Se connecter avec
S'enregistrer | Connectez-vous

Cheval de troie

Dernière réponse : dans Sécurité

bonjour!! je viens chercher de l'aide!! en effet depuis hier mon antivirus(avira antivir) détecte ceci:
Dans le fichier 'C:\WINDOWS\file.bat'
un virus ou un programme indésirable 'TR/Proxy.Small.VO.1' [trojan] a été détecté.

je fais donc l'action supprimer mais à chaque fois que je redémarre mon ordi il le retrouve
je suis une bille en informatique, est ce que quelqu'un peut m'aiderà m'en débarrasser une bone fois pour toute? merci!

Autres pages sur : cheval troie

Lassé par la pub ? Créez un compte

Bonjour,

Télécharge Random's System Information Tool (RSIT) (de random/random) et sauvegarde-le sur le Bureau.

  • Double-clique sur RSIT.exe afin de lancer RSIT.
  • Clique Continue  à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt  (qui sera affiché)
    ainsi que de info.txt  (qui sera réduit dans la Barre des Tâches)
  • NB : Les rapports sont sauvegardés dans le dossier C:\rsit  
  • Veille bien à me poster l'intégralité des rapports, vérifie qu'ils soient complets une fois que tu les as postés.

    Microsoft Windows XP Professionnel Service Pack 2
    System drive C: has 231 GB (97%) free of 238 GB
    Total RAM: 2047 MB (74% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 22:26:06, on 12/04/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
    C:\WINDOWS\services.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Documents and Settings\Myriam\Bureau\RSIT.exe
    C:\Program Files\trend micro\Myriam.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/search?q=%s
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
    O4 - HKLM\..\Run: [services] C:\WINDOWS\services.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_02] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\msagent" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_03] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Help\Tours" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_04] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_05] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_06] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_07] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'SERVICE RÉSEAU')
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

    --
    End of file - 4695 bytes

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-01-12 63128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-03-27 13684736]
    "nwiz"=nwiz.exe /install []
    "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-03-27 86016]
    "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-03-02 17530368]
    "avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]
    "services"=C:\WINDOWS\services.exe [2009-04-11 44544]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
    C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
    C:\WINDOWS\system32\WgaLogon.dll [2001-10-26 3584]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
    "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, digiwet.dll

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=1
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "SynchronousMachineGroupPolicy"=0
    "SynchronousUserGroupPolicy"=0

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=219
    "NoStrCmpLogical"=1
    "NoResolveTrack"=0
    "NoResolveSearch"=0
    "NoRun"=0
    "NoFind"=0
    "NoSMMyPictures"=0
    "NoStartMenuMFUprogramsList"=0
    "NoUserNameInStartMenu"=0
    "NoStartMenuMorePrograms"=0
    "MaxRecentDocs"=15
    "NoInstrumentation"=0
    "MemCheckBoxInRunDlg"=1
    "NoSMBalloonTip"=0
    "DisallowCpl"=1

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=
    "ForceClassicControlPanel"=
    "NoSimpleStartMenu"=
    "HonorAutoRunSetting"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

