Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Hijackthis Log: Please Help Diagnose


  • This topic is locked This topic is locked
8 replies to this topic

#1 gui94

gui94

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:10:03 PM

Posted 07 February 2007 - 11:38 AM

infected by win32 sdbot gen...
thx

Logfile of HijackThis v1.99.1
Scan saved at 17:39:28, on 07/02/2007
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\htpatch.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\guillaume\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?p...ER}&ar=home
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.com/search?q=%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: MS_update_0612_KB74062.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111...all/xscan53.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

Edited by gui94, 07 February 2007 - 11:42 AM.


BC AdBot (Login to Remove)

 


m

#2 gui94

gui94
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:10:03 PM

Posted 08 February 2007 - 09:13 AM

up

please someone help me...
thank you

#3 RichieUK

RichieUK

    Malware Assassin


  • Malware Response Team
  • 13,614 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 08 February 2007 - 09:54 AM

Welcome to Bleeping Computer gui94 :thumbsup:

Please make sure all hidden files are showing:

* Click 'Start'.
* Open 'My Computer'.
* Select the 'Tools' menu and click 'Folder Options'.
* Select the 'View' tab.
* Under the 'Hidden files and folders' heading select 'Show hidden files and folders'.
* Uncheck the 'Hide file extensions for known types' option.
* Uncheck the 'Hide protected operating system files (recommended)' option.
* Click Yes to confirm.
* Click OK.

==========================

Have Hijack This fix the following by placing a check in the appropriate boxes and selecting 'Fix checked'.
Make sure all browser and all Windows Explorer windows are closed before fixing:
O4 - Global Startup: MS_update_0612_KB74062.exe
Exit Hijackthis.

==========================

Please download Combofix and save to the desktop:
http://download.bleepingcomputer.com/sUBs/combofix.exe
http://www.techsupportforum.com/sectools/combofix.exe
Note:
It is important that it is saved directly to your desktop

Close any open browsers.
Double click on combofix.exe & follow the prompts.
When finished, it will produce a log.
Post the C:\ComboFix.txt in your next reply.
Note:
Do not mouseclick combofix's window whilst it's running.
That may cause the program to freeze/hang.


Restart your pc,post the C:\ComboFix.txt and a new Hijackthis log into your next reply.
Posted Image
Posted Image

#4 gui94

gui94
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:10:03 PM

Posted 08 February 2007 - 10:19 AM

all points have been checked as you told me ^^
waouh... combofix : very long log...

Thx Richie

New scan Hijack

Logfile of HijackThis v1.99.1
Scan saved at 16:11:50, on 08/02/2007
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\htpatch.exe
C:\Program Files\a-squared Anti-Malware\a2guard.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\guillaume\Bureau\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.com/search?q=%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111...all/xscan53.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe



ComboFix 07-02-07 - Running from: "C:\Documents and Settings\guillaume\Bureau"

((((((((((((((((((((((((((((((( Files Created from 2007-01-08 to 2007-02-08 ))))))))))))))))))))))))))))))))))


