ComboFix 08-10-12.01 - Tanguy 2008-10-14 15:59:47.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.418 [GMT 2:00]
Lancé depuis: C:\Documents and Settings\Tanguy\Bureau\ComboFix.exe
Commutateurs utilisés :: C:\Documents and Settings\Tanguy\Bureau\WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe
* Un nouveau point de restauration a été créé
* Resident AV is active

.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WebMediaPlayer
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WebMediaPlayer\Conditions générales.url
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WebMediaPlayer\Confidentialité.url
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WebMediaPlayer\Désinstaller.lnk
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WebMediaPlayer\WebMediaPlayer.lnk
C:\Documents and Settings\Tanguy\Favoris\Cheap Pharmacy Online.url
C:\Documents and Settings\Tanguy\Favoris\Search Online.url
C:\Documents and Settings\Tanguy\Favoris\VIP Casino.url
C:\Documents and Settings\Tanguy\Local Settings\Application Data\iaieq.dat
C:\Documents and Settings\Tanguy\Local Settings\Application Data\iaieq.exe
C:\Documents and Settings\Tanguy\Local Settings\Application Data\iaieq_nav.dat
C:\Documents and Settings\Tanguy\Local Settings\Application Data\iaieq_navps.dat
C:\Documents and Settings\Tanguy\Menu Démarrer\Cheap Pharmacy Online.url
C:\Documents and Settings\Tanguy\Menu Démarrer\Search Online.url
C:\Documents and Settings\Tanguy\Menu Démarrer\VIP Casino.url
C:\resycled
C:\resycled\boot.com
C:\WINDOWS\BMe7a392d2.txt
C:\WINDOWS\k.txt
C:\WINDOWS\system32\abdvalao.dll
C:\WINDOWS\system32\aekhqmry.dll
C:\WINDOWS\system32\artelpor.ini
C:\WINDOWS\system32\bldkjx.dll
C:\WINDOWS\system32\brastk.exe
C:\WINDOWS\system32\c.ico
C:\WINDOWS\system32\cbXOFVlj.dll
C:\WINDOWS\system32\cgxxrruw.dll
C:\WINDOWS\system32\crnrhrks.dll
C:\WINDOWS\system32\dedNoqss.ini
C:\WINDOWS\system32\dedNoqss.ini2
C:\WINDOWS\system32\dftvfghf.dll
C:\WINDOWS\system32\dkvnqjar.dll
C:\WINDOWS\system32\docqrvrg.dll
C:\WINDOWS\system32\drivers\downld
C:\WINDOWS\system32\ehjscvcg.dll
C:\WINDOWS\system32\ejqmqwlb.dll
C:\WINDOWS\system32\froutd.dll
C:\WINDOWS\system32\gdjnpf.dll
C:\WINDOWS\system32\iIBrrsPi.dll
C:\WINDOWS\system32\iifdebYp.dll
C:\WINDOWS\system32\ipciuq.dll
C:\WINDOWS\system32\iPsrrBIi.ini
C:\WINDOWS\system32\iPsrrBIi.ini2
C:\WINDOWS\system32\jrwqcmuj.ini
C:\WINDOWS\system32\m.ico
C:\WINDOWS\system32\movkivub.ini
C:\WINDOWS\system32\msysamd32.dll
C:\WINDOWS\system32\mumdtljk.ini
C:\WINDOWS\system32\ncebcf.dll
C:\WINDOWS\system32\ndtifypv.ini
C:\WINDOWS\system32\niboiy.dll
C:\WINDOWS\system32\oorcbyso.ini
C:\WINDOWS\system32\osbnkv.dll
C:\WINDOWS\system32\osybcroo.dll
C:\WINDOWS\system32\pmlhowqd.dll
C:\WINDOWS\system32\rajqnvkd.ini
C:\WINDOWS\system32\ropletra.dll
C:\WINDOWS\system32\s.ico
C:\WINDOWS\system32\sgsqwdmy.ini
C:\WINDOWS\system32\soiqhf.dll
C:\WINDOWS\system32\stkvvonk.dll
C:\WINDOWS\system32\tewwlevg.ini
C:\WINDOWS\system32\urftjxug.ini
C:\WINDOWS\system32\vmdnriwu.ini
C:\WINDOWS\system32\vpyfitdn.dll
C:\WINDOWS\system32\vupujs.dll
C:\WINDOWS\system32\winhoq32.dll
C:\WINDOWS\system32\winmbj32.dll
C:\WINDOWS\system32\wqkufxiq.dll
C:\WINDOWS\system32\wxstlasc.dll
C:\WINDOWS\system32\yhdgty.dll
C:\WINDOWS\system32\zhcrow.dll
D:\Autorun.inf
D:\install.exe
G:\autorun.inf

.
((((((((((((((((((((((((((((( Fichiers créés du 2008-09-14 au 2008-10-14 ))))))))))))))))))))))))))))))))))))
.

2008-10-14 06:38 . 2008-06-30 17:16 234,640 --a------ C:\WINDOWS\system32\drivers\afwcore.sys
2008-10-12 16:34 . 2008-10-12 16:34 81,920 --a------ C:\WINDOWS\system32\byjudwji.exe
2008-10-12 16:02 . 2008-10-12 16:02 81,920 --a------ C:\WINDOWS\system32\gbijidyl.exe
2008-10-12 16:02 . 2008-10-12 16:36 152 --a------ C:\Documents and Settings\Tanguy\delself.bat
2008-10-12 00:43 . 2008-10-12 00:44 <REP> d-------- C:\Program Files\AutoIt3
2008-10-11 22:41 . 2008-10-11 22:41 81,920 --a------ C:\WINDOWS\system32\gvkxklkl.exe
2008-10-11 22:40 . 2008-10-11 22:40 <REP> d-------- C:\Documents and Settings\All Users\Application Data\qzoturmb
2008-10-11 22:17 . 2008-10-11 22:17 72 --a------ C:\WINDOWS\SCapPro.INI
2008-10-11 21:35 . 2008-10-11 21:35 <REP> d-------- C:\Documents and Settings\Tanguy\Application Data\ACASystems
2008-10-11 21:35 . 2008-10-11 21:35 <REP> d-------- C:\Documents and Settings\All Users\Application Data\ACASystems
2008-10-11 14:31 . 2008-10-11 22:51 <REP> d-------- C:\Program Files\Game Cam V2
2008-10-11 14:05 . 2008-10-14 14:46 <REP> d-------- C:\Fraps
2008-10-10 21:57 . 2008-10-10 21:57 <REP> d-------- C:\Program Files\Trend Micro
2008-10-10 18:40 . 2004-08-04 00:45 14,848 --a------ C:\WINDOWS\system32\drivers\kbdhid.sys
2008-10-10 18:40 . 2004-08-04 00:45 14,848 --a--c--- C:\WINDOWS\system32\dllcache\kbdhid.sys
2008-10-10 18:40 . 2001-08-23 17:04 12,288 --a------ C:\WINDOWS\system32\drivers\mouhid.sys
2008-10-10 18:40 . 2001-08-23 17:04 12,288 --a--c--- C:\WINDOWS\system32\dllcache\mouhid.sys
2008-10-10 18:36 . 2008-10-10 18:36 0 --ah----- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2008-10-10 18:36 . 2008-10-10 18:36 0 --ah----- C:\WINDOWS\system32\drivers\Msft_Kernel_NuidFltr_01005.Wdf
2008-10-10 18:35 . 2004-08-04 00:54 21,504 --a------ C:\WINDOWS\system32\drivers\hidserv.dll
2008-10-10 18:28 . 2007-08-21 10:12 21,760 --a------ C:\WINDOWS\system32\drivers\point32.sys
2008-10-10 18:27 . 2008-10-10 18:27 <REP> d-------- C:\Program Files\Microsoft IntelliPoint
2008-10-10 18:24 . 2007-08-31 21:13 1,421,736 --a------ C:\WINDOWS\system32\wdfcoinstaller01005.dll
2008-10-10 18:24 . 2007-08-31 21:15 18,856 --a------ C:\WINDOWS\system32\drivers\nuidfltr.sys
2008-10-10 18:23 . 2008-10-10 18:24 <REP> d-------- C:\Program Files\Microsoft IntelliType Pro
2008-10-10 16:32 . 2008-10-10 16:32 88,064 --a------ C:\WINDOWS\system32\kxjoayqn.dll
2008-10-05 07:36 . 2008-10-05 07:37 <REP> d---s---- C:\Documents and Settings\Benoit\Mes documents
2008-10-05 06:28 . 2008-10-05 06:28 <REP> d-------- C:\Program Files\iPod
2008-10-05 06:28 . 2008-10-05 06:29 <REP> d-------- C:\Documents and Settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-10-05 05:58 . 2008-10-05 06:25 <REP> d-------- C:\Program Files\QuickTime
2008-10-05 05:03 . 2008-10-05 05:03 0 --a------ C:\WINDOWS\BMe7a392d2.xml
2008-10-05 03:14 . 2008-10-05 03:14 98 --a------ C:\WINDOWS\crocpix1.ini
2008-10-05 03:14 . 2008-10-05 03:14 0 --a------ C:\WINDOWS\windmcroc1.ini
2008-10-05 01:53 . 2008-10-05 01:53 <REP> d-------- C:\Documents and Settings\Tanguy\Application Data\TechSmith
2008-10-05 00:38 . 2008-10-05 00:38 <REP> d-------- C:\Documents and Settings\All Users\Application Data\TechSmith
2008-10-05 00:37 . 2008-10-05 00:37 <REP> d-------- C:\Program Files\TechSmith
2008-10-04 18:45 . 2008-10-04 18:45 <REP> d-------- C:\Program Files\AMD
2008-10-04 18:45 . 2007-06-29 14:47 34,304 --a------ C:\WINDOWS\system32\drivers\AmdLLD.sys
2008-10-03 01:46 . 2008-10-03 01:46 81,920 --a------ C:\WINDOWS\system32\frapsvid.dll
2008-09-23 07:38 . 2008-09-23 07:38 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Video Converter Studio
2008-09-23 07:37 . 2008-09-23 07:37 <REP> d-------- C:\Program Files\Apowersoft
2008-09-23 07:37 . 2008-09-23 07:37 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Tiger Install

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-10-14 14:05 4,479,008 --sha-w C:\WINDOWS\system32\drivers\fidbox2.dat
2008-10-14 14:05 163,534,368 --sha-w C:\WINDOWS\system32\drivers\fidbox.dat
2008-10-14 14:04 424,064 --sha-w C:\WINDOWS\system32\drivers\fidbox2.idx
2008-10-14 14:04 2,194,376 --sha-w C:\WINDOWS\system32\drivers\fidbox.idx
2008-10-14 12:47 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
2008-10-14 06:04 --------- d-----w C:\Program Files\eMule
2008-10-14 04:36 --------- d--h--w C:\Program Files\Zero G Registry
2008-10-14 04:36 --------- d-----w C:\Program Files\WinZip 8.1 Fr
2008-10-14 04:36 --------- d-----w C:\Program Files\Windows Live Toolbar
2008-10-14 04:36 --------- d-----w C:\Program Files\Windows Live Safety Center
2008-10-14 04:36 --------- d-----w C:\Program Files\VirtualDJ
2008-10-14 04:36 --------- d-----w C:\Program Files\VDMSound
2008-10-14 04:36 --------- d-----w C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter
2008-10-14 04:36 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2008-10-14 04:34 --------- d-----w C:\Documents and Settings\Tanguy\Application Data\VoipDiscount
2008-10-11 13:33 --------- d-----w C:\Program Files\Conjugaison
2008-10-05 04:29 --------- d-----w C:\Program Files\iTunes
2008-10-05 04:25 --------- d-----w C:\Program Files\Fichiers communs\Apple
2008-10-05 03:59 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-10-05 03:48 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple Computer
2008-10-05 02:48 --------- d-----w C:\Program Files\ManyCam 2.3
2008-10-05 01:31 --------- d-----w C:\Program Files\ATI Technologies
2008-10-05 01:20 --------- d-----w C:\Program Files\Bonjour
2008-09-29 18:51 --------- d-----w C:\Program Files\Google
2008-09-22 16:18 360,320 ----a-w C:\WINDOWS\system32\drivers\TCPIP.SYS.ORIGINAL
2008-09-22 16:18 360,320 ----a-w C:\WINDOWS\system32\drivers\TCPIP.SYS
2008-09-10 18:31 --------- d-----w C:\Program Files\Apple Software Update
2008-09-03 04:38 --------- d-----w C:\Program Files\Messenger Plus! Live
2008-09-02 00:28 64,801 ----a-w C:\WINDOWS\BricoPackUninst.cmd
2008-09-02 00:28 6,116 ----a-w C:\WINDOWS\BricoPackFoldersDelete.cmd
2008-08-31 13:32 --------- d-----w C:\Documents and Settings\Tanguy\Application Data\DeskSoft
2008-08-31 13:10 166,912 ----a-w C:\WINDOWS\novc.exe
2008-08-27 23:11 --------- d-----w C:\Documents and Settings\Tanguy\Application Data\vlc
2008-08-27 14:32 --------- d-----w C:\Documents and Settings\Tanguy\Application Data\com.uplayme.airclient.9B472EFF9A3BAE26509EDFEDD3D8214233BACDB1.1
2008-08-27 14:31 --------- d-----w C:\Program Files\Fichiers communs\Adobe AIR
2008-08-27 13:21 --------- d-----w C:\Program Files\Unlocker
2008-08-26 23:46 --------- d-----w C:\Program Files\RocketDock
2008-07-19 16:20 22,328 ----a-w C:\Documents and Settings\Tanguy\Application Data\PnkBstrK.sys
2007-12-09 03:13 88 --sh--r C:\WINDOWS\system32\C7314227B7.sys
.

