\RSIT(2).exe
C:\Program Files\trend micro\Gnawy.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe"
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0\bin\jusched.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: Statistiques de la protection du trafic Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: pinger - Unknown owner - C:\Toshiba\IVP\ISM\pinger.exe
O23 - Service: Swupdtmr - Unknown owner - c:\Toshiba\IVP\swupdate\swupdtmr.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 9473 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-03-04 312928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll [2008-11-11 62728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0\bin\ssv.dll [2009-02-21 501384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-03-03 251504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll [2009-03-03 657904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll [2009-03-03 522224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-03-03 251504]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2006-09-11 180224]
"Camera Assistant Software"=C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe [2007-04-10 413696]
"NDSTray.exe"=NDSTray.exe []
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-04-25 4444160]
"Skytel"=C:\Windows\Skytel.exe [2007-04-13 1822720]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0\bin\jusched.exe [2009-02-21 77824]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-04-19 861744]
"KeNotify"=C:\Program Files\TOSHIBA\Utilities\KeNotify.exe [2006-11-06 34352]
"SVPWUTIL"=C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe [2006-03-22 438272]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2007-03-29 411192]
"HSON"=C:\Program Files\TOSHIBA\TBS\HSON.exe [2006-12-07 55416]
"SmoothView"=C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2007-03-22 448632]
"00TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2007-04-26 538744]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2008-08-03 36352]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2009-03-03 206088]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2009-03-04 198160]
"AppleSyncNotifier"=C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2008-10-01 111936]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-10-01 289576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-18 1233920]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
"TOSCDSPD"=C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [2007-01-22 417792]
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-03-03 39408]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-18 125952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\Windows\system32\klogon.dll [2008-11-11 218376]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\TOSHIBA\ivp\NetInt\Netint.exe"="C:\TOSHIBA\ivp\NetInt\Netint.exe:*:Enabled:NIE - Toshiba Software Upgrades Engine"
"C:\TOSHIBA\Ivp\ISM\pinger.exe"="C:\TOSHIBA\Ivp\ISM\pinger.exe:*:Enabled:Toshiba Software Upgrades Pinger"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{39e50fc1-170d-11de-bce1-001b3814e3f2}]
shell\AutoRun\command - E:\setupSNK.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{39e50fcc-170d-11de-bce1-001b3814e3f2}]
shell\AutoRun\command - E:\setupSNK.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5e44eb6f-0100-11de-852f-001b3814e3f2}]
shell\AutoRun\command - F:\launcher.exe