2007-02-08 15:21 <REP> d-------- C:\WINDOWS\LastGood
2007-02-07 18:12 <REP> d-------- C:\Program Files\a-squared Anti-Malware
2007-02-07 17:49 <REP> d-------- C:\Program Files\Trend Micro
2007-02-07 17:48 <REP> d-------- C:\WINDOWS\AU_Temp
2007-02-07 16:54 <REP> d-------- C:\DOCUME~1\GUILLA~1\Application Data\Google
2007-02-07 16:05 102,800 --a------ C:\WINDOWS\system32\drivers\tmcomm.sys
2007-02-07 15:35 <REP> d-a------ C:\DOCUME~1\ALLUSE~1\Application Data\TEMP
2007-02-07 15:29 0 --a------ C:\WINDOWS\system32\w32apiw.dll
2007-02-07 15:09 28,672 --a------ C:\WINDOWS\system32\drivers\CO_Mon.sys
2007-02-07 13:46 <REP> d-------- C:\WINDOWS\BDOSCAN8
2007-02-06 19:25 <REP> d-------- C:\WINDOWS\report
2007-02-06 19:06 86,094 --a------ C:\WINDOWS\BPMNT.dll
2007-02-06 19:06 71,749 --a------ C:\WINDOWS\hcextoutput.dll
2007-02-06 19:06 229,957 --a------ C:\WINDOWS\tsc.exe
2007-02-06 19:06 1,101,904 --a------ C:\WINDOWS\vsapi32.dll
2007-02-06 19:06 <REP> d-------- C:\WINDOWS\AU_Backup
2007-02-06 19:03 69,689 --a------ C:\WINDOWS\UNZIP.DLL
2007-02-06 19:03 507,904 --a------ C:\WINDOWS\TMUPDATE.DLL
2007-02-06 19:03 286,720 --a------ C:\WINDOWS\PATCH.EXE
2007-02-06 19:03 <REP> d-------- C:\WINDOWS\AU_Log
2007-02-04 15:56 <REP> d-------- C:\WINDOWS\solcache
2007-02-04 15:38 231,936 --------- C:\WINDOWS\system32\SNWValid.dll
2007-02-04 15:38 1,022,976 --------- C:\WINDOWS\system32\SierraNW.dll
2007-02-04 15:25 159,232 --a------ C:\WINDOWS\system\MSS32.DLL
2007-02-03 23:07 <REP> d-------- C:\DOCUME~1\GUILLA~1\Application Data\Lavasoft
2007-02-03 23:07 <REP> d-------- C:\DOCUME~1\ALLUSE~1\Application Data\Spybot - Search & Destroy
2007-02-03 23:06 <REP> d-------- C:\Program Files\Lavasoft
2007-01-28 13:06 <REP> d-------- C:\Program Files\Fichiers communs\Adobe
2007-01-28 13:06 <REP> d-------- C:\DOCUME~1\ALLUSE~1\Application Data\Adobe
2007-01-28 12:58 <REP> d-------- C:\DOCUME~1\GUILLA~1\Application Data\AdobeUM
2007-01-25 18:29 <REP> d-------- C:\DOCUME~1\GUILLA~1\Application Data\Adobe
2007-01-24 07:43 977,920 --a------ C:\WINDOWS\system32\msdtctm.dll
2007-01-24 07:43 97,280 --a------ C:\WINDOWS\system32\txflog.dll
2007-01-24 07:43 82,432 --a------ C:\WINDOWS\system32\mtxoci.dll
2007-01-24 07:43 64,512 --a------ C:\WINDOWS\system32\mtxclu.dll
2007-01-24 07:43 64,512 --a------ C:\WINDOWS\system32\colbact.dll
2007-01-24 07:43 596,480 --a------ C:\WINDOWS\system32\catsrvut.dll
2007-01-24 07:43 499,200 --a------ C:\WINDOWS\system32\comuid.dll
2007-01-24 07:43 442,880 --a------ C:\WINDOWS\system32\rpcrt4.dll
2007-01-24 07:43 365,568 --a------ C:\WINDOWS\system32\msdtcprx.dll
2007-01-24 07:43 226,816 --a------ C:\WINDOWS\system32\es.dll
2007-01-24 07:43 225,280 --a------ C:\WINDOWS\system32\catsrv.dll
2007-01-24 07:43 214,528 --a------ C:\WINDOWS\system32\rpcss.dll
2007-01-24 07:43 150,528 --a------ C:\WINDOWS\system32\msdtcuiu.dll
2007-01-24 07:43 110,080 --a------ C:\WINDOWS\system32\clbcatex.dll
2007-01-24 07:43 1,177,088 --a------ C:\WINDOWS\system32\comsvcs.dll
2007-01-24 07:43 1,105,408 --a------ C:\WINDOWS\system32\ole32.dll
2007-01-24 07:42 593,408 --a------ C:\WINDOWS\system32\h323msp.dll
2007-01-24 07:42 554,496 --a------ C:\WINDOWS\system32\rtcdll.dll
2007-01-24 07:42 48,640 --a------ C:\WINDOWS\system32\browser.dll
2007-01-24 07:42 456,192 --a------ C:\WINDOWS\system32\ipnathlp.dll
2007-01-24 07:42 36,864 --a------ C:\WINDOWS\system32\mf3216.dll
2007-01-24 07:41 <REP> d-------- C:\DOCUME~1\GUILLA~1\Contacts
2007-01-24 07:39 <REP> d----c--- C:\WINDOWS\system32\DRVSTORE
2007-01-24 07:39 <REP> d-------- C:\Program Files\MSN Messenger
2007-01-24 07:38 262,144 --a------ C:\DOCUME~1\ALLUSE~1\ntuser.dat
2007-01-24 07:35 221,184 --a------ C:\WINDOWS\system32\srrstr.dll
2007-01-24 07:32 26,112 --a------ C:\WINDOWS\system32\xpsp1hfm.exe
2007-01-24 07:32 <REP> d--h-c--- C:\WINDOWS\$xpsp1hfm$
2007-01-24 00:28 98,816 --a------ C:\WINDOWS\system32\dmstyle.dll
2007-01-24 00:28 974,848 --a------ C:\WINDOWS\system32\dxdiag.exe
2007-01-24 00:28 83,968 --a------ C:\WINDOWS\system32\drivers\nabtsfec.sys
2007-01-24 00:28 80,896 --a------ C:\WINDOWS\system32\dpvsetup.exe
2007-01-24 00:28 8,192 --a------ C:\WINDOWS\system32\d3d8thk.dll
2007-01-24 00:28 797,184 --a------ C:\WINDOWS\system32\d3dim700.dll
2007-01-24 00:28 79,360 --a------ C:\WINDOWS\system32\dpwsockx.dll
2007-01-24 00:28 77,824 --a------ C:\WINDOWS\system32\dpmodemx.dll
2007-01-24 00:28 76,800 --a------ C:\WINDOWS\system32\dmscript.dll
2007-01-24 00:28 723,968 --a------ C:\WINDOWS\system32\dpnet.dll
2007-01-24 00:28 68,096 --a------ C:\WINDOWS\system32\dpnhupnp.dll
2007-01-24 00:28 667,648 --a------ C:\WINDOWS\system32\dinput8.dll
2007-01-24 00:28 648,704 --a------ C:\WINDOWS\system32\dinput.dll
2007-01-24 00:28 602,624 --a------ C:\WINDOWS\system32\dx7vb.dll
2007-01-24 00:28 590,336 --a------ C:\WINDOWS\system32\d3dramp.dll
2007-01-24 00:28 58,368 --a------ C:\WINDOWS\system32\dmcompos.dll
2007-01-24 00:28 52,096 --a------ C:\WINDOWS\system32\drivers\msdv.sys
2007-01-24 00:28 491,520 --a------ C:\WINDOWS\system32\dsdmoprp.dll
2007-01-24 00:28 48,512 --a------ C:\WINDOWS\system32\drivers\stream.sys
2007-01-24 00:28 470,528 --a------ C:\WINDOWS\system32\qdvd.dll
2007-01-24 00:28 47,616 --a------ C:\WINDOWS\system32\d3dxof.dll
2007-01-24 00:28 47,104 --a------ C:\WINDOWS\system32\wstdecod.dll
2007-01-24 00:28 467,968 --a------ C:\WINDOWS\system32\diactfrm.dll
2007-01-24 00:28 46,592 --a------ C:\WINDOWS\system32\dxdllreg.exe
2007-01-24 00:28 44,032 --a------ C:\WINDOWS\system32\dimap.dll
2007-01-24 00:28 436,224 --a------ C:\WINDOWS\system32\d3dim.dll
2007-01-24 00:28 381,952 --a------ C:\WINDOWS\system32\dsound.dll
2007-01-24 00:28 381,952 --a------ C:\WINDOWS\system32\dpvoice.dll
2007-01-24 00:28 354,816 --a------ C:\WINDOWS\system32\psisdecd.dll
2007-01-24 00:28 350,208 --a------ C:\WINDOWS\system32\d3drm.dll
2007-01-24 00:28 34,816 --a------ C:\WINDOWS\system32\d3dpmesh.dll
2007-01-24 00:28 33,280 --a------ C:\WINDOWS\system32\dmloader.dll
2007-01-24 00:28 32,768 --a------ C:\WINDOWS\system32\dpnhpast.dll
2007-01-24 00:28 316,928 --a------ C:\WINDOWS\system32\qdv.dll
2007-01-24 00:28 31,744 --a------ C:\WINDOWS\system32\pid.dll
2007-01-24 00:28 3,072 --a------ C:\WINDOWS\system32\dpnlobby.dll
2007-01-24 00:28 3,072 --a------ C:\WINDOWS\system32\dpnaddr.dll
2007-01-24 00:28 292,864 --a------ C:\WINDOWS\system32\ddraw.dll
2007-01-24 00:28 28,160 --a------ C:\WINDOWS\system32\dplaysvr.exe
2007-01-24 00:28 27,136 --a------ C:\WINDOWS\system32\dmband.dll
2007-01-24 00:28 24,064 --a------ C:\WINDOWS\system32\ddrawex.dll
2007-01-24 00:28 230,400 --a------ C:\WINDOWS\system32\dplayx.dll
2007-01-24 00:28 223,232 --a------ C:\WINDOWS\system32\gcdef.dll
2007-01-24 00:28 19,968 --a------ C:\WINDOWS\system32\dpvacm.dll
2007-01-24 00:28 186,880 --a------ C:\WINDOWS\system32\dsdmo.dll
2007-01-24 00:28 181,248 --a------ C:\WINDOWS\system32\dmime.dll
2007-01-24 00:28 18,688 --a------ C:\WINDOWS\system32\drivers\wstcodec.sys
2007-01-24 00:28 18,432 --a------ C:\WINDOWS\system32\dswave.dll
2007-01-24 00:28 16,896 --a------ C:\WINDOWS\system32\msyuv.dll
2007-01-24 00:28 16,896 --a------ C:\WINDOWS\system32\dpnsvr.exe
2007-01-24 00:28 16,384 --a------ C:\WINDOWS\system32\drivers\ccdecode.sys
2007-01-24 00:28 15,104 --a------ C:\WINDOWS\system32\drivers\mpe.sys
2007-01-24 00:28 14,976 --a------ C:\WINDOWS\system32\drivers\streamip.sys
2007-01-24 00:28 132,608 --a------ C:\WINDOWS\system32\devenum.dll
2007-01-24 00:28 122,880 --a------ C:\WINDOWS\system32\dmusic.dll
2007-01-24 00:28 112,128 --a------ C:\WINDOWS\system32\dpvvox.dll
2007-01-24 00:28 11,392 --a------ C:\WINDOWS\system32\drivers\bdasup.sys
2007-01-24 00:28 100,864 --a------ C:\WINDOWS\system32\dmsynth.dll
2007-01-24 00:28 10,880 --a------ C:\WINDOWS\system32\drivers\slip.sys
2007-01-24 00:28 10,112 --a------ C:\WINDOWS\system32\drivers\ndisip.sys
2007-01-24 00:28 1,962,496 --a------ C:\WINDOWS\system32\quartz.dll
2007-01-24 00:28 1,769,472 --a------ C:\WINDOWS\system32\dxdiagn.dll
2007-01-24 00:28 1,703,936 --a------ C:\WINDOWS\system32\d3d9.dll
2007-01-24 00:28 1,294,336 --a------ C:\WINDOWS\system32\dsound3d.dll
2007-01-24 00:28 1,230,336 --a------ C:\WINDOWS\system32\msvidctl.dll
2007-01-24 00:28 1,201,152 --a------ C:\WINDOWS\system32\d3d8.dll
2007-01-24 00:28 1,189,888 --a------ C:\WINDOWS\system32\dx8vb.dll
2007-01-24 00:28 <REP> d-------- C:\WINDOWS\system32\DirectX
2007-01-24 00:24 <REP> d--h----- C:\WINDOWS\system32\$DXE_V2$
2007-01-23 21:50 <REP> d-------- C:\Program Files\Google
2007-01-23 21:50 <REP> d-------- C:\DOCUME~1\ALLUSE~1\Application Data\Google