------- Sigcheck -------

2007-06-27 16:14 824320 7201d19b81883b57d5ffe8ebb5a83e8b C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\wininet.dll
2007-08-20 11:49 825344 2dd1b0f579c80562edcb8848ff7ea9f6 C:\WINDOWS\$hf_mig$\KB939653-IE7\SP2QFE\wininet.dll
2007-10-11 01:22 825344 871ae10d6ae8877e9636ae5017953d52 C:\WINDOWS\$hf_mig$\KB942615-IE7\SP2QFE\wininet.dll
2007-12-07 03:42 825344 f4fd487241d3ac291046a22cebd2cf71 C:\WINDOWS\$hf_mig$\KB944533-IE7\SP2QFE\wininet.dll
2008-03-01 14:34 827392 5a0093f59b505c008ed0cee615563c72 C:\WINDOWS\$hf_mig$\KB947864-IE7\SP2QFE\wininet.dll
2008-04-23 09:19 827392 78d3d2b0be6ad3e6d82ccb115cf74310 C:\WINDOWS\$hf_mig$\KB950759-IE7\SP2QFE\wininet.dll
2008-06-23 17:40 827904 52589bae67dd9859724287372668690b C:\WINDOWS\$hf_mig$\KB953838-IE7\SP2QFE\wininet.dll
2004-08-04 02:54 660480 58fe94ef42e074f4cad8bf02e70e6478 C:\WINDOWS\$NtUninstallKB939653$\wininet.dll
2007-08-22 14:57 669696 4f6a45b54d26708e2c2bf2c43d83edea C:\WINDOWS\ie7\wininet.dll
2007-08-13 19:54 818688 a4a0fc92358f39538a6494c42ef99fe9 C:\WINDOWS\ie7updates\KB939653-IE7\wininet.dll
2007-08-20 11:59 824832 f6dfceed3a7aa4c9eeb966d3f1adc70a C:\WINDOWS\ie7updates\KB942615-IE7\wininet.dll
2007-10-11 01:49 824832 bc5119c53bdd48dabc628d448a3bdccb C:\WINDOWS\ie7updates\KB944533-IE7\wininet.dll
2007-12-07 04:08 824832 4fc90bece54fac81b0090b94e27bfb6b C:\WINDOWS\ie7updates\KB947864-IE7\wininet.dll
2008-03-01 14:58 826368 8e027981ddffa690d456fe18b37415a0 C:\WINDOWS\ie7updates\KB950759-IE7\wininet.dll
2008-04-23 06:16 826368 02d6aabd5f5a32c61478b5cdfe50e4a8 C:\WINDOWS\ie7updates\KB953838-IE7\wininet.dll
2007-08-20 11:59 824832 f6dfceed3a7aa4c9eeb966d3f1adc70a C:\WINDOWS\SoftwareDistribution\Download\36e241a7c6880a9ebdbe78b98d36306d\SP2GDR\wininet.dll
2007-08-20 11:49 825344 2dd1b0f579c80562edcb8848ff7ea9f6 C:\WINDOWS\SoftwareDistribution\Download\36e241a7c6880a9ebdbe78b98d36306d\SP2QFE\wininet.dll
2008-06-23 18:28 817152 5f8a137bed66cb1150f139e4e6a6355c C:\WINDOWS\system32\wininet.dll
2008-06-23 18:28 817152 5f8a137bed66cb1150f139e4e6a6355c C:\WINDOWS\system32\dllcache\wininet.dll

2006-04-20 14:18 360576 b2220c618b42a2212a59d91ebd6fc4b4 C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\tcpip.sys
2007-10-30 18:53 360832 64798ecfa43d78c7178375fcdd16d8c8 C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
2008-06-20 12:44 360960 744e57c99232201ae98c49168b918f48 C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
2008-06-20 13:51 361600 9aefa14bd6b182d61e3119fa5f436d3d C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
2008-06-20 13:59 361600 ad978a1b783b5719720cff204b666c8e C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
2004-08-04 01:14 359040 9f4b36614a0fc234525ba224957de55c C:\WINDOWS\$NtUninstallKB917953$\tcpip.sys
2007-11-10 16:45 359808 b4e29943b4b04bd5e7381546848e6669 C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
2007-10-30 19:20 360064 90caff4b094573449a0872a0f919b178 C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
2008-09-22 18:18 360320 073941d59ae065910064b728dee981ee C:\WINDOWS\system32\dllcache\TCPIP.SYS
2008-09-22 18:18 360320 073941d59ae065910064b728dee981ee C:\WINDOWS\system32\drivers\TCPIP.SYS

2007-06-13 15:22 979456 80a5400514eb32d393654768c4017e46 C:\WINDOWS\explorer.exe
2007-06-13 15:10 1037312 b795475444d6d57a572c14b9e1a29839 C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
2004-08-04 02:54 1036288 4c33e5b9a6197b6ed215f6cfba0a2daa C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
2007-06-13 15:22 979456 80a5400514eb32d393654768c4017e46 C:\WINDOWS\system32\dllcache\explorer.exe
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C1FEC19E-F893-4b56-9CC7-CFF71BB34693}]
2008-10-10 16:32 88064 --a------ C:\WINDOWS\system32\kxjoayqn.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 15360]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 5724184]
"DAEMON Tools Lite"="D:\Program Files\DAEMON Tools Lite\daemon.exe" [2008-04-01 486856]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2008-09-16 1833296]
"ccleaner"="C:\Program Files\CCleaner\CCleaner.exe" [2008-06-25 1209584]
"RocketDock"="C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe" [2007-03-19 630784]
"ManyCam"="C:\Program Files\ManyCam 2.3\ManyCam.exe" [2008-08-19 1725736]
"strapp"="C:\WINDOWS\system32\byjudwji.exe" [2008-10-12 81920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"="C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-04-17 196608]
"ISUSScheduler"="C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2004-06-16 81920]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-06-05 185896]
"amd_dc_opt"="C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2008-09-06 413696]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-10-01 289576]
"itype"="C:\Program Files\Microsoft IntelliType Pro\itype.exe" [2007-08-31 988584]
"IntelliPoint"="C:\Program Files\Microsoft IntelliPoint\ipoint.exe" [2007-08-31 1037736]
"OutpostMonitor"="C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe" [2008-07-15 1207128]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\Currentversion\policies\explorer\Run]
"BofVZgrZx7"="C:\Documents and Settings\All Users\Application Data\qzoturmb\azinozyd.exe" [2008-10-11 53248]

C:\Documents and Settings\Tanguy\Menu D‚marrer\Programmes\D‚marrage\
RocketDock.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe [2007-03-19 630784]
TransBar.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe [2005-06-01 65536]
UberIcon.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe [2006-05-21 180224]
Y'z Shadow.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe [2006-05-21 155648]

C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
SnagIt 8.lnk - C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe [2007-05-16 6395464]
Utilitaire r‚seau pour SAGEM Wi-Fi 11g USB adapter.lnk - C:\Program Files\Utilitaire r‚seau pour SAGEM Wi-Fi 11g USB adapter\WLANUTL.exe [2007-10-10 925696]
WinZip Quick Pick.lnk - C:\Program Files\WinZip 8.1 Fr\WZQKPICK.EXE [2002-03-29 106561]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 6.0\\avp.exe"=
"C:\\Program Files\\Fichiers communs\\PocketSoft\\RTPatch\\AutoRTP\\artpschd.exe"=
"C:\\Program Files\\adslTV\\adsltv.exe"=
"C:\\Program Files\\eMule\\emule.exe"=
"C:\\Program Files\\NetMeeting\\conf.exe"=
"C:\\Program Files\\Java\\jre1.6.0_03\\bin\\javaw.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Documents and Settings\\Tanguy\\Application Data\\Weezo\\MySQL\\bin\\mysqld.exe"=
"C:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"C:\\WINDOWS\\system32\\PnkBstrA.exe"=
"C:\\WINDOWS\\system32\\PnkBstrB.exe"=
"D:\\Program Files\\Sierra Entertainment\\Empire Earth III\\EE3.exe"=
"D:\\Program Files\\Sierra\\Empire Earth II\\EE2.exe"=
"D:\\Sierra\\Empire Earth - The Art of Conquest\\EE-AOC.exe"=
"D:\\Sierra\\Empire Earth\\Empire Earth.exe"=
"D:\\Program Files\\Microsoft Games\\Zoo Tycoon 2\\zt.exe"=
"C:\\Program Files\\DsNET Corp\\aTube Catcher 1.0\\smh.exe"=
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"C:\\Program Files\\iTunes\\iTunes.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
"1442:TCP"= 1442:TCP:Emule TCP
"2589:UDP"= 2589:UDP:Emule UPD

R1 SandBox;SandBox;C:\WINDOWS\system32\DRIVERS\SandBox.sys [2008-07-11 673920]
R2 ithsgt;ithsgt;C:\WINDOWS\system32\DRIVERS\ithsgt.sys [2008-05-07 162432]
R2 lilsgt;lilsgt;C:\WINDOWS\system32\DRIVERS\lilsgt.sys [2008-05-07 12032]
R2 litsgt;litsgt;C:\WINDOWS\system32\DRIVERS\litsgt.sys [2007-10-12 137344]
R2 olMntrService;olMntrService;C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe [2006-07-24 86016]
R2 tansgt;tansgt;C:\WINDOWS\system32\DRIVERS\tansgt.sys [2007-10-12 12032]
R3 afw;Agnitum firewall driver;C:\WINDOWS\system32\DRIVERS\afw.sys [2008-06-30 30864]
R3 afwcore;afwcore;C:\WINDOWS\system32\drivers\afwcore.sys [2008-06-30 234640]
R3 ASWFilt;ASWFilt;C:\WINDOWS\system32\Filt\ASWFilt.dll [2008-07-11 33408]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;C:\WINDOWS\system32\DRIVERS\ManyCam.sys [2008-01-14 21632]
R3 Tetri5;Tetri5 driver;C:\WINDOWS\system32\Drivers\Tetri5.sys [2008-05-14 53088]
R3 Tetris;Tetris driver;C:\WINDOWS\system32\Drivers\Tetris.sys [2008-05-14 48928]
R3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 VBEngNT;VBEngNT;C:\WINDOWS\system32\DRIVERS\VBEngNT.sys [2008-06-04 1072722]
R3 VBFilt;VBFilt;C:\WINDOWS\system32\Filt\VBFilt.dll [2008-07-11 158816]
S2 acssrv;Agnitum Client Security Service;C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe [2008-07-15 1570136]
S2 Pi3Web;Pi3Web;c:\Pi3Web\bin\Pi3Srv32.exe [ ]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;D:\Program Files\MAGIX\Common\Database\bin\fbserver.exe [ ]
S3 SetupNTGLM7X;SetupNTGLM7X;D:\NTGLM7X.sys [ ]
S3 SG762_XP;SAGEM 802.11g XG762 1211B Driver;C:\WINDOWS\system32\DRIVERS\WlanBZXP.sys [2006-01-18 402432]
S3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 ZDCndis5;ZDCndis5 Protocol Driver;C:\WINDOWS\system32\ZDCndis5.SYS [ ]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{96b8e3ae-cd03-11dc-9f3f-0001388d0024}]
\Shell\AutoRun\command - K:\start.exe
\Shell\iledefrance\command - K:\start.exe
.
Contenu du dossier 'Tâches planifiées'

2008-10-08 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 12:34]

2008-10-14 C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job
- C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE [2007-10-19 12:20]
.
- - - - ORPHELINS SUPPRIMES - - - -

BHO-{024B2482-4F48-471A-9A2F-2633D4CC1968} - (no file)
BHO-{0870315C-20F4-48EC-B9B3-C9AE99C3BBAC} - (no file)
BHO-{1F88A6F5-908C-4C28-9A81-829953C5F5C5} - (no file)
BHO-{20c98689-c73b-4a23-ab27-e3c455980eaa} - (no file)
BHO-{2BC764F6-F1D5-402E-93CC-57AFB11E8682} - (no file)
BHO-{36CE344C-88AD-445C-8C33-14BBB4EA561A} - (no file)
BHO-{389A058E-FBD5-4336-ACF9-172CFFF0FB8F} - C:\WINDOWS\system32\ssqoNded.dll
BHO-{3CC538F1-5724-4A3D-91F7-6878E490E765} - (no file)
BHO-{4781DBCA-E59D-48A3-96F0-99729263E2A6} - (no file)
BHO-{4B0FAF5A-67C4-4625-AE07-B0DBADA16EBF} - (no file)
BHO-{53915D25-500E-4785-A2CC-7FB3FD4059F4} - C:\WINDOWS\system32\iIBrrsPi.dll
BHO-{5CBD4DAB-C80E-4FE2-A926-71F604BA6606} - (no file)
BHO-{624A02DB-6498-463E-951F-AE5C1A724507} - (no file)
BHO-{698EFD28-BC86-4EAF-8736-FFD3C335C331} - (no file)
BHO-{8EF7E888-280D-418C-AD68-0C4F4AD1C971} - (no file)
BHO-{903C377B-E501-4A35-A6B2-1E3994711EA1} - C:\WINDOWS\system32\iifdebYp.dll
BHO-{908F6967-958F-4384-949E-2A3C4EBEE804} - (no file)
BHO-{DD553424-366F-41EE-8FD4-80A71913F6E7} - (no file)
BHO-{E025BA7F-839F-44B9-A9E2-7C4E9A06AB0F} - (no file)
BHO-{e86b5984-ceef-418b-8b99-95a4535e39f3} - C:\WINDOWS\system32\yhdgty.dll
BHO-{f3aae4aa-8100-4970-9016-c3935f946a21} - (no file)
WebBrowser-{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - (no file)
HKCU-Run-Linkodotron - C:\PROGRA~1\LINKOD~1\LINKOD~1.EXE
HKLM-Run-TrayServer - D:\Program Files\MAGIX\Video_deluxe_2008_PLUS\TrayServer.exe
HKLM-Run-Fast SysTray - C:\Program Files\FastSysTray\FastsysTray.exe
HKLM-Run-e490a14e - C:\WINDOWS\system32\dkvnqjar.dll
HKLM-Run-Kupdate - (no file)
ShellExecuteHooks-{903C377B-E501-4A35-A6B2-1E3994711EA1} - C:\WINDOWS\system32\iifdebYp.dll
Notify-iifdebYp - (no file)
Notify-winhoq32 - (no file)


.
------- Examen supplémentaire -------
.
FireFox -: Profile - C:\Documents and Settings\Tanguy\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\
FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF -: plugin - C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
FF -: plugin - C:\Program Files\Anti-Leech\ALNN\npalnn.dll
FF -: plugin - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
FF -: plugin - C:\Program Files\Mozilla Firefox\plugins\npgcplug.dll
FF -: plugin - C:\Program Files\Mozilla Firefox\plugins\npracplug.dll
FF -: plugin - C:\Program Files\Mozilla Firefox\plugins\npzylomgamesplayer.dll
FF -: plugin - C:\Program Files\Real\RealArcade\Plugins\Mozilla\npracplug.dll
.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-14 16:06:23
Windows 5.1.2600 Service Pack 2 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...