    ======List of files/folders created in the last 1 months======

    2009-04-12 22:26:00 ----D---- C:\rsit
    2009-04-12 22:26:00 ----D---- C:\Program Files\trend micro
    2009-04-11 15:35:06 ----A---- C:\WINDOWS\services.exe
    2009-04-11 15:34:40 ----A---- C:\WINDOWS\system32\digiwet.dll
    2009-04-10 23:04:37 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
    2009-04-10 23:04:36 ----D---- C:\WINDOWS\system32\DirectX
    2009-04-10 23:04:34 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
    2009-04-10 23:04:20 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
    2009-04-09 21:12:25 ----D---- C:\Documents and Settings\Myriam\Application Data\AdobeUM
    2009-04-07 16:37:47 ----D---- C:\Documents and Settings\Myriam\Application Data\vlc
    2009-04-07 13:42:27 ----D---- C:\Documents and Settings\Myriam\Application Data\OpenOffice.org
    2009-04-07 12:44:18 ----A---- C:\WINDOWS\npornap.INI
    2009-04-07 12:40:56 ----D---- C:\Program Files\Orange
    2009-04-05 18:05:59 ----HDC---- C:\WINDOWS\$NtUninstallKB935448$
    2009-04-03 17:42:59 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
    2009-04-03 17:41:15 ----N---- C:\WINDOWS\system32\spmsg.dll
    2009-04-03 17:31:12 ----D---- C:\Program Files\JRE
    2009-04-03 17:31:11 ----D---- C:\Program Files\OpenOffice.org 3
    2009-04-03 17:30:51 ----D---- C:\Documents and Settings\Myriam\Application Data\Sun
    2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\muweb.dll
    2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
    2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\mucltui.dll
    2009-04-03 15:11:52 ----D---- C:\Documents and Settings\Myriam\Application Data\Adobe
    2009-04-03 15:00:28 ----HD---- C:\WINDOWS\system32\GroupPolicy
    2009-04-03 14:58:43 ----D---- C:\Program Files\Avira
    2009-04-03 14:58:43 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
    2009-04-03 14:57:50 ----D---- C:\WINDOWS\pss
    2009-04-03 14:54:21 ----D---- C:\Program Files\SLD Codec Pack
    2009-04-03 14:53:51 ----D---- C:\Program Files\VideoLAN
    2009-04-03 14:53:31 ----D---- C:\Program Files\Microsoft
    2009-04-03 14:53:19 ----D---- C:\Program Files\Windows Live SkyDrive
    2009-04-03 14:53:01 ----D---- C:\Program Files\Windows Live
    2009-04-03 14:52:10 ----D---- C:\Program Files\Winamp
    2009-04-03 14:52:10 ----D---- C:\Documents and Settings\Myriam\Application Data\Winamp
    2009-04-03 14:50:50 ----D---- C:\Program Files\Fichiers communs\Windows Live
    2009-04-03 14:47:35 ----D---- C:\Documents and Settings\All Users\Application Data\2DBoy
    2009-04-03 14:47:21 ----D---- C:\Program Files\WorldOfGoo
    2009-04-03 14:46:55 ----D---- C:\WINDOWS\system32\Lang
    2009-04-03 14:45:57 ----D---- C:\WINDOWS\system32\RTCOM
    2009-04-03 14:45:56 ----A---- C:\WINDOWS\system32\ksuser.dll
    2009-04-03 14:45:34 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$
    2009-04-03 14:45:31 ----A---- C:\WINDOWS\vncutil.exe
    2009-04-03 14:45:31 ----A---- C:\WINDOWS\SOUNDMAN.EXE
    2009-04-03 14:45:31 ----A---- C:\WINDOWS\SkyTel.exe
    2009-04-03 14:45:31 ----A---- C:\WINDOWS\RtlUpd.exe
    2009-04-03 14:45:30 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
    2009-04-03 14:45:30 ----A---- C:\WINDOWS\RTLCPL.EXE
    2009-04-03 14:45:30 ----A---- C:\WINDOWS\RtkAudioService.exe
    2009-04-03 14:45:29 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-04-03 14:45:29 ----D---- C:\Program Files\Realtek
    2009-04-03 14:45:29 ----A---- C:\WINDOWS\RTHDCPL.EXE
    2009-04-03 14:45:29 ----A---- C:\WINDOWS\MicCal.exe
    2009-04-03 14:45:29 ----A---- C:\WINDOWS\ALCWZRD.EXE
    2009-04-03 14:45:29 ----A---- C:\WINDOWS\ALCMTR.EXE
    2009-04-03 14:45:27 ----A---- C:\WINDOWS\RtlExUpd.dll
    2009-04-03 03:22:05 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
    2009-04-03 03:22:02 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
    2009-04-03 03:21:59 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
    2009-04-03 03:21:55 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
    2009-04-03 03:21:50 ----HDC---- C:\WINDOWS\$NtUninstallKB958215$
    2009-04-03 03:21:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
    2009-04-03 03:21:43 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
    2009-04-03 03:21:39 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
    2009-04-03 03:21:35 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
    2009-04-03 03:21:31 ----HDC---- C:\WINDOWS\$NtUninstallKB954156_WM9L$
    2009-04-03 03:21:28 ----HDC---- C:\WINDOWS\$NtUninstallKB960714$
    2009-04-03 03:21:21 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
    2009-04-03 03:21:10 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
    2009-04-03 03:20:52 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
    2009-04-03 03:20:45 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
    2009-04-03 03:20:42 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
    2009-04-03 03:20:39 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
    2009-04-03 03:20:36 ----HDC---- C:\WINDOWS\$NtUninstallKB923689$
    2009-04-03 03:20:28 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
    2009-04-03 03:20:25 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
    2009-04-03 03:20:20 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
    2009-04-03 03:20:17 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
    2009-04-03 03:20:14 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
    2009-04-03 03:20:10 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
    2009-04-03 03:20:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
    2009-04-03 03:20:03 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
    2009-04-03 03:20:00 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
    2009-04-03 03:19:57 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
    2009-04-03 03:19:53 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
    2009-04-03 03:19:50 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
    2009-04-03 03:19:49 ----A---- C:\WINDOWS\system32\wmpns.dll
    2009-04-03 03:19:45 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP10$
    2009-04-03 00:22:22 ----D---- C:\WINDOWS\system32\CatRoot_bak
    2009-04-02 20:56:29 ----D---- C:\Documents and Settings\Myriam\Application Data\Mozilla
    2009-04-02 20:56:26 ----D---- C:\Program Files\Mozilla Firefox
    2009-04-02 19:50:51 ----SHD---- C:\RECYCLER
    2009-04-02 19:47:22 ----D---- C:\WINDOWS\nview
    2009-04-02 19:47:21 ----A---- C:\WINDOWS\system32\nvudisp.exe
    2009-04-02 19:42:21 ----D---- C:\WINDOWS\system32\SoftwareDistribution
    2009-04-02 19:39:24 ----A---- C:\WINDOWS\system32\CapabilityTable.exe
    2009-04-02 19:39:17 ----N---- C:\WINDOWS\system32\nvuide.exe
    2009-04-02 19:39:17 ----D---- C:\WINDOWS\system32\ReinstallBackups
    2009-04-02 19:39:05 ----A---- C:\WINDOWS\system32\nvunrm.exe
    2009-04-02 19:39:04 ----A---- C:\WINDOWS\system32\nvusmb.exe
    2009-04-02 19:38:47 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
    2009-04-02 19:38:35 ----D---- C:\NVIDIA
    2009-04-02 17:06:53 ----A---- C:\XPSP2+_Version.txt
    2009-04-02 17:06:46 ----D---- C:\Documents and Settings\Myriam\Application Data\Identities
    2009-04-02 17:06:44 ----HD---- C:\Program Files\Uninstall Information
    2009-04-02 17:06:31 ----A---- C:\WINDOWS\system32\YourCPLconfig.txt
    2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\javaws.exe
    2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\javaw.exe
    2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\java.exe
    2009-04-02 17:05:36 ----D---- C:\Program Files\Java
    2009-04-02 17:05:35 ----D---- C:\Program Files\Fichiers communs\Java
    2009-04-02 17:05:32 ----D---- C:\Documents and Settings\Myriam\Application Data\Macromedia
    2009-04-02 17:05:28 ----D---- C:\Program Files\Fichiers communs\InstallShield
    2009-04-02 17:04:54 ----D---- C:\Program Files\Fichiers communs\Adobe
    2009-04-02 17:04:53 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-04-02 17:04:15 ----D---- C:\Program Files\Adobe
    2009-04-02 17:04:12 ----D---- C:\Program Files\Messenger
    2009-04-02 17:04:03 ----D---- C:\Program Files\Photo Story 3 for Windows
    2009-04-02 17:03:56 ----HDC---- C:\WINDOWS\$NtUninstallKB917734_WMP10$
    2009-04-02 17:03:47 ----HDC---- C:\WINDOWS\$NtUninstallKB911565$
    2009-04-02 17:03:39 ----HDC---- C:\WINDOWS\$NtUninstallKB902344$
    2009-04-02 17:03:31 ----HDC---- C:\WINDOWS\$NtUninstallKB888656$
    2009-04-02 17:03:24 ----D---- C:\WINDOWS\system32\windows media
    2009-04-02 17:03:22 ----HD---- C:\WINDOWS\msdownld.tmp
    2009-04-02 17:03:21 ----D---- C:\Program Files\Windows Media Components
    2009-04-02 17:03:19 ----D---- C:\Program Files\WMV9_VCM
    2009-04-02 17:02:36 ----D---- C:\Program Files\Microsoft Office
    2009-04-02 17:02:35 ----D---- C:\Program Files\Windows Journal Viewer
    2009-04-02 17:01:33 ----D---- C:\WINDOWS\system32\URTTEMP
    2009-04-02 16:59:42 ----RSD---- C:\WINDOWS\assembly
    2009-04-02 16:59:31 ----D---- C:\WINDOWS\Microsoft.NET
    2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\WgaTray.exe
    2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\WgaLogon.dll
    2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\LegitCheckControl.dll
    2009-04-02 16:58:52 ----A---- C:\WINDOWS\system32\MRT.exe
    2009-04-02 16:58:47 ----HDC---- C:\WINDOWS\$NtUninstallKB917953$
    2009-04-02 16:58:19 ----HDC---- C:\WINDOWS\$NtUninstallKB867282$
    2009-04-02 16:58:07 ----HDC---- C:\WINDOWS\$NtUninstallKB885894$
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\wul.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\VB6STKIT.DLL
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\VB6FR.DLL
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\TweakUi.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\SMPSeesaw.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\shman.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\Sherlock.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\jrview.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\FlushCode.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\faview.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\Extinction.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\autoruns.exe
    2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\YourCPLconfig_Instructions.txt
    2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\YourCPL_ReadMe.txt
    2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\pernille.txt
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\wul_lng.ini
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\shman_lng.ini
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\pernille.ini
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\oeminfo.ini
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\jrview_lng.ini
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\faview_lng.ini
    2009-04-02 16:57:42 ----D---- C:\Program Files\UTILS
    2009-04-02 16:57:42 ----D---- C:\Program Files\JEUX
    2009-04-02 16:57:10 ----ASH---- C:\Documents and Settings\Myriam\Application Data\desktop.ini
    2009-04-02 16:57:09 ----SD---- C:\Documents and Settings\Myriam\Application Data\Microsoft
    2009-04-02 16:56:27 ----D---- C:\WINDOWS\SoftwareDistribution
    2009-04-02 16:56:27 ----D---- C:\WINDOWS\Prefetch
    2009-04-02 16:56:26 ----SD---- C:\WINDOWS\system32\Microsoft
    2009-04-02 16:56:26 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-04-02 16:30:27 ----D---- C:\WINDOWS\system32\xircom
    2009-04-02 16:30:27 ----D---- C:\WINDOWS\srchasst
    2009-04-02 16:30:27 ----D---- C:\Program Files\xerox
    2009-04-02 16:30:27 ----D---- C:\Program Files\microsoft frontpage
    2009-04-02 16:30:08 ----D---- C:\Program Files\Windows Media Connect 2
    2009-04-02 16:30:07 ----A---- C:\WINDOWS\system32\spupdsvc.exe
    2009-04-02 16:30:02 ----D---- C:\WINDOWS\RegisteredPackages
    2009-04-02 16:29:48 ----HD---- C:\WINDOWS\$hf_mig$
    2009-04-02 16:29:34 ----A---- C:\WINDOWS\control.ini
    2009-04-02 16:29:34 ----A---- C:\AUTOEXEC.BAT
    2009-04-02 16:29:26 ----A---- C:\WINDOWS\OEWABLog.txt
    2009-04-02 16:29:22 ----A---- C:\WINDOWS\system32\mapi32.dll
    2009-04-02 16:28:41 ----SD---- C:\WINDOWS\Downloaded Program Files
    2009-04-02 16:28:41 ----RD---- C:\WINDOWS\Offline Web Pages
    2009-04-02 16:28:41 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
    2009-04-02 16:28:36 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
    2009-04-02 16:28:32 ----HD---- C:\Program Files\WindowsUpdate
    2009-04-02 16:28:05 ----A---- C:\WINDOWS\system32\atrace.dll
    2009-04-02 16:28:04 ----A---- C:\WINDOWS\system32\desktop.ini
    2009-04-02 16:28:04 ----A---- C:\WINDOWS\desktop.ini
    2009-04-02 16:28:01 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
    2009-04-02 16:27:59 ----D---- C:\Program Files\Fichiers communs\Services
    2009-04-02 16:27:59 ----A---- C:\WINDOWS\system32\acctres.dll
    2009-04-02 16:27:56 ----SD---- C:\WINDOWS\Tasks
    2009-04-02 16:27:56 ----A---- C:\WINDOWS\system32\icfgnt5.dll
    2009-04-02 16:27:55 ----D---- C:\Program Files\Fichiers communs\MSSoap
    2009-04-02 16:27:54 ----D---- C:\WINDOWS\system32\Macromed
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuweb.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wups.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wucltui.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauserv.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuaueng1.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuaueng.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauclt1.exe
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauclt.exe
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuapi.dll
    2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
    2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\qmgr.dll
    2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\bitsprx3.dll
    2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\bitsprx2.dll
    2009-04-02 16:27:47 ----D---- C:\Program Files\Movie Maker
    2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrslv.dll
    2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrdm.dll
    2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrcdlg.dll
    2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\racpldlg.dll
    2009-04-02 16:27:40 ----D---- C:\WINDOWS\system32\Restore
    2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srsvc.dll
    2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srrstr.dll
    2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srclient.dll
    2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\fltMc.exe
    2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\fltlib.dll
    2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\nmmkcert.dll
    2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\mnmdd.dll
    2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\isrdbg32.dll
    2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\ils.dll
    2009-04-02 16:27:38 ----A---- C:\WINDOWS\system32\msconf.dll
    2009-04-02 16:27:38 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
    2009-04-02 16:27:36 ----D---- C:\Program Files\NetMeeting
    2009-04-02 16:27:36 ----A---- C:\WINDOWS\system32\msoert2.dll
    2009-04-02 16:27:36 ----A---- C:\WINDOWS\system32\msoeacct.dll
    2009-04-02 16:27:35 ----A---- C:\WINDOWS\system32\inetres.dll
    2009-04-02 16:27:35 ----A---- C:\WINDOWS\system32\inetcomm.dll
    2009-04-02 16:27:33 ----D---- C:\Program Files\Outlook Express
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\schedsvc.dll
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\mstinit.exe
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\mstask.dll
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\isign32.dll
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\inetcfg.dll
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\icwphbk.dll
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\icwdial.dll
    2009-04-02 16:27:28 ----D---- C:\Program Files\Fichiers communs\System
    2009-04-02 16:27:23 ----D---- C:\Program Files\Internet Explorer
    2009-04-02 16:26:57 ----D---- C:\Program Files\ComPlus Applications
    2009-04-02 16:26:55 ----A---- C:\WINDOWS\vbaddin.ini
    2009-04-02 16:26:55 ----A---- C:\WINDOWS\vb.ini
    2009-04-02 16:26:51 ----D---- C:\WINDOWS\Registration
    2009-04-02 16:26:45 ----D---- C:\Program Files\Windows Media Player
    2009-04-02 16:26:31 ----D---- C:\Program Files\MSN Gaming Zone
    2009-04-02 16:26:31 ----A---- C:\WINDOWS\system32\write.exe
    2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\sndvol32.exe
    2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\hticons.dll
    2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avwav.dll
    2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avtapi.dll
    2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avmeter.dll
    2009-04-02 16:26:22 ----A---- C:\WINDOWS\system32\winchat.exe
    2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\sol.exe
    2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\getuname.dll
    2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\charmap.exe
    2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\calc.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\winmine.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\usrlogon.cmd
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\tsshutdn.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\tskill.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\reset.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\mshearts.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\freecell.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tslabels.ini
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tsdiscon.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tscon.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\shadow.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\rwinsta.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\regini.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\qwinsta.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\qappsrv.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\msg.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\logoff.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\cdmodem.dll
    2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxlegih.dll
    2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxex.dll
    2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxdm.dll
    2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\msdtcprf.ini
    2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
    2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\stclient.dll
    2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comsnap.dll
    2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comrepl.dll
    2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comaddin.dll
    2009-04-02 16:26:09 ----A---- C:\WINDOWS\system32\wmimgmt.msc
    2009-04-02 16:26:08 ----A---- C:\WINDOWS\system32\accwiz.exe
    2009-04-02 16:26:07 ----D---- C:\Program Files\Windows NT
    2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\sndrec32.exe
    2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\mspaint.exe
    2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\mplay32.exe
    2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\hypertrm.dll
    2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
    2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\spider.exe
    2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\clipbrd.exe
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\tscupgrd.exe
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\termsrv.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\sessmgr.exe
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\remotepg.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdshost.exe
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdsaddin.exe
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdpwsx.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdpsnd.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdchost.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\mstscax.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\mstsc.exe
    2009-04-02 16:26:04 ----D---- C:\WINDOWS\system32\MsDtc
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\rdpclip.exe
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\qprocess.exe
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\mtxoci.dll
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\msdtcprx.dll
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\icaapi.dll
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\cfgbkend.dll
    2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\xolehlp.dll
    2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtctm.dll
    2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtclog.dll
    2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtc.exe
    2009-04-02 16:26:02 ----D---- C:\WINDOWS\system32\Com
    2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\colbact.dll
    2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\clbcatex.dll
    2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrvut.dll
    2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrvps.dll
    2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrv.dll
    2009-04-02 16:26:01 ----A---- C:\WINDOWS\system32\comuid.dll
    2009-04-02 16:26:01 ----A---- C:\WINDOWS\system32\comsvcs.dll
    2009-04-02 16:26:00 ----A---- C:\WINDOWS\system32\clbcatq.dll
    2009-04-02 16:25:56 ----A---- C:\WINDOWS\system32\servdeps.dll
    2009-04-02 16:25:56 ----A---- C:\WINDOWS\system32\mmfutil.dll
    2009-04-02 16:25:55 ----A---- C:\WINDOWS\system32\licwmi.dll
    2009-04-02 16:25:55 ----A---- C:\WINDOWS\system32\cmprops.dll
    2009-04-02 15:26:57 ----A---- C:\WINDOWS\system32\h323log.txt
    2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\wshirda.dll
    2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\irmon.dll
    2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\irftp.exe
    2009-04-02 15:23:51 ----A---- C:\WINDOWS\system32\usbui.dll
    2009-04-02 15:23:04 ----A---- C:\WINDOWS\imsins.BAK
    2009-04-02 15:23:01 ----SHD---- C:\WINDOWS\Installer
    2009-04-02 15:23:01 ----D---- C:\Program Files\Fichiers communs\ODBC
    2009-04-02 15:23:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-04-02 15:23:01 ----A---- C:\WINDOWS\ODBCINST.INI
    2009-04-02 15:22:58 ----RD---- C:\Program Files
    2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs\SpeechEngines
    2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs
    2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
    2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
    2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdazel.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdycc.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbduzb.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdur.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdtat.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdru1.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdru.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdmon.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdbu.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdblr.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdaze.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhept.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
    2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
    2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlv.dll
    2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
    2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlt.dll
    2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdest.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdycl.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdsl.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdro.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdpl.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdhu.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcr.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
    2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\spxcoins.dll
    2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\irclass.dll
    2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\dgsetup.dll
    2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
    2009-04-02 15:22:45 ----A---- C:\WINDOWS\system32\EqnClass.Dll
    2009-04-02 15:22:43 ----N---- C:\WINDOWS\system32\CONFIG.TMP
    2009-04-02 15:22:43 ----A---- C:\WINDOWS\TASKMAN.EXE
    2009-04-02 15:22:43 ----A---- C:\WINDOWS\system32\batt.dll
    2009-04-02 15:22:42 ----A---- C:\WINDOWS\system32\storprop.dll
    2009-04-02 15:22:42 ----A---- C:\WINDOWS\notepad.exe
    2009-04-02 15:22:36 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
    2009-04-02 15:22:23 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-04-02 15:22:23 ----D---- C:\WINDOWS\system32\CatRoot
    2009-04-02 15:22:18 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft
    2009-04-02 15:22:02 ----A---- C:\WINDOWS\setuplog.txt
    2009-04-02 15:21:59 ----SHD---- C:\System Volume Information
    2009-04-02 15:21:59 ----D---- C:\Documents and Settings
    2009-04-02 15:21:06 ----SH---- C:\boot.ini
    2009-04-02 15:20:20 ----D---- C:\applications
    2009-04-02 15:17:46 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-04-02 15:17:46 ----RSD---- C:\WINDOWS\Fonts
    2009-04-02 15:17:46 ----RD---- C:\WINDOWS\Web
    2009-04-02 15:17:46 ----HD---- C:\WINDOWS\inf
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\WinSxS
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\twain_32
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Temp
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\wins
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\wbem
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\usmt
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\spool
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ShellExt
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\Setup
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ras
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\PreInstall
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\oobe
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\npp
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\mui
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\inetsrv
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\IME
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\icsxml
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ias
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\export
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\en
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\drivers
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\dhcp
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\config
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\3com_dmi
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\3076
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\2052
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1054
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1042
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1041
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1037
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1036
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1033
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1031
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1028
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1025
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\security
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Resources
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\repair
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Provisioning
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\PeerNet
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\pchealth
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\mui
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\msapps
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\msagent
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Media
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\java
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\ime
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Help
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\ehome
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Driver Cache
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Debug
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Cursors
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Connection Wizard
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Config
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\AppPatch
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\addins
    2009-04-02 15:17:46 ----D---- C:\WINDOWS
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nwiz.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwssr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwss.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrszht.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrszhc.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrstr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsth.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssv.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssk.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsru.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsptb.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrspt.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrspl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsno.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsnl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsko.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsja.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsit.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrshu.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrshe.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsfr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsfi.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsesm.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrses.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrseng.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsel.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsde.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsda.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrscs.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsar.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwimg.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwdmcpl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwddi.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvvitvsr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvvitvs.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvsvc32.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvshell.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrszht.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrszhc.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrstr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsth.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssv.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssk.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsru.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsptb.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrspt.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrspl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsno.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsnl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsko.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsja.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsit.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrshu.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrshe.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsfr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsfi.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsesm.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrses.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrseng.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsel.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsde.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsda.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrscs.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsar.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvoglnt.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmoblsr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmobls.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmctray.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccssr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccss.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccsrs.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccs.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nview.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvgamesr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvgames.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdspsch.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdispsr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdisps.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcuvid.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcuda.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcpluir.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcplui.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcpl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcolor.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcodins.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcod.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvappbar.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvapi.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nv4_disp.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\keystone.exe

    ======List of files/folders modified in the last 1 months======

    2009-04-03 18:01:27 ----A---- C:\WINDOWS\win.ini
    2009-04-03 18:01:27 ----A---- C:\WINDOWS\system.ini