2007-01-23 21:44 <REP> d-------- C:\ATI
2007-01-23 21:43 45,056 -ra------ C:\WINDOWS\winio.dll
2007-01-23 21:43 32,768 --a------ C:\WINDOWS\SIS_LIB.DLL
2007-01-23 21:43 30,848 -ra------ C:\WINDOWS\system32\drivers\SISAGPX.SYS
2007-01-23 21:43 3,583 --a------ C:\WINDOWS\SiSport.sys
2007-01-23 21:43 3,072 -ra------ C:\WINDOWS\winio.sys
2007-01-23 21:43 28,672 -ra------ C:\WINDOWS\htpatch.exe
2007-01-23 21:43 106,496 --a------ C:\WINDOWS\SiSUSBrg.exe
2007-01-23 21:41 32,256 -ra------ C:\WINDOWS\system32\drivers\sisnic.sys
2007-01-23 21:41 <REP> d-------- C:\Program Files\SiSLan
2007-01-23 21:41 <REP> d-------- C:\DOCUME~1\GUILLA~1\WINDOWS
2007-01-23 20:06 79,616 --a------ C:\WINDOWS\system32\drivers\wdmaud.sys
2007-01-23 20:06 57,472 --a------ C:\WINDOWS\system32\drivers\sysaudio.sys
2007-01-23 20:06 57,344 --a------ C:\WINDOWS\system32\drivers\drmk.sys
2007-01-23 20:06 54,272 --a------ C:\WINDOWS\system32\drivers\swmidi.sys
2007-01-23 20:06 50,048 --a------ C:\WINDOWS\system32\drivers\DMusic.sys
2007-01-23 20:06 5,632 --a------ C:\WINDOWS\system32\drivers\splitter.sys
2007-01-23 20:06 2,816 --a------ C:\WINDOWS\system32\drivers\drmkaud.sys
2007-01-23 20:06 159,232 --a------ C:\WINDOWS\system32\drivers\kmixer.sys
2007-01-23 20:06 135,040 --a------ C:\WINDOWS\system32\drivers\portcls.sys
2007-01-23 20:06 122,472 --a------ C:\WINDOWS\system32\drivers\aec.sys
2007-01-23 20:05 917,504 --a------ C:\WINDOWS\system\cmids3d.dll
2007-01-23 20:05 754,560 --a------ C:\WINDOWS\system32\drivers\cmuda.sys
2007-01-23 20:05 712,704 --a------ C:\WINDOWS\system32\Audio3D.dll
2007-01-23 20:05 712,704 --a------ C:\WINDOWS\system32\a3d.dll
2007-01-23 20:05 32,768 --a------ C:\WINDOWS\system32\udaprop.dll
2007-01-23 20:05 28,672 --a------ C:\WINDOWS\system32\cmirmdrv.dll
2007-01-23 20:05 28,672 --a------ C:\WINDOWS\CMIRmDriver.dll
2007-01-23 20:05 266,240 --a------ C:\WINDOWS\CMIUninstall.exe
2007-01-23 20:05 233,472 --a------ C:\WINDOWS\system32\cmirmdrv.exe
2007-01-23 20:05 225,280 --a------ C:\WINDOWS\CmiRmRedundDir.exe
2007-01-23 20:05 114,688 --a------ C:\WINDOWS\system32\cmuda.dll
2007-01-23 20:05 1,454,080 --a------ C:\WINDOWS\system\SmWizard.exe
2007-01-23 20:05 <REP> d-------- C:\Program Files\C-Media 3D Audio
2007-01-23 20:04 327,168 --a------ C:\WINDOWS\IsUn040c.exe
2007-01-23 19:49 <REP> d-------- C:\WINDOWS\ShellNew
2007-01-23 19:34 <REP> d-------- C:\WINDOWS\system32\bits
2007-01-23 19:32 <REP> d-------- C:\DOCUME~1\GUILLA~1\Application Data\Help
2007-01-23 19:31 7,680 --------- C:\WINDOWS\system32\bitsprx2.dll
2007-01-23 19:31 7,168 --------- C:\WINDOWS\system32\bitsprx3.dll
2007-01-23 19:31 331,776 --a------ C:\WINDOWS\system32\winhttp.dll
2007-01-23 19:31 17,408 --a------ C:\WINDOWS\system32\qmgrprxy.dll
2007-01-23 19:27 <REP> d-------- C:\WINDOWS\system32\SoftwareDistribution
2007-01-23 19:27 <REP> d-------- C:\WINDOWS\RegisteredPackages
2007-01-23 19:26 733,184 --a------ C:\WINDOWS\system32\qedwipes.dll
2007-01-23 19:26 7,424 --a------ C:\WINDOWS\system32\drivers\mskssrv.sys
2007-01-23 19:26 64,512 --a------ C:\WINDOWS\system32\amstream.dll
2007-01-23 19:26 520,192 --------- C:\WINDOWS\system32\ati2sgag.exe
2007-01-23 19:26 5,504 --a------ C:\WINDOWS\system32\drivers\mstee.sys
2007-01-23 19:26 5,248 --a------ C:\WINDOWS\system32\drivers\mspclock.sys
2007-01-23 19:26 4,608 --a------ C:\WINDOWS\system32\drivers\mspqm.sys
2007-01-23 19:26 4,096 --a------ C:\WINDOWS\system32\ksuser.dll
2007-01-23 19:26 4,096 --a------ C:\WINDOWS\system32\drivers\swenum.sys
2007-01-23 19:26 34,304 --a------ C:\WINDOWS\system32\mciqtz32.dll
2007-01-23 19:26 324,096 --a------ C:\WINDOWS\system32\mswebdvd.dll
2007-01-23 19:26 257,024 --a------ C:\WINDOWS\system32\qcap.dll
2007-01-23 19:26 18,944 --a------ C:\WINDOWS\system32\encapi.dll
2007-01-23 19:26 173,056 --a------ C:\WINDOWS\system32\qasf.dll
2007-01-23 19:26 130,304 --a------ C:\WINDOWS\system32\drivers\ks.sys
2007-01-23 19:26 13,312 --a------ C:\WINDOWS\system32\msdmo.dll
2007-01-23 19:26 1,798,144 --a------ C:\WINDOWS\system32\qedit.dll
2007-01-23 19:26 <REP> d-------- C:\Program Files\ATI Technologies
2007-01-23 19:25 467,224 --a------ C:\WINDOWS\system32\wuapi.dll
2007-01-23 19:25 41,240 --a------ C:\WINDOWS\system32\wups.dll
2007-01-23 19:25 195,352 --a------ C:\WINDOWS\system32\wuaueng1.dll
2007-01-23 19:25 175,896 --a------ C:\WINDOWS\system32\wuauclt1.exe
2007-01-23 19:25 173,536 --a------ C:\WINDOWS\system32\wuweb.dll
2007-01-23 19:25 128,792 --a------ C:\WINDOWS\system32\wucltui.dll
2007-01-23 19:25 <REP> d--h----- C:\Program Files\InstallShield Installation Information
2007-01-23 19:25 <REP> d-------- C:\WINDOWS\system32\ReinstallBackups
2007-01-23 19:25 <REP> d-------- C:\WINDOWS\SoftwareDistribution
2007-01-23 19:24 <REP> d-------- C:\Program Files\Fichiers communs\InstallShield
2007-01-22 19:30 <REP> d-------- C:\Program Files\Fichiers communs\HP
2007-01-22 19:30 <REP> d-------- C:\DOCUME~1\ALLUSE~1\Application Data\HP
2007-01-22 19:29 <REP> d-------- C:\Program Files\Hewlett-Packard
2007-01-22 19:29 <REP> d-------- C:\Program Files\Fichiers communs\Hewlett-Packard
2007-01-22 19:28 51,120 -ra------ C:\WINDOWS\system32\drivers\HPZid412.sys
2007-01-22 19:28 16,496 -ra------ C:\WINDOWS\system32\drivers\HPZipr12.sys
2007-01-22 19:26 24,960 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys
2007-01-22 19:26 24,832 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2007-01-22 19:26 21,744 -ra------ C:\WINDOWS\system32\drivers\HPZius12.sys
2007-01-22 19:26 13,824 --a------ C:\WINDOWS\system32\drivers\usbscan.sys
2007-01-22 19:25 94,208 --a------ C:\WINDOWS\system32\HPZipt12.dll
2007-01-22 19:25 69,632 --a------ C:\WINDOWS\system32\HPZipm12.exe
2007-01-22 19:25 61,440 --a------ C:\WINDOWS\system32\HPZinw12.exe
2007-01-22 19:25 57,344 --a------ C:\WINDOWS\system32\HPZisn12.dll
2007-01-22 19:25 306,688 --a------ C:\WINDOWS\IsUninst.exe
2007-01-22 19:25 278,584 --a------ C:\WINDOWS\system32\HPZidr12.dll
2007-01-22 19:25 204,800 --a------ C:\WINDOWS\system32\HPZipr12.dll
2007-01-22 19:23 <REP> d-------- C:\Program Files\HP
2007-01-22 19:22 70,045 --a------ C:\WINDOWS\hpoins05.dat
2007-01-22 19:22 19,696 --------- C:\WINDOWS\hpomdl05.dat
2007-01-22 18:30 <REP> d-------- C:\WINDOWS\system32\NtmsData
2007-01-22 18:29 <REP> d--h----- C:\WINDOWS\system32\GroupPolicy
2007-01-22 18:21 42,920 --a------ C:\WINDOWS\system32\vsutil_loc040c.dll
2007-01-22 18:21 4,212 ---h----- C:\WINDOWS\system32\zllictbl.dat
2007-01-22 18:21 <REP> d-------- C:\WINDOWS\system32\ZoneLabs
2007-01-22 18:20 94,424 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys
2007-01-22 18:20 90,112 --a------ C:\WINDOWS\system32\AVASTSS.scr
2007-01-22 18:20 85,952 --a------ C:\WINDOWS\system32\drivers\aswmon.sys
2007-01-22 18:20 689,280 --a------ C:\WINDOWS\system32\aswBoot.exe
2007-01-22 18:20 499,712 --a------ C:\WINDOWS\system32\MSVCP71.dll
2007-01-22 18:20 43,176 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys
2007-01-22 18:20 348,160 --a------ C:\WINDOWS\system32\MSVCR71.dll
2007-01-22 18:20 31,560 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys
2007-01-22 18:20 23,352 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys
2007-01-22 18:20 1,060,864 --a------ C:\WINDOWS\system32\MFC71.dll
2007-01-22 18:20 <REP> d-------- C:\WINDOWS\Internet Logs
2007-01-22 18:20 <REP> d-------- C:\Program Files\Alwil Software
2007-01-22 16:43 <REP> d--hs---- C:\RECYCLER
2007-01-21 20:49 <REP> d---s---- C:\DOCUME~1\GUILLA~1\UserData
2007-01-21 20:46 32,768 --a------ C:\WINDOWS\system32\WooDial2000.dll
2007-01-21 20:45 40,960 --a------ C:\WINDOWS\system32\FTRTSVC.exe
2007-01-21 20:45 36,864 --a------ C:\WINDOWS\system32\IfHelper.dll
2007-01-21 20:45 <REP> d-------- C:\WINDOWS\system32\AlertModule
2007-01-21 20:45 <REP> d-------- C:\Program Files\Wanadoo
2007-01-21 20:43 278,528 --a------ C:\Program Files\Fichiers communs\FDEUnInstaller.exe
2007-01-21 20:43 <REP> d-------- C:\Program Files\Inventel
2007-01-21 20:42 81,920 --a------ C:\WINDOWS\system32\W32N50.dll
2007-01-21 20:42 17,134 --a------ C:\WINDOWS\system32\PCANDIS5.sys
2007-01-21 20:37 2,621,440 --ah----- C:\DOCUME~1\GUILLA~1\NTUSER.DAT
2007-01-21 20:37 <REP> dr------- C:\DOCUME~1\GUILLA~1\Mes documents
2007-01-21 20:37 <REP> dr------- C:\DOCUME~1\GUILLA~1\Menu D‚marrer
2007-01-21 20:37 <REP> dr------- C:\DOCUME~1\GUILLA~1\Favoris
2007-01-21 20:37 <REP> d--hs---- C:\WINDOWS\Installer
2007-01-21 20:37 <REP> d--h----- C:\DOCUME~1\GUILLA~1\Voisinage r‚seau
2007-01-21 20:37 <REP> d--h----- C:\DOCUME~1\GUILLA~1\Voisinage d'impression