C:\Documents and Settings\Tanguy\Local Settings\Application Data\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 855 bytes hidden from API

Scan terminé avec succès
Fichiers cachés: 1

**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------

PROCESSUS: C:\WINDOWS\explorer.exe
-> C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.dll
.
------------------------ Autres processus actifs ------------------------
.
C:\WINDOWS\system32\ati2evxx.exe
C:\WINDOWS\system32\ati2evxx.exe
C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter\WLANUTL.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wscntfy.exe
.
**************************************************************************
.
Heure de fin: 2008-10-14 16:11:38 - La machine a redémarré [Tanguy]
ComboFix-quarantined-files.txt 2008-10-14 14:11:32

Avant-CF: 13 858 942 976 octets libres
Après-CF: 13,812,580,352 octets libres

392 --- E O F --- 2008-09-11 05:18:17

info.txt logfile of random's system information tool 1.04 2008-10-14 18:06:14

======Uninstall list======

-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->MsiExec /X{85EBB283-65AF-4C53-9EBE-7C0A232762F7}
-->MsiExec.exe /X{69495273-FCDC-4A86-BCB7-49B504D3FB0E}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
Acronis True Image Home-->MsiExec.exe /X{B1914265-0D07-48E0-A937-F20A76D0032D}
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe AIR-->C:\Program Files\Fichiers communs\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}
Adobe ExtendScript Toolkit 2-->C:\Program Files\Fichiers communs\Adobe\Installers\5bc0f8414ec36c555a3e7e5ec2e225e\Setup.exe
Adobe ExtendScript Toolkit 2-->MsiExec.exe /I{1BCEA516-B4C5-4B2D-BFA0-AB7910BAD862}
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81200000003}
Adobe Setup-->MsiExec.exe /I{D504303A-717D-414C-BA9F-FE01093E2EF8}
Adobe Shockwave Player-->C:\WINDOWS\system32\Adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
adsl TV-->C:\Program Files\adslTV\Uninstal.exe
AGEIA PhysX v7.03.21-->MsiExec.exe /X{85EBB283-65AF-4C53-9EBE-7C0A232762F7}
Agnitum Outpost Security Suite Pro-->"C:\Program Files\Agnitum\Outpost Security Suite Pro\unins000.exe"
Analyseur et SDK MSXML 4.0 SP2-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
Apple Mobile Device Support-->MsiExec.exe /I{976C2B2A-CE59-4AB3-83FB-BF895E28F2E6}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
Astérix aux Jeux Olympiques-->"D:\Program Files\Atari\Asterix at the Olympic Games\Uninstall.exe"
ATI - Utilitaire de désinstallation du logiciel-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center-->MsiExec.exe /I{8191C745-A269-42BB-AF72-8F9A5DA18D37}
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_classISPLAY -clean
ATI Parental Control & Encoder-->MsiExec.exe /I{36CDA33B-909B-4719-97D1-C4B99309BDC7}
aTube Catcher 1.0-->"C:\Program Files\DsNET Corp\aTube Catcher 1.0\unins000.exe"
Audacity 1.2.6-->"C:\Program Files\Audacity\unins000.exe"
AutoIt v3.2.12.1-->C:\Program Files\AutoIt3\Uninstall.exe
AVIVO Codecs-->MsiExec.exe /X{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}
Barre d'outils Outlook de Windows Live (Windows Live Toolbar)-->MsiExec.exe /X{6E15BEDF-7EB5-4010-998E-B430DB4EFE45}
Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{A425C250-A0E1-4D78-B1C1-A5CBC7385E7C}
Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}
Call of Duty(R) 4 - Modern Warfare(TM)-->C:\Program Files\InstallShield Installation Information\{E48469CC-635E-4FD5-A122-1497C286D217}\setup.exe -runfromtemp -l0x040c
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
Client Windows Rights Management avec Service Pack 2-->MsiExec.exe /X{1D13221B-42DE-4B3C-A43F-0F6AF3CF3DA2}
Conjugaison-->MsiExec.exe /I{057AA4D8-559F-42B1-98A0-508303834B2E}
Corel Paint Shop Pro Photo XI-->MsiExec.exe /I{93A1B09E-BAFA-4628-A5B6-921CB026955A}
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB914440)-->"C:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB935448)-->"C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif Windows XP - KB873339-->C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
Correctif Windows XP - KB885835-->C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
Correctif Windows XP - KB885836-->C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
Correctif Windows XP - KB886185-->C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
Correctif Windows XP - KB887472-->C:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe
Correctif Windows XP - KB888302-->C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
Correctif Windows XP - KB890859-->"C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
Correctif Windows XP - KB891781-->C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
Dance eJay 7-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A18BB607-BC5A-474E-88FD-C215B91A0F97}\setup.exe" -l0x40c -removeonly
Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{EFFCB0F1-CFEC-48D4-B793-EBFCAE852976}
Drive Rescue 1.9-->"C:\Program Files\Drive Rescue\unins000.exe"
DSS DJ 5.6-->"C:\Program Files\MyXOFT\DSS DJ\unins000.exe"
Dual-Core Optimizer-->MsiExec.exe /X{9FD6F1A8-5550-46AF-8509-271DF0E768B5}
EasyPHP 2.0b1-->"C:\Program Files\EasyPHP 2.0b1\unins000.exe"
Empire Earth - The Art of Conquest-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B49C924C-A651-4378-94F6-5D9BF44A959F}\Setup.exe" -l0x40c
Empire Earth II: Art of Supremacy-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F596C356-BF35-4ED7-981C-CC791461A8F0}\setup.exe" -l0x40c -removeonly
Empire Earth II-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DF315348-721C-40B8-BAE2-58C6C7D935A2}\setup.exe" -l0x40c -removeonly
Empire Earth III-->C:\Program Files\InstallShield Installation Information\{B17E235C-7A3B-4482-B650-21FFDE1D452E}\setup.exe -runfromtemp -l0x040c -removeonly
Empire Earth Patch 1.0.4.0-->D:\Sierra\EMPIRE~1\UNWISE.EXE D:\Sierra\EMPIRE~1\INSTALL.LOG
Empire Earth-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2447500B-22D7-47BD-9B13-1A927F43A267}\Setup.exe" -l0x40c
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Evil Genius-->"D:\Program Files\VUGames\Evil Genius\unins000.exe"
Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{0CA6047C-D28B-4295-834A-07C52BA20C2D}
FileZilla Client 3.0.9.2-->C:\Program Files\FileZilla Client\uninstall.exe
Firebird SQL Server - MAGIX Edition-->D:\Program Files\MAGIX\Common\Database\instslct.exe /p
Fraps (remove only)-->"C:\Fraps\uninstall.exe"
Globulation 2-->D:\Program Files\Globulation_2\glob2win32-uninst.exe
Google Earth-->MsiExec.exe /I{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}
Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"
GTA San Andreas-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}\setup.exe" -l0x40c -removeonly
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.0 (KB932471)-->C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {ECD292A0-0347-4244-8C24-5DBCE990FB40} /package {BAF78226-3200-4DB4-BE33-4D922A799840}
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB915865)-->"C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB926239)-->"C:\WINDOWS\$NtUninstallKB926239$\spuninst\spuninst.exe"
iTunes-->MsiExec.exe /I{DDDE0BE3-0CBE-4BF6-B75A-E3F69C947843}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Kaspersky Anti-Virus 6.0-->MsiExec.exe /I{75193929-9A52-4CA4-98DE-8C7296940920}
La boite a couleurs version 1.6.14-->"C:\Program Files\LaBoiteACouleurs\unins000.exe"
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Les Sims 2-->D:\Program Files\EA GAMES\Les Sims 2\EAUninstall.exe
Logiciel WebCam de Labtec-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}\setup.exe" -l0x40c
Macromedia Extension Manager-->MsiExec.exe /I{3C8C9FB3-5FDF-40B4-B314-EAD722728C76}
Macromedia Flash 8 Video Encoder-->MsiExec.exe /X{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}
Macromedia Flash 8-->MsiExec.exe /I{2BD5C305-1B27-4D41-B690-7A61172D2FEB}
Macromedia Flash Player 8 Plugin-->MsiExec.exe /X{91057632-CA70-413C-B628-2D3CDBBB906B}
Macromedia Flash Player 8-->MsiExec.exe /X{885A63EA-382B-4DD4-A755-14809B8557D6}
MAGIX PC Visit-->D:\Program Files\MAGIX\PCVisit\instslct.exe /p
ManyCam 2.3 (remove only)-->"C:\Program Files\ManyCam 2.3\uninstall.exe"
Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}
Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft .NET Framework 3.0 French Language Pack-->MsiExec.exe /X{E3C080B0-23F5-49AF-89F8-8E8DBC89E659}
Microsoft .NET Framework 3.0 Service Pack 1-->MsiExec.exe /I{2BA00471-0328-3743-93BD-FA813353A783}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Flight Simulator X-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{F535B2CF-C9BB-4162-B03A-02D6971F32CC}
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Professional Plus 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Virtual PC 2007-->MsiExec.exe /X{8A7CAA24-7B23-410B-A7C3-F994B0944160}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Mise à jour de sécurité pour Lecteur Windows Media (KB911564)-->"C:\WINDOWS\$NtUninstallKB911564$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)-->"C:\WINDOWS\$NtUninstallKB925398_WMP64$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB890046)-->"C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB893756)-->"C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB896358)-->"C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB896423)-->"C:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB896428)-->"C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB899587)-->"C:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB899591)-->"C:\WINDOWS\$NtUninstallKB899591$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB900725)-->"C:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB901017)-->"C:\WINDOWS\$NtUninstallKB901017$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB901214)-->"C:\WINDOWS\$NtUninstallKB901214$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB902400)-->"C:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB904706)-->"C:\WINDOWS\$NtUninstallKB904706$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB905414)-->"C:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB905749)-->"C:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB908519)-->"C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB911562)-->"C:\WINDOWS\$NtUninstallKB911562$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB911927)-->"C:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB913580)-->"C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB914388)-->"C:\WINDOWS\$NtUninstallKB914388$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB914389)-->"C:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB917344)-->"C:\WINDOWS\$NtUninstallKB917344$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB917953)-->"C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB918118)-->"C:\WINDOWS\$NtUninstallKB918118$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB918439)-->"C:\WINDOWS\$NtUninstallKB918439$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB919007)-->"C:\WINDOWS\$NtUninstallKB919007$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB920213)-->"C:\WINDOWS\$NtUninstallKB920213$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB920670)-->"C:\WINDOWS\$NtUninstallKB920670$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB920683)-->"C:\WINDOWS\$NtUninstallKB920683$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB920685)-->"C:\WINDOWS\$NtUninstallKB920685$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB921503)-->"C:\WINDOWS\$NtUninstallKB921503$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB922819)-->"C:\WINDOWS\$NtUninstallKB922819$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923191)-->"C:\WINDOWS\$NtUninstallKB923191$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923414)-->"C:\WINDOWS\$NtUninstallKB923414$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923689)-->"C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Mise à jour de sécurité pour Windows XP (KB923980)-->"C:\WINDOWS\$NtUninstallKB923980$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB924270)-->"C:\WINDOWS\$NtUninstallKB924270$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB924496)-->"C:\WINDOWS\$NtUninstallKB924496$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB924667)-->"C:\WINDOWS\$NtUninstallKB924667$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB925902)-->"C:\WINDOWS\$NtUninstallKB925902$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB926255)-->"C:\WINDOWS\$NtUninstallKB926255$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB926436)-->"C:\WINDOWS\$NtUninstallKB926436$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB927779)-->"C:\WINDOWS\$NtUninstallKB927779$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB927802)-->"C:\WINDOWS\$NtUninstallKB927802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB928255)-->"C:\WINDOWS\$NtUninstallKB928255$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB928843)-->"C:\WINDOWS\$NtUninstallKB928843$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB929123)-->"C:\WINDOWS\$NtUninstallKB929123$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB930178)-->"C:\WINDOWS\$NtUninstallKB930178$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB931261)-->"C:\WINDOWS\$NtUninstallKB931261$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB931784)-->"C:\WINDOWS\$NtUninstallKB931784$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB932168)-->"C:\WINDOWS\$NtUninstallKB932168$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB933729)-->"C:\WINDOWS\$NtUninstallKB933729$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB935839)-->"C:\WINDOWS\$NtUninstallKB935839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB935840)-->"C:\WINDOWS\$NtUninstallKB935840$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB936021)-->"C:\WINDOWS\$NtUninstallKB936021$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB937143)-->"C:\WINDOWS\$NtUninstallKB937143$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB937894)-->"C:\WINDOWS\$NtUninstallKB937894$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938127)-->"C:\WINDOWS\$NtUninstallKB938127$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938829)-->"C:\WINDOWS\$NtUninstallKB938829$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB939653)-->"C:\WINDOWS\$NtUninstallKB939653$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941202)-->"C:\WINDOWS\$NtUninstallKB941202$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941568)-->"C:\WINDOWS\$NtUninstallKB941568$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941644)-->"C:\WINDOWS\$NtUninstallKB941644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941693)-->"C:\WINDOWS\$NtUninstallKB941693$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB943055)-->"C:\WINDOWS\$NtUninstallKB943055$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB943460)-->"C:\WINDOWS\$NtUninstallKB943460$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB943485)-->"C:\WINDOWS\$NtUninstallKB943485$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB944653)-->"C:\WINDOWS\$NtUninstallKB944653$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB945553)-->"C:\WINDOWS\$NtUninstallKB945553$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946026)-->"C:\WINDOWS\$NtUninstallKB946026$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB948590)-->"C:\WINDOWS\$NtUninstallKB948590$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB948881)-->"C:\WINDOWS\$NtUninstallKB948881$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950749)-->"C:\WINDOWS\$NtUninstallKB950749$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB894391)-->"C:\WINDOWS\$NtUninstallKB894391$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB900485)-->"C:\WINDOWS\$NtUninstallKB900485$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB904942)-->"C:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB908531)-->"C:\WINDOWS\$NtUninstallKB908531$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB910437)-->"C:\WINDOWS\$NtUninstallKB910437$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB911280)-->"C:\WINDOWS\$NtUninstallKB911280$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB916595)-->"C:\WINDOWS\$NtUninstallKB916595$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB920872)-->"C:\WINDOWS\$NtUninstallKB920872$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB922582)-->"C:\WINDOWS\$NtUninstallKB922582$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB925720)-->"C:\WINDOWS\$NtUninstallKB925720$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB925876)-->"C:\WINDOWS\$NtUninstallKB925876$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB927891)-->"C:\WINDOWS\$NtUninstallKB927891$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB930916)-->"C:\WINDOWS\$NtUninstallKB930916$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB932823-v3)-->"C:\WINDOWS\$NtUninstallKB932823-v3$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB933360)-->"C:\WINDOWS\$NtUninstallKB933360$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB938828)-->"C:\WINDOWS\$NtUninstallKB938828$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB942763)-->"C:\WINDOWS\$NtUninstallKB942763$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
Module de prise en charge linguistique du français de Microsoft .NET Framework 3.0-->C:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0 French Language Pack\setup.exe
Mozilla Firefox (3.0.3)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSRedist-->MsiExec.exe /I{FC37ABD0-2108-4beb-B010-1254E0662B5A}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
Nero 7 Premium-->MsiExec.exe /I{4781569D-5404-1F26-4B2B-6DF444441031}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Notepad++-->C:\Program Files\Notepad++\uninstall.exe
O&O Defrag Professional Edition-->MsiExec.exe /I{53480520-7555-470E-8C69-750B0472B4BB}
OneCare Advisor (Windows Live Toolbar)-->MsiExec.exe /X{F242B06B-517F-4D62-B654-16B11564A912}
Pack Vista Inspirat 2 1.0-->C:\WINDOWS\BricoPacks\Vista Inspirat 2\Remove.exe
Package de pilotes Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)-->C:\PROGRA~1\DIFX\7B44739871F4D539FA473F57A832EA4B6A59EF06\DPInst.exe /d /u C:\WINDOWS\system32\DRVSTORE\amdk8_1F9DE4E49C97F59EE9F75C34E0E91E568FC9EEB2\amdk8.inf
PhotoFiltre Studio-->"C:\Program Files\PhotoFiltre Studio\Uninst.exe"
PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"
Programme de gestion Camera de Labtec®-->"C:\Program Files\Fichiers communs\Logitech\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT
PunkBuster Services-->C:\WINDOWS\system32\pbsvc.exe -u
QuickTime-->MsiExec.exe /I{8DC42D05-680B-41B0-8878-6C14D24602DB}
RCT3 Soaked-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EA926717-CE5A-4CB4-AB21-9E6E9565A458}\setup.exe" -l0x40c
RealArcade-->C:\Program Files\Real\RealArcade\Update\rnuninst.exe RealNetworks|RealArcade|1.2
RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
RocketDock 1.3.5-->"C:\Program Files\RocketDock\unins000.exe"
RollerCoaster Tycoon® 3-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{907B4640-266B-4A21-92FB-CD1A86CD0F63}\Setup.exe" -l0x40c
Sagem Wi-Fi 11g USB adapter-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{40ACE18D-D5B4-40AF-81E8-2816A8AED029}\setup.exe" -l0x40c
Security Update for 2007 Microsoft Office System (KB951596)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {1AFF2298-CC00-4A3B-866A-C62B8373794E}
Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Microsoft Office Excel 2007 (KB951546)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {7399DD71-8E24-4E60-B6A8-6CED89C0AC26}
Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}
Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85}
Security Update for Microsoft Office system 2007 (KB951808)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {8F375E11-4FD6-4B89-9E2B-A76D48B51E00}
Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
Security Update for Microsoft Office Word 2007 (KB950113)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {AD72BABE-C733-4FCF-9674-4314466191B9}
Security Update for Visio 2007 (KB947590)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {6BAD036C-261F-4BEF-96CF-C20678D07A41}
SimCity 4 Deluxe-->D:\Program Files\Maxis\SimCity 4 Deluxe\EAUninstall.exe
Singles-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5628829F-3318-4DDA-988D-D301832F1611}\setup.exe"
SnagIt 8-->MsiExec.exe /I{DA0BF7AB-88EB-4675-8FA1-531EAD938821}
SP2 de compatibilité descendante du client Windows Rights Management-->MsiExec.exe /X{EC905264-BCFE-423B-9C42-C3A106266790}
Spybot - Search & Destroy 1.5.2.20-->"C:\WINDOWS\unins000.exe"
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins001.exe"
Surligneur (Windows Live Toolbar)-->MsiExec.exe /X{81B5F83F-2291-48B0-8375-36B63A9BF5B0}
SymNet-->MsiExec.exe /I{E47EE8FB-ACC0-4608-859C-4E2851B18A6A}
Unlocker 1.8.7-->C:\Program Files\Unlocker\uninst.exe
Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756}
Update for Office 2007 (KB946691)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278}
Update for Outlook 2007 Junk Email Filter (kb956080)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {96CC215F-3F22-4E1E-A101-F0041934A456}
Video Converter Studio-->C:\Program Files\Apowersoft\Video Converter Studio\Uninstall.exe
VideoLAN VLC media player 0.8.6c-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Virtual DJ - Atomix Productions-->C:\PROGRA~1\VIRTUA~1\UNWISE.EXE C:\PROGRA~1\VIRTUA~1\INSTALL.LOG
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
Windows Internet Explorer 7-->"C:\WINDOWS\ie7\spuninst\spuninst.exe"
Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Live OneCare safety scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT
Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Presentation Foundation Language Pack (FRA)-->MsiExec.exe /X{6901DD22-527A-41EF-9059-E81FEDE9E494}
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation FR Language Pack-->MsiExec.exe /I{B84C141C-9A13-44BE-9A69-301D7B11D836}
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
Zoo Tycoon 2 - Animaux disparus-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{15292416-A464-4FBA-BB96-7298EAACFC07}