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
    R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-10-30 75072]
    R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-11-08 21248]
    R2 irda;Protocole IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2004-08-04 87424]
    R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
    R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
    R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-03-04 5045760]
    R3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-03-27 6280416]
    R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-03-22 52736]
    R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-03-22 18944]
    R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2006-06-20 30080]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2006-06-20 17152]
    R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
    S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
    S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\I:\EVEREST Ultimate Edition 2007 v3.80.951 Beta\kerneld.wnt []
    S3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-28 9600]
    S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-06-20 12288]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AntiVirScheduler;Planificateur Avira AntiVir Personal - Free Antivirus; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-15 68865]
    R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-15 151297]
    R2 Irmon;Moniteur infrarouge; C:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
    R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-03-27 163908]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
    S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
    S3 WMConnectCDS;Service Windows Media Connect; C:\Program Files\Windows Media Connect 2\wmccds.exe [2005-10-06 856064]

    -----------------EOF-----------------
    =====Uninstall list======

    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Reader 7.0.8 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70800000002}
    Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
    Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
    Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
    Codeur Windows Media Série 9-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
    Codeur Windows Media Série 9-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
    Correctif pour Windows XP (KB935448)-->"C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
    Correctif Windows XP - KB867282-->C:\WINDOWS\$NtUninstallKB867282$\spuninst\spuninst.exe
    Correctif Windows XP - KB885894-->C:\WINDOWS\$NtUninstallKB885894$\spuninst\spuninst.exe
    Galerie de photos Windows Live-->MsiExec.exe /X{44E54A81-9D91-4AA1-9417-80AFF134F5FF}
    High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
    HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
    Hotfix for Windows Media Format SDK (KB902344)-->"C:\WINDOWS\$NtUninstallKB902344$\spuninst\spuninst.exe"
    Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
    Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
    J2SE Runtime Environment 5.0 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150070}
    Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
    Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Macromedia Flash Player 8-->C:\WINDOWS\system32\Macromed\Flash\UninstFl.exe
    Macromedia Shockwave Player-->MsiExec.exe /X{838A1BC9-95CA-4880-9BE3-2A7D23600A2B}
    Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
    Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
    Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
    Microsoft Office PowerPoint Viewer 2003-->MsiExec.exe /X{90AF040C-6000-11D3-8CFE-0150048383C9}
    Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
    Microsoft Windows Media Video 9 VCM-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmv9vcm.inf, Uninstall
    Mise à jour de sécurité pour le Codeur Windows Media (KB954156)-->"C:\WINDOWS\$NtUninstallKB954156_WM9L$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB913433)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB913433.inf
    Mise à jour de sécurité pour Windows XP (KB917953)-->"C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923689)-->"C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
    Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
    Mozilla Firefox (3.0.8)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
    OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
    Orange Plug-in messagerie vocale 888-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{16E79B1D-D1C2-4CA6-8B23-F4D890E0DCB9}\Setup.exe" -l0x40c --AddRemove
    Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
    Photorécit 3 pour Windows-->MsiExec.exe /I{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}
    Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
    Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
    SLD Codec Pack-->C:\Program Files\SLD Codec Pack\uninstall.exe
    Visionneuse Journal Windows Microsoft-->MsiExec.exe /X{43DCF766-6838-4F9A-8C91-D92DA586DFA8}
    VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe
    Winamp-->"C:\Program Files\Winamp\UninstWA.exe"
    Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
    Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
    Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
    Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
    Windows Live Sync-->MsiExec.exe /X{9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E}
    Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    Windows Media Player 10 Hotfix - KB888656-->"C:\WINDOWS\$NtUninstallKB888656$\spuninst\spuninst.exe"
    Windows Messenger 5.1-->MsiExec.exe /I{9D1C26BD-E792-4159-9D16-07EA222D8EF0}

    Securitycenter WMI appears to be broken

    ======System event log======

    Computer Name: MYMY
    Event Code: 7
    Message: Le périphérique \Device\CdRom0 comporte un bloc défectueux.

    Record Number: 5
    Source Name: Cdrom
    Time Written: 20090402162637.000000+120
    Event Type: erreur
    User:

    Computer Name: MYMY
    Event Code: 6011
    Message: Le nom NetBIOS et le nom de l'hôte DNS de cet ordinateur ont été modifiés de MACHINENAME vers MYMY.

    Record Number: 4
    Source Name: EventLog
    Time Written: 20090402162514.000000+120
    Event Type: Informations
    User:

    Computer Name: MACHINENAME
    Event Code: 2
    Message: Pendant la validation de \Device\Serial0 en tant que port série, une FIFO a été détectée. La FIFO sera utilisée.

    Record Number: 3
    Source Name: Serial
    Time Written: 20090402152225.000000+120
    Event Type: Informations
    User:

    Computer Name: MACHINENAME
    Event Code: 6005
    Message: Le service d'Enregistrement d'événement a démarré.

    Record Number: 2
    Source Name: EventLog
    Time Written: 20090402152204.000000+120
    Event Type: Informations
    User:

    Computer Name: MACHINENAME
    Event Code: 6009
    Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 2 Uniprocessor Free.

    Record Number: 1
    Source Name: EventLog
    Time Written: 20090402152204.000000+120
    Event Type: Informations
    User:

    =====Application event log=====

    Computer Name: MYMY
    Event Code: 1000
    Message: Les compteurs de performances pour le service MSDTC (MSDTC) ont été chargés.
    Les données d'enregistrement contiennent les nouvelles valeurs d'index
    assignées à ce service.

    Record Number: 5
    Source Name: LoadPerf
    Time Written: 20090402162648.000000+120
    Event Type: Informations
    User:

    Computer Name: MYMY
    Event Code: 1000
    Message: Les compteurs de performances pour le service TermService (Services Terminal Server) ont été chargés.
    Les données d'enregistrement contiennent les nouvelles valeurs d'index
    assignées à ce service.

    Record Number: 4
    Source Name: LoadPerf
    Time Written: 20090402162645.000000+120
    Event Type: Informations
    User:

    Computer Name: MYMY
    Event Code: 1000
    Message: Les compteurs de performances pour le service RemoteAccess (Routage et accès distant) ont été chargés.
    Les données d'enregistrement contiennent les nouvelles valeurs d'index
    assignées à ce service.

    Record Number: 3
    Source Name: LoadPerf
    Time Written: 20090402162546.000000+120
    Event Type: Informations
    User:

    Computer Name: MYMY
    Event Code: 1000
    Message: Les compteurs de performances pour le service PSched (PSched) ont été chargés.
    Les données d'enregistrement contiennent les nouvelles valeurs d'index
    assignées à ce service.

    Record Number: 2
    Source Name: LoadPerf
    Time Written: 20090402162523.000000+120
    Event Type: Informations
    User:

    Computer Name: MYMY
    Event Code: 1000
    Message: Les compteurs de performances pour le service RSVP (QoS RSVP) ont été chargés.
    Les données d'enregistrement contiennent les nouvelles valeurs d'index
    assignées à ce service.

    Record Number: 1
    Source Name: LoadPerf
    Time Written: 20090402162522.000000+120
    Event Type: Informations
    User:

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
    "windir"=%SystemRoot%
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_LEVEL"=15
    "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 95 Stepping 2, AuthenticAMD
    "PROCESSOR_REVISION"=5f02
    "NUMBER_OF_PROCESSORS"=1
    "TEMP"=%USERPROFILE%\Local Settings\Temp
    "TMP"=%USERPROFILE%\Local Settings\Temp
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH

    -----------------EOF-----------------
    voilà!

    Re,

    Télécharge OTMoveIt3 (de OldTimer). Sauvegarde-le sur ton Bureau.
    Copie (Ctrl+C) le texte se situant dans le cadre ci-dessous :

    :processes
    explorer.exe

    :reg
    [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "services"=-

    :files
    c:\temp1\*.txt /s
    C:\WINDOWS\services.exe

    :commands
    [emptytemp]
    [start explorer]
    [reboot]


    Double clique sur OTMoveIt3.exe afin de le lancer.
    Colle (ou Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
    Clique maintenant sur le bouton MoveIt![/#f] puis ferme OTMoveIt3.

    [#ff0000]Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.[/#f]

    Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
    Le nom du rapport correspond au moment de sa création : date_heure.log

    &

    Télécharge MalwareByte's Anti-Malware sur ton Bureau.

  • Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.
  • Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
  • Afin de lancer la recherche, clic sur"Rechercher".
  • Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :

    ~ Si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
    ~~ Si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau.
    ~~~~ Fais redémarrer ton ordinateur normalement et poste le rapport dans ta prochaine réponse.

    [#ff0000]REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.[/#f]

    Note : Si tu ne parviens à télécharger MBAM à part de MajorGeeks, tu peux le télécharger ici!

    [#FF0000]Aide
  • :
  • Comment utiliser MBAM.
  • Comment faire démarrer son ordinateur en mode sans échec.

    bonjour! et merci beaucoup


    ========== PROCESSES ==========
    Process explorer.exe killed successfully.
    ========== REGISTRY ==========
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\\ deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\services deleted successfully.
    ========== FILES ==========
    File/Folder c:\temp1\*.txt not found.
    C:\WINDOWS\services.exe moved successfully.
    ========== COMMANDS ==========
    File delete failed. C:\DOCUME~1\Myriam\LOCALS~1\Temp\hsperfdata_Myriam\3684 scheduled to be deleted on reboot.
    File delete failed. C:\DOCUME~1\Myriam\LOCALS~1\Temp\etilqs_cQqhfTux1Iah1P6lvlQu scheduled to be deleted on reboot.
    User's Temp folder emptied.
    User's Internet Explorer cache folder emptied.
    File delete failed. C:\Documents and Settings\Myriam\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    User's Temporary Internet Files folder emptied.
    Local Service Temp folder emptied.
    File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    Local Service Temporary Internet Files folder emptied.
    Network Service Temp folder emptied.
    Network Service Temporary Internet Files folder emptied.
    Windows Temp folder emptied.
    File delete failed. C:\Documents and Settings\Myriam\Application Data\Sun\Java\Deployment\cache\6.0\32\3c877e0-757ec688.idx scheduled to be deleted on reboot.
    Java cache emptied.
    File delete failed. C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\XUL.mfl scheduled to be deleted on reboot.
    FireFox cache emptied.
    Temp folders emptied.
    Explorer started successfully

    OTMoveIt3 by OldTimer - Version 1.0.11.0 log created on 04132009_112030

    Files moved on Reboot...
    File C:\DOCUME~1\Myriam\LOCALS~1\Temp\hsperfdata_Myriam\3684 not found!
    File C:\DOCUME~1\Myriam\LOCALS~1\Temp\etilqs_cQqhfTux1Iah1P6lvlQu not found!
    C:\Documents and Settings\Myriam\Application Data\Sun\Java\Deployment\cache\6.0\32\3c877e0-757ec688.idx moved successfully.
    C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_001_ moved successfully.
    C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_002_ moved successfully.
    C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_003_ moved successfully.
    C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_MAP_ moved successfully.
    C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\urlclassifier3.sqlite moved successfully.
    C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\XUL.mfl moved successfully.

    Malwarebytes' Anti-Malware 1.36
    Version de la base de données: 1974
    Windows 5.1.2600 Service Pack 2

    13/04/2009 11:40:56
    mbam-log-2009-04-13 (11-40-56).txt

    Type de recherche: Examen complet (C:\|)
    Eléments examinés: 88829
    Temps écoulé: 10 minute(s), 0 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 0
    Valeur(s) du Registre infectée(s): 2
    Elément(s) de données du Registre infecté(s): 2
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 1

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Valeur(s) du Registre infectée(s):
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\services (Trojan.Agent) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\services\del (Malware.Trace) -> Quarantined and deleted successfully.

    Elément(s) de données du Registre infecté(s):
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SecurityProviders (Trojan.Agent) -> Data: digiwet.dll -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    C:\WINDOWS\system32\digiwet.dll (Trojan.Agent) -> Quarantined and deleted successfully.


    bonjour!!
    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Myriam at 2009-04-15 09:32:40
    Microsoft Windows XP Professionnel Service Pack 2
    System drive C: has 232 GB (97%) free of 238 GB
    Total RAM: 2047 MB (79% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 09:32:43, on 15/04/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
    C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\Myriam\Bureau\RSIT.exe
    C:\Program Files\trend micro\Myriam.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.trooner.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.trooner.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/search?q=%s
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_02] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\msagent" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_03] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Help\Tours" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_04] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_05] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_06] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_07] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'SERVICE RÉSEAU')
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

    --
    End of file - 4778 bytes

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-01-12 63128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-03-27 13684736]
    "nwiz"=nwiz.exe /install []
    "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-03-27 86016]
    "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-03-02 17530368]
    "avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
    C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
    C:\WINDOWS\system32\WgaLogon.dll [2001-10-26 3584]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=1
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "SynchronousMachineGroupPolicy"=0
    "SynchronousUserGroupPolicy"=0

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=219
    "NoStrCmpLogical"=1
    "NoResolveTrack"=0
    "NoResolveSearch"=0
    "NoRun"=0
    "NoFind"=0
    "NoSMMyPictures"=0
    "NoStartMenuMFUprogramsList"=0
    "NoUserNameInStartMenu"=0
    "NoStartMenuMorePrograms"=0
    "MaxRecentDocs"=15
    "NoInstrumentation"=0
    "MemCheckBoxInRunDlg"=1
    "NoSMBalloonTip"=0
    "DisallowCpl"=1

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=
    "ForceClassicControlPanel"=
    "NoSimpleStartMenu"=
    "HonorAutoRunSetting"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