======List of files/folders created in the last 1 months======

2009-03-28 20:36:10 ----D---- C:\Users\Gnawy\AppData\Roaming\Malwarebytes
2009-03-28 20:36:04 ----D---- C:\ProgramData\Malwarebytes
2009-03-28 20:36:04 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-03-28 20:16:33 ----A---- C:\ComboFix.txt
2009-03-22 05:07:58 ----A---- C:\Windows\ntbtlog.txt
2009-03-10 21:44:12 ----A---- C:\Windows\system32\wmp.dll
2009-03-10 21:44:10 ----A---- C:\Windows\system32\spwmp.dll
2009-03-10 21:44:10 ----A---- C:\Windows\system32\dxmasf.dll
2009-03-10 21:44:09 ----A---- C:\Windows\system32\wmploc.DLL
2009-03-10 21:43:37 ----A---- C:\Windows\system32\schannel.dll
2009-03-09 18:55:35 ----D---- C:\Program Files\uTorrent
2009-03-09 18:55:06 ----D---- C:\Users\Gnawy\AppData\Roaming\uTorrent
2009-03-04 17:40:46 ----D---- C:\Program Files\Common Files\xing shared
2009-03-04 17:40:41 ----A---- C:\Windows\system32\rmoc3260.dll
2009-03-04 17:40:31 ----A---- C:\Windows\system32\pndx5032.dll
2009-03-04 17:40:31 ----A---- C:\Windows\system32\pndx5016.dll
2009-03-04 17:40:30 ----D---- C:\Program Files\Real
2009-03-04 17:40:30 ----A---- C:\Windows\system32\pncrt.dll
2009-03-04 17:40:30 ----A---- C:\Windows\system32\msvcp71.dll
2009-03-04 17:40:24 ----D---- C:\Program Files\Common Files\Real
2009-03-04 17:40:23 ----D---- C:\Users\Gnawy\AppData\Roaming\Real
2009-03-03 15:43:45 ----A---- C:\Windows\system32\unrar.dll
2009-03-03 15:43:43 ----A---- C:\Windows\system32\yv12vfw.dll
2009-03-03 15:43:43 ----A---- C:\Windows\system32\xvidvfw.dll
2009-03-03 15:43:43 ----A---- C:\Windows\system32\xvidcore.dll
2009-03-03 15:43:42 ----A---- C:\Windows\system32\qt-dx331.dll
2009-03-03 15:43:42 ----A---- C:\Windows\system32\dpl100.dll
2009-03-03 15:43:42 ----A---- C:\Windows\system32\divx.dll
2009-03-03 15:43:41 ----A---- C:\Windows\system32\ff_vfw.dll.manifest
2009-03-03 15:43:41 ----A---- C:\Windows\system32\ff_vfw.dll
2009-03-03 15:43:40 ----A---- C:\Windows\system32\msvcr71.dll
2009-03-03 15:43:39 ----D---- C:\Program Files\K-Lite Codec Pack
2009-03-03 15:14:13 ----D---- C:\Program Files\Kaspersky Lab
2009-03-03 14:53:13 ----D---- C:\Users\Gnawy\AppData\Roaming\cmw
2009-03-02 00:44:37 ----D---- C:\ProgramData\Jesterware
2009-03-02 00:43:57 ----D---- C:\Program Files\Jesterware
2009-03-02 00:43:43 ----HDC---- C:\ProgramData\{F2D9B366-9ECC-487E-A1A4-C07A2CE04955}
2009-03-02 00:34:03 ----D---- C:\Program Files\WinAVI MP4 Converter
2009-03-01 23:54:58 ----D---- C:\Users\Gnawy\AppData\Roaming\GRETECH
2009-03-01 23:54:13 ----D---- C:\Program Files\GRETECH
2009-03-01 21:02:28 ----A---- C:\Windows\zip.exe
2009-03-01 21:02:28 ----A---- C:\Windows\VFIND.exe
2009-03-01 21:02:28 ----A---- C:\Windows\SWXCACLS.exe
2009-03-01 21:02:28 ----A---- C:\Windows\SWSC.exe
2009-03-01 21:02:28 ----A---- C:\Windows\SWREG.exe
2009-03-01 21:02:28 ----A---- C:\Windows\sed.exe
2009-03-01 21:02:28 ----A---- C:\Windows\NIRCMD.exe
2009-03-01 21:02:28 ----A---- C:\Windows\grep.exe
2009-03-01 21:02:28 ----A---- C:\Windows\fdsv.exe
2009-03-01 21:02:21 ----D---- C:\Windows\ERDNT
2009-03-01 21:02:14 ----D---- C:\Qoobox
2009-03-01 20:37:20 ----D---- C:\Program Files\trend micro
2009-03-01 20:37:18 ----D---- C:\rsit
2009-03-01 16:42:42 ----D---- C:\Program Files\Microsoft Silverlight
2009-03-01 16:41:03 ----D---- C:\Program Files\Microsoft Sync Framework
2009-03-01 16:37:12 ----A---- C:\Windows\system32\d3dx9_32.dll
2009-03-01 16:31:10 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2009-03-01 16:23:30 ----D---- C:\Program Files\Microsoft
2009-03-01 16:23:02 ----D---- C:\Program Files\Windows Live SkyDrive
2009-03-01 16:22:33 ----D---- C:\Program Files\Windows Live
2009-03-01 16:17:02 ----D---- C:\Program Files\Common Files\Windows Live
2009-02-27 03:01:15 ----A---- C:\Windows\system32\msshooks.dll
2009-02-27 03:01:14 ----A---- C:\Windows\system32\msscb.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\thawbrkr.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\SearchFilterHost.exe
2009-02-27 03:01:08 ----A---- C:\Windows\system32\propsys.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\propdefs.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\msstrc.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\mssprxy.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\mssitlb.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\msshsq.dll
2009-02-27 03:01:08 ----A---- C:\Windows\system32\korwbrkr.dll
2009-02-27 03:01:07 ----A---- C:\Windows\system32\wsepno.dll
2009-02-27 03:01:07 ----A---- C:\Windows\system32\srchadmin.dll
2009-02-27 03:01:07 ----A---- C:\Windows\system32\rtffilt.dll
2009-02-27 03:01:07 ----A---- C:\Windows\system32\offfilt.dll
2009-02-27 03:01:07 ----A---- C:\Windows\system32\mimefilt.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\xmlfilter.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\tquery.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2009-02-27 03:01:06 ----A---- C:\Windows\system32\SearchIndexer.exe
2009-02-27 03:01:06 ----A---- C:\Windows\system32\nlhtml.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\mssrch.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\msscntrs.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\chtbrkr.dll
2009-02-27 03:01:06 ----A---- C:\Windows\system32\chsbrkr.dll
2009-02-27 03:01:05 ----A---- C:\Windows\system32\mssvp.dll
2009-02-27 03:01:05 ----A---- C:\Windows\system32\mssphtb.dll
2009-02-27 03:01:05 ----A---- C:\Windows\system32\mssph.dll
2009-02-26 12:02:06 ----D---- C:\Users\Gnawy\AppData\Roaming\WinRAR
2009-02-26 12:01:38 ----D---- C:\Program Files\WinRAR
2009-02-26 11:08:24 ----D---- C:\Users\Gnawy\AppData\Roaming\DivX
2009-02-26 09:36:10 ----A---- C:\Windows\system32\rpcrt4.dll
2009-02-26 09:36:09 ----A---- C:\Windows\system32\pacerprf.dll
2009-02-26 09:35:37 ----A---- C:\Windows\system32\wersvc.dll
2009-02-26 09:35:37 ----A---- C:\Windows\system32\Faultrep.dll
2009-02-26 09:35:22 ----A---- C:\Windows\system32\emdmgmt.dll
2009-02-26 09:35:22 ----A---- C:\Windows\system32\dataclen.dll
2009-02-26 09:35:21 ----A---- C:\Windows\system32\cdd.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\wshext.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\wscript.exe
2009-02-26 09:35:17 ----A---- C:\Windows\system32\vbscript.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\scrrun.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\scrobj.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\jscript.dll
2009-02-26 09:35:17 ----A---- C:\Windows\system32\cscript.exe
2009-02-26 09:28:25 ----D---- C:\Program Files\Common Files\PX Storage Engine
2009-02-26 09:27:55 ----D---- C:\Program Files\DivX
2009-02-26 08:13:54 ----D---- C:\Program Files\Common Files\Adobe AIR
2009-02-26 08:11:32 ----D---- C:\Program Files\Common Files\Adobe
2009-02-26 08:11:32 ----D---- C:\Program Files\Adobe
2009-02-26 08:10:44 ----SHD---- C:\Config.Msi
2009-02-26 08:06:56 ----D---- C:\ProgramData\NOS
2009-02-26 08:06:56 ----D---- C:\Program Files\NOS
2009-02-25 21:09:12 ----D---- C:\PerfLogs
2009-02-23 00:27:25 ----A---- C:\Windows\system32\SLsvc.exe
2009-02-23 00:27:25 ----A---- C:\Windows\system32\onex.dll
2009-02-23 00:27:10 ----A---- C:\Windows\system32\PSHED.DLL
2009-02-23 00:27:08 ----A---- C:\Windows\system32\imagesp1.dll
2009-02-23 00:27:05 ----A---- C:\Windows\system32\pidgenx.dll
2009-02-23 00:27:05 ----A---- C:\Windows\system32\dfsr.exe
2009-02-23 00:27:04 ----A---- C:\Windows\system32\sstpsvc.dll
2009-02-23 00:27:04 ----A---- C:\Windows\system32\mstscax.dll
2009-02-23 00:27:02 ----A---- C:\Windows\system32\WsmSvc.dll
2009-02-23 00:27:02 ----A---- C:\Windows\system32\winrscmd.dll
2009-02-23 00:27:01 ----A---- C:\Windows\system32\sysmain.dll
2009-02-23 00:27:00 ----A---- C:\Windows\system32\vssapi.dll
2009-02-23 00:27:00 ----A---- C:\Windows\system32\RMActivate.exe
2009-02-23 00:26:59 ----A---- C:\Windows\system32\VSSVC.exe
2009-02-23 00:26:58 ----A---- C:\Windows\system32\secproc.dll
2009-02-23 00:26:58 ----A---- C:\Windows\system32\RMActivate_isv.exe
2009-02-23 00:26:57 ----A---- C:\Windows\system32\iesetup.dll
2009-02-23 00:26:54 ----A---- C:\Windows\system32\secproc_isv.dll
2009-02-23 00:26:52 ----A---- C:\Windows\system32\drmv2clt.dll
2009-02-23 00:26:50 ----A---- C:\Windows\system32\xpssvcs.dll
2009-02-23 00:26:50 ----A---- C:\Windows\system32\blackbox.dll
2009-02-23 00:26:49 ----A---- C:\Windows\system32\RacEngn.dll
2009-02-23 00:26:48 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2009-02-23 00:26:48 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2009-02-23 00:26:48 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2009-02-23 00:26:47 ----A---- C:\Windows\system32\spwizimg.dll
2009-02-23 00:26:47 ----A---- C:\Windows\system32\rdpencom.dll
2009-02-23 00:26:46 ----A---- C:\Windows\system32\lpremove.exe
2009-02-23 00:26:46 ----A---- C:\Windows\bfsvc.exe
2009-02-23 00:26:45 ----A---- C:\Windows\system32\ntdll.dll
2009-02-23 00:26:45 ----A---- C:\Windows\system32\msjet40.dll
2009-02-23 00:26:45 ----A---- C:\Windows\system32\lsasrv.dll
2009-02-23 00:26:44 ----A---- C:\Windows\system32\qmgr.dll
2009-02-23 00:26:44 ----A---- C:\Windows\system32\localspl.dll
2009-02-23 00:26:43 ----A---- C:\Windows\system32\wevtsvc.dll
2009-02-23 00:26:43 ----A---- C:\Windows\system32\IKEEXT.DLL
2009-02-23 00:26:42 ----A---- C:\Windows\system32\wcncsvc.dll
2009-02-23 00:26:42 ----A---- C:\Windows\system32\TsWpfWrp.exe
2009-02-23 00:26:42 ----A---- C:\Windows\system32\recdisc.exe
2009-02-23 00:26:42 ----A---- C:\Windows\system32\kernel32.dll
2009-02-23 00:26:41 ----A---- C:\Windows\system32\vds.exe
2009-02-23 00:26:41 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
2009-02-23 00:26:38 ----A---- C:\Windows\system32\wcnwiz.dll
2009-02-23 00:26:38 ----A---- C:\Windows\system32\SMBHelperClass.dll
2009-02-23 00:26:38 ----A---- C:\Windows\system32\msvbvm60.dll
2009-02-23 00:26:38 ----A---- C:\Windows\system32\mstsc.exe
2009-02-23 00:26:37 ----A---- C:\Windows\system32\msdtctm.dll
2009-02-23 00:26:36 ----A---- C:\Windows\system32\termsrv.dll
2009-02-23 00:26:36 ----A---- C:\Windows\system32\advapi32.dll
2009-02-23 00:26:35 ----A---- C:\Windows\system32\kerberos.dll
2009-02-23 00:26:35 ----A---- C:\Windows\system32\IMJP10K.DLL
2009-02-23 00:26:34 ----A---- C:\Windows\system32\MSMPEG2ADEC.DLL
2009-02-23 00:26:34 ----A---- C:\Windows\system32\mmcndmgr.dll
2009-02-23 00:26:34 ----A---- C:\Windows\system32\CertEnroll.dll
2009-02-23 00:26:33 ----A---- C:\Windows\system32\xolehlp.dll
2009-02-23 00:26:33 ----A---- C:\Windows\system32\Query.dll
2009-02-23 00:26:33 ----A---- C:\Windows\system32\msdtcprx.dll
2009-02-23 00:26:33 ----A---- C:\Windows\system32\MPSSVC.dll
2009-02-23 00:26:32 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2009-02-23 00:26:32 ----A---- C:\Windows\system32\ole32.dll
2009-02-23 00:26:32 ----A---- C:\Windows\system32\netlogon.dll
2009-02-23 00:26:31 ----A---- C:\Windows\system32\msvcrt.dll
2009-02-23 00:26:30 ----A---- C:\Windows\system32\SSShim.dll
2009-02-23 00:26:30 ----A---- C:\Windows\system32\nlmgp.dll
2009-02-23 00:26:30 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2009-02-23 00:26:30 ----A---- C:\Windows\system32\DfsShlEx.dll
2009-02-23 00:26:29 ----A---- C:\Windows\system32\shlwapi.dll
2009-02-23 00:26:29 ----A---- C:\Windows\system32\sdclt.exe
2009-02-23 00:26:29 ----A---- C:\Windows\system32\schedsvc.dll
2009-02-23 00:26:29 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2009-02-23 00:26:29 ----A---- C:\Windows\system32\milcore.dll
2009-02-23 00:26:29 ----A---- C:\Windows\system32\IasMigPlugin.dll
2009-02-23 00:26:28 ----A---- C:\Windows\system32\wer.dll