======Security center information======

AV: Outpost Security Suite Pro
AV: Kaspersky Anti-Virus (disabled) (outdated)
FW: Outpost Security Suite Pro

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\VDMSound;C:\Program Files\QuickTime\QTSystem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 107 Stepping 1, AuthenticAMD
"PROCESSOR_REVISION"=6b01
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip

-----------------EOF-----------------

========== FILES ==========
DllUnregisterServer procedure not found in C:\WINDOWS\sy...
C:\WINDOWS\system32\kxjoayqn.dll NOT unregistred.
C:\WINDOWS\system32\kxjoayqn.dll moved successfully.
Folder move failed. C:\Documents and Settings\All Users\Ap...
C:\WINDOWS\system32\byjudwji.exe movzs successfully.
File/Folder C:\WINDOWS\system32\cpmtmjwp.exe not foun...
File/Folder C:\WINDOWS\SWXCACLS.exe not found.
File/Folder C:\WINDOWS\system32\gbijiidyl.exe not found.
File/Folder C:\WINDOWS\system32\gvkxklkl.exe not found.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Micros...

Logfile of random's system information tool 1.04 (written by random/random)
Run by Tanguy at 2008-10-14 19:07:04
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 13 GB (43%) free of 30 GB
Total RAM: 895 MB (23% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:07:13, on 14/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Documents and Settings\All Users\Application Data\qzoturmb\azinozyd.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
D:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\Program Files\ManyCam 2.3\ManyCam.exe
C:\WINDOWS\system32\byjudwji.exe
C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe
C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter\WLANUTL.exe
C:\Program Files\WinZip 8.1 Fr\WZQKPICK.EXE
C:\Program Files\TechSmith\SnagIt 8\TSCHelp.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\TechSmith\SnagIt 8\SnagPriv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LVComsX.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
D:\Mes documents (Tanguy)\Mozilla Firefox\OTMoveIt3.exe
C:\Program Files\Mozilla Firefox\firefox.exe
D:\Mes documents (Tanguy)\Mozilla Firefox\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Tanguy.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll
O2 - BHO: (no name) - {024B2482-4F48-471A-9A2F-2633D4CC1968} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0870315C-20F4-48EC-B9B3-C9AE99C3BBAC} - (no file)
O2 - BHO: (no name) - {20c98689-c73b-4a23-ab27-e3c455980eaa} - (no file)
O2 - BHO: (no name) - {2BC764F6-F1D5-402E-93CC-57AFB11E8682} - (no file)
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {36CE344C-88AD-445C-8C33-14BBB4EA561A} - (no file)
O2 - BHO: (no name) - {389A058E-FBD5-4336-ACF9-172CFFF0FB8F} - (no file)
O2 - BHO: (no name) - {3CC538F1-5724-4A3D-91F7-6878E490E765} - (no file)
O2 - BHO: (no name) - {4781DBCA-E59D-48A3-96F0-99729263E2A6} - (no file)
O2 - BHO: (no name) - {4B0FAF5A-67C4-4625-AE07-B0DBADA16EBF} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {53915D25-500E-4785-A2CC-7FB3FD4059F4} - (no file)
O2 - BHO: (no name) - {5CBD4DAB-C80E-4FE2-A926-71F604BA6606} - (no file)
O2 - BHO: (no name) - {624A02DB-6498-463E-951F-AE5C1A724507} - (no file)
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: (no name) - {698EFD28-BC86-4EAF-8736-FFD3C335C331} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {8EF7E888-280D-418C-AD68-0C4F4AD1C971} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {903C377B-E501-4A35-A6B2-1E3994711EA1} - (no file)
O2 - BHO: (no name) - {908F6967-958F-4384-949E-2A3C4EBEE804} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: (no name) - {C1FEC19E-F893-4b56-9CC7-CFF71BB34693} - C:\WINDOWS\system32\kxjoayqn.dll
O2 - BHO: (no name) - {DD553424-366F-41EE-8FD4-80A71913F6E7} - (no file)
O2 - BHO: (no name) - {E025BA7F-839F-44B9-A9E2-7C4E9A06AB0F} - (no file)
O2 - BHO: (no name) - {e86b5984-ceef-418b-8b99-95a4535e39f3} - (no file)
O2 - BHO: (no name) - {f3aae4aa-8100-4970-9016-c3935f946a21} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [OutpostMonitor] C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe /tray /noservice
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [RocketDock] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [ManyCam] "C:\Program Files\ManyCam 2.3\ManyCam.exe"
O4 - HKCU\..\Run: [strapp] C:\WINDOWS\system32\byjudwji.exe
O4 - HKCU\..\Run: [setdsc] C:\WINDOWS\system32\cpmtmjwp.exe
O4 - HKLM\..\Policies\Explorer\Run: [BofVZgrZx7] C:\Documents and Settings\All Users\Application Data\qzoturmb\azinozyd.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
O4 - Global Startup: SnagIt 8.lnk = C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip 8.1 Fr\WZQKPICK.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: Réglage rapide de Outpost Security Suite Pro - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\Program Files\Agnitum\Outpost Security Suite Pro\ie_bar.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wi [...] 1076962593
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/bina [...] b56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
O23 - Service: Agnitum Client Security Service (acssrv) - Agnitum Ltd. - C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - Unknown owner - D:\Program Files\MAGIX\Common\Database\bin\fbserver.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: olMntrService - Olivetti - C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
O23 - Service: Pi3Web - Unknown owner - c:\Pi3Web\bin\Pi3Srv32.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O24 - Desktop Component 0: (no name) - http://www.fond-ecran.net/fonds/carmenelectra_002.jpg
O24 - Desktop Component 1: (no name) - http://www.wallpapers-zone.com/wal [...] xy_150.jpg

--
End of file - 13912 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00C6482D-C502-44C8-8409-FCE54AD9C208}]
SnagIt Toolbar Loader - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll [2007-05-16 63048]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{024B2482-4F48-471A-9A2F-2633D4CC1968}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0870315C-20F4-48EC-B9B3-C9AE99C3BBAC}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{20c98689-c73b-4a23-ab27-e3c455980eaa}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2BC764F6-F1D5-402E-93CC-57AFB11E8682}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2008-06-05 308856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{36CE344C-88AD-445C-8C33-14BBB4EA561A}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{389A058E-FBD5-4336-ACF9-172CFFF0FB8F}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CC538F1-5724-4A3D-91F7-6878E490E765}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4781DBCA-E59D-48A3-96F0-99729263E2A6}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4B0FAF5A-67C4-4625-AE07-B0DBADA16EBF}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53915D25-500E-4785-A2CC-7FB3FD4059F4}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CBD4DAB-C80E-4FE2-A926-71F604BA6606}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{624A02DB-6498-463E-951F-AE5C1A724507}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{698EFD28-BC86-4EAF-8736-FFD3C335C331}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll [2007-09-25 501136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8EF7E888-280D-418C-AD68-0C4F4AD1C971}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{903C377B-E501-4A35-A6B2-1E3994711EA1}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{908F6967-958F-4384-949E-2A3C4EBEE804}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2007-10-19 2436160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll [2007-10-23 325048]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1FEC19E-F893-4b56-9CC7-CFF71BB34693}]
C:\WINDOWS\system32\kxjoayqn.dll [2008-10-10 88064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DD553424-366F-41EE-8FD4-80A71913F6E7}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E025BA7F-839F-44B9-A9E2-7C4E9A06AB0F}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e86b5984-ceef-418b-8b99-95a4535e39f3}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f3aae4aa-8100-4970-9016-c3935f946a21}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2007-10-19 2436160]
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]
{8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - SnagIt - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll [2007-05-16 161352]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"=C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-04-17 196608]
"ISUSScheduler"=C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2008-06-05 185896]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-10-01 289576]
"itype"=C:\Program Files\Microsoft IntelliType Pro\itype.exe [2007-08-31 988584]
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2007-08-31 1037736]
"OutpostMonitor"=C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe [2008-07-15 1207128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BofVZgrZx7"=C:\Documents and Settings\All Users\Application Data\qzoturmb\azinozyd.exe [2008-10-11 53248]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2007-10-18 5724184]
"DAEMON Tools Lite"=D:\Program Files\DAEMON Tools Lite\daemon.exe [2008-04-01 486856]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2008-09-16 1833296]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2008-06-25 1209584]
"RocketDock"=C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe [2007-03-19 630784]
"ManyCam"=C:\Program Files\ManyCam 2.3\ManyCam.exe [2008-08-19 1725736]
"strapp"=C:\WINDOWS\system32\byjudwji.exe [2008-10-12 81920]
"setdsc"=C:\WINDOWS\system32\cpmtmjwp.exe []

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
SnagIt 8.lnk - C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe
Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk - C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter\WLANUTL.exe
WinZip Quick Pick.lnk - C:\Program Files\WinZip 8.1 Fr\WZQKPICK.EXE

C:\Documents and Settings\Tanguy\Menu Démarrer\Programmes\Démarrage
RocketDock.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
TransBar.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
UberIcon.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
Y'z Shadow.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2007-01-08 110592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2006-11-01 94314]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-04-10 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
relog_ap