2007-01-21 20:37 <REP> d--h----- C:\DOCUME~1\GUILLA~1\ModŠles
2007-01-21 20:37 <REP> d-------- C:\DOCUME~1\GUILLA~1\Bureau
2007-01-21 20:35 786,432 --ah----- C:\DOCUME~1\NETWOR~1\NTUSER.DAT
2007-01-21 20:35 786,432 --ah----- C:\DOCUME~1\LOCALS~1\NTUSER.DAT
2007-01-21 20:35 <REP> d--hs---- C:\System Volume Information
2007-01-21 20:35 <REP> d-------- C:\WINDOWS\Prefetch
2007-01-21 12:21 <REP> dr-hsc--- C:\WINDOWS\system32\dllcache
2007-01-21 12:21 <REP> dr--s---- C:\WINDOWS\Fonts
2007-01-21 12:21 <REP> dr------- C:\WINDOWS\Web
2007-01-21 12:21 <REP> d--h----- C:\WINDOWS\inf
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\WinSxS
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\twain_32
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\wins
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\wbem
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\usmt
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\spool
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\ShellExt
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\Setup
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\ras
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\oobe
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\npp
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\mui
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\inetsrv
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\IME
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\icsxml
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\ias
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\export
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\drivers\etc
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\drivers\disdn
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\drivers
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\dhcp
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\config
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\3com_dmi
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\3076
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\2052
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\1054
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\1042
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\1041
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\1037
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\1036
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\1033
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\1031
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\1028
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32\1025
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system32
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\system
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\security
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\Resources
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\repair
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\mui
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\msapps
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\msagent
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\Media
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\java
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\ime
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\Help
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\Driver Cache
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\Debug
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\Cursors
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\Connection Wizard
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\Config
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\AppPatch
2007-01-21 12:21 <REP> d-------- C:\WINDOWS\addins
2007-01-21 12:21 <REP> d-------- C:\WINDOWS
2007-01-21 11:39 <REP> d-------- C:\WINDOWS\system32\xircom
2007-01-21 11:39 <REP> d-------- C:\Program Files\microsoft frontpage
2007-01-21 11:38 237,568 ---h----- C:\DOCUME~1\DEFAUL~1\NTUSER.DAT
2007-01-21 11:38 112,128 --a------ C:\WINDOWS\system32\mapi32.dll
2007-01-21 11:38 0 -rahs---- C:\MSDOS.SYS
2007-01-21 11:38 0 -rahs---- C:\IO.SYS
2007-01-21 11:38 0 --a------ C:\CONFIG.SYS
2007-01-21 11:38 0 --a------ C:\AUTOEXEC.BAT
2007-01-21 11:37 <REP> dr------- C:\WINDOWS\Offline Web Pages
2007-01-21 11:37 <REP> d--hs---- C:\DOCUME~1\ALLUSE~1\DRM
2007-01-21 11:37 <REP> d---s---- C:\WINDOWS\Downloaded Program Files
2007-01-21 11:37 <REP> d-------- C:\WINDOWS\system32\Macromed
2007-01-21 11:37 <REP> d-------- C:\WINDOWS\srchasst
2007-01-21 11:36 90,624 --a------ C:\WINDOWS\system32\msoert2.dll
2007-01-21 11:36 73,728 --a------ C:\WINDOWS\system32\ils.dll
2007-01-21 11:36 72,192 --a------ C:\WINDOWS\system32\acctres.dll
2007-01-21 11:36 70,528 --a------ C:\WINDOWS\system32\drivers\sr.sys
2007-01-21 11:36 65,536 --a------ C:\WINDOWS\system32\msconf.dll
2007-01-21 11:36 61,952 --a------ C:\WINDOWS\system32\srclient.dll
2007-01-21 11:36 40,960 --a------ C:\WINDOWS\system32\safrslv.dll
2007-01-21 11:36 39,424 --a------ C:\WINDOWS\system32\safrcdlg.dll
2007-01-21 11:36 360,960 --a------ C:\WINDOWS\system32\qmgr.dll
2007-01-21 11:36 33,792 --a------ C:\WINDOWS\system32\racpldlg.dll
2007-01-21 11:36 32,768 --a------ C:\WINDOWS\system32\mnmsrvc.exe
2007-01-21 11:36 32,384 --a------ C:\WINDOWS\system32\mnmdd.dll
2007-01-21 11:36 28,672 --a------ C:\WINDOWS\system32\isrdbg32.dll
2007-01-21 11:36 26,624 --a------ C:\WINDOWS\system32\safrdm.dll
2007-01-21 11:36 24,576 --a------ C:\WINDOWS\system32\nmmkcert.dll
2007-01-21 11:36 228,864 --a------ C:\WINDOWS\system32\msoeacct.dll
2007-01-21 11:36 155,648 --a------ C:\WINDOWS\system32\srsvc.dll
2007-01-21 11:36 12,288 --a------ C:\WINDOWS\system32\nmevtmsg.dll
2007-01-21 11:36 11,264 --a------ C:\WINDOWS\system32\atrace.dll
2007-01-21 11:36 <REP> d-------- C:\WINDOWS\system32\Restore
2007-01-21 11:36 <REP> d-------- C:\WINDOWS\PCHEALTH
2007-01-21 11:36 <REP> d-------- C:\Program Files\Movie Maker
2007-01-21 11:35 9,728 --a------ C:\WINDOWS\system32\mstinit.exe
2007-01-21 11:35 81,920 --a------ C:\WINDOWS\system32\isign32.dll
2007-01-21 11:35 69,632 --a------ C:\WINDOWS\system32\icwdial.dll
2007-01-21 11:35 61,440 --a------ C:\WINDOWS\system32\icwphbk.dll
2007-01-21 11:35 593,920 --a------ C:\WINDOWS\system32\inetcomm.dll
2007-01-21 11:35 50,176 --a------ C:\WINDOWS\system32\inetres.dll
2007-01-21 11:35 274,432 --a------ C:\WINDOWS\system32\inetcfg.dll
2007-01-21 11:35 256,000 --a------ C:\WINDOWS\system32\mstask.dll
2007-01-21 11:35 21,892 --a------ C:\WINDOWS\system32\emptyregdb.dat
2007-01-21 11:35 160,768 --a------ C:\WINDOWS\system32\schedsvc.dll
2007-01-21 11:35 16,384 --a------ C:\WINDOWS\system32\icfgnt5.dll
2007-01-21 11:35 <REP> d---s---- C:\WINDOWS\Tasks
2007-01-21 11:35 <REP> d-------- C:\Program Files\Fichiers communs\MSSoap
2007-01-21 11:34 9,728 --a------ C:\WINDOWS\system32\xolehlp.dll
2007-01-21 11:34 89,088 --a------ C:\WINDOWS\system32\tscfgwmi.dll
2007-01-21 11:34 80,896 --a------ C:\WINDOWS\system32\charmap.exe
2007-01-21 11:34 8,704 --a------ C:\WINDOWS\system32\icaapi.dll
2007-01-21 11:34 73,864 --a------ C:\WINDOWS\system32\rdpwsx.dll
2007-01-21 11:34 73,216 --a------ C:\WINDOWS\system32\avwav.dll
2007-01-21 11:34 634,880 --a------ C:\WINDOWS\system32\getuname.dll
2007-01-21 11:34 61,952 --a------ C:\WINDOWS\system32\rdshost.exe
2007-01-21 11:34 6,144 --a------ C:\WINDOWS\system32\msdtc.exe
2007-01-21 11:34 57,856 --a------ C:\WINDOWS\system32\remotepg.dll
2007-01-21 11:34 57,344 --a------ C:\WINDOWS\system32\sol.exe
2007-01-21 11:34 55,808 --a------ C:\WINDOWS\system32\freecell.exe
2007-01-21 11:34 54,784 --a------ C:\WINDOWS\system32\msdtclog.dll
2007-01-21 11:34 534,528 --a------ C:\WINDOWS\system32\spider.exe
2007-01-21 11:34 503,296 --a------ C:\WINDOWS\system32\mstscax.dll
2007-01-21 11:34 5,632 --a------ C:\WINDOWS\system32\write.exe
2007-01-21 11:34 5,120 --a------ C:\WINDOWS\system32\dcomcnfg.exe
2007-01-21 11:34 497,152 --a------ C:\WINDOWS\system32\hypertrm.dll
2007-01-21 11:34 44,544 --a------ C:\WINDOWS\system32\hticons.dll
2007-01-21 11:34 41,984 --a------ C:\WINDOWS\system32\rdpclip.exe
2007-01-21 11:34 40,448 --a------ C:\WINDOWS\system32\tscupgrd.exe
2007-01-21 11:34 4,608 --a------ C:\WINDOWS\system32\rdpcfgex.dll
2007-01-21 11:34 4,096 --a------ C:\WINDOWS\system32\wuauserv.dll
2007-01-21 11:34 390,144 --a------ C:\WINDOWS\system32\mstsc.exe
2007-01-21 11:34 35,840 --a------ C:\WINDOWS\system32\winchat.exe
2007-01-21 11:34 344,576 --a------ C:\WINDOWS\system32\mspaint.exe
2007-01-21 11:34 33,792 --a------ C:\WINDOWS\system32\regini.exe
