Cheval de troie
Forum Sécurité - Virus : Cheval de troie
bonjour!! je viens chercher de l'aide!! en effet depuis hier mon antivirus(avira antivir) détecte ceci:
Dans le fichier 'C:\WINDOWS\file.bat'
un virus ou un programme indésirable 'TR/Proxy.Small.VO.1' [trojan] a été détecté.
je fais donc l'action supprimer mais à chaque fois que je redémarre mon ordi il le retrouve
je suis une bille en informatique, est ce que quelqu'un peut m'aiderà m'en débarrasser une bone fois pour toute? merci!
Bonjour,
Télécharge Random's System Information Tool (RSIT) (de random/random) et sauvegarde-le sur le Bureau.
- Double-clique sur RSIT.exe afin de lancer RSIT.
- Clique Continue à l'écran Disclaimer.
- Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
- Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (qui sera affiché)
ainsi que de info.txt (qui sera réduit dans la Barre des Tâches)
- NB : Les rapports sont sauvegardés dans le dossier C:\rsit
- Veille bien à me poster l'intégralité des rapports, vérifie qu'ils soient complets une fois que tu les as postés.
Répondre à Angeldark
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 231 GB (97%) free of 238 GB
Total RAM: 2047 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:26:06, on 12/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\services.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Documents and Settings\Myriam\Bureau\RSIT.exe
C:\Program Files\trend micro\Myriam.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/search?q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [services] C:\WINDOWS\services.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_02] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\msagent" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_03] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Help\Tours" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_04] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_05] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_06] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_07] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'SERVICE RÉSEAU')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
--
End of file - 4695 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-01-12 63128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-03-27 13684736]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-03-27 86016]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-03-02 17530368]
"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]
"services"=C:\WINDOWS\services.exe [2009-04-11 44544]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2001-10-26 3584]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, digiwet.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=1
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SynchronousMachineGroupPolicy"=0
"SynchronousUserGroupPolicy"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=219
"NoStrCmpLogical"=1
"NoResolveTrack"=0
"NoResolveSearch"=0
"NoRun"=0
"NoFind"=0
"NoSMMyPictures"=0
"NoStartMenuMFUprogramsList"=0
"NoUserNameInStartMenu"=0
"NoStartMenuMorePrograms"=0
"MaxRecentDocs"=15
"NoInstrumentation"=0
"MemCheckBoxInRunDlg"=1
"NoSMBalloonTip"=0
"DisallowCpl"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"ForceClassicControlPanel"=
"NoSimpleStartMenu"=
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
======List of files/folders created in the last 1 months======
2009-04-12 22:26:00 ----D---- C:\rsit
2009-04-12 22:26:00 ----D---- C:\Program Files\trend micro
2009-04-11 15:35:06 ----A---- C:\WINDOWS\services.exe
2009-04-11 15:34:40 ----A---- C:\WINDOWS\system32\digiwet.dll
2009-04-10 23:04:37 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2009-04-10 23:04:36 ----D---- C:\WINDOWS\system32\DirectX
2009-04-10 23:04:34 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2009-04-10 23:04:20 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2009-04-09 21:12:25 ----D---- C:\Documents and Settings\Myriam\Application Data\AdobeUM
2009-04-07 16:37:47 ----D---- C:\Documents and Settings\Myriam\Application Data\vlc
2009-04-07 13:42:27 ----D---- C:\Documents and Settings\Myriam\Application Data\OpenOffice.org
2009-04-07 12:44:18 ----A---- C:\WINDOWS\npornap.INI
2009-04-07 12:40:56 ----D---- C:\Program Files\Orange
2009-04-05 18:05:59 ----HDC---- C:\WINDOWS\$NtUninstallKB935448$
2009-04-03 17:42:59 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2009-04-03 17:41:15 ----N---- C:\WINDOWS\system32\spmsg.dll
2009-04-03 17:31:12 ----D---- C:\Program Files\JRE
2009-04-03 17:31:11 ----D---- C:\Program Files\OpenOffice.org 3
2009-04-03 17:30:51 ----D---- C:\Documents and Settings\Myriam\Application Data\Sun
2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\muweb.dll
2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\mucltui.dll
2009-04-03 15:11:52 ----D---- C:\Documents and Settings\Myriam\Application Data\Adobe
2009-04-03 15:00:28 ----HD---- C:\WINDOWS\system32\GroupPolicy
2009-04-03 14:58:43 ----D---- C:\Program Files\Avira
2009-04-03 14:58:43 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2009-04-03 14:57:50 ----D---- C:\WINDOWS\pss
2009-04-03 14:54:21 ----D---- C:\Program Files\SLD Codec Pack
2009-04-03 14:53:51 ----D---- C:\Program Files\VideoLAN
2009-04-03 14:53:31 ----D---- C:\Program Files\Microsoft
2009-04-03 14:53:19 ----D---- C:\Program Files\Windows Live SkyDrive
2009-04-03 14:53:01 ----D---- C:\Program Files\Windows Live
2009-04-03 14:52:10 ----D---- C:\Program Files\Winamp
2009-04-03 14:52:10 ----D---- C:\Documents and Settings\Myriam\Application Data\Winamp
2009-04-03 14:50:50 ----D---- C:\Program Files\Fichiers communs\Windows Live
2009-04-03 14:47:35 ----D---- C:\Documents and Settings\All Users\Application Data\2DBoy
2009-04-03 14:47:21 ----D---- C:\Program Files\WorldOfGoo
2009-04-03 14:46:55 ----D---- C:\WINDOWS\system32\Lang
2009-04-03 14:45:57 ----D---- C:\WINDOWS\system32\RTCOM
2009-04-03 14:45:56 ----A---- C:\WINDOWS\system32\ksuser.dll
2009-04-03 14:45:34 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$
2009-04-03 14:45:31 ----A---- C:\WINDOWS\vncutil.exe
2009-04-03 14:45:31 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2009-04-03 14:45:31 ----A---- C:\WINDOWS\SkyTel.exe
2009-04-03 14:45:31 ----A---- C:\WINDOWS\RtlUpd.exe
2009-04-03 14:45:30 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
2009-04-03 14:45:30 ----A---- C:\WINDOWS\RTLCPL.EXE
2009-04-03 14:45:30 ----A---- C:\WINDOWS\RtkAudioService.exe
2009-04-03 14:45:29 ----HD---- C:\Program Files\InstallShield Installation Information
2009-04-03 14:45:29 ----D---- C:\Program Files\Realtek
2009-04-03 14:45:29 ----A---- C:\WINDOWS\RTHDCPL.EXE
2009-04-03 14:45:29 ----A---- C:\WINDOWS\MicCal.exe
2009-04-03 14:45:29 ----A---- C:\WINDOWS\ALCWZRD.EXE
2009-04-03 14:45:29 ----A---- C:\WINDOWS\ALCMTR.EXE
2009-04-03 14:45:27 ----A---- C:\WINDOWS\RtlExUpd.dll
2009-04-03 03:22:05 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-04-03 03:22:02 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-04-03 03:21:59 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-04-03 03:21:55 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2009-04-03 03:21:50 ----HDC---- C:\WINDOWS\$NtUninstallKB958215$
2009-04-03 03:21:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-04-03 03:21:43 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-04-03 03:21:39 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-04-03 03:21:35 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-04-03 03:21:31 ----HDC---- C:\WINDOWS\$NtUninstallKB954156_WM9L$
2009-04-03 03:21:28 ----HDC---- C:\WINDOWS\$NtUninstallKB960714$
2009-04-03 03:21:21 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-04-03 03:21:10 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-04-03 03:20:52 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2009-04-03 03:20:45 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-04-03 03:20:42 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-04-03 03:20:39 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
2009-04-03 03:20:36 ----HDC---- C:\WINDOWS\$NtUninstallKB923689$
2009-04-03 03:20:28 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-04-03 03:20:25 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-04-03 03:20:20 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-04-03 03:20:17 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2009-04-03 03:20:14 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-04-03 03:20:10 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2009-04-03 03:20:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-04-03 03:20:03 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-04-03 03:20:00 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-04-03 03:19:57 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-04-03 03:19:53 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-04-03 03:19:50 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2009-04-03 03:19:49 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-04-03 03:19:45 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP10$
2009-04-03 00:22:22 ----D---- C:\WINDOWS\system32\CatRoot_bak
2009-04-02 20:56:29 ----D---- C:\Documents and Settings\Myriam\Application Data\Mozilla
2009-04-02 20:56:26 ----D---- C:\Program Files\Mozilla Firefox
2009-04-02 19:50:51 ----SHD---- C:\RECYCLER
2009-04-02 19:47:22 ----D---- C:\WINDOWS\nview
2009-04-02 19:47:21 ----A---- C:\WINDOWS\system32\nvudisp.exe
2009-04-02 19:42:21 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2009-04-02 19:39:24 ----A---- C:\WINDOWS\system32\CapabilityTable.exe
2009-04-02 19:39:17 ----N---- C:\WINDOWS\system32\nvuide.exe
2009-04-02 19:39:17 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-04-02 19:39:05 ----A---- C:\WINDOWS\system32\nvunrm.exe
2009-04-02 19:39:04 ----A---- C:\WINDOWS\system32\nvusmb.exe
2009-04-02 19:38:47 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2009-04-02 19:38:35 ----D---- C:\NVIDIA
2009-04-02 17:06:53 ----A---- C:\XPSP2+_Version.txt
2009-04-02 17:06:46 ----D---- C:\Documents and Settings\Myriam\Application Data\Identities
2009-04-02 17:06:44 ----HD---- C:\Program Files\Uninstall Information
2009-04-02 17:06:31 ----A---- C:\WINDOWS\system32\YourCPLconfig.txt
2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\javaws.exe
2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\javaw.exe
2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\java.exe
2009-04-02 17:05:36 ----D---- C:\Program Files\Java
2009-04-02 17:05:35 ----D---- C:\Program Files\Fichiers communs\Java
2009-04-02 17:05:32 ----D---- C:\Documents and Settings\Myriam\Application Data\Macromedia
2009-04-02 17:05:28 ----D---- C:\Program Files\Fichiers communs\InstallShield
2009-04-02 17:04:54 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-04-02 17:04:53 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-04-02 17:04:15 ----D---- C:\Program Files\Adobe
2009-04-02 17:04:12 ----D---- C:\Program Files\Messenger
2009-04-02 17:04:03 ----D---- C:\Program Files\Photo Story 3 for Windows
2009-04-02 17:03:56 ----HDC---- C:\WINDOWS\$NtUninstallKB917734_WMP10$
2009-04-02 17:03:47 ----HDC---- C:\WINDOWS\$NtUninstallKB911565$
2009-04-02 17:03:39 ----HDC---- C:\WINDOWS\$NtUninstallKB902344$
2009-04-02 17:03:31 ----HDC---- C:\WINDOWS\$NtUninstallKB888656$
2009-04-02 17:03:24 ----D---- C:\WINDOWS\system32\windows media
2009-04-02 17:03:22 ----HD---- C:\WINDOWS\msdownld.tmp
2009-04-02 17:03:21 ----D---- C:\Program Files\Windows Media Components
2009-04-02 17:03:19 ----D---- C:\Program Files\WMV9_VCM
2009-04-02 17:02:36 ----D---- C:\Program Files\Microsoft Office
2009-04-02 17:02:35 ----D---- C:\Program Files\Windows Journal Viewer
2009-04-02 17:01:33 ----D---- C:\WINDOWS\system32\URTTEMP
2009-04-02 16:59:42 ----RSD---- C:\WINDOWS\assembly
2009-04-02 16:59:31 ----D---- C:\WINDOWS\Microsoft.NET
2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\WgaTray.exe
2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\WgaLogon.dll
2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\LegitCheckControl.dll
2009-04-02 16:58:52 ----A---- C:\WINDOWS\system32\MRT.exe
2009-04-02 16:58:47 ----HDC---- C:\WINDOWS\$NtUninstallKB917953$
2009-04-02 16:58:19 ----HDC---- C:\WINDOWS\$NtUninstallKB867282$
2009-04-02 16:58:07 ----HDC---- C:\WINDOWS\$NtUninstallKB885894$
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\wul.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\VB6STKIT.DLL
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\VB6FR.DLL
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\TweakUi.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\SMPSeesaw.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\shman.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\Sherlock.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\jrview.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\FlushCode.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\faview.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\Extinction.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\autoruns.exe
2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\YourCPLconfig_Instructions.txt
2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\YourCPL_ReadMe.txt
2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\pernille.txt
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\wul_lng.ini
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\shman_lng.ini
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\pernille.ini
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\oeminfo.ini
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\jrview_lng.ini
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\faview_lng.ini
2009-04-02 16:57:42 ----D---- C:\Program Files\UTILS
2009-04-02 16:57:42 ----D---- C:\Program Files\JEUX
2009-04-02 16:57:10 ----ASH---- C:\Documents and Settings\Myriam\Application Data\desktop.ini
2009-04-02 16:57:09 ----SD---- C:\Documents and Settings\Myriam\Application Data\Microsoft
2009-04-02 16:56:27 ----D---- C:\WINDOWS\SoftwareDistribution
2009-04-02 16:56:27 ----D---- C:\WINDOWS\Prefetch
2009-04-02 16:56:26 ----SD---- C:\WINDOWS\system32\Microsoft
2009-04-02 16:56:26 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-04-02 16:30:27 ----D---- C:\WINDOWS\system32\xircom
2009-04-02 16:30:27 ----D---- C:\WINDOWS\srchasst
2009-04-02 16:30:27 ----D---- C:\Program Files\xerox
2009-04-02 16:30:27 ----D---- C:\Program Files\microsoft frontpage
2009-04-02 16:30:08 ----D---- C:\Program Files\Windows Media Connect 2
2009-04-02 16:30:07 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-04-02 16:30:02 ----D---- C:\WINDOWS\RegisteredPackages
2009-04-02 16:29:48 ----HD---- C:\WINDOWS\$hf_mig$
2009-04-02 16:29:34 ----A---- C:\WINDOWS\control.ini
2009-04-02 16:29:34 ----A---- C:\AUTOEXEC.BAT
2009-04-02 16:29:26 ----A---- C:\WINDOWS\OEWABLog.txt
2009-04-02 16:29:22 ----A---- C:\WINDOWS\system32\mapi32.dll
2009-04-02 16:28:41 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-04-02 16:28:41 ----RD---- C:\WINDOWS\Offline Web Pages
2009-04-02 16:28:41 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2009-04-02 16:28:36 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2009-04-02 16:28:32 ----HD---- C:\Program Files\WindowsUpdate
2009-04-02 16:28:05 ----A---- C:\WINDOWS\system32\atrace.dll
2009-04-02 16:28:04 ----A---- C:\WINDOWS\system32\desktop.ini
2009-04-02 16:28:04 ----A---- C:\WINDOWS\desktop.ini
2009-04-02 16:28:01 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2009-04-02 16:27:59 ----D---- C:\Program Files\Fichiers communs\Services
2009-04-02 16:27:59 ----A---- C:\WINDOWS\system32\acctres.dll
2009-04-02 16:27:56 ----SD---- C:\WINDOWS\Tasks
2009-04-02 16:27:56 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2009-04-02 16:27:55 ----D---- C:\Program Files\Fichiers communs\MSSoap
2009-04-02 16:27:54 ----D---- C:\WINDOWS\system32\Macromed
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuweb.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wups.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wucltui.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauserv.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuaueng.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauclt.exe
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuapi.dll
2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\qmgr.dll
2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2009-04-02 16:27:47 ----D---- C:\Program Files\Movie Maker
2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrslv.dll
2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrdm.dll
2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\racpldlg.dll
2009-04-02 16:27:40 ----D---- C:\WINDOWS\system32\Restore
2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srsvc.dll
2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srrstr.dll
2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srclient.dll
2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\fltMc.exe
2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\fltlib.dll
2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\mnmdd.dll
2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\ils.dll
2009-04-02 16:27:38 ----A---- C:\WINDOWS\system32\msconf.dll
2009-04-02 16:27:38 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2009-04-02 16:27:36 ----D---- C:\Program Files\NetMeeting
2009-04-02 16:27:36 ----A---- C:\WINDOWS\system32\msoert2.dll
2009-04-02 16:27:36 ----A---- C:\WINDOWS\system32\msoeacct.dll
2009-04-02 16:27:35 ----A---- C:\WINDOWS\system32\inetres.dll
2009-04-02 16:27:35 ----A---- C:\WINDOWS\system32\inetcomm.dll
2009-04-02 16:27:33 ----D---- C:\Program Files\Outlook Express
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\schedsvc.dll
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\mstinit.exe
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\mstask.dll
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\isign32.dll
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\inetcfg.dll
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\icwphbk.dll
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\icwdial.dll
2009-04-02 16:27:28 ----D---- C:\Program Files\Fichiers communs\System
2009-04-02 16:27:23 ----D---- C:\Program Files\Internet Explorer
2009-04-02 16:26:57 ----D---- C:\Program Files\ComPlus Applications
2009-04-02 16:26:55 ----A---- C:\WINDOWS\vbaddin.ini
2009-04-02 16:26:55 ----A---- C:\WINDOWS\vb.ini
2009-04-02 16:26:51 ----D---- C:\WINDOWS\Registration
2009-04-02 16:26:45 ----D---- C:\Program Files\Windows Media Player
2009-04-02 16:26:31 ----D---- C:\Program Files\MSN Gaming Zone
2009-04-02 16:26:31 ----A---- C:\WINDOWS\system32\write.exe
2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\sndvol32.exe
2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\hticons.dll
2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avwav.dll
2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avtapi.dll
2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avmeter.dll
2009-04-02 16:26:22 ----A---- C:\WINDOWS\system32\winchat.exe