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSEXESVC]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PSEXESVC]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SYMTDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"NoDrives"=
"NoDriveAutoRun"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe:*:Enabled:Kaspersky Anti-Virus"
"C:\Program Files\Fichiers communs\PocketSoft\RTPatch\AutoRTP\artpschd.exe"="C:\Program Files\Fichiers communs\PocketSoft\RTPatch\AutoRTP\artpschd.exe:*:Enabled:artpschd"
"C:\Program Files\adslTV\adsltv.exe"="C:\Program Files\adslTV\adsltv.exe:*:Enabled:adsltv"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\NetMeeting\conf.exe"="C:\Program Files\NetMeeting\conf.exe:*:Enabled:Windows® NetMeeting®"
"C:\Program Files\Java\jre1.6.0_03\bin\javaw.exe"="C:\Program Files\Java\jre1.6.0_03\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\Documents and Settings\Tanguy\Application Data\Weezo\MySQL\bin\mysqld.exe"="C:\Documents and Settings\Tanguy\Application Data\Weezo\MySQL\bin\mysqld.exe:*:Enabled:mysqld"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:EnablednkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:EnablednkBstrB"
"D:\Program Files\Sierra Entertainment\Empire Earth III\EE3.exe"="D:\Program Files\Sierra Entertainment\Empire Earth III\EE3.exe:*:Enabled:Empire Earth III"
"D:\Program Files\Sierra\Empire Earth II\EE2.exe"="D:\Program Files\Sierra\Empire Earth II\EE2.exe:*:Enabled:Empire Earth II"
"D:\Sierra\Empire Earth - The Art of Conquest\EE-AOC.exe"="D:\Sierra\Empire Earth - The Art of Conquest\EE-AOC.exe:*:Enabled:EE-AOC"
"D:\Sierra\Empire Earth\Empire Earth.exe"="D:\Sierra\Empire Earth\Empire Earth.exe:*:Enabled:Empire Earth"
"D:\Program Files\Microsoft Games\Zoo Tycoon 2\zt.exe"="D:\Program Files\Microsoft Games\Zoo Tycoon 2\zt.exe:*:Enabled:Zoo Tycoon 2 Executable"
"C:\Program Files\DsNET Corp\aTube Catcher 1.0\smh.exe"="C:\Program Files\DsNET Corp\aTube Catcher 1.0\smh.exe:*:Enabled:Smart Media Hunter 0.7"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{96b8e3ae-cd03-11dc-9f3f-0001388d0024}]
shell\AutoRun\command - K:\start.exe
shell\iledefrance\command - K:\start.exe


======List of files/folders created in the last 1 months======

2008-10-14 18:35:11 ----D---- C:\WINDOWS\LastGood
2008-10-14 18:14:24 ----D---- C:\Program Files\PowerQuest
2008-10-14 18:05:44 ----D---- C:\rsit
2008-10-14 16:13:21 ----SHD---- C:\RECYCLER
2008-10-14 16:11:42 ----D---- C:\WINDOWS\temp
2008-10-14 16:11:40 ----A---- C:\ComboFix.txt
2008-10-14 15:58:59 ----A---- C:\WINDOWS\NIRCMD.exe
2008-10-14 15:53:04 ----A---- C:\Boot.bak
2008-10-14 15:52:54 ----D---- C:\cmdcons
2008-10-14 15:51:26 ----A---- C:\WINDOWS\zip.exe
2008-10-14 15:51:26 ----A---- C:\WINDOWS\VFIND.exe
2008-10-14 15:51:26 ----A---- C:\WINDOWS\SWSC.exe
2008-10-14 15:51:26 ----A---- C:\WINDOWS\SWREG.exe
2008-10-14 15:51:26 ----A---- C:\WINDOWS\sed.exe
2008-10-14 15:51:26 ----A---- C:\WINDOWS\grep.exe
2008-10-14 15:51:26 ----A---- C:\WINDOWS\fdsv.exe
2008-10-14 15:33:00 ----D---- C:\WINDOWS\ERDNT
2008-10-14 15:33:00 ----D---- C:\Qoobox
2008-10-12 16:34:40 ----N---- C:\WINDOWS\system32\byjudwji.exe
2008-10-12 00:43:51 ----D---- C:\Program Files\AutoIt3
2008-10-11 22:40:47 ----D---- C:\Documents and Settings\All Users\Application Data\qzoturmb
2008-10-11 22:17:38 ----A---- C:\WINDOWS\SCapPro.INI
2008-10-11 21:35:12 ----D---- C:\Documents and Settings\Tanguy\Application Data\ACASystems
2008-10-11 21:35:12 ----D---- C:\Documents and Settings\All Users\Application Data\ACASystems
2008-10-11 14:31:24 ----D---- C:\Program Files\Game Cam V2
2008-10-11 14:05:33 ----D---- C:\Fraps
2008-10-10 21:57:53 ----D---- C:\Program Files\Trend Micro
2008-10-10 18:36:08 ----HDC---- C:\WINDOWS\$NtUninstallWdf01005$
2008-10-10 18:27:17 ----D---- C:\Program Files\Microsoft IntelliPoint
2008-10-10 18:24:40 ----A---- C:\WINDOWS\system32\wdfcoinstaller01005.dll
2008-10-10 18:23:59 ----D---- C:\Program Files\Microsoft IntelliType Pro
2008-10-10 16:32:11 ----N---- C:\WINDOWS\system32\kxjoayqn.dll
2008-10-05 06:28:32 ----D---- C:\Program Files\iPod
2008-10-05 06:28:31 ----D---- C:\Documents and Settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-10-05 05:58:31 ----D---- C:\Program Files\QuickTime
2008-10-05 05:02:41 ----A---- C:\WINDOWS\system32\efb36530-.txt
2008-10-05 03:14:04 ----A---- C:\WINDOWS\windmcroc1.ini
2008-10-05 03:14:04 ----A---- C:\WINDOWS\crocpix1.ini
2008-10-05 01:53:15 ----D---- C:\Documents and Settings\Tanguy\Application Data\TechSmith
2008-10-05 00:38:10 ----D---- C:\Documents and Settings\All Users\Application Data\TechSmith
2008-10-05 00:37:58 ----D---- C:\Program Files\TechSmith
2008-10-04 18:45:56 ----D---- C:\Program Files\AMD
2008-10-03 01:46:24 ----A---- C:\WINDOWS\system32\frapsvid.dll
2008-09-23 07:38:19 ----D---- C:\Documents and Settings\All Users\Application Data\Video Converter Studio
2008-09-23 07:37:56 ----D---- C:\Documents and Settings\All Users\Application Data\Tiger Install
2008-09-23 07:37:48 ----A---- C:\WINDOWS\system32\vorbisenc.dll
2008-09-23 07:37:48 ----A---- C:\WINDOWS\system32\vorbis.dll
2008-09-23 07:37:47 ----A---- C:\WINDOWS\system32\StreamIO.dll
2008-09-23 07:37:31 ----A---- C:\WINDOWS\system32\OggDS.dll
2008-09-23 07:37:31 ----A---- C:\WINDOWS\system32\ogg.dll
2008-09-23 07:37:30 ----A---- C:\WINDOWS\system32\MP4FileLib.dll
2008-09-23 07:37:30 ----A---- C:\WINDOWS\system32\mkx.dll
2008-09-23 07:37:30 ----A---- C:\WINDOWS\system32\dllzAAC.dll
2008-09-23 07:37:29 ----A---- C:\WINDOWS\system32\cook.dll
2008-09-23 07:37:29 ----A---- C:\WINDOWS\system32\bass_flac.dll
2008-09-23 07:37:28 ----A---- C:\WINDOWS\system32\bass.dll
2008-09-23 07:37:28 ----A---- C:\WINDOWS\system32\AudioCodec.dll
2008-09-23 07:37:28 ----A---- C:\WINDOWS\system32\4codeDecoder.dll
2008-09-23 07:37:25 ----D---- C:\Program Files\Apowersoft

======List of files/folders modified in the last 1 months======

2008-10-14 19:06:12 ----D---- C:\Program Files\FileZilla Client
2008-10-14 19:05:50 ----D---- C:\Documents and Settings\Tanguy\Application Data\FileZilla
2008-10-14 19:02:10 ----D---- C:\Program Files\Mozilla Firefox
2008-10-14 18:35:41 ----HD---- C:\WINDOWS\inf
2008-10-14 18:35:40 ----D---- C:\WINDOWS\system32\CatRoot
2008-10-14 18:35:40 ----D---- C:\WINDOWS\system32
2008-10-14 18:35:40 ----D---- C:\WINDOWS
2008-10-14 18:14:36 ----HD---- C:\Program Files\InstallShield Installation Information
2008-10-14 18:14:29 ----SHD---- C:\WINDOWS\Installer
2008-10-14 18:14:29 ----SHD---- C:\Config.Msi
2008-10-14 18:14:24 ----D---- C:\Program Files
2008-10-14 18:12:12 ----D---- C:\Program Files\eMule
2008-10-14 17:04:53 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2008-10-14 16:18:37 ----D---- C:\WINDOWS\system32\CatRoot2
2008-10-14 16:15:06 ----N---- C:\WINDOWS\SchedLgU.Txt
2008-10-14 16:11:44 ----HD---- C:\WINDOWS\system32\drivers
2008-10-14 16:11:13 ----D---- C:\WINDOWS\repair
2008-10-14 16:06:19 ----A---- C:\WINDOWS\system.ini
2008-10-14 16:04:07 ----D---- C:\WINDOWS\system32\config
2008-10-14 16:01:48 ----D---- C:\WINDOWS\AppPatch
2008-10-14 16:01:48 ----D---- C:\Program Files\Fichiers communs
2008-10-14 15:53:04 ----RASH---- C:\boot.ini
2008-10-14 15:45:10 ----D---- C:\WINDOWS\system32\Filt
2008-10-14 15:33:26 ----SHD---- C:\System Volume Information
2008-10-14 15:33:26 ----D---- C:\WINDOWS\system32\Restore
2008-10-14 15:32:18 ----D---- C:\WINDOWS\Prefetch
2008-10-14 13:23:19 ----A---- C:\WINDOWS\NeroDigital.ini
2008-10-14 06:36:28 ----D---- C:\XG760N
2008-10-14 06:36:27 ----SD---- C:\WINDOWS\Tasks
2008-10-14 06:36:27 ----RD---- C:\WINDOWS\Web
2008-10-14 06:36:27 ----D---- C:\WINDOWS\WBEM
2008-10-14 06:36:27 ----D---- C:\WINDOWS\twain_32
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\XPSViewer
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\wbem
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\usmt
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\URTTEMP
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\Setup
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\RTCOM
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\ras
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\oodag
2008-10-14 06:36:26 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\oobe
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\npp
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\MsDtc
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\MAGIX
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\icsxml
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\ias
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\fr-fr
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\en-us
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\Com
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\AGEIA
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\1036
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\1033
2008-10-14 06:36:25 ----D---- C:\WINDOWS\system
2008-10-14 06:36:25 ----D---- C:\WINDOWS\srchasst
2008-10-14 06:36:25 ----D---- C:\WINDOWS\SoftwareDistribution
2008-10-14 06:36:22 ----D---- C:\WINDOWS\SHELLNEW
2008-10-14 06:36:22 ----D---- C:\WINDOWS\Registration
2008-10-14 06:36:22 ----D---- C:\WINDOWS\PeerNet
2008-10-14 06:36:19 ----RD---- C:\WINDOWS\Offline Web Pages
2008-10-14 06:36:19 ----D---- C:\WINDOWS\network diagnostic
2008-10-14 06:36:19 ----D---- C:\WINDOWS\msagent
2008-10-14 06:36:17 ----D---- C:\WINDOWS\Media
2008-10-14 06:36:16 ----D---- C:\WINDOWS\ime
2008-10-14 06:36:15 ----RSD---- C:\WINDOWS\Fonts
2008-10-14 06:36:15 ----HDC---- C:\WINDOWS\ie7
2008-10-14 06:36:15 ----D---- C:\WINDOWS\Help
2008-10-14 06:36:15 ----D---- C:\WINDOWS\ehome
2008-10-14 06:36:14 ----SHD---- C:\WINDOWS\CSC
2008-10-14 06:36:14 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-10-14 06:36:14 ----D---- C:\WINDOWS\Cursors
2008-10-14 06:36:07 ----RSD---- C:\WINDOWS\assembly
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB950749$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB948881$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB948590$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB946026$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB945553$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB944653$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB943485$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB943460$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB943055$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB942763$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB941693$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB941644$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB941568$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB941202$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB939653$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB938829$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB938828$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB937894$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB937143$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP11$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB936021$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB935840$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB935839$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB935448$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB933729$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB932823-v3$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB932168$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB931784$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB931261$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB930916$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB930178$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB929123$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB928843$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB928255$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB927891$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB927802$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB927779$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB926436$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB926255$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB926239$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB925902$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB925876$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB925720$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB925398_WMP64$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB924667$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB924496$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB924270$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB923980$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB923414$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB923191$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB922819$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB922582$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB921503$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB920872$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB920685$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB920683$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB920670$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB920213$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB919007$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB918439$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB918118$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB917953$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB917344$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB916595$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB914440$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB914389$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB914388$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB913580$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB911927$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB911564$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB911562$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB911280$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB910437$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB908531$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB908519$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB905749$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB905414$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB904942$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB904706$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB902400$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB901214$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB901017$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB900725$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB900485$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB899591$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB899587$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB896428$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB896423$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB896358$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB894391$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB893756$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB891781$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB890859$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB890046$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB888302$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB887472$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB886185$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB885836$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB885835$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB873339$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2008-10-14 06:36:03 ----HD---- C:\Program Files\Zero G Registry
2008-10-14 06:36:03 ----D---- C:\Temp
2008-10-14 06:36:03 ----D---- C:\Program Files\WinZip 8.1 Fr
2008-10-14 06:36:03 ----D---- C:\Program Files\WinRAR
2008-10-14 06:36:03 ----D---- C:\Program Files\Windows NT
2008-10-14 06:36:03 ----D---- C:\Program Files\Windows Media Player
2008-10-14 06:36:02 ----D---- C:\Program Files\Windows Live Toolbar
2008-10-14 06:36:02 ----D---- C:\Program Files\Windows Live Safety Center
2008-10-14 06:36:02 ----D---- C:\Program Files\VirtualDJ
2008-10-14 06:36:02 ----D---- C:\Program Files\VDMSound
2008-10-14 06:36:02 ----D---- C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter
2008-10-14 06:36:01 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-10-14 06:35:37 ----D---- C:\Program Files\PhotoFiltre Studio
2008-10-14 06:35:36 ----D---- C:\Program Files\PhotoFiltre
2008-10-14 06:35:36 ----D---- C:\Program Files\Outlook Express
2008-10-14 06:35:36 ----D---- C:\Program Files\Notepad++
2008-10-14 06:35:34 ----D---- C:\Program Files\Movie Maker
2008-10-14 06:35:34 ----D---- C:\Program Files\Microsoft Virtual PC
2008-10-14 06:35:30 ----D---- C:\Program Files\Messenger
2008-10-14 06:35:26 ----D---- C:\Program Files\LaBoiteACouleurs
2008-10-14 06:35:25 ----D---- C:\Program Files\Internet Explorer
2008-10-14 06:35:24 ----SHDC---- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-10-14 06:35:24 ----D---- C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-10-14 06:35:24 ----D---- C:\Program Files\Fichiers communs\System
2008-10-14 06:35:24 ----D---- C:\Program Files\Fichiers communs\Services
2008-10-14 06:35:22 ----D---- C:\Program Files\Fichiers communs\Macromedia
2008-10-14 06:35:22 ----D---- C:\Program Files\Fichiers communs\DESIGNER
2008-10-14 06:35:18 ----D---- C:\Program Files\EasyPHP 2.0b1
2008-10-14 06:35:18 ----D---- C:\Program Files\Drive Rescue
2008-10-14 06:35:16 ----D---- C:\Program Files\CCleaner
2008-10-14 06:35:15 ----D---- C:\Program Files\Audacity
2008-10-14 06:35:03 ----D---- C:\Program Files\AGEIA Technologies
2008-10-14 06:35:02 ----D---- C:\Program Files\adslTV
2008-10-14 06:34:48 ----D---- C:\Documents and Settings\Tanguy\Application Data\VoipDiscount
2008-10-14 06:34:48 ----D---- C:\Documents and Settings\Tanguy\Application Data\VoipBuster
2008-10-14 06:34:48 ----D---- C:\Documents and Settings\Tanguy\Application Data\vmntoolbar
2008-10-14 06:34:46 ----D---- C:\Documents and Settings\Tanguy\Application Data\Notepad++
2008-10-14 06:34:46 ----D---- C:\Documents and Settings\Tanguy\Application Data\NetAppel
2008-10-14 06:34:45 ----D---- C:\Documents and Settings\Tanguy\Application Data\Mozilla
2008-10-14 06:34:44 ----D---- C:\Documents and Settings\Tanguy\Application Data\LimeWire
2008-10-14 06:34:44 ----D---- C:\Documents and Settings\Tanguy\Application Data\Hamachi
2008-10-14 06:34:44 ----D---- C:\Documents and Settings\Tanguy\Application Data\GetRightToGo
2008-10-14 06:34:44 ----D---- C:\Documents and Settings\Tanguy\Application Data\EoRezo
2008-10-14 06:34:43 ----D---- C:\Documents and Settings\Tanguy\Application Data\dvdcss
2008-10-14 06:34:43 ----D---- C:\Documents and Settings\Tanguy\Application Data\DAEMON Tools
2008-10-14 06:34:43 ----D---- C:\Documents and Settings\Tanguy\Application Data\Corel
2008-10-14 06:34:43 ----D---- C:\Documents and Settings\Tanguy\Application Data\Audacity
2008-10-14 06:34:43 ----D---- C:\Documents and Settings\Tanguy\Application Data\ALLCapture
2008-10-14 06:34:43 ----D---- C:\Documents and Settings\Tanguy\Application Data\Ahead
2008-10-14 06:34:43 ----D---- C:\Documents and Settings\Tanguy\Application Data\AchrafCherti
2008-10-14 06:34:35 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-10-14 06:34:35 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-10-14 06:34:35 ----D---- C:\Documents and Settings\All Users\Application Data\RoboForm
2008-10-14 06:34:35 ----D---- C:\Documents and Settings\All Users\Application Data\PC SOFT
2008-10-14 06:34:35 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-10-14 06:34:32 ----D---- C:\Documents and Settings\All Users\Application Data\FLEXnet
2008-10-12 16:01:03 ----A---- C:\WINDOWS\wininit.ini
2008-10-11 22:21:18 ----D---- C:\WINDOWS\WinSxS
2008-10-11 15:33:00 ----D---- C:\Program Files\Conjugaison
2008-10-10 18:28:08 ----DC---- C:\WINDOWS\system32\DRVSTORE
2008-10-05 06:29:11 ----D---- C:\Program Files\iTunes
2008-10-05 06:25:12 ----D---- C:\Program Files\Fichiers communs\Apple
2008-10-05 05:48:33 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
2008-10-05 04:48:42 ----D---- C:\Program Files\ManyCam 2.3
2008-10-05 03:48:36 ----D---- C:\Program Files\NetMeeting
2008-10-05 03:31:51 ----D---- C:\Program Files\ATI Technologies
2008-10-05 03:20:33 ----D---- C:\Program Files\Bonjour
2008-10-04 23:46:05 ----A---- C:\WINDOWS\BlendSettings.ini
2008-10-04 19:20:59 ----D---- C:\WINDOWS\system32\DirectX
2008-09-29 20:51:17 ----D---- C:\Program Files\Google