2007-01-21 11:34 33,280 --a------ C:\WINDOWS\system32\cfgbkend.dll
2007-01-21 11:34 232,960 --a------ C:\WINDOWS\system32\avtapi.dll
2007-01-21 11:34 22,528 --a------ C:\WINDOWS\system32\qwinsta.exe
2007-01-21 11:34 22,528 --a------ C:\WINDOWS\system32\msg.exe
2007-01-21 11:34 200,192 --a------ C:\WINDOWS\system32\termsrv.dll
2007-01-21 11:34 20,232 --a------ C:\WINDOWS\system32\drivers\tdtcp.sys
2007-01-21 11:34 19,456 --a------ C:\WINDOWS\system32\qprocess.exe
2007-01-21 11:34 185,344 --a------ C:\WINDOWS\system32\accwiz.exe
2007-01-21 11:34 17,408 --a------ C:\WINDOWS\system32\tsshutdn.exe
2007-01-21 11:34 17,408 --a------ C:\WINDOWS\system32\qappsrv.exe
2007-01-21 11:34 16,896 --a------ C:\WINDOWS\system32\tskill.exe
2007-01-21 11:34 16,384 --a------ C:\WINDOWS\system32\rwinsta.exe
2007-01-21 11:34 16,384 --a------ C:\WINDOWS\system32\avmeter.dll
2007-01-21 11:34 15,872 --a------ C:\WINDOWS\system32\logoff.exe
2007-01-21 11:34 15,872 --a------ C:\WINDOWS\system32\cdmodem.dll
2007-01-21 11:34 15,360 --a------ C:\WINDOWS\system32\tscon.exe
2007-01-21 11:34 15,360 --a------ C:\WINDOWS\system32\shadow.exe
2007-01-21 11:34 14,848 --a------ C:\WINDOWS\system32\tsdiscon.exe
2007-01-21 11:34 14,848 --a------ C:\WINDOWS\system32\rdpsnd.dll
2007-01-21 11:34 139,264 --a------ C:\WINDOWS\system32\sndvol32.exe
2007-01-21 11:34 134,656 --a------ C:\WINDOWS\system32\rdchost.dll
2007-01-21 11:34 131,584 --a------ C:\WINDOWS\system32\sessmgr.exe
2007-01-21 11:34 128,000 --a------ C:\WINDOWS\system32\mshearts.exe
2007-01-21 11:34 125,952 --a------ C:\WINDOWS\system32\sndrec32.exe
2007-01-21 11:34 125,720 --a------ C:\WINDOWS\system32\wuauclt.exe
2007-01-21 11:34 12,288 --a------ C:\WINDOWS\system32\rdsaddin.exe
2007-01-21 11:34 119,808 --a------ C:\WINDOWS\system32\winmine.exe
2007-01-21 11:34 118,272 --a------ C:\WINDOWS\system32\mplay32.exe
2007-01-21 11:34 115,200 --a------ C:\WINDOWS\system32\calc.exe
2007-01-21 11:34 11,144 --a------ C:\WINDOWS\system32\drivers\tdpipe.sys
2007-01-21 11:34 107,912 --a------ C:\WINDOWS\system32\drivers\rdpwd.sys
2007-01-21 11:34 100,352 --a------ C:\WINDOWS\system32\clipbrd.exe
2007-01-21 11:34 10,240 --a------ C:\WINDOWS\system32\reset.exe
2007-01-21 11:34 1,343,768 --a------ C:\WINDOWS\system32\wuaueng.dll
2007-01-21 11:34 1,263 --a------ C:\WINDOWS\system32\usrlogon.cmd
2007-01-21 11:34 <REP> d--h----- C:\Program Files\WindowsUpdate
2007-01-21 11:34 <REP> d-------- C:\WINDOWS\system32\MsDtc
2007-01-21 11:34 <REP> d-------- C:\WINDOWS\Registration
2007-01-21 11:34 <REP> d-------- C:\Program Files\Windows NT
2007-01-21 11:34 <REP> d-------- C:\Program Files\Services en ligne
2007-01-21 11:34 <REP> d-------- C:\Program Files\MSN Gaming Zone
2007-01-21 11:34 <REP> d-------- C:\Program Files\Messenger
2007-01-21 11:33 85,504 --a------ C:\WINDOWS\system32\catsrvps.dll
2007-01-21 11:33 82,432 --a------ C:\WINDOWS\system32\comrepl.dll
2007-01-21 11:33 57,344 --a------ C:\WINDOWS\system32\licwmi.dll
2007-01-21 11:33 54,272 --a------ C:\WINDOWS\system32\stclient.dll
2007-01-21 11:33 53,248 --a------ C:\WINDOWS\system32\servdeps.dll
2007-01-21 11:33 4,096 --a------ C:\WINDOWS\system32\mtxex.dll
2007-01-21 11:33 37,896 --a------ C:\WINDOWS\system32\drivers\termdd.sys
2007-01-21 11:33 25,600 --a------ C:\WINDOWS\system32\comaddin.dll
2007-01-21 11:33 25,088 --a------ C:\WINDOWS\system32\mtxlegih.dll
2007-01-21 11:33 20,480 --a------ C:\WINDOWS\system32\mtxdm.dll
2007-01-21 11:33 181,632 --a------ C:\WINDOWS\system32\drivers\rdpdr.sys
2007-01-21 11:33 180,736 --a------ C:\WINDOWS\system32\cmprops.dll
2007-01-21 11:33 16,896 --a------ C:\WINDOWS\system32\mmfutil.dll
2007-01-21 11:33 147,456 --a------ C:\WINDOWS\system32\comsnap.dll
2007-01-21 11:33 <REP> d-------- C:\WINDOWS\system32\Com
2007-01-21 11:28 56,960 --a------ C:\WINDOWS\system32\drivers\redbook.sys
2007-01-21 11:28 3,072 --a------ C:\WINDOWS\system32\drivers\audstub.sys
2007-01-21 11:27 9,728 --a------ C:\WINDOWS\system32\drivers\gameenum.sys
2007-01-21 11:27 70,144 --a------ C:\WINDOWS\system32\usbui.dll
2007-01-21 11:26 9,936 --a------ C:\WINDOWS\system\LZEXPAND.DLL
2007-01-21 11:26 9,104 --a------ C:\WINDOWS\system\VER.DLL
2007-01-21 11:26 86,044 --a------ C:\WINDOWS\system32\dgsetup.dll
2007-01-21 11:26 83,456 --a------ C:\WINDOWS\system\OLECLI.DLL
2007-01-21 11:26 8,192 -ra------ C:\WINDOWS\system32\kbdhept.dll
2007-01-21 11:26 72,704 --a------ C:\WINDOWS\system32\storprop.dll
2007-01-21 11:26 70,848 --a------ C:\WINDOWS\system\MMSYSTEM.DLL
2007-01-21 11:26 70,352 --a------ C:\WINDOWS\system\AVICAP.DLL
2007-01-21 11:26 7,168 -ra------ C:\WINDOWS\system32\kbdcz.dll
2007-01-21 11:26 67,584 --a------ C:\WINDOWS\NOTEPAD.EXE
2007-01-21 11:26 6,656 -ra------ C:\WINDOWS\system32\kbdycl.dll
2007-01-21 11:26 6,656 -ra------ C:\WINDOWS\system32\kbdsl1.dll
2007-01-21 11:26 6,656 -ra------ C:\WINDOWS\system32\kbdsl.dll
2007-01-21 11:26 6,656 -ra------ C:\WINDOWS\system32\kbdpl.dll
2007-01-21 11:26 6,656 -ra------ C:\WINDOWS\system32\kbdhu.dll
2007-01-21 11:26 6,656 -ra------ C:\WINDOWS\system32\kbdhela3.dll
2007-01-21 11:26 6,656 -ra------ C:\WINDOWS\system32\kbdcz2.dll
2007-01-21 11:26 6,656 -ra------ C:\WINDOWS\system32\kbdcz1.dll
2007-01-21 11:26 6,656 -ra------ C:\WINDOWS\system32\kbdcr.dll
2007-01-21 11:26 6,656 -ra------ C:\WINDOWS\system32\KBDAL.DLL
2007-01-21 11:26 6,656 --a------ C:\WINDOWS\system32\batt.dll
2007-01-21 11:26 6,144 -ra------ C:\WINDOWS\system32\kbdtuq.dll
2007-01-21 11:26 6,144 -ra------ C:\WINDOWS\system32\kbdtuf.dll
2007-01-21 11:26 6,144 -ra------ C:\WINDOWS\system32\kbdlv1.dll
2007-01-21 11:26 6,144 -ra------ C:\WINDOWS\system32\kbdlv.dll
2007-01-21 11:26 6,144 -ra------ C:\WINDOWS\system32\kbdhela2.dll
2007-01-21 11:26 6,144 -ra------ C:\WINDOWS\system32\kbdgkl.dll
2007-01-21 11:26 6,144 -ra------ C:\WINDOWS\system32\kbdest.dll
2007-01-21 11:26 5,632 -ra------ C:\WINDOWS\system32\kbdro.dll
2007-01-21 11:26 5,632 -ra------ C:\WINDOWS\system32\kbdpl1.dll
2007-01-21 11:26 5,632 -ra------ C:\WINDOWS\system32\kbdmon.dll
2007-01-21 11:26 5,632 -ra------ C:\WINDOWS\system32\kbdlt1.dll
2007-01-21 11:26 5,632 -ra------ C:\WINDOWS\system32\kbdlt.dll
2007-01-21 11:26 5,632 -ra------ C:\WINDOWS\system32\kbdkyr.dll
2007-01-21 11:26 5,632 -ra------ C:\WINDOWS\system32\kbdhu1.dll
2007-01-21 11:26 5,632 -ra------ C:\WINDOWS\system32\kbdhe319.dll
2007-01-21 11:26 5,632 -ra------ C:\WINDOWS\system32\kbdhe220.dll
2007-01-21 11:26 5,632 -ra------ C:\WINDOWS\system32\kbdhe.dll
2007-01-21 11:26 5,632 -ra------ C:\WINDOWS\system32\kbdazel.dll
2007-01-21 11:26 5,120 --a------ C:\WINDOWS\system\SHELL.DLL
2007-01-21 11:26 33,904 --a------ C:\WINDOWS\system\COMMDLG.DLL
2007-01-21 11:26 24,661 --a------ C:\WINDOWS\system32\spxcoins.dll
2007-01-21 11:26 24,064 --a------ C:\WINDOWS\system\OLESVR.DLL
2007-01-21 11:26 19,200 --a------ C:\WINDOWS\system\TAPI.DLL
2007-01-21 11:26 176,157 --a------ C:\WINDOWS\system32\dgrpsetu.dll
2007-01-21 11:26 15,872 --a------ C:\WINDOWS\TASKMAN.EXE
2007-01-21 11:26 13,312 --a------ C:\WINDOWS\system32\irclass.dll
2007-01-21 11:26 127,168 --a------ C:\WINDOWS\system\MSVIDEO.DLL
2007-01-21 11:26 109,568 --a------ C:\WINDOWS\system\AVIFILE.DLL
2007-01-21 11:26 103,424 --a------ C:\WINDOWS\system32\EqnClass.Dll
2007-01-21 11:26 10,496 --a------ C:\WINDOWS\system32\drivers\irenum.sys
2007-01-21 11:26 <REP> dr------- C:\Program Files
2007-01-21 11:26 <REP> dr------- C:\DOCUME~1\DEFAUL~1\Menu D‚marrer
2007-01-21 11:26 <REP> dr------- C:\DOCUME~1\ALLUSE~1\Menu D‚marrer
2007-01-21 11:26 <REP> dr------- C:\DOCUME~1\ALLUSE~1\Documents
2007-01-21 11:26 <REP> d--h----- C:\DOCUME~1\DEFAUL~1\Voisinage r‚seau
2007-01-21 11:26 <REP> d--h----- C:\DOCUME~1\DEFAUL~1\Voisinage d'impression
2007-01-21 11:26 <REP> d--h----- C:\DOCUME~1\DEFAUL~1\ModŠles
2007-01-21 11:26 <REP> d--h----- C:\DOCUME~1\ALLUSE~1\ModŠles
2007-01-21 11:26 <REP> d-------- C:\WINDOWS\system32\CatRoot2
2007-01-21 11:26 <REP> d-------- C:\WINDOWS\system32\CatRoot
2007-01-21 11:26 <REP> d-------- C:\Program Files\Fichiers communs\SpeechEngines
2007-01-21 11:26 <REP> d-------- C:\Program Files\Fichiers communs\ODBC
2007-01-21 11:26 <REP> d-------- C:\DOCUME~1\DEFAUL~1\Mes documents
2007-01-21 11:26 <REP> d-------- C:\DOCUME~1\DEFAUL~1\Favoris
2007-01-21 11:26 <REP> d-------- C:\DOCUME~1\DEFAUL~1\Bureau
2007-01-21 11:26 <REP> d-------- C:\DOCUME~1\ALLUSE~1\Favoris
2007-01-21 11:26 <REP> d-------- C:\DOCUME~1\ALLUSE~1\Bureau
2007-01-21 11:25 <REP> d-------- C:\Documents and Settings
2007-01-19 12:53 51,056 --a------ C:\WINDOWS\system32\sirenacm.dll