    ======List of files/folders created in the last 1 months======

    2009-04-13 11:28:17 ----D---- C:\Documents and Settings\Myriam\Application Data\Malwarebytes
    2009-04-13 11:28:11 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-04-13 11:28:11 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
    2009-04-13 11:20:30 ----D---- C:\_OTMoveIt
    2009-04-13 10:35:19 ----D---- C:\WINDOWS\Sun
    2009-04-12 22:26:00 ----D---- C:\rsit
    2009-04-12 22:26:00 ----D---- C:\Program Files\trend micro
    2009-04-10 23:04:37 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
    2009-04-10 23:04:36 ----D---- C:\WINDOWS\system32\DirectX
    2009-04-10 23:04:34 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
    2009-04-10 23:04:20 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
    2009-04-09 21:12:25 ----D---- C:\Documents and Settings\Myriam\Application Data\AdobeUM
    2009-04-07 16:37:47 ----D---- C:\Documents and Settings\Myriam\Application Data\vlc
    2009-04-07 13:42:27 ----D---- C:\Documents and Settings\Myriam\Application Data\OpenOffice.org
    2009-04-07 12:44:18 ----A---- C:\WINDOWS\npornap.INI
    2009-04-07 12:40:56 ----D---- C:\Program Files\Orange
    2009-04-05 18:05:59 ----HDC---- C:\WINDOWS\$NtUninstallKB935448$
    2009-04-03 17:42:59 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
    2009-04-03 17:41:15 ----N---- C:\WINDOWS\system32\spmsg.dll
    2009-04-03 17:31:12 ----D---- C:\Program Files\JRE
    2009-04-03 17:31:11 ----D---- C:\Program Files\OpenOffice.org 3
    2009-04-03 17:30:51 ----D---- C:\Documents and Settings\Myriam\Application Data\Sun
    2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\muweb.dll
    2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
    2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\mucltui.dll
    2009-04-03 15:11:52 ----D---- C:\Documents and Settings\Myriam\Application Data\Adobe
    2009-04-03 15:00:28 ----HD---- C:\WINDOWS\system32\GroupPolicy
    2009-04-03 14:58:43 ----D---- C:\Program Files\Avira
    2009-04-03 14:58:43 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
    2009-04-03 14:57:50 ----D---- C:\WINDOWS\pss
    2009-04-03 14:54:21 ----D---- C:\Program Files\SLD Codec Pack
    2009-04-03 14:53:51 ----D---- C:\Program Files\VideoLAN
    2009-04-03 14:53:31 ----D---- C:\Program Files\Microsoft
    2009-04-03 14:53:19 ----D---- C:\Program Files\Windows Live SkyDrive
    2009-04-03 14:53:01 ----D---- C:\Program Files\Windows Live
    2009-04-03 14:52:10 ----D---- C:\Program Files\Winamp
    2009-04-03 14:52:10 ----D---- C:\Documents and Settings\Myriam\Application Data\Winamp
    2009-04-03 14:50:50 ----D---- C:\Program Files\Fichiers communs\Windows Live
    2009-04-03 14:47:35 ----D---- C:\Documents and Settings\All Users\Application Data\2DBoy
    2009-04-03 14:47:21 ----D---- C:\Program Files\WorldOfGoo
    2009-04-03 14:46:55 ----D---- C:\WINDOWS\system32\Lang
    2009-04-03 14:45:57 ----D---- C:\WINDOWS\system32\RTCOM
    2009-04-03 14:45:56 ----A---- C:\WINDOWS\system32\ksuser.dll
    2009-04-03 14:45:34 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$
    2009-04-03 14:45:31 ----A---- C:\WINDOWS\vncutil.exe
    2009-04-03 14:45:31 ----A---- C:\WINDOWS\SOUNDMAN.EXE
    2009-04-03 14:45:31 ----A---- C:\WINDOWS\SkyTel.exe
    2009-04-03 14:45:31 ----A---- C:\WINDOWS\RtlUpd.exe
    2009-04-03 14:45:30 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
    2009-04-03 14:45:30 ----A---- C:\WINDOWS\RTLCPL.EXE
    2009-04-03 14:45:30 ----A---- C:\WINDOWS\RtkAudioService.exe
    2009-04-03 14:45:29 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-04-03 14:45:29 ----D---- C:\Program Files\Realtek
    2009-04-03 14:45:29 ----A---- C:\WINDOWS\RTHDCPL.EXE
    2009-04-03 14:45:29 ----A---- C:\WINDOWS\MicCal.exe
    2009-04-03 14:45:29 ----A---- C:\WINDOWS\ALCWZRD.EXE
    2009-04-03 14:45:29 ----A---- C:\WINDOWS\ALCMTR.EXE
    2009-04-03 14:45:27 ----A---- C:\WINDOWS\RtlExUpd.dll
    2009-04-03 03:22:05 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
    2009-04-03 03:22:02 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
    2009-04-03 03:21:59 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
    2009-04-03 03:21:55 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
    2009-04-03 03:21:50 ----HDC---- C:\WINDOWS\$NtUninstallKB958215$
    2009-04-03 03:21:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
    2009-04-03 03:21:43 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
    2009-04-03 03:21:39 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
    2009-04-03 03:21:35 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
    2009-04-03 03:21:31 ----HDC---- C:\WINDOWS\$NtUninstallKB954156_WM9L$
    2009-04-03 03:21:28 ----HDC---- C:\WINDOWS\$NtUninstallKB960714$
    2009-04-03 03:21:21 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
    2009-04-03 03:21:10 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
    2009-04-03 03:20:52 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
    2009-04-03 03:20:45 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
    2009-04-03 03:20:42 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
    2009-04-03 03:20:39 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
    2009-04-03 03:20:36 ----HDC---- C:\WINDOWS\$NtUninstallKB923689$
    2009-04-03 03:20:28 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
    2009-04-03 03:20:25 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
    2009-04-03 03:20:20 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
    2009-04-03 03:20:17 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
    2009-04-03 03:20:14 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
    2009-04-03 03:20:10 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
    2009-04-03 03:20:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
    2009-04-03 03:20:03 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
    2009-04-03 03:20:00 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
    2009-04-03 03:19:57 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
    2009-04-03 03:19:53 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
    2009-04-03 03:19:50 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
    2009-04-03 03:19:49 ----A---- C:\WINDOWS\system32\wmpns.dll
    2009-04-03 03:19:45 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP10$
    2009-04-03 00:22:22 ----D---- C:\WINDOWS\system32\CatRoot_bak
    2009-04-02 20:56:29 ----D---- C:\Documents and Settings\Myriam\Application Data\Mozilla
    2009-04-02 20:56:26 ----D---- C:\Program Files\Mozilla Firefox
    2009-04-02 19:50:51 ----SHD---- C:\RECYCLER
    2009-04-02 19:47:22 ----D---- C:\WINDOWS\nview
    2009-04-02 19:47:21 ----A---- C:\WINDOWS\system32\nvudisp.exe
    2009-04-02 19:42:21 ----D---- C:\WINDOWS\system32\SoftwareDistribution
    2009-04-02 19:39:24 ----A---- C:\WINDOWS\system32\CapabilityTable.exe
    2009-04-02 19:39:17 ----N---- C:\WINDOWS\system32\nvuide.exe
    2009-04-02 19:39:17 ----D---- C:\WINDOWS\system32\ReinstallBackups
    2009-04-02 19:39:05 ----A---- C:\WINDOWS\system32\nvunrm.exe
    2009-04-02 19:39:04 ----A---- C:\WINDOWS\system32\nvusmb.exe
    2009-04-02 19:38:47 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
    2009-04-02 19:38:35 ----D---- C:\NVIDIA
    2009-04-02 17:06:53 ----A---- C:\XPSP2+_Version.txt
    2009-04-02 17:06:46 ----D---- C:\Documents and Settings\Myriam\Application Data\Identities
    2009-04-02 17:06:44 ----HD---- C:\Program Files\Uninstall Information
    2009-04-02 17:06:31 ----A---- C:\WINDOWS\system32\YourCPLconfig.txt
    2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\javaws.exe
    2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\javaw.exe
    2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\java.exe
    2009-04-02 17:05:36 ----D---- C:\Program Files\Java
    2009-04-02 17:05:35 ----D---- C:\Program Files\Fichiers communs\Java
    2009-04-02 17:05:32 ----D---- C:\Documents and Settings\Myriam\Application Data\Macromedia
    2009-04-02 17:05:28 ----D---- C:\Program Files\Fichiers communs\InstallShield
    2009-04-02 17:04:54 ----D---- C:\Program Files\Fichiers communs\Adobe
    2009-04-02 17:04:53 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-04-02 17:04:15 ----D---- C:\Program Files\Adobe
    2009-04-02 17:04:12 ----D---- C:\Program Files\Messenger
    2009-04-02 17:04:03 ----D---- C:\Program Files\Photo Story 3 for Windows
    2009-04-02 17:03:56 ----HDC---- C:\WINDOWS\$NtUninstallKB917734_WMP10$
    2009-04-02 17:03:47 ----HDC---- C:\WINDOWS\$NtUninstallKB911565$
    2009-04-02 17:03:39 ----HDC---- C:\WINDOWS\$NtUninstallKB902344$
    2009-04-02 17:03:31 ----HDC---- C:\WINDOWS\$NtUninstallKB888656$
    2009-04-02 17:03:24 ----D---- C:\WINDOWS\system32\windows media
    2009-04-02 17:03:22 ----HD---- C:\WINDOWS\msdownld.tmp
    2009-04-02 17:03:21 ----D---- C:\Program Files\Windows Media Components
    2009-04-02 17:03:19 ----D---- C:\Program Files\WMV9_VCM
    2009-04-02 17:02:36 ----D---- C:\Program Files\Microsoft Office
    2009-04-02 17:02:35 ----D---- C:\Program Files\Windows Journal Viewer
    2009-04-02 17:01:33 ----D---- C:\WINDOWS\system32\URTTEMP
    2009-04-02 16:59:42 ----RSD---- C:\WINDOWS\assembly
    2009-04-02 16:59:31 ----D---- C:\WINDOWS\Microsoft.NET
    2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\WgaTray.exe
    2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\WgaLogon.dll
    2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\LegitCheckControl.dll
    2009-04-02 16:58:52 ----A---- C:\WINDOWS\system32\MRT.exe
    2009-04-02 16:58:47 ----HDC---- C:\WINDOWS\$NtUninstallKB917953$
    2009-04-02 16:58:19 ----HDC---- C:\WINDOWS\$NtUninstallKB867282$
    2009-04-02 16:58:07 ----HDC---- C:\WINDOWS\$NtUninstallKB885894$
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\wul.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\VB6STKIT.DLL
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\VB6FR.DLL
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\TweakUi.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\SMPSeesaw.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\shman.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\Sherlock.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\jrview.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\FlushCode.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\faview.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\Extinction.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\autoruns.exe
    2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\YourCPLconfig_Instructions.txt
    2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\YourCPL_ReadMe.txt
    2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\pernille.txt
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\wul_lng.ini
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\shman_lng.ini
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\pernille.ini
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\oeminfo.ini
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\jrview_lng.ini
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\faview_lng.ini
    2009-04-02 16:57:42 ----D---- C:\Program Files\UTILS
    2009-04-02 16:57:42 ----D---- C:\Program Files\JEUX
    2009-04-02 16:57:10 ----ASH---- C:\Documents and Settings\Myriam\Application Data\desktop.ini
    2009-04-02 16:57:09 ----SD---- C:\Documents and Settings\Myriam\Application Data\Microsoft
    2009-04-02 16:56:27 ----D---- C:\WINDOWS\SoftwareDistribution
    2009-04-02 16:56:27 ----D---- C:\WINDOWS\Prefetch
    2009-04-02 16:56:26 ----SD---- C:\WINDOWS\system32\Microsoft
    2009-04-02 16:56:26 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-04-02 16:30:27 ----D---- C:\WINDOWS\system32\xircom
    2009-04-02 16:30:27 ----D---- C:\WINDOWS\srchasst
    2009-04-02 16:30:27 ----D---- C:\Program Files\xerox
    2009-04-02 16:30:27 ----D---- C:\Program Files\microsoft frontpage
    2009-04-02 16:30:08 ----D---- C:\Program Files\Windows Media Connect 2
    2009-04-02 16:30:07 ----A---- C:\WINDOWS\system32\spupdsvc.exe
    2009-04-02 16:30:02 ----D---- C:\WINDOWS\RegisteredPackages
    2009-04-02 16:29:48 ----HD---- C:\WINDOWS\$hf_mig$
    2009-04-02 16:29:34 ----A---- C:\WINDOWS\control.ini
    2009-04-02 16:29:34 ----A---- C:\AUTOEXEC.BAT
    2009-04-02 16:29:26 ----A---- C:\WINDOWS\OEWABLog.txt
    2009-04-02 16:29:22 ----A---- C:\WINDOWS\system32\mapi32.dll
    2009-04-02 16:28:41 ----SD---- C:\WINDOWS\Downloaded Program Files
    2009-04-02 16:28:41 ----RD---- C:\WINDOWS\Offline Web Pages
    2009-04-02 16:28:41 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
    2009-04-02 16:28:36 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
    2009-04-02 16:28:32 ----HD---- C:\Program Files\WindowsUpdate
    2009-04-02 16:28:05 ----A---- C:\WINDOWS\system32\atrace.dll
    2009-04-02 16:28:04 ----A---- C:\WINDOWS\system32\desktop.ini
    2009-04-02 16:28:04 ----A---- C:\WINDOWS\desktop.ini
    2009-04-02 16:28:01 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
    2009-04-02 16:27:59 ----D---- C:\Program Files\Fichiers communs\Services
    2009-04-02 16:27:59 ----A---- C:\WINDOWS\system32\acctres.dll
    2009-04-02 16:27:56 ----SD---- C:\WINDOWS\Tasks
    2009-04-02 16:27:56 ----A---- C:\WINDOWS\system32\icfgnt5.dll
    2009-04-02 16:27:55 ----D---- C:\Program Files\Fichiers communs\MSSoap
    2009-04-02 16:27:54 ----D---- C:\WINDOWS\system32\Macromed
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuweb.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wups.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wucltui.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauserv.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuaueng1.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuaueng.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauclt1.exe
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauclt.exe
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuapi.dll
    2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
    2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\qmgr.dll
    2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\bitsprx3.dll
    2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\bitsprx2.dll
    2009-04-02 16:27:47 ----D---- C:\Program Files\Movie Maker
    2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrslv.dll
    2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrdm.dll
    2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrcdlg.dll
    2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\racpldlg.dll
    2009-04-02 16:27:40 ----D---- C:\WINDOWS\system32\Restore
    2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srsvc.dll
    2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srrstr.dll
    2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srclient.dll
    2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\fltMc.exe
    2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\fltlib.dll
    2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\nmmkcert.dll
    2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\mnmdd.dll
    2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\isrdbg32.dll
    2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\ils.dll
    2009-04-02 16:27:38 ----A---- C:\WINDOWS\system32\msconf.dll
    2009-04-02 16:27:38 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
    2009-04-02 16:27:36 ----D---- C:\Program Files\NetMeeting
    2009-04-02 16:27:36 ----A---- C:\WINDOWS\system32\msoert2.dll
    2009-04-02 16:27:36 ----A---- C:\WINDOWS\system32\msoeacct.dll
    2009-04-02 16:27:35 ----A---- C:\WINDOWS\system32\inetres.dll
    2009-04-02 16:27:35 ----A---- C:\WINDOWS\system32\inetcomm.dll
    2009-04-02 16:27:33 ----D---- C:\Program Files\Outlook Express
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\schedsvc.dll
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\mstinit.exe
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\mstask.dll
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\isign32.dll
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\inetcfg.dll
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\icwphbk.dll
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\icwdial.dll
    2009-04-02 16:27:28 ----D---- C:\Program Files\Fichiers communs\System
    2009-04-02 16:27:23 ----D---- C:\Program Files\Internet Explorer
    2009-04-02 16:26:57 ----D---- C:\Program Files\ComPlus Applications
    2009-04-02 16:26:55 ----A---- C:\WINDOWS\vbaddin.ini
    2009-04-02 16:26:55 ----A---- C:\WINDOWS\vb.ini
    2009-04-02 16:26:51 ----D---- C:\WINDOWS\Registration
    2009-04-02 16:26:45 ----D---- C:\Program Files\Windows Media Player
    2009-04-02 16:26:31 ----D---- C:\Program Files\MSN Gaming Zone
    2009-04-02 16:26:31 ----A---- C:\WINDOWS\system32\write.exe
    2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\sndvol32.exe
    2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\hticons.dll
    2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avwav.dll
    2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avtapi.dll
    2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avmeter.dll
    2009-04-02 16:26:22 ----A---- C:\WINDOWS\system32\winchat.exe
    2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\sol.exe
    2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\getuname.dll
    2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\charmap.exe
    2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\calc.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\winmine.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\usrlogon.cmd
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\tsshutdn.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\tskill.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\reset.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\mshearts.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\freecell.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tslabels.ini
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tsdiscon.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tscon.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\shadow.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\rwinsta.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\regini.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\qwinsta.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\qappsrv.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\msg.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\logoff.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\cdmodem.dll
    2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxlegih.dll
    2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxex.dll
    2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxdm.dll
    2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\msdtcprf.ini
    2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
    2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\stclient.dll
    2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comsnap.dll
    2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comrepl.dll
    2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comaddin.dll
    2009-04-02 16:26:09 ----A---- C:\WINDOWS\system32\wmimgmt.msc
    2009-04-02 16:26:08 ----A---- C:\WINDOWS\system32\accwiz.exe
    2009-04-02 16:26:07 ----D---- C:\Program Files\Windows NT
    2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\sndrec32.exe
    2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\mspaint.exe
    2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\mplay32.exe
    2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\hypertrm.dll
    2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
    2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\spider.exe
    2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\clipbrd.exe
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\tscupgrd.exe
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\termsrv.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\sessmgr.exe
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\remotepg.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdshost.exe
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdsaddin.exe
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdpwsx.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdpsnd.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdchost.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\mstscax.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\mstsc.exe
    2009-04-02 16:26:04 ----D---- C:\WINDOWS\system32\MsDtc
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\rdpclip.exe
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\qprocess.exe
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\mtxoci.dll
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\msdtcprx.dll
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\icaapi.dll
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\cfgbkend.dll
    2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\xolehlp.dll
    2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtctm.dll
    2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtclog.dll
    2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtc.exe
    2009-04-02 16:26:02 ----D---- C:\WINDOWS\system32\Com
    2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\colbact.dll
    2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\clbcatex.dll
    2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrvut.dll
    2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrvps.dll
    2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrv.dll
    2009-04-02 16:26:01 ----A---- C:\WINDOWS\system32\comuid.dll
    2009-04-02 16:26:01 ----A---- C:\WINDOWS\system32\comsvcs.dll
    2009-04-02 16:26:00 ----A---- C:\WINDOWS\system32\clbcatq.dll
    2009-04-02 16:25:56 ----A---- C:\WINDOWS\system32\servdeps.dll
    2009-04-02 16:25:56 ----A---- C:\WINDOWS\system32\mmfutil.dll
    2009-04-02 16:25:55 ----A---- C:\WINDOWS\system32\licwmi.dll
    2009-04-02 16:25:55 ----A---- C:\WINDOWS\system32\cmprops.dll
    2009-04-02 15:26:57 ----A---- C:\WINDOWS\system32\h323log.txt
    2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\wshirda.dll
    2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\irmon.dll
    2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\irftp.exe
    2009-04-02 15:23:51 ----A---- C:\WINDOWS\system32\usbui.dll
    2009-04-02 15:23:04 ----A---- C:\WINDOWS\imsins.BAK
    2009-04-02 15:23:01 ----SHD---- C:\WINDOWS\Installer
    2009-04-02 15:23:01 ----D---- C:\Program Files\Fichiers communs\ODBC
    2009-04-02 15:23:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-04-02 15:23:01 ----A---- C:\WINDOWS\ODBCINST.INI
    2009-04-02 15:22:58 ----RD---- C:\Program Files
    2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs\SpeechEngines
    2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs
    2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
    2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
    2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdazel.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdycc.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbduzb.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdur.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdtat.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdru1.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdru.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdmon.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdbu.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdblr.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdaze.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhept.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
    2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
    2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlv.dll
    2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
    2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlt.dll
    2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdest.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdycl.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdsl.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdro.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdpl.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdhu.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcr.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
    2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\spxcoins.dll
    2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\irclass.dll
    2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\dgsetup.dll
    2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
    2009-04-02 15:22:45 ----A---- C:\WINDOWS\system32\EqnClass.Dll
    2009-04-02 15:22:43 ----N---- C:\WINDOWS\system32\CONFIG.TMP
    2009-04-02 15:22:43 ----A---- C:\WINDOWS\TASKMAN.EXE
    2009-04-02 15:22:43 ----A---- C:\WINDOWS\system32\batt.dll
    2009-04-02 15:22:42 ----A---- C:\WINDOWS\system32\storprop.dll
    2009-04-02 15:22:42 ----A---- C:\WINDOWS\notepad.exe
    2009-04-02 15:22:36 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
    2009-04-02 15:22:23 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-04-02 15:22:23 ----D---- C:\WINDOWS\system32\CatRoot
    2009-04-02 15:22:18 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft
    2009-04-02 15:22:02 ----A---- C:\WINDOWS\setuplog.txt
    2009-04-02 15:21:59 ----SHD---- C:\System Volume Information
    2009-04-02 15:21:59 ----D---- C:\Documents and Settings
    2009-04-02 15:21:06 ----SH---- C:\boot.ini
    2009-04-02 15:20:20 ----D---- C:\applications
    2009-04-02 15:17:46 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-04-02 15:17:46 ----RSD---- C:\WINDOWS\Fonts
    2009-04-02 15:17:46 ----RD---- C:\WINDOWS\Web
    2009-04-02 15:17:46 ----HD---- C:\WINDOWS\inf
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\WinSxS
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\twain_32
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Temp
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\wins
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\wbem
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\usmt
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\spool
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ShellExt
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\Setup
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ras
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\PreInstall
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\oobe
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\npp
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\mui
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\inetsrv
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\IME
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\icsxml
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ias
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\export
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\en
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\drivers
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\dhcp
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\config
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\3com_dmi
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\3076
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\2052
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1054
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1042
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1041
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1037
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1036
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1033
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1031
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1028
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1025
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\security
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Resources
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\repair
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Provisioning
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\PeerNet
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\pchealth
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\mui
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\msapps
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\msagent
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Media
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\java
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\ime
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Help
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\ehome
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Driver Cache
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Debug
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Cursors
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Connection Wizard
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Config
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\AppPatch
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\addins
    2009-04-02 15:17:46 ----D---- C:\WINDOWS
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nwiz.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwssr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwss.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrszht.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrszhc.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrstr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsth.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssv.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssk.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsru.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsptb.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrspt.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrspl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsno.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsnl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsko.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsja.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsit.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrshu.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrshe.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsfr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsfi.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsesm.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrses.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrseng.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsel.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsde.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsda.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrscs.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsar.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwimg.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwdmcpl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwddi.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvvitvsr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvvitvs.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvsvc32.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvshell.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrszht.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrszhc.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrstr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsth.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssv.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssk.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsru.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsptb.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrspt.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrspl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsno.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsnl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsko.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsja.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsit.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrshu.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrshe.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsfr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsfi.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsesm.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrses.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrseng.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsel.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsde.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsda.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrscs.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsar.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvoglnt.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmoblsr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmobls.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmctray.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccssr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccss.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccsrs.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccs.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nview.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvgamesr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvgames.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdspsch.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdispsr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdisps.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcuvid.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcuda.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcpluir.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcplui.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcpl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcolor.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcodins.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcod.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvappbar.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvapi.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nv4_disp.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\keystone.exe