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;Pilote de processeur AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43520]
R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848]
R1 klif;Klif; \??\C:\WINDOWS\system32\drivers\klif.sys []
R1 SandBox;SandBox; C:\WINDOWS\system32\DRIVERS\SandBox.sys [2008-07-11 673920]
R1 vmm;Virtual Machine Monitor; \??\C:\WINDOWS\system32\Drivers\vmm.sys []
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2008-05-19 278984]
R2 ithsgt;ithsgt; C:\WINDOWS\system32\DRIVERS\ithsgt.sys [2008-05-07 162432]
R2 lilsgt;lilsgt; C:\WINDOWS\system32\DRIVERS\lilsgt.sys [2008-05-07 12032]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2008-05-19 25416]
R2 litsgt;litsgt; C:\WINDOWS\system32\DRIVERS\litsgt.sys [2007-10-12 137344]
R2 SYMTDI;SYMTDI; \??\C:\WINDOWS\system32\Drivers\SYMTDI.SYS []
R2 tansgt;tansgt; C:\WINDOWS\system32\DRIVERS\tansgt.sys [2007-10-12 12032]
R2 tifsfilter;Acronis True Image FS Filter; C:\WINDOWS\system32\DRIVERS\tifsfilt.sys [2007-09-29 32288]
R3 afw;Agnitum firewall driver; C:\WINDOWS\system32\DRIVERS\afw.sys [2008-06-30 30864]
R3 afwcore;afwcore; C:\WINDOWS\system32\drivers\afwcore.sys [2008-06-30 234640]
R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 ASWFilt;ASWFilt; C:\WINDOWS\system32\Filt\ASWFilt.dll [2008-07-11 33408]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-01-08 1921536]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-04-17 15464]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-11-15 4225920]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys [2004-10-11 22016]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver; C:\WINDOWS\system32\DRIVERS\ManyCam.sys [2008-01-14 21632]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 NuidFltr;NUID filter driver; C:\WINDOWS\system32\DRIVERS\NuidFltr.sys [2007-08-31 18856]
R3 PID_0928;Labtec WebCam(PID_0928); C:\WINDOWS\system32\DRIVERS\LV561AV.SYS [2004-10-11 211712]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:\WINDOWS\system32\DRIVERS\point32.sys [2007-08-21 21760]
R3 SG762_XP;SAGEM 802.11g XG762 1211B Driver; C:\WINDOWS\system32\DRIVERS\WlanBZXP.sys [2006-01-18 402432]
R3 Tetri5;Tetri5 driver; C:\WINDOWS\System32\Drivers\Tetri5.sys [2008-05-14 53088]
R3 Tetris;Tetris driver; C:\WINDOWS\System32\Drivers\Tetris.sys [2008-05-14 48928]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-04 31616]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-04 26624]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-04 57600]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-04 17024]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 VBEngNT;VBEngNT; C:\WINDOWS\system32\DRIVERS\VBEngNT.sys [2008-06-04 1072722]
R3 VBFilt;VBFilt; C:\WINDOWS\system32\Filt\VBFilt.dll [2008-07-11 158816]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\WINDOWS\system32\DRIVERS\VMNetSrv.sys [2007-01-29 59280]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
R3 ZDPSp50;ZDPSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\ZDPSp50.sys [2006-01-18 17664]
S1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys []
S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys []
S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys []
S1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
S1 wceusbsh;Pilote d'hôte USB série pour Windows CE; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2004-08-04 32128]
S3 al2csdy3;al2csdy3; C:\WINDOWS\system32\drivers\al2csdy3.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 DSDrv4;DSDrv4; \??\C:\PROGRA~1\K!TV\Plugins\S_Bt8x8\DSDrv4.sys []
S3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2008-04-21 25280]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2006-08-14 83200]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 SYMREDRV;SYMREDRV; \??\C:\WINDOWS\system32\Drivers\SYMREDRV.SYS []
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 ZDCndis5;ZDCndis5 Protocol Driver; \??\C:\WINDOWS\system32\ZDCndis5.SYS []
S3 ZDPNDIS5;ZDPNDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\ZDPNDIS5.SYS []
S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe [2006-06-29 204800]
R2 acssrv;Agnitum Client Security Service; C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe [2008-07-15 1570136]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-10-01 116040]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2007-01-08 434176]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 O&O Defrag;O&O Defrag; C:\WINDOWS\system32\oodag.exe [2004-05-17 184320]
R2 olMntrService;olMntrService; C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe [2006-07-24 86016]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2008-07-19 66872]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-10-01 536872]
S2 Pi3Web;Pi3Web; c:\Pi3Web\bin\Pi3Srv32.exe []
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-06-30 72704]
S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 AVP;Kaspersky Anti-Virus 6.0; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe [2006-11-08 155751]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; D:\Program Files\MAGIX\Common\Database\bin\fbserver.exe []
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-10-19 138168]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
S3 InstallShield Licensing Service;InstallShield Licensing Service; C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe [2008-07-25 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880]

-----------------EOF-----------------

Logfile of random's system information tool 1.04 (written by random/random)
Run by Tanguy at 2008-10-14 20:39:55
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 13 GB (43%) free of 30 GB
Total RAM: 895 MB (25% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:40:02, on 14/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
D:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\Program Files\ManyCam 2.3\ManyCam.exe
C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe
C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter\WLANUTL.exe
C:\Program Files\WinZip 8.1 Fr\WZQKPICK.EXE
C:\Program Files\TechSmith\SnagIt 8\TSCHelp.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\TechSmith\SnagIt 8\SnagPriv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LVComsX.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Windows Live\Mail\wlmail.exe
D:\Mes documents (Tanguy)\Mozilla Firefox\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Tanguy.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [OutpostMonitor] C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe /tray /noservice
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [RocketDock] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [ManyCam] "C:\Program Files\ManyCam 2.3\ManyCam.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
O4 - Global Startup: SnagIt 8.lnk = C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip 8.1 Fr\WZQKPICK.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: Réglage rapide de Outpost Security Suite Pro - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\Program Files\Agnitum\Outpost Security Suite Pro\ie_bar.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wi [...] 1076962593
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/bina [...] b56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
O23 - Service: Agnitum Client Security Service (acssrv) - Agnitum Ltd. - C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - Unknown owner - D:\Program Files\MAGIX\Common\Database\bin\fbserver.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: olMntrService - Olivetti - C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
O23 - Service: Pi3Web - Unknown owner - c:\Pi3Web\bin\Pi3Srv32.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe

--
End of file - 11342 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00C6482D-C502-44C8-8409-FCE54AD9C208}]
SnagIt Toolbar Loader - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll [2007-05-16 63048]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2008-06-05 308856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll [2007-09-25 501136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2007-10-19 2436160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll [2007-10-23 325048]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2007-10-19 2436160]
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]
{8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - SnagIt - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll [2007-05-16 161352]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"=C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-04-17 196608]
"ISUSScheduler"=C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2008-06-05 185896]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-10-01 289576]
"itype"=C:\Program Files\Microsoft IntelliType Pro\itype.exe [2007-08-31 988584]
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2007-08-31 1037736]
"OutpostMonitor"=C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe [2008-07-15 1207128]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2007-10-18 5724184]
"DAEMON Tools Lite"=D:\Program Files\DAEMON Tools Lite\daemon.exe [2008-04-01 486856]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2008-09-16 1833296]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2008-06-25 1209584]
"RocketDock"=C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe [2007-03-19 630784]
"ManyCam"=C:\Program Files\ManyCam 2.3\ManyCam.exe [2008-08-19 1725736]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
SnagIt 8.lnk - C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe
Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk - C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter\WLANUTL.exe
WinZip Quick Pick.lnk - C:\Program Files\WinZip 8.1 Fr\WZQKPICK.EXE

C:\Documents and Settings\Tanguy\Menu Démarrer\Programmes\Démarrage
RocketDock.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
TransBar.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
UberIcon.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
Y'z Shadow.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2007-01-08 110592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2006-11-01 94314]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-04-10 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
relog_ap

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSEXESVC]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PSEXESVC]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SYMTDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"NoDrives"=
"NoDriveAutoRun"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe:*:Enabled:Kaspersky Anti-Virus"
"C:\Program Files\Fichiers communs\PocketSoft\RTPatch\AutoRTP\artpschd.exe"="C:\Program Files\Fichiers communs\PocketSoft\RTPatch\AutoRTP\artpschd.exe:*:Enabled:artpschd"
"C:\Program Files\adslTV\adsltv.exe"="C:\Program Files\adslTV\adsltv.exe:*:Enabled:adsltv"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\NetMeeting\conf.exe"="C:\Program Files\NetMeeting\conf.exe:*:Enabled:Windows® NetMeeting®"
"C:\Program Files\Java\jre1.6.0_03\bin\javaw.exe"="C:\Program Files\Java\jre1.6.0_03\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\Documents and Settings\Tanguy\Application Data\Weezo\MySQL\bin\mysqld.exe"="C:\Documents and Settings\Tanguy\Application Data\Weezo\MySQL\bin\mysqld.exe:*:Enabled:mysqld"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:EnablednkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:EnablednkBstrB"
"D:\Program Files\Sierra Entertainment\Empire Earth III\EE3.exe"="D:\Program Files\Sierra Entertainment\Empire Earth III\EE3.exe:*:Enabled:Empire Earth III"
"D:\Program Files\Sierra\Empire Earth II\EE2.exe"="D:\Program Files\Sierra\Empire Earth II\EE2.exe:*:Enabled:Empire Earth II"
"D:\Sierra\Empire Earth - The Art of Conquest\EE-AOC.exe"="D:\Sierra\Empire Earth - The Art of Conquest\EE-AOC.exe:*:Enabled:EE-AOC"
"D:\Sierra\Empire Earth\Empire Earth.exe"="D:\Sierra\Empire Earth\Empire Earth.exe:*:Enabled:Empire Earth"
"D:\Program Files\Microsoft Games\Zoo Tycoon 2\zt.exe"="D:\Program Files\Microsoft Games\Zoo Tycoon 2\zt.exe:*:Enabled:Zoo Tycoon 2 Executable"
"C:\Program Files\DsNET Corp\aTube Catcher 1.0\smh.exe"="C:\Program Files\DsNET Corp\aTube Catcher 1.0\smh.exe:*:Enabled:Smart Media Hunter 0.7"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{96b8e3ae-cd03-11dc-9f3f-0001388d0024}]
shell\AutoRun\command - K:\start.exe
shell\iledefrance\command - K:\start.exe