2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\sol.exe
2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\getuname.dll
2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\charmap.exe
2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\calc.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\winmine.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\tskill.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\reset.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\mshearts.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\freecell.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tslabels.ini
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tscon.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\shadow.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\rwinsta.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\regini.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\qwinsta.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\qappsrv.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\msg.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\logoff.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\cdmodem.dll
2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxex.dll
2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxdm.dll
2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\stclient.dll
2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comsnap.dll
2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comrepl.dll
2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comaddin.dll
2009-04-02 16:26:09 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2009-04-02 16:26:08 ----A---- C:\WINDOWS\system32\accwiz.exe
2009-04-02 16:26:07 ----D---- C:\Program Files\Windows NT
2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\mplay32.exe
2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\hypertrm.dll
2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\spider.exe
2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\clipbrd.exe
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\termsrv.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\remotepg.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdshost.exe
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdchost.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\mstscax.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\mstsc.exe
2009-04-02 16:26:04 ----D---- C:\WINDOWS\system32\MsDtc
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\rdpclip.exe
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\qprocess.exe
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\mtxoci.dll
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\icaapi.dll
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\xolehlp.dll
2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtctm.dll
2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtclog.dll
2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtc.exe
2009-04-02 16:26:02 ----D---- C:\WINDOWS\system32\Com
2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\colbact.dll
2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\clbcatex.dll
2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrvut.dll
2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrvps.dll
2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrv.dll
2009-04-02 16:26:01 ----A---- C:\WINDOWS\system32\comuid.dll
2009-04-02 16:26:01 ----A---- C:\WINDOWS\system32\comsvcs.dll
2009-04-02 16:26:00 ----A---- C:\WINDOWS\system32\clbcatq.dll
2009-04-02 16:25:56 ----A---- C:\WINDOWS\system32\servdeps.dll
2009-04-02 16:25:56 ----A---- C:\WINDOWS\system32\mmfutil.dll
2009-04-02 16:25:55 ----A---- C:\WINDOWS\system32\licwmi.dll
2009-04-02 16:25:55 ----A---- C:\WINDOWS\system32\cmprops.dll
2009-04-02 15:26:57 ----A---- C:\WINDOWS\system32\h323log.txt
2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\wshirda.dll
2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\irmon.dll
2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\irftp.exe
2009-04-02 15:23:51 ----A---- C:\WINDOWS\system32\usbui.dll
2009-04-02 15:23:04 ----A---- C:\WINDOWS\imsins.BAK
2009-04-02 15:23:01 ----SHD---- C:\WINDOWS\Installer
2009-04-02 15:23:01 ----D---- C:\Program Files\Fichiers communs\ODBC
2009-04-02 15:23:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-04-02 15:23:01 ----A---- C:\WINDOWS\ODBCINST.INI
2009-04-02 15:22:58 ----RD---- C:\Program Files
2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs\SpeechEngines
2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs
2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdur.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdru.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdest.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdro.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\spxcoins.dll
2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\irclass.dll
2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\dgsetup.dll
2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2009-04-02 15:22:45 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2009-04-02 15:22:43 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2009-04-02 15:22:43 ----A---- C:\WINDOWS\TASKMAN.EXE
2009-04-02 15:22:43 ----A---- C:\WINDOWS\system32\batt.dll
2009-04-02 15:22:42 ----A---- C:\WINDOWS\system32\storprop.dll
2009-04-02 15:22:42 ----A---- C:\WINDOWS\notepad.exe
2009-04-02 15:22:36 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2009-04-02 15:22:23 ----D---- C:\WINDOWS\system32\CatRoot2
2009-04-02 15:22:23 ----D---- C:\WINDOWS\system32\CatRoot
2009-04-02 15:22:18 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-04-02 15:22:02 ----A---- C:\WINDOWS\setuplog.txt
2009-04-02 15:21:59 ----SHD---- C:\System Volume Information
2009-04-02 15:21:59 ----D---- C:\Documents and Settings
2009-04-02 15:21:06 ----SH---- C:\boot.ini
2009-04-02 15:20:20 ----D---- C:\applications
2009-04-02 15:17:46 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-04-02 15:17:46 ----RSD---- C:\WINDOWS\Fonts
2009-04-02 15:17:46 ----RD---- C:\WINDOWS\Web
2009-04-02 15:17:46 ----HD---- C:\WINDOWS\inf
2009-04-02 15:17:46 ----D---- C:\WINDOWS\WinSxS
2009-04-02 15:17:46 ----D---- C:\WINDOWS\twain_32
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Temp
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\wins
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\wbem
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\usmt
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\spool
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ShellExt
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\Setup
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ras
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\PreInstall
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\oobe
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\npp
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\mui
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\inetsrv
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\IME
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\icsxml
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ias
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\export
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\en
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\drivers
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\dhcp
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\config
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\3com_dmi
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\3076
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\2052
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1054
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1042
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1041
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1037
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1036
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1033
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1031
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1028
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1025
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system
2009-04-02 15:17:46 ----D---- C:\WINDOWS\security
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Resources
2009-04-02 15:17:46 ----D---- C:\WINDOWS\repair
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Provisioning
2009-04-02 15:17:46 ----D---- C:\WINDOWS\PeerNet
2009-04-02 15:17:46 ----D---- C:\WINDOWS\pchealth
2009-04-02 15:17:46 ----D---- C:\WINDOWS\mui
2009-04-02 15:17:46 ----D---- C:\WINDOWS\msapps
2009-04-02 15:17:46 ----D---- C:\WINDOWS\msagent
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Media
2009-04-02 15:17:46 ----D---- C:\WINDOWS\java
2009-04-02 15:17:46 ----D---- C:\WINDOWS\ime
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Help
2009-04-02 15:17:46 ----D---- C:\WINDOWS\ehome
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Driver Cache
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Debug
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Cursors
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Connection Wizard
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Config
2009-04-02 15:17:46 ----D---- C:\WINDOWS\AppPatch
2009-04-02 15:17:46 ----D---- C:\WINDOWS\addins
2009-04-02 15:17:46 ----D---- C:\WINDOWS
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nwiz.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwssr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwss.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrszht.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrszhc.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrstr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsth.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssv.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssk.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsru.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsptb.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrspt.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrspl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsno.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsnl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsko.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsja.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsit.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrshu.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrshe.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsfr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsfi.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsesm.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrses.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrseng.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsel.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsde.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsda.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrscs.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsar.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwimg.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwdmcpl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwddi.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvvitvsr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvvitvs.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvshell.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrszht.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrszhc.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrstr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsth.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssv.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssk.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsru.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsptb.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrspt.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrspl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsno.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsnl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsko.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsja.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsit.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrshu.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrshe.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsfr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsfi.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsesm.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrses.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrseng.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsel.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsde.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsda.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrscs.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsar.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmoblsr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmobls.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmctray.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccssr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccss.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccsrs.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccs.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nview.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvgamesr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvgames.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdspsch.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdispsr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdisps.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcuda.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcpluir.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcplui.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcpl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcolor.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcodins.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcod.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvappbar.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvapi.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\keystone.exe
======List of files/folders modified in the last 1 months======
2009-04-03 18:01:27 ----A---- C:\WINDOWS\win.ini
2009-04-03 18:01:27 ----A---- C:\WINDOWS\system.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-10-30 75072]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-11-08 21248]
R2 irda;Protocole IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2004-08-04 87424]
R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-03-04 5045760]
R3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-03-27 6280416]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-03-22 52736]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-03-22 18944]
R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2006-06-20 30080]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2006-06-20 17152]
R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\I:\EVEREST Ultimate Edition 2007 v3.80.951 Beta\kerneld.wnt []
S3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-28 9600]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-06-20 12288]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirScheduler;Planificateur Avira AntiVir Personal - Free Antivirus; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-15 68865]
R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-15 151297]
R2 Irmon;Moniteur infrarouge; C:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-03-27 163908]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
S3 WMConnectCDS;Service Windows Media Connect; C:\Program Files\Windows Media Connect 2\wmccds.exe [2005-10-06 856064]
-----------------EOF-----------------
=====Uninstall list======
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 7.0.8 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70800000002}
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Codeur Windows Media Série 9-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Codeur Windows Media Série 9-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Correctif pour Windows XP (KB935448)-->"C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif Windows XP - KB867282-->C:\WINDOWS\$NtUninstallKB867282$\spuninst\spuninst.exe
Correctif Windows XP - KB885894-->C:\WINDOWS\$NtUninstallKB885894$\spuninst\spuninst.exe
Galerie de photos Windows Live-->MsiExec.exe /X{44E54A81-9D91-4AA1-9417-80AFF134F5FF}
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Media Format SDK (KB902344)-->"C:\WINDOWS\$NtUninstallKB902344$\spuninst\spuninst.exe"
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
J2SE Runtime Environment 5.0 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150070}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Macromedia Flash Player 8-->C:\WINDOWS\system32\Macromed\Flash\UninstFl.exe
Macromedia Shockwave Player-->MsiExec.exe /X{838A1BC9-95CA-4880-9BE3-2A7D23600A2B}
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Office PowerPoint Viewer 2003-->MsiExec.exe /X{90AF040C-6000-11D3-8CFE-0150048383C9}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Windows Media Video 9 VCM-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmv9vcm.inf, Uninstall
Mise à jour de sécurité pour le Codeur Windows Media (KB954156)-->"C:\WINDOWS\$NtUninstallKB954156_WM9L$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB913433)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB913433.inf
Mise à jour de sécurité pour Windows XP (KB917953)-->"C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923689)-->"C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
Mozilla Firefox (3.0.8)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
Orange Plug-in messagerie vocale 888-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{16E79B1D-D1C2-4CA6-8B23-F4D890E0DCB9}\Setup.exe" -l0x40c --AddRemove
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Photorécit 3 pour Windows-->MsiExec.exe /I{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SLD Codec Pack-->C:\Program Files\SLD Codec Pack\uninstall.exe
Visionneuse Journal Windows Microsoft-->MsiExec.exe /X{43DCF766-6838-4F9A-8C91-D92DA586DFA8}
VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Winamp-->"C:\Program Files\Winamp\UninstWA.exe"
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Sync-->MsiExec.exe /X{9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E}
Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Player 10 Hotfix - KB888656-->"C:\WINDOWS\$NtUninstallKB888656$\spuninst\spuninst.exe"
Windows Messenger 5.1-->MsiExec.exe /I{9D1C26BD-E792-4159-9D16-07EA222D8EF0}
Securitycenter WMI appears to be broken
======System event log======
Computer Name: MYMY
Event Code: 7
Message: Le périphérique \Device\CdRom0 comporte un bloc défectueux.