    ======List of files/folders modified in the last 1 months======

    2009-04-03 18:01:27 ----A---- C:\WINDOWS\win.ini
    2009-04-03 18:01:27 ----A---- C:\WINDOWS\system.ini

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
    R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-10-30 75072]
    R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-11-08 21248]
    R2 irda;Protocole IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2004-08-04 87424]
    R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
    R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
    R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-03-04 5045760]
    R3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-03-27 6280416]
    R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-03-22 52736]
    R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-03-22 18944]
    R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2006-06-20 30080]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2006-06-20 17152]
    R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
    S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
    S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\I:\EVEREST Ultimate Edition 2007 v3.80.951 Beta\kerneld.wnt []
    S3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-28 9600]
    S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-06-20 12288]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AntiVirScheduler;Planificateur Avira AntiVir Personal - Free Antivirus; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-15 68865]
    R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-15 151297]
    R2 Irmon;Moniteur infrarouge; C:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
    R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-03-27 163908]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
    S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
    S3 WMConnectCDS;Service Windows Media Connect; C:\Program Files\Windows Media Connect 2\wmccds.exe [2005-10-06 856064]

    -----------------EOF-----------------
    info.txt logfile of random's system information tool 1.06 2009-04-15 09:36:22

    ======Uninstall list======

    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Reader 7.0.8 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70800000002}
    Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
    Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
    Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
    Codeur Windows Media Série 9-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
    Codeur Windows Media Série 9-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
    Correctif pour Windows XP (KB935448)-->"C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
    Correctif Windows XP - KB867282-->C:\WINDOWS\$NtUninstallKB867282$\spuninst\spuninst.exe
    Correctif Windows XP - KB885894-->C:\WINDOWS\$NtUninstallKB885894$\spuninst\spuninst.exe
    Galerie de photos Windows Live-->MsiExec.exe /X{44E54A81-9D91-4AA1-9417-80AFF134F5FF}
    High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
    HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
    Hotfix for Windows Media Format SDK (KB902344)-->"C:\WINDOWS\$NtUninstallKB902344$\spuninst\spuninst.exe"
    Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
    Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
    J2SE Runtime Environment 5.0 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150070}
    Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
    Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Macromedia Flash Player 8-->C:\WINDOWS\system32\Macromed\Flash\UninstFl.exe
    Macromedia Shockwave Player-->MsiExec.exe /X{838A1BC9-95CA-4880-9BE3-2A7D23600A2B}
    Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
    Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
    Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
    Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
    Microsoft Office PowerPoint Viewer 2003-->MsiExec.exe /X{90AF040C-6000-11D3-8CFE-0150048383C9}
    Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
    Microsoft Windows Media Video 9 VCM-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmv9vcm.inf, Uninstall
    Mise à jour de sécurité pour le Codeur Windows Media (KB954156)-->"C:\WINDOWS\$NtUninstallKB954156_WM9L$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB913433)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB913433.inf
    Mise à jour de sécurité pour Windows XP (KB917953)-->"C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923689)-->"C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
    Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
    Mozilla Firefox (3.0.8)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
    OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
    Orange Plug-in messagerie vocale 888-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{16E79B1D-D1C2-4CA6-8B23-F4D890E0DCB9}\Setup.exe" -l0x40c --AddRemove
    Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
    Photorécit 3 pour Windows-->MsiExec.exe /I{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}
    Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
    Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
    SLD Codec Pack-->C:\Program Files\SLD Codec Pack\uninstall.exe
    Visionneuse Journal Windows Microsoft-->MsiExec.exe /X{43DCF766-6838-4F9A-8C91-D92DA586DFA8}
    VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe
    Winamp-->"C:\Program Files\Winamp\UninstWA.exe"
    Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
    Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
    Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
    Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
    Windows Live Sync-->MsiExec.exe /X{9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E}
    Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    Windows Media Player 10 Hotfix - KB888656-->"C:\WINDOWS\$NtUninstallKB888656$\spuninst\spuninst.exe"
    Windows Messenger 5.1-->MsiExec.exe /I{9D1C26BD-E792-4159-9D16-07EA222D8EF0}

    Securitycenter WMI appears to be broken

    ======System event log======

    Computer Name: MYMY
    Event Code: 7
    Message: Le périphérique \Device\CdRom0 comporte un bloc défectueux.