======List of files/folders created in the last 1 months======

2008-10-14 18:35:11 ----D---- C:\WINDOWS\LastGood
2008-10-14 18:14:24 ----D---- C:\Program Files\PowerQuest
2008-10-14 18:05:44 ----D---- C:\rsit
2008-10-14 16:13:21 ----SHD---- C:\RECYCLER
2008-10-14 16:11:42 ----D---- C:\WINDOWS\temp
2008-10-14 16:11:40 ----A---- C:\ComboFix.txt
2008-10-14 15:58:59 ----A---- C:\WINDOWS\NIRCMD.exe
2008-10-14 15:53:04 ----A---- C:\Boot.bak
2008-10-14 15:52:54 ----D---- C:\cmdcons
2008-10-14 15:51:26 ----A---- C:\WINDOWS\zip.exe
2008-10-14 15:51:26 ----A---- C:\WINDOWS\VFIND.exe
2008-10-14 15:51:26 ----A---- C:\WINDOWS\SWSC.exe
2008-10-14 15:51:26 ----A---- C:\WINDOWS\SWREG.exe
2008-10-14 15:51:26 ----A---- C:\WINDOWS\sed.exe
2008-10-14 15:51:26 ----A---- C:\WINDOWS\grep.exe
2008-10-14 15:51:26 ----A---- C:\WINDOWS\fdsv.exe
2008-10-14 15:33:00 ----D---- C:\WINDOWS\ERDNT
2008-10-14 15:33:00 ----D---- C:\Qoobox
2008-10-12 00:43:51 ----D---- C:\Program Files\AutoIt3
2008-10-11 22:17:38 ----A---- C:\WINDOWS\SCapPro.INI
2008-10-11 21:35:12 ----D---- C:\Documents and Settings\Tanguy\Application Data\ACASystems
2008-10-11 21:35:12 ----D---- C:\Documents and Settings\All Users\Application Data\ACASystems
2008-10-11 14:31:24 ----D---- C:\Program Files\Game Cam V2
2008-10-11 14:05:33 ----D---- C:\Fraps
2008-10-10 21:57:53 ----D---- C:\Program Files\Trend Micro
2008-10-10 18:36:08 ----HDC---- C:\WINDOWS\$NtUninstallWdf01005$
2008-10-10 18:27:17 ----D---- C:\Program Files\Microsoft IntelliPoint
2008-10-10 18:24:40 ----A---- C:\WINDOWS\system32\wdfcoinstaller01005.dll
2008-10-10 18:23:59 ----D---- C:\Program Files\Microsoft IntelliType Pro
2008-10-05 06:28:32 ----D---- C:\Program Files\iPod
2008-10-05 06:28:31 ----D---- C:\Documents and Settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-10-05 05:58:31 ----D---- C:\Program Files\QuickTime
2008-10-05 05:02:41 ----A---- C:\WINDOWS\system32\efb36530-.txt
2008-10-05 03:14:04 ----A---- C:\WINDOWS\windmcroc1.ini
2008-10-05 03:14:04 ----A---- C:\WINDOWS\crocpix1.ini
2008-10-05 01:53:15 ----D---- C:\Documents and Settings\Tanguy\Application Data\TechSmith
2008-10-05 00:38:10 ----D---- C:\Documents and Settings\All Users\Application Data\TechSmith
2008-10-05 00:37:58 ----D---- C:\Program Files\TechSmith
2008-10-04 18:45:56 ----D---- C:\Program Files\AMD
2008-10-03 01:46:24 ----A---- C:\WINDOWS\system32\frapsvid.dll
2008-09-23 07:38:19 ----D---- C:\Documents and Settings\All Users\Application Data\Video Converter Studio
2008-09-23 07:37:56 ----D---- C:\Documents and Settings\All Users\Application Data\Tiger Install
2008-09-23 07:37:48 ----A---- C:\WINDOWS\system32\vorbisenc.dll
2008-09-23 07:37:48 ----A---- C:\WINDOWS\system32\vorbis.dll
2008-09-23 07:37:47 ----A---- C:\WINDOWS\system32\StreamIO.dll
2008-09-23 07:37:31 ----A---- C:\WINDOWS\system32\OggDS.dll
2008-09-23 07:37:31 ----A---- C:\WINDOWS\system32\ogg.dll
2008-09-23 07:37:30 ----A---- C:\WINDOWS\system32\MP4FileLib.dll
2008-09-23 07:37:30 ----A---- C:\WINDOWS\system32\mkx.dll
2008-09-23 07:37:30 ----A---- C:\WINDOWS\system32\dllzAAC.dll
2008-09-23 07:37:29 ----A---- C:\WINDOWS\system32\cook.dll
2008-09-23 07:37:29 ----A---- C:\WINDOWS\system32\bass_flac.dll
2008-09-23 07:37:28 ----A---- C:\WINDOWS\system32\bass.dll
2008-09-23 07:37:28 ----A---- C:\WINDOWS\system32\AudioCodec.dll
2008-09-23 07:37:28 ----A---- C:\WINDOWS\system32\4codeDecoder.dll
2008-09-23 07:37:25 ----D---- C:\Program Files\Apowersoft

======List of files/folders modified in the last 1 months======

2008-10-14 20:04:47 ----D---- C:\WINDOWS\system32
2008-10-14 19:27:15 ----D---- C:\Program Files\Mozilla Firefox
2008-10-14 19:21:38 ----D---- C:\Documents and Settings\Tanguy\Application Data\FileZilla
2008-10-14 19:06:12 ----D---- C:\Program Files\FileZilla Client
2008-10-14 18:37:10 ----D---- C:\WINDOWS\system32\CatRoot
2008-10-14 18:35:41 ----HD---- C:\WINDOWS\inf
2008-10-14 18:35:40 ----D---- C:\WINDOWS
2008-10-14 18:14:36 ----HD---- C:\Program Files\InstallShield Installation Information
2008-10-14 18:14:29 ----SHD---- C:\WINDOWS\Installer
2008-10-14 18:14:29 ----SHD---- C:\Config.Msi
2008-10-14 18:14:25 ----HD---- C:\WINDOWS\system32\drivers
2008-10-14 18:14:24 ----D---- C:\Program Files
2008-10-14 18:12:12 ----D---- C:\Program Files\eMule
2008-10-14 17:04:53 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2008-10-14 16:18:37 ----D---- C:\WINDOWS\system32\CatRoot2
2008-10-14 16:15:06 ----N---- C:\WINDOWS\SchedLgU.Txt
2008-10-14 16:11:13 ----D---- C:\WINDOWS\repair
2008-10-14 16:06:19 ----A---- C:\WINDOWS\system.ini
2008-10-14 16:04:07 ----D---- C:\WINDOWS\system32\config
2008-10-14 16:01:48 ----D---- C:\WINDOWS\AppPatch
2008-10-14 16:01:48 ----D---- C:\Program Files\Fichiers communs
2008-10-14 15:53:04 ----RASH---- C:\boot.ini
2008-10-14 15:45:10 ----D---- C:\WINDOWS\system32\Filt
2008-10-14 15:33:26 ----SHD---- C:\System Volume Information
2008-10-14 15:33:26 ----D---- C:\WINDOWS\system32\Restore
2008-10-14 15:32:18 ----D---- C:\WINDOWS\Prefetch
2008-10-14 13:23:19 ----A---- C:\WINDOWS\NeroDigital.ini
2008-10-14 06:36:28 ----D---- C:\XG760N
2008-10-14 06:36:27 ----SD---- C:\WINDOWS\Tasks
2008-10-14 06:36:27 ----RD---- C:\WINDOWS\Web
2008-10-14 06:36:27 ----D---- C:\WINDOWS\WBEM
2008-10-14 06:36:27 ----D---- C:\WINDOWS\twain_32
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\XPSViewer
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\wbem
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\usmt
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\URTTEMP
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\Setup
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\RTCOM
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\ras
2008-10-14 06:36:27 ----D---- C:\WINDOWS\system32\oodag
2008-10-14 06:36:26 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\oobe
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\npp
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\MsDtc
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\MAGIX
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\icsxml
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\ias
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\fr-fr
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\en-us
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\Com
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\AGEIA
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\1036
2008-10-14 06:36:26 ----D---- C:\WINDOWS\system32\1033
2008-10-14 06:36:25 ----D---- C:\WINDOWS\system
2008-10-14 06:36:25 ----D---- C:\WINDOWS\srchasst
2008-10-14 06:36:25 ----D---- C:\WINDOWS\SoftwareDistribution
2008-10-14 06:36:22 ----D---- C:\WINDOWS\SHELLNEW
2008-10-14 06:36:22 ----D---- C:\WINDOWS\Registration
2008-10-14 06:36:22 ----D---- C:\WINDOWS\PeerNet
2008-10-14 06:36:19 ----RD---- C:\WINDOWS\Offline Web Pages
2008-10-14 06:36:19 ----D---- C:\WINDOWS\network diagnostic
2008-10-14 06:36:19 ----D---- C:\WINDOWS\msagent
2008-10-14 06:36:17 ----D---- C:\WINDOWS\Media
2008-10-14 06:36:16 ----D---- C:\WINDOWS\ime
2008-10-14 06:36:15 ----RSD---- C:\WINDOWS\Fonts
2008-10-14 06:36:15 ----HDC---- C:\WINDOWS\ie7
2008-10-14 06:36:15 ----D---- C:\WINDOWS\Help
2008-10-14 06:36:15 ----D---- C:\WINDOWS\ehome
2008-10-14 06:36:14 ----SHD---- C:\WINDOWS\CSC
2008-10-14 06:36:14 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-10-14 06:36:14 ----D---- C:\WINDOWS\Cursors
2008-10-14 06:36:07 ----RSD---- C:\WINDOWS\assembly
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB950749$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB948881$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB948590$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB946026$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB945553$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB944653$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB943485$
2008-10-14 06:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB943460$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB943055$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB942763$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB941693$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB941644$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB941568$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB941202$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB939653$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB938829$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB938828$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB937894$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB937143$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP11$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB936021$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB935840$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB935839$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB935448$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB933729$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB932823-v3$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB932168$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB931784$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB931261$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB930916$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB930178$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB929123$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB928843$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB928255$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB927891$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB927802$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB927779$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB926436$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB926255$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB926239$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB925902$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB925876$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB925720$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB925398_WMP64$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB924667$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB924496$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB924270$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB923980$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB923414$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB923191$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB922819$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB922582$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB921503$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB920872$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB920685$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB920683$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB920670$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB920213$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB919007$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB918439$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB918118$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB917953$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB917344$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB916595$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB914440$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB914389$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB914388$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB913580$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB911927$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB911564$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB911562$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB911280$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB910437$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB908531$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB908519$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB905749$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB905414$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB904942$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB904706$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB902400$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB901214$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB901017$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB900725$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB900485$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB899591$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB899587$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB896428$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB896423$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB896358$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB894391$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB893756$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB891781$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB890859$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB890046$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB888302$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB887472$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB886185$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB885836$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB885835$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$NtUninstallKB873339$
2008-10-14 06:36:06 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2008-10-14 06:36:03 ----HD---- C:\Program Files\Zero G Registry
2008-10-14 06:36:03 ----D---- C:\Temp
2008-10-14 06:36:03 ----D---- C:\Program Files\WinZip 8.1 Fr
2008-10-14 06:36:03 ----D---- C:\Program Files\WinRAR
2008-10-14 06:36:03 ----D---- C:\Program Files\Windows NT
2008-10-14 06:36:03 ----D---- C:\Program Files\Windows Media Player
2008-10-14 06:36:02 ----D---- C:\Program Files\Windows Live Toolbar
2008-10-14 06:36:02 ----D---- C:\Program Files\Windows Live Safety Center
2008-10-14 06:36:02 ----D---- C:\Program Files\VirtualDJ
2008-10-14 06:36:02 ----D---- C:\Program Files\VDMSound
2008-10-14 06:36:02 ----D---- C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter
2008-10-14 06:36:01 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-10-14 06:35:37 ----D---- C:\Program Files\PhotoFiltre Studio
2008-10-14 06:35:36 ----D---- C:\Program Files\PhotoFiltre
2008-10-14 06:35:36 ----D---- C:\Program Files\Outlook Express
2008-10-14 06:35:36 ----D---- C:\Program Files\Notepad++
2008-10-14 06:35:34 ----D---- C:\Program Files\Movie Maker
2008-10-14 06:35:34 ----D---- C:\Program Files\Microsoft Virtual PC
2008-10-14 06:35:30 ----D---- C:\Program Files\Messenger
2008-10-14 06:35:26 ----D---- C:\Program Files\LaBoiteACouleurs
2008-10-14 06:35:25 ----D---- C:\Program Files\Internet Explorer
2008-10-14 06:35:24 ----SHDC---- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-10-14 06:35:24 ----D---- C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-10-14 06:35:24 ----D---- C:\Program Files\Fichiers communs\System
2008-10-14 06:35:24 ----D---- C:\Program Files\Fichiers communs\Services
2008-10-14 06:35:22 ----D---- C:\Program Files\Fichiers communs\Macromedia
2008-10-14 06:35:22 ----D---- C:\Program Files\Fichiers communs\DESIGNER
2008-10-14 06:35:18 ----D---- C:\Program Files\EasyPHP 2.0b1
2008-10-14 06:35:18 ----D---- C:\Program Files\Drive Rescue
2008-10-14 06:35:16 ----D---- C:\Program Files\CCleaner
2008-10-14 06:35:15 ----D---- C:\Program Files\Audacity
2008-10-14 06:35:03 ----D---- C:\Program Files\AGEIA Technologies
2008-10-14 06:35:02 ----D---- C:\Program Files\adslTV
2008-10-14 06:34:48 ----D---- C:\Documents and Settings\Tanguy\Application Data\VoipDiscount
2008-10-14 06:34:48 ----D---- C:\Documents and Settings\Tanguy\Application Data\VoipBuster
2008-10-14 06:34:48 ----D---- C:\Documents and Settings\Tanguy\Application Data\vmntoolbar
2008-10-14 06:34:46 ----D---- C:\Documents and Settings\Tanguy\Application Data\Notepad++
2008-10-14 06:34:46 ----D---- C:\Documents and Settings\Tanguy\Application Data\NetAppel
2008-10-14 06:34:45 ----D---- C:\Documents and Settings\Tanguy\Application Data\Mozilla
2008-10-14 06:34:44 ----D---- C:\Documents and Settings\Tanguy\Application Data\LimeWire
2008-10-14 06:34:44 ----D---- C:\Documents and Settings\Tanguy\Application Data\Hamachi
2008-10-14 06:34:44 ----D---- C:\Documents and Settings\Tanguy\Application Data\GetRightToGo
2008-10-14 06:34:44 ----D---- C:\Documents and Settings\Tanguy\Application Data\EoRezo
2008-10-14 06:34:43 ----D---- C:\Documents and Settings\Tanguy\Application Data\dvdcss
2008-10-14 06:34:43 ----D---- C:\Documents and Settings\Tanguy\Application Data\DAEMON Tools
2008-10-14 06:34:43 ----D---- C:\Documents and Settings\Tanguy\Application Data\Corel
2008-10-14 06:34:43 ----D---- C:\Documents and Settings\Tanguy\Application Data\Audacity
2008-10-14 06:34:43 ----D---- C:\Documents and Settings\Tanguy\Application Data\ALLCapture
2008-10-14 06:34:43 ----D---- C:\Documents and Settings\Tanguy\Application Data\Ahead
2008-10-14 06:34:43 ----D---- C:\Documents and Settings\Tanguy\Application Data\AchrafCherti
2008-10-14 06:34:35 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-10-14 06:34:35 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-10-14 06:34:35 ----D---- C:\Documents and Settings\All Users\Application Data\RoboForm
2008-10-14 06:34:35 ----D---- C:\Documents and Settings\All Users\Application Data\PC SOFT
2008-10-14 06:34:35 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-10-14 06:34:32 ----D---- C:\Documents and Settings\All Users\Application Data\FLEXnet
2008-10-12 16:01:03 ----A---- C:\WINDOWS\wininit.ini
2008-10-11 22:21:18 ----D---- C:\WINDOWS\WinSxS
2008-10-11 15:33:00 ----D---- C:\Program Files\Conjugaison
2008-10-10 18:28:08 ----DC---- C:\WINDOWS\system32\DRVSTORE
2008-10-05 06:29:11 ----D---- C:\Program Files\iTunes
2008-10-05 06:25:12 ----D---- C:\Program Files\Fichiers communs\Apple
2008-10-05 05:48:33 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
2008-10-05 04:48:42 ----D---- C:\Program Files\ManyCam 2.3
2008-10-05 03:48:36 ----D---- C:\Program Files\NetMeeting
2008-10-05 03:31:51 ----D---- C:\Program Files\ATI Technologies
2008-10-05 03:20:33 ----D---- C:\Program Files\Bonjour
2008-10-04 23:46:05 ----A---- C:\WINDOWS\BlendSettings.ini
2008-10-04 19:20:59 ----D---- C:\WINDOWS\system32\DirectX
2008-09-29 20:51:17 ----D---- C:\Program Files\Google