Record Number: 5
Source Name: Cdrom
Time Written: 20090402162637.000000+120
Event Type: erreur
User:
Computer Name: MYMY
Event Code: 6011
Message: Le nom NetBIOS et le nom de l'hôte DNS de cet ordinateur ont été modifiés de MACHINENAME vers MYMY.
Record Number: 4
Source Name: EventLog
Time Written: 20090402162514.000000+120
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 2
Message: Pendant la validation de \Device\Serial0 en tant que port série, une FIFO a été détectée. La FIFO sera utilisée.
Record Number: 3
Source Name: Serial
Time Written: 20090402152225.000000+120
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 6005
Message: Le service d'Enregistrement d'événement a démarré.
Record Number: 2
Source Name: EventLog
Time Written: 20090402152204.000000+120
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 2 Uniprocessor Free.
Record Number: 1
Source Name: EventLog
Time Written: 20090402152204.000000+120
Event Type: Informations
User:
=====Application event log=====
Computer Name: MYMY
Event Code: 1000
Message: Les compteurs de performances pour le service MSDTC (MSDTC) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 5
Source Name: LoadPerf
Time Written: 20090402162648.000000+120
Event Type: Informations
User:
Computer Name: MYMY
Event Code: 1000
Message: Les compteurs de performances pour le service TermService (Services Terminal Server) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 4
Source Name: LoadPerf
Time Written: 20090402162645.000000+120
Event Type: Informations
User:
Computer Name: MYMY
Event Code: 1000
Message: Les compteurs de performances pour le service RemoteAccess (Routage et accès distant) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 3
Source Name: LoadPerf
Time Written: 20090402162546.000000+120
Event Type: Informations
User:
Computer Name: MYMY
Event Code: 1000
Message: Les compteurs de performances pour le service PSched (PSched) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 2
Source Name: LoadPerf
Time Written: 20090402162523.000000+120
Event Type: Informations
User:
Computer Name: MYMY
Event Code: 1000
Message: Les compteurs de performances pour le service RSVP (QoS RSVP) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 1
Source Name: LoadPerf
Time Written: 20090402162522.000000+120
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 95 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=5f02
"NUMBER_OF_PROCESSORS"=1
"TEMP"=%USERPROFILE%\Local Settings\Temp
"TMP"=%USERPROFILE%\Local Settings\Temp
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
-----------------EOF-----------------
voilà!
Re,
Télécharge OTMoveIt3 (de OldTimer). Sauvegarde-le sur ton Bureau.
Copie (Ctrl+C) le texte se situant dans le cadre ci-dessous :
:processes
|
Double clique sur OTMoveIt3.exe afin de le lancer.
Colle (ou Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.
Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
&
Télécharge MalwareByte's Anti-Malware sur ton Bureau.
- Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.
- Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
- Afin de lancer la recherche, clic sur"Rechercher".
- Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :
~ Si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
~~ Si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau.
~~~~ Fais redémarrer ton ordinateur normalement et poste le rapport dans ta prochaine réponse.
REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.
Note : Si tu ne parviens à télécharger MBAM à part de MajorGeeks, tu peux le télécharger ici!
Aide :
Répondre à Angeldark
bonjour! et merci beaucoup
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\services deleted successfully.
========== FILES ==========
File/Folder c:\temp1\*.txt not found.
C:\WINDOWS\services.exe moved successfully.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\Myriam\LOCALS~1\Temp\hsperfdata_Myriam\3684 scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Myriam\LOCALS~1\Temp\etilqs_cQqhfTux1Iah1P6lvlQu scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\Myriam\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
User's Temporary Internet Files folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Network Service Temp folder emptied.
Network Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
File delete failed. C:\Documents and Settings\Myriam\Application Data\Sun\Java\Deployment\cache\6.0\32\3c877e0-757ec688.idx scheduled to be deleted on reboot.
Java cache emptied.
File delete failed. C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully
OTMoveIt3 by OldTimer - Version 1.0.11.0 log created on 04132009_112030
Files moved on Reboot...
File C:\DOCUME~1\Myriam\LOCALS~1\Temp\hsperfdata_Myriam\3684 not found!
File C:\DOCUME~1\Myriam\LOCALS~1\Temp\etilqs_cQqhfTux1Iah1P6lvlQu not found!
C:\Documents and Settings\Myriam\Application Data\Sun\Java\Deployment\cache\6.0\32\3c877e0-757ec688.idx moved successfully.
C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\urlclassifier3.sqlite moved successfully.
C:\Documents and Settings\Myriam\Local Settings\Application Data\Mozilla\Firefox\Profiles\olsmext0.default\XUL.mfl moved successfully.
Malwarebytes' Anti-Malware 1.36
Version de la base de données: 1974
Windows 5.1.2600 Service Pack 2
13/04/2009 11:40:56
mbam-log-2009-04-13 (11-40-56).txt
Type de recherche: Examen complet (C:\|)
Eléments examinés: 88829
Temps écoulé: 10 minute(s), 0 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 2
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\services (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\services\del (Malware.Trace) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SecurityProviders (Trojan.Agent) -> Data: digiwet.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\WINDOWS\system32\digiwet.dll (Trojan.Agent) -> Quarantined and deleted successfully.
Refais un scan RSIT.
Répondre à Angeldark
bonjour!!