2009-02-23 00:26:28 ----A---- C:\Windows\system32\vdsdyn.dll
2009-02-23 00:26:28 ----A---- C:\Windows\system32\user32.dll
2009-02-23 00:26:28 ----A---- C:\Windows\system32\clusapi.dll
2009-02-23 00:26:27 ----A---- C:\Windows\system32\WSDApi.dll
2009-02-23 00:26:27 ----A---- C:\Windows\system32\QAGENTRT.DLL
2009-02-23 00:26:27 ----A---- C:\Windows\system32\diagperf.dll
2009-02-23 00:26:27 ----A---- C:\Windows\system32\d3d9.dll
2009-02-23 00:26:26 ----A---- C:\Windows\system32\winrsmgr.dll
2009-02-23 00:26:26 ----A---- C:\Windows\system32\mmc.exe
2009-02-23 00:26:25 ----A---- C:\Windows\system32\mtxclu.dll
2009-02-23 00:26:24 ----A---- C:\Windows\system32\vdsbas.dll
2009-02-23 00:26:24 ----A---- C:\Windows\system32\swprv.dll
2009-02-23 00:26:24 ----A---- C:\Windows\system32\SLC.dll
2009-02-23 00:26:23 ----A---- C:\Windows\system32\msi.dll
2009-02-23 00:26:23 ----A---- C:\Windows\system32\comctl32.dll
2009-02-23 00:26:22 ----A---- C:\Windows\system32\MSVidCtl.dll
2009-02-23 00:26:22 ----A---- C:\Windows\system32\msdtckrm.dll
2009-02-23 00:26:22 ----A---- C:\Windows\system32\gpsvc.dll
2009-02-23 00:26:21 ----A---- C:\Windows\system32\XPSSHHDR.dll
2009-02-23 00:26:21 ----A---- C:\Windows\system32\sbe.dll
2009-02-23 00:26:21 ----A---- C:\Windows\system32\samsrv.dll
2009-02-23 00:26:21 ----A---- C:\Windows\system32\mfc42u.dll
2009-02-23 00:26:21 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2009-02-23 00:26:20 ----A---- C:\Windows\system32\wecutil.exe
2009-02-23 00:26:20 ----A---- C:\Windows\system32\usp10.dll
2009-02-23 00:26:20 ----A---- C:\Windows\system32\sdengin2.dll
2009-02-23 00:26:20 ----A---- C:\Windows\system32\esent.dll
2009-02-23 00:26:19 ----A---- C:\Windows\system32\mfc42.dll
2009-02-23 00:26:19 ----A---- C:\Windows\system32\gacinstall.dll
2009-02-23 00:26:19 ----A---- C:\Windows\system32\cmipnpinstall.dll
2009-02-23 00:26:19 ----A---- C:\Windows\system32\cmicryptinstall.dll
2009-02-23 00:26:18 ----A---- C:\Windows\system32\crypt32.dll
2009-02-23 00:26:18 ----A---- C:\Windows\system32\comsvcs.dll
2009-02-23 00:26:17 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2009-02-23 00:26:17 ----A---- C:\Windows\system32\mswsock.dll
2009-02-23 00:26:17 ----A---- C:\Windows\system32\certutil.exe
2009-02-23 00:26:16 ----A---- C:\Windows\system32\wmdrmsdk.dll
2009-02-23 00:26:16 ----A---- C:\Windows\system32\oleaut32.dll
2009-02-23 00:26:16 ----A---- C:\Windows\system32\FirewallAPI.dll
2009-02-23 00:26:15 ----A---- C:\Windows\system32\wecsvc.dll
2009-02-23 00:26:15 ----A---- C:\Windows\system32\sqlceqp30.dll
2009-02-23 00:26:15 ----A---- C:\Windows\system32\setupapi.dll
2009-02-23 00:26:15 ----A---- C:\Windows\system32\lsm.exe
2009-02-23 00:26:15 ----A---- C:\Windows\system32\bcrypt.dll
2009-02-23 00:26:14 ----A---- C:\Windows\system32\sdohlp.dll
2009-02-23 00:26:14 ----A---- C:\Windows\system32\msv1_0.dll
2009-02-23 00:26:14 ----A---- C:\Windows\system32\iphlpsvc.dll
2009-02-23 00:26:14 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2009-02-23 00:26:13 ----A---- C:\Windows\system32\thumbcache.dll
2009-02-23 00:26:13 ----A---- C:\Windows\system32\p2psvc.dll
2009-02-23 00:26:13 ----A---- C:\Windows\system32\eapp3hst.dll
2009-02-23 00:26:12 ----A---- C:\Windows\system32\wmpmde.dll
2009-02-23 00:26:12 ----A---- C:\Windows\system32\riched20.dll
2009-02-23 00:26:12 ----A---- C:\Windows\system32\mcmde.dll
2009-02-23 00:26:12 ----A---- C:\Windows\system32\autofmt.exe
2009-02-23 00:26:11 ----A---- C:\Windows\system32\WinSAT.exe
2009-02-23 00:26:11 ----A---- C:\Windows\system32\vdsutil.dll
2009-02-23 00:26:11 ----A---- C:\Windows\system32\imapi2fs.dll
2009-02-23 00:26:11 ----A---- C:\Windows\system32\d3d10_1.dll
2009-02-23 00:26:11 ----A---- C:\Windows\system32\autoconv.exe
2009-02-23 00:26:11 ----A---- C:\Windows\system32\autochk.exe
2009-02-23 00:26:11 ----A---- C:\Windows\system32\authui.dll
2009-02-23 00:26:11 ----A---- C:\Windows\system32\authfwcfg.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\wevtapi.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\dmvdsitf.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\d3d10_1core.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\comuid.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\comdlg32.dll
2009-02-23 00:26:10 ----A---- C:\Windows\system32\browseui.dll
2009-02-23 00:26:09 ----A---- C:\Windows\system32\WSDMon.dll
2009-02-23 00:26:09 ----A---- C:\Windows\system32\eapphost.dll
2009-02-23 00:26:08 ----A---- C:\Windows\system32\wevtfwd.dll
2009-02-23 00:26:08 ----A---- C:\Windows\system32\uexfat.dll
2009-02-23 00:26:08 ----A---- C:\Windows\system32\rasmans.dll
2009-02-23 00:26:07 ----A---- C:\Windows\system32\untfs.dll
2009-02-23 00:26:07 ----A---- C:\Windows\system32\sqlcese30.dll
2009-02-23 00:26:07 ----A---- C:\Windows\system32\iassam.dll
2009-02-23 00:26:07 ----A---- C:\Windows\system32\eappcfg.dll
2009-02-23 00:26:07 ----A---- C:\Windows\system32\DfrgNtfs.exe
2009-02-23 00:26:06 ----A---- C:\Windows\system32\wlansvc.dll
2009-02-23 00:26:06 ----A---- C:\Windows\system32\whealogr.dll
2009-02-23 00:26:06 ----A---- C:\Windows\system32\pcaui.dll
2009-02-23 00:26:05 ----A---- C:\Windows\system32\dot3svc.dll
2009-02-23 00:26:03 ----A---- C:\Windows\system32\rdpwsx.dll
2009-02-23 00:26:03 ----A---- C:\Windows\system32\mssha.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\zipfldr.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\WsmAuto.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\winhttp.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\msdrm.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\evr.dll
2009-02-23 00:26:02 ----A---- C:\Windows\system32\dfrgui.exe
2009-02-23 00:26:01 ----A---- C:\Windows\system32\rpcss.dll
2009-02-23 00:26:01 ----A---- C:\Windows\system32\rasppp.dll
2009-02-23 00:26:01 ----A---- C:\Windows\system32\nlasvc.dll
2009-02-23 00:26:01 ----A---- C:\Windows\system32\ncrypt.dll
2009-02-23 00:26:01 ----A---- C:\Windows\system32\BFE.DLL
2009-02-23 00:26:00 ----A---- C:\Windows\system32\wmdrmdev.dll
2009-02-23 00:26:00 ----A---- C:\Windows\system32\msrepl40.dll
2009-02-23 00:26:00 ----A---- C:\Windows\system32\ddraw.dll
2009-02-23 00:26:00 ----A---- C:\Windows\system32\audiosrv.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\WsmWmiPl.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\WebClnt.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\themecpl.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\rastls.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\printui.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\objsel.dll
2009-02-23 00:25:59 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2009-02-23 00:25:58 ----A---- C:\Windows\system32\QAGENT.DLL
2009-02-23 00:25:58 ----A---- C:\Windows\system32\iasnap.dll
2009-02-23 00:25:58 ----A---- C:\Windows\system32\dbghelp.dll
2009-02-23 00:25:57 ----A---- C:\Windows\system32\w32time.dll
2009-02-23 00:25:57 ----A---- C:\Windows\system32\sqlsrv32.dll
2009-02-23 00:25:57 ----A---- C:\Windows\system32\icm32.dll
2009-02-23 00:25:56 ----A---- C:\Windows\system32\wmdrmnet.dll
2009-02-23 00:25:56 ----A---- C:\Windows\system32\WerFaultSecure.exe
2009-02-23 00:25:56 ----A---- C:\Windows\system32\ncryptui.dll
2009-02-23 00:25:56 ----A---- C:\Windows\system32\iprtrmgr.dll
2009-02-23 00:25:56 ----A---- C:\Windows\system32\azroles.dll
2009-02-23 00:25:55 ----A---- C:\Windows\system32\spoolss.dll
2009-02-23 00:25:55 ----A---- C:\Windows\system32\msctf.dll
2009-02-23 00:25:54 ----A---- C:\Windows\system32\wlangpui.dll
2009-02-23 00:25:54 ----A---- C:\Windows\system32\winsrv.dll
2009-02-23 00:25:54 ----A---- C:\Windows\system32\taskschd.dll
2009-02-23 00:25:54 ----A---- C:\Windows\system32\mstlsapi.dll
2009-02-23 00:25:54 ----A---- C:\Windows\system32\bcdedit.exe
2009-02-23 00:25:54 ----A---- C:\Windows\system32\basecsp.dll
2009-02-23 00:25:53 ----A---- C:\Windows\system32\winsta.dll
2009-02-23 00:25:53 ----A---- C:\Windows\system32\scksp.dll
2009-02-23 00:25:53 ----A---- C:\Windows\system32\netprofm.dll
2009-02-23 00:25:53 ----A---- C:\Windows\system32\dbgeng.dll
2009-02-23 00:25:53 ----A---- C:\Windows\system32\AudioEng.dll
2009-02-23 00:25:52 ----A---- C:\Windows\system32\rsaenh.dll
2009-02-23 00:25:52 ----A---- C:\Windows\system32\netcfgx.dll
2009-02-23 00:25:51 ----A---- C:\Windows\system32\winlogon.exe
2009-02-23 00:25:51 ----A---- C:\Windows\system32\wercon.exe
2009-02-23 00:25:51 ----A---- C:\Windows\system32\taskcomp.dll
2009-02-23 00:25:51 ----A---- C:\Windows\system32\lpksetup.exe
2009-02-23 00:25:51 ----A---- C:\Windows\system32\cdosys.dll
2009-02-23 00:25:50 ----A---- C:\Windows\system32\wlansec.dll
2009-02-23 00:25:50 ----A---- C:\Windows\system32\msdtcuiu.dll
2009-02-23 00:25:50 ----A---- C:\Windows\system32\apds.dll
2009-02-23 00:25:49 ----A---- C:\Windows\system32\mprddm.dll
2009-02-23 00:25:49 ----A---- C:\Windows\system32\iasrad.dll
2009-02-23 00:25:49 ----A---- C:\Windows\system32\eapsvc.dll
2009-02-23 00:25:49 ----A---- C:\Windows\system32\certcli.dll
2009-02-23 00:25:49 ----A---- C:\Windows\system32\AUDIOKSE.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\uDWM.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\tsgqec.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\shdocvw.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\certmgr.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\bcdsrv.dll
2009-02-23 00:25:48 ----A---- C:\Windows\system32\aaclient.dll
2009-02-23 00:25:47 ----A---- C:\Windows\system32\Wldap32.dll
2009-02-23 00:25:47 ----A---- C:\Windows\system32\msidcrl30.dll
2009-02-23 00:25:47 ----A---- C:\Windows\system32\dnsapi.dll
2009-02-23 00:25:46 ----A---- C:\Windows\system32\WMVDECOD.DLL
2009-02-23 00:25:46 ----A---- C:\Windows\system32\umpnpmgr.dll
2009-02-23 00:25:46 ----A---- C:\Windows\system32\pla.dll
2009-02-23 00:25:45 ----A---- C:\Windows\system32\netshell.dll
2009-02-23 00:25:45 ----A---- C:\Windows\system32\dxgi.dll
2009-02-23 00:25:45 ----A---- C:\Windows\system32\dot3gpui.dll
2009-02-23 00:25:44 ----A---- C:\Windows\system32\wmicmiplugin.dll
2009-02-23 00:25:44 ----A---- C:\Windows\system32\ntprint.dll
2009-02-23 00:25:43 ----A---- C:\Windows\system32\shsvcs.dll
2009-02-23 00:25:43 ----A---- C:\Windows\system32\MMDevAPI.dll
2009-02-23 00:25:43 ----A---- C:\Windows\system32\cryptnet.dll
2009-02-23 00:25:43 ----A---- C:\Windows\system32\comsnap.dll
2009-02-23 00:25:42 ----A---- C:\Windows\system32\winmm.dll
2009-02-23 00:25:42 ----A---- C:\Windows\system32\services.exe
2009-02-23 00:25:41 ----A---- C:\Windows\system32\wscsvc.dll
2009-02-23 00:25:41 ----A---- C:\Windows\system32\wscisvif.dll
2009-02-23 00:25:41 ----A---- C:\Windows\system32\synceng.dll
2009-02-23 00:25:41 ----A---- C:\Windows\system32\pnidui.dll
2009-02-23 00:25:41 ----A---- C:\Windows\system32\cmifw.dll
2009-02-23 00:25:40 ----A---- C:\Windows\system32\taskeng.exe
2009-02-23 00:25:40 ----A---- C:\Windows\system32\msjtes40.dll
2009-02-23 00:25:40 ----A---- C:\Windows\system32\msconfig.exe
2009-02-23 00:25:40 ----A---- C:\Windows\system32\iassdo.dll
2009-02-23 00:25:40 ----A---- C:\Windows\system32\cipher.exe
2009-02-23 00:25:39 ----A---- C:\Windows\system32\WMVSDECD.DLL
2009-02-23 00:25:35 ----A---- C:\Windows\system32\tdh.dll
2009-02-23 00:25:35 ----A---- C:\Windows\system32\rasapi32.dll
2009-02-23 00:25:35 ----A---- C:\Windows\system32\imapi2.dll
2009-02-23 00:25:34 ----A---- C:\Windows\system32\uxtheme.dll
2009-02-23 00:25:34 ----A---- C:\Windows\system32\SessEnv.dll
2009-02-23 00:25:34 ----A---- C:\Windows\system32\dot3api.dll
2009-02-23 00:25:34 ----A---- C:\Windows\system32\dmdskmgr.dll
2009-02-23 00:25:34 ----A---- C:\Windows\system32\cmd.exe