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2007-01-24 07:40 -------- d---s---- C:\DOCUME~1\GUILLA~1\Application Data\microsoft
2007-01-21 20:49 -------- d-------- C:\DOCUME~1\GUILLA~1\Application Data\macromedia
2007-01-21 20:45 48616 --a------ C:\WINDOWS\system32\perfc00c.dat
2007-01-21 20:45 367658 --a------ C:\WINDOWS\system32\perfh00c.dat
2007-01-21 20:37 -------- d-------- C:\DOCUME~1\GUILLA~1\Application Data\identities
2007-01-21 11:26 62 --ahs---- C:\DOCUME~1\GUILLA~1\Application Data\desktop.ini


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries & legit default entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\ctfmon.exe"
"WOOKIT"="C:\\PROGRA~1\\Wanadoo\\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM="
"swg"="C:\\Program Files\\Google\\GoogleToolbarNotifier\\1.2.1128.5462\\GoogleToolbarNotifier.exe"
"updateMgr"="C:\\Program Files\\Adobe\\Acrobat 7.0\\Reader\\AdobeUpdateManager.exe AcRdB7_0_9"
"MsnMsgr"="\"C:\\Program Files\\MSN Messenger\\MsnMsgr.Exe\" /background"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"WOOWATCH"="C:\\PROGRA~1\\Wanadoo\\Watch.exe"
"WOOTASKBARICON"="C:\\PROGRA~1\\Wanadoo\\GestMaj.exe TaskBarIcon.exe"
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
"Zone Labs Client"="\"C:\\Program Files\\Zone Labs\\ZoneAlarm\\zlclient.exe\""
"HP Software Update"="\"C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe\""
"ATIPTA"="\"C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe\""
"Cmaudio"="RunDll32 cmicnfg.cpl,CMICtrlWnd"
"HTpatch"="C:\\WINDOWS\\htpatch.exe"
"SiSUSBRG"="C:\\WINDOWS\\SiSUSBrg.exe"
"a-squared"="\"C:\\Program Files\\a-squared Anti-Malware\\a2guard.exe\""