Logfile of random's system information tool 1.06 (written by random/random)
Run by Myriam at 2009-04-15 09:32:40
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 232 GB (97%) free of 238 GB
Total RAM: 2047 MB (79% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:32:43, on 15/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Myriam\Bureau\RSIT.exe
C:\Program Files\trend micro\Myriam.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.trooner.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.trooner.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/search?q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_02] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\msagent" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_03] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Help\Tours" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_04] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_05] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_06] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_07] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'SERVICE RÉSEAU')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
--
End of file - 4778 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-01-12 63128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-03-27 13684736]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-03-27 86016]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-03-02 17530368]
"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2001-10-26 3584]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=1
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SynchronousMachineGroupPolicy"=0
"SynchronousUserGroupPolicy"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=219
"NoStrCmpLogical"=1
"NoResolveTrack"=0
"NoResolveSearch"=0
"NoRun"=0
"NoFind"=0
"NoSMMyPictures"=0
"NoStartMenuMFUprogramsList"=0
"NoUserNameInStartMenu"=0
"NoStartMenuMorePrograms"=0
"MaxRecentDocs"=15
"NoInstrumentation"=0
"MemCheckBoxInRunDlg"=1
"NoSMBalloonTip"=0
"DisallowCpl"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"ForceClassicControlPanel"=
"NoSimpleStartMenu"=
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
======List of files/folders created in the last 1 months======
2009-04-13 11:28:17 ----D---- C:\Documents and Settings\Myriam\Application Data\Malwarebytes
2009-04-13 11:28:11 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-04-13 11:28:11 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-04-13 11:20:30 ----D---- C:\_OTMoveIt
2009-04-13 10:35:19 ----D---- C:\WINDOWS\Sun
2009-04-12 22:26:00 ----D---- C:\rsit
2009-04-12 22:26:00 ----D---- C:\Program Files\trend micro
2009-04-10 23:04:37 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2009-04-10 23:04:36 ----D---- C:\WINDOWS\system32\DirectX
2009-04-10 23:04:34 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2009-04-10 23:04:20 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2009-04-09 21:12:25 ----D---- C:\Documents and Settings\Myriam\Application Data\AdobeUM
2009-04-07 16:37:47 ----D---- C:\Documents and Settings\Myriam\Application Data\vlc
2009-04-07 13:42:27 ----D---- C:\Documents and Settings\Myriam\Application Data\OpenOffice.org
2009-04-07 12:44:18 ----A---- C:\WINDOWS\npornap.INI
2009-04-07 12:40:56 ----D---- C:\Program Files\Orange
2009-04-05 18:05:59 ----HDC---- C:\WINDOWS\$NtUninstallKB935448$
2009-04-03 17:42:59 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2009-04-03 17:41:15 ----N---- C:\WINDOWS\system32\spmsg.dll
2009-04-03 17:31:12 ----D---- C:\Program Files\JRE
2009-04-03 17:31:11 ----D---- C:\Program Files\OpenOffice.org 3
2009-04-03 17:30:51 ----D---- C:\Documents and Settings\Myriam\Application Data\Sun
2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\muweb.dll
2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\mucltui.dll
2009-04-03 15:11:52 ----D---- C:\Documents and Settings\Myriam\Application Data\Adobe
2009-04-03 15:00:28 ----HD---- C:\WINDOWS\system32\GroupPolicy
2009-04-03 14:58:43 ----D---- C:\Program Files\Avira
2009-04-03 14:58:43 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2009-04-03 14:57:50 ----D---- C:\WINDOWS\pss
2009-04-03 14:54:21 ----D---- C:\Program Files\SLD Codec Pack
2009-04-03 14:53:51 ----D---- C:\Program Files\VideoLAN
2009-04-03 14:53:31 ----D---- C:\Program Files\Microsoft
2009-04-03 14:53:19 ----D---- C:\Program Files\Windows Live SkyDrive
2009-04-03 14:53:01 ----D---- C:\Program Files\Windows Live
2009-04-03 14:52:10 ----D---- C:\Program Files\Winamp
2009-04-03 14:52:10 ----D---- C:\Documents and Settings\Myriam\Application Data\Winamp
2009-04-03 14:50:50 ----D---- C:\Program Files\Fichiers communs\Windows Live
2009-04-03 14:47:35 ----D---- C:\Documents and Settings\All Users\Application Data\2DBoy
2009-04-03 14:47:21 ----D---- C:\Program Files\WorldOfGoo
2009-04-03 14:46:55 ----D---- C:\WINDOWS\system32\Lang
2009-04-03 14:45:57 ----D---- C:\WINDOWS\system32\RTCOM
2009-04-03 14:45:56 ----A---- C:\WINDOWS\system32\ksuser.dll
2009-04-03 14:45:34 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$
2009-04-03 14:45:31 ----A---- C:\WINDOWS\vncutil.exe
2009-04-03 14:45:31 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2009-04-03 14:45:31 ----A---- C:\WINDOWS\SkyTel.exe
2009-04-03 14:45:31 ----A---- C:\WINDOWS\RtlUpd.exe
2009-04-03 14:45:30 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
2009-04-03 14:45:30 ----A---- C:\WINDOWS\RTLCPL.EXE
2009-04-03 14:45:30 ----A---- C:\WINDOWS\RtkAudioService.exe
2009-04-03 14:45:29 ----HD---- C:\Program Files\InstallShield Installation Information
2009-04-03 14:45:29 ----D---- C:\Program Files\Realtek
2009-04-03 14:45:29 ----A---- C:\WINDOWS\RTHDCPL.EXE
2009-04-03 14:45:29 ----A---- C:\WINDOWS\MicCal.exe
2009-04-03 14:45:29 ----A---- C:\WINDOWS\ALCWZRD.EXE
2009-04-03 14:45:29 ----A---- C:\WINDOWS\ALCMTR.EXE
2009-04-03 14:45:27 ----A---- C:\WINDOWS\RtlExUpd.dll
2009-04-03 03:22:05 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-04-03 03:22:02 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-04-03 03:21:59 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-04-03 03:21:55 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2009-04-03 03:21:50 ----HDC---- C:\WINDOWS\$NtUninstallKB958215$
2009-04-03 03:21:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-04-03 03:21:43 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-04-03 03:21:39 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-04-03 03:21:35 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-04-03 03:21:31 ----HDC---- C:\WINDOWS\$NtUninstallKB954156_WM9L$
2009-04-03 03:21:28 ----HDC---- C:\WINDOWS\$NtUninstallKB960714$
2009-04-03 03:21:21 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-04-03 03:21:10 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-04-03 03:20:52 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2009-04-03 03:20:45 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-04-03 03:20:42 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-04-03 03:20:39 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
2009-04-03 03:20:36 ----HDC---- C:\WINDOWS\$NtUninstallKB923689$
2009-04-03 03:20:28 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-04-03 03:20:25 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-04-03 03:20:20 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-04-03 03:20:17 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2009-04-03 03:20:14 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-04-03 03:20:10 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2009-04-03 03:20:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-04-03 03:20:03 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-04-03 03:20:00 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-04-03 03:19:57 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-04-03 03:19:53 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-04-03 03:19:50 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2009-04-03 03:19:49 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-04-03 03:19:45 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP10$
2009-04-03 00:22:22 ----D---- C:\WINDOWS\system32\CatRoot_bak
2009-04-02 20:56:29 ----D---- C:\Documents and Settings\Myriam\Application Data\Mozilla
2009-04-02 20:56:26 ----D---- C:\Program Files\Mozilla Firefox
2009-04-02 19:50:51 ----SHD---- C:\RECYCLER
2009-04-02 19:47:22 ----D---- C:\WINDOWS\nview
2009-04-02 19:47:21 ----A---- C:\WINDOWS\system32\nvudisp.exe
2009-04-02 19:42:21 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2009-04-02 19:39:24 ----A---- C:\WINDOWS\system32\CapabilityTable.exe
2009-04-02 19:39:17 ----N---- C:\WINDOWS\system32\nvuide.exe
2009-04-02 19:39:17 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-04-02 19:39:05 ----A---- C:\WINDOWS\system32\nvunrm.exe
2009-04-02 19:39:04 ----A---- C:\WINDOWS\system32\nvusmb.exe
2009-04-02 19:38:47 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2009-04-02 19:38:35 ----D---- C:\NVIDIA
2009-04-02 17:06:53 ----A---- C:\XPSP2+_Version.txt
2009-04-02 17:06:46 ----D---- C:\Documents and Settings\Myriam\Application Data\Identities
2009-04-02 17:06:44 ----HD---- C:\Program Files\Uninstall Information
2009-04-02 17:06:31 ----A---- C:\WINDOWS\system32\YourCPLconfig.txt
2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\javaws.exe
2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\javaw.exe
2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\java.exe
2009-04-02 17:05:36 ----D---- C:\Program Files\Java
2009-04-02 17:05:35 ----D---- C:\Program Files\Fichiers communs\Java
2009-04-02 17:05:32 ----D---- C:\Documents and Settings\Myriam\Application Data\Macromedia
2009-04-02 17:05:28 ----D---- C:\Program Files\Fichiers communs\InstallShield
2009-04-02 17:04:54 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-04-02 17:04:53 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-04-02 17:04:15 ----D---- C:\Program Files\Adobe
2009-04-02 17:04:12 ----D---- C:\Program Files\Messenger
2009-04-02 17:04:03 ----D---- C:\Program Files\Photo Story 3 for Windows
2009-04-02 17:03:56 ----HDC---- C:\WINDOWS\$NtUninstallKB917734_WMP10$
2009-04-02 17:03:47 ----HDC---- C:\WINDOWS\$NtUninstallKB911565$
2009-04-02 17:03:39 ----HDC---- C:\WINDOWS\$NtUninstallKB902344$
2009-04-02 17:03:31 ----HDC---- C:\WINDOWS\$NtUninstallKB888656$
2009-04-02 17:03:24 ----D---- C:\WINDOWS\system32\windows media
2009-04-02 17:03:22 ----HD---- C:\WINDOWS\msdownld.tmp
2009-04-02 17:03:21 ----D---- C:\Program Files\Windows Media Components
2009-04-02 17:03:19 ----D---- C:\Program Files\WMV9_VCM
2009-04-02 17:02:36 ----D---- C:\Program Files\Microsoft Office
2009-04-02 17:02:35 ----D---- C:\Program Files\Windows Journal Viewer
2009-04-02 17:01:33 ----D---- C:\WINDOWS\system32\URTTEMP
2009-04-02 16:59:42 ----RSD---- C:\WINDOWS\assembly
2009-04-02 16:59:31 ----D---- C:\WINDOWS\Microsoft.NET
2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\WgaTray.exe
2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\WgaLogon.dll
2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\LegitCheckControl.dll
2009-04-02 16:58:52 ----A---- C:\WINDOWS\system32\MRT.exe
2009-04-02 16:58:47 ----HDC---- C:\WINDOWS\$NtUninstallKB917953$
2009-04-02 16:58:19 ----HDC---- C:\WINDOWS\$NtUninstallKB867282$
2009-04-02 16:58:07 ----HDC---- C:\WINDOWS\$NtUninstallKB885894$
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\wul.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\VB6STKIT.DLL
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\VB6FR.DLL
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\TweakUi.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\SMPSeesaw.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\shman.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\Sherlock.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\jrview.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\FlushCode.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\faview.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\Extinction.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\autoruns.exe
2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\YourCPLconfig_Instructions.txt
2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\YourCPL_ReadMe.txt
2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\pernille.txt
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\wul_lng.ini
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\shman_lng.ini
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\pernille.ini
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\oeminfo.ini
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\jrview_lng.ini
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\faview_lng.ini
2009-04-02 16:57:42 ----D---- C:\Program Files\UTILS
2009-04-02 16:57:42 ----D---- C:\Program Files\JEUX
2009-04-02 16:57:10 ----ASH---- C:\Documents and Settings\Myriam\Application Data\desktop.ini
2009-04-02 16:57:09 ----SD---- C:\Documents and Settings\Myriam\Application Data\Microsoft
2009-04-02 16:56:27 ----D---- C:\WINDOWS\SoftwareDistribution
2009-04-02 16:56:27 ----D---- C:\WINDOWS\Prefetch
2009-04-02 16:56:26 ----SD---- C:\WINDOWS\system32\Microsoft
2009-04-02 16:56:26 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-04-02 16:30:27 ----D---- C:\WINDOWS\system32\xircom
2009-04-02 16:30:27 ----D---- C:\WINDOWS\srchasst
2009-04-02 16:30:27 ----D---- C:\Program Files\xerox
2009-04-02 16:30:27 ----D---- C:\Program Files\microsoft frontpage
2009-04-02 16:30:08 ----D---- C:\Program Files\Windows Media Connect 2
2009-04-02 16:30:07 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-04-02 16:30:02 ----D---- C:\WINDOWS\RegisteredPackages
2009-04-02 16:29:48 ----HD---- C:\WINDOWS\$hf_mig$
2009-04-02 16:29:34 ----A---- C:\WINDOWS\control.ini
2009-04-02 16:29:34 ----A---- C:\AUTOEXEC.BAT
2009-04-02 16:29:26 ----A---- C:\WINDOWS\OEWABLog.txt
2009-04-02 16:29:22 ----A---- C:\WINDOWS\system32\mapi32.dll
2009-04-02 16:28:41 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-04-02 16:28:41 ----RD---- C:\WINDOWS\Offline Web Pages
2009-04-02 16:28:41 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2009-04-02 16:28:36 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2009-04-02 16:28:32 ----HD---- C:\Program Files\WindowsUpdate
2009-04-02 16:28:05 ----A---- C:\WINDOWS\system32\atrace.dll
2009-04-02 16:28:04 ----A---- C:\WINDOWS\system32\desktop.ini
2009-04-02 16:28:04 ----A---- C:\WINDOWS\desktop.ini
2009-04-02 16:28:01 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2009-04-02 16:27:59 ----D---- C:\Program Files\Fichiers communs\Services
2009-04-02 16:27:59 ----A---- C:\WINDOWS\system32\acctres.dll
2009-04-02 16:27:56 ----SD---- C:\WINDOWS\Tasks
2009-04-02 16:27:56 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2009-04-02 16:27:55 ----D---- C:\Program Files\Fichiers communs\MSSoap
2009-04-02 16:27:54 ----D---- C:\WINDOWS\system32\Macromed
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuweb.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wups.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wucltui.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauserv.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuaueng.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauclt.exe
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuapi.dll
2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\qmgr.dll
2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2009-04-02 16:27:47 ----D---- C:\Program Files\Movie Maker
2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrslv.dll
2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrdm.dll
2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\racpldlg.dll
2009-04-02 16:27:40 ----D---- C:\WINDOWS\system32\Restore
2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srsvc.dll
2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srrstr.dll
2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srclient.dll
2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\fltMc.exe
2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\fltlib.dll
2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\mnmdd.dll
2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\ils.dll
2009-04-02 16:27:38 ----A---- C:\WINDOWS\system32\msconf.dll
2009-04-02 16:27:38 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2009-04-02 16:27:36 ----D---- C:\Program Files\NetMeeting
2009-04-02 16:27:36 ----A---- C:\WINDOWS\system32\msoert2.dll
2009-04-02 16:27:36 ----A---- C:\WINDOWS\system32\msoeacct.dll
2009-04-02 16:27:35 ----A---- C:\WINDOWS\system32\inetres.dll
2009-04-02 16:27:35 ----A---- C:\WINDOWS\system32\inetcomm.dll
2009-04-02 16:27:33 ----D---- C:\Program Files\Outlook Express
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\schedsvc.dll
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\mstinit.exe
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\mstask.dll
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\isign32.dll
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\inetcfg.dll
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\icwphbk.dll
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\icwdial.dll
2009-04-02 16:27:28 ----D---- C:\Program Files\Fichiers communs\System
2009-04-02 16:27:23 ----D---- C:\Program Files\Internet Explorer
2009-04-02 16:26:57 ----D---- C:\Program Files\ComPlus Applications
2009-04-02 16:26:55 ----A---- C:\WINDOWS\vbaddin.ini
2009-04-02 16:26:55 ----A---- C:\WINDOWS\vb.ini
2009-04-02 16:26:51 ----D---- C:\WINDOWS\Registration
2009-04-02 16:26:45 ----D---- C:\Program Files\Windows Media Player
2009-04-02 16:26:31 ----D---- C:\Program Files\MSN Gaming Zone
2009-04-02 16:26:31 ----A---- C:\WINDOWS\system32\write.exe
2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\sndvol32.exe
2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\hticons.dll
2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avwav.dll
2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avtapi.dll
2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avmeter.dll
2009-04-02 16:26:22 ----A---- C:\WINDOWS\system32\winchat.exe
2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\sol.exe
2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\getuname.dll
2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\charmap.exe
2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\calc.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\winmine.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\tskill.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\reset.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\mshearts.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\freecell.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tslabels.ini
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tscon.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\shadow.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\rwinsta.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\regini.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\qwinsta.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\qappsrv.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\msg.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\logoff.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\cdmodem.dll