2009-02-23 00:25:34 ----A---- C:\Windows\system32\cbsra.exe
2009-02-23 00:25:34 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2009-02-23 00:25:33 ----A---- C:\Windows\system32\wkssvc.dll
2009-02-23 00:25:33 ----A---- C:\Windows\system32\wevtutil.exe
2009-02-23 00:25:33 ----A---- C:\Windows\system32\srvsvc.dll
2009-02-23 00:25:33 ----A---- C:\Windows\system32\qdvd.dll
2009-02-23 00:25:33 ----A---- C:\Windows\system32\msscp.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\WUDFx.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\wlanmsm.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\wlancfg.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\mshtmled.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\msdtcVSp1res.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\loadperf.dll
2009-02-23 00:25:32 ----A---- C:\Windows\system32\diskpart.exe
2009-02-23 00:25:32 ----A---- C:\Windows\system32\comres.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\wlanapi.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\rpchttp.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\rdpdd.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\localsec.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\hnetcfg.dll
2009-02-23 00:25:31 ----A---- C:\Windows\system32\fontext.dll
2009-02-23 00:25:30 ----A---- C:\Windows\system32\wsqmcons.exe
2009-02-23 00:25:30 ----A---- C:\Windows\system32\WMADMOD.DLL
2009-02-23 00:25:30 ----A---- C:\Windows\system32\wlanpref.dll
2009-02-23 00:25:30 ----A---- C:\Windows\system32\WinSATAPI.dll
2009-02-23 00:25:30 ----A---- C:\Windows\system32\NAPMONTR.DLL
2009-02-23 00:25:30 ----A---- C:\Windows\system32\dsound.dll
2009-02-23 00:25:29 ----A---- C:\Windows\system32\RDPENCDD.dll
2009-02-23 00:25:29 ----A---- C:\Windows\system32\profprov.dll
2009-02-23 00:25:29 ----A---- C:\Windows\system32\filemgmt.dll
2009-02-23 00:25:29 ----A---- C:\Windows\system32\avifil32.dll
2009-02-23 00:25:28 ----A---- C:\Windows\system32\wsecedit.dll
2009-02-23 00:25:28 ----A---- C:\Windows\system32\tracerpt.exe
2009-02-23 00:25:28 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2009-02-23 00:25:28 ----A---- C:\Windows\system32\SLCommDlg.dll
2009-02-23 00:25:28 ----A---- C:\Windows\system32\MuiUnattend.exe
2009-02-23 00:25:28 ----A---- C:\Windows\system32\dnsrslvr.dll
2009-02-23 00:25:28 ----A---- C:\Windows\system32\dhcpcsvc.dll
2009-02-23 00:25:27 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2009-02-23 00:25:27 ----A---- C:\Windows\system32\P2PGraph.dll
2009-02-23 00:25:27 ----A---- C:\Windows\system32\dwmredir.dll
2009-02-23 00:25:27 ----A---- C:\Windows\system32\dwm.exe
2009-02-23 00:25:27 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2009-02-23 00:25:27 ----A---- C:\Windows\system32\apphelp.dll
2009-02-23 00:25:26 ----A---- C:\Windows\system32\wininit.exe
2009-02-23 00:25:26 ----A---- C:\Windows\system32\spp.dll
2009-02-23 00:25:26 ----A---- C:\Windows\system32\rasdlg.dll
2009-02-23 00:25:26 ----A---- C:\Windows\system32\QSHVHOST.DLL
2009-02-23 00:25:26 ----A---- C:\Windows\system32\iassvcs.dll
2009-02-23 00:25:26 ----A---- C:\Windows\system32\gpresult.exe
2009-02-23 00:25:26 ----A---- C:\Windows\system32\azroleui.dll
2009-02-23 00:25:25 ----A---- C:\Windows\system32\mcbuilder.exe
2009-02-23 00:25:25 ----A---- C:\Windows\system32\iashost.exe
2009-02-23 00:25:25 ----A---- C:\Windows\HelpPane.exe
2009-02-23 00:25:24 ----A---- C:\Windows\system32\wecapi.dll
2009-02-23 00:25:24 ----A---- C:\Windows\system32\srrstr.dll
2009-02-23 00:25:24 ----A---- C:\Windows\system32\spwizeng.dll
2009-02-23 00:25:24 ----A---- C:\Windows\system32\SLUI.exe
2009-02-23 00:25:24 ----A---- C:\Windows\system32\rasmontr.dll
2009-02-23 00:25:24 ----A---- C:\Windows\system32\lltdsvc.dll
2009-02-23 00:25:23 ----A---- C:\Windows\system32\unbcl.dll
2009-02-23 00:25:23 ----A---- C:\Windows\system32\tcpmon.dll
2009-02-23 00:25:23 ----A---- C:\Windows\system32\shrink.dll
2009-02-23 00:25:23 ----A---- C:\Windows\system32\msra.exe
2009-02-23 00:25:23 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2009-02-23 00:25:23 ----A---- C:\Windows\system32\gpedit.dll
2009-02-23 00:25:23 ----A---- C:\Windows\system32\brcpl.dll
2009-02-23 00:25:22 ----A---- C:\Windows\system32\WMPEncEn.dll
2009-02-23 00:25:22 ----A---- C:\Windows\system32\oleacc.dll
2009-02-23 00:25:22 ----A---- C:\Windows\system32\msdri.dll
2009-02-23 00:25:22 ----A---- C:\Windows\system32\iashlpr.dll
2009-02-23 00:25:21 ----A---- C:\Windows\system32\regsvc.dll
2009-02-23 00:25:21 ----A---- C:\Windows\system32\raschap.dll
2009-02-23 00:25:21 ----A---- C:\Windows\system32\framedynos.dll
2009-02-23 00:25:20 ----A---- C:\Windows\system32\vsstrace.dll
2009-02-23 00:25:20 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2009-02-23 00:25:20 ----A---- C:\Windows\system32\ntvdm.exe
2009-02-23 00:25:20 ----A---- C:\Windows\system32\ipsmsnap.dll
2009-02-23 00:25:20 ----A---- C:\Windows\system32\fdWSD.dll
2009-02-23 00:25:20 ----A---- C:\Windows\system32\advpack.dll
2009-02-23 00:25:19 ----A---- C:\Windows\system32\wpdshext.dll
2009-02-23 00:25:19 ----A---- C:\Windows\system32\wdc.dll
2009-02-23 00:25:19 ----A---- C:\Windows\system32\ntlanman.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\Storprop.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\NetProjW.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\netman.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\l2nacp.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\iedkcs32.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\ieapfltr.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\framedyn.dll
2009-02-23 00:25:18 ----A---- C:\Windows\system32\dssenh.dll
2009-02-23 00:25:17 ----A---- C:\Windows\system32\WlanMM.dll
2009-02-23 00:25:17 ----A---- C:\Windows\system32\tcpipcfg.dll
2009-02-23 00:25:17 ----A---- C:\Windows\system32\sxs.dll
2009-02-23 00:25:17 ----A---- C:\Windows\system32\profsvc.dll
2009-02-23 00:25:17 ----A---- C:\Windows\system32\KMSVC.DLL
2009-02-23 00:25:17 ----A---- C:\Windows\system32\certreq.exe
2009-02-23 00:25:17 ----A---- C:\Windows\system32\adsnt.dll
2009-02-23 00:25:16 ----A---- C:\Windows\system32\WsmProv.dll
2009-02-23 00:25:16 ----A---- C:\Windows\system32\wlanhlp.dll
2009-02-23 00:25:16 ----A---- C:\Windows\system32\WLanConn.dll
2009-02-23 00:25:16 ----A---- C:\Windows\system32\IPBusEnum.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\wusa.exe
2009-02-23 00:25:15 ----A---- C:\Windows\system32\WUDFHost.exe
2009-02-23 00:25:15 ----A---- C:\Windows\system32\WerFault.exe
2009-02-23 00:25:15 ----A---- C:\Windows\system32\VAN.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\userenv.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\umb.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\ncsi.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\ie4uinit.exe
2009-02-23 00:25:15 ----A---- C:\Windows\system32\fundisc.dll
2009-02-23 00:25:15 ----A---- C:\Windows\system32\catsrvut.dll
2009-02-23 00:25:14 ----A---- C:\Windows\system32\puiobj.dll
2009-02-23 00:25:14 ----A---- C:\Windows\system32\netid.dll
2009-02-23 00:25:14 ----A---- C:\Windows\system32\dps.dll
2009-02-23 00:25:14 ----A---- C:\Windows\system32\cryptui.dll
2009-02-23 00:25:13 ----A---- C:\Windows\system32\photowiz.dll
2009-02-23 00:25:13 ----A---- C:\Windows\system32\netcenter.dll
2009-02-23 00:25:13 ----A---- C:\Windows\system32\MdSched.exe
2009-02-23 00:25:13 ----A---- C:\Windows\system32\InkEd.dll
2009-02-23 00:25:12 ----A---- C:\Windows\system32\WinSCard.dll
2009-02-23 00:25:12 ----A---- C:\Windows\system32\spbcd.dll
2009-02-23 00:25:12 ----A---- C:\Windows\system32\ipsecsnp.dll
2009-02-23 00:25:11 ----A---- C:\Windows\system32\ws2_32.dll
2009-02-23 00:25:11 ----A---- C:\Windows\system32\winrs.exe
2009-02-23 00:25:11 ----A---- C:\Windows\system32\secur32.dll
2009-02-23 00:25:11 ----A---- C:\Windows\system32\odbcjt32.dll
2009-02-23 00:25:11 ----A---- C:\Windows\system32\ntdsapi.dll
2009-02-23 00:25:11 ----A---- C:\Windows\system32\msinfo32.exe
2009-02-23 00:25:10 ----A---- C:\Windows\system32\prnntfy.dll
2009-02-23 00:25:10 ----A---- C:\Windows\system32\NAPSTAT.EXE
2009-02-23 00:25:10 ----A---- C:\Windows\system32\mblctr.exe
2009-02-23 00:25:10 ----A---- C:\Windows\system32\cryptsvc.dll
2009-02-23 00:25:09 ----A---- C:\Windows\system32\schtasks.exe
2009-02-23 00:25:09 ----A---- C:\Windows\system32\RelMon.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\pdh.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\netdiagfx.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\iasacct.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\dmdlgs.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\dhcpsapi.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\catsrv.dll
2009-02-23 00:25:08 ----A---- C:\Windows\system32\activeds.dll
2009-02-23 00:25:07 ----A---- C:\Windows\system32\wvc.dll
2009-02-23 00:25:07 ----A---- C:\Windows\system32\winrm.vbs
2009-02-23 00:25:07 ----A---- C:\Windows\system32\TSpkg.dll
2009-02-23 00:25:07 ----A---- C:\Windows\system32\qwave.dll
2009-02-23 00:25:07 ----A---- C:\Windows\system32\FirewallControlPanel.exe
2009-02-23 00:25:07 ----A---- C:\Windows\system32\fdWCN.dll
2009-02-23 00:25:07 ----A---- C:\Windows\system32\dfrgfat.exe
2009-02-23 00:25:06 ----A---- C:\Windows\system32\rastapi.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\netcorehc.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\NAPHLPR.DLL
2009-02-23 00:25:06 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2009-02-23 00:25:06 ----A---- C:\Windows\system32\msacm32.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\ifmon.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\dot3msm.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\dot3cfg.dll
2009-02-23 00:25:06 ----A---- C:\Windows\system32\AudioSes.dll
2009-02-23 00:25:05 ----A---- C:\Windows\system32\wow32.dll
2009-02-23 00:25:05 ----A---- C:\Windows\system32\shsetup.dll
2009-02-23 00:25:05 ----A---- C:\Windows\system32\adsldp.dll
2009-02-23 00:25:04 ----A---- C:\Windows\system32\els.dll
2009-02-23 00:25:03 ----A---- C:\Windows\system32\wscntfy.dll
2009-02-23 00:25:03 ----A---- C:\Windows\system32\QUTIL.DLL
2009-02-23 00:25:03 ----A---- C:\Windows\system32\ntshrui.dll
2009-02-23 00:25:03 ----A---- C:\Windows\system32\msdt.dll
2009-02-23 00:25:03 ----A---- C:\Windows\system32\iasdatastore.dll
2009-02-23 00:25:03 ----A---- C:\Windows\system32\clbcatq.dll
2009-02-23 00:25:02 ----A---- C:\Windows\system32\stobject.dll
2009-02-23 00:25:02 ----A---- C:\Windows\system32\sdrsvc.dll
2009-02-23 00:25:02 ----A---- C:\Windows\system32\net1.exe
2009-02-23 00:25:02 ----A---- C:\Windows\system32\ipnathlp.dll
2009-02-23 00:25:02 ----A---- C:\Windows\system32\iasrecst.dll
2009-02-23 00:25:02 ----A---- C:\Windows\system32\fdSSDP.dll
2009-02-23 00:25:01 ----A---- C:\Windows\system32\wlgpclnt.dll
2009-02-23 00:25:01 ----A---- C:\Windows\system32\wlanui.dll
2009-02-23 00:25:01 ----A---- C:\Windows\system32\dsprop.dll
2009-02-23 00:25:01 ----A---- C:\Windows\system32\Defrag.exe
2009-02-23 00:25:01 ----A---- C:\Windows\system32\adsldpc.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\upnphost.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\systemcpl.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\smss.exe
2009-02-23 00:25:00 ----A---- C:\Windows\system32\rasman.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\nci.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\mprmsg.dll
2009-02-23 00:25:00 ----A---- C:\Windows\system32\ActiveContentWizard.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\t2embed.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\rascfg.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\PresentationSettings.exe