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"NoChange"="1"
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]
LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0
NetworkService REG_MULTI_SZ DnsCache\0\0
rpcss REG_MULTI_SZ RpcSs\0\0
imgsvc REG_MULTI_SZ StiSvc\0\0
termsvcs REG_MULTI_SZ TermService\0\0

*newlycreated* - HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\LEGACY_SISPORT
*newlycreated* - HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\LEGACY_USNJSVC


********************************************************************

catchme 0.1 W2K/XP - userland rootkit detector by Gmer, 17 October 2006
http://www.gmer.net

scanning hidden processes ...

scanning hidden services ...

scanning hidden autostart entries ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
HTpatch = C:\WINDOWS\htpatch.exe?ows\CurrentVersion\Run???\]^_x???PH??(H??x???x???x???xyz{|}~?????????HH??x????Y??????x???x???x????X???G??x???x????Y???H??x???x????????????G???????G??x???x????X??x???PH?? H???X??x????G??x???x???????h???????htinst.I????????h??????????????

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0

********************************************************************

Completion time: 07-02-08 16:02:00

#5 RichieUK

RichieUK

    Malware Assassin


  • Malware Response Team
  • 13,614 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 08 February 2007 - 10:33 AM

Please download/install AVG Anti-Spyware 7.5.

Please follow these instructions carefully.
Launch/start up AVG Anti-Spyware.
On the main page click the 'Update' tab,and then 'Start Update'.
Once the updates have been installed,do the following:
Select the 'Scanner' icon at the top of the screen, then select the 'Settings' tab.
Once in the 'Settings' screen,under 'How to act?',then under 'Set default action for detected malware to:', click on 'Recommended actions',then click on 'Quarantine'.
Under 'Reports' select 'Automatically generate report after every scan' and unselect 'Only if threats were found'.
Exit AVG Anti-Spyware,don't run the scan just yet.