2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxex.dll
2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxdm.dll
2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\stclient.dll
2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comsnap.dll
2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comrepl.dll
2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comaddin.dll
2009-04-02 16:26:09 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2009-04-02 16:26:08 ----A---- C:\WINDOWS\system32\accwiz.exe
2009-04-02 16:26:07 ----D---- C:\Program Files\Windows NT
2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\mplay32.exe
2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\hypertrm.dll
2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\spider.exe
2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\clipbrd.exe
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\termsrv.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\remotepg.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdshost.exe
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdchost.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\mstscax.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\mstsc.exe
2009-04-02 16:26:04 ----D---- C:\WINDOWS\system32\MsDtc
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\rdpclip.exe
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\qprocess.exe
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\mtxoci.dll
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\icaapi.dll
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\xolehlp.dll
2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtctm.dll
2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtclog.dll
2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtc.exe
2009-04-02 16:26:02 ----D---- C:\WINDOWS\system32\Com
2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\colbact.dll
2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\clbcatex.dll
2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrvut.dll
2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrvps.dll
2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrv.dll
2009-04-02 16:26:01 ----A---- C:\WINDOWS\system32\comuid.dll
2009-04-02 16:26:01 ----A---- C:\WINDOWS\system32\comsvcs.dll
2009-04-02 16:26:00 ----A---- C:\WINDOWS\system32\clbcatq.dll
2009-04-02 16:25:56 ----A---- C:\WINDOWS\system32\servdeps.dll
2009-04-02 16:25:56 ----A---- C:\WINDOWS\system32\mmfutil.dll
2009-04-02 16:25:55 ----A---- C:\WINDOWS\system32\licwmi.dll
2009-04-02 16:25:55 ----A---- C:\WINDOWS\system32\cmprops.dll
2009-04-02 15:26:57 ----A---- C:\WINDOWS\system32\h323log.txt
2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\wshirda.dll
2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\irmon.dll
2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\irftp.exe
2009-04-02 15:23:51 ----A---- C:\WINDOWS\system32\usbui.dll
2009-04-02 15:23:04 ----A---- C:\WINDOWS\imsins.BAK
2009-04-02 15:23:01 ----SHD---- C:\WINDOWS\Installer
2009-04-02 15:23:01 ----D---- C:\Program Files\Fichiers communs\ODBC
2009-04-02 15:23:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-04-02 15:23:01 ----A---- C:\WINDOWS\ODBCINST.INI
2009-04-02 15:22:58 ----RD---- C:\Program Files
2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs\SpeechEngines
2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs
2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdur.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdru.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdest.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdro.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\spxcoins.dll
2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\irclass.dll
2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\dgsetup.dll
2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2009-04-02 15:22:45 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2009-04-02 15:22:43 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2009-04-02 15:22:43 ----A---- C:\WINDOWS\TASKMAN.EXE
2009-04-02 15:22:43 ----A---- C:\WINDOWS\system32\batt.dll
2009-04-02 15:22:42 ----A---- C:\WINDOWS\system32\storprop.dll
2009-04-02 15:22:42 ----A---- C:\WINDOWS\notepad.exe
2009-04-02 15:22:36 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2009-04-02 15:22:23 ----D---- C:\WINDOWS\system32\CatRoot2
2009-04-02 15:22:23 ----D---- C:\WINDOWS\system32\CatRoot
2009-04-02 15:22:18 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-04-02 15:22:02 ----A---- C:\WINDOWS\setuplog.txt
2009-04-02 15:21:59 ----SHD---- C:\System Volume Information
2009-04-02 15:21:59 ----D---- C:\Documents and Settings
2009-04-02 15:21:06 ----SH---- C:\boot.ini
2009-04-02 15:20:20 ----D---- C:\applications
2009-04-02 15:17:46 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-04-02 15:17:46 ----RSD---- C:\WINDOWS\Fonts
2009-04-02 15:17:46 ----RD---- C:\WINDOWS\Web
2009-04-02 15:17:46 ----HD---- C:\WINDOWS\inf
2009-04-02 15:17:46 ----D---- C:\WINDOWS\WinSxS
2009-04-02 15:17:46 ----D---- C:\WINDOWS\twain_32
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Temp
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\wins
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\wbem
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\usmt
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\spool
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ShellExt
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\Setup
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ras
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\PreInstall
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\oobe
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\npp
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\mui
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\inetsrv
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\IME
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\icsxml
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ias
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\export
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\en
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\drivers
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\dhcp
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\config
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\3com_dmi
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\3076
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\2052
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1054
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1042
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1041
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1037
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1036
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1033
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1031
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1028
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1025
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system
2009-04-02 15:17:46 ----D---- C:\WINDOWS\security
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Resources
2009-04-02 15:17:46 ----D---- C:\WINDOWS\repair
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Provisioning
2009-04-02 15:17:46 ----D---- C:\WINDOWS\PeerNet
2009-04-02 15:17:46 ----D---- C:\WINDOWS\pchealth
2009-04-02 15:17:46 ----D---- C:\WINDOWS\mui
2009-04-02 15:17:46 ----D---- C:\WINDOWS\msapps
2009-04-02 15:17:46 ----D---- C:\WINDOWS\msagent
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Media
2009-04-02 15:17:46 ----D---- C:\WINDOWS\java
2009-04-02 15:17:46 ----D---- C:\WINDOWS\ime
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Help
2009-04-02 15:17:46 ----D---- C:\WINDOWS\ehome
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Driver Cache
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Debug
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Cursors
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Connection Wizard
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Config
2009-04-02 15:17:46 ----D---- C:\WINDOWS\AppPatch
2009-04-02 15:17:46 ----D---- C:\WINDOWS\addins
2009-04-02 15:17:46 ----D---- C:\WINDOWS
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nwiz.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwssr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwss.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrszht.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrszhc.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrstr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsth.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssv.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssk.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsru.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsptb.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrspt.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrspl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsno.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsnl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsko.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsja.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsit.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrshu.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrshe.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsfr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsfi.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsesm.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrses.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrseng.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsel.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsde.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsda.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrscs.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsar.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwimg.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwdmcpl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwddi.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvvitvsr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvvitvs.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvshell.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrszht.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrszhc.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrstr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsth.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssv.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssk.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsru.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsptb.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrspt.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrspl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsno.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsnl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsko.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsja.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsit.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrshu.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrshe.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsfr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsfi.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsesm.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrses.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrseng.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsel.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsde.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsda.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrscs.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsar.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmoblsr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmobls.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmctray.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccssr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccss.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccsrs.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccs.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nview.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvgamesr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvgames.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdspsch.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdispsr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdisps.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcuda.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcpluir.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcplui.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcpl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcolor.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcodins.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcod.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvappbar.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvapi.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\keystone.exe
======List of files/folders modified in the last 1 months======
2009-04-03 18:01:27 ----A---- C:\WINDOWS\win.ini
2009-04-03 18:01:27 ----A---- C:\WINDOWS\system.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-10-30 75072]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-11-08 21248]
R2 irda;Protocole IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2004-08-04 87424]
R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-03-04 5045760]
R3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-03-27 6280416]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-03-22 52736]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-03-22 18944]
R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2006-06-20 30080]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2006-06-20 17152]
R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\I:\EVEREST Ultimate Edition 2007 v3.80.951 Beta\kerneld.wnt []
S3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-28 9600]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-06-20 12288]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirScheduler;Planificateur Avira AntiVir Personal - Free Antivirus; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-15 68865]
R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-15 151297]
R2 Irmon;Moniteur infrarouge; C:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-03-27 163908]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
S3 WMConnectCDS;Service Windows Media Connect; C:\Program Files\Windows Media Connect 2\wmccds.exe [2005-10-06 856064]
-----------------EOF-----------------
info.txt logfile of random's system information tool 1.06 2009-04-15 09:36:22
======Uninstall list======
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 7.0.8 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70800000002}
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Codeur Windows Media Série 9-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Codeur Windows Media Série 9-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Correctif pour Windows XP (KB935448)-->"C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif Windows XP - KB867282-->C:\WINDOWS\$NtUninstallKB867282$\spuninst\spuninst.exe
Correctif Windows XP - KB885894-->C:\WINDOWS\$NtUninstallKB885894$\spuninst\spuninst.exe
Galerie de photos Windows Live-->MsiExec.exe /X{44E54A81-9D91-4AA1-9417-80AFF134F5FF}
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Media Format SDK (KB902344)-->"C:\WINDOWS\$NtUninstallKB902344$\spuninst\spuninst.exe"
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
J2SE Runtime Environment 5.0 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150070}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Macromedia Flash Player 8-->C:\WINDOWS\system32\Macromed\Flash\UninstFl.exe
Macromedia Shockwave Player-->MsiExec.exe /X{838A1BC9-95CA-4880-9BE3-2A7D23600A2B}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Office PowerPoint Viewer 2003-->MsiExec.exe /X{90AF040C-6000-11D3-8CFE-0150048383C9}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Windows Media Video 9 VCM-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmv9vcm.inf, Uninstall
Mise à jour de sécurité pour le Codeur Windows Media (KB954156)-->"C:\WINDOWS\$NtUninstallKB954156_WM9L$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB913433)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB913433.inf
Mise à jour de sécurité pour Windows XP (KB917953)-->"C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923689)-->"C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
Mozilla Firefox (3.0.8)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
Orange Plug-in messagerie vocale 888-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{16E79B1D-D1C2-4CA6-8B23-F4D890E0DCB9}\Setup.exe" -l0x40c --AddRemove
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Photorécit 3 pour Windows-->MsiExec.exe /I{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SLD Codec Pack-->C:\Program Files\SLD Codec Pack\uninstall.exe
Visionneuse Journal Windows Microsoft-->MsiExec.exe /X{43DCF766-6838-4F9A-8C91-D92DA586DFA8}
VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Winamp-->"C:\Program Files\Winamp\UninstWA.exe"
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Sync-->MsiExec.exe /X{9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E}
Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Player 10 Hotfix - KB888656-->"C:\WINDOWS\$NtUninstallKB888656$\spuninst\spuninst.exe"
Windows Messenger 5.1-->MsiExec.exe /I{9D1C26BD-E792-4159-9D16-07EA222D8EF0}
Securitycenter WMI appears to be broken
======System event log======
Computer Name: MYMY
Event Code: 7
Message: Le périphérique \Device\CdRom0 comporte un bloc défectueux.
Record Number: 5
Source Name: Cdrom
Time Written: 20090402162637.000000+120
Event Type: erreur
User:
Computer Name: MYMY
Event Code: 6011
Message: Le nom NetBIOS et le nom de l'hôte DNS de cet ordinateur ont été modifiés de MACHINENAME vers MYMY.
Record Number: 4
Source Name: EventLog
Time Written: 20090402162514.000000+120
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 2
Message: Pendant la validation de \Device\Serial0 en tant que port série, une FIFO a été détectée. La FIFO sera utilisée.
Record Number: 3
Source Name: Serial
Time Written: 20090402152225.000000+120
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 6005
Message: Le service d'Enregistrement d'événement a démarré.
Record Number: 2
Source Name: EventLog
Time Written: 20090402152204.000000+120
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 2 Uniprocessor Free.