2009-02-23 00:24:59 ----A---- C:\Windows\system32\P2P.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\oleprn.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\msftedit.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2009-02-23 00:24:59 ----A---- C:\Windows\system32\loghours.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\fde.dll
2009-02-23 00:24:59 ----A---- C:\Windows\system32\CompatUI.dll
2009-02-23 00:24:58 ----A---- C:\Windows\system32\MigAutoPlay.exe
2009-02-23 00:24:58 ----A---- C:\Windows\system32\L2SecHC.dll
2009-02-23 00:24:58 ----A---- C:\Windows\system32\dxdiag.exe
2009-02-23 00:24:57 ----A---- C:\Windows\system32\Wpc.dll
2009-02-23 00:24:57 ----A---- C:\Windows\system32\wdigest.dll
2009-02-23 00:24:57 ----A---- C:\Windows\system32\DFDWiz.exe
2009-02-23 00:24:57 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2009-02-23 00:24:56 ----A---- C:\Windows\system32\setupcl.exe
2009-02-23 00:24:56 ----A---- C:\Windows\system32\rtm.dll
2009-02-23 00:24:56 ----A---- C:\Windows\system32\msutb.dll
2009-02-23 00:24:56 ----A---- C:\Windows\system32\mprdim.dll
2009-02-23 00:24:56 ----A---- C:\Windows\system32\gpapi.dll
2009-02-23 00:24:56 ----A---- C:\Windows\system32\devmgr.dll
2009-02-23 00:24:55 ----A---- C:\Windows\system32\wiaservc.dll
2009-02-23 00:24:55 ----A---- C:\Windows\system32\scansetting.dll
2009-02-23 00:24:55 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2009-02-23 00:24:54 ----A---- C:\Windows\system32\wdi.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\msihnd.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\kdusb.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\ifsutil.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\dimsroam.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\CertEnrollUI.dll
2009-02-23 00:24:54 ----A---- C:\Windows\system32\actxprxy.dll
2009-02-23 00:24:53 ----A---- C:\Windows\system32\wscapi.dll
2009-02-23 00:24:53 ----A---- C:\Windows\system32\WinFXDocObj.exe
2009-02-23 00:24:53 ----A---- C:\Windows\system32\usbmon.dll
2009-02-23 00:24:53 ----A---- C:\Windows\system32\spoolsv.exe
2009-02-23 00:24:53 ----A---- C:\Windows\system32\mswmdm.dll
2009-02-23 00:24:53 ----A---- C:\Windows\system32\imagehlp.dll
2009-02-23 00:24:53 ----A---- C:\Windows\system32\BOOTVID.DLL
2009-02-23 00:24:53 ----A---- C:\Windows\system32\audiodg.exe
2009-02-23 00:24:52 ----A---- C:\Windows\system32\wlandlg.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\vssadmin.exe
2009-02-23 00:24:52 ----A---- C:\Windows\system32\uudf.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\SyncCenter.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\regapi.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\mycomput.dll
2009-02-23 00:24:52 ----A---- C:\Windows\system32\msls31.dll
2009-02-23 00:24:51 ----A---- C:\Windows\system32\scecli.dll
2009-02-23 00:24:50 ----A---- C:\Windows\system32\SCardSvr.dll
2009-02-23 00:24:50 ----A---- C:\Windows\system32\newdev.dll
2009-02-23 00:24:50 ----A---- C:\Windows\system32\mstask.dll
2009-02-23 00:24:50 ----A---- C:\Windows\system32\mspaint.exe
2009-02-23 00:24:50 ----A---- C:\Windows\system32\kdcom.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\termmgr.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\sud.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\ssdpsrv.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\samlib.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\puiapi.dll
2009-02-23 00:24:49 ----A---- C:\Windows\system32\duser.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\tapisrv.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\Robocopy.exe
2009-02-23 00:24:48 ----A---- C:\Windows\system32\mtxoci.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\input.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\inetpp.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\cic.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\AzSqlExt.dll
2009-02-23 00:24:48 ----A---- C:\Windows\system32\adtschema.dll
2009-02-23 00:24:47 ----A---- C:\Windows\system32\wisptis.exe
2009-02-23 00:24:47 ----A---- C:\Windows\system32\SLUINotify.dll
2009-02-23 00:24:47 ----A---- C:\Windows\system32\iasads.dll
2009-02-23 00:24:47 ----A---- C:\Windows\system32\cscapi.dll
2009-02-23 00:24:46 ----A---- C:\Windows\system32\WUDFPlatform.dll
2009-02-23 00:24:46 ----A---- C:\Windows\system32\sdshext.dll
2009-02-23 00:24:46 ----A---- C:\Windows\system32\netiohlp.dll
2009-02-23 00:24:46 ----A---- C:\Windows\system32\authz.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\wpcsvc.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\webcheck.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\verifier.exe
2009-02-23 00:24:45 ----A---- C:\Windows\system32\themeui.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\msdtclog.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\msdt.exe
2009-02-23 00:24:45 ----A---- C:\Windows\system32\d3d8.dll
2009-02-23 00:24:45 ----A---- C:\Windows\system32\cmdial32.dll
2009-02-23 00:24:44 ----A---- C:\Windows\system32\wintrust.dll
2009-02-23 00:24:44 ----A---- C:\Windows\system32\vdsldr.exe
2009-02-23 00:24:44 ----A---- C:\Windows\system32\slcinst.dll
2009-02-23 00:24:44 ----A---- C:\Windows\system32\oledlg.dll
2009-02-23 00:24:44 ----A---- C:\Windows\system32\dxtmsft.dll
2009-02-23 00:24:44 ----A---- C:\Windows\system32\clfsw32.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\wpccpl.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\WMPhoto.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\SnippingTool.exe
2009-02-23 00:24:43 ----A---- C:\Windows\system32\SndVol.exe
2009-02-23 00:24:43 ----A---- C:\Windows\system32\rasgcw.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\pnpsetup.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\ntmarta.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\mmcbase.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\mlang.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\icfupgd.dll
2009-02-23 00:24:43 ----A---- C:\Windows\system32\icardie.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\wpd_ci.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\slmgr.vbs
2009-02-23 00:24:42 ----A---- C:\Windows\system32\rasqec.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\nslookup.exe
2009-02-23 00:24:42 ----A---- C:\Windows\system32\ncobjapi.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\msrd3x40.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\msaatext.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\mpr.dll
2009-02-23 00:24:42 ----A---- C:\Windows\system32\diskraid.exe
2009-02-23 00:24:41 ----A---- C:\Windows\system32\wtsapi32.dll
2009-02-23 00:24:41 ----A---- C:\Windows\system32\unlodctr.exe
2009-02-23 00:24:41 ----A---- C:\Windows\system32\syssetup.dll
2009-02-23 00:24:41 ----A---- C:\Windows\system32\mscms.dll
2009-02-23 00:24:41 ----A---- C:\Windows\system32\lodctr.exe
2009-02-23 00:24:41 ----A---- C:\Windows\system32\extmgr.dll
2009-02-23 00:24:41 ----A---- C:\Windows\system32\accessibilitycpl.dll
2009-02-23 00:24:40 ----A---- C:\Windows\system32\ulib.dll
2009-02-23 00:24:40 ----A---- C:\Windows\system32\sethc.exe
2009-02-23 00:24:40 ----A---- C:\Windows\system32\pnpui.dll
2009-02-23 00:24:40 ----A---- C:\Windows\system32\iaspolcy.dll
2009-02-23 00:24:40 ----A---- C:\Windows\system32\fontsub.dll
2009-02-23 00:24:40 ----A---- C:\Windows\system32\dxdiagn.dll
2009-02-23 00:24:39 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2009-02-23 00:24:39 ----A---- C:\Windows\system32\Utilman.exe
2009-02-23 00:24:39 ----A---- C:\Windows\system32\trkwks.dll
2009-02-23 00:24:39 ----A---- C:\Windows\system32\scesrv.dll
2009-02-23 00:24:39 ----A---- C:\Windows\system32\oobefldr.dll
2009-02-23 00:24:39 ----A---- C:\Windows\system32\Mcx2Svc.dll
2009-02-23 00:24:39 ----A---- C:\Windows\system32\cabinet.dll
2009-02-23 00:24:38 ----A---- C:\Windows\system32\unattend.dll
2009-02-23 00:24:38 ----A---- C:\Windows\system32\ogldrv.dll
2009-02-23 00:24:38 ----A---- C:\Windows\system32\occache.dll
2009-02-23 00:24:38 ----A---- C:\Windows\system32\lnkstub.exe
2009-02-23 00:24:38 ----A---- C:\Windows\system32\cabview.dll
2009-02-23 00:24:37 ----A---- C:\Windows\system32\wpcao.dll
2009-02-23 00:24:37 ----A---- C:\Windows\system32\wermgr.exe
2009-02-23 00:24:37 ----A---- C:\Windows\system32\dfdts.dll
2009-02-23 00:24:37 ----A---- C:\Windows\system32\bthci.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\sdspres.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\p2pcollab.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\msnetobj.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\iepeers.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\eappgnui.dll
2009-02-23 00:24:36 ----A---- C:\Windows\system32\basesrv.dll
2009-02-23 00:24:35 ----A---- C:\Windows\system32\ieaksie.dll
2009-02-23 00:24:35 ----A---- C:\Windows\system32\drvinst.exe
2009-02-23 00:24:35 ----A---- C:\Windows\system32\dispdiag.exe
2009-02-23 00:24:35 ----A---- C:\Windows\system32\DHCPQEC.DLL
2009-02-23 00:24:33 ----A---- C:\Windows\system32\mmcss.dll
2009-02-23 00:24:33 ----A---- C:\Windows\system32\dsquery.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\verifier.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\secproc_ssp.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\RstrtMgr.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\mprapi.dll
2009-02-23 00:24:32 ----A---- C:\Windows\system32\efsadu.dll
2009-02-23 00:24:31 ----A---- C:\Windows\system32\WMVENCOD.DLL
2009-02-23 00:24:31 ----A---- C:\Windows\system32\wercplsupport.dll
2009-02-23 00:24:31 ----A---- C:\Windows\system32\qedit.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\WPDSp.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\setupugc.exe
2009-02-23 00:24:30 ----A---- C:\Windows\system32\networkmap.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\msoeacct.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\iscsiexe.dll
2009-02-23 00:24:30 ----A---- C:\Windows\system32\icacls.exe
2009-02-23 00:24:30 ----A---- C:\Windows\system32\d3d10core.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\wiascanprofiles.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\wiaaut.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\usercpl.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2009-02-23 00:24:29 ----A---- C:\Windows\system32\pnrpnsp.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\pngfilt.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\p2pnetsh.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\msrdc.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\msdmo.dll
2009-02-23 00:24:29 ----A---- C:\Windows\system32\consent.exe
2009-02-23 00:24:29 ----A---- C:\Windows\system32\conime.exe
2009-02-23 00:24:28 ----A---- C:\Windows\system32\xactsrv.dll
2009-02-23 00:24:28 ----A---- C:\Windows\system32\PNPXAssocPrx.dll
2009-02-23 00:24:28 ----A---- C:\Windows\system32\PNPXAssoc.dll
2009-02-23 00:24:28 ----A---- C:\Windows\system32\lsass.exe
2009-02-23 00:24:28 ----A---- C:\Windows\system32\autoplay.dll
2009-02-23 00:24:24 ----A---- C:\Windows\system32\systeminfo.exe
2009-02-23 00:24:24 ----A---- C:\Windows\system32\pcadm.dll
2009-02-23 00:24:24 ----A---- C:\Windows\system32\lpk.dll
2009-02-23 00:24:24 ----A---- C:\Windows\system32\findstr.exe
2009-02-23 00:24:24 ----A---- C:\Windows\system32\eappprxy.dll
2009-02-23 00:24:24 ----A---- C:\Windows\system32\drmmgrtn.dll
2009-02-23 00:24:24 ----A---- C:\Windows\system32\dpapimig.exe
2009-02-23 00:24:23 --