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;Pilote de processeur AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43520]
R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848]
R1 klif;Klif; \??\C:\WINDOWS\system32\drivers\klif.sys []
R1 SandBox;SandBox; C:\WINDOWS\system32\DRIVERS\SandBox.sys [2008-07-11 673920]
R1 vmm;Virtual Machine Monitor; \??\C:\WINDOWS\system32\Drivers\vmm.sys []
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2008-05-19 278984]
R2 ithsgt;ithsgt; C:\WINDOWS\system32\DRIVERS\ithsgt.sys [2008-05-07 162432]
R2 lilsgt;lilsgt; C:\WINDOWS\system32\DRIVERS\lilsgt.sys [2008-05-07 12032]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2008-05-19 25416]
R2 litsgt;litsgt; C:\WINDOWS\system32\DRIVERS\litsgt.sys [2007-10-12 137344]
R2 SYMTDI;SYMTDI; \??\C:\WINDOWS\system32\Drivers\SYMTDI.SYS []
R2 tansgt;tansgt; C:\WINDOWS\system32\DRIVERS\tansgt.sys [2007-10-12 12032]
R2 tifsfilter;Acronis True Image FS Filter; C:\WINDOWS\system32\DRIVERS\tifsfilt.sys [2007-09-29 32288]
R3 afw;Agnitum firewall driver; C:\WINDOWS\system32\DRIVERS\afw.sys [2008-06-30 30864]
R3 afwcore;afwcore; C:\WINDOWS\system32\drivers\afwcore.sys [2008-06-30 234640]
R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 ASWFilt;ASWFilt; C:\WINDOWS\system32\Filt\ASWFilt.dll [2008-07-11 33408]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-01-08 1921536]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-04-17 15464]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-11-15 4225920]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys [2004-10-11 22016]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver; C:\WINDOWS\system32\DRIVERS\ManyCam.sys [2008-01-14 21632]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 NuidFltr;NUID filter driver; C:\WINDOWS\system32\DRIVERS\NuidFltr.sys [2007-08-31 18856]
R3 PID_0928;Labtec WebCam(PID_0928); C:\WINDOWS\system32\DRIVERS\LV561AV.SYS [2004-10-11 211712]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:\WINDOWS\system32\DRIVERS\point32.sys [2007-08-21 21760]
R3 SG762_XP;SAGEM 802.11g XG762 1211B Driver; C:\WINDOWS\system32\DRIVERS\WlanBZXP.sys [2006-01-18 402432]
R3 Tetri5;Tetri5 driver; C:\WINDOWS\System32\Drivers\Tetri5.sys [2008-05-14 53088]
R3 Tetris;Tetris driver; C:\WINDOWS\System32\Drivers\Tetris.sys [2008-05-14 48928]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-04 31616]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-04 26624]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-04 57600]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-04 17024]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 VBEngNT;VBEngNT; C:\WINDOWS\system32\DRIVERS\VBEngNT.sys [2008-06-04 1072722]
R3 VBFilt;VBFilt; C:\WINDOWS\system32\Filt\VBFilt.dll [2008-07-11 158816]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\WINDOWS\system32\DRIVERS\VMNetSrv.sys [2007-01-29 59280]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
R3 ZDPSp50;ZDPSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\ZDPSp50.sys [2006-01-18 17664]
S1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys []
S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys []
S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys []
S1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
S1 wceusbsh;Pilote d'hôte USB série pour Windows CE; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2004-08-04 32128]
S3 al2csdy3;al2csdy3; C:\WINDOWS\system32\drivers\al2csdy3.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 DSDrv4;DSDrv4; \??\C:\PROGRA~1\K!TV\Plugins\S_Bt8x8\DSDrv4.sys []
S3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2008-04-21 25280]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2006-08-14 83200]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 SYMREDRV;SYMREDRV; \??\C:\WINDOWS\system32\Drivers\SYMREDRV.SYS []
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 ZDCndis5;ZDCndis5 Protocol Driver; \??\C:\WINDOWS\system32\ZDCndis5.SYS []
S3 ZDPNDIS5;ZDPNDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\ZDPNDIS5.SYS []
S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe [2006-06-29 204800]
R2 acssrv;Agnitum Client Security Service; C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe [2008-07-15 1570136]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-10-01 116040]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2007-01-08 434176]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 O&O Defrag;O&O Defrag; C:\WINDOWS\system32\oodag.exe [2004-05-17 184320]
R2 olMntrService;olMntrService; C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe [2006-07-24 86016]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2008-07-19 66872]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-10-01 536872]
S2 Pi3Web;Pi3Web; c:\Pi3Web\bin\Pi3Srv32.exe []
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-06-30 72704]
S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 AVP;Kaspersky Anti-Virus 6.0; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe [2006-11-08 155751]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; D:\Program Files\MAGIX\Common\Database\bin\fbserver.exe []
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-10-19 138168]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
S3 InstallShield Licensing Service;InstallShield Licensing Service; C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe [2008-07-25 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880]

-----------------EOF-----------------

KASPERSKY ON-LINE SCANNER REPORT
Wednesday, October 15, 2008 6:52:58 AM
Système d'exploitation : Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version : 5.0.84.2
Dernière mise à jour de la base antivirus Kaspersky : 14/10/2008
Enregistrements dans la base antivirus Kaspersky : 1172638
Paramètres d'analyse
Analyser avec la base antivirus suivante standard
Analyser les archives vrai
Analyser les bases de messagerie vrai
Cible de l'analyse Poste de travail
A:\
C:\
D:\
E:\
F:\
G:\
H:\
I:\
J:\
L:\
M:\
N:\
Statistiques de l'analyse
Total d'objets analysés 193722
Nombre de virus trouvés 3
Nombre d'objets infectés 16 / 0
Nombre d'objets suspects 0
Durée de l'analyse 03:54:02

Nom de l'objet infecté Nom du virus Dernière action
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\3af44de502a5b82af8e5a7cbda0493e4_e4ddc78e-d7d9-4eb3-aa6b-f8fdb13cebb8 L'objet est verrouillé ignoré
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\694a47faad2f8f963a1b80c477bd32d7_e4ddc78e-d7d9-4eb3-aa6b-f8fdb13cebb8 L'objet est verrouillé ignoré
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\78f34929ebc2228ed85d24d97d3472de_e4ddc78e-d7d9-4eb3-aa6b-f8fdb13cebb8 L'objet est verrouillé ignoré
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\cert8.db L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\content-prefs.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\cookies.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\downloads.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\formhistory.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\key3.db L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\parent.lock L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\permissions.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\places.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\places.sqlite-journal L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\search.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\Application Data\Microsoft\Windows Live Contacts\tanguy91630@hotmail.fr\real\members.stg L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\Application Data\Microsoft\Windows Live Contacts\tanguy91630@hotmail.fr\shadow\members.stg L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\Cache\_CACHE_001_ L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\Cache\_CACHE_002_ L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\Cache\_CACHE_003_ L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\Cache\_CACHE_MAP_ L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\Application Data\Mozilla\Firefox\Profiles\4jvf9uk2.default\urlclassifier3.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\temp\etilqs_T1zYV4obj5qBre6G2RqB L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\temp\~DFB8A4.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\temp\~DFB8B1.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\temp\~DFD4E3.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\temp\~DFD4F7.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\Tanguy\NtUser.dat.LOG L'objet est verrouillé ignoré
C:\Qoobox\Quarantine\C\WINDOWS\system32\winhoq32.dll.vir Infecté : Trojan-Downloader.Win32.FraudLoad.vcia ignoré
C:\Qoobox\Quarantine\C\WINDOWS\system32\winmbj32.dll.vir Infecté : Trojan-Downloader.Win32.FraudLoad.vcia ignoré
C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
C:\System Volume Information\_restore{F4EBDF6A-EA4B-404E-8E46-4F46FE5196A2}\RP3\A0000105.dll Infecté : Trojan-Downloader.Win32.FraudLoad.vcia ignoré
C:\System Volume Information\_restore{F4EBDF6A-EA4B-404E-8E46-4F46FE5196A2}\RP3\A0000110.dll Infecté : Trojan-Downloader.Win32.FraudLoad.vcia ignoré
C:\System Volume Information\_restore{F4EBDF6A-EA4B-404E-8E46-4F46FE5196A2}\RP4\A0000257.exe Infecté : Trojan.Win32.Obfuscated.gx ignoré
C:\System Volume Information\_restore{F4EBDF6A-EA4B-404E-8E46-4F46FE5196A2}\RP5\A0000291.exe Infecté : Trojan.Win32.Obfuscated.gx ignoré
C:\System Volume Information\_restore{F4EBDF6A-EA4B-404E-8E46-4F46FE5196A2}\RP5\A0000292.exe Infecté : Trojan.Win32.Obfuscated.gx ignoré
C:\System Volume Information\_restore{F4EBDF6A-EA4B-404E-8E46-4F46FE5196A2}\RP5\change.log L'objet est verrouillé ignoré
C:\WINDOWS\CSC\00000001 L'objet est verrouillé ignoré
C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré
C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré
C:\WINDOWS\system32\CatRoot2\edb.log L'objet est verrouillé ignoré
C:\WINDOWS\system32\CatRoot2\tmp.edb L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\ACEEvent.evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\fsdb.sdb L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\Internet.evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\ODiag.evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\OSession.evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\drivers\fidbox.dat L'objet est verrouillé ignoré
C:\WINDOWS\system32\drivers\fidbox.idx L'objet est verrouillé ignoré
C:\WINDOWS\system32\drivers\fidbox2.dat L'objet est verrouillé ignoré
C:\WINDOWS\system32\drivers\fidbox2.idx L'objet est verrouillé ignoré
C:\WINDOWS\system32\drivers\sptd.sys L'objet est verrouillé ignoré
C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré
C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré
C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré
C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré
D:\Mes documents (Tanguy)\Mes Historiques de Conversation\octobre 2008\Historique des Évènements.xml L'objet est verrouillé ignoré
D:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
D:\System Volume Information\_restore{F4EBDF6A-EA4B-404E-8E46-4F46FE5196A2}\RP3\A0000106.inf Infecté : Worm.Win32.AutoRun.onp ignoré
D:\System Volume Information\_restore{F4EBDF6A-EA4B-404E-8E46-4F46FE5196A2}\RP5\A0000268.exe Infecté : Trojan.Win32.Obfuscated.gx ignoré
D:\System Volume Information\_restore{F4EBDF6A-EA4B-404E-8E46-4F46FE5196A2}\RP5\change.log L'objet est verrouillé ignoré
D:\_OTMoveIt\MovedFiles\10142008_182312\Documents and Settings\All Users\Application Data\qzoturmb\azinozyd.exe Infecté : Trojan.Win32.Obfuscated.gx ignoré
D:\_OTMoveIt\MovedFiles\10142008_182312\WINDOWS\system32\byjudwji.exe Infecté : Trojan.Win32.Obfuscated.gx ignoré
D:\_OTMoveIt\MovedFiles\10142008_182312\WINDOWS\system32\gbijidyl.exe Infecté : Trojan.Win32.Obfuscated.gx ignoré
D:\_OTMoveIt\MovedFiles\10142008_182908\Documents and Settings\All Users\Application Data\qzoturmb\azinozyd.exe Infecté : Trojan.Win32.Obfuscated.gx ignoré
D:\_OTMoveIt\MovedFiles\10142008_182908\WINDOWS\system32\byjudwji.exe Infecté : Trojan.Win32.Obfuscated.gx ignoré
D:\_OTMoveIt\MovedFiles\10142008_190227\Documents and Settings\All Users\Application Data\qzoturmb\azinozyd.exe Infecté : Trojan.Win32.Obfuscated.gx ignoré
D:\_OTMoveIt\MovedFiles\10142008_190227\WINDOWS\system32\byjudwji.exe Infecté : Trojan.Win32.Obfuscated.gx ignoré
Analyse terminée.