Record Number: 1
Source Name: EventLog
Time Written: 20090402152204.000000+120
Event Type: Informations
User:
=====Application event log=====
Computer Name: MYMY
Event Code: 1000
Message: Les compteurs de performances pour le service MSDTC (MSDTC) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 5
Source Name: LoadPerf
Time Written: 20090402162648.000000+120
Event Type: Informations
User:
Computer Name: MYMY
Event Code: 1000
Message: Les compteurs de performances pour le service TermService (Services Terminal Server) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 4
Source Name: LoadPerf
Time Written: 20090402162645.000000+120
Event Type: Informations
User:
Computer Name: MYMY
Event Code: 1000
Message: Les compteurs de performances pour le service RemoteAccess (Routage et accès distant) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 3
Source Name: LoadPerf
Time Written: 20090402162546.000000+120
Event Type: Informations
User:
Computer Name: MYMY
Event Code: 1000
Message: Les compteurs de performances pour le service PSched (PSched) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 2
Source Name: LoadPerf
Time Written: 20090402162523.000000+120
Event Type: Informations
User:
Computer Name: MYMY
Event Code: 1000
Message: Les compteurs de performances pour le service RSVP (QoS RSVP) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 1
Source Name: LoadPerf
Time Written: 20090402162522.000000+120
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 95 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=5f02
"NUMBER_OF_PROCESSORS"=1
"TEMP"=%USERPROFILE%\Local Settings\Temp
"TMP"=%USERPROFILE%\Local Settings\Temp
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
-----------------EOF-----------------
Encore des soucis ?
Fais une analyse antivirus en ligne sur Kaspersky avec Internet Explorer.
- Autorise les Active x.
- Clique sur Démarrer Online Scanner.
- Sélectionne le poste de travail comme analyse. Enregistres sous le rapport en format .txt.
- Colle son rapport ici.
- Poste un nouveau rapport Hijackthis.
Répondre à Angeldark
bonsoir!
-------------------------------------------------------------------------------
KASPERSKY ON-LINE SCANNER REPORT
Thursday, April 16, 2009 12:20:41 AM
Système d'exploitation : Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version : 5.0.84.2
Dernière mise à jour de la base antivirus Kaspersky : 15/04/2009
Enregistrements dans la base antivirus Kaspersky : 1852576
-------------------------------------------------------------------------------
Paramètres d'analyse:
Analyser avec la base antivirus suivante: standard
Analyser les archives: vrai
Analyser les bases de messagerie: vrai
Cible de l'analyse - Poste de travail:
C:\
D:\
E:\
F:\
G:\
H:\
Statistiques de l'analyse:
Total d'objets analysés: 30737
Nombre de virus trouvés: 1
Nombre d'objets infectés: 1 / 0
Nombre d'objets suspects: 0
Durée de l'analyse: 00:22:34
Nom de l'objet infecté / Nom du virus / Dernière action
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Myriam\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Myriam\Local Settings\Application Data\Microsoft\Messenger\ContactsLog.txt L'objet est verrouillé ignoré
C:\Documents and Settings\Myriam\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Myriam\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Myriam\Local Settings\Application Data\Microsoft\Windows Live Contacts\{0f148b51-212c-4509-b8c9-76763c0d7356}\DBStore\contacts.edb L'objet est verrouillé ignoré
C:\Documents and Settings\Myriam\Local Settings\Application Data\Microsoft\Windows Live Contacts\{0f148b51-212c-4509-b8c9-76763c0d7356}\DBStore\LogFiles\edb.log L'objet est verrouillé ignoré
C:\Documents and Settings\Myriam\Local Settings\Application Data\Microsoft\Windows Live Contacts\{0f148b51-212c-4509-b8c9-76763c0d7356}\DBStore\LogFiles\edbtmp.log L'objet est verrouillé ignoré
C:\Documents and Settings\Myriam\Local Settings\Application Data\Microsoft\Windows Live Contacts\{0f148b51-212c-4509-b8c9-76763c0d7356}\DBStore\tempedb.edb L'objet est verrouillé ignoré
C:\Documents and Settings\Myriam\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Myriam\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Myriam\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\Myriam\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Myriam\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré
C:\WINDOWS\system32\CatRoot2\edb.log L'objet est verrouillé ignoré
C:\WINDOWS\system32\CatRoot2\tmp.edb L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré
C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré
C:\_OTMoveIt\MovedFiles\04132009_112030\WINDOWS\services.exe Infecté : Email-Worm.Win32.Joleee.mm ignoré
Analyse terminée.
alors docteur?
Logfile of random's system information tool 1.06 (written by random/random)
Run by Myriam at 2009-04-16 00:30:48
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 231 GB (97%) free of 238 GB
Total RAM: 2047 MB (72% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:30:49, on 16/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Myriam\Bureau\RSIT.exe
C:\Program Files\trend micro\Myriam.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.trooner.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.trooner.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/search?q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_02] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\msagent" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_03] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Help\Tours" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_04] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_05] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_06] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_07] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'SERVICE RÉSEAU')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
--
End of file - 5006 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-01-12 63128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-03-27 13684736]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-03-27 86016]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-03-02 17530368]
"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2001-10-26 3584]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=1
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SynchronousMachineGroupPolicy"=0
"SynchronousUserGroupPolicy"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=219
"NoStrCmpLogical"=1
"NoResolveTrack"=0
"NoResolveSearch"=0
"NoRun"=0
"NoFind"=0
"NoSMMyPictures"=0
"NoStartMenuMFUprogramsList"=0
"NoUserNameInStartMenu"=0
"NoStartMenuMorePrograms"=0
"MaxRecentDocs"=15
"NoInstrumentation"=0
"MemCheckBoxInRunDlg"=1
"NoSMBalloonTip"=0
"DisallowCpl"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"ForceClassicControlPanel"=
"NoSimpleStartMenu"=
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
======List of files/folders created in the last 1 months======
2009-04-15 23:37:31 ----D---- C:\WINDOWS\system32\Kaspersky Lab
2009-04-15 23:37:29 ----D---- C:\WINDOWS\LastGood
2009-04-13 11:28:17 ----D---- C:\Documents and Settings\Myriam\Application Data\Malwarebytes
2009-04-13 11:28:11 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-04-13 11:28:11 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-04-13 11:20:30 ----D---- C:\_OTMoveIt
2009-04-13 10:35:19 ----D---- C:\WINDOWS\Sun
2009-04-12 22:26:00 ----D---- C:\rsit
2009-04-12 22:26:00 ----D---- C:\Program Files\trend micro
2009-04-10 23:04:37 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2009-04-10 23:04:36 ----D---- C:\WINDOWS\system32\DirectX
2009-04-10 23:04:34 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2009-04-10 23:04:20 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2009-04-09 21:12:25 ----D---- C:\Documents and Settings\Myriam\Application Data\AdobeUM
2009-04-07 16:37:47 ----D---- C:\Documents and Settings\Myriam\Application Data\vlc
2009-04-07 13:42:27 ----D---- C:\Documents and Settings\Myriam\Application Data\OpenOffice.org
2009-04-07 12:44:18 ----A---- C:\WINDOWS\npornap.INI
2009-04-07 12:40:56 ----D---- C:\Program Files\Orange
2009-04-05 18:05:59 ----HDC---- C:\WINDOWS\$NtUninstallKB935448$
2009-04-03 17:42:59 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2009-04-03 17:41:15 ----N---- C:\WINDOWS\system32\spmsg.dll
2009-04-03 17:31:12 ----D---- C:\Program Files\JRE
2009-04-03 17:31:11 ----D---- C:\Program Files\OpenOffice.org 3
2009-04-03 17:30:51 ----D---- C:\Documents and Settings\Myriam\Application Data\Sun
2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\muweb.dll
2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2009-04-03 15:24:19 ----A---- C:\WINDOWS\system32\mucltui.dll
2009-04-03 15:11:52 ----D---- C:\Documents and Settings\Myriam\Application Data\Adobe
2009-04-03 15:00:28 ----HD---- C:\WINDOWS\system32\GroupPolicy
2009-04-03 14:58:43 ----D---- C:\Program Files\Avira
2009-04-03 14:58:43 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2009-04-03 14:57:50 ----D---- C:\WINDOWS\pss
2009-04-03 14:54:21 ----D---- C:\Program Files\SLD Codec Pack
2009-04-03 14:53:51 ----D---- C:\Program Files\VideoLAN
2009-04-03 14:53:31 ----D---- C:\Program Files\Microsoft
2009-04-03 14:53:19 ----D---- C:\Program Files\Windows Live SkyDrive
2009-04-03 14:53:01 ----D---- C:\Program Files\Windows Live
2009-04-03 14:52:10 ----D---- C:\Program Files\Winamp
2009-04-03 14:52:10 ----D---- C:\Documents and Settings\Myriam\Application Data\Winamp
2009-04-03 14:50:50 ----D---- C:\Program Files\Fichiers communs\Windows Live
2009-04-03 14:47:35 ----D---- C:\Documents and Settings\All Users\Application Data\2DBoy
2009-04-03 14:47:21 ----D---- C:\Program Files\WorldOfGoo
2009-04-03 14:46:55 ----D---- C:\WINDOWS\system32\Lang
2009-04-03 14:45:57 ----D---- C:\WINDOWS\system32\RTCOM
2009-04-03 14:45:56 ----A---- C:\WINDOWS\system32\ksuser.dll
2009-04-03 14:45:34 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$
2009-04-03 14:45:31 ----A---- C:\WINDOWS\vncutil.exe
2009-04-03 14:45:31 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2009-04-03 14:45:31 ----A---- C:\WINDOWS\SkyTel.exe
2009-04-03 14:45:31 ----A---- C:\WINDOWS\RtlUpd.exe
2009-04-03 14:45:30 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
2009-04-03 14:45:30 ----A---- C:\WINDOWS\RTLCPL.EXE
2009-04-03 14:45:30 ----A---- C:\WINDOWS\RtkAudioService.exe
2009-04-03 14:45:29 ----HD---- C:\Program Files\InstallShield Installation Information
2009-04-03 14:45:29 ----D---- C:\Program Files\Realtek
2009-04-03 14:45:29 ----A---- C:\WINDOWS\RTHDCPL.EXE
2009-04-03 14:45:29 ----A---- C:\WINDOWS\MicCal.exe
2009-04-03 14:45:29 ----A---- C:\WINDOWS\ALCWZRD.EXE
2009-04-03 14:45:29 ----A---- C:\WINDOWS\ALCMTR.EXE
2009-04-03 14:45:27 ----A---- C:\WINDOWS\RtlExUpd.dll
2009-04-03 03:22:05 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-04-03 03:22:02 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-04-03 03:21:59 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-04-03 03:21:55 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2009-04-03 03:21:50 ----HDC---- C:\WINDOWS\$NtUninstallKB958215$
2009-04-03 03:21:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-04-03 03:21:43 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-04-03 03:21:39 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-04-03 03:21:35 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-04-03 03:21:31 ----HDC---- C:\WINDOWS\$NtUninstallKB954156_WM9L$
2009-04-03 03:21:28 ----HDC---- C:\WINDOWS\$NtUninstallKB960714$
2009-04-03 03:21:21 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-04-03 03:21:10 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-04-03 03:20:52 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2009-04-03 03:20:45 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-04-03 03:20:42 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-04-03 03:20:39 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
2009-04-03 03:20:36 ----HDC---- C:\WINDOWS\$NtUninstallKB923689$
2009-04-03 03:20:28 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-04-03 03:20:25 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-04-03 03:20:20 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-04-03 03:20:17 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2009-04-03 03:20:14 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-04-03 03:20:10 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2009-04-03 03:20:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-04-03 03:20:03 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-04-03 03:20:00 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-04-03 03:19:57 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-04-03 03:19:53 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-04-03 03:19:50 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2009-04-03 03:19:49 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-04-03 03:19:45 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP10$
2009-04-03 00:22:22 ----D---- C:\WINDOWS\system32\CatRoot_bak
2009-04-02 20:56:29 ----D---- C:\Documents and Settings\Myriam\Application Data\Mozilla
2009-04-02 20:56:26 ----D---- C:\Program Files\Mozilla Firefox
2009-04-02 19:50:51 ----SHD---- C:\RECYCLER
2009-04-02 19:47:22 ----D---- C:\WINDOWS\nview
2009-04-02 19:47:21 ----A---- C:\WINDOWS\system32\nvudisp.exe
2009-04-02 19:42:21 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2009-04-02 19:39:24 ----A---- C:\WINDOWS\system32\CapabilityTable.exe
2009-04-02 19:39:17 ----N---- C:\WINDOWS\system32\nvuide.exe
2009-04-02 19:39:17 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-04-02 19:39:05 ----A---- C:\WINDOWS\system32\nvunrm.exe
2009-04-02 19:39:04 ----A---- C:\WINDOWS\system32\nvusmb.exe
2009-04-02 19:38:47 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2009-04-02 19:38:35 ----D---- C:\NVIDIA
2009-04-02 17:06:53 ----A---- C:\XPSP2+_Version.txt
2009-04-02 17:06:46 ----D---- C:\Documents and Settings\Myriam\Application Data\Identities
2009-04-02 17:06:44 ----HD---- C:\Program Files\Uninstall Information
2009-04-02 17:06:31 ----A---- C:\WINDOWS\system32\YourCPLconfig.txt
2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\javaws.exe
2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\javaw.exe
2009-04-02 17:05:59 ----A---- C:\WINDOWS\system32\java.exe
2009-04-02 17:05:36 ----D---- C:\Program Files\Java
2009-04-02 17:05:35 ----D---- C:\Program Files\Fichiers communs\Java
2009-04-02 17:05:32 ----D---- C:\Documents and Settings\Myriam\Application Data\Macromedia
2009-04-02 17:05:28 ----D---- C:\Program Files\Fichiers communs\InstallShield
2009-04-02 17:04:54 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-04-02 17:04:53 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-04-02 17:04:15 ----D---- C:\Program Files\Adobe
2009-04-02 17:04:12 ----D---- C:\Program Files\Messenger
2009-04-02 17:04:03 ----D---- C:\Program Files\Photo Story 3 for Windows
2009-04-02 17:03:56 ----HDC---- C:\WINDOWS\$NtUninstallKB917734_WMP10$
2009-04-02 17:03:47 ----HDC---- C:\WINDOWS\$NtUninstallKB911565$
2009-04-02 17:03:39 ----HDC---- C:\WINDOWS\$NtUninstallKB902344$
2009-04-02 17:03:31 ----HDC---- C:\WINDOWS\$NtUninstallKB888656$
2009-04-02 17:03:24 ----D---- C:\WINDOWS\system32\windows media