Salut Jennifer007


Ton rapport n'est pas complet, utilise cjoint.com pour poster en lien ton rapport :
http://cjoint.com/

- Clique sur Parcourir pour aller chercher le rapport
- Clique sur Ouvrir ensuite sur Créer le lien Cjoint

- Fais un copier/coller du lien qui est devant Le lien a été créé: dans ta prochaine réponse.

Si ton rapport plus grand que 500Ko ici : http://www.sendspace.com/


@++

salut dedetraque .... voila le lien http://cjoint.com/?dFv2NEPQgY

Salut Jennifer007


On va vérifier si rien de caché :

Fais un scan en ligne ici :
http://webscanner.kaspersky.fr/ (A faire avec Internet Explorer)

Désactive ton Antivirus avant le scan en ligne
http://forum.pcastuces.com/desactiver_les_protections_residentes-f31s4.htm

Sur la page du scan en bas à droite clique sur Démarrer Online-scanner et dans la nouvelle fenêtre qui s'affiche clique sur J'accepte

Accepte les Contrôle ActivX

Choisis Poste de travail pour le scan. Celui-ci terminé clique sur Enregistrer rapport sous (Choisis fichier texte)

Poste le contenue du rapport

Aide pour l'utilisation du scan en ligne :
http://forum.pcastuces.com/kaspersky_online_scanner___tutoriel-f31s10.htm

P.S. : Si tu as un problème pour l'installation du Contrôle ActivX lis ceci :
http://www.inoculer.com/activex.php3

NOTE : Si tu reçoit le message "La licence de Kaspersky On-line Scanner est périmée"
Via Ajout/Suppression de programmes supprime Kaspersky Online Scanner et refaire l’installation.