    Record Number: 5
    Source Name: Cdrom
    Time Written: 20090402162637.000000+120
    Event Type: erreur
    User:

    Computer Name: MYMY
    Event Code: 6011
    Message: Le nom NetBIOS et le nom de l'hôte DNS de cet ordinateur ont été modifiés de MACHINENAME vers MYMY.

    Record Number: 4
    Source Name: EventLog
    Time Written: 20090402162514.000000+120
    Event Type: Informations
    User:

    Computer Name: MACHINENAME
    Event Code: 2
    Message: Pendant la validation de \Device\Serial0 en tant que port série, une FIFO a été détectée. La FIFO sera utilisée.

    Record Number: 3
    Source Name: Serial
    Time Written: 20090402152225.000000+120
    Event Type: Informations
    User:

    Computer Name: MACHINENAME
    Event Code: 6005
    Message: Le service d'Enregistrement d'événement a démarré.

    Record Number: 2
    Source Name: EventLog
    Time Written: 20090402152204.000000+120
    Event Type: Informations
    User:

    Computer Name: MACHINENAME
    Event Code: 6009
    Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 2 Uniprocessor Free.

    Record Number: 1
    Source Name: EventLog
    Time Written: 20090402152204.000000+120
    Event Type: Informations
    User:

    =====Application event log=====

    Computer Name: MYMY
    Event Code: 1000
    Message: Les compteurs de performances pour le service MSDTC (MSDTC) ont été chargés.
    Les données d'enregistrement contiennent les nouvelles valeurs d'index
    assignées à ce service.

    Record Number: 5
    Source Name: LoadPerf
    Time Written: 20090402162648.000000+120
    Event Type: Informations
    User:

    Computer Name: MYMY
    Event Code: 1000
    Message: Les compteurs de performances pour le service TermService (Services Terminal Server) ont été chargés.
    Les données d'enregistrement contiennent les nouvelles valeurs d'index
    assignées à ce service.

    Record Number: 4
    Source Name: LoadPerf
    Time Written: 20090402162645.000000+120
    Event Type: Informations
    User:

    Computer Name: MYMY
    Event Code: 1000
    Message: Les compteurs de performances pour le service RemoteAccess (Routage et accès distant) ont été chargés.
    Les données d'enregistrement contiennent les nouvelles valeurs d'index
    assignées à ce service.

    Record Number: 3
    Source Name: LoadPerf
    Time Written: 20090402162546.000000+120
    Event Type: Informations
    User:

    Computer Name: MYMY
    Event Code: 1000
    Message: Les compteurs de performances pour le service PSched (PSched) ont été chargés.
    Les données d'enregistrement contiennent les nouvelles valeurs d'index
    assignées à ce service.

    Record Number: 2
    Source Name: LoadPerf
    Time Written: 20090402162523.000000+120
    Event Type: Informations
    User:

    Computer Name: MYMY
    Event Code: 1000
    Message: Les compteurs de performances pour le service RSVP (QoS RSVP) ont été chargés.
    Les données d'enregistrement contiennent les nouvelles valeurs d'index
    assignées à ce service.

    Record Number: 1
    Source Name: LoadPerf
    Time Written: 20090402162522.000000+120
    Event Type: Informations
    User:

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
    "windir"=%SystemRoot%
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_LEVEL"=15
    "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 95 Stepping 2, AuthenticAMD
    "PROCESSOR_REVISION"=5f02
    "NUMBER_OF_PROCESSORS"=1
    "TEMP"=%USERPROFILE%\Local Settings\Temp
    "TMP"=%USERPROFILE%\Local Settings\Temp
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH

    -----------------EOF-----------------

    bonsoir!
    -------------------------------------------------------------------------------
    KASPERSKY ON-LINE SCANNER REPORT
    Thursday, April 16, 2009 12:20:41 AM
    Système d'exploitation : Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
    Kaspersky On-line Scanner version : 5.0.84.2
    Dernière mise à jour de la base antivirus Kaspersky : 15/04/2009
    Enregistrements dans la base antivirus Kaspersky : 1852576
    -------------------------------------------------------------------------------

    Paramètres d'analyse:
    Analyser avec la base antivirus suivante: standard
    Analyser les archives: vrai
    Analyser les bases de messagerie: vrai

    Cible de l'analyse - Poste de travail:
    C:\
    D:\
    E:\
    F:\
    G:\
    H:\

    Statistiques de l'analyse:
    Total d'objets analysés: 30737
    Nombre de virus trouvés: 1
    Nombre d'objets infectés: 1 / 0
    Nombre d'objets suspects: 0
    Durée de l'analyse: 00:22:34

    Nom de l'objet infecté / Nom du virus / Dernière action
    C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\Myriam\Cookies\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Myriam\Local Settings\Application Data\Microsoft\Messenger\ContactsLog.txt L'objet est verrouillé ignoré
    C:\Documents and Settings\Myriam\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Myriam\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\Myriam\Local Settings\Application Data\Microsoft\Windows Live Contacts\{0f148b51-212c-4509-b8c9-76763c0d7356}\DBStore\contacts.edb L'objet est verrouillé ignoré
    C:\Documents and Settings\Myriam\Local Settings\Application Data\Microsoft\Windows Live Contacts\{0f148b51-212c-4509-b8c9-76763c0d7356}\DBStore\LogFiles\edb.log L'objet est verrouillé ignoré
    C:\Documents and Settings\Myriam\Local Settings\Application Data\Microsoft\Windows Live Contacts\{0f148b51-212c-4509-b8c9-76763c0d7356}\DBStore\LogFiles\edbtmp.log L'objet est verrouillé ignoré
    C:\Documents and Settings\Myriam\Local Settings\Application Data\Microsoft\Windows Live Contacts\{0f148b51-212c-4509-b8c9-76763c0d7356}\DBStore\tempedb.edb L'objet est verrouillé ignoré
    C:\Documents and Settings\Myriam\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Myriam\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Myriam\NTUSER.DAT L'objet est verrouillé ignoré
    C:\Documents and Settings\Myriam\ntuser.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\Myriam\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
    C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
    C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré
    C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré
    C:\WINDOWS\system32\CatRoot2\edb.log L'objet est verrouillé ignoré
    C:\WINDOWS\system32\CatRoot2\tmp.edb L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré
    C:\_OTMoveIt\MovedFiles\04132009_112030\WINDOWS\services.exe Infecté : Email-Worm.Win32.Joleee.mm ignoré

    Analyse terminée.

    alors docteur?

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Myriam at 2009-04-16 00:30:48
    Microsoft Windows XP Professionnel Service Pack 2
    System drive C: has 231 GB (97%) free of 238 GB
    Total RAM: 2047 MB (72% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 00:30:49, on 16/04/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
    C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\Myriam\Bureau\RSIT.exe
    C:\Program Files\trend micro\Myriam.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.trooner.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.trooner.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/search?q=%s
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_02] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\msagent" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_03] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Help\Tours" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_04] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_05] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_06] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_07] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'SERVICE RÉSEAU')
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
    O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

    --
    End of file - 5006 bytes

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-01-12 63128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-03-27 13684736]
    "nwiz"=nwiz.exe /install []
    "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-03-27 86016]
    "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-03-02 17530368]
    "avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
    C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
    C:\WINDOWS\system32\WgaLogon.dll [2001-10-26 3584]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=1
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "SynchronousMachineGroupPolicy"=0
    "SynchronousUserGroupPolicy"=0

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=219
    "NoStrCmpLogical"=1
    "NoResolveTrack"=0
    "NoResolveSearch"=0
    "NoRun"=0
    "NoFind"=0
    "NoSMMyPictures"=0
    "NoStartMenuMFUprogramsList"=0
    "NoUserNameInStartMenu"=0
    "NoStartMenuMorePrograms"=0
    "MaxRecentDocs"=15
    "NoInstrumentation"=0
    "MemCheckBoxInRunDlg"=1
    "NoSMBalloonTip"=0
    "DisallowCpl"=1

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=
    "ForceClassicControlPanel"=
    "NoSimpleStartMenu"=
    "HonorAutoRunSetting"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