2009-04-02 17:03:22 ----HD---- C:\WINDOWS\msdownld.tmp
2009-04-02 17:03:21 ----D---- C:\Program Files\Windows Media Components
2009-04-02 17:03:19 ----D---- C:\Program Files\WMV9_VCM
2009-04-02 17:02:36 ----D---- C:\Program Files\Microsoft Office
2009-04-02 17:02:35 ----D---- C:\Program Files\Windows Journal Viewer
2009-04-02 17:01:33 ----D---- C:\WINDOWS\system32\URTTEMP
2009-04-02 16:59:42 ----RSD---- C:\WINDOWS\assembly
2009-04-02 16:59:31 ----D---- C:\WINDOWS\Microsoft.NET
2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\WgaTray.exe
2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\WgaLogon.dll
2009-04-02 16:58:57 ----N---- C:\WINDOWS\system32\LegitCheckControl.dll
2009-04-02 16:58:52 ----A---- C:\WINDOWS\system32\MRT.exe
2009-04-02 16:58:47 ----HDC---- C:\WINDOWS\$NtUninstallKB917953$
2009-04-02 16:58:19 ----HDC---- C:\WINDOWS\$NtUninstallKB867282$
2009-04-02 16:58:07 ----HDC---- C:\WINDOWS\$NtUninstallKB885894$
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\wul.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\VB6STKIT.DLL
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\VB6FR.DLL
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\TweakUi.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\SMPSeesaw.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\shman.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\Sherlock.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\jrview.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\FlushCode.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\faview.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\Extinction.exe
2009-04-02 16:58:02 ----A---- C:\WINDOWS\system32\autoruns.exe
2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\YourCPLconfig_Instructions.txt
2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\YourCPL_ReadMe.txt
2009-04-02 16:57:59 ----A---- C:\WINDOWS\system32\pernille.txt
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\wul_lng.ini
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\shman_lng.ini
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\pernille.ini
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\oeminfo.ini
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\jrview_lng.ini
2009-04-02 16:57:51 ----A---- C:\WINDOWS\system32\faview_lng.ini
2009-04-02 16:57:42 ----D---- C:\Program Files\UTILS
2009-04-02 16:57:42 ----D---- C:\Program Files\JEUX
2009-04-02 16:57:10 ----ASH---- C:\Documents and Settings\Myriam\Application Data\desktop.ini
2009-04-02 16:57:09 ----SD---- C:\Documents and Settings\Myriam\Application Data\Microsoft
2009-04-02 16:56:27 ----D---- C:\WINDOWS\SoftwareDistribution
2009-04-02 16:56:27 ----D---- C:\WINDOWS\Prefetch
2009-04-02 16:56:26 ----SD---- C:\WINDOWS\system32\Microsoft
2009-04-02 16:56:26 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-04-02 16:30:27 ----D---- C:\WINDOWS\system32\xircom
2009-04-02 16:30:27 ----D---- C:\WINDOWS\srchasst
2009-04-02 16:30:27 ----D---- C:\Program Files\xerox
2009-04-02 16:30:27 ----D---- C:\Program Files\microsoft frontpage
2009-04-02 16:30:08 ----D---- C:\Program Files\Windows Media Connect 2
2009-04-02 16:30:07 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-04-02 16:30:02 ----D---- C:\WINDOWS\RegisteredPackages
2009-04-02 16:29:48 ----HD---- C:\WINDOWS\$hf_mig$
2009-04-02 16:29:34 ----A---- C:\WINDOWS\control.ini
2009-04-02 16:29:34 ----A---- C:\AUTOEXEC.BAT
2009-04-02 16:29:26 ----A---- C:\WINDOWS\OEWABLog.txt
2009-04-02 16:29:22 ----A---- C:\WINDOWS\system32\mapi32.dll
2009-04-02 16:28:41 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-04-02 16:28:41 ----RD---- C:\WINDOWS\Offline Web Pages
2009-04-02 16:28:41 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2009-04-02 16:28:36 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2009-04-02 16:28:32 ----HD---- C:\Program Files\WindowsUpdate
2009-04-02 16:28:05 ----A---- C:\WINDOWS\system32\atrace.dll
2009-04-02 16:28:04 ----A---- C:\WINDOWS\system32\desktop.ini
2009-04-02 16:28:04 ----A---- C:\WINDOWS\desktop.ini
2009-04-02 16:28:01 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2009-04-02 16:27:59 ----D---- C:\Program Files\Fichiers communs\Services
2009-04-02 16:27:59 ----A---- C:\WINDOWS\system32\acctres.dll
2009-04-02 16:27:56 ----SD---- C:\WINDOWS\Tasks
2009-04-02 16:27:56 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2009-04-02 16:27:55 ----D---- C:\Program Files\Fichiers communs\MSSoap
2009-04-02 16:27:54 ----D---- C:\WINDOWS\system32\Macromed
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuweb.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wups.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wucltui.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauserv.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuaueng.dll
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuauclt.exe
2009-04-02 16:27:51 ----A---- C:\WINDOWS\system32\wuapi.dll
2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\qmgr.dll
2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2009-04-02 16:27:50 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2009-04-02 16:27:47 ----D---- C:\Program Files\Movie Maker
2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrslv.dll
2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrdm.dll
2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2009-04-02 16:27:43 ----A---- C:\WINDOWS\system32\racpldlg.dll
2009-04-02 16:27:40 ----D---- C:\WINDOWS\system32\Restore
2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srsvc.dll
2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srrstr.dll
2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\srclient.dll
2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\fltMc.exe
2009-04-02 16:27:40 ----A---- C:\WINDOWS\system32\fltlib.dll
2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\mnmdd.dll
2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2009-04-02 16:27:39 ----A---- C:\WINDOWS\system32\ils.dll
2009-04-02 16:27:38 ----A---- C:\WINDOWS\system32\msconf.dll
2009-04-02 16:27:38 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2009-04-02 16:27:36 ----D---- C:\Program Files\NetMeeting
2009-04-02 16:27:36 ----A---- C:\WINDOWS\system32\msoert2.dll
2009-04-02 16:27:36 ----A---- C:\WINDOWS\system32\msoeacct.dll
2009-04-02 16:27:35 ----A---- C:\WINDOWS\system32\inetres.dll
2009-04-02 16:27:35 ----A---- C:\WINDOWS\system32\inetcomm.dll
2009-04-02 16:27:33 ----D---- C:\Program Files\Outlook Express
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\schedsvc.dll
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\mstinit.exe
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\mstask.dll
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\isign32.dll
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\inetcfg.dll
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\icwphbk.dll
2009-04-02 16:27:33 ----A---- C:\WINDOWS\system32\icwdial.dll
2009-04-02 16:27:28 ----D---- C:\Program Files\Fichiers communs\System
2009-04-02 16:27:23 ----D---- C:\Program Files\Internet Explorer
2009-04-02 16:26:57 ----D---- C:\Program Files\ComPlus Applications
2009-04-02 16:26:55 ----A---- C:\WINDOWS\vbaddin.ini
2009-04-02 16:26:55 ----A---- C:\WINDOWS\vb.ini
2009-04-02 16:26:51 ----D---- C:\WINDOWS\Registration
2009-04-02 16:26:45 ----D---- C:\Program Files\Windows Media Player
2009-04-02 16:26:31 ----D---- C:\Program Files\MSN Gaming Zone
2009-04-02 16:26:31 ----A---- C:\WINDOWS\system32\write.exe
2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\sndvol32.exe
2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\hticons.dll
2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avwav.dll
2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avtapi.dll
2009-04-02 16:26:23 ----A---- C:\WINDOWS\system32\avmeter.dll
2009-04-02 16:26:22 ----A---- C:\WINDOWS\system32\winchat.exe
2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\sol.exe
2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\getuname.dll
2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\charmap.exe
2009-04-02 16:26:17 ----A---- C:\WINDOWS\system32\calc.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\winmine.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\tskill.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\reset.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\mshearts.exe
2009-04-02 16:26:16 ----A---- C:\WINDOWS\system32\freecell.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tslabels.ini
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\tscon.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\shadow.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\rwinsta.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\regini.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\qwinsta.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\qappsrv.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\msg.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\logoff.exe
2009-04-02 16:26:15 ----A---- C:\WINDOWS\system32\cdmodem.dll
2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxex.dll
2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\mtxdm.dll
2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2009-04-02 16:26:14 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\stclient.dll
2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comsnap.dll
2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comrepl.dll
2009-04-02 16:26:13 ----A---- C:\WINDOWS\system32\comaddin.dll
2009-04-02 16:26:09 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2009-04-02 16:26:08 ----A---- C:\WINDOWS\system32\accwiz.exe
2009-04-02 16:26:07 ----D---- C:\Program Files\Windows NT
2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\mplay32.exe
2009-04-02 16:26:07 ----A---- C:\WINDOWS\system32\hypertrm.dll
2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\spider.exe
2009-04-02 16:26:06 ----A---- C:\WINDOWS\system32\clipbrd.exe
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\termsrv.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\remotepg.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdshost.exe
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\rdchost.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\mstscax.dll
2009-04-02 16:26:05 ----A---- C:\WINDOWS\system32\mstsc.exe
2009-04-02 16:26:04 ----D---- C:\WINDOWS\system32\MsDtc
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\rdpclip.exe
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\qprocess.exe
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\mtxoci.dll
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\icaapi.dll
2009-04-02 16:26:04 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\xolehlp.dll
2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtctm.dll
2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtclog.dll
2009-04-02 16:26:03 ----A---- C:\WINDOWS\system32\msdtc.exe
2009-04-02 16:26:02 ----D---- C:\WINDOWS\system32\Com
2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\colbact.dll
2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\clbcatex.dll
2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrvut.dll
2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrvps.dll
2009-04-02 16:26:02 ----A---- C:\WINDOWS\system32\catsrv.dll
2009-04-02 16:26:01 ----A---- C:\WINDOWS\system32\comuid.dll
2009-04-02 16:26:01 ----A---- C:\WINDOWS\system32\comsvcs.dll
2009-04-02 16:26:00 ----A---- C:\WINDOWS\system32\clbcatq.dll
2009-04-02 16:25:56 ----A---- C:\WINDOWS\system32\servdeps.dll
2009-04-02 16:25:56 ----A---- C:\WINDOWS\system32\mmfutil.dll
2009-04-02 16:25:55 ----A---- C:\WINDOWS\system32\licwmi.dll
2009-04-02 16:25:55 ----A---- C:\WINDOWS\system32\cmprops.dll
2009-04-02 15:26:57 ----A---- C:\WINDOWS\system32\h323log.txt
2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\wshirda.dll
2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\irmon.dll
2009-04-02 15:24:35 ----A---- C:\WINDOWS\system32\irftp.exe
2009-04-02 15:23:51 ----A---- C:\WINDOWS\system32\usbui.dll
2009-04-02 15:23:04 ----A---- C:\WINDOWS\imsins.BAK
2009-04-02 15:23:01 ----SHD---- C:\WINDOWS\Installer
2009-04-02 15:23:01 ----D---- C:\Program Files\Fichiers communs\ODBC
2009-04-02 15:23:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-04-02 15:23:01 ----A---- C:\WINDOWS\ODBCINST.INI
2009-04-02 15:22:58 ----RD---- C:\Program Files
2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs\SpeechEngines
2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-04-02 15:22:58 ----D---- C:\Program Files\Fichiers communs
2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2009-04-02 15:22:56 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdur.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdru.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2009-04-02 15:22:54 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2009-04-02 15:22:52 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2009-04-02 15:22:51 ----RA---- C:\WINDOWS\system32\kbdest.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdro.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2009-04-02 15:22:49 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\spxcoins.dll
2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\irclass.dll
2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\dgsetup.dll
2009-04-02 15:22:46 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2009-04-02 15:22:45 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2009-04-02 15:22:43 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2009-04-02 15:22:43 ----A---- C:\WINDOWS\TASKMAN.EXE
2009-04-02 15:22:43 ----A---- C:\WINDOWS\system32\batt.dll
2009-04-02 15:22:42 ----A---- C:\WINDOWS\system32\storprop.dll
2009-04-02 15:22:42 ----A---- C:\WINDOWS\notepad.exe
2009-04-02 15:22:36 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2009-04-02 15:22:23 ----D---- C:\WINDOWS\system32\CatRoot2
2009-04-02 15:22:23 ----D---- C:\WINDOWS\system32\CatRoot
2009-04-02 15:22:18 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-04-02 15:22:02 ----A---- C:\WINDOWS\setuplog.txt
2009-04-02 15:21:59 ----SHD---- C:\System Volume Information
2009-04-02 15:21:59 ----D---- C:\Documents and Settings
2009-04-02 15:21:06 ----SH---- C:\boot.ini
2009-04-02 15:20:20 ----D---- C:\applications
2009-04-02 15:17:46 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-04-02 15:17:46 ----RSD---- C:\WINDOWS\Fonts
2009-04-02 15:17:46 ----RD---- C:\WINDOWS\Web
2009-04-02 15:17:46 ----HD---- C:\WINDOWS\inf
2009-04-02 15:17:46 ----D---- C:\WINDOWS\WinSxS
2009-04-02 15:17:46 ----D---- C:\WINDOWS\twain_32
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Temp
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\wins
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\wbem
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\usmt
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\spool
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ShellExt
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\Setup
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ras
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\PreInstall
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\oobe
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\npp
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\mui