You might want to print/copy the following as you need to be in Safe Mode from here on.

Reboot your computer into SAFE MODE" using the F8 method.
To do this,restart your computer and after hearing your computer beep once during startup (but before the Windows icon appears) press the F8 key repeatedly.
A menu will appear with several options.
Use the arrow keys on your keyboard to navigate and select the option to run Windows in "Safe Mode".

Have Hijack This fix the following by placing a check in the appropriate boxes and selecting 'Fix checked'.
Make sure all browser and all Windows Explorer windows are closed before fixing:

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)



Still in Safe Mode launch AVG Anti-Spyware.
Click the 'Scanner' icon at the top.
To start the scan click on 'Complete System Scan'.
Please be patient,it takes a while for the scan to finish.

Once the scan is complete,do the following.
If AVG Anti-Spyware detected any infected objects:,click on 'Apply All Actions'.
Next click on 'Save Report'.
Copy and paste that report into your next reply.
The report can be found under the 'Reports' tab at the top.
Close AVG Anti-Spyware when you've done.
Reboot normally.

======================

Please run the F-Secure online virus/spyware scan using Internet Explorer:
http://support.f-secure.com/enu/home/ols3.shtml
Follow the directions in the F-Secure page for proper Installation.
Accept the License Agreement.
Once the ActiveX installs,Click ‘Custom Scan’ and be sure the following are checked:
1.Scan whole System
2.Scan all files
3.Scan whole system for rootkits
4.Scan whole system for spyware
5.Scan inside archives
6.Use advanced heuristics
Once the download completes,the scan will begin automatically.
The scan will take some time to finish,so please be patient.
When the scan completes, click the ‘I want to decide item by item’ button.
For each item found,Select ‘Disinfect’ and click ‘Next’.
Click the ‘Show Report’ button,then copy and paste the entire report into your next reply.

Restart your pc when you've finished.
Post the AVG Anti Spyware report,the F-Secure report, and a new Hijackthis log into your next reply please.
Posted Image
Posted Image

#6 gui94

gui94
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:10:03 PM

Posted 08 February 2007 - 01:04 PM

then after 1 hour of slow work....

new hijack log
f-secure log
avg anti spy log

Thx for all time spend for me RichieUK

Logfile of HijackThis v1.99.1
Scan saved at 18:59:33, on 08/02/2007
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\htpatch.exe
C:\Program Files\a-squared Anti-Malware\a2guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\System32\ctfmon.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Documents and Settings\guillaume\Bureau\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.com/search?q=%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111...all/xscan53.cab
O16 - DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} (F-Secure Online Scanner 3.0) - http://support.f-secure.com/ols/fscax.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

Fsecure

Scanning Report
Thursday, February 08, 2007 17:56:49 - 18:45:56
Computer name: BUREAU1
Scanning type: Scan system for viruses, rootkits, spyware
Target: C:\ G:\


--------------------------------------------------------------------------------

Result: 2 malware found
Tracking Cookie (spyware)
System (Disinfected)
Trojan-Downloader.Win32.Murlo.ek (virus)
C:\Documents and Settings\guillaume\Bureau\hijackthis\backups\backup-20070208-155844-282-MS_update_0612_KB74062.exe (Renamed & Submitted)

--------------------------------------------------------------------------------

Statistics
Scanned:
Files: 40385
System: 3580
Not scanned: 19
Actions:
Disinfected: 1
Renamed: 1
Deleted: 0
None: 0
Submitted: 1
Files not scanned:
C:\PAGEFILE.SYS
C:\WINDOWS\TEMP\PERFLIB_PERFDATA_94.DAT
C:\WINDOWS\TEMP\ZLT02E7F.TMP
C:\WINDOWS\TEMP\_AVAST4_\WEBSHLOCK.TXT
C:\WINDOWS\SYSTEM32\BIOS1.ROM
C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT
C:\WINDOWS\SYSTEM32\CONFIG\SAM
C:\WINDOWS\SYSTEM32\CONFIG\SECURITY
C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM
C:\Program Files\Lavasoft\Ad-Aware SE Personal\Skins\Ad-Aware SE default.ask\Ad-Aware SE Default.skn
C:\DOCUMENTS AND SETTINGS\NETWORKSERVICE\NTUSER.DAT
C:\DOCUMENTS AND SETTINGS\NETWORKSERVICE\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT
C:\DOCUMENTS AND SETTINGS\LOCALSERVICE\NTUSER.DAT
C:\DOCUMENTS AND SETTINGS\LOCALSERVICE\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT
C:\DOCUMENTS AND SETTINGS\GUILLAUME\NTUSER.DAT
C:\DOCUMENTS AND SETTINGS\GUILLAUME\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackdoorWinSdBotgen.zip\sbRecovery.reg
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackdoorWinSdBotgen1.zip\sbRecovery.reg
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackdoorWinSdBotgen2.zip\sbRecovery.reg

--------------------------------------------------------------------------------

Options
Scanning engines:
F-Secure Libra: 2.4.2, 2007-02-01
F-Secure AVP: 7.0.171, 2007-02-08
F-Secure Orion: 1.2.37, 2007-02-08
F-Secure Blacklight: 1.0.53, 0000-00-00
F-Secure Draco: 1.0.35, 0260-02-44
F-Secure Pegasus: 1.19.0, 2007-01-07
Scanning options:
Scan all files
Scan inside archives
Use Advanced heuristics



---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 17:45:37 08/02/2007

+ Résultat de l'analyse:



C:\Documents and Settings\guillaume\Cookies\guillaume@adtech[1].txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\guillaume\Cookies\guillaume@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\guillaume\Cookies\guillaume@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\guillaume\Cookies\guillaume@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.


Fin du rapport

#7 RichieUK

RichieUK

    Malware Assassin


  • Malware Response Team
  • 13,614 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 08 February 2007 - 01:12 PM

Your log is clean :thumbsup:
If all's ok,please do the following:

Please reset the following back to default:

* Click 'Start'.
* Open 'My Computer'.
* Select the 'Tools' menu and click 'Folder Options'.
* Select the 'View' tab.
* Under the 'Hidden files and folders' heading select 'Show hidden files and folders'.
* Uncheck the 'Hide file extensions for known types' option.
* Uncheck the 'Hide protected operating system files (recommended)' option.
* Click Yes to confirm.
* Click OK.

==========================

Turn off System Restore,then turn it back on again:
Help if needed:
http://www.pchell.com/virus/systemrestore.shtml

Create a new System Restore Point:
Help if needed:
Click on Start/All Programs/Accessories/System Tools/System Restore.
In the System Restore window,click "Create a Restore Point" button,then click 'Next'.
In the window that appears,enter a description,then click on "Create", then "Close".
The date and time is created automatically.

You should now go to Windows Update and install any available critical/high priority updates.

Read through the info found here,to help you prevent any possible future infections.
How did I get infected?
http://www.bleepingcomputer.com/forums/t/2520/how-did-i-get-infected/

:flowers:
Posted Image
Posted Image

#8 gui94

gui94
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:10:03 PM

Posted 08 February 2007 - 01:55 PM

really thank you for all time spend for my computer...

i 'm very grateful to you for your help.

have a nice 2007 year

ps : sorry for my english...
greating from a lucky french man

#9 RichieUK

RichieUK

    Malware Assassin


  • Malware Response Team
  • 13,614 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 08 February 2007 - 01:59 PM

You're most welcome gui94 :thumbsup:

This thread will now be closed.
If you need this topic reopened, please contact a member of the HJT Team and we will reopen it for you. Include the address of this thread in your request. If you should have a new issue, please start a new topic. This applies only to the original topic starter. Everyone else please begin a New Topic.
Posted Image
Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users