    ======List of files/folders created in the last 1 months======

    2009-04-15 23:37:31 ----D---- C:\WINDOWS\system32\Kaspersky Lab
    2009-04-15 23:37:29 ----D---- C:\WINDOWS\LastGood
    2009-04-13 11:28:17 ----D---- C:\Documents and Settings\Myriam\Application Data\Malwarebytes
    2009-04-13 11:28:11 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-04-13 11:28:11 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
    2009-04-13 11:20:30 ----D---- C:\_OTMoveIt
    2009-04-13 10:35:19 ----D---- C:\WINDOWS\Sun
    2009-04-12 22:26:00 ----D---- C:\rsit
    2009-04-12 22:26:00 ----D---- C:\Program Files\trend micro
    2009-04-10 23:04:37 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
    2009-04-10 23:04:36 ----D---- C:\WINDOWS\system32\DirectX
    2009-04-10 23:04:34 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
    2009-04-10 23:04:20 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
    2009-04-09 21:12:25 ----D---- C:\Documents and Settings\Myriam\Application Data\AdobeUM
    2009-04-07 16:37:47 ----D---- C:\Documents and Settings\Myriam\Application Data\vlc
    2009-04-07 13:42:27 ----D---- C:\Documents and Settings\Myriam\Application Data\OpenOffice.org
    2009-04-07 12:44:18 ----A---- C:\WINDOWS\npornap.INI
    2009-04-07 12:40:56 ----D---- C:\Program Files\Orange
    2009-04-05 18:05:59 ----HDC---- C:\WINDOWS\$NtUninstallKB935448$
    2009-04-03 17:42:59 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
    2009-04-03 17:41:15 ----N---- C:\WINDOWS\system32\spmsg.dll
    2009-04-03 17:31:12 ----D---- C:\Program Files\JRE
    2009-04-03 17:31:11 ----D---- C:\Program Files\OpenOffice.org 3
    2009-04-03 17:30:51 ----D---- C:\Documents and Settings\Myriam\Application Data\Sun
    2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\muweb.dll
    2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
    2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\mucltui.dll
    2009-04-03 15:11:52 ----D---- C:\Documents and Settings\Myriam\Application Data\Adobe
    2009-04-03 15:00:28 ----HD---- C:\WINDOWS\system32\GroupPolicy
    2009-04-03 14:58:43 ----D---- C:\Program Files\Avira
    2009-04-03 14:58:43 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
    2009-04-03 14:57:50 ----D---- C:\WINDOWS\pss
    2009-04-03 14:54:21 ----D---- C:\Program Files\SLD Codec Pack
    2009-04-03 14:53:51 ----D---- C:\Program Files\VideoLAN
    2009-04-03 14:53:31 ----D---- C:\Program Files\Microsoft
    2009-04-03 14:53:19 ----D---- C:\Program Files\Windows Live SkyDrive
    2009-04-03 14:53:01 ----D---- C:\Program Files\Windows Live
    2009-04-03 14:52:10 ----D---- C:\Program Files\Winamp
    2009-04-03 14:52:10 ----D---- C:\Documents and Settings\Myriam\Application Data\Winamp
    2009-04-03 14:50:50 ----D---- C:\Program Files\Fichiers communs\Windows Live
    2009-04-03 14:47:35 ----D---- C:\Documents and Settings\All Users\Application Data\2DBoy
    2009-04-03 14:47:21 ----D---- C:\Program Files\WorldOfGoo
    2009-04-03 14:46:55 ----D---- C:\WINDOWS\system32\Lang
    2009-04-03 14:45:57 ----D---- C:\WINDOWS\system32\RTCOM
    2009-04-03 14:45:56 ----A---- C:\WINDOWS\system32\ksuser.dll
    2009-04-03 14:45:34 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$
    2009-04-03 14:45:31 ----A---- C:\WINDOWS\vncutil.exe
    2009-04-03 14:45:31 ----A---- C:\WINDOWS\SOUNDMAN.EXE
    2009-04-03 14:45:31 ----A---- C:\WINDOWS\SkyTel.exe
    2009-04-03 14:45:31 ----A---- C:\WINDOWS\RtlUpd.exe
    2009-04-03 14:45:30 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
    2009-04-03 14:45:30 ----A---- C:\WINDOWS\RTLCPL.EXE
    2009-04-03 14:45:30 ----A---- C:\WINDOWS\RtkAudioService.exe
    2009-04-03 14:45:29 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-04-03 14:45:29 ----D---- C:\Program Files\Realtek
    2009-04-03 14:45:29 ----A---- C:\WINDOWS\RTHDCPL.EXE
    2009-04-03 14:45:29 ----A---- C:\WINDOWS\MicCal.exe
    2009-04-03 14:45:29 ----A---- C:\WINDOWS\ALCWZRD.EXE
    2009-04-03 14:45:29 ----A---- C:\WINDOWS\ALCMTR.EXE
    2009-04-03 14:45:27 ----A---- C:\WINDOWS\RtlExUpd.dll
    2009-04-03 03:22:05 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
    2009-04-03 03:22:02 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
    2009-04-03 03:21:59 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
    2009-04-03 03:21:55 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
    2009-04-03 03:21:50 ----HDC---- C:\WINDOWS\$NtUninstallKB958215$
    2009-04-03 03:21:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
    2009-04-03 03:21:43 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
    2009-04-03 03:21:39 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
    2009-04-03 03:21:35 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
    2009-04-03 03:21:31 ----HDC---- C:\WINDOWS\$NtUninstallKB954156_WM9L$
    2009-04-03 03:21:28 ----HDC---- C:\WINDOWS\$NtUninstallKB960714$
    2009-04-03 03:21:21 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
    2009-04-03 03:21:10 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
    2009-04-03 03:20:52 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
    2009-04-03 03:20:45 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
    2009-04-03 03:20:42 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
    2009-04-03 03:20:39 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
    2009-04-03 03:20:36 ----HDC---- C:\WINDOWS\$NtUninstallKB923689$
    2009-04-03 03:20:28 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
    2009-04-03 03:20:25 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
    2009-04-03 03:20:20 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
    2009-04-03 03:20:17 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
    2009-04-03 03:20:14 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
    2009-04-03 03:20:10 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
    2009-04-03 03:20:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
    2009-04-03 03:20:03 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
    2009-04-03 03:20:00 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
    2009-04-03 03:19:57 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
    2009-04-03 03:19:53 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
    2009-04-03 03:19:50 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
    2009-04-03 03:19:49 ----A---- C:\WINDOWS\system32\wmpns.dll
    2009-04-03 03:19:45 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP10$
    2009-04-03 00:22:22 ----D---- C:\WINDOWS\system32\CatRoot_bak
    2009-04-02 20:56:29 ----D---- C:\Documents and Settings\Myriam\Application Data\Mozilla
    2009-04-02 20:56:26 ----D---- C:\Program Files\Mozilla Firefox
    2009-04-02 19:50:51 ----SHD---- C:\RECYCLER
    2009-04-02 19:47:22 ----D---- C:\WINDOWS\nview
    2009-04-02 19:47:21 ----A---- C:\WINDOWS\system32\nvudisp.exe
    2009-04-02 19:42:21 ----D---- C:\WINDOWS\system32\SoftwareDistribution
    2009-04-02 19:39:24 ----A---- C:\WINDOWS\system32\CapabilityTable.exe
    2009-04-02 19:39:17 ----N---- C:\WINDOWS\system32\nvuide.exe
    2009-04-02 19:39:17 ----D---- C:\WINDOWS\system32\ReinstallBackups
    2009-04-02 19:39:05 ----A---- C:\WINDOWS\system32\nvunrm.exe
    2009-04-02 19:39:04 ----A---- C:\WINDOWS\system32\nvusmb.exe
    2009-04-02 19:38:47 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
    2009-04-02 19:38:35 ----D---- C:\NVIDIA
    2009-04-02 17:06:53 ----A---- C:\XPSP2+_Version.txt
    2009-04-02 17:06:46 ----D---- C:\Documents and Settings\Myriam\Application Data\Identities
    2009-04-02 17:06:44 ----HD---- C:\Program Files\Uninstall Information
    2009-04-02 17:06:31 ----A---- C:\WINDOWS\system32\YourCPLconfig.txt
    2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\javaws.exe
    2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\javaw.exe
    2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\java.exe
    2009-04-02 17:05:36 ----D---- C:\Program Files\Java
    2009-04-02 17:05:35 ----D---- C:\Program Files\Fichiers communs\Java
    2009-04-02 17:05:32 ----D---- C:\Documents and Settings\Myriam\Application Data\Macromedia
    2009-04-02 17:05:28 ----D---- C:\Program Files\Fichiers communs\InstallShield
    2009-04-02 17:04:54 ----D---- C:\Program Files\Fichiers communs\Adobe
    2009-04-02 17:04:53 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-04-02 17:04:15 ----D---- C:\Program Files\Adobe
    2009-04-02 17:04:12 ----D---- C:\Program Files\Messenger
    2009-04-02 17:04:03 ----D---- C:\Program Files\Photo Story 3 for Windows
    2009-04-02 17:03:56 ----HDC---- C:\WINDOWS\$NtUninstallKB917734_WMP10$
    2009-04-02 17:03:47 ----HDC---- C:\WINDOWS\$NtUninstallKB911565$
    2009-04-02 17:03:39 ----HDC---- C:\WINDOWS\$NtUninstallKB902344$
    2009-04-02 17:03:31 ----HDC---- C:\WINDOWS\$NtUninstallKB888656$
    2009-04-02 17:03:24 ----D---- C:\WINDOWS\system32\windows media
    2009-04-02 17:03:22 ----HD---- C:\WINDOWS\msdownld.tmp
    2009-04-02 17:03:21 ----D---- C:\Program Files\Windows Media Components
    2009-04-02 17:03:19 ----D---- C:\Program Files\WMV9_VCM
    2009-04-02 17:02:36 ----D---- C:\Program Files\Microsoft Office
    2009-04-02 17:02:35 ----D---- C:\Program Files\Windows Journal Viewer
    2009-04-02 17:01:33 ----D---- C:\WINDOWS\system32\URTTEMP
    2009-04-02 16:59:42 ----RSD---- C:\WINDOWS\assembly
    2009-04-02 16:59:31 ----D---- C:\WINDOWS\Microsoft.NET
    2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\WgaTray.exe
    2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\WgaLogon.dll
    2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\LegitCheckControl.dll
    2009-04-02 16:58:52 ----A---- C:\WINDOWS\system32\MRT.exe
    2009-04-02 16:58:47 ----HDC---- C:\WINDOWS\$NtUninstallKB917953$
    2009-04-02 16:58:19 ----HDC---- C:\WINDOWS\$NtUninstallKB867282$
    2009-04-02 16:58:07 ----HDC---- C:\WINDOWS\$NtUninstallKB885894$
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\wul.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\VB6STKIT.DLL
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\VB6FR.DLL
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\TweakUi.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\SMPSeesaw.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\shman.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\Sherlock.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\jrview.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\FlushCode.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\faview.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\Extinction.exe
    2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\autoruns.exe
    2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\YourCPLconfig_Instructions.txt
    2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\YourCPL_ReadMe.txt
    2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\pernille.txt
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\wul_lng.ini
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\shman_lng.ini
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\pernille.ini
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\oeminfo.ini
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\jrview_lng.ini
    2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\faview_lng.ini
    2009-04-02 16:57:42 ----D---- C:\Program Files\UTILS
    2009-04-02 16:57:42 ----D---- C:\Program Files\JEUX
    2009-04-02 16:57:10 ----ASH---- C:\Documents and Settings\Myriam\Application Data\desktop.ini
    2009-04-02 16:57:09 ----SD---- C:\Documents and Settings\Myriam\Application Data\Microsoft
    2009-04-02 16:56:27 ----D---- C:\WINDOWS\SoftwareDistribution
    2009-04-02 16:56:27 ----D---- C:\WINDOWS\Prefetch
    2009-04-02 16:56:26 ----SD---- C:\WINDOWS\system32\Microsoft
    2009-04-02 16:56:26 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-04-02 16:30:27 ----D---- C:\WINDOWS\system32\xircom
    2009-04-02 16:30:27 ----D---- C:\WINDOWS\srchasst
    2009-04-02 16:30:27 ----D---- C:\Program Files\xerox
    2009-04-02 16:30:27 ----D---- C:\Program Files\microsoft frontpage
    2009-04-02 16:30:08 ----D---- C:\Program Files\Windows Media Connect 2
    2009-04-02 16:30:07 ----A---- C:\WINDOWS\system32\spupdsvc.exe
    2009-04-02 16:30:02 ----D---- C:\WINDOWS\RegisteredPackages
    2009-04-02 16:29:48 ----HD---- C:\WINDOWS\$hf_mig$
    2009-04-02 16:29:34 ----A---- C:\WINDOWS\control.ini
    2009-04-02 16:29:34 ----A---- C:\AUTOEXEC.BAT
    2009-04-02 16:29:26 ----A---- C:\WINDOWS\OEWABLog.txt
    2009-04-02 16:29:22 ----A---- C:\WINDOWS\system32\mapi32.dll
    2009-04-02 16:28:41 ----SD---- C:\WINDOWS\Downloaded Program Files
    2009-04-02 16:28:41 ----RD---- C:\WINDOWS\Offline Web Pages
    2009-04-02 16:28:41 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
    2009-04-02 16:28:36 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
    2009-04-02 16:28:32 ----HD---- C:\Program Files\WindowsUpdate
    2009-04-02 16:28:05 ----A---- C:\WINDOWS\system32\atrace.dll
    2009-04-02 16:28:04 ----A---- C:\WINDOWS\system32\desktop.ini
    2009-04-02 16:28:04 ----A---- C:\WINDOWS\desktop.ini
    2009-04-02 16:28:01 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
    2009-04-02 16:27:59 ----D---- C:\Program Files\Fichiers communs\Services
    2009-04-02 16:27:59 ----A---- C:\WINDOWS\system32\acctres.dll
    2009-04-02 16:27:56 ----SD---- C:\WINDOWS\Tasks
    2009-04-02 16:27:56 ----A---- C:\WINDOWS\system32\icfgnt5.dll
    2009-04-02 16:27:55 ----D---- C:\Program Files\Fichiers communs\MSSoap
    2009-04-02 16:27:54 ----D---- C:\WINDOWS\system32\Macromed
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuweb.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wups.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wucltui.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauserv.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuaueng1.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuaueng.dll
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauclt1.exe
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauclt.exe
    2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuapi.dll
    2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
    2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\qmgr.dll
    2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\bitsprx3.dll
    2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\bitsprx2.dll
    2009-04-02 16:27:47 ----D---- C:\Program Files\Movie Maker
    2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrslv.dll
    2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrdm.dll
    2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrcdlg.dll
    2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\racpldlg.dll
    2009-04-02 16:27:40 ----D---- C:\WINDOWS\system32\Restore
    2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srsvc.dll
    2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srrstr.dll
    2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srclient.dll
    2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\fltMc.exe
    2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\fltlib.dll
    2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\nmmkcert.dll
    2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\mnmdd.dll
    2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\isrdbg32.dll
    2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\ils.dll
    2009-04-02 16:27:38 ----A---- C:\WINDOWS\system32\msconf.dll
    2009-04-02 16:27:38 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
    2009-04-02 16:27:36 ----D---- C:\Program Files\NetMeeting
    2009-04-02 16:27:36 ----A---- C:\WINDOWS\system32\msoert2.dll
    2009-04-02 16:27:36 ----A---- C:\WINDOWS\system32\msoeacct.dll
    2009-04-02 16:27:35 ----A---- C:\WINDOWS\system32\inetres.dll
    2009-04-02 16:27:35 ----A---- C:\WINDOWS\system32\inetcomm.dll
    2009-04-02 16:27:33 ----D---- C:\Program Files\Outlook Express
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\schedsvc.dll
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\mstinit.exe
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\mstask.dll
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\isign32.dll
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\inetcfg.dll
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\icwphbk.dll
    2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\icwdial.dll
    2009-04-02 16:27:28 ----D---- C:\Program Files\Fichiers communs\System
    2009-04-02 16:27:23 ----D---- C:\Program Files\Internet Explorer
    2009-04-02 16:26:57 ----D---- C:\Program Files\ComPlus Applications
    2009-04-02 16:26:55 ----A---- C:\WINDOWS\vbaddin.ini
    2009-04-02 16:26:55 ----A---- C:\WINDOWS\vb.ini
    2009-04-02 16:26:51 ----D---- C:\WINDOWS\Registration
    2009-04-02 16:26:45 ----D---- C:\Program Files\Windows Media Player
    2009-04-02 16:26:31 ----D---- C:\Program Files\MSN Gaming Zone
    2009-04-02 16:26:31 ----A---- C:\WINDOWS\system32\write.exe
    2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\sndvol32.exe
    2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\hticons.dll
    2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avwav.dll
    2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avtapi.dll
    2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avmeter.dll
    2009-04-02 16:26:22 ----A---- C:\WINDOWS\system32\winchat.exe
    2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\sol.exe
    2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\getuname.dll
    2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\charmap.exe
    2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\calc.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\winmine.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\usrlogon.cmd
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\tsshutdn.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\tskill.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\reset.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\mshearts.exe
    2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\freecell.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tslabels.ini
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tsdiscon.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tscon.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\shadow.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\rwinsta.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\regini.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\qwinsta.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\qappsrv.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\msg.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\logoff.exe
    2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\cdmodem.dll
    2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxlegih.dll
    2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxex.dll
    2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxdm.dll
    2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\msdtcprf.ini
    2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
    2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\stclient.dll
    2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comsnap.dll
    2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comrepl.dll
    2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comaddin.dll
    2009-04-02 16:26:09 ----A---- C:\WINDOWS\system32\wmimgmt.msc
    2009-04-02 16:26:08 ----A---- C:\WINDOWS\system32\accwiz.exe
    2009-04-02 16:26:07 ----D---- C:\Program Files\Windows NT
    2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\sndrec32.exe
    2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\mspaint.exe
    2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\mplay32.exe
    2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\hypertrm.dll
    2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
    2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\spider.exe
    2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\clipbrd.exe
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\tscupgrd.exe
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\termsrv.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\sessmgr.exe
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\remotepg.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdshost.exe
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdsaddin.exe
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdpwsx.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdpsnd.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdchost.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\mstscax.dll
    2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\mstsc.exe
    2009-04-02 16:26:04 ----D---- C:\WINDOWS\system32\MsDtc
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\rdpclip.exe
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\qprocess.exe
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\mtxoci.dll
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\msdtcprx.dll
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\icaapi.dll
    2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\cfgbkend.dll
    2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\xolehlp.dll
    2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtctm.dll
    2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtclog.dll
    2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtc.exe
    2009-04-02 16:26:02 ----D---- C:\WINDOWS\system32\Com
    2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\colbact.dll
    2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\clbcatex.dll
    2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrvut.dll
    2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrvps.dll
    2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrv.dll
    2009-04-02 16:26:01 ----A---- C:\WINDOWS\system32\comuid.dll
    2009-04-02 16:26:01 ----A---- C:\WINDOWS\system32\comsvcs.dll
    2009-04-02 16:26:00 ----A---- C:\WINDOWS\system32\clbcatq.dll
    2009-04-02 16:25:56 ----A---- C:\WINDOWS\system32\servdeps.dll
    2009-04-02 16:25:56 ----A---- C:\WINDOWS\system32\mmfutil.dll
    2009-04-02 16:25:55 ----A---- C:\WINDOWS\system32\licwmi.dll
    2009-04-02 16:25:55 ----A---- C:\WINDOWS\system32\cmprops.dll
    2009-04-02 15:26:57 ----A---- C:\WINDOWS\system32\h323log.txt
    2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\wshirda.dll
    2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\irmon.dll
    2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\irftp.exe
    2009-04-02 15:23:51 ----A---- C:\WINDOWS\system32\usbui.dll
    2009-04-02 15:23:04 ----A---- C:\WINDOWS\imsins.BAK
    2009-04-02 15:23:01 ----SHD---- C:\WINDOWS\Installer
    2009-04-02 15:23:01 ----D---- C:\Program Files\Fichiers communs\ODBC
    2009-04-02 15:23:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-04-02 15:23:01 ----A---- C:\WINDOWS\ODBCINST.INI
    2009-04-02 15:22:58 ----RD---- C:\Program Files
    2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs\SpeechEngines
    2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs
    2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
    2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
    2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdazel.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdycc.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbduzb.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdur.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdtat.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdru1.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdru.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdmon.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdbu.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdblr.dll
    2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdaze.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhept.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe.dll
    2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
    2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
    2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlv.dll
    2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
    2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlt.dll
    2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdest.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdycl.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdsl.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdro.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdpl.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdhu.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcr.dll
    2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
    2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\spxcoins.dll
    2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\irclass.dll
    2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\dgsetup.dll
    2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
    2009-04-02 15:22:45 ----A---- C:\WINDOWS\system32\EqnClass.Dll
    2009-04-02 15:22:43 ----N---- C:\WINDOWS\system32\CONFIG.TMP
    2009-04-02 15:22:43 ----A---- C:\WINDOWS\TASKMAN.EXE
    2009-04-02 15:22:43 ----A---- C:\WINDOWS\system32\batt.dll
    2009-04-02 15:22:42 ----A---- C:\WINDOWS\system32\storprop.dll
    2009-04-02 15:22:42 ----A---- C:\WINDOWS\notepad.exe
    2009-04-02 15:22:36 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
    2009-04-02 15:22:23 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-04-02 15:22:23 ----D---- C:\WINDOWS\system32\CatRoot
    2009-04-02 15:22:18 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft
    2009-04-02 15:22:02 ----A---- C:\WINDOWS\setuplog.txt
    2009-04-02 15:21:59 ----SHD---- C:\System Volume Information
    2009-04-02 15:21:59 ----D---- C:\Documents and Settings
    2009-04-02 15:21:06 ----SH---- C:\boot.ini
    2009-04-02 15:20:20 ----D---- C:\applications
    2009-04-02 15:17:46 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-04-02 15:17:46 ----RSD---- C:\WINDOWS\Fonts
    2009-04-02 15:17:46 ----RD---- C:\WINDOWS\Web
    2009-04-02 15:17:46 ----HD---- C:\WINDOWS\inf
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\WinSxS
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\twain_32
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Temp
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\wins
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\wbem
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\usmt
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\spool
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ShellExt
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\Setup
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ras
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\PreInstall
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\oobe
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\npp
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\mui
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\inetsrv
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\IME
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\icsxml
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ias
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\export
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\en
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\drivers
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\dhcp
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\config
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\3com_dmi
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\3076
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\2052
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1054
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1042
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1041
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1037
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1036
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1033
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1031
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1028
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1025
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\system
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\security
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Resources
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\repair
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Provisioning
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\PeerNet
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\pchealth
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\mui
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\msapps
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\msagent
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Media
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\java
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\ime
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Help
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\ehome
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Driver Cache
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Debug
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Cursors
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Connection Wizard
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\Config
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\AppPatch
    2009-04-02 15:17:46 ----D---- C:\WINDOWS\addins
    2009-04-02 15:17:46 ----D---- C:\WINDOWS
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nwiz.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwssr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwss.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrszht.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrszhc.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrstr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsth.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssv.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssk.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsru.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsptb.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrspt.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrspl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsno.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsnl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsko.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsja.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsit.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrshu.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrshe.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsfr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsfi.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsesm.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrses.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrseng.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsel.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsde.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsda.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrscs.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsar.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwimg.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwdmcpl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwddi.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvvitvsr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvvitvs.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvsvc32.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvshell.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrszht.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrszhc.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrstr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsth.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssv.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssk.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsru.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsptb.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrspt.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrspl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsno.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsnl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsko.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsja.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsit.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrshu.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrshe.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsfr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsfi.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsesm.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrses.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrseng.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsel.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsde.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsda.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrscs.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsar.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvoglnt.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmoblsr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmobls.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmctray.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccssr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccss.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccsrs.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccs.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nview.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvgamesr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvgames.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdspsch.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdispsr.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdisps.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcuvid.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcuda.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcpluir.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcplui.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcpl.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcolor.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcodins.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcod.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvappbar.exe
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvapi.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nv4_disp.dll
    2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\keystone.exe