@++

salut dedetraque jai fait tous ce que tu ma dit mais quend je click sur j'accept rie ne ce passe .... mon kerspesky et deactive mais tjr pareille esque il y une autre maitoude ?

salut dedetraque c'est bon j'utilise internet explorer et ca as marche je te poste le raport dans quelque instant
merci

Salut Jennifer007


Mettre à jour ton Antivirus et fais moi un scan


@++

bonsoire dadatraque ....ca nas pas marche je v le refaire

Salut Jennifer007


Toujours avec Internet Explorer essaie ce lien :

http://www.kaspersky.com/kos/eng/partner/71365/languages/english/main.html?n=(...)


Sinon voir avec BitDefender ici :

http://www.bitdefender.fr/scan8/ie.html (A faire avec Internet Explorer)


Tutoriel : http://www.malekal.com/scan_Av_en_ligne.html#mozTocId406812


@++

salut dadatraque je crois que ca marche je suis entraine de scanner poste de trv je te poste les donner de' que je fini
merci d'avance

-------------------------------------------------------------------------------
KASPERSKY ON-LINE SCANNER REPORT
Monday, March 02, 2009 8:48:03 PM
Système d'exploitation : Home Edition, Service Pack 1 (Build 6001)
Kaspersky On-line Scanner version : 5.0.84.2
Dernière mise à jour de la base antivirus Kaspersky : 29/03/2009
Enregistrements dans la base antivirus Kaspersky : 1793134
-------------------------------------------------------------------------------

Paramètres d'analyse:
Analyser avec la base antivirus suivante: standard
Analyser les archives: vrai
Analyser les bases de messagerie: vrai

Cible de l'analyse - Poste de travail:
C:\
D:\

Statistiques de l'analyse:
Total d'objets analysés: 90690
Nombre de virus trouvés: 0
Nombre d'objets infectés: 0 / 0
Nombre d'objets suspects: 0
Durée de l'analyse: 01:16:42

Nom de l'objet infecté / Nom du virus / Dernière action
C:\Boot\BCD L'objet est verrouillé ignoré
C:\Boot\BCD.LOG L'objet est verrouillé ignoré
C:\ProgramData\Kaspersky Lab\~PRCustomProps#1fa.dat L'objet est verrouillé ignoré
C:\ProgramData\Kaspersky Lab\~PRObjects#1fa.dat L'objet est verrouillé ignoré
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\894fea628e36f68e127ee796f1a2285a_fd4d1a7d-7d20-4880-b919-acd6427e5d7f L'objet est verrouillé ignoré
C:\ProgramData\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.cab L'objet est verrouillé ignoré
C:\ProgramData\Microsoft\Search Enhancement Pack\SeaPort\SearchBoxExt.cab L'objet est verrouillé ignoré
C:\ProgramData\Microsoft\Search Enhancement Pack\SeaPort\SeaShadow.cab L'objet est verrouillé ignoré
C:\Users\All Users\Kaspersky Lab\~PRCustomProps#1fa.dat L'objet est verrouillé ignoré
C:\Users\All Users\Kaspersky Lab\~PRObjects#1fa.dat L'objet est verrouillé ignoré
C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\894fea628e36f68e127ee796f1a2285a_fd4d1a7d-7d20-4880-b919-acd6427e5d7f L'objet est verrouillé ignoré
C:\Users\All Users\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.cab L'objet est verrouillé ignoré
C:\Users\All Users\Microsoft\Search Enhancement Pack\SeaPort\SearchBoxExt.cab L'objet est verrouillé ignoré
C:\Users\All Users\Microsoft\Search Enhancement Pack\SeaPort\SeaShadow.cab L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Feeds Cache\index.dat L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Internet Explorer\MSIMGSIZ.DAT L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Messenger\ContactsLog.txt L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009030220090303\index.dat L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows\History\Low\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG1 L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG2 L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows\UsrClass.dat{32ca00f9-008f-11de-9236-001b3814e3f2}.TM.blf L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows\UsrClass.dat{32ca00f9-008f-11de-9236-001b3814e3f2}.TMContainer00000000000000000001.regtrans-ms L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows\UsrClass.dat{32ca00f9-008f-11de-9236-001b3814e3f2}.TMContainer00000000000000000002.regtrans-ms L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows\WindowsUpdate.log L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows Defender\FileTracker\{48590DB9-7B2E-48D0-BE03-FFE281A74F1B} L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows Live Contacts\{5991304e-617f-405a-abe8-9b5f1b8e2223}\DBStore\contacts.edb L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows Live Contacts\{5991304e-617f-405a-abe8-9b5f1b8e2223}\DBStore\LogFiles\edb.log L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows Live Contacts\{5991304e-617f-405a-abe8-9b5f1b8e2223}\DBStore\LogFiles\edbtmp.log L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows Live Contacts\{5991304e-617f-405a-abe8-9b5f1b8e2223}\DBStore\tempedb.edb L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows Live Contacts\{c01a2055-21ba-4b7b-b73f-ec9e0cfeb598}\DBStore\contacts.edb L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows Live Contacts\{c01a2055-21ba-4b7b-b73f-ec9e0cfeb598}\DBStore\LogFiles\edb.log L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows Live Contacts\{c01a2055-21ba-4b7b-b73f-ec9e0cfeb598}\DBStore\LogFiles\edbtmp.log L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows Live Contacts\{c01a2055-21ba-4b7b-b73f-ec9e0cfeb598}\DBStore\tempedb.edb L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Microsoft\Windows Sidebar\Settings.ini L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Mozilla\Firefox\Profiles\6ree58ut.default\Cache\_CACHE_001_ L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Mozilla\Firefox\Profiles\6ree58ut.default\Cache\_CACHE_002_ L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Mozilla\Firefox\Profiles\6ree58ut.default\Cache\_CACHE_003_ L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Mozilla\Firefox\Profiles\6ree58ut.default\Cache\_CACHE_MAP_ L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Mozilla\Firefox\Profiles\6ree58ut.default\OfflineCache\index.sqlite L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Mozilla\Firefox\Profiles\6ree58ut.default\urlclassifier3.sqlite L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Temp\etilqs_iW8u6l8b2QVkEEixtRaf L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Temp\etilqs_jetQHdUfiIMDB8sGEzVb L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Temp\etilqs_jetQHdUfiIMDB8sGEzVb-journal L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Local\Temp\fla8CA2.tmp L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\LocalLow\Microsoft\Search Enhancement Pack\Search Box Extension\history.dat L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Roaming\Microsoft\Windows\Cookies\index.dat L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Roaming\Microsoft\Windows\Cookies\Low\index.dat L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Roaming\Mozilla\Firefox\Profiles\6ree58ut.default\cert8.db L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Roaming\Mozilla\Firefox\Profiles\6ree58ut.default\content-prefs.sqlite L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Roaming\Mozilla\Firefox\Profiles\6ree58ut.default\cookies.sqlite L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Roaming\Mozilla\Firefox\Profiles\6ree58ut.default\downloads.sqlite L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Roaming\Mozilla\Firefox\Profiles\6ree58ut.default\formhistory.sqlite L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Roaming\Mozilla\Firefox\Profiles\6ree58ut.default\key3.db L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Roaming\Mozilla\Firefox\Profiles\6ree58ut.default\parent.lock L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Roaming\Mozilla\Firefox\Profiles\6ree58ut.default\permissions.sqlite L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Roaming\Mozilla\Firefox\Profiles\6ree58ut.default\places.sqlite L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Roaming\Mozilla\Firefox\Profiles\6ree58ut.default\places.sqlite-journal L'objet est verrouillé ignoré
C:\Users\Gnawy\AppData\Roaming\Mozilla\Firefox\Profiles\6ree58ut.default\search.sqlite L'objet est verrouillé ignoré
C:\Users\Gnawy\NTUSER.DAT L'objet est verrouillé ignoré
C:\Users\Gnawy\ntuser.dat.LOG1 L'objet est verrouillé ignoré
C:\Users\Gnawy\ntuser.dat.LOG2 L'objet est verrouillé ignoré
C:\Users\Gnawy\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf L'objet est verrouillé ignoré
C:\Users\Gnawy\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms L'objet est verrouillé ignoré
C:\Users\Gnawy\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms L'objet est verrouillé ignoré
C:\Users\Gnawy\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog L'objet est verrouillé ignoré
C:\Windows\Debug\PASSWD.LOG L'objet est verrouillé ignoré
C:\Windows\Debug\WIA\wiatrace.log L'objet est verrouillé ignoré
C:\Windows\Logs\CBS\CBS.log L'objet est verrouillé ignoré
C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe.config L'objet est verrouillé ignoré
C:\Windows\Panther\UnattendGC\diagerr.xml L'objet est verrouillé ignoré
C:\Windows\Panther\UnattendGC\diagwrn.xml L'objet est verrouillé ignoré
C:\Windows\Panther\UnattendGC\setupact.log L'objet est verrouillé ignoré
C:\Windows\Panther\UnattendGC\setuperr.log L'objet est verrouillé ignoré
C:\Windows\security\database\secedit.sdb L'objet est verrouillé ignoré
C:\Windows\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 L'objet est verrouillé ignoré
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 L'objet est verrouillé ignoré
C:\Windows\System32\catroot2\edb.log L'objet est verrouillé ignoré
C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb L'objet est verrouillé ignoré
C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb L'objet est verrouillé ignoré
C:\Windows\System32\drivers\fidbox.dat L'objet est verrouillé ignoré
C:\Windows\System32\drivers\fidbox.idx L'objet est verrouillé ignoré
C:\Windows\System32\drivers\fidbox2.dat L'objet est verrouillé ignoré
C:\Windows\System32\drivers\fidbox2.idx L'objet est verrouillé ignoré
C:\Windows\System32\LogFiles\Scm\SCM.EVM L'objet est verrouillé ignoré
C:\Windows\System32\LogFiles\WUDF\WUDFTrace.etl L'objet est verrouillé ignoré
C:\Windows\System32\restore\MachineGuid.txt L'objet est verrouillé ignoré
C:\Windows\System32\spool\SpoolerETW.etl L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\0296C47314AB746EC35476488248FCD9.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\040270F850D5C3C91057DDDA2DA294D8.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\0A9DBC92D554324656F61F9862679F27.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\0DF617D6737A7561E732F853792261C3.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\1E2E58C73053C7775EB226DB5E739137.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\26C097A9392F8C541AD42E89B7909073.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\2A811E5CCC22CC9D7AE2B04EF0402688.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\2AA23BB86A5EBD8BC2D820944E55B233.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\2CE523184A801AA7361A7039E2D6B41D.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\2D57A7682ACD19214C258D31A06D008F.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\3460B7617E0429A960E481B197F238A3.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\376786241A5443E41378D25CF812FCC1.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\3DC0BABDCA20E5E319117C21BD4BD795.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\494C62FAA08CD5217399BAA555FF491B.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\4A01E0F376B5833EBA98F0D1D5F60CD1.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\4B471F64BAF831EC7945C820FD5A16E5.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\4CB32C0A77CD4D9B0C9618F73F786C32.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\5774C77265BE4C55B5C6C9718979E015.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\5966D45C7B25EACA46E87DD8E5703964.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\5B5D21CF62E70BACF9D085E6AA6CE143.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\69554D930FCA40B0304B9A43A8036F2D.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\72F867EF62976CE9F70993FF3E68A4EB.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\75054C3771DF289038069A9BB1C1FB6E.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\7851AF96EA828F912853F32DB0D96138.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\7BDE76979585395D59B5DA1D62E63C50.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\7F417E1A6D819A9B2FEB55DA6858EA0A.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\87AA2A001CE3E89926688B93E4DC2992.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\8C718B5AFD373885B68D2836088CAF9A.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\903E49C444C46FEF5F2C3A189C9CEF71.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\96ABB1671705F680578FE240427CBD4F.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\9A72EE7775E8021F75961342B8AFD1B4.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\9AD3182A2F39A3E091E15109132EC6CC.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\9CD33F0956942860B50AA1B9330DEFAF.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\9E06E4FE97F0CBB8D659894823F805D7.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\A80FF2DC09487ECD60AFB147B262BDD7.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\AA6E0E396C238977CA909EFD82299737.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\AA742824DCADA846BA4B665D686DD5D6.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\BBF206490BAA431B592F9A13534F43F6.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\BE81B2C0741907C1FC1C42B6223E59AD.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\D1A1B12A7DA3F9675C01397A26DBF4B3.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\D4C4BA54B6A8FA6211E60E2ADFF7426A.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\DE391013DA56ABA39FFF40A9ABDF052F.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\DF80FD3849FFF74B4BF43E2EA8ADEC8A.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\DFB9AD54AC2D3B8122567AAD3BF3EB7F.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\E04DE4CDFEC284A342159BB920976701.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\E737DE61441445E1FDFCA45EF5E7D987.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\E9D8A460B2C986DD5FF19F299F4A27EC.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\EC45C70F2A3D9DED718E71631C38E2FE.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\F01326692CC5736EBAC31B9FC2381CF2.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\AutoRecover\F81E6BEBC3067C406E6C491608474198.mof L'objet est verrouillé ignoré
C:\Windows\System32\wbem\Logs\WMITracing.log L'objet est verrouillé ignoré
C:\Windows\System32\wbem\Repository\INDEX.BTR L'objet est verrouillé ignoré
C:\Windows\System32\wbem\Repository\MAPPING1.MAP L'objet est verrouillé ignoré
C:\Windows\System32\wbem\Repository\MAPPING2.MAP L'objet est verrouillé ignoré
C:\Windows\System32\wbem\Repository\OBJECTS.DATA L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Application.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\DFS Replication.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\HardwareEvents.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Internet Explorer.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Key Management Service.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Media Center.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Bits-Client%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-CodeIntegrity%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-CorruptedFileRecovery-Client%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-CorruptedFileRecovery-Server%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-DateTimeControlPanel%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-DPS%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-PLA%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Networking%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Performance%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-DiskDiagnostic%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-DiskDiagnosticDataCollector%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-DiskDiagnosticResolver%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-DriverFrameworks-UserMode%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Forwarding%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-GroupPolicy%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-International%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WDI%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-LanguagePackSetup%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkAccessProtection%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-ParentalControls%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Program-Compatibility-Assistant%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReadyBoost%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReliabilityAnalysisComponent%4Metrics.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReliabilityAnalysisComponent%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Detector%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Resolver%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Leak-Diagnostic%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-RestartManager%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-TaskScheduler%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-RDPClient%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC-FileVirtualization%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsUpdateClient%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Winlogon%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Wired-AutoConfig%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Microsoft-Windows-WLAN-AutoConfig%4Operational.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Security.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\Setup.evtx L'objet est verrouillé ignoré
C:\Windows\System32\winevt\Logs\System.evtx L'objet est verrouillé ignoré
C:\Windows\Tasks\SCHEDLGU.TXT L'objet est verrouillé ignoré
C:\Windows\WindowsUpdate.log L'objet est verrouillé ignoré
C:\Windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6000.16386_none_cef7ceb03914a67f\dnary.xsd L'objet est verrouillé ignoré
C:\Windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6001.18000_none_d12e90ac35ffb753\dnary.xsd L'objet est verrouillé ignoré