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\inetsrv
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\IME
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\icsxml
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\ias
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\export
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\en
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\drivers
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\dhcp
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\config
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\3com_dmi
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\3076
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\2052
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1054
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1042
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1041
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1037
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1036
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1033
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1031
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1028
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32\1025
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system32
2009-04-02 15:17:46 ----D---- C:\WINDOWS\system
2009-04-02 15:17:46 ----D---- C:\WINDOWS\security
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Resources
2009-04-02 15:17:46 ----D---- C:\WINDOWS\repair
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Provisioning
2009-04-02 15:17:46 ----D---- C:\WINDOWS\PeerNet
2009-04-02 15:17:46 ----D---- C:\WINDOWS\pchealth
2009-04-02 15:17:46 ----D---- C:\WINDOWS\mui
2009-04-02 15:17:46 ----D---- C:\WINDOWS\msapps
2009-04-02 15:17:46 ----D---- C:\WINDOWS\msagent
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Media
2009-04-02 15:17:46 ----D---- C:\WINDOWS\java
2009-04-02 15:17:46 ----D---- C:\WINDOWS\ime
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Help
2009-04-02 15:17:46 ----D---- C:\WINDOWS\ehome
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Driver Cache
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Debug
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Cursors
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Connection Wizard
2009-04-02 15:17:46 ----D---- C:\WINDOWS\Config
2009-04-02 15:17:46 ----D---- C:\WINDOWS\AppPatch
2009-04-02 15:17:46 ----D---- C:\WINDOWS\addins
2009-04-02 15:17:46 ----D---- C:\WINDOWS
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nwiz.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwssr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwss.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrszht.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrszhc.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrstr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsth.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssv.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrssk.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsru.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsptb.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrspt.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrspl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsno.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsnl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsko.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsja.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsit.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrshu.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrshe.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsfr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsfi.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsesm.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrses.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrseng.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsel.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsde.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsda.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrscs.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwrsar.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwimg.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwdmcpl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvwddi.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvvitvsr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvvitvs.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvshell.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrszht.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrszhc.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrstr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsth.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssv.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrssk.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsru.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsptb.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrspt.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrspl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsno.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsnl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsko.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsja.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsit.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrshu.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrshe.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsfr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsfi.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsesm.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrses.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrseng.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsel.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsde.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsda.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrscs.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvrsar.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmoblsr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmobls.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmctray.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccssr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccss.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccsrs.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvmccs.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nview.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvgamesr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvgames.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdspsch.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdispsr.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvdisps.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcuda.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcpluir.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcplui.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcpl.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcolor.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcodins.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvcod.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvappbar.exe
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nvapi.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2009-03-27 10:03:00 ----A---- C:\WINDOWS\system32\keystone.exe
======List of files/folders modified in the last 1 months======
2009-04-03 18:01:27 ----A---- C:\WINDOWS\win.ini
2009-04-03 18:01:27 ----A---- C:\WINDOWS\system.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-10-30 75072]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-11-08 21248]
R2 irda;Protocole IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2004-08-04 87424]
R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-03-04 5045760]
R3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-03-27 6280416]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-03-22 52736]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-03-22 18944]
R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2006-06-20 30080]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2006-06-20 17152]
R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\I:\EVEREST Ultimate Edition 2007 v3.80.951 Beta\kerneld.wnt []
S3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-28 9600]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-06-20 12288]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirScheduler;Planificateur Avira AntiVir Personal - Free Antivirus; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-15 68865]
R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-15 151297]
R2 Irmon;Moniteur infrarouge; C:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-03-27 163908]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
S3 WMConnectCDS;Service Windows Media Connect; C:\Program Files\Windows Media Connect 2\wmccds.exe [2005-10-06 856064]
-----------------EOF-----------------
info.txt logfile of random's system information tool 1.06 2009-04-16 00:30:49
======Uninstall list======
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 7.0.8 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70800000002}
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Codeur Windows Media Série 9-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Codeur Windows Media Série 9-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Correctif pour Windows XP (KB935448)-->"C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif Windows XP - KB867282-->C:\WINDOWS\$NtUninstallKB867282$\spuninst\spuninst.exe
Correctif Windows XP - KB885894-->C:\WINDOWS\$NtUninstallKB885894$\spuninst\spuninst.exe
Galerie de photos Windows Live-->MsiExec.exe /X{44E54A81-9D91-4AA1-9417-80AFF134F5FF}
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Media Format SDK (KB902344)-->"C:\WINDOWS\$NtUninstallKB902344$\spuninst\spuninst.exe"
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
J2SE Runtime Environment 5.0 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150070}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Kaspersky Online Scanner-->C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe
Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Macromedia Flash Player 8-->C:\WINDOWS\system32\Macromed\Flash\UninstFl.exe
Macromedia Shockwave Player-->MsiExec.exe /X{838A1BC9-95CA-4880-9BE3-2A7D23600A2B}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Office PowerPoint Viewer 2003-->MsiExec.exe /X{90AF040C-6000-11D3-8CFE-0150048383C9}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Windows Media Video 9 VCM-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmv9vcm.inf, Uninstall
Mise à jour de sécurité pour le Codeur Windows Media (KB954156)-->"C:\WINDOWS\$NtUninstallKB954156_WM9L$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB913433)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB913433.inf
Mise à jour de sécurité pour Windows XP (KB917953)-->"C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923689)-->"C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
Mozilla Firefox (3.0.8)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
Orange Plug-in messagerie vocale 888-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{16E79B1D-D1C2-4CA6-8B23-F4D890E0DCB9}\Setup.exe" -l0x40c --AddRemove
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Photorécit 3 pour Windows-->MsiExec.exe /I{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SLD Codec Pack-->C:\Program Files\SLD Codec Pack\uninstall.exe
Visionneuse Journal Windows Microsoft-->MsiExec.exe /X{43DCF766-6838-4F9A-8C91-D92DA586DFA8}
VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Winamp-->"C:\Program Files\Winamp\UninstWA.exe"
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Sync-->MsiExec.exe /X{9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E}
Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Player 10 Hotfix - KB888656-->"C:\WINDOWS\$NtUninstallKB888656$\spuninst\spuninst.exe"
Windows Messenger 5.1-->MsiExec.exe /I{9D1C26BD-E792-4159-9D16-07EA222D8EF0}
Securitycenter WMI appears to be broken
======System event log======
Computer Name: MYMY
Event Code: 7
Message: Le périphérique \Device\CdRom0 comporte un bloc défectueux.
Record Number: 5
Source Name: Cdrom
Time Written: 20090402162637.000000+120
Event Type: erreur
User:
Computer Name: MYMY
Event Code: 6011
Message: Le nom NetBIOS et le nom de l'hôte DNS de cet ordinateur ont été modifiés de MACHINENAME vers MYMY.
Record Number: 4
Source Name: EventLog
Time Written: 20090402162514.000000+120
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 2
Message: Pendant la validation de \Device\Serial0 en tant que port série, une FIFO a été détectée. La FIFO sera utilisée.
Record Number: 3
Source Name: Serial
Time Written: 20090402152225.000000+120
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 6005
Message: Le service d'Enregistrement d'événement a démarré.
Record Number: 2
Source Name: EventLog
Time Written: 20090402152204.000000+120
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 2 Uniprocessor Free.
Record Number: 1
Source Name: EventLog
Time Written: 20090402152204.000000+120
Event Type: Informations
User:
=====Application event log=====
Computer Name: MYMY
Event Code: 1000
Message: Les compteurs de performances pour le service MSDTC (MSDTC) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 5
Source Name: LoadPerf
Time Written: 20090402162648.000000+120
Event Type: Informations
User:
Computer Name: MYMY
Event Code: 1000
Message: Les compteurs de performances pour le service TermService (Services Terminal Server) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 4
Source Name: LoadPerf
Time Written: 20090402162645.000000+120
Event Type: Informations
User:
Computer Name: MYMY
Event Code: 1000
Message: Les compteurs de performances pour le service RemoteAccess (Routage et accès distant) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 3
Source Name: LoadPerf
Time Written: 20090402162546.000000+120
Event Type: Informations
User:
Computer Name: MYMY
Event Code: 1000
Message: Les compteurs de performances pour le service PSched (PSched) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 2
Source Name: LoadPerf
Time Written: 20090402162523.000000+120
Event Type: Informations
User:
Computer Name: MYMY
Event Code: 1000
Message: Les compteurs de performances pour le service RSVP (QoS RSVP) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 1
Source Name: LoadPerf
Time Written: 20090402162522.000000+120
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 95 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=5f02
"NUMBER_OF_PROCESSORS"=1
"TEMP"=%USERPROFILE%\Local Settings\Temp
"TMP"=%USERPROFILE%\Local Settings\Temp
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
-----------------EOF-----------------
Supprime juste ce dossier :
C:\_OTMoveIt\
Encore des soucis ?
Répondre à Angeldark
non, tout m'a l'air parfait. je te remercie énormément!
Bonne continuation.
Répondre à Angeldark
Il y a 354 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici.
Par Destrio5 il y a 5 jours :