    ======List of files/folders modified in the last 1 months======

    2009-04-03 18:01:27 ----A---- C:\WINDOWS\win.ini
    2009-04-03 18:01:27 ----A---- C:\WINDOWS\system.ini

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
    R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-10-30 75072]
    R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-11-08 21248]
    R2 irda;Protocole IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2004-08-04 87424]
    R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
    R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
    R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-03-04 5045760]
    R3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-03-27 6280416]
    R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-03-22 52736]
    R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-03-22 18944]
    R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2006-06-20 30080]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2006-06-20 17152]
    R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
    S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
    S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\I:\EVEREST Ultimate Edition 2007 v3.80.951 Beta\kerneld.wnt []
    S3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-28 9600]
    S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-06-20 12288]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AntiVirScheduler;Planificateur Avira AntiVir Personal - Free Antivirus; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-15 68865]
    R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-15 151297]
    R2 Irmon;Moniteur infrarouge; C:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
    R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-03-27 163908]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
    S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
    S3 WMConnectCDS;Service Windows Media Connect; C:\Program Files\Windows Media Connect 2\wmccds.exe [2005-10-06 856064]

    -----------------EOF-----------------
    info.txt logfile of random's system information tool 1.06 2009-04-16 00:30:49

    ======Uninstall list======

    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Reader 7.0.8 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70800000002}
    Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
    Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
    Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
    Codeur Windows Media Série 9-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
    Codeur Windows Media Série 9-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
    Correctif pour Windows XP (KB935448)-->"C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
    Correctif Windows XP - KB867282-->C:\WINDOWS\$NtUninstallKB867282$\spuninst\spuninst.exe
    Correctif Windows XP - KB885894-->C:\WINDOWS\$NtUninstallKB885894$\spuninst\spuninst.exe
    Galerie de photos Windows Live-->MsiExec.exe /X{44E54A81-9D91-4AA1-9417-80AFF134F5FF}
    High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
    HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
    Hotfix for Windows Media Format SDK (KB902344)-->"C:\WINDOWS\$NtUninstallKB902344$\spuninst\spuninst.exe"
    Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
    Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
    J2SE Runtime Environment 5.0 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150070}
    Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
    Kaspersky Online Scanner-->C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe
    Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Macromedia Flash Player 8-->C:\WINDOWS\system32\Macromed\Flash\UninstFl.exe
    Macromedia Shockwave Player-->MsiExec.exe /X{838A1BC9-95CA-4880-9BE3-2A7D23600A2B}
    Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
    Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
    Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
    Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
    Microsoft Office PowerPoint Viewer 2003-->MsiExec.exe /X{90AF040C-6000-11D3-8CFE-0150048383C9}
    Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
    Microsoft Windows Media Video 9 VCM-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmv9vcm.inf, Uninstall
    Mise à jour de sécurité pour le Codeur Windows Media (KB954156)-->"C:\WINDOWS\$NtUninstallKB954156_WM9L$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB913433)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB913433.inf
    Mise à jour de sécurité pour Windows XP (KB917953)-->"C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923689)-->"C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
    Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
    Mozilla Firefox (3.0.8)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
    OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
    Orange Plug-in messagerie vocale 888-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{16E79B1D-D1C2-4CA6-8B23-F4D890E0DCB9}\Setup.exe" -l0x40c --AddRemove
    Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
    Photorécit 3 pour Windows-->MsiExec.exe /I{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}
    Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
    Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
    SLD Codec Pack-->C:\Program Files\SLD Codec Pack\uninstall.exe
    Visionneuse Journal Windows Microsoft-->MsiExec.exe /X{43DCF766-6838-4F9A-8C91-D92DA586DFA8}
    VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe
    Winamp-->"C:\Program Files\Winamp\UninstWA.exe"
    Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
    Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
    Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
    Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
    Windows Live Sync-->MsiExec.exe /X{9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E}
    Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    Windows Media Player 10 Hotfix - KB888656-->"C:\WINDOWS\$NtUninstallKB888656$\spuninst\spuninst.exe"
    Windows Messenger 5.1-->MsiExec.exe /I{9D1C26BD-E792-4159-9D16-07EA222D8EF0}

    Securitycenter WMI appears to be broken

    ======System event log======

    Computer Name: MYMY
    Event Code: 7
    Message: Le périphérique \Device\CdRom0 comporte un bloc défectueux.

    Record Number: 5
    Source Name: Cdrom
    Time Written: 20090402162637.000000+120
    Event Type: erreur
    User:

    Computer Name: MYMY
    Event Code: 6011
    Message: Le nom NetBIOS et le nom de l'hôte DNS de cet ordinateur ont été modifiés de MACHINENAME vers MYMY.

    Record Number: 4
    Source Name: EventLog
    Time Written: 20090402162514.000000+120
    Event Type: Informations
    User:

    Computer Name: MACHINENAME
    Event Code: 2
    Message: Pendant la validation de \Device\Serial0 en tant que port série, une FIFO a été détectée. La FIFO sera utilisée.

    Record Number: 3
    Source Name: Serial
    Time Written: 20090402152225.000000+120
    Event Type: Informations
    User:

    Computer Name: MACHINENAME
    Event Code: 6005
    Message: Le service d'Enregistrement d'événement a démarré.

    Record Number: 2
    Source Name: EventLog
    Time Written: 20090402152204.000000+120
    Event Type: Informations
    User:

    Computer Name: MACHINENAME
    Event Code: 6009
    Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 2 Uniprocessor Free.

    Record Number: 1
    Source Name: EventLog
    Time Written: 20090402152204.000000+120
    Event Type: Informations
    User:

    =====Application event log=====

    Computer Name: MYMY
    Event Code: 1000
    Message: Les compteurs de performances pour le service MSDTC (MSDTC) ont été chargés.
    Les données d'enregistrement contiennent les nouvelles valeurs d'index
    assignées à ce service.

    Record Number: 5
    Source Name: LoadPerf
    Time Written: 20090402162648.000000+120
    Event Type: Informations
    User:

    Computer Name: MYMY
    Event Code: 1000
    Message: Les compteurs de performances pour le service TermService (Services Terminal Server) ont été chargés.
    Les données d'enregistrement contiennent les nouvelles valeurs d'index
    assignées à ce service.

    Record Number: 4
    Source Name: LoadPerf
    Time Written: 20090402162645.000000+120
    Event Type: Informations
    User:

    Computer Name: MYMY
    Event Code: 1000
    Message: Les compteurs de performances pour le service RemoteAccess (Routage et accès distant) ont été chargés.
    Les données d'enregistrement contiennent les nouvelles valeurs d'index
    assignées à ce service.

    Record Number: 3
    Source Name: LoadPerf
    Time Written: 20090402162546.000000+120
    Event Type: Informations
    User:

    Computer Name: MYMY
    Event Code: 1000
    Message: Les compteurs de performances pour le service PSched (PSched) ont été chargés.
    Les données d'enregistrement contiennent les nouvelles valeurs d'index
    assignées à ce service.

    Record Number: 2
    Source Name: LoadPerf
    Time Written: 20090402162523.000000+120
    Event Type: Informations
    User:

    Computer Name: MYMY
    Event Code: 1000
    Message: Les compteurs de performances pour le service RSVP (QoS RSVP) ont été chargés.
    Les données d'enregistrement contiennent les nouvelles valeurs d'index
    assignées à ce service.

    Record Number: 1
    Source Name: LoadPerf
    Time Written: 20090402162522.000000+120
    Event Type: Informations
    User:

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
    "windir"=%SystemRoot%
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_LEVEL"=15
    "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 95 Stepping 2, AuthenticAMD
    "PROCESSOR_REVISION"=5f02
    "NUMBER_OF_PROCESSORS"=1
    "TEMP"=%USERPROFILE%\Local Settings\Temp
    "TMP"=%USERPROFILE%\Local Settings\Temp
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH

    -----------------EOF-----------------
    Lassé par la pub ? Créez un compte

    Créer un nouveau sujet

    Tom's guide dans le monde