Analyse terminée.

salut dadtraque voila le raport ca as bien marche
merci

Salut Jennifer007


Ton rapport est propre, as-tu d'autre souci?


@++

salut dadatraque je vien de rentre du trv .... merci bcp pour ton aide je crois que tous vas bien merci encord une fois a bientot

Salut Jennifer007


On va faire un ménage des outils téléchargés pour la désinfection, télécharge Tools Cleaner sur le bureau :

http://pc-system.fr/TC/ToolsCleaner2.exe


- Faire un clique droit sur ToolsCleaner2.exe sur le bureau, et choisi exécuter en tant qu'administrateur
- Clique sur Recherche et laisse le scan agir.
- Clique sur Suppression pour finaliser.
- Tu peux, si tu le souhaites, te servir des Options facultatives.
- Clique sur Quitter pour obtenir le rapport.
- Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).
- Si des outils restes après le passage de Tools Cleaner, tu pourras les supprimer manuellement ainsi que tous les rapports qui on été généré lors de la désinfection.


Important de mettre à jour Windows et tes logiciels :
Mettre Windows(catégories critique, Services Pack et Services Release) à jour : http://www.windowsupdate.com/

Faire un scan de vulnérabilités afin de vérifier que tes logiciels soit à jour sans failles de sécurités et mettre à jour :
http://www.malekal.com/scan_vulnerabilite.php

Faire un ménage des fichiers inutiles et de la base de registre :
http://www.malekal.com/tutorial_CCleaner.html

Donne des nouvelles si tu as des soucis et on passe à la résolution du sujet par la suite.


@++

thx a lot ..... take care Dadatraque :O)

Salut Jennifer007


Je te donne quelques consignes de sécurité :

- Windows Update parfaitement à jour http://www.windowsupdate.com/ (catégories critique, Services Pack et Services Release)
- pare-feu bien paramétré
- antivirus bien paramétré et mis à jour régulièrement (quotidiennement s'il le faut) avec un scan complet régulier (journalier s'il le faut).
- une attitude prudente vis à vis de la navigation (pas de sites douteux : cracks, warez, sexe...) et vis à vis de la messagerie (fichiers joints aux messages doivent être scannés avant d'être ouverts)
- pas de téléchargement illégal, qui est le principal facteur d’infection (µTorrent, BitTorrent, eMule, Limewire, etc..) Le danger des cracks !
- une attitude vigilante (être à l'affût d'un fonctionnement inhabituel de son système)
- nettoyage hebdomadaire du système (suppression des fichiers inutiles, nettoyage de la base de registre, scandisk, defrag)
- scan hebdomadaire antispyware ( je conseil MalwareByte's Anti-Malware)
- un contrôle régulier de la console JAVA pour s'assurer qu'elle est à jour http://www.java.com/en/download/help/testvm.xml
- un scan de vulnérabilités afin de vérifier que tes logiciels soit à jour sans failles de sécurités :
http://www.malekal.com/scan_vulnerabilite.php


De bonne lecture :
http://www.malekal.com/menu_windows_general.php
http://www.malekal.com/menu_windows_securite.php


Si tu considère ton problème comme résolu, édite ton premier poste et ajoute [résolu] dans le titre.

Bonne journée/soirée et bon surf


@++

Malwarebytes' Anti-Malware 1.35
Database version: 1922
Windows 6.0.6001 Service Pack 1

1/30/2009 10:31:30 PM
mbam-log-2009-01-30 (22-31-30).txt

Scan type: Full Scan (C:\|)
Objects scanned: 143991
Time elapsed: 1 hour(s), 33 minute(s), 13 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
salut Dadatraque ... voila le raport ... et c positive merci bcp pour ton aide c vraiment gentille .... j'apresie vraiment 1000 fois merci
et bonne nuit
jenny

Salut Jennifer007


Pas le bon rapport, ça va


@++

hehehe dadatraque le problem sur mon computer que jai mon antivirus qui expireraujourdhui danc qsq jai fait ,,,, jai mais une deferante date sur mon computer comme ca l'antivuss dure un peut mais je peut pas faire la mise a jour qsq tu me conseillle de faire ?

Salut Jennifer007


Ben je sais pas moi, toi veux-tu avoir en gratuit où payer pour ton Antivirus?


Je te conseil Antivir :

http://www.malekal.com/tutorial_antivir.php


@++

bonjour Dadatraque ... je vien de finir mon trv ... ce que je cherche une clef pour kaspersky gratuite lol c comme ca que jai eu le viruss psq jai telecharger des clef pour le deblocker

Salut Jennifer007


Désinstalle le et installe Antivir, reste dans la légalité, bien lire les consignes de sécurité :

- une attitude prudente vis à vis de la navigation (pas de sites douteux : cracks, warez, sexe...) et vis à vis de la messagerie (fichiers joints aux messages doivent être scannés avant d'être ouverts)
- pas de téléchargement illégal, qui est le principal facteur d’infection (µTorrent, BitTorrent, eMule, Limewire, etc..) Le danger des cracks !


As-tu d'autre souci?


@++

Merci bcp Dadatraque je v suivre tes conseilles japrecie ton aide et a bientot
grannnnnd bisouuu bye

Salut Jennifer007